Win32/Olmarik.TDL4.trojan - prosim o pomoc

Zpráva

buhtak · #31 Příspěvek od **buhtak** » 14 dub 2012 15:59

Nejak mi to s tým USB nejde tak to mám vypáliť? a našlo mi další vír - win32/olmasco.o.trojan

#32 Příspěvek od **vyosek** » 14 dub 2012 16:50

Ano, vypalte na CD

buhtak · #33 Příspěvek od **buhtak** » 14 dub 2012 20:28

tak tu to je: http://leteckaposta.cz/857897403

#34 Příspěvek od **vyosek** » 14 dub 2012 20:46

Muzete zkusit prosim jeste tenhle postup s flash diskem

Naughty píše:Dělej na nenakaženém pc!

Nejdříve stáhni soubory:

http://wintoflash.com/download/version-0-7-0043/ftp-1/
http://oldtimer.geekstogo.com/OTLPENet.exe

Předpříprava instalačních souborů
----------------------------------

1.

Za pomocí winrar/7-zip rozbal OTLPENet do libovolné složky, jenž bude obsahovat tři soubory:

ImgBurn.exe
ImgBurn.ini
OTLPE_New_Net.iso <-- Opět rozbal, ale tentokrát na plochu, tak aby byla složka OTLPE_New_Std, v ní budou už složky/soubory programu

2.

Rozbal "Novicorp WinToFlash 0.7.0043 beta.zip" vedle složky OTLPE_New_Std, tak aby existovala jen jedna složka "WinToFlash" obsahující samotné soubory/složky programu.

Příprava bootovací flash (klúče)
----------------------------------

Vlož prázdnou flash (min. požadavek kapacity 512MB) do usb. Spusť WinToFlash.exe, objeví se otravný průvodce.
- klik na next
- odoznač "I agree to send statistical information", klik na next
- klik next, bude se připojovat na net, pokud není fyzicky odpojeno nebo zablokováno firewallem nejde zrušit (akceptuj prosím nešvar programu)
- klik na next
- klik na záložku "Rozšířený režim"
- zvol úlohu: "Transfer WinPe XP/2000 na USB disk!
- klik na "Běžet"
- nastav cesty pro
a) PE soubor zdrojová cesta: (vyber složku OTLPE_New_Std)
b) Usb disk: cesta prázdné flash

- ostatní nasatvení neměn.
- klik na "Běžet"
- po proběhnutí kopírování souborů (cca 20 minut) na flashdisk, pak program ukonči.
- utilita nastavila bootování USB-HDD s FAT32

buhtak · #35 Příspěvek od **buhtak** » 15 dub 2012 17:16

ani tá nová verzia nešla tak tu je súbor http://leteckaposta.cz/443439997

buhtak · #36 Příspěvek od **buhtak** » 15 dub 2012 17:40

ok tak vďaka že aj vy pomáhate a to OTLPE môžem nabootovať aj z cd??

buhtak · #37 Příspěvek od **buhtak** » 15 dub 2012 18:27

Paráda ako som to spravil tak TDSSKiller šiel a dokonca aj Skype po dlhej dobe

20:22:07.0426 5176 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
20:22:07.0510 5176 ============================================================
20:22:07.0510 5176 Current date / time: 2012/04/15 20:22:07.0510
20:22:07.0510 5176 SystemInfo:
20:22:07.0510 5176
20:22:07.0510 5176 OS Version: 6.1.7600 ServicePack: 0.0
20:22:07.0510 5176 Product type: Workstation
20:22:07.0510 5176 ComputerName: CHLOPI-HP
20:22:07.0510 5176 UserName: chlopi
20:22:07.0510 5176 Windows directory: C:\Windows
20:22:07.0510 5176 System windows directory: C:\Windows
20:22:07.0510 5176 Processor architecture: Intel x86
20:22:07.0510 5176 Number of processors: 2
20:22:07.0510 5176 Page size: 0x1000
20:22:07.0510 5176 Boot type: Normal boot
20:22:07.0510 5176 ============================================================
20:22:09.0954 5176 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:22:09.0969 5176 \Device\Harddisk0\DR0:
20:22:09.0969 5176 MBR used
20:22:09.0969 5176 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:22:09.0969 5176 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x254E8800
20:22:10.0000 5176 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2551B800, BlocksNum 0x242B5800
20:22:10.0000 5176 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x497D1000, BlocksNum 0x10822B0
20:22:10.0110 5176 Initialize success
20:22:10.0110 5176 ============================================================
20:22:26.0586 5256 ============================================================
20:22:26.0586 5256 Scan started
20:22:26.0586 5256 Mode: Manual; SigCheck; TDLFS;
20:22:26.0586 5256 ============================================================
20:22:27.0624 5256 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
20:22:27.0733 5256 1394ohci - ok
20:22:27.0749 5256 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
20:22:27.0765 5256 ACPI - ok
20:22:27.0780 5256 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
20:22:27.0843 5256 AcpiPmi - ok
20:22:27.0921 5256 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
20:22:27.0952 5256 adp94xx - ok
20:22:27.0967 5256 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
20:22:27.0999 5256 adpahci - ok
20:22:28.0014 5256 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
20:22:28.0030 5256 adpu320 - ok
20:22:28.0045 5256 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
20:22:28.0108 5256 AeLookupSvc - ok
20:22:28.0186 5256 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys
20:22:28.0248 5256 AFD - ok
20:22:28.0264 5256 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
20:22:28.0279 5256 agp440 - ok
20:22:28.0311 5256 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
20:22:28.0326 5256 aic78xx - ok
20:22:28.0389 5256 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
20:22:28.0435 5256 ALG - ok
20:22:28.0520 5256 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
20:22:28.0535 5256 aliide - ok
20:22:28.0583 5256 AMD External Events Utility (4b808991f51d50bc6a3a3c8541d52748) C:\Windows\system32\atiesrxx.exe
20:22:28.0648 5256 AMD External Events Utility - ok
20:22:28.0663 5256 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
20:22:28.0673 5256 amdagp - ok
20:22:28.0685 5256 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
20:22:28.0693 5256 amdide - ok
20:22:28.0715 5256 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
20:22:28.0725 5256 AmdK8 - ok
20:22:28.0960 5256 amdkmdag (bc7c2154c4b23f74222859c4d93a3039) C:\Windows\system32\DRIVERS\atikmdag.sys
20:22:29.0100 5256 amdkmdag - ok
20:22:29.0132 5256 amdkmdap (dc5d417390a70db5583374a232be622f) C:\Windows\system32\DRIVERS\atikmpag.sys
20:22:29.0163 5256 amdkmdap - ok
20:22:29.0241 5256 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
20:22:29.0303 5256 AmdPPM - ok
20:22:29.0319 5256 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
20:22:29.0350 5256 amdsata - ok
20:22:29.0366 5256 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
20:22:29.0366 5256 amdsbs - ok
20:22:29.0397 5256 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
20:22:29.0397 5256 amdxata - ok
20:22:29.0480 5256 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
20:22:29.0547 5256 AppID - ok
20:22:29.0577 5256 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
20:22:29.0687 5256 AppIDSvc - ok
20:22:29.0702 5256 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
20:22:29.0745 5256 Appinfo - ok
20:22:29.0840 5256 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
20:22:29.0857 5256 arc - ok
20:22:29.0875 5256 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
20:22:29.0890 5256 arcsas - ok
20:22:29.0922 5256 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
20:22:29.0965 5256 AsyncMac - ok
20:22:29.0985 5256 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
20:22:29.0992 5256 atapi - ok
20:22:30.0122 5256 AtiHDAudioService (84faf3d287d56d210f84db7c1349d43b) C:\Windows\system32\drivers\AtihdW73.sys
20:22:30.0347 5256 AtiHDAudioService - ok
20:22:30.0425 5256 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\Windows\system32\DRIVERS\atksgt.sys
20:22:30.0447 5256 atksgt - ok
20:22:30.0520 5256 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
20:22:30.0587 5256 AudioEndpointBuilder - ok
20:22:30.0590 5256 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
20:22:30.0621 5256 Audiosrv - ok
20:22:30.0652 5256 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
20:22:30.0684 5256 AxInstSV - ok
20:22:30.0746 5256 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
20:22:30.0793 5256 b06bdrv - ok
20:22:30.0871 5256 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
20:22:30.0918 5256 b57nd60x - ok
20:22:30.0964 5256 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
20:22:31.0027 5256 BDESVC - ok
20:22:31.0042 5256 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
20:22:31.0105 5256 Beep - ok
20:22:31.0167 5256 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
20:22:31.0214 5256 BFE - ok
20:22:31.0245 5256 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\system32\qmgr.dll
20:22:31.0292 5256 BITS - ok
20:22:31.0323 5256 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
20:22:31.0339 5256 blbdrive - ok
20:22:31.0448 5256 BopItU2U - ok
20:22:31.0479 5256 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
20:22:31.0510 5256 bowser - ok
20:22:31.0526 5256 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:22:31.0557 5256 BrFiltLo - ok
20:22:31.0588 5256 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:22:31.0620 5256 BrFiltUp - ok
20:22:31.0666 5256 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
20:22:31.0698 5256 BridgeMP - ok
20:22:31.0776 5256 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
20:22:31.0822 5256 Browser - ok
20:22:31.0838 5256 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
20:22:31.0885 5256 Brserid - ok
20:22:31.0916 5256 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
20:22:31.0947 5256 BrSerWdm - ok
20:22:31.0963 5256 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:22:31.0978 5256 BrUsbMdm - ok
20:22:31.0994 5256 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
20:22:32.0025 5256 BrUsbSer - ok
20:22:32.0088 5256 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
20:22:32.0134 5256 BTHMODEM - ok
20:22:32.0166 5256 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
20:22:32.0212 5256 bthserv - ok
20:22:32.0337 5256 catchme - ok
20:22:32.0415 5256 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
20:22:32.0478 5256 cdfs - ok
20:22:32.0526 5256 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
20:22:32.0561 5256 cdrom - ok
20:22:32.0604 5256 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
20:22:32.0651 5256 CertPropSvc - ok
20:22:32.0724 5256 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
20:22:32.0749 5256 circlass - ok
20:22:32.0771 5256 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
20:22:32.0794 5256 CLFS - ok
20:22:32.0841 5256 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:22:32.0859 5256 clr_optimization_v2.0.50727_32 - ok
20:22:32.0984 5256 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:22:33.0001 5256 clr_optimization_v4.0.30319_32 - ok
20:22:33.0049 5256 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
20:22:33.0069 5256 CmBatt - ok
20:22:33.0091 5256 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
20:22:33.0099 5256 cmdide - ok
20:22:33.0131 5256 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
20:22:33.0149 5256 CNG - ok
20:22:33.0184 5256 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
20:22:33.0191 5256 Compbatt - ok
20:22:33.0209 5256 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
20:22:33.0234 5256 CompositeBus - ok
20:22:33.0279 5256 COMSysApp - ok
20:22:33.0346 5256 cpuz135 - ok
20:22:33.0376 5256 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
20:22:33.0394 5256 crcdisk - ok
20:22:33.0451 5256 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
20:22:33.0541 5256 CryptSvc - ok
20:22:33.0606 5256 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
20:22:33.0646 5256 DcomLaunch - ok
20:22:33.0661 5256 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
20:22:33.0684 5256 defragsvc - ok
20:22:33.0749 5256 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys
20:22:33.0795 5256 DfsC - ok
20:22:33.0827 5256 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
20:22:33.0920 5256 Dhcp - ok
20:22:33.0967 5256 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
20:22:34.0014 5256 discache - ok
20:22:34.0076 5256 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
20:22:34.0092 5256 Disk - ok
20:22:34.0123 5256 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\Windows\System32\dnsrslvr.dll
20:22:34.0170 5256 Dnscache - ok
20:22:34.0185 5256 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
20:22:34.0248 5256 dot3svc - ok
20:22:34.0295 5256 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
20:22:34.0310 5256 DPS - ok
20:22:34.0378 5256 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
20:22:34.0413 5256 drmkaud - ok
20:22:34.0458 5256 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
20:22:34.0488 5256 DXGKrnl - ok
20:22:34.0526 5256 eamonm (73ce42907cf42bfb91bcd27fe7c7a7af) C:\Windows\system32\DRIVERS\eamonm.sys
20:22:34.0533 5256 eamonm - ok
20:22:34.0578 5256 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
20:22:34.0601 5256 EapHost - ok
20:22:34.0710 5256 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
20:22:34.0788 5256 ebdrv - ok
20:22:34.0804 5256 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
20:22:34.0819 5256 EFS - ok
20:22:34.0882 5256 ehdrv (7d300a43a7bd8769e0f901bf9e1ae367) C:\Windows\system32\DRIVERS\ehdrv.sys
20:22:34.0882 5256 ehdrv - ok
20:22:34.0951 5256 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\Windows\ehome\ehRecvr.exe
20:22:35.0013 5256 ehRecvr - ok
20:22:35.0043 5256 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
20:22:35.0096 5256 ehSched - ok
20:22:35.0138 5256 EhttpSrv (d83323d7cd5d1cc46b42da9e59409890) C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
20:22:35.0148 5256 EhttpSrv - ok
20:22:35.0176 5256 ekrn (efa198f8983d064a81052851f7bb80c2) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
20:22:35.0203 5256 ekrn - ok
20:22:35.0281 5256 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
20:22:35.0311 5256 elxstor - ok
20:22:35.0353 5256 epfwwfpr (96f9030ca15a8d2e8d44e53c1f0e842d) C:\Windows\system32\DRIVERS\epfwwfpr.sys
20:22:35.0361 5256 epfwwfpr - ok
20:22:35.0373 5256 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
20:22:35.0401 5256 ErrDev - ok
20:22:35.0468 5256 esgiguard - ok
20:22:35.0501 5256 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
20:22:35.0526 5256 EventSystem - ok
20:22:35.0586 5256 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
20:22:35.0611 5256 exfat - ok
20:22:35.0641 5256 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
20:22:35.0663 5256 fastfat - ok
20:22:35.0691 5256 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
20:22:35.0733 5256 Fax - ok
20:22:35.0758 5256 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
20:22:35.0783 5256 fdc - ok
20:22:35.0837 5256 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
20:22:35.0900 5256 fdPHost - ok
20:22:35.0915 5256 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
20:22:35.0931 5256 FDResPub - ok
20:22:35.0962 5256 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
20:22:35.0978 5256 FileInfo - ok
20:22:35.0978 5256 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
20:22:36.0009 5256 Filetrace - ok
20:22:36.0102 5256 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:22:36.0136 5256 FLEXnet Licensing Service - ok
20:22:36.0194 5256 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
20:22:36.0231 5256 flpydisk - ok
20:22:36.0284 5256 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
20:22:36.0304 5256 FltMgr - ok
20:22:36.0354 5256 FontCache (7fe4995528a7529a761875151ee3d512) C:\Windows\system32\FntCache.dll
20:22:36.0409 5256 FontCache - ok
20:22:36.0469 5256 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:22:36.0481 5256 FontCache3.0.0.0 - ok
20:22:36.0539 5256 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
20:22:36.0556 5256 FsDepends - ok
20:22:36.0571 5256 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
20:22:36.0584 5256 Fs_Rec - ok
20:22:36.0631 5256 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
20:22:36.0644 5256 fvevol - ok
20:22:36.0694 5256 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:22:36.0704 5256 gagp30kx - ok
20:22:36.0742 5256 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
20:22:36.0773 5256 gpsvc - ok
20:22:36.0820 5256 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
20:22:36.0867 5256 hcw85cir - ok
20:22:36.0898 5256 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
20:22:36.0945 5256 HdAudAddService - ok
20:22:36.0992 5256 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:22:37.0039 5256 HDAudBus - ok
20:22:37.0085 5256 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
20:22:37.0117 5256 HidBatt - ok
20:22:37.0132 5256 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
20:22:37.0179 5256 HidBth - ok
20:22:37.0210 5256 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
20:22:37.0257 5256 HidIr - ok
20:22:37.0304 5256 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
20:22:37.0335 5256 hidserv - ok
20:22:37.0389 5256 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
20:22:37.0426 5256 HidUsb - ok
20:22:37.0461 5256 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
20:22:37.0514 5256 hkmsvc - ok
20:22:37.0541 5256 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
20:22:37.0559 5256 HomeGroupListener - ok
20:22:37.0596 5256 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
20:22:37.0609 5256 HomeGroupProvider - ok
20:22:37.0657 5256 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
20:22:37.0657 5256 HpSAMD - ok
20:22:37.0704 5256 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
20:22:37.0782 5256 HTTP - ok
20:22:37.0797 5256 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
20:22:37.0797 5256 hwpolicy - ok
20:22:37.0860 5256 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
20:22:37.0906 5256 i8042prt - ok
20:22:37.0953 5256 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
20:22:37.0984 5256 iaStorV - ok
20:22:38.0047 5256 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:22:38.0078 5256 idsvc - ok
20:22:38.0234 5256 igfx (27d15d69ba5565f42ecdec6902c1a1e3) C:\Windows\system32\DRIVERS\igdkmd32.sys
20:22:38.0373 5256 igfx ( UnsignedFile.Multi.Generic ) - warning
20:22:38.0373 5256 igfx - detected UnsignedFile.Multi.Generic (1)
20:22:38.0451 5256 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
20:22:38.0468 5256 iirsp - ok
20:22:38.0523 5256 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
20:22:38.0587 5256 IKEEXT - ok
20:22:38.0618 5256 Impcd (2db41ba61d5e44d0667cf126d35dcf34) C:\Windows\system32\DRIVERS\Impcd.sys
20:22:38.0665 5256 Impcd - ok
20:22:38.0774 5256 IntcAzAudAddService (e61611bacbe257c26a8951d6d096a248) C:\Windows\system32\drivers\RTKVHDA.sys
20:22:38.0837 5256 IntcAzAudAddService - ok
20:22:38.0883 5256 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
20:22:38.0883 5256 intelide - ok
20:22:38.0915 5256 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
20:22:38.0946 5256 intelppm - ok
20:22:38.0977 5256 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
20:22:39.0024 5256 IPBusEnum - ok
20:22:39.0086 5256 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:22:39.0117 5256 IpFilterDriver - ok
20:22:39.0164 5256 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
20:22:39.0208 5256 iphlpsvc - ok
20:22:39.0245 5256 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:22:39.0275 5256 IPMIDRV - ok
20:22:39.0300 5256 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
20:22:39.0345 5256 IPNAT - ok
20:22:39.0430 5256 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
20:22:39.0485 5256 IRENUM - ok
20:22:39.0618 5256 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
20:22:39.0770 5256 isapnp - ok
20:22:39.0833 5256 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
20:22:39.0848 5256 iScsiPrt - ok
20:22:39.0895 5256 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
20:22:39.0911 5256 IviRegMgr - ok
20:22:39.0958 5256 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:22:39.0973 5256 kbdclass - ok
20:22:40.0005 5256 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
20:22:40.0036 5256 kbdhid - ok
20:22:40.0145 5256 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:22:40.0161 5256 KeyIso - ok
20:22:40.0207 5256 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
20:22:40.0207 5256 KSecDD - ok
20:22:40.0348 5256 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
20:22:40.0363 5256 KSecPkg - ok
20:22:40.0458 5256 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
20:22:40.0500 5256 KtmRm - ok
20:22:40.0550 5256 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\System32\srvsvc.dll
20:22:40.0580 5256 LanmanServer - ok
20:22:40.0605 5256 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
20:22:40.0633 5256 LanmanWorkstation - ok
20:22:40.0685 5256 LightScribeService (0ee66bdf485c6828aa65c0ef5d591133) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
20:22:40.0701 5256 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
20:22:40.0701 5256 LightScribeService - detected UnsignedFile.Multi.Generic (1)
20:22:40.0826 5256 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\Windows\system32\DRIVERS\lirsgt.sys
20:22:40.0826 5256 lirsgt - ok
20:22:40.0872 5256 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
20:22:40.0919 5256 lltdio - ok
20:22:40.0950 5256 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
20:22:40.0997 5256 lltdsvc - ok
20:22:41.0013 5256 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
20:22:41.0044 5256 lmhosts - ok
20:22:41.0138 5256 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:22:41.0153 5256 LSI_FC - ok
20:22:41.0169 5256 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:22:41.0184 5256 LSI_SAS - ok
20:22:41.0200 5256 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:22:41.0216 5256 LSI_SAS2 - ok
20:22:41.0231 5256 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:22:41.0247 5256 LSI_SCSI - ok
20:22:41.0262 5256 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
20:22:41.0294 5256 luafv - ok
20:22:41.0385 5256 ManyCam (c6d085c7045200143528136a43a65fde) C:\Windows\system32\DRIVERS\ManyCam.sys
20:22:41.0437 5256 ManyCam - ok
20:22:41.0460 5256 MBAMProtector - ok
20:22:41.0525 5256 MBAMService (fa083726e6ca3fc67fac69c1118f1f03) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:22:41.0557 5256 MBAMService - ok
20:22:41.0592 5256 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
20:22:41.0600 5256 Mcx2Svc - ok
20:22:41.0662 5256 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
20:22:41.0678 5256 megasas - ok
20:22:41.0709 5256 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
20:22:41.0725 5256 MegaSR - ok
20:22:41.0740 5256 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:22:41.0771 5256 MMCSS - ok
20:22:41.0803 5256 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
20:22:41.0834 5256 Modem - ok
20:22:41.0849 5256 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
20:22:41.0881 5256 monitor - ok
20:22:41.0974 5256 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
20:22:41.0990 5256 mouclass - ok
20:22:42.0021 5256 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
20:22:42.0052 5256 mouhid - ok
20:22:42.0083 5256 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
20:22:42.0115 5256 mountmgr - ok
20:22:42.0130 5256 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
20:22:42.0146 5256 mpio - ok
20:22:42.0161 5256 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
20:22:42.0177 5256 mpsdrv - ok
20:22:42.0262 5256 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
20:22:42.0314 5256 MpsSvc - ok
20:22:42.0339 5256 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
20:22:42.0364 5256 MRxDAV - ok
20:22:42.0404 5256 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:22:42.0452 5256 mrxsmb - ok
20:22:42.0492 5256 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:22:42.0549 5256 mrxsmb10 - ok
20:22:42.0622 5256 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:22:42.0657 5256 mrxsmb20 - ok
20:22:42.0692 5256 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
20:22:42.0709 5256 msahci - ok
20:22:42.0732 5256 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
20:22:42.0744 5256 msdsm - ok
20:22:42.0772 5256 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
20:22:42.0799 5256 MSDTC - ok
20:22:42.0839 5256 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
20:22:42.0867 5256 Msfs - ok
20:22:42.0922 5256 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
20:22:42.0974 5256 mshidkmdf - ok
20:22:43.0009 5256 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
20:22:43.0017 5256 msisadrv - ok
20:22:43.0059 5256 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
20:22:43.0099 5256 MSiSCSI - ok
20:22:43.0107 5256 msiserver - ok
20:22:43.0130 5256 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
20:22:43.0161 5256 MSKSSRV - ok
20:22:43.0224 5256 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
20:22:43.0270 5256 MSPCLOCK - ok
20:22:43.0286 5256 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
20:22:43.0302 5256 MSPQM - ok
20:22:43.0317 5256 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
20:22:43.0333 5256 MsRPC - ok
20:22:43.0364 5256 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
20:22:43.0380 5256 mssmbios - ok
20:22:43.0411 5256 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
20:22:43.0426 5256 MSTEE - ok
20:22:43.0452 5256 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
20:22:43.0474 5256 MTConfig - ok
20:22:43.0539 5256 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
20:22:43.0557 5256 Mup - ok
20:22:43.0587 5256 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
20:22:43.0619 5256 napagent - ok
20:22:43.0654 5256 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
20:22:43.0682 5256 NativeWifiP - ok
20:22:43.0764 5256 NBService (87a00faedd703d8d2bdcb29ce5eeea6b) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
20:22:43.0795 5256 NBService ( UnsignedFile.Multi.Generic ) - warning
20:22:43.0795 5256 NBService - detected UnsignedFile.Multi.Generic (1)
20:22:43.0889 5256 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
20:22:43.0904 5256 NDIS - ok
20:22:43.0935 5256 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
20:22:43.0967 5256 NdisCap - ok
20:22:43.0982 5256 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
20:22:44.0029 5256 NdisTapi - ok
20:22:44.0045 5256 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
20:22:44.0076 5256 Ndisuio - ok
20:22:44.0076 5256 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
20:22:44.0107 5256 NdisWan - ok
20:22:44.0185 5256 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
20:22:44.0232 5256 NDProxy - ok
20:22:44.0232 5256 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
20:22:44.0279 5256 NetBIOS - ok
20:22:44.0294 5256 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
20:22:44.0357 5256 NetBT - ok
20:22:44.0387 5256 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:22:44.0400 5256 Netlogon - ok
20:22:44.0485 5256 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
20:22:44.0532 5256 Netman - ok
20:22:44.0550 5256 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
20:22:44.0575 5256 netprofm - ok
20:22:44.0625 5256 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:22:44.0640 5256 NetTcpPortSharing - ok
20:22:44.0663 5256 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
20:22:44.0678 5256 nfrd960 - ok
20:22:44.0741 5256 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
20:22:44.0803 5256 NlaSvc - ok
20:22:44.0834 5256 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
20:22:44.0866 5256 Npfs - ok
20:22:44.0897 5256 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
20:22:44.0912 5256 nsi - ok
20:22:44.0928 5256 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
20:22:44.0944 5256 nsiproxy - ok
20:22:44.0990 5256 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
20:22:45.0022 5256 Ntfs - ok
20:22:45.0068 5256 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
20:22:45.0131 5256 Null - ok
20:22:45.0162 5256 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
20:22:45.0178 5256 nvraid - ok
20:22:45.0193 5256 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
20:22:45.0193 5256 nvstor - ok
20:22:45.0224 5256 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
20:22:45.0224 5256 nv_agp - ok
20:22:45.0327 5256 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:22:45.0354 5256 odserv - ok
20:22:45.0429 5256 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
20:22:45.0467 5256 ohci1394 - ok
20:22:45.0504 5256 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:22:45.0519 5256 ose - ok
20:22:45.0547 5256 OxPPort (05564282ea0fa0c7543452d7bc46a4fb) C:\Windows\system32\DRIVERS\OxPPort.sys
20:22:45.0577 5256 OxPPort - ok
20:22:45.0609 5256 OxSer (a47925ceef0c0ae51409ddd551c5e3e5) C:\Windows\system32\DRIVERS\OxSer.sys
20:22:45.0624 5256 OxSer - ok
20:22:45.0655 5256 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:22:45.0718 5256 p2pimsvc - ok
20:22:45.0780 5256 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
20:22:45.0827 5256 p2psvc - ok
20:22:45.0858 5256 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
20:22:45.0905 5256 Parport - ok
20:22:45.0936 5256 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
20:22:45.0952 5256 partmgr - ok
20:22:45.0967 5256 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
20:22:45.0967 5256 Parvdm - ok
20:22:45.0999 5256 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
20:22:46.0014 5256 PcaSvc - ok
20:22:46.0061 5256 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
20:22:46.0077 5256 pci - ok
20:22:46.0108 5256 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
20:22:46.0123 5256 pciide - ok
20:22:46.0139 5256 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
20:22:46.0155 5256 pcmcia - ok
20:22:46.0170 5256 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
20:22:46.0186 5256 pcw - ok
20:22:46.0233 5256 pdfcDispatcher - ok
20:22:46.0279 5256 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
20:22:46.0342 5256 PEAUTH - ok
20:22:46.0451 5256 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
20:22:46.0498 5256 pla - ok
20:22:46.0568 5256 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\Windows\system32\umpnpmgr.dll
20:22:46.0601 5256 PlugPlay - ok
20:22:46.0686 5256 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\Windows\system32\PnkBstrA.exe
20:22:46.0701 5256 PnkBstrA - ok
20:22:46.0736 5256 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
20:22:46.0773 5256 PNRPAutoReg - ok
20:22:46.0804 5256 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:22:46.0835 5256 PNRPsvc - ok
20:22:46.0866 5256 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
20:22:46.0898 5256 PolicyAgent - ok
20:22:46.0960 5256 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
20:22:46.0991 5256 Power - ok
20:22:47.0022 5256 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
20:22:47.0085 5256 PptpMiniport - ok
20:22:47.0132 5256 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
20:22:47.0163 5256 Processor - ok
20:22:47.0194 5256 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
20:22:47.0241 5256 ProfSvc - ok
20:22:47.0288 5256 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:22:47.0303 5256 ProtectedStorage - ok
20:22:47.0366 5256 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
20:22:47.0412 5256 Psched - ok
20:22:47.0481 5256 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
20:22:47.0489 5256 PSI_SVC_2 - ok
20:22:47.0591 5256 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
20:22:47.0604 5256 PxHelp20 - ok
20:22:47.0659 5256 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
20:22:47.0714 5256 ql2300 - ok
20:22:47.0719 5256 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
20:22:47.0734 5256 ql40xx - ok
20:22:47.0765 5256 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
20:22:47.0781 5256 QWAVE - ok
20:22:47.0812 5256 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
20:22:47.0828 5256 QWAVEdrv - ok
20:22:47.0859 5256 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
20:22:47.0921 5256 RasAcd - ok
20:22:47.0968 5256 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:22:47.0984 5256 RasAgileVpn - ok
20:22:48.0015 5256 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
20:22:48.0031 5256 RasAuto - ok
20:22:48.0076 5256 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:22:48.0134 5256 Rasl2tp - ok
20:22:48.0179 5256 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
20:22:48.0201 5256 RasMan - ok
20:22:48.0234 5256 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
20:22:48.0266 5256 RasPppoe - ok
20:22:48.0324 5256 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
20:22:48.0371 5256 RasSstp - ok
20:22:48.0386 5256 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
20:22:48.0409 5256 rdbss - ok
20:22:48.0431 5256 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
20:22:48.0441 5256 rdpbus - ok
20:22:48.0469 5256 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:22:48.0489 5256 RDPCDD - ok
20:22:48.0526 5256 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
20:22:48.0546 5256 RDPENCDD - ok
20:22:48.0586 5256 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
20:22:48.0641 5256 RDPREFMP - ok
20:22:48.0669 5256 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
20:22:48.0706 5256 RDPWD - ok
20:22:48.0766 5256 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
20:22:48.0789 5256 rdyboost - ok
20:22:48.0839 5256 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
20:22:48.0849 5256 regi - ok
20:22:48.0876 5256 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
20:22:48.0937 5256 RemoteAccess - ok
20:22:48.0968 5256 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
20:22:48.0999 5256 RemoteRegistry - ok
20:22:49.0015 5256 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
20:22:49.0062 5256 RpcEptMapper - ok
20:22:49.0108 5256 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
20:22:49.0140 5256 RpcLocator - ok
20:22:49.0171 5256 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
20:22:49.0218 5256 RpcSs - ok
20:22:49.0249 5256 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
20:22:49.0296 5256 rspndr - ok
20:22:49.0358 5256 RTL8167 (80b66a4181f782884a815e69d0afa743) C:\Windows\system32\DRIVERS\Rt86win7.sys
20:22:49.0374 5256 RTL8167 - ok
20:22:49.0405 5256 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:22:49.0420 5256 SamSs - ok
20:22:49.0467 5256 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
20:22:49.0483 5256 sbp2port - ok
20:22:49.0498 5256 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
20:22:49.0530 5256 SCardSvr - ok
20:22:49.0586 5256 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
20:22:49.0631 5256 scfilter - ok
20:22:49.0691 5256 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll
20:22:49.0766 5256 Schedule - ok
20:22:49.0788 5256 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
20:22:49.0813 5256 SCPolicySvc - ok
20:22:49.0851 5256 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
20:22:49.0883 5256 SDRSVC - ok
20:22:49.0945 5256 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:22:49.0992 5256 secdrv - ok
20:22:50.0023 5256 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
20:22:50.0054 5256 seclogon - ok
20:22:50.0101 5256 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
20:22:50.0148 5256 SENS - ok
20:22:50.0179 5256 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
20:22:50.0210 5256 SensrSvc - ok
20:22:50.0273 5256 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
20:22:50.0288 5256 Serenum - ok
20:22:50.0304 5256 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
20:22:50.0335 5256 Serial - ok
20:22:50.0351 5256 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
20:22:50.0382 5256 sermouse - ok
20:22:50.0444 5256 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
20:22:50.0511 5256 SessionEnv - ok
20:22:50.0568 5256 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
20:22:50.0588 5256 sffdisk - ok
20:22:50.0613 5256 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:22:50.0648 5256 sffp_mmc - ok
20:22:50.0673 5256 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
20:22:50.0693 5256 sffp_sd - ok
20:22:50.0723 5256 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
20:22:50.0761 5256 sfloppy - ok
20:22:50.0844 5256 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
20:22:50.0875 5256 SharedAccess - ok
20:22:50.0906 5256 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
20:22:50.0938 5256 ShellHWDetection - ok
20:22:50.0969 5256 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
20:22:50.0969 5256 sisagp - ok
20:22:51.0016 5256 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:22:51.0031 5256 SiSRaid2 - ok
20:22:51.0047 5256 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
20:22:51.0062 5256 SiSRaid4 - ok
20:22:51.0164 5256 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
20:22:51.0176 5256 SkypeUpdate - ok
20:22:51.0264 5256 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
20:22:51.0316 5256 Smb - ok
20:22:51.0361 5256 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
20:22:51.0391 5256 SNMPTRAP - ok
20:22:51.0601 5256 SNPSTD3 (1fc7d765c779c4ad438b011fa2577c44) C:\Windows\system32\DRIVERS\snpstd3.sys
20:22:51.0784 5256 SNPSTD3 - ok
20:22:51.0854 5256 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
20:22:51.0871 5256 spldr - ok
20:22:51.0914 5256 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe
20:22:51.0966 5256 Spooler - ok
20:22:52.0033 5256 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
20:22:52.0096 5256 sppsvc - ok
20:22:52.0111 5256 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
20:22:52.0158 5256 sppuinotify - ok
20:22:52.0252 5256 sptd (a199171385be17973fd800fa91f8f78a) C:\Windows\system32\Drivers\sptd.sys
20:22:52.0252 5256 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
20:22:52.0252 5256 sptd ( LockedFile.Multi.Generic ) - warning
20:22:52.0252 5256 sptd - detected LockedFile.Multi.Generic (1)
20:22:52.0283 5256 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys
20:22:52.0341 5256 srv - ok
20:22:52.0374 5256 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys
20:22:52.0401 5256 srv2 - ok
20:22:52.0426 5256 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys
20:22:52.0436 5256 srvnet - ok
20:22:52.0461 5256 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
20:22:52.0489 5256 SSDPSRV - ok
20:22:52.0544 5256 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
20:22:52.0589 5256 SstpSvc - ok
20:22:52.0683 5256 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
20:22:52.0714 5256 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
20:22:52.0714 5256 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
20:22:52.0745 5256 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
20:22:52.0761 5256 stexstor - ok
20:22:52.0839 5256 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
20:22:52.0886 5256 StiSvc - ok
20:22:52.0921 5256 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
20:22:52.0929 5256 swenum - ok
20:22:53.0024 5256 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:22:53.0049 5256 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
20:22:53.0051 5256 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
20:22:53.0086 5256 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
20:22:53.0111 5256 swprv - ok
20:22:53.0176 5256 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
20:22:53.0254 5256 SysMain - ok
20:22:53.0286 5256 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
20:22:53.0301 5256 TabletInputService - ok
20:22:53.0317 5256 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
20:22:53.0364 5256 TapiSrv - ok
20:22:53.0379 5256 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
20:22:53.0442 5256 TBS - ok
20:22:53.0569 5256 Tcpip (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\drivers\tcpip.sys
20:22:53.0604 5256 Tcpip - ok
20:22:53.0629 5256 TCPIP6 (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\DRIVERS\tcpip.sys
20:22:53.0651 5256 TCPIP6 - ok
20:22:53.0674 5256 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
20:22:53.0694 5256 tcpipreg - ok
20:22:53.0714 5256 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
20:22:53.0734 5256 TDPIPE - ok
20:22:53.0749 5256 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
20:22:53.0769 5256 TDTCP - ok
20:22:53.0826 5256 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
20:22:53.0888 5256 tdx - ok
20:22:53.0919 5256 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
20:22:53.0919 5256 TermDD - ok
20:22:53.0951 5256 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
20:22:53.0982 5256 TermService - ok
20:22:53.0997 5256 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
20:22:53.0997 5256 Themes - ok
20:22:54.0029 5256 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:22:54.0044 5256 THREADORDER - ok
20:22:54.0114 5256 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
20:22:54.0152 5256 TrkWks - ok
20:22:54.0189 5256 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
20:22:54.0209 5256 TrustedInstaller - ok
20:22:54.0247 5256 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:22:54.0297 5256 tssecsrv - ok
20:22:54.0409 5256 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
20:22:54.0454 5256 tunnel - ok
20:22:54.0479 5256 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
20:22:54.0487 5256 uagp35 - ok
20:22:54.0527 5256 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
20:22:54.0577 5256 udfs - ok
20:22:54.0612 5256 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
20:22:54.0624 5256 UI0Detect - ok
20:22:54.0682 5256 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
20:22:54.0697 5256 uliagpkx - ok
20:22:54.0728 5256 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
20:22:54.0760 5256 umbus - ok
20:22:54.0791 5256 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
20:22:54.0806 5256 UmPass - ok
20:22:54.0838 5256 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
20:22:54.0884 5256 upnphost - ok
20:22:54.0962 5256 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
20:22:55.0009 5256 usbaudio - ok
20:22:55.0040 5256 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
20:22:55.0056 5256 usbccgp - ok
20:22:55.0087 5256 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
20:22:55.0118 5256 usbcir - ok
20:22:55.0150 5256 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
20:22:55.0165 5256 usbehci - ok
20:22:55.0243 5256 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
20:22:55.0274 5256 usbhub - ok
20:22:55.0274 5256 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
20:22:55.0290 5256 usbohci - ok
20:22:55.0306 5256 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
20:22:55.0351 5256 usbprint - ok
20:22:55.0381 5256 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:22:55.0391 5256 USBSTOR - ok
20:22:55.0404 5256 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
20:22:55.0434 5256 usbuhci - ok
20:22:55.0499 5256 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
20:22:55.0559 5256 UxSms - ok
20:22:55.0586 5256 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:22:55.0596 5256 VaultSvc - ok
20:22:55.0643 5256 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
20:22:55.0659 5256 vdrvroot - ok
20:22:55.0690 5256 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
20:22:55.0721 5256 vds - ok
20:22:55.0783 5256 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
20:22:55.0815 5256 vga - ok
19:22:55.0344 5256 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
19:22:55.0359 5256 VgaSave - ok
19:22:55.0374 5256 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
19:22:55.0390 5256 vhdmp - ok
19:22:55.0437 5256 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
19:22:55.0437 5256 viaagp - ok
19:22:55.0452 5256 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
19:22:55.0483 5256 ViaC7 - ok
19:22:55.0546 5256 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
19:22:55.0561 5256 viaide - ok
19:22:55.0577 5256 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
19:22:55.0593 5256 volmgr - ok
19:22:55.0608 5256 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
19:22:55.0624 5256 volmgrx - ok
19:22:55.0639 5256 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
19:22:55.0639 5256 volsnap - ok
19:22:55.0671 5256 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
19:22:55.0671 5256 vsmraid - ok
19:22:55.0717 5256 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
19:22:55.0733 5256 VSS - ok
19:22:55.0811 5256 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
19:22:55.0842 5256 vwifibus - ok
19:22:55.0873 5256 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
19:22:55.0905 5256 W32Time - ok
19:22:55.0936 5256 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
19:22:55.0936 5256 WacomPen - ok
19:22:55.0983 5256 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
19:22:56.0014 5256 WANARP - ok
19:22:56.0014 5256 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
19:22:56.0045 5256 Wanarpv6 - ok
19:22:56.0166 5256 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
19:22:56.0223 5256 WatAdminSvc - ok
19:22:56.0261 5256 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
19:22:56.0296 5256 wbengine - ok
19:22:56.0316 5256 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
19:22:56.0331 5256 WbioSrvc - ok
19:22:56.0398 5256 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll
19:22:56.0460 5256 wcncsvc - ok
19:22:56.0476 5256 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
19:22:56.0507 5256 WcsPlugInService - ok
19:22:56.0538 5256 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
19:22:56.0538 5256 Wd - ok
19:22:56.0570 5256 Wdf01000 (73c5809c82828e34232f9811cb51490e) C:\Windows\system32\drivers\Wdf01000.sys
19:22:56.0585 5256 Wdf01000 ( Virus.Win32.Rloader.a ) - infected
19:22:56.0585 5256 Wdf01000 - detected Virus.Win32.Rloader.a (0)
19:22:56.0616 5256 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
19:22:56.0648 5256 WdiServiceHost - ok
19:22:56.0666 5256 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
19:22:56.0681 5256 WdiSystemHost - ok
19:22:56.0713 5256 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll
19:22:56.0758 5256 WebClient - ok
19:22:56.0783 5256 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
19:22:56.0806 5256 Wecsvc - ok
19:22:56.0816 5256 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
19:22:56.0856 5256 wercplsupport - ok
19:22:56.0931 5256 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
19:22:56.0971 5256 WerSvc - ok
19:22:57.0006 5256 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
19:22:57.0041 5256 WfpLwf - ok
19:22:57.0058 5256 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
19:22:57.0066 5256 WIMMount - ok
19:22:57.0118 5256 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
19:22:57.0136 5256 WinDefend - ok
19:22:57.0143 5256 WinHttpAutoProxySvc - ok
19:22:57.0191 5256 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
19:22:57.0238 5256 Winmgmt - ok
19:22:57.0332 5256 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
19:22:57.0394 5256 WinRM - ok
19:22:57.0441 5256 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
19:22:57.0457 5256 WinUsb - ok
19:22:57.0488 5256 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
19:22:57.0503 5256 Wlansvc - ok
19:22:57.0613 5256 wlidsvc (5144ae67d60ec653f97ddf3feed29e77) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:22:57.0644 5256 wlidsvc - ok
19:22:57.0737 5256 WmBEnum (5d410936831f7fb58eff941eac3f6d3d) C:\Windows\system32\drivers\WmBEnum.sys
19:22:57.0737 5256 WmBEnum - ok
19:22:57.0784 5256 WmFilter (7a13cfde92956ca61a0927d766c5ad4f) C:\Windows\system32\drivers\WmFilter.sys
19:22:57.0784 5256 WmFilter - ok
19:22:57.0815 5256 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:22:57.0862 5256 WmiAcpi - ok
19:22:57.0913 5256 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
19:22:57.0935 5256 wmiApSrv - ok
19:22:58.0010 5256 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:22:58.0078 5256 WMPNetworkSvc - ok
19:22:58.0153 5256 WmVirHid (6f04646bc690f8bbfc344be32a60796d) C:\Windows\system32\drivers\WmVirHid.sys
19:22:58.0168 5256 WmVirHid - ok
19:22:58.0200 5256 WmXlCore (1d6ca43d562333f4dfb40bcef2453f3a) C:\Windows\system32\drivers\WmXlCore.sys
19:22:58.0200 5256 WmXlCore - ok
19:22:58.0231 5256 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
19:22:58.0246 5256 WPCSvc - ok
19:22:58.0262 5256 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
19:22:58.0278 5256 WPDBusEnum - ok
19:22:58.0309 5256 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
19:22:58.0340 5256 ws2ifsl - ok
19:22:58.0402 5256 wscsvc (a661a76333057b383a06e65f0073222f) C:\Windows\system32\wscsvc.dll
19:22:58.0449 5256 wscsvc - ok
19:22:58.0465 5256 WSearch - ok
19:22:58.0527 5256 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
19:22:58.0605 5256 wuauserv - ok
19:22:58.0652 5256 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
19:22:58.0668 5256 WudfPf - ok
19:22:58.0730 5256 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:22:58.0777 5256 WUDFRd - ok
19:22:58.0808 5256 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
19:22:58.0855 5256 wudfsvc - ok
19:22:58.0870 5256 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
19:22:58.0886 5256 WwanSvc - ok
19:22:58.0902 5256 MBR (0x1B8) (b51c9e201465e8a06e1961e9d7fcfc65) \Device\Harddisk0\DR0
19:22:59.0214 5256 \Device\Harddisk0\DR0 - ok
19:22:59.0214 5256 Boot (0x1200) (63451a714c7c7203ded3d2b179ec2ebc) \Device\Harddisk0\DR0\Partition0
19:22:59.0214 5256 \Device\Harddisk0\DR0\Partition0 - ok
19:22:59.0245 5256 Boot (0x1200) (b264e1d1bb348bf221491661d99141ce) \Device\Harddisk0\DR0\Partition1
19:22:59.0245 5256 \Device\Harddisk0\DR0\Partition1 - ok
19:22:59.0245 5256 Boot (0x1200) (c4e30372676cd0105a1fb8e409ecd850) \Device\Harddisk0\DR0\Partition2
19:22:59.0245 5256 \Device\Harddisk0\DR0\Partition2 - ok
19:22:59.0292 5256 Boot (0x1200) (15e4a11f59687a4da05efb6c4d9643e5) \Device\Harddisk0\DR0\Partition3
19:22:59.0292 5256 \Device\Harddisk0\DR0\Partition3 - ok
19:22:59.0292 5256 ============================================================
19:22:59.0292 5256 Scan finished
19:22:59.0292 5256 ============================================================
19:22:59.0338 5248 Detected object count: 7
19:22:59.0338 5248 Actual detected object count: 7
19:23:46.0297 5248 igfx ( UnsignedFile.Multi.Generic ) - skipped by user
19:23:46.0297 5248 igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:23:46.0297 5248 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
19:23:46.0297 5248 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:23:46.0312 5248 NBService ( UnsignedFile.Multi.Generic ) - skipped by user
19:23:46.0312 5248 NBService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:23:46.0315 5248 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:23:46.0315 5248 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
19:23:46.0317 5248 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
19:23:46.0317 5248 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:23:46.0320 5248 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
19:23:46.0320 5248 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:23:46.0322 5248 Wdf01000 ( Virus.Win32.Rloader.a ) - skipped by user
19:23:46.0322 5248 Wdf01000 ( Virus.Win32.Rloader.a ) - User select action: Skip
19:23:55.0596 5168 Deinitialize success

buhtak · #38 Příspěvek od **buhtak** » 15 dub 2012 18:40

19:33:21.0635 3820 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
19:33:21.0785 3820 ============================================================
19:33:21.0785 3820 Current date / time: 2012/04/15 19:33:21.0785
19:33:21.0785 3820 SystemInfo:
19:33:21.0785 3820
19:33:21.0785 3820 OS Version: 6.1.7600 ServicePack: 0.0
19:33:21.0785 3820 Product type: Workstation
19:33:21.0785 3820 ComputerName: CHLOPI-HP
19:33:21.0785 3820 UserName: chlopi
19:33:21.0785 3820 Windows directory: C:\Windows
19:33:21.0785 3820 System windows directory: C:\Windows
19:33:21.0785 3820 Processor architecture: Intel x86
19:33:21.0785 3820 Number of processors: 2
19:33:21.0785 3820 Page size: 0x1000
19:33:21.0785 3820 Boot type: Normal boot
19:33:21.0785 3820 ============================================================
19:33:22.0695 3820 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:33:22.0695 3820 \Device\Harddisk0\DR0:
19:33:22.0695 3820 MBR used
19:33:22.0695 3820 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:33:22.0695 3820 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x254E8800
19:33:22.0735 3820 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2551B800, BlocksNum 0x242B5800
19:33:22.0735 3820 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x497D1000, BlocksNum 0x10822B0
19:33:22.0855 3820 Initialize success
19:33:22.0855 3820 ============================================================
19:35:35.0569 4732 ============================================================
19:35:35.0569 4732 Scan started
19:35:35.0569 4732 Mode: Manual; SigCheck; TDLFS;
19:35:35.0569 4732 ============================================================
19:35:35.0770 4732 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
19:35:35.0817 4732 1394ohci - ok
19:35:35.0833 4732 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
19:35:35.0864 4732 ACPI - ok
19:35:35.0880 4732 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
19:35:35.0895 4732 AcpiPmi - ok
19:35:35.0926 4732 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
19:35:35.0926 4732 adp94xx - ok
19:35:35.0942 4732 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
19:35:35.0958 4732 adpahci - ok
19:35:35.0973 4732 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
19:35:35.0989 4732 adpu320 - ok
19:35:36.0004 4732 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
19:35:36.0020 4732 AeLookupSvc - ok
19:35:36.0098 4732 AFD (0db7a48388d54d154ebec120461a0fcd) C:\Windows\system32\drivers\afd.sys
19:35:36.0129 4732 AFD - ok
19:35:36.0145 4732 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
19:35:36.0160 4732 agp440 - ok
19:35:36.0192 4732 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
19:35:36.0207 4732 aic78xx - ok
19:35:36.0238 4732 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
19:35:36.0254 4732 ALG - ok
19:35:36.0316 4732 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
19:35:36.0332 4732 aliide - ok
19:35:36.0379 4732 AMD External Events Utility (4b808991f51d50bc6a3a3c8541d52748) C:\Windows\system32\atiesrxx.exe
19:35:36.0410 4732 AMD External Events Utility - ok
19:35:36.0441 4732 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
19:35:36.0441 4732 amdagp - ok
19:35:36.0457 4732 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
19:35:36.0457 4732 amdide - ok
19:35:36.0488 4732 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
19:35:36.0488 4732 AmdK8 - ok
19:35:36.0738 4732 amdkmdag (bc7c2154c4b23f74222859c4d93a3039) C:\Windows\system32\DRIVERS\atikmdag.sys
19:35:36.0816 4732 amdkmdag - ok
19:35:36.0847 4732 amdkmdap (dc5d417390a70db5583374a232be622f) C:\Windows\system32\DRIVERS\atikmpag.sys
19:35:36.0862 4732 amdkmdap - ok
19:35:36.0940 4732 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
19:35:36.0972 4732 AmdPPM - ok
19:35:36.0987 4732 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
19:35:37.0003 4732 amdsata - ok
19:35:37.0018 4732 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
19:35:37.0018 4732 amdsbs - ok
19:35:37.0034 4732 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
19:35:37.0050 4732 amdxata - ok
19:35:37.0081 4732 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
19:35:37.0081 4732 AppID - ok
19:35:37.0159 4732 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
19:35:37.0206 4732 AppIDSvc - ok
19:35:37.0221 4732 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
19:35:37.0237 4732 Appinfo - ok
19:35:37.0299 4732 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
19:35:37.0299 4732 arc - ok
19:35:37.0315 4732 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
19:35:37.0330 4732 arcsas - ok
19:35:37.0393 4732 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
19:35:37.0440 4732 AsyncMac - ok
19:35:37.0471 4732 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
19:35:37.0471 4732 atapi - ok
19:35:37.0580 4732 AtiHDAudioService (84faf3d287d56d210f84db7c1349d43b) C:\Windows\system32\drivers\AtihdW73.sys
19:35:38.0008 4732 AtiHDAudioService - ok
19:35:38.0118 4732 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\Windows\system32\DRIVERS\atksgt.sys
19:35:38.0133 4732 atksgt - ok
19:35:38.0164 4732 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
19:35:38.0180 4732 AudioEndpointBuilder - ok
19:35:38.0196 4732 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
19:35:38.0211 4732 Audiosrv - ok
19:35:38.0242 4732 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
19:35:38.0258 4732 AxInstSV - ok
19:35:38.0289 4732 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
19:35:38.0305 4732 b06bdrv - ok
19:35:38.0383 4732 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
19:35:38.0414 4732 b57nd60x - ok
19:35:38.0445 4732 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
19:35:38.0461 4732 BDESVC - ok
19:35:38.0461 4732 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
19:35:38.0492 4732 Beep - ok
19:35:38.0508 4732 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
19:35:38.0539 4732 BFE - ok
19:35:38.0570 4732 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\system32\qmgr.dll
19:35:38.0586 4732 BITS - ok
19:35:38.0665 4732 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
19:35:38.0682 4732 blbdrive - ok
19:35:38.0742 4732 BopItU2U - ok
19:35:38.0773 4732 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\Windows\system32\DRIVERS\bowser.sys
19:35:38.0789 4732 bowser - ok
19:35:38.0820 4732 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:35:38.0835 4732 BrFiltLo - ok
19:35:38.0898 4732 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:35:38.0929 4732 BrFiltUp - ok
19:35:38.0976 4732 BridgeMP (77361d72a04f18809d0efb6cceb74d4b) C:\Windows\system32\DRIVERS\bridge.sys
19:35:39.0007 4732 BridgeMP - ok
19:35:39.0038 4732 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
19:35:39.0054 4732 Browser - ok
19:35:39.0085 4732 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
19:35:39.0101 4732 Brserid - ok
19:35:39.0163 4732 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
19:35:39.0179 4732 BrSerWdm - ok
19:35:39.0194 4732 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:35:39.0210 4732 BrUsbMdm - ok
19:35:39.0210 4732 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
19:35:39.0225 4732 BrUsbSer - ok
19:35:39.0241 4732 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
19:35:39.0257 4732 BTHMODEM - ok
19:35:39.0288 4732 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
19:35:39.0319 4732 bthserv - ok
19:35:39.0428 4732 catchme - ok
19:35:39.0506 4732 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
19:35:39.0553 4732 cdfs - ok
19:35:39.0584 4732 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
19:35:39.0615 4732 cdrom - ok
19:35:39.0647 4732 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
19:35:39.0662 4732 CertPropSvc - ok
19:35:39.0740 4732 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
19:35:39.0771 4732 circlass - ok
19:35:39.0787 4732 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
19:35:39.0803 4732 CLFS - ok
19:35:39.0834 4732 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:35:39.0849 4732 clr_optimization_v2.0.50727_32 - ok
19:35:39.0943 4732 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:35:39.0959 4732 clr_optimization_v4.0.30319_32 - ok
19:35:40.0021 4732 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
19:35:40.0052 4732 CmBatt - ok
19:35:40.0083 4732 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
19:35:40.0083 4732 cmdide - ok
19:35:40.0115 4732 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
19:35:40.0130 4732 CNG - ok
19:35:40.0146 4732 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
19:35:40.0161 4732 Compbatt - ok
19:35:40.0177 4732 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
19:35:40.0193 4732 CompositeBus - ok
19:35:40.0239 4732 COMSysApp - ok
19:35:40.0302 4732 cpuz135 - ok
19:35:40.0349 4732 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
19:35:40.0364 4732 crcdisk - ok
19:35:40.0395 4732 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
19:35:40.0427 4732 CryptSvc - ok
19:35:40.0458 4732 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
19:35:40.0473 4732 DcomLaunch - ok
19:35:40.0536 4732 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
19:35:40.0567 4732 defragsvc - ok
19:35:40.0598 4732 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\Windows\system32\Drivers\dfsc.sys
19:35:40.0614 4732 DfsC - ok
19:35:40.0645 4732 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
19:35:40.0661 4732 Dhcp - ok
19:35:40.0676 4732 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
19:35:40.0707 4732 discache - ok
19:35:40.0789 4732 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
19:35:40.0806 4732 Disk - ok
19:35:40.0821 4732 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\Windows\System32\dnsrslvr.dll
19:35:40.0839 4732 Dnscache - ok
19:35:40.0866 4732 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
19:35:40.0891 4732 dot3svc - ok
19:35:40.0911 4732 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
19:35:40.0934 4732 DPS - ok
19:35:40.0971 4732 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
19:35:40.0981 4732 drmkaud - ok
19:35:41.0056 4732 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\Windows\System32\drivers\dxgkrnl.sys
19:35:41.0087 4732 DXGKrnl - ok
19:35:41.0134 4732 eamonm (73ce42907cf42bfb91bcd27fe7c7a7af) C:\Windows\system32\DRIVERS\eamonm.sys
19:35:41.0134 4732 eamonm - ok
19:35:41.0150 4732 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
19:35:41.0181 4732 EapHost - ok
19:35:41.0259 4732 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
19:35:41.0290 4732 ebdrv - ok
19:35:41.0352 4732 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
19:35:41.0368 4732 EFS - ok
19:35:41.0399 4732 ehdrv (7d300a43a7bd8769e0f901bf9e1ae367) C:\Windows\system32\DRIVERS\ehdrv.sys
19:35:41.0415 4732 ehdrv - ok
19:35:41.0446 4732 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\Windows\ehome\ehRecvr.exe
19:35:41.0462 4732 ehRecvr - ok
19:35:41.0493 4732 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
19:35:41.0508 4732 ehSched - ok
19:35:41.0555 4732 EhttpSrv (d83323d7cd5d1cc46b42da9e59409890) C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
19:35:41.0555 4732 EhttpSrv - ok
19:35:41.0586 4732 ekrn (efa198f8983d064a81052851f7bb80c2) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
19:35:41.0618 4732 ekrn - ok
19:35:41.0708 4732 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
19:35:41.0729 4732 elxstor - ok
19:35:41.0760 4732 epfwwfpr (96f9030ca15a8d2e8d44e53c1f0e842d) C:\Windows\system32\DRIVERS\epfwwfpr.sys
19:35:41.0760 4732 epfwwfpr - ok
19:35:41.0776 4732 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
19:35:41.0791 4732 ErrDev - ok
19:35:41.0854 4732 esgiguard - ok
19:35:41.0900 4732 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
19:35:41.0916 4732 EventSystem - ok
19:35:41.0994 4732 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
19:35:42.0041 4732 exfat - ok
19:35:42.0056 4732 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
19:35:42.0072 4732 fastfat - ok
19:35:42.0103 4732 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
19:35:42.0119 4732 Fax - ok
19:35:42.0134 4732 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
19:35:42.0150 4732 fdc - ok
19:35:42.0181 4732 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
19:35:42.0197 4732 fdPHost - ok
19:35:42.0212 4732 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
19:35:42.0244 4732 FDResPub - ok
19:35:42.0275 4732 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
19:35:42.0275 4732 FileInfo - ok
19:35:42.0290 4732 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
19:35:42.0306 4732 Filetrace - ok
19:35:42.0400 4732 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:35:42.0431 4732 FLEXnet Licensing Service - ok
19:35:42.0493 4732 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
19:35:42.0509 4732 flpydisk - ok
19:35:42.0556 4732 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
19:35:42.0571 4732 FltMgr - ok
19:35:42.0649 4732 FontCache (7fe4995528a7529a761875151ee3d512) C:\Windows\system32\FntCache.dll
19:35:42.0680 4732 FontCache - ok
19:35:42.0727 4732 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:35:42.0727 4732 FontCache3.0.0.0 - ok
19:35:42.0790 4732 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
19:35:42.0805 4732 FsDepends - ok
19:35:42.0821 4732 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
19:35:42.0836 4732 Fs_Rec - ok
19:35:42.0883 4732 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
19:35:42.0899 4732 fvevol - ok
19:35:42.0930 4732 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:35:42.0946 4732 gagp30kx - ok
19:35:42.0977 4732 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
19:35:42.0992 4732 gpsvc - ok
19:35:43.0055 4732 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
19:35:43.0070 4732 hcw85cir - ok
19:35:43.0102 4732 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
19:35:43.0117 4732 HdAudAddService - ok
19:35:43.0133 4732 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:35:43.0148 4732 HDAudBus - ok
19:35:43.0180 4732 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
19:35:43.0180 4732 HidBatt - ok
19:35:43.0195 4732 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
19:35:43.0211 4732 HidBth - ok
19:35:43.0289 4732 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
19:35:43.0304 4732 HidIr - ok
19:35:43.0336 4732 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\System32\hidserv.dll
19:35:43.0382 4732 hidserv - ok
19:35:43.0429 4732 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
19:35:43.0429 4732 HidUsb - ok
19:35:43.0460 4732 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
19:35:43.0492 4732 hkmsvc - ok
19:35:43.0538 4732 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
19:35:43.0570 4732 HomeGroupListener - ok
19:35:43.0585 4732 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
19:35:43.0616 4732 HomeGroupProvider - ok
19:35:43.0648 4732 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
19:35:43.0663 4732 HpSAMD - ok
19:35:43.0710 4732 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
19:35:43.0741 4732 HTTP - ok
19:35:43.0804 4732 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
19:35:43.0819 4732 hwpolicy - ok
19:35:43.0864 4732 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
19:35:43.0884 4732 i8042prt - ok
19:35:43.0922 4732 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
19:35:43.0934 4732 iaStorV - ok
19:35:43.0994 4732 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:35:44.0025 4732 idsvc - ok
19:35:44.0197 4732 igfx (27d15d69ba5565f42ecdec6902c1a1e3) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:35:44.0275 4732 igfx ( UnsignedFile.Multi.Generic ) - warning
19:35:44.0275 4732 igfx - detected UnsignedFile.Multi.Generic (1)
19:35:44.0306 4732 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
19:35:44.0306 4732 iirsp - ok
19:35:44.0400 4732 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
19:35:44.0431 4732 IKEEXT - ok
19:35:44.0447 4732 Impcd (2db41ba61d5e44d0667cf126d35dcf34) C:\Windows\system32\DRIVERS\Impcd.sys
19:35:44.0462 4732 Impcd - ok
19:35:44.0556 4732 IntcAzAudAddService (e61611bacbe257c26a8951d6d096a248) C:\Windows\system32\drivers\RTKVHDA.sys
19:35:44.0603 4732 IntcAzAudAddService - ok
19:35:44.0618 4732 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
19:35:44.0634 4732 intelide - ok
19:35:44.0709 4732 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
19:35:44.0726 4732 intelppm - ok
19:35:44.0747 4732 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
19:35:44.0794 4732 IPBusEnum - ok
19:35:44.0825 4732 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:35:44.0841 4732 IpFilterDriver - ok
19:35:44.0872 4732 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
19:35:44.0887 4732 iphlpsvc - ok
19:35:44.0903 4732 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:35:44.0919 4732 IPMIDRV - ok
19:35:44.0981 4732 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
19:35:45.0012 4732 IPNAT - ok
19:35:45.0043 4732 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
19:35:45.0059 4732 IRENUM - ok
19:35:45.0090 4732 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
19:35:45.0090 4732 isapnp - ok
19:35:45.0106 4732 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
19:35:45.0121 4732 iScsiPrt - ok
19:35:45.0168 4732 IviRegMgr (213822072085b5bbad9af30ab577d817) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
19:35:45.0184 4732 IviRegMgr - ok
19:35:45.0246 4732 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:35:45.0262 4732 kbdclass - ok
19:35:45.0277 4732 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
19:35:45.0293 4732 kbdhid - ok
19:35:45.0309 4732 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
19:35:45.0324 4732 KeyIso - ok
19:35:45.0355 4732 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
19:35:45.0371 4732 KSecDD - ok
19:35:45.0402 4732 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
19:35:45.0418 4732 KSecPkg - ok
19:35:45.0480 4732 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
19:35:45.0511 4732 KtmRm - ok
19:35:45.0558 4732 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\Windows\System32\srvsvc.dll
19:35:45.0574 4732 LanmanServer - ok
19:35:45.0605 4732 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
19:35:45.0636 4732 LanmanWorkstation - ok
19:35:45.0683 4732 LightScribeService (0ee66bdf485c6828aa65c0ef5d591133) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:35:45.0699 4732 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
19:35:45.0699 4732 LightScribeService - detected UnsignedFile.Multi.Generic (1)
19:35:45.0808 4732 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\Windows\system32\DRIVERS\lirsgt.sys
19:35:45.0808 4732 lirsgt - ok
19:35:45.0855 4732 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
19:35:45.0901 4732 lltdio - ok
19:35:45.0917 4732 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
19:35:45.0948 4732 lltdsvc - ok
19:35:45.0964 4732 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
19:35:45.0979 4732 lmhosts - ok
19:35:46.0011 4732 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:35:46.0011 4732 LSI_FC - ok
19:35:46.0073 4732 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:35:46.0089 4732 LSI_SAS - ok
19:35:46.0104 4732 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:35:46.0120 4732 LSI_SAS2 - ok
19:35:46.0135 4732 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:35:46.0135 4732 LSI_SCSI - ok
19:35:46.0167 4732 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
19:35:46.0182 4732 luafv - ok
19:35:46.0198 4732 ManyCam (c6d085c7045200143528136a43a65fde) C:\Windows\system32\DRIVERS\ManyCam.sys
19:35:46.0213 4732 ManyCam - ok
19:35:46.0276 4732 MBAMProtector - ok
19:35:46.0354 4732 MBAMService (fa083726e6ca3fc67fac69c1118f1f03) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:35:46.0385 4732 MBAMService - ok
19:35:46.0416 4732 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
19:35:46.0432 4732 Mcx2Svc - ok
19:35:46.0447 4732 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
19:35:46.0463 4732 megasas - ok
19:35:46.0525 4732 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
19:35:46.0557 4732 MegaSR - ok
19:35:46.0572 4732 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
19:35:46.0588 4732 MMCSS - ok
19:35:46.0619 4732 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
19:35:46.0650 4732 Modem - ok
19:35:46.0666 4732 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
19:35:46.0681 4732 monitor - ok
19:35:46.0759 4732 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
19:35:46.0782 4732 mouclass - ok
19:35:46.0812 4732 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
19:35:46.0832 4732 mouhid - ok
19:35:46.0847 4732 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
19:35:46.0857 4732 mountmgr - ok
19:35:46.0877 4732 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
19:35:46.0885 4732 mpio - ok
19:35:46.0915 4732 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
19:35:46.0935 4732 mpsdrv - ok
19:35:46.0995 4732 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
19:35:47.0026 4732 MpsSvc - ok
19:35:47.0057 4732 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
19:35:47.0057 4732 MRxDAV - ok
19:35:47.0104 4732 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:35:47.0104 4732 mrxsmb - ok
19:35:47.0151 4732 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:35:47.0151 4732 mrxsmb10 - ok
19:35:47.0167 4732 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:35:47.0182 4732 mrxsmb20 - ok
19:35:47.0260 4732 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
19:35:47.0276 4732 msahci - ok
19:35:47.0307 4732 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
19:35:47.0307 4732 msdsm - ok
19:35:47.0338 4732 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
19:35:47.0354 4732 MSDTC - ok
19:35:47.0385 4732 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
19:35:47.0416 4732 Msfs - ok
19:35:47.0432 4732 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
19:35:47.0463 4732 mshidkmdf - ok
19:35:47.0525 4732 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
19:35:47.0541 4732 msisadrv - ok
19:35:47.0588 4732 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
19:35:47.0619 4732 MSiSCSI - ok
19:35:47.0637 4732 msiserver - ok
19:35:47.0682 4732 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
19:35:47.0717 4732 MSKSSRV - ok
19:35:47.0730 4732 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
19:35:47.0750 4732 MSPCLOCK - ok
19:35:47.0765 4732 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
19:35:47.0781 4732 MSPQM - ok
19:35:47.0796 4732 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
19:35:47.0812 4732 MsRPC - ok
19:35:47.0890 4732 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
19:35:47.0906 4732 mssmbios - ok
19:35:47.0921 4732 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
19:35:47.0937 4732 MSTEE - ok
19:35:47.0952 4732 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
19:35:47.0968 4732 MTConfig - ok
19:35:47.0984 4732 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
19:35:47.0999 4732 Mup - ok
19:35:48.0030 4732 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
19:35:48.0046 4732 napagent - ok
19:35:48.0124 4732 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
19:35:48.0155 4732 NativeWifiP - ok
19:35:48.0233 4732 NBService (87a00faedd703d8d2bdcb29ce5eeea6b) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
19:35:48.0264 4732 NBService ( UnsignedFile.Multi.Generic ) - warning
19:35:48.0264 4732 NBService - detected UnsignedFile.Multi.Generic (1)
19:35:48.0296 4732 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
19:35:48.0327 4732 NDIS - ok
19:35:48.0405 4732 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
19:35:48.0436 4732 NdisCap - ok
19:35:48.0452 4732 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
19:35:48.0483 4732 NdisTapi - ok
19:35:48.0498 4732 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
19:35:48.0514 4732 Ndisuio - ok
19:35:48.0545 4732 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
19:35:48.0561 4732 NdisWan - ok
19:35:48.0639 4732 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
19:35:48.0670 4732 NDProxy - ok
19:35:48.0686 4732 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
19:35:48.0701 4732 NetBIOS - ok
19:35:48.0717 4732 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
19:35:48.0732 4732 NetBT - ok
19:35:48.0764 4732 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
19:35:48.0764 4732 Netlogon - ok
19:35:48.0795 4732 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
19:35:48.0826 4732 Netman - ok
19:35:48.0873 4732 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
19:35:48.0904 4732 netprofm - ok
19:35:48.0951 4732 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:35:48.0966 4732 NetTcpPortSharing - ok
19:35:48.0998 4732 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
19:35:48.0998 4732 nfrd960 - ok
19:35:49.0029 4732 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
19:35:49.0044 4732 NlaSvc - ok
19:35:49.0107 4732 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
19:35:49.0138 4732 Npfs - ok
19:35:49.0154 4732 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
19:35:49.0185 4732 nsi - ok
19:35:49.0200 4732 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
19:35:49.0216 4732 nsiproxy - ok
19:35:49.0247 4732 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
19:35:49.0278 4732 Ntfs - ok
19:35:49.0278 4732 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
19:35:49.0294 4732 Null - ok
19:35:49.0325 4732 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
19:35:49.0341 4732 nvraid - ok
19:35:49.0403 4732 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
19:35:49.0434 4732 nvstor - ok
19:35:49.0450 4732 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
19:35:49.0450 4732 nv_agp - ok
19:35:49.0544 4732 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:35:49.0575 4732 odserv - ok
19:35:49.0590 4732 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
19:35:49.0606 4732 ohci1394 - ok
19:35:49.0637 4732 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:35:49.0637 4732 ose - ok
19:35:49.0715 4732 OxPPort (05564282ea0fa0c7543452d7bc46a4fb) C:\Windows\system32\DRIVERS\OxPPort.sys
19:35:49.0731 4732 OxPPort - ok
19:35:49.0746 4732 OxSer (a47925ceef0c0ae51409ddd551c5e3e5) C:\Windows\system32\DRIVERS\OxSer.sys
19:35:49.0762 4732 OxSer - ok
19:35:49.0801 4732 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
19:35:49.0816 4732 p2pimsvc - ok
19:35:49.0836 4732 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
19:35:49.0853 4732 p2psvc - ok
19:35:49.0866 4732 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
19:35:49.0876 4732 Parport - ok
19:35:49.0896 4732 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
19:35:49.0903 4732 partmgr - ok
19:35:49.0963 4732 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
19:35:49.0981 4732 Parvdm - ok
19:35:49.0996 4732 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
19:35:50.0027 4732 PcaSvc - ok
19:35:50.0027 4732 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
19:35:50.0042 4732 pci - ok
19:35:50.0058 4732 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
19:35:50.0074 4732 pciide - ok
19:35:50.0089 4732 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
19:35:50.0105 4732 pcmcia - ok
19:35:50.0167 4732 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
19:35:50.0183 4732 pcw - ok
19:35:50.0214 4732 pdfcDispatcher - ok
19:35:50.0245 4732 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
19:35:50.0292 4732 PEAUTH - ok
19:35:50.0354 4732 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
19:35:50.0401 4732 pla - ok
19:35:50.0479 4732 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\Windows\system32\umpnpmgr.dll
19:35:50.0510 4732 PlugPlay - ok
19:35:50.0588 4732 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\Windows\system32\PnkBstrA.exe
19:35:50.0588 4732 PnkBstrA - ok
19:35:50.0638 4732 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
19:35:50.0658 4732 PNRPAutoReg - ok
19:35:50.0718 4732 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
19:35:50.0740 4732 PNRPsvc - ok
19:35:50.0768 4732 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
19:35:50.0799 4732 PolicyAgent - ok
19:35:50.0815 4732 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
19:35:50.0846 4732 Power - ok
19:35:50.0877 4732 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
19:35:50.0893 4732 PptpMiniport - ok
19:35:50.0971 4732 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
19:35:50.0986 4732 Processor - ok
19:35:51.0017 4732 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
19:35:51.0049 4732 ProfSvc - ok
19:35:51.0064 4732 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
19:35:51.0080 4732 ProtectedStorage - ok
19:35:51.0111 4732 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
19:35:51.0127 4732 Psched - ok
19:35:51.0189 4732 PSI_SVC_2 (a6a7ad767bf5141665f5c675f671b3e1) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
19:35:51.0205 4732 PSI_SVC_2 - ok
19:35:51.0298 4732 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
19:35:51.0314 4732 PxHelp20 - ok
19:35:51.0376 4732 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
19:35:51.0423 4732 ql2300 - ok
19:35:51.0439 4732 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
19:35:51.0454 4732 ql40xx - ok
19:35:51.0485 4732 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
19:35:51.0485 4732 QWAVE - ok
19:35:51.0563 4732 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
19:35:51.0579 4732 QWAVEdrv - ok
19:35:51.0610 4732 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
19:35:51.0626 4732 RasAcd - ok
19:35:51.0657 4732 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:35:51.0704 4732 RasAgileVpn - ok
19:35:51.0719 4732 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
19:35:51.0735 4732 RasAuto - ok
19:35:51.0751 4732 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:35:51.0782 4732 Rasl2tp - ok
19:35:51.0860 4732 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
19:35:51.0891 4732 RasMan - ok
19:35:51.0907 4732 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
19:35:51.0938 4732 RasPppoe - ok
19:35:51.0969 4732 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
19:35:52.0000 4732 RasSstp - ok
19:35:52.0016 4732 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
19:35:52.0047 4732 rdbss - ok
19:35:52.0063 4732 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
19:35:52.0078 4732 rdpbus - ok
19:35:52.0125 4732 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:35:52.0156 4732 RDPCDD - ok
19:35:52.0187 4732 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
19:35:52.0203 4732 RDPENCDD - ok
19:35:52.0234 4732 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
19:35:52.0250 4732 RDPREFMP - ok
19:35:52.0265 4732 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
19:35:52.0297 4732 RDPWD - ok
19:35:52.0375 4732 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
19:35:52.0390 4732 rdyboost - ok
19:35:52.0437 4732 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
19:35:52.0437 4732 regi - ok
19:35:52.0468 4732 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
19:35:52.0515 4732 RemoteAccess - ok
19:35:52.0546 4732 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
19:35:52.0577 4732 RemoteRegistry - ok
19:35:52.0624 4732 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
19:35:52.0640 4732 RpcEptMapper - ok
19:35:52.0671 4732 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
19:35:52.0687 4732 RpcLocator - ok
19:35:52.0702 4732 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
19:35:52.0718 4732 RpcSs - ok
19:35:52.0765 4732 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
19:35:52.0780 4732 rspndr - ok
19:35:52.0824 4732 RTL8167 (80b66a4181f782884a815e69d0afa743) C:\Windows\system32\DRIVERS\Rt86win7.sys
19:35:52.0831 4732 RTL8167 - ok
19:35:52.0921 4732 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
19:35:52.0939 4732 SamSs - ok
19:35:52.0989 4732 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
19:35:52.0996 4732 sbp2port - ok
19:35:53.0028 4732 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
19:35:53.0074 4732 SCardSvr - ok
19:35:53.0121 4732 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
19:35:53.0152 4732 scfilter - ok
19:35:53.0184 4732 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\Windows\system32\schedsvc.dll
19:35:53.0199 4732 Schedule - ok
19:35:53.0230 4732 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
19:35:53.0246 4732 SCPolicySvc - ok
19:35:53.0277 4732 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
19:35:53.0293 4732 SDRSVC - ok
19:35:53.0360 4732 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:35:53.0392 4732 secdrv - ok
19:35:53.0405 4732 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
19:35:53.0427 4732 seclogon - ok
19:35:53.0450 4732 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\system32\sens.dll
19:35:53.0472 4732 SENS - ok
19:35:53.0482 4732 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
19:35:53.0495 4732 SensrSvc - ok
19:35:53.0545 4732 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
19:35:53.0562 4732 Serenum - ok
19:35:53.0602 4732 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
19:35:53.0620 4732 Serial - ok
19:35:53.0637 4732 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
19:35:53.0650 4732 sermouse - ok
19:35:53.0685 4732 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
19:35:53.0707 4732 SessionEnv - ok
19:35:53.0745 4732 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
19:35:53.0755 4732 sffdisk - ok
19:35:53.0787 4732 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:35:53.0803 4732 sffp_mmc - ok
19:35:53.0858 4732 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:35:53.0868 4732 sffp_sd - ok
19:35:53.0891 4732 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
19:35:53.0893 4732 sfloppy - ok
19:35:53.0924 4732 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
19:35:53.0956 4732 SharedAccess - ok
19:35:53.0987 4732 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
19:35:54.0002 4732 ShellHWDetection - ok
19:35:54.0034 4732 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
19:35:54.0034 4732 sisagp - ok
19:35:54.0096 4732 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:35:54.0112 4732 SiSRaid2 - ok
19:35:54.0127 4732 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
19:35:54.0127 4732 SiSRaid4 - ok
19:35:54.0236 4732 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
19:35:54.0252 4732 SkypeUpdate - ok
19:35:54.0330 4732 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
19:35:54.0377 4732 Smb - ok
19:35:54.0408 4732 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
19:35:54.0408 4732 SNMPTRAP - ok
19:35:54.0626 4732 SNPSTD3 (1fc7d765c779c4ad438b011fa2577c44) C:\Windows\system32\DRIVERS\snpstd3.sys
19:35:54.0720 4732 SNPSTD3 - ok
19:35:54.0814 4732 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
19:35:54.0829 4732 spldr - ok
19:35:54.0876 4732 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\Windows\System32\spoolsv.exe
19:35:54.0907 4732 Spooler - ok
19:35:54.0985 4732 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
19:35:55.0032 4732 sppsvc - ok
19:35:55.0048 4732 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
19:35:55.0063 4732 sppuinotify - ok
19:35:55.0141 4732 sptd (a199171385be17973fd800fa91f8f78a) C:\Windows\system32\Drivers\sptd.sys
19:35:55.0141 4732 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
19:35:55.0141 4732 sptd ( LockedFile.Multi.Generic ) - warning
19:35:55.0141 4732 sptd - detected LockedFile.Multi.Generic (1)
19:35:55.0188 4732 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\Windows\system32\DRIVERS\srv.sys
19:35:55.0204 4732 srv - ok
19:35:55.0219 4732 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\Windows\system32\DRIVERS\srv2.sys
19:35:55.0235 4732 srv2 - ok
19:35:55.0250 4732 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\Windows\system32\DRIVERS\srvnet.sys
19:35:55.0250 4732 srvnet - ok
19:35:55.0282 4732 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
19:35:55.0297 4732 SSDPSRV - ok
19:35:55.0360 4732 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
19:35:55.0391 4732 SstpSvc - ok
19:35:55.0500 4732 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
19:35:55.0500 4732 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
19:35:55.0500 4732 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
19:35:55.0531 4732 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
19:35:55.0547 4732 stexstor - ok
19:35:55.0625 4732 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
19:35:55.0656 4732 StiSvc - ok
19:35:55.0672 4732 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
19:35:55.0687 4732 swenum - ok
19:35:55.0765 4732 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:35:55.0796 4732 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
19:35:55.0796 4732 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
19:35:55.0838 4732 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
19:35:55.0880 4732 swprv - ok
19:35:55.0960 4732 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
19:35:55.0995 4732 SysMain - ok
19:35:55.0998 4732 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
19:35:56.0013 4732 TabletInputService - ok
19:35:56.0029 4732 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
19:35:56.0045 4732 TapiSrv - ok
19:35:56.0076 4732 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
19:35:56.0091 4732 TBS - ok
19:35:56.0154 4732 Tcpip (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\drivers\tcpip.sys
19:35:56.0201 4732 Tcpip - ok
19:35:56.0279 4732 TCPIP6 (c2daaeb48f3a47c410b041a0d2382ee1) C:\Windows\system32\DRIVERS\tcpip.sys
19:35:56.0317 4732 TCPIP6 - ok
19:35:56.0342 4732 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
19:35:56.0362 4732 tcpipreg - ok
19:35:56.0382 4732 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
19:35:56.0402 4732 TDPIPE - ok
19:35:56.0417 4732 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
19:35:56.0437 4732 TDTCP - ok
19:35:56.0457 4732 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
19:35:56.0480 4732 tdx - ok
19:35:56.0547 4732 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
19:35:56.0555 4732 TermDD - ok
19:35:56.0592 4732 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
19:35:56.0625 4732 TermService - ok
19:35:56.0640 4732 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
19:35:56.0655 4732 Themes - ok
19:35:56.0685 4732 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
19:35:56.0707 4732 THREADORDER - ok
19:35:56.0722 4732 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
19:35:56.0745 4732 TrkWks - ok
19:35:56.0772 4732 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
19:35:56.0785 4732 TrustedInstaller - ok
19:35:56.0865 4732 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:35:56.0900 4732 tssecsrv - ok
19:35:56.0931 4732 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
19:35:56.0978 4732 tunnel - ok
19:35:56.0993 4732 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
19:35:57.0009 4732 uagp35 - ok
19:35:57.0025 4732 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
19:35:57.0056 4732 udfs - ok
19:35:57.0097 4732 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
19:35:57.0119 4732 UI0Detect - ok
19:35:57.0192 4732 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
19:35:57.0204 4732 uliagpkx - ok
19:35:57.0229 4732 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
19:35:57.0239 4732 umbus - ok
19:35:57.0264 4732 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
19:35:57.0274 4732 UmPass - ok
19:35:57.0299 4732 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
19:35:57.0322 4732 upnphost - ok
19:35:57.0377 4732 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
19:35:57.0389 4732 usbaudio - ok
19:35:57.0437 4732 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
19:35:57.0457 4732 usbccgp - ok
19:35:57.0489 4732 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
19:35:57.0507 4732 usbcir - ok
19:35:57.0532 4732 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
19:35:57.0542 4732 usbehci - ok
19:35:57.0584 4732 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
19:35:57.0607 4732 usbhub - ok
19:35:57.0622 4732 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
19:35:57.0634 4732 usbohci - ok
19:35:57.0647 4732 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
19:35:57.0662 4732 usbprint - ok
19:35:57.0699 4732 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:35:57.0709 4732 USBSTOR - ok
19:35:57.0724 4732 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
19:35:57.0744 4732 usbuhci - ok
19:35:57.0774 4732 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
19:35:57.0797 4732 UxSms - ok
19:35:57.0839 4732 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
19:35:57.0852 4732 VaultSvc - ok
19:35:57.0904 4732 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
19:35:57.0912 4732 vdrvroot - ok
19:35:57.0937 4732 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
19:35:57.0952 4732 vds - ok
19:35:57.0972 4732 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
19:35:57.0982 4732 vga - ok
19:35:57.0997 4732 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
19:35:58.0019 4732 VgaSave - ok
19:35:58.0064 4732 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
19:35:58.0072 4732 vhdmp - ok
19:35:58.0119 4732 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
19:35:58.0127 4732 viaagp - ok
19:35:58.0139 4732 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
19:35:58.0149 4732 ViaC7 - ok
19:35:58.0164 4732 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
19:35:58.0172 4732 viaide - ok
19:35:58.0197 4732 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
19:35:58.0204 4732 volmgr - ok
19:35:58.0232 4732 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
19:35:58.0244 4732 volmgrx - ok
19:35:58.0279 4732 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
19:35:58.0289 4732 volsnap - ok
19:35:58.0337 4732 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
19:35:58.0344 4732 vsmraid - ok
19:35:58.0387 4732 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
19:35:58.0407 4732 VSS - ok
19:35:58.0419 4732 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
19:35:58.0429 4732 vwifibus - ok
19:35:58.0442 4732 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
19:35:58.0467 4732 W32Time - ok
19:35:58.0489 4732 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
19:35:58.0502 4732 WacomPen - ok
19:35:58.0589 4732 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
19:35:58.0612 4732 WANARP - ok
19:35:58.0614 4732 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
19:35:58.0637 4732 Wanarpv6 - ok
19:35:58.0699 4732 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
19:35:58.0729 4732 WatAdminSvc - ok
19:35:58.0774 4732 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
19:35:58.0797 4732 wbengine - ok
19:35:58.0847 4732 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
19:35:58.0872 4732 WbioSrvc - ok
19:35:58.0902 4732 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\Windows\System32\wcncsvc.dll
19:35:58.0917 4732 wcncsvc - ok
19:35:58.0934 4732 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
19:35:58.0944 4732 WcsPlugInService - ok
19:35:58.0969 4732 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
19:35:58.0977 4732 Wd - ok
19:35:59.0012 4732 Wdf01000 (73c5809c82828e34232f9811cb51490e) C:\Windows\system32\drivers\Wdf01000.sys
19:35:59.0014 4732 Wdf01000 ( Virus.Win32.Rloader.a ) - infected
19:35:59.0017 4732 Wdf01000 - detected Virus.Win32.Rloader.a (0)
19:35:59.0069 4732 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
19:35:59.0082 4732 WdiServiceHost - ok
19:35:59.0084 4732 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
19:35:59.0089 4732 WdiSystemHost - ok
19:35:59.0121 4732 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\Windows\System32\webclnt.dll
19:35:59.0136 4732 WebClient - ok
19:35:59.0152 4732 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
19:35:59.0183 4732 Wecsvc - ok
19:35:59.0183 4732 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
19:35:59.0214 4732 wercplsupport - ok
19:35:59.0245 4732 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
19:35:59.0261 4732 WerSvc - ok
19:35:59.0323 4732 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
19:35:59.0370 4732 WfpLwf - ok
19:35:59.0401 4732 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
19:35:59.0401 4732 WIMMount - ok
19:35:59.0464 4732 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
19:35:59.0495 4732 WinDefend - ok
19:35:59.0495 4732 WinHttpAutoProxySvc - ok
19:35:59.0544 4732 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
19:35:59.0564 4732 Winmgmt - ok
19:35:59.0646 4732 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
19:35:59.0692 4732 WinRM - ok
19:35:59.0739 4732 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
19:35:59.0770 4732 WinUsb - ok
19:35:59.0802 4732 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
19:35:59.0817 4732 Wlansvc - ok
19:35:59.0947 4732 wlidsvc (5144ae67d60ec653f97ddf3feed29e77) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:35:59.0979 4732 wlidsvc - ok
19:36:00.0067 4732 WmBEnum (5d410936831f7fb58eff941eac3f6d3d) C:\Windows\system32\drivers\WmBEnum.sys
19:36:00.0074 4732 WmBEnum - ok
19:36:00.0107 4732 WmFilter (7a13cfde92956ca61a0927d766c5ad4f) C:\Windows\system32\drivers\WmFilter.sys
19:36:00.0112 4732 WmFilter - ok
19:36:00.0157 4732 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:36:00.0164 4732 WmiAcpi - ok
19:36:00.0209 4732 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
19:36:00.0219 4732 wmiApSrv - ok
19:36:00.0297 4732 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:36:00.0322 4732 WMPNetworkSvc - ok
19:36:00.0404 4732 WmVirHid (6f04646bc690f8bbfc344be32a60796d) C:\Windows\system32\drivers\WmVirHid.sys
19:36:00.0409 4732 WmVirHid - ok
19:36:00.0429 4732 WmXlCore (1d6ca43d562333f4dfb40bcef2453f3a) C:\Windows\system32\drivers\WmXlCore.sys
19:36:00.0434 4732 WmXlCore - ok
19:36:00.0459 4732 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
19:36:00.0469 4732 WPCSvc - ok
19:36:00.0499 4732 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
19:36:00.0509 4732 WPDBusEnum - ok
19:36:00.0524 4732 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
19:36:00.0544 4732 ws2ifsl - ok
19:36:00.0577 4732 wscsvc (a661a76333057b383a06e65f0073222f) C:\Windows\system32\wscsvc.dll
19:36:00.0587 4732 wscsvc - ok
19:36:00.0629 4732 WSearch - ok
19:36:00.0687 4732 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
19:36:00.0727 4732 wuauserv - ok
19:36:00.0743 4732 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
19:36:00.0758 4732 WudfPf - ok
19:36:00.0805 4732 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:36:00.0836 4732 WUDFRd - ok
19:36:00.0914 4732 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
19:36:00.0961 4732 wudfsvc - ok
19:36:00.0977 4732 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
19:36:00.0992 4732 WwanSvc - ok
19:36:01.0008 4732 MBR (0x1B8) (b51c9e201465e8a06e1961e9d7fcfc65) \Device\Harddisk0\DR0
19:36:01.0289 4732 \Device\Harddisk0\DR0 - ok
19:36:01.0304 4732 Boot (0x1200) (63451a714c7c7203ded3d2b179ec2ebc) \Device\Harddisk0\DR0\Partition0
19:36:01.0304 4732 \Device\Harddisk0\DR0\Partition0 - ok
19:36:01.0320 4732 Boot (0x1200) (b264e1d1bb348bf221491661d99141ce) \Device\Harddisk0\DR0\Partition1
19:36:01.0320 4732 \Device\Harddisk0\DR0\Partition1 - ok
19:36:01.0335 4732 Boot (0x1200) (c4e30372676cd0105a1fb8e409ecd850) \Device\Harddisk0\DR0\Partition2
19:36:01.0335 4732 \Device\Harddisk0\DR0\Partition2 - ok
19:36:01.0367 4732 Boot (0x1200) (15e4a11f59687a4da05efb6c4d9643e5) \Device\Harddisk0\DR0\Partition3
19:36:01.0367 4732 \Device\Harddisk0\DR0\Partition3 - ok
19:36:01.0367 4732 ============================================================
19:36:01.0367 4732 Scan finished
19:36:01.0367 4732 ============================================================
19:36:01.0398 4828 Detected object count: 7
19:36:01.0398 4828 Actual detected object count: 7
19:36:40.0574 4828 igfx ( UnsignedFile.Multi.Generic ) - skipped by user
19:36:40.0574 4828 igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:36:40.0574 4828 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
19:36:40.0574 4828 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:36:40.0574 4828 NBService ( UnsignedFile.Multi.Generic ) - skipped by user
19:36:40.0590 4828 NBService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:36:40.0590 4828 sptd ( LockedFile.Multi.Generic ) - skipped by user
19:36:40.0590 4828 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
19:36:40.0590 4828 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
19:36:40.0590 4828 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:36:40.0590 4828 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
19:36:40.0590 4828 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:36:40.0683 4828 C:\Windows\system32\drivers\Wdf01000.sys - copied to quarantine
19:36:43.0226 4828 Backup copy not found, trying to cure infected file..
19:36:43.0226 4828 Cure success, using it..
19:36:43.0242 4828 C:\Windows\system32\drivers\Wdf01000.sys - will be cured on reboot
19:36:43.0242 4828 Wdf01000 ( Virus.Win32.Rloader.a ) - User select action: Cure
19:36:51.0470 2964 Deinitialize success

buhtak · #39 Příspěvek od **buhtak** » 16 dub 2012 17:42

viruskasino.com/2011/06/olmarik-trojan.html - táto ale mne nejde načítať takže už asi neexistuje?..

MBRScan v1.1.1

OS : Windows 7 (32 bit)
PROCESSOR : x86 Family 6 Model 23 Stepping 10, GenuineIntel
BOOT : Normal Boot
DATE : 2012/04/16 (ISO 8601) at 18:44:13
________________________________________________________________________________

DISK : Device\Harddisk0\DR0 __Hitachi HDS721064CLA332 (JPGOA3BF)
BUS_TYPE : (0x03) P-ATA
USE_PIO : NO
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

Device\Harddisk0\DR0 596.2 Go [Fixed] ==> HP Recovery Manager

MBR_MD5 : 72F22A34025DAD34D0C32F422E472066
MBR_SHA1 : 156681E0F9E5B63E12B47F9DCE2FE440A9709DFC

Device\Harddisk0\Partition1 100.0 Mo 0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2 298.5 Go 0x07 NTFS / HPFS
Device\Harddisk0\Partition3 8.25 Go 0x07 NTFS / HPFS
Device\Harddisk0\Partition4 289.4 Go 0x07 NTFS / HPFS
________________________________________________________________________________

############################### Additional scan ################################

DRIVER : C:\Windows\System32\Drivers\sptd.sys => LOCKED!
ADDRESS : 0x8B414000
SIZE : 1.07 Mo

DRIVER : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x99377000
SIZE : 44.0 Ko

DRIVER : C:\Windows\System32\Drivers\dump_atapi.sys => Invisible on the disk
ADDRESS : 0x99382000
SIZE : 36.0 Ko

DRIVER : C:\Windows\System32\Drivers\dump_dumpfve.sys => Invisible on the disk
ADDRESS : 0x9938B000
SIZE : 68.0 Ko

BCD EmsSettings {0CE4991B-E6B3-4B16-B23C-5E0D9250E5D9} => BcdLibraryBoolean_EmsEnabled (16000020)

SystemStartOptions : NOEXECUTE=OPTIN

________________________________________________________________________________

_______MBR \Device\Harddisk0\DR0

0x00000000 33 C0 8E D0 BC 00 7C FB 8E C0 8E D8 8B F4 BF 00 3À.Ð¼.|û.À.Ø.ô¿.
0x00000010 06 B9 00 02 FC F3 A4 EA 60 06 00 00 00 00 00 00 .¹..üó¤ê`.......
0x00000020 52 65 63 6F 76 65 72 79 4D 67 72 20 00 10 7D 49 RecoveryMgr ..}I
0x00000030 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x00000040 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0D 0A ................
0x00000050 00 00 00 00 57 00 00 00 FF FF FF FF FF FF FF FF ....W...........
0x00000060 86 4C BD BE 30 06 AC B4 0E 33 DB CD 10 0A C0 75 .L½¾0.¬´.3ÛÍ..Àu
0x00000070 F5 E3 0B FE 06 13 06 53 53 E8 70 00 EB 39 B4 11 õã.þ...SSèp.ë9´.
0x00000080 CD 16 74 2D B4 10 CD 16 80 FC 85 75 F1 3C 00 75 Í.t-´.Í..ü.uñ<.u
0x00000090 ED EB 24 8B 16 6C 04 FA 66 A1 1C 06 BF 54 06 B1 íë$..l.úf¡..¿T.±
0x000000A0 03 F2 66 AF FB 3D 00 00 6C 04 2B C2 83 F8 24 76 .òf¯û=..l.+Â.ø$v
0x000000B0 E6 B0 01 84 C0 75 1C BB C6 7D 66 8B 37 66 8B 3E æ°..Àu.»Æ}f.7f.>
0x000000C0 2C 06 66 3B F7 74 07 80 C3 10 73 EE EB 05 BB 28 ,.f;÷t..Ã.sîë.»(
0x000000D0 06 EB 10 BB C2 7D 80 7F FC 00 78 07 80 C3 10 73 .ë.»Â}..ü.x..Ã.s
0x000000E0 F5 EB FE 66 FF 77 04 E8 02 00 FF E4 C8 10 00 00 õëþf.w.è...äÈ...
0x000000F0 B4 08 B2 80 CD 13 8A C1 24 3F FE C6 8A D8 F6 E6 ´.².Í..Á$?þÆ.Øöæ
0x00000100 C0 E9 06 86 CD 41 91 F7 E1 39 56 06 8B 56 06 8B Àé..ÍA.÷á9V..V..
0x00000110 46 04 73 1C F7 F1 91 92 F6 F3 86 CD C0 E1 06 02 F.s.÷ñ..öó.ÍÀá..
0x00000120 CC 41 8A F0 B8 01 02 BB 00 7C 86 26 13 06 EB 14 ÌA.ð¸..».|.&..ë.
0x00000130 83 C4 10 0E 0E 52 50 0E 68 00 7C 6A 01 6A 10 8B .Ä...RP.h.|j.j..
0x00000140 F4 B8 00 42 B2 80 CD 13 C9 C2 04 00 1E 50 53 0E ô¸.B².Í.ÉÂ...PS.
0x00000150 1F BB 1B 06 A0 17 04 24 0F 88 47 04 E4 60 3C E0 .».....$..G.ä`<à
0x00000160 74 1A 3C 1D 74 10 3C 2A 74 0C 3C 36 74 08 3C 38 t.<.t.<*t.<6t.<8
0x00000170 74 04 84 C0 79 06 66 83 27 00 EB 06 FE 07 02 1F t..Ày.f.'.ë.þ...
0x00000180 88 07 5B 58 1F EA 00 00 00 00 00 00 00 00 00 00 ..[X.ê..........
0x00000190 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001B0 00 00 00 00 00 00 00 00 9E 21 63 5D 00 00 80 20 .........!c]...
0x000001C0 21 00 07 DF 13 0C 00 08 00 00 00 20 03 00 00 DF !..ß....... ...ß
0x000001D0 14 0C 07 FE FF FF 00 28 03 00 00 88 4E 25 00 FE ...þ...(....N%.þ
0x000001E0 FF FF 0F FE FF FF 00 B0 51 25 00 60 2B 24 00 FE ...þ...°Q%.`+$.þ
0x000001F0 FF FF 07 FE FF FF 00 10 7D 49 B0 22 08 01 55 AA ...þ....}I°"..Uª

#40 Příspěvek od **vyosek** » 16 dub 2012 17:47

Ta stranka je jednoho z kolegu, vime co na ni bylo...

Dekuji kolegovi za zaskok a krok kupredu

Jeste pro jistotu tam dame CF

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK

Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
Pokud mate Win XP spustte pod uctem Spravce\Administratora
Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

buhtak · #41 Příspěvek od **buhtak** » 16 dub 2012 18:25

ComboFix 12-04-16.02 - chlopi . 04. 2012 19:13:02.4.2 - x86
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.421.1051.18.3071.2155 [GMT 2:00]
Running from: c:\users\chlopi\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((( Files Created from 2012-03-16 to 2012-04-16 )))))))))))))))))))))))))))))))
.
.
2012-04-16 17:18 . 2012-04-16 17:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-04-16 13:36 . 2012-04-16 13:36 -------- d-----w- c:\programdata\ATI
2012-04-16 13:36 . 2012-04-16 13:36 -------- d-----w- c:\programdata\AMD
2012-04-16 13:36 . 2012-04-16 13:36 -------- d-----w- c:\program files\AMD AVT
2012-04-16 13:36 . 2012-04-16 13:36 -------- d-----w- c:\program files\AMD APP
2012-04-15 17:36 . 2012-04-15 17:36 -------- d-----w- C:\TDSSKiller_Quarantine
2012-04-11 16:50 . 2012-04-11 16:50 -------- d-----w- c:\program files\Common Files\Skype
2012-04-03 16:02 . 2012-04-16 17:18 -------- d-----w- c:\users\chlopi\AppData\Local\temp
2012-03-29 15:50 . 2012-03-29 16:16 -------- d-----w- C:\sh4ldr
2012-03-29 15:50 . 2012-03-29 15:50 -------- d-----w- c:\program files\Enigma Software Group
2012-03-29 15:50 . 2012-03-29 16:16 -------- d-----w- c:\windows\4E0C6314A8B84026AC15084E8B63AFB5.TMP
2012-03-25 20:03 . 2012-03-25 20:03 -------- d-----w- c:\users\chlopi\AppData\Roaming\Malwarebytes
2012-03-25 20:03 . 2012-03-25 20:03 -------- d-----w- c:\programdata\Malwarebytes
2012-03-25 20:03 . 2012-03-25 20:03 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-03-25 19:28 . 2012-03-25 19:28 -------- d-----w- c:\program files\ERUNT
2012-03-24 21:31 . 2012-03-24 21:46 -------- d-----w- c:\program files\PC Drummer Trial Edition
2012-03-20 16:05 . 2012-03-20 16:05 -------- d-----w- c:\program files\ASIO4ALL v2
2012-03-20 16:05 . 2012-03-20 16:05 -------- d-----w- c:\program files\VstPlugins
2012-03-20 16:05 . 2002-07-07 22:14 1294336 ----a-w- c:\windows\system32\vorbis.acm
2012-03-20 16:05 . 2012-03-20 16:05 -------- d-----w- c:\program files\Outsim
2012-03-20 16:04 . 2012-03-20 16:05 -------- d-----w- c:\program files\Image-Line
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-04-16 13:41 . 2010-12-01 14:26 140496 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-04-16 13:41 . 2010-12-01 14:26 280736 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-04-16 13:41 . 2010-10-05 18:03 280736 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-04-16 13:21 . 2010-12-01 14:26 280736 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-04-15 17:37 . 2009-07-13 23:11 445008 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-03-09 06:26 . 2012-03-09 06:26 9183232 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-03-09 05:16 . 2012-03-09 05:16 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-03-09 05:16 . 2010-08-26 02:01 791552 ----a-w- c:\windows\system32\aticfx32.dll
2012-03-09 05:11 . 2012-03-09 05:11 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-03-09 05:10 . 2012-03-09 05:10 405504 ----a-w- c:\windows\system32\atieclxx.exe
2012-03-09 05:10 . 2012-03-09 05:10 163328 ----a-w- c:\windows\system32\atiesrxx.exe
2012-03-09 05:08 . 2012-03-09 05:08 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2012-03-09 05:07 . 2012-03-09 05:07 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-03-09 05:07 . 2012-03-09 05:07 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-03-09 05:04 . 2012-03-09 05:04 6200320 ----a-w- c:\windows\system32\atidxx32.dll
2012-03-09 04:39 . 2012-03-09 04:39 19739136 ----a-w- c:\windows\system32\atioglxx.dll
2012-03-09 04:36 . 2012-03-09 04:36 1828864 ----a-w- c:\windows\system32\atiumdmv.dll
2012-03-09 04:23 . 2010-08-26 01:25 5062656 ----a-w- c:\windows\system32\atiumdva.dll
2012-03-09 04:23 . 2010-08-26 01:33 5954048 ----a-w- c:\windows\system32\atiumdag.dll
2012-03-09 04:18 . 2012-03-09 04:18 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-03-09 04:18 . 2012-03-09 04:18 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-03-09 04:12 . 2012-03-09 04:12 13715968 ----a-w- c:\windows\system32\aticaldd.dll
2012-03-09 04:05 . 2012-03-09 04:05 53760 ----a-w- c:\windows\system32\atimpc32.dll
2012-03-09 04:05 . 2012-03-09 04:05 53760 ----a-w- c:\windows\system32\amdpcom32.dll
2012-03-09 03:58 . 2012-03-09 03:58 356352 ----a-w- c:\windows\system32\atiadlxx.dll
2012-03-09 03:58 . 2012-03-09 03:58 14336 ----a-w- c:\windows\system32\atiglpxx.dll
2012-03-09 03:58 . 2012-03-09 03:58 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-03-09 03:57 . 2012-03-09 03:57 265216 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-03-09 03:56 . 2010-08-26 01:20 33280 ----a-w- c:\windows\system32\atiuxpag.dll
2012-03-09 03:56 . 2010-08-26 01:19 30208 ----a-w- c:\windows\system32\atiu9pag.dll
2012-03-09 03:55 . 2012-03-09 03:55 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-03-09 03:47 . 2010-08-26 01:27 51200 ----a-w- c:\windows\system32\coinst.dll
2012-03-08 23:26 . 2012-03-08 23:26 64512 ----a-w- c:\windows\system32\OpenVideo.dll
2012-03-08 23:26 . 2012-03-08 23:26 54784 ----a-w- c:\windows\system32\OVDecode.dll
2012-03-08 23:25 . 2012-03-08 23:25 13238272 ----a-w- c:\windows\system32\amdocl.dll
2012-03-08 23:24 . 2012-03-08 23:24 48128 ----a-w- c:\windows\system32\OpenCL.dll
2012-03-08 16:01 . 2012-03-08 16:01 687653 ----a-w- c:\windows\Counter-Strike 1.6 Standalone Uninstaller.exe
2012-01-31 05:00 . 2012-01-31 05:00 16896 ----a-w- c:\windows\system32\kdbsdk32.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-10-16 2363392]
"EADM"="c:\program files\Origin\Origin.exe" [2011-09-23 27763336]
"Internet Security"="c:\users\chlopi\AppData\Roaming\isecurity.exe" [BU]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-02-29 17148552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"hpsysdrv"="c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-08-12 2215064]
"tsnpstd3"="c:\windows\tsnpstd3.exe" [2006-07-07 262144]
"snpstd3"="c:\windows\vsnpstd3.exe" [2006-09-18 843776]
"Start WingMan Profiler"="c:\program files\Logitech\Gaming Software\LWEMon.exe" [2010-06-14 153672]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-03-09 636032]
.
c:\users\chlopi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
ERUNT AutoBackup.lnk - c:\program files\ERUNT\AUTOBACK.EXE [2005-10-20 38912]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984D045-52CF-49cd-DB77-08F378FEA4DB}"= "c:\program files\Stardock\ObjectDockPlus2\ODMenu.dll" [2010-03-24 511344]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICustomerCare]
2010-03-04 12:31 311296 ----a-w- c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BATINDICATOR]
2009-05-08 23:39 2068992 ----a-w- c:\program files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP KEYBOARDx]
2010-02-11 17:07 710656 ----a-w- c:\program files\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchHPOSIAPP]
2009-04-04 01:24 385024 ----a-w- c:\program files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
2009-10-14 22:53 563736 ----a-w- c:\program files\PDF Complete\pdfsty.exe
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-31 652360]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-02-29 158856]
R3 BopItU2U;BopIt Serial port driver;c:\windows\system32\DRIVERS\BopItU2U.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x32.sys [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-26 125696]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R3 OxPPort;OxPPort;c:\windows\system32\DRIVERS\OxPPort.sys [2008-07-31 82048]
R3 OxSer;OxSer;c:\windows\system32\DRIVERS\OxSer.sys [2009-09-16 83888]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-07-26 1343400]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-03-20 436792]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-03-09 163328]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-08-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2010-07-29 96920]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-10-14 635416]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-18 11032]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-03-09 9183232]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-03-09 265216]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-12-05 86032]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-10-16 10:49 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://www.bing.com
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\chlopi\AppData\Roaming\Mozilla\Firefox\Profiles\sg9zka62.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}
FF - Ext: di.slik.es - the Facebook Dislike Button: dislikes@dige - %profile%\extensions\dislikes@dige
FF - Ext: DivX Plus Web Player HTML5 <video>: {23fcfd51-4958-4f00-80a3-ae97e717ed8b} - c:\program files\DivX\DivX Plus Web Player\firefox\DivXHTML5
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-55753443.sys
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'Explorer.exe'(5728)
c:\program files\Stardock\ObjectDockPlus2\ODMenu.dll
.
Completion time: 2012-04-16 19:20:16
ComboFix-quarantined-files.txt 2012-04-16 17:20
ComboFix2.txt 2012-04-03 16:24
ComboFix3.txt 2012-03-31 13:03
.
Pre-Run: 97 107 673 088 bytes free
Post-Run: 97 261 580 288 bytes free
.
- - End Of File - - 80A4EC6021F7A5800AF82CA20D300964

#42 Příspěvek od **vyosek** » 17 dub 2012 11:50

Odinstalujte Combofix

Prejmenujte ComboFix na Uninstall
Spustte jej
Tohle smaze Combofix a jeho slozky

T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner http://forum.viry.cz/viewtopic.php?t=7478
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

Poprosim o novy log z RSIT a napiste co PC

buhtak · #43 Příspěvek od **buhtak** » 18 dub 2012 17:19

PC šlape v pohode obom vám musím poďakovať bez vás by som sa s tým nikam nepohol takže VĎAKA!

ale ešte sa chcem spýtať že mám zložku a tá nejde odstrániť vraj potrebuje na to povolenie správcu a pozeral som aj nejaké návody ako to odstrániť ale nič.. a vtej zložke sú prázdne zložky aj súbory a tie majú vraj dlhý názov na odstránenie neviete čo s tým prosím? .. a ďalej Catalyst Control Center vždy prestene pracovať odkedy som mal ten vírus ešte aj teraz.. to je asi všetko a tu je RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by chlopi at 2012-04-18 18:11:33
Microsoft Windows 7 Home Premium
System drive C: has 104 GB (34%) free of 306 GB
Total RAM: 3071 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:11:35, on 18. 4. 2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16839)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\ModLEDKey.exe
C:\Program Files\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\tsnpstd3.exe
C:\Windows\vsnpstd3.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\AMD AVT\bin\Kdbsync.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Users\chlopi\Desktop\RSIT.exe
C:\Program Files\trend micro\chlopi.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [tsnpstd3] C:\Windows\tsnpstd3.exe
O4 - HKLM\..\Run: [snpstd3] C:\Windows\vsnpstd3.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: ObjectDockShellExt - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - C:\Program Files\Stardock\ObjectDockPlus2\ODMenu.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 5291 bytes

=========Mozilla firefox=========

ProfilePath - C:\Users\chlopi\AppData\Roaming\Mozilla\Firefox\Profiles\sg9zka62.default

prefs.js - "extensions.enabledItems" - "{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22, {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24, {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}:6.0.25, {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26, {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27, {23fcfd51-4958-4f00-80a3-ae97e717ed8b}:2.1.2.126, {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}:6.0.29, dislikes@dige:1.0.1.4, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.28"

"{23fcfd51-4958-4f00-80a3-ae97e717ed8b}"=C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn.me/esnsonar,version=0.70.0]
"Description"=ESN Sonar browser plugin
"Path"=C:\Program Files\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/esnlaunch,version=0.80.0]
"Description"=
"Path"=C:\Program Files\Battlelog Web Plugins\0.80.0\npesnlaunch.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
browser.xpt
browserdirprovider.dll
brwsrcmp.dll
components.list
FeedConverter.js
FeedProcessor.js
FeedWriter.js
fuelApplication.js
GPSDGeolocationProvider.js
jsconsole-clhandler.js
NetworkGeolocationProvider.js
nsAddonRepository.js
nsBadCertHandler.js
nsBlocklistService.js
nsBrowserContentHandler.js
nsBrowserGlue.js
nsContentDispatchChooser.js
nsContentPrefService.js
nsDefaultCLH.js
nsDownloadManagerUI.js
nsExtensionManager.js
nsFormAutoComplete.js
nsHandlerService.js
nsHelperAppDlg.js
nsINIProcessor.js
nsLivemarkService.js
nsLoginInfo.js
nsLoginManager.js
nsLoginManagerPrompter.js
nsMicrosummaryService.js
nsPlacesAutoComplete.js
nsPlacesDBFlush.js
nsPlacesTransactionsService.js
nsPrivateBrowsingService.js
nsProxyAutoConfig.js
nsSafebrowsingApplication.js
nsSearchService.js
nsSearchSuggestions.js
nsSessionStartup.js
nsSessionStore.js
nsSetDefaultBrowser.js
nsSidebar.js
nsTaggingService.js
nsTryToClose.js
nsUpdateService.js
nsUpdateServiceStub.js
nsUpdateTimerManager.js
nsUrlClassifierLib.js
nsUrlClassifierListManager.js
nsURLFormatter.js
nsWebHandlerApp.js
pluginGlue.js
storage-Legacy.js
storage-mozStorage.js
txEXSLTRegExFunctions.js
WebContentConverter.js

C:\Program Files\Mozilla Firefox\plugins\
npdeployJava1.dll
npnul32.dll
NPOFF12.DLL

C:\Program Files\Mozilla Firefox\searchplugins\
atlas-sk.xml
azet-sk.xml
dunaj-sk.xml
eBay.xml
google.xml
slovnik-sk.xml
wikipedia-sk.xml
zoznam-sk.xml

C:\Users\chlopi\AppData\Roaming\Mozilla\Firefox\Profiles\sg9zka62.default\extensions\
dislikes@dige

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"=c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe [2008-11-20 62768]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2010-08-12 2215064]
"tsnpstd3"=C:\Windows\tsnpstd3.exe [2006-07-07 262144]
"snpstd3"=C:\Windows\vsnpstd3.exe [2006-09-18 843776]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-03-09 636032]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-10-16 2363392]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2012-02-29 17148552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICustomerCare]
C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BATINDICATOR]
C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\BATINDICATOR.exe [2009-05-09 2068992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP KEYBOARDx]
C:\Program Files\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE [2010-02-11 710656]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchHPOSIAPP]
C:\Program Files\Hewlett-Packard\HP MAINSTREAM KEYBOARD\LaunchApp.exe [2009-04-04 385024]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
C:\Program Files\PDF Complete\pdfsty.exe [2009-10-15 563736]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-01-08 226304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
ObjectDockShellExt - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - C:\Program Files\Stardock\ObjectDockPlus2\ODMenu.dll [2010-03-24 511344]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.ACDV"=ACDV.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"aux4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"aux7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
"aux9"=wdmaud.drv
"vidc.MP43"=MPG4c32.dll
"vidc.MP42"=MPG4c32.dll
"vidc.MPG4"=MPG4c32.dll
"vidc.iv50"=ir50_32.dll
"msacm.voxacm160"=vct3216.acm
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"msacm.vorbis"=vorbis.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2012-04-18 18:11:04 ----D---- C:\ProgramData\ATI
2012-04-18 18:11:03 ----D---- C:\Program Files\AMD AVT
2012-04-18 18:11:02 ----D---- C:\Program Files\AMD APP
2012-04-18 18:10:54 ----D---- C:\Program Files\Common Files\ATI Technologies
2012-04-18 18:09:53 ----D---- C:\Windows\LastGood
2012-04-18 17:57:15 ----D---- C:\rsit
2012-04-18 17:57:15 ----D---- C:\Program Files\trend micro
2012-04-18 16:42:50 ----D---- C:\Program Files\CCleaner
2012-04-18 15:24:21 ----SD---- C:\Uninstall
2012-04-16 19:19:30 ----SHD---- C:\$RECYCLE.BIN
2012-04-16 19:18:45 ----D---- C:\Windows\temp
2012-04-16 15:36:16 ----D---- C:\ProgramData\AMD
2012-04-16 02:11:09 ----A---- C:\zalohambr.dat
2012-04-15 18:34:06 ----A---- C:\originalmbr.dat
2012-04-11 18:50:44 ----D---- C:\Program Files\Common Files\Skype
2012-03-29 20:25:45 ----A---- C:\Users\chlopi\AppData\Roaming\0936D2.dat
2012-03-29 17:50:45 ----D---- C:\sh4ldr
2012-03-29 17:50:45 ----D---- C:\Program Files\Enigma Software Group
2012-03-25 22:03:42 ----D---- C:\Users\chlopi\AppData\Roaming\Malwarebytes
2012-03-25 22:03:30 ----D---- C:\ProgramData\Malwarebytes
2012-03-25 19:58:39 ----R---- C:\Windows\system32\streamhlp.dll
2012-03-24 23:31:23 ----D---- C:\Program Files\PC Drummer Trial Edition
2012-03-20 18:05:57 ----D---- C:\Program Files\ASIO4ALL v2
2012-03-20 18:05:48 ----D---- C:\Program Files\VstPlugins
2012-03-20 18:05:33 ----D---- C:\Program Files\Outsim
2012-03-20 18:04:42 ----D---- C:\Program Files\Image-Line

======List of files/folders modified in the last 1 month======

2012-04-18 18:11:04 ----SHD---- C:\Windows\Installer
2012-04-18 18:11:04 ----D---- C:\ProgramData
2012-04-18 18:11:04 ----D---- C:\Config.Msi
2012-04-18 18:11:04 ----AD---- C:\Windows\System32
2012-04-18 18:11:03 ----RD---- C:\Program Files
2012-04-18 18:10:54 ----D---- C:\Program Files\Common Files
2012-04-18 18:10:45 ----D---- C:\Program Files\ATI Technologies
2012-04-18 18:10:11 ----D---- C:\Windows\system32\catroot
2012-04-18 18:10:08 ----D---- C:\Windows\system32\drivers
2012-04-18 18:10:07 ----D---- C:\Windows\system32\DriverStore
2012-04-18 18:10:07 ----D---- C:\Windows\inf
2012-04-18 18:09:59 ----AD---- C:\Windows
2012-04-18 18:04:32 ----SHD---- C:\System Volume Information
2012-04-18 18:03:58 ----D---- C:\Windows\system32\config
2012-04-18 17:52:59 ----D---- C:\Users\chlopi\AppData\Roaming\Skype
2012-04-18 17:48:30 ----D---- C:\Users\chlopi\AppData\Roaming\Origin
2012-04-18 17:48:25 ----D---- C:\Program Files\Origin
2012-04-18 17:45:35 ----D---- C:\Windows\system32\catroot2
2012-04-18 17:45:06 ----D---- C:\Program Files\ATI
2012-04-18 17:36:27 ----RD---- C:\Users
2012-04-18 17:26:26 ----D---- C:\Windows\Prefetch
2012-04-18 17:04:05 ----D---- C:\Program Files\Common Files\Logitech
2012-04-18 16:56:52 ----D---- C:\Program Files\Truck Dismount
2012-04-18 16:55:52 ----SD---- C:\ProgramData\Microsoft
2012-04-18 16:44:15 ----D---- C:\Users\chlopi\AppData\Roaming\Winamp
2012-04-18 16:44:10 ----D---- C:\Windows\Minidump
2012-04-18 16:44:10 ----D---- C:\Windows\debug
2012-04-16 19:18:52 ----A---- C:\Windows\system.ini
2012-04-16 19:16:16 ----D---- C:\Windows\AppPatch
2012-04-16 15:41:19 ----A---- C:\Windows\system32\PnkBstrB.exe
2012-04-16 15:32:22 ----D---- C:\AMD
2012-04-14 19:31:03 ----D---- C:\ProgramData\TrackMania
2012-04-12 14:17:40 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-04-12 14:15:06 ----D---- C:\ProgramData\PDFC
2012-04-11 18:50:44 ----RD---- C:\Program Files\Skype
2012-04-11 18:50:44 ----D---- C:\ProgramData\Skype
2012-04-03 18:06:16 ----D---- C:\Windows\system32\drivers\etc
2012-04-03 18:00:08 ----D---- C:\Windows\Tasks
2012-04-03 15:30:26 ----D---- C:\Windows\system32\Tasks
2012-04-01 16:07:54 ----D---- C:\Program Files\Opera
2012-04-01 11:30:25 ----D---- C:\Program Files\Softonic-Eng7
2012-04-01 09:55:27 ----D---- C:\Users\chlopi\AppData\Roaming\uTorrent
2012-03-29 19:31:59 ----D---- C:\Program Files\Mozilla Firefox
2012-03-29 19:21:25 ----D---- C:\Program Files\Counter-Strike 1.6 Standalone
2012-03-29 17:50:00 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2012-03-26 03:12:22 ----A---- C:\Windows\win.ini
2012-03-25 20:04:48 ----AD---- C:\ProgramData\Temp

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-03-20 436792]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-12-04 281760]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 epfwwfpr;epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [2010-07-29 96920]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-12-04 25888]
R2 regi;regi; C:\Windows\system32\drivers\regi.sys [2007-04-18 11032]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-09 9183232]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-03-09 265216]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2011-12-05 86032]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-02-25 3026592]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\WmBEnum.sys [2010-04-27 22856]
R3 WmXlCore;Logitech Translation Layer Driver; C:\Windows\system32\drivers\WmXlCore.sys [2010-04-27 66632]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aepygyac;aepygyac; C:\Windows\system32\drivers\aepygyac.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BopItU2U;BopIt Serial port driver; C:\Windows\system32\DRIVERS\BopItU2U.sys []
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys []
S3 esgiguard;esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys []
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2010-01-08 6281728]
S3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2009-10-26 125696]
S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\Windows\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
S3 OxPPort;OxPPort; C:\Windows\system32\DRIVERS\OxPPort.sys [2008-07-31 82048]
S3 OxSer;OxSer; C:\Windows\system32\DRIVERS\OxSer.sys [2009-09-16 83888]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\Windows\system32\DRIVERS\snpstd3.sys [2006-09-15 10205696]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\Windows\system32\drivers\WmFilter.sys [2010-04-27 37704]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\Windows\system32\drivers\WmVirHid.sys [2010-04-27 15048]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-03-09 163328]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2010-08-12 810144]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-10-16 73728]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-10-15 635416]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-11-06 75136]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2012-02-29 158856]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2010-08-12 33584]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-05-26 655624]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-26 1343400]

-----------------EOF-----------------

#44 Příspěvek od **vyosek** » 18 dub 2012 17:23

O jakou slozku se jedna?

Catalyst preinstalujte ze stranek vyrobce

buhtak · #45 Příspěvek od **buhtak** » 18 dub 2012 17:28

Proste zložka v nej som mal obrázky hudbu.. skopíroval som ju z plochy na E: a niektoré priečinky tam ostali ale prázdne a nejdú vymazať a jeden sú tam tri songy a sú príliš dlhé takže sa nedajú zmazať ani premenovať.
A Catalyst som odinštaloval potom stiahol nový a nainštaloval ale stále to isté..

VIRY.CZ

Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc

Re: Win32/Olmarik.TDL4.trojan - prosim o pomoc