Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Zpráva

soltari · #16 Příspěvek od **soltari** » 02 črc 2012 22:58

Po spuštění skriptu mi vyskočilo okno prohlížeče, ve kterém je nějaká fake stránka požadující platbu pro odblokování počítače. Okno je bez standardního záhlaví a blokuje počítač pradvěpodobně včetně ComboFixu -- beze změny je vše již dvě hodiny. Pokud ne nepůjde nijak odstřelit, mám natvrdo vypnout a zapnout počítač a zkusit znovu spustit CF skript?

soltari · #17 Příspěvek od **soltari** » 03 črc 2012 00:20

Nakonec se to rozjelo, prikladam log:

ComboFix 12-07-02.01 - Stephanie 02/07/2012 17:44:59.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.2.1033.18.3950.2605 [GMT -4:00]
Running from: c:\users\Stephanie\Desktop\ComboFix.exe
Command switches used :: c:\users\Stephanie\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
FILE ::
"c:\windows\tasks\Google Software Updater.job"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\tasks\Norton Security Scan for Stephanie.job"
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Oracle\Information Rights Management\Desktop\sealmon.exe
c:\users\STEPHA~1\AppData\Local\Temp\0_0u_l.exe
c:\users\stephanie\appdata\local\{b4e16347-3cd7-df77-1a05-145e6727f2f5}
c:\users\stephanie\appdata\local\{b4e16347-3cd7-df77-1a05-145e6727f2f5}\U\00000004.@
c:\users\stephanie\appdata\local\{b4e16347-3cd7-df77-1a05-145e6727f2f5}\U\000000cb.@
c:\users\Stephanie\AppData\Local\Temp\0_0u_l.exe
c:\users\Stephanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ctfmon.lnk
c:\users\Stephanie\AppData\Roaming\Ms_dir_
c:\users\Stephanie\AppData\Roaming\Ms_dir_\msvcrt.exe
c:\windows\installer\{b4e16347-3cd7-df77-1a05-145e6727f2f5}
c:\windows\tasks\Google Software Updater.job
c:\windows\tasks\GoogleUpdateTaskMachineCore.job
c:\windows\tasks\GoogleUpdateTaskMachineUA.job
c:\windows\tasks\Norton Security Scan for Stephanie.job
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Files Created from 2012-06-02 to 2012-07-02 )))))))))))))))))))))))))))))))
.
.
2012-07-02 22:16 . 2012-07-02 22:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-02 21:43 . 2012-07-02 21:43 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F1046655-F8F5-4BC8-B045-D054ABD3577B}\offreg.dll
2012-06-29 16:04 . 2012-06-29 21:15 -------- d-----w- c:\program files\trend micro
2012-06-29 16:04 . 2012-06-29 16:04 -------- d-----w- C:\rsit
2012-06-27 22:30 . 2012-06-02 22:19 57880 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-27 22:30 . 2012-06-02 22:19 44056 ----a-w- c:\windows\system32\wups2.dll
2012-06-27 22:30 . 2012-06-02 22:19 2428952 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-27 22:30 . 2012-06-02 22:15 2622464 ----a-w- c:\windows\system32\wucltux.dll
2012-06-27 22:29 . 2012-06-02 22:19 38424 ----a-w- c:\windows\system32\wups.dll
2012-06-27 22:29 . 2012-06-02 22:15 99840 ----a-w- c:\windows\system32\wudriver.dll
2012-06-27 22:29 . 2012-06-02 22:19 701976 ----a-w- c:\windows\system32\wuapi.dll
2012-06-27 22:29 . 2012-06-02 19:19 186752 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-27 22:29 . 2012-06-02 19:15 36864 ----a-w- c:\windows\system32\wuapp.exe
2012-06-13 20:23 . 2012-05-02 05:32 208896 ----a-w- c:\windows\system32\profsvc.dll
2012-06-13 20:21 . 2012-04-24 05:59 182272 ----a-w- c:\windows\system32\cryptsvc.dll
2012-06-13 20:21 . 2012-04-24 05:59 1460224 ----a-w- c:\windows\system32\crypt32.dll
2012-06-13 20:21 . 2012-04-24 05:59 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-06-13 20:21 . 2012-04-24 04:47 1156608 ----a-w- c:\windows\SysWow64\crypt32.dll
2012-06-13 20:21 . 2012-04-24 04:47 139264 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2012-06-13 20:21 . 2012-04-24 04:47 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2012-06-09 23:09 . 2012-06-09 23:09 770384 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr100.dll
2012-06-09 23:09 . 2012-06-09 23:09 421200 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp100.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-28 12:52 . 2012-05-05 14:19 54072 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2012-06-28 12:52 . 2012-05-05 14:19 355856 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-06-28 12:52 . 2012-05-05 14:19 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-06-28 12:52 . 2012-05-05 14:19 958912 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-06-28 12:52 . 2012-05-05 14:19 71064 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-06-28 12:52 . 2012-05-05 14:19 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-06-28 12:52 . 2012-05-05 14:18 41224 ----a-w- c:\windows\avastSS.scr
2012-06-28 12:51 . 2012-05-05 14:18 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2012-06-28 12:51 . 2012-05-05 14:19 285328 ----a-w- c:\windows\system32\aswBoot.exe
2012-06-02 01:13 . 2012-06-02 01:13 419488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-02 01:13 . 2011-06-10 21:02 70304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-05-08 17:02 . 2012-06-02 01:05 8955792 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F1046655-F8F5-4BC8-B045-D054ABD3577B}\mpengine.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-07-02_15.21.30 )))))))))))))))))))))))))))))))))))))))))
.
- 2011-01-09 22:12 . 2012-07-02 13:37 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2011-01-09 22:12 . 2012-07-02 22:20 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 04:54 . 2012-07-02 22:22 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-07-02 14:54 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-07-02 14:54 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-02 22:22 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-07-02 14:54 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-02 22:22 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 05:10 . 2012-07-02 22:33 36402 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-10-21 02:21 . 2012-07-02 22:33 19288 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-258410163-3493820514-641674723-1000_UserData.bin
+ 2010-10-08 13:51 . 2012-07-02 22:22 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-08 13:51 . 2012-07-02 14:54 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-08 13:51 . 2012-07-02 14:54 81920 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-10-08 13:51 . 2012-07-02 22:22 81920 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-07-02 14:54 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-07-02 22:22 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-10-21 01:02 . 2012-07-02 14:52 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-10-21 01:02 . 2012-07-02 22:20 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2012-04-03 01:54 . 2012-07-02 22:22 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat
- 2012-04-03 01:54 . 2012-07-02 14:54 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat
+ 2012-04-03 01:54 . 2012-07-02 22:22 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\History\History.IE5\index.dat
- 2012-04-03 01:54 . 2012-07-02 14:54 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\History\History.IE5\index.dat
- 2012-04-03 01:54 . 2012-07-02 14:54 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Cookies\index.dat
+ 2012-04-03 01:54 . 2012-07-02 22:22 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Cookies\index.dat
- 2010-10-21 01:02 . 2012-07-02 14:54 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-10-21 01:02 . 2012-07-02 22:22 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-10-21 01:02 . 2012-07-02 22:20 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-10-21 01:02 . 2012-07-02 14:52 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-10-20 20:49 . 2012-07-02 22:22 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-10-20 20:49 . 2012-07-02 15:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-10-20 20:49 . 2012-07-02 22:22 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-10-20 20:49 . 2012-07-02 15:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2012-07-02 14:52 . 2012-07-02 14:52 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-07-02 22:20 . 2012-07-02 22:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-07-02 22:20 . 2012-07-02 22:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-07-02 14:52 . 2012-07-02 14:52 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-07-14 05:12 . 2012-07-02 14:54 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 05:12 . 2012-07-02 22:22 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:01 . 2012-07-02 14:51 415540 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-07-02 22:19 415540 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 02:34 . 2012-07-02 11:26 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat
+ 2009-07-14 02:34 . 2012-07-02 21:00 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]
"SmartWiHelper"="c:\program files (x86)\Sony\SmartWi Connection Utility\SmartWiHelper.exe" [2010-07-15 89080]
"ISBMgr.exe"="c:\program files (x86)\Sony\ISB Utility\ISBMgr.exe" [2010-05-31 673136]
"PMBVolumeWatcher"="c:\program files (x86)\Sony\PMB\PMBVolumeWatcher.exe" [2010-06-01 600928]
"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-04-20 58656]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-02 59240]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-06-28 4273976]
.
c:\users\Stephanie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Stephanie\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-8 1128224]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [2010-06-23 342056]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-06-23 39464]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-24 271872]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-20 113120]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]
R3 SOHCImp;VAIO Media plus Content Importer;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2010-06-21 108400]
R3 SOHDms;VAIO Media plus Digital Media Server;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2010-06-18 423280]
R3 SOHDs;VAIO Media plus Device Searcher;c:\program files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2010-06-21 67952]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2011-05-10 51712]
R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2010-06-09 537456]
R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;c:\program files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2010-06-09 384880]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2010-06-09 101232]
R3 VUAgent;VUAgent;c:\program files\Sony\VAIO Update 5\VUAgent.exe [2010-05-31 1250160]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-21 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-11-29 55856]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
S2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-09-06 169312]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-06-24 202752]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-06-28 71064]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]
S2 Oasis2Service;Oasis2Service;c:\program files (x86)\DDNi\Oasis2Service\Oasis2Service.exe [2011-08-13 49152]
S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2010-06-01 367456]
S2 rimspci;rimspci;c:\windows\system32\drivers\rimssne64.sys [2010-06-23 94208]
S2 risdsnpe;risdsnpe;c:\windows\system32\drivers\risdsne64.sys [2010-06-23 78848]
S2 SampleCollector;VAIO Care Performance Service;c:\program files\Sony\VAIO Care\VCPerfService.exe [2010-08-12 257936]
S2 uCamMonitor;CamMonitor;c:\program files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-05-28 2320920]
S2 VAIO Power Management;VAIO Power Management;c:\program files\Sony\VAIO Power Management\SPMService.exe [2010-06-21 575856]
S2 VCFw;VAIO Content Folder Watcher;c:\program files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2010-06-17 851824]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2009-05-26 19968]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-05-28 56344]
S3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-05-28 158976]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2010-04-26 12032]
S3 SpfService;VAIO Entertainment Common Service;c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2010-06-07 304496]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2010-05-31 402720]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-06-28 12:51 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 97792 ----a-w- c:\users\Stephanie\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-05-31 10775584]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-05-31 2040352]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"combofix"="c:\combofix\CF6263.3XE" [2009-07-14 344576]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Add to &Evernote - c:\program files (x86)\Evernote\Evernote3.5\enbar.dll/2000
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Stephanie\AppData\Roaming\Mozilla\Firefox\Profiles\u8t9icna.default\
FF - prefs.js: browser.search.selectedEngine - Google
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\SampleCollector]
"ImagePath"="\"c:\program files\Sony\VAIO Care\VCPerfService.exe\" \"/service\" \"/sstates\" \"/sampleinterval=5000\" \"/procinterval=5\" \"/dllinterval=120\" \"/counter=\Processor(_Total)\% Processor Time:1/counter=\PhysicalDisk(_Total)\Disk Bytes/sec:1\" \"/counter=\Network Interface(*)\Bytes Total/sec:1\" \"/expandcounter=\Processor Information(*)\Processor Frequency:1\" \"/expandcounter=\Processor(*)\% Idle Time:1\" \"/expandcounter=\Processor(*)\% C1 Time:1\" \"/expandcounter=\Processor(*)\% C2 Time:1\" \"/expandcounter=\Processor(*)\% C3 Time:1\" \"/expandcounter=\Processor(*)\% Processor Time:1\" \"/directory=inteldata\""
.
------------------------ Other Running Processes ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Sony\VAIO Event Service\VESMgr.exe
c:\windows\SysWOW64\DllHost.exe
c:\program files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files\Sony\VAIO Care\VCSpt.exe
c:\program files\Sony\VAIO Care\listener.exe
c:\windows\SysWOW64\RunDll32.exe
.
**************************************************************************
.
Completion time: 2012-07-02 18:53:21 - machine was rebooted
ComboFix-quarantined-files.txt 2012-07-02 22:53
ComboFix2.txt 2012-07-02 15:44
.
Pre-Run: 183,475,367,936 bytes free
Post-Run: 182,810,861,568 bytes free
.
- - End Of File - - 4CB35ABF5E4A1361C120A9BBB2CE7A4A

#18 Příspěvek od **vyosek** » 03 črc 2012 07:23

Super, zkuste nyni TDSSKiller

Stahnete aswMBR http://public.avast.com/%7Egmerek/aswMBR.exe a ulozte jej na plochu.

Utilitu spustte a prikazte ji, at skenuje - klik na Scan
Kliknutim na Save log ulozte log aswMBR na plochu
Obsah logu aswMBR mi sem vlozte

soltari · #19 Příspěvek od **soltari** » 03 črc 2012 16:02

Tak TDSSKiller ma stejny problem jako predtim, a aswMBR to same.

#20 Příspěvek od **vyosek** » 03 črc 2012 23:48

Prosim o strpeni, poprosil jsem kolegu Naughtyho o soucinnost

soltari · #21 Příspěvek od **soltari** » 04 črc 2012 03:08

V pořádku, děkuji za trpělivost. Zkusím taky přihodit nápad -- když nabootuju systém z flashky, případně vymontuju disk a připojím ho externě k jinému stroji, pomůže to něčemu? Moje, možná hloupá, domněnka je, že čistící utility jsou těma mrchama blokovány. Pokud bude běžet čistý systém, mohly by se v pořádku rozjet, ne? Otázka je, jestli potom zahrnou do skenu vše, co je potřeba...

#22 Příspěvek od **vyosek** » 04 črc 2012 07:52

Ano, ta mrcha to blokuje...predpokladam ze se s kolegou rozhodneme pro opravu z nejakeho liveCD...ale dejte nam chvili na probrani postupu a napadu...

soltari · #23 Příspěvek od **soltari** » 05 črc 2012 03:21

Hm, skace na me okynko, ze tdsskiller.exe neni platna aplikace typu win32.

soltari · #24 Příspěvek od **soltari** » 06 črc 2012 03:39

Hm, zjistil jsem, ze v tehle domacnosti uz cedecka neexistujou, takze budu pokracovat az zitra. Kazdopadne mi neni jasna jedna vec hned v prvnim bode -- zatim jsem zadny mbrscan nepoustel, co si vybavuju. Takze mi chybi ty dva zminene soubory. Muzes mi dat navod k provedeni mbrscanu?

soltari · #25 Příspěvek od **soltari** » 06 črc 2012 04:27

Ok, moje blbost, samozrejme ze uz jsem to delal. Nejak mi ty soubory nejdou uploadovat sem, taze tady jsou linky (bacha, avast mi hlasi, ze v nich uz nejake smeti je):

http://www.cosc.brocku.ca/~md10tq/Dump_Hdd0_DR0.mbr
http://www.cosc.brocku.ca/~md10tq/Dump_Hdd0_DR0.old

soltari · #26 Příspěvek od **soltari** » 07 črc 2012 15:59

Tak zase problem. Kdyz bootuju z CD, dostanu se na bootovaci obrazovku WinXP (tu cernou s windowsackym oknem a behajicim prouzkem dole), a najednou vse spadne do modre smrti. Hlaska je totalne neinformativni, v podstate jen par adres:

STOP: 0x0000007B (0xF78DA528, 0xC00000034, 0x0000000, 0x00000000)

Vypalil jsem celkem 3 cedla, abych se ujistil, ze nebyl problem tam, u vsech se deje to same. Muze tomu vadit 64bitova architektura?

Mozna se tady potkat muzeme -- dej mi tak tri casy, kdy tady muzes byt a ja to nejak zkusim zvladnout:-) (posun od tveho casu je -6 hodin (Toronto))

soltari · #27 Příspěvek od **soltari** » 08 črc 2012 14:42

Jo, vcera jsem to taky nakonec vygooglil. Zacinam u toho chytat nerva. Nemuzu vypnout SATA, protoze ten notebook me k zadnemu pokrocilemu nastaveni v biosu nepusti. Muzu vypnout nejakou optimalizaci, zapnout virtualizaci a to je vsechno. Pry jsou advanced moznosti blokovane a na hackovani BIOSu se moc necitim. Je to Sony Vaio PCG-61211L kdyby to pomohlo.

Cruise neznam, bude to nejaky rybnicek nekde v hajicku:-)

soltari · #28 Příspěvek od **soltari** » 08 črc 2012 18:13

Ok, napojim ho zitra jako externi disk pres USB. Pujcim si na ze skoly nejaky strojek, kde neni nic duleziteho.

soltari · #29 Příspěvek od **soltari** » 11 črc 2012 17:31

Sorry za zpozdeni. Takze nemocny disk mam pripojeny pres USB jako jednotky G,H,I. Chci lecit vsechny tri nalezene veci? Mam pak disk namontovat spatky do notebooku a budem pokracovat tam, nebo ho jeste venku?

18:08:27.0004 10488 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
18:08:29.0010 10488 ============================================================
18:08:29.0010 10488 Current date / time: 2012/07/11 18:08:29.0010
18:08:29.0010 10488 SystemInfo:
18:08:29.0010 10488
18:08:29.0010 10488 OS Version: 6.1.7601 ServicePack: 1.0
18:08:29.0010 10488 Product type: Workstation
18:08:29.0010 10488 ComputerName: MARTIN-PC
18:08:29.0011 10488 UserName: Martin
18:08:29.0011 10488 Windows directory: C:\Windows
18:08:29.0011 10488 System windows directory: C:\Windows
18:08:29.0011 10488 Processor architecture: Intel x86
18:08:29.0011 10488 Number of processors: 2
18:08:29.0011 10488 Page size: 0x1000
18:08:29.0011 10488 Boot type: Normal boot
18:08:29.0011 10488 ============================================================
18:08:33.0143 10488 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:08:33.0181 10488 Drive \Device\Harddisk1\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:08:33.0481 10488 ============================================================
18:08:33.0481 10488 \Device\Harddisk0\DR0:
18:08:33.0481 10488 MBR partitions:
18:08:33.0481 10488 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x7530000
18:08:33.0481 10488 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x7530800, BlocksNum 0x32000
18:08:33.0481 10488 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7562800, BlocksNum 0x32E23000
18:08:33.0481 10488 \Device\Harddisk1\DR2:
18:08:33.0482 10488 MBR partitions:
18:08:33.0482 10488 \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x1C42000, BlocksNum 0x32000
18:08:33.0482 10488 \Device\Harddisk1\DR2\Partition1: MBR, Type 0x7, StartLBA 0x1C74000, BlocksNum 0x1CB68830
18:08:33.0497 10488 \Device\Harddisk1\DR2\Partition2: MBR, Type 0x7, StartLBA 0x1E7DD800, BlocksNum 0x1BBA3830
18:08:33.0497 10488 ============================================================
18:08:33.0529 10488 C: <-> \Device\Harddisk0\DR0\Partition2
18:08:33.0581 10488 D: <-> \Device\Harddisk0\DR0\Partition0
18:08:33.0619 10488 H: <-> \Device\Harddisk1\DR2\Partition1
18:08:33.0663 10488 I: <-> \Device\Harddisk1\DR2\Partition2
18:08:33.0689 10488 G: <-> \Device\Harddisk1\DR2\Partition0
18:08:33.0689 10488 ============================================================
18:08:33.0689 10488 Initialize success
18:08:33.0689 10488 ============================================================
18:12:33.0914 13936 ============================================================
18:12:33.0914 13936 Scan started
18:12:33.0914 13936 Mode: Manual; SigCheck; TDLFS;
18:12:33.0914 13936 ============================================================
18:12:38.0574 13936 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
18:12:39.0558 13936 1394ohci - ok
18:12:39.0652 13936 Accelerometer (465b6baaba53a628f7252846d0e900ee) C:\Windows\system32\DRIVERS\Accelerometer.sys
18:12:39.0671 13936 Accelerometer - ok
18:12:39.0751 13936 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
18:12:39.0814 13936 ACPI - ok
18:12:39.0917 13936 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
18:12:40.0073 13936 AcpiPmi - ok
18:12:40.0167 13936 ADIHdAudAddService (fb9ece3f7b8a03e474e611031ad4cd23) C:\Windows\system32\drivers\ADIHdAud.sys
18:12:40.0301 13936 ADIHdAudAddService - ok
18:12:40.0355 13936 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
18:12:40.0383 13936 adp94xx - ok
18:12:40.0430 13936 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
18:12:40.0479 13936 adpahci - ok
18:12:40.0500 13936 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
18:12:40.0518 13936 adpu320 - ok
18:12:40.0542 13936 AEADIFilters (12d23758621b00b8d3134095ec3325fd) C:\Windows\system32\AEADISRV.EXE
18:12:40.0656 13936 AEADIFilters - ok
18:12:40.0698 13936 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
18:12:40.0821 13936 AeLookupSvc - ok
18:12:40.0926 13936 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
18:12:41.0064 13936 AFD - ok
18:12:41.0147 13936 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\Windows\system32\DRIVERS\AGRSM.sys
18:12:41.0351 13936 AgereSoftModem - ok
18:12:41.0394 13936 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
18:12:41.0410 13936 agp440 - ok
18:12:41.0437 13936 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
18:12:41.0454 13936 aic78xx - ok
18:12:41.0470 13936 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
18:12:41.0569 13936 ALG - ok
18:12:41.0596 13936 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
18:12:41.0611 13936 aliide - ok
18:12:41.0672 13936 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
18:12:41.0688 13936 amdagp - ok
18:12:41.0773 13936 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
18:12:41.0788 13936 amdide - ok
18:12:41.0803 13936 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
18:12:41.0879 13936 AmdK8 - ok
18:12:41.0944 13936 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
18:12:42.0013 13936 AmdPPM - ok
18:12:42.0066 13936 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
18:12:42.0082 13936 amdsata - ok
18:12:42.0164 13936 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
18:12:42.0182 13936 amdsbs - ok
18:12:42.0226 13936 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
18:12:42.0242 13936 amdxata - ok
18:12:42.0312 13936 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
18:12:42.0605 13936 AppID - ok
18:12:42.0609 13936 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
18:12:42.0723 13936 AppIDSvc - ok
18:12:42.0807 13936 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
18:12:42.0874 13936 Appinfo - ok
18:12:43.0056 13936 Apple Mobile Device (018857ead9a077a56aedfc0e5ef7a24a) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:12:43.0069 13936 Apple Mobile Device - ok
18:12:43.0114 13936 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
18:12:43.0290 13936 AppMgmt - ok
18:12:43.0310 13936 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
18:12:43.0354 13936 arc - ok
18:12:43.0421 13936 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
18:12:43.0438 13936 arcsas - ok
18:12:43.0494 13936 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\Windows\system32\drivers\aswFsBlk.sys
18:12:43.0718 13936 aswFsBlk - ok
18:12:43.0826 13936 aswMonFlt (258143605e77e4008f1758481d6a977d) C:\Windows\system32\drivers\aswMonFlt.sys
18:12:43.0852 13936 aswMonFlt - ok
18:12:43.0863 13936 aswRdr (352d5a48ebab35a7693b048679304831) C:\Windows\system32\drivers\aswRdr.sys
18:12:43.0882 13936 aswRdr - ok
18:12:43.0995 13936 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\Windows\system32\drivers\aswSnx.sys
18:12:44.0079 13936 aswSnx - ok
18:12:44.0109 13936 aswSP (010012597333da1f46c3243f33f8409e) C:\Windows\system32\drivers\aswSP.sys
18:12:44.0140 13936 aswSP - ok
18:12:44.0184 13936 aswTdi (f9f84364416658e9786235904d448d37) C:\Windows\system32\drivers\aswTdi.sys
18:12:44.0231 13936 aswTdi - ok
18:12:44.0248 13936 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
18:12:44.0362 13936 AsyncMac - ok
18:12:44.0403 13936 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
18:12:44.0417 13936 atapi - ok
18:12:44.0520 13936 ATSwpWDF (befe54e9bc648a3c79c917a63b6ee7da) C:\Windows\system32\Drivers\ATSwpWDF.sys
18:12:44.0584 13936 ATSwpWDF - ok
18:12:44.0684 13936 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:12:44.0832 13936 AudioEndpointBuilder - ok
18:12:44.0838 13936 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:12:44.0906 13936 Audiosrv - ok
18:12:45.0047 13936 avast! Antivirus (996e6d052438e8d8dfd501f31560b2e0) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
18:12:45.0116 13936 avast! Antivirus - ok
18:12:45.0189 13936 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
18:12:45.0342 13936 AxInstSV - ok
18:12:45.0394 13936 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
18:12:45.0525 13936 b06bdrv - ok
18:12:45.0573 13936 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:12:45.0700 13936 b57nd60x - ok
18:12:45.0737 13936 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
18:12:45.0866 13936 BDESVC - ok
18:12:45.0888 13936 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
18:12:45.0993 13936 Beep - ok
18:12:46.0112 13936 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
18:12:46.0309 13936 BFE - ok
18:12:46.0399 13936 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
18:12:46.0570 13936 BITS - ok
18:12:46.0631 13936 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
18:12:46.0736 13936 blbdrive - ok
18:12:46.0881 13936 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files\Bonjour\mDNSResponder.exe
18:12:46.0939 13936 Bonjour Service - ok
18:12:47.0007 13936 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
18:12:47.0088 13936 bowser - ok
18:12:47.0119 13936 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:12:47.0224 13936 BrFiltLo - ok
18:12:47.0249 13936 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:12:47.0335 13936 BrFiltUp - ok
18:12:47.0394 13936 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
18:12:47.0485 13936 Browser - ok
18:12:47.0528 13936 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
18:12:47.0681 13936 Brserid - ok
18:12:47.0719 13936 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
18:12:47.0834 13936 BrSerWdm - ok
18:12:47.0862 13936 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:12:47.0988 13936 BrUsbMdm - ok
18:12:47.0992 13936 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
18:12:48.0069 13936 BrUsbSer - ok
18:12:48.0158 13936 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
18:12:48.0312 13936 BthEnum - ok
18:12:48.0324 13936 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
18:12:48.0395 13936 BTHMODEM - ok
18:12:48.0443 13936 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
18:12:48.0513 13936 BthPan - ok
18:12:48.0583 13936 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
18:12:48.0743 13936 BTHPORT - ok
18:12:48.0781 13936 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
18:12:48.0881 13936 bthserv - ok
18:12:48.0911 13936 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
18:12:49.0004 13936 BTHUSB - ok
18:12:49.0110 13936 btusbflt (f549c3fb145a4928e40bb1518b2034dc) C:\Windows\system32\drivers\btusbflt.sys
18:12:49.0146 13936 btusbflt - ok
18:12:49.0174 13936 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
18:12:49.0250 13936 cdfs - ok
18:12:49.0349 13936 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
18:12:49.0370 13936 cdrom - ok
18:12:49.0435 13936 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:12:49.0534 13936 CertPropSvc - ok
18:12:49.0567 13936 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
18:12:49.0630 13936 circlass - ok
18:12:49.0683 13936 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
18:12:49.0706 13936 CLFS - ok
18:12:49.0779 13936 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:12:49.0815 13936 clr_optimization_v2.0.50727_32 - ok
18:12:49.0953 13936 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:12:50.0000 13936 clr_optimization_v4.0.30319_32 - ok
18:12:50.0027 13936 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
18:12:50.0172 13936 CmBatt - ok
18:12:50.0223 13936 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
18:12:50.0240 13936 cmdide - ok
18:12:50.0343 13936 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
18:12:50.0425 13936 CNG - ok
18:12:50.0468 13936 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
18:12:50.0485 13936 Compbatt - ok
18:12:50.0558 13936 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
18:12:50.0659 13936 CompositeBus - ok
18:12:50.0664 13936 COMSysApp - ok
18:12:50.0700 13936 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
18:12:50.0716 13936 crcdisk - ok
18:12:50.0822 13936 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
18:12:50.0952 13936 CryptSvc - ok
18:12:51.0046 13936 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
18:12:51.0159 13936 CSC - ok
18:12:51.0268 13936 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
18:12:51.0368 13936 CscService - ok
18:12:51.0419 13936 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:12:51.0533 13936 DcomLaunch - ok
18:12:51.0582 13936 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
18:12:51.0702 13936 defragsvc - ok
18:12:51.0808 13936 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
18:12:51.0921 13936 DfsC - ok
18:12:52.0024 13936 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
18:12:52.0117 13936 Dhcp - ok
18:12:52.0150 13936 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
18:12:52.0275 13936 discache - ok
18:12:52.0328 13936 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
18:12:52.0344 13936 Disk - ok
18:12:52.0428 13936 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
18:12:52.0566 13936 Dnscache - ok
18:12:52.0637 13936 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
18:12:52.0732 13936 dot3svc - ok
18:12:52.0790 13936 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
18:12:52.0878 13936 DPS - ok
18:12:52.0932 13936 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
18:12:53.0010 13936 drmkaud - ok
18:12:53.0115 13936 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
18:12:53.0166 13936 DXGKrnl - ok
18:12:53.0202 13936 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
18:12:53.0324 13936 EapHost - ok
18:12:53.0565 13936 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
18:12:53.0821 13936 ebdrv - ok
18:12:53.0961 13936 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
18:12:54.0032 13936 EFS - ok
18:12:54.0099 13936 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
18:12:54.0233 13936 ehRecvr - ok
18:12:54.0269 13936 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
18:12:54.0423 13936 ehSched - ok
18:12:54.0500 13936 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
18:12:54.0535 13936 elxstor - ok
18:12:54.0589 13936 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
18:12:54.0678 13936 ErrDev - ok
18:12:54.0786 13936 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
18:12:54.0935 13936 EventSystem - ok
18:12:54.0976 13936 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
18:12:55.0070 13936 exfat - ok
18:12:55.0104 13936 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
18:12:55.0173 13936 fastfat - ok
18:12:55.0289 13936 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
18:12:55.0381 13936 Fax - ok
18:12:55.0401 13936 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
18:12:55.0510 13936 fdc - ok
18:12:55.0535 13936 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
18:12:55.0606 13936 fdPHost - ok
18:12:55.0616 13936 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
18:12:55.0690 13936 FDResPub - ok
18:12:55.0721 13936 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
18:12:55.0738 13936 FileInfo - ok
18:12:55.0756 13936 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
18:12:55.0851 13936 Filetrace - ok
18:12:55.0896 13936 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
18:12:55.0959 13936 flpydisk - ok
18:12:56.0006 13936 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
18:12:56.0032 13936 FltMgr - ok
18:12:56.0132 13936 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
18:12:56.0273 13936 FontCache - ok
18:12:56.0376 13936 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:12:56.0390 13936 FontCache3.0.0.0 - ok
18:12:56.0428 13936 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
18:12:56.0465 13936 FsDepends - ok
18:12:56.0529 13936 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
18:12:56.0544 13936 Fs_Rec - ok
18:12:56.0621 13936 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
18:12:56.0644 13936 fvevol - ok
18:12:56.0676 13936 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:12:56.0693 13936 gagp30kx - ok
18:12:56.0751 13936 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:12:56.0766 13936 GEARAspiWDM - ok
18:12:56.0851 13936 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
18:12:56.0986 13936 gpsvc - ok
18:12:57.0183 13936 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:12:57.0209 13936 gupdate - ok
18:12:57.0226 13936 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:12:57.0239 13936 gupdatem - ok
18:12:57.0306 13936 HBtnKey (7dad592a4d28092d584cfb4deef1373d) C:\Windows\system32\DRIVERS\cpqbttn.sys
18:12:57.0450 13936 HBtnKey - ok
18:12:57.0468 13936 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
18:12:57.0602 13936 hcw85cir - ok
18:12:57.0671 13936 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
18:12:57.0855 13936 HdAudAddService - ok
18:12:57.0889 13936 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
18:12:57.0923 13936 HDAudBus - ok
18:12:57.0935 13936 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
18:12:58.0033 13936 HidBatt - ok
18:12:58.0071 13936 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
18:12:58.0152 13936 HidBth - ok
18:12:58.0192 13936 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
18:12:58.0307 13936 HidIr - ok
18:12:58.0348 13936 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
18:12:58.0465 13936 hidserv - ok
18:12:58.0553 13936 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
18:12:58.0589 13936 HidUsb - ok
18:12:58.0650 13936 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
18:12:58.0739 13936 hkmsvc - ok
18:12:58.0788 13936 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
18:12:58.0895 13936 HomeGroupListener - ok
18:12:58.0964 13936 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
18:12:59.0054 13936 HomeGroupProvider - ok
18:12:59.0148 13936 hpdskflt (d5c35e6416a379c445cda826b9fe452f) C:\Windows\system32\DRIVERS\hpdskflt.sys
18:12:59.0160 13936 hpdskflt - ok
18:12:59.0344 13936 hpqwmiex (ef3ea06057132138b4e5895a61601dbe) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
18:12:59.0365 13936 hpqwmiex - ok
18:12:59.0399 13936 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
18:12:59.0416 13936 HpSAMD - ok
18:12:59.0430 13936 hpsrv (00dc55481fad2841284ed09e7d69cd11) C:\Windows\system32\Hpservice.exe
18:12:59.0443 13936 hpsrv - ok
18:12:59.0534 13936 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
18:12:59.0628 13936 HTTP - ok
18:12:59.0655 13936 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
18:12:59.0669 13936 hwpolicy - ok
18:12:59.0759 13936 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
18:12:59.0862 13936 i8042prt - ok
18:12:59.0989 13936 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
18:13:00.0020 13936 iaStorV - ok
18:13:00.0184 13936 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:13:00.0222 13936 idsvc - ok
18:13:00.0528 13936 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
18:13:00.0806 13936 igfx - ok
18:13:00.0949 13936 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
18:13:00.0964 13936 iirsp - ok
18:13:01.0047 13936 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
18:13:01.0161 13936 IKEEXT - ok
18:13:01.0200 13936 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
18:13:01.0232 13936 intelide - ok
18:13:01.0253 13936 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
18:13:01.0331 13936 intelppm - ok
18:13:01.0361 13936 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
18:13:01.0450 13936 IPBusEnum - ok
18:13:01.0484 13936 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:13:01.0609 13936 IpFilterDriver - ok
18:13:01.0721 13936 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
18:13:01.0834 13936 iphlpsvc - ok
18:13:01.0880 13936 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
18:13:01.0978 13936 IPMIDRV - ok
18:13:02.0013 13936 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
18:13:02.0094 13936 IPNAT - ok
18:13:02.0250 13936 iPod Service (0ca8c2e721617aa2f923a8151c96fb33) C:\Program Files\iPod\bin\iPodService.exe
18:13:02.0282 13936 iPod Service - ok
18:13:02.0296 13936 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
18:13:02.0419 13936 IRENUM - ok
18:13:02.0468 13936 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
18:13:02.0484 13936 isapnp - ok
18:13:02.0565 13936 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
18:13:02.0607 13936 iScsiPrt - ok
18:13:02.0644 13936 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:13:02.0662 13936 kbdclass - ok
18:13:02.0728 13936 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
18:13:02.0817 13936 kbdhid - ok
18:13:02.0885 13936 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:13:02.0913 13936 KeyIso - ok
18:13:02.0926 13936 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
18:13:02.0943 13936 KSecDD - ok
18:13:02.0964 13936 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
18:13:03.0016 13936 KSecPkg - ok
18:13:03.0051 13936 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
18:13:03.0178 13936 KtmRm - ok
18:13:03.0271 13936 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
18:13:03.0394 13936 LanmanServer - ok
18:13:03.0480 13936 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
18:13:03.0626 13936 LanmanWorkstation - ok
18:13:03.0683 13936 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
18:13:03.0768 13936 lltdio - ok
18:13:03.0809 13936 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
18:13:03.0890 13936 lltdsvc - ok
18:13:03.0905 13936 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
18:13:04.0010 13936 lmhosts - ok
18:13:04.0050 13936 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:13:04.0067 13936 LSI_FC - ok
18:13:04.0093 13936 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:13:04.0110 13936 LSI_SAS - ok
18:13:04.0135 13936 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:13:04.0152 13936 LSI_SAS2 - ok
18:13:04.0171 13936 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:13:04.0188 13936 LSI_SCSI - ok
18:13:04.0213 13936 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
18:13:04.0337 13936 luafv - ok
18:13:04.0443 13936 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
18:13:04.0512 13936 Mcx2Svc - ok
18:13:04.0525 13936 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
18:13:04.0541 13936 megasas - ok
18:13:04.0578 13936 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
18:13:04.0611 13936 MegaSR - ok
18:13:04.0639 13936 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:13:04.0802 13936 MMCSS - ok
18:13:04.0828 13936 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
18:13:04.0907 13936 Modem - ok
18:13:04.0979 13936 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
18:13:05.0029 13936 monitor - ok
18:13:05.0076 13936 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
18:13:05.0093 13936 mouclass - ok
18:13:05.0098 13936 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
18:13:05.0201 13936 mouhid - ok
18:13:05.0255 13936 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
18:13:05.0270 13936 mountmgr - ok
18:13:05.0325 13936 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
18:13:05.0348 13936 mpio - ok
18:13:05.0374 13936 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
18:13:05.0439 13936 mpsdrv - ok
18:13:05.0503 13936 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
18:13:05.0644 13936 MpsSvc - ok
18:13:05.0703 13936 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
18:13:05.0749 13936 MRxDAV - ok
18:13:05.0828 13936 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:13:05.0930 13936 mrxsmb - ok
18:13:05.0997 13936 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:13:06.0056 13936 mrxsmb10 - ok
18:13:06.0073 13936 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:13:06.0217 13936 mrxsmb20 - ok
18:13:06.0246 13936 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
18:13:06.0262 13936 msahci - ok
18:13:06.0332 13936 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
18:13:06.0349 13936 msdsm - ok
18:13:06.0372 13936 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
18:13:06.0479 13936 MSDTC - ok
18:13:06.0519 13936 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
18:13:06.0626 13936 Msfs - ok
18:13:06.0642 13936 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
18:13:06.0739 13936 mshidkmdf - ok
18:13:06.0787 13936 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
18:13:06.0802 13936 msisadrv - ok
18:13:06.0833 13936 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
18:13:06.0929 13936 MSiSCSI - ok
18:13:06.0933 13936 msiserver - ok
18:13:06.0990 13936 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
18:13:07.0087 13936 MSKSSRV - ok
18:13:07.0111 13936 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
18:13:07.0194 13936 MSPCLOCK - ok
18:13:07.0224 13936 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
18:13:07.0316 13936 MSPQM - ok
18:13:07.0359 13936 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
18:13:07.0404 13936 MsRPC - ok
18:13:07.0422 13936 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
18:13:07.0437 13936 mssmbios - ok
18:13:07.0441 13936 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
18:13:07.0495 13936 MSTEE - ok
18:13:07.0513 13936 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
18:13:07.0568 13936 MTConfig - ok
18:13:07.0598 13936 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
18:13:07.0615 13936 Mup - ok
18:13:07.0684 13936 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
18:13:07.0840 13936 napagent - ok
18:13:07.0916 13936 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
18:13:08.0006 13936 NativeWifiP - ok
18:13:08.0190 13936 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
18:13:08.0217 13936 NDIS - ok
18:13:08.0235 13936 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
18:13:08.0374 13936 NdisCap - ok
18:13:08.0413 13936 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
18:13:08.0479 13936 NdisTapi - ok
18:13:08.0534 13936 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
18:13:08.0634 13936 Ndisuio - ok
18:13:08.0698 13936 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
18:13:08.0801 13936 NdisWan - ok
18:13:08.0863 13936 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
18:13:08.0917 13936 NDProxy - ok
18:13:08.0945 13936 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
18:13:09.0071 13936 NetBIOS - ok
18:13:09.0127 13936 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
18:13:09.0206 13936 NetBT - ok
18:13:09.0261 13936 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:13:09.0328 13936 Netlogon - ok
18:13:09.0396 13936 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
18:13:09.0479 13936 Netman - ok
18:13:09.0520 13936 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
18:13:09.0644 13936 netprofm - ok
18:13:09.0753 13936 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:13:09.0768 13936 NetTcpPortSharing - ok
18:13:10.0025 13936 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
18:13:10.0269 13936 netw5v32 - ok
18:13:10.0405 13936 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
18:13:10.0421 13936 nfrd960 - ok
18:13:10.0491 13936 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
18:13:10.0610 13936 NlaSvc - ok
18:13:10.0642 13936 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
18:13:10.0744 13936 Npfs - ok
18:13:10.0775 13936 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
18:13:10.0891 13936 nsi - ok
18:13:10.0920 13936 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
18:13:11.0021 13936 nsiproxy - ok
18:13:11.0164 13936 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
18:13:11.0218 13936 Ntfs - ok
18:13:11.0258 13936 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
18:13:11.0366 13936 Null - ok
18:13:11.0425 13936 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
18:13:11.0442 13936 nvraid - ok
18:13:11.0520 13936 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
18:13:11.0538 13936 nvstor - ok
18:13:11.0555 13936 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
18:13:11.0572 13936 nv_agp - ok
18:13:11.0747 13936 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:13:11.0773 13936 odserv - ok
18:13:11.0836 13936 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
18:13:11.0942 13936 ohci1394 - ok
18:13:12.0022 13936 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:13:12.0052 13936 ose - ok
18:13:12.0089 13936 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:13:12.0223 13936 p2pimsvc - ok
18:13:12.0262 13936 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
18:13:12.0365 13936 p2psvc - ok
18:13:12.0405 13936 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
18:13:12.0508 13936 Parport - ok
18:13:12.0577 13936 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
18:13:12.0593 13936 partmgr - ok
18:13:12.0617 13936 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
18:13:12.0697 13936 Parvdm - ok
18:13:12.0733 13936 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
18:13:12.0823 13936 PcaSvc - ok
18:13:12.0869 13936 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
18:13:12.0898 13936 pci - ok
18:13:12.0960 13936 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
18:13:12.0976 13936 pciide - ok
18:13:13.0011 13936 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
18:13:13.0045 13936 pcmcia - ok
18:13:13.0061 13936 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
18:13:13.0078 13936 pcw - ok
18:13:13.0122 13936 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
18:13:13.0258 13936 PEAUTH - ok
18:13:13.0346 13936 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
18:13:13.0507 13936 PeerDistSvc - ok
18:13:13.0669 13936 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
18:13:13.0800 13936 pla - ok
18:13:13.0965 13936 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
18:13:14.0084 13936 PlugPlay - ok
18:13:14.0112 13936 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
18:13:14.0199 13936 PNRPAutoReg - ok
18:13:14.0244 13936 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:13:14.0307 13936 PNRPsvc - ok
18:13:14.0440 13936 Polar Daemon (64e5b51cc3df3112d95fd3b9287e3f6f) C:\Program Files\Polar\Daemon\polard.exe
18:13:14.0511 13936 Polar Daemon ( UnsignedFile.Multi.Generic ) - warning
18:13:14.0511 13936 Polar Daemon - detected UnsignedFile.Multi.Generic (1)
18:13:14.0555 13936 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
18:13:14.0746 13936 PolicyAgent - ok
18:13:14.0801 13936 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
18:13:14.0854 13936 Power - ok
18:13:14.0911 13936 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
18:13:14.0976 13936 PptpMiniport - ok
18:13:15.0009 13936 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
18:13:15.0118 13936 Processor - ok
18:13:15.0210 13936 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
18:13:15.0313 13936 ProfSvc - ok
18:13:15.0372 13936 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:13:15.0426 13936 ProtectedStorage - ok
18:13:15.0452 13936 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
18:13:15.0567 13936 Psched - ok
18:13:15.0673 13936 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
18:13:15.0732 13936 ql2300 - ok
18:13:15.0832 13936 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
18:13:15.0851 13936 ql40xx - ok
18:13:15.0885 13936 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
18:13:15.0984 13936 QWAVE - ok
18:13:16.0014 13936 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
18:13:16.0127 13936 QWAVEdrv - ok
18:13:16.0156 13936 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
18:13:16.0260 13936 RasAcd - ok
18:13:16.0287 13936 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:13:16.0347 13936 RasAgileVpn - ok
18:13:16.0365 13936 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
18:13:16.0443 13936 RasAuto - ok
18:13:16.0456 13936 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:13:16.0554 13936 Rasl2tp - ok
18:13:16.0653 13936 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
18:13:16.0767 13936 RasMan - ok
18:13:16.0805 13936 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
18:13:16.0908 13936 RasPppoe - ok
18:13:16.0959 13936 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
18:13:17.0053 13936 RasSstp - ok
18:13:17.0128 13936 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
18:13:17.0230 13936 rdbss - ok
18:13:17.0245 13936 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
18:13:17.0301 13936 rdpbus - ok
18:13:17.0360 13936 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:13:17.0450 13936 RDPCDD - ok
18:13:17.0510 13936 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
18:13:17.0636 13936 RDPDR - ok
18:13:17.0646 13936 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
18:13:17.0776 13936 RDPENCDD - ok
18:13:17.0805 13936 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
18:13:17.0952 13936 RDPREFMP - ok
18:13:17.0999 13936 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
18:13:18.0116 13936 RDPWD - ok
18:13:18.0186 13936 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
18:13:18.0212 13936 rdyboost - ok
18:13:18.0253 13936 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
18:13:18.0338 13936 RemoteAccess - ok
18:13:18.0386 13936 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
18:13:18.0477 13936 RemoteRegistry - ok
18:13:18.0526 13936 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
18:13:18.0613 13936 RFCOMM - ok
18:13:18.0638 13936 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
18:13:18.0705 13936 RpcEptMapper - ok
18:13:18.0730 13936 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
18:13:18.0828 13936 RpcLocator - ok
18:13:18.0897 13936 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:13:18.0954 13936 RpcSs - ok
18:13:18.0973 13936 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
18:13:19.0102 13936 rspndr - ok
18:13:19.0147 13936 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
18:13:19.0273 13936 s3cap - ok
18:13:19.0328 13936 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:13:19.0415 13936 SamSs - ok
18:13:19.0484 13936 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
18:13:19.0520 13936 sbp2port - ok
18:13:19.0544 13936 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
18:13:19.0660 13936 SCardSvr - ok
18:13:19.0763 13936 SCDEmu (20b2751cd4c8f3fd989739ca661b9f30) C:\Windows\system32\drivers\SCDEmu.sys
18:13:19.0830 13936 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
18:13:19.0830 13936 SCDEmu - detected UnsignedFile.Multi.Generic (1)
18:13:19.0849 13936 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
18:13:19.0931 13936 scfilter - ok
18:13:20.0012 13936 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
18:13:20.0072 13936 Schedule - ok
18:13:20.0135 13936 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:13:20.0169 13936 SCPolicySvc - ok
18:13:20.0231 13936 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
18:13:20.0314 13936 SDRSVC - ok
18:13:20.0361 13936 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:13:20.0481 13936 secdrv - ok
18:13:20.0509 13936 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
18:13:20.0619 13936 seclogon - ok
18:13:20.0663 13936 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
18:13:20.0802 13936 SENS - ok
18:13:20.0858 13936 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
18:13:20.0910 13936 SensrSvc - ok
18:13:20.0922 13936 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
18:13:20.0963 13936 Serenum - ok
18:13:20.0985 13936 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
18:13:21.0099 13936 Serial - ok
18:13:21.0136 13936 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
18:13:21.0232 13936 sermouse - ok
18:13:21.0289 13936 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
18:13:21.0381 13936 SessionEnv - ok
18:13:21.0421 13936 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
18:13:21.0501 13936 sffdisk - ok
18:13:21.0505 13936 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
18:13:21.0587 13936 sffp_mmc - ok
18:13:21.0611 13936 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
18:13:21.0709 13936 sffp_sd - ok
18:13:21.0722 13936 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
18:13:21.0812 13936 sfloppy - ok
18:13:21.0882 13936 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
18:13:22.0001 13936 SharedAccess - ok
18:13:22.0079 13936 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
18:13:22.0253 13936 ShellHWDetection - ok
18:13:22.0283 13936 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
18:13:22.0300 13936 sisagp - ok
18:13:22.0346 13936 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:13:22.0363 13936 SiSRaid2 - ok
18:13:22.0379 13936 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
18:13:22.0406 13936 SiSRaid4 - ok
18:13:22.0428 13936 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
18:13:22.0506 13936 Smb - ok
18:13:22.0540 13936 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
18:13:22.0623 13936 SNMPTRAP - ok
18:13:22.0631 13936 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
18:13:22.0647 13936 spldr - ok
18:13:22.0722 13936 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
18:13:22.0854 13936 Spooler - ok
18:13:23.0074 13936 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
18:13:23.0304 13936 sppsvc - ok
18:13:23.0456 13936 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
18:13:23.0541 13936 sppuinotify - ok
18:13:23.0652 13936 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
18:13:23.0811 13936 srv - ok
18:13:23.0888 13936 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
18:13:23.0941 13936 srv2 - ok
18:13:24.0013 13936 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
18:13:24.0096 13936 srvnet - ok
18:13:24.0154 13936 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
18:13:24.0206 13936 SSDPSRV - ok
18:13:24.0225 13936 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
18:13:24.0378 13936 SstpSvc - ok
18:13:24.0412 13936 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
18:13:24.0427 13936 stexstor - ok
18:13:24.0508 13936 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
18:13:24.0648 13936 StiSvc - ok
18:13:24.0695 13936 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
18:13:24.0715 13936 storflt - ok
18:13:24.0744 13936 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
18:13:24.0825 13936 StorSvc - ok
18:13:24.0845 13936 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
18:13:24.0861 13936 storvsc - ok
18:13:24.0908 13936 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
18:13:24.0923 13936 swenum - ok
18:13:24.0961 13936 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
18:13:25.0055 13936 swprv - ok
18:13:25.0195 13936 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
18:13:25.0256 13936 SysMain - ok
18:13:25.0319 13936 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
18:13:25.0383 13936 TabletInputService - ok
18:13:25.0457 13936 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
18:13:25.0564 13936 TapiSrv - ok
18:13:25.0592 13936 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
18:13:25.0680 13936 TBS - ok
18:13:25.0844 13936 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
18:13:25.0915 13936 Tcpip - ok
18:13:25.0942 13936 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
18:13:25.0977 13936 TCPIP6 - ok
18:13:26.0043 13936 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
18:13:26.0208 13936 tcpipreg - ok
18:13:26.0261 13936 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
18:13:26.0368 13936 TDPIPE - ok
18:13:26.0427 13936 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
18:13:26.0511 13936 TDTCP - ok
18:13:26.0534 13936 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
18:13:26.0639 13936 tdx - ok
18:13:26.0671 13936 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
18:13:26.0697 13936 TermDD - ok
18:13:26.0788 13936 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
18:13:26.0906 13936 TermService - ok
18:13:26.0945 13936 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
18:13:27.0005 13936 Themes - ok
18:13:27.0028 13936 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:13:27.0147 13936 THREADORDER - ok
18:13:27.0215 13936 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
18:13:27.0322 13936 TPM - ok
18:13:27.0368 13936 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
18:13:27.0478 13936 TrkWks - ok
18:13:27.0576 13936 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
18:13:27.0721 13936 TrustedInstaller - ok
18:13:27.0771 13936 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:13:27.0883 13936 tssecsrv - ok
18:13:27.0985 13936 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
18:13:28.0126 13936 TsUsbFlt - ok
18:13:28.0223 13936 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
18:13:28.0285 13936 tunnel - ok
18:13:28.0316 13936 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
18:13:28.0333 13936 uagp35 - ok
18:13:28.0407 13936 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
18:13:28.0491 13936 udfs - ok
18:13:28.0533 13936 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
18:13:28.0622 13936 UI0Detect - ok
18:13:28.0669 13936 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
18:13:28.0704 13936 uliagpkx - ok
18:13:28.0772 13936 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
18:13:28.0840 13936 umbus - ok
18:13:28.0851 13936 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
18:13:28.0913 13936 UmPass - ok
18:13:28.0977 13936 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
18:13:29.0103 13936 UmRdpService - ok
18:13:29.0155 13936 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
18:13:29.0260 13936 upnphost - ok
18:13:29.0329 13936 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys
18:13:29.0438 13936 USBAAPL - ok
18:13:29.0492 13936 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
18:13:29.0616 13936 usbccgp - ok
18:13:29.0679 13936 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
18:13:29.0749 13936 usbcir - ok
18:13:29.0767 13936 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
18:13:29.0832 13936 usbehci - ok
18:13:29.0886 13936 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
18:13:29.0965 13936 usbhub - ok
18:13:29.0980 13936 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
18:13:30.0057 13936 usbohci - ok
18:13:30.0098 13936 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
18:13:30.0146 13936 usbprint - ok
18:13:30.0217 13936 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
18:13:30.0333 13936 usbscan - ok
18:13:30.0365 13936 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:13:30.0473 13936 USBSTOR - ok
18:13:30.0481 13936 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:13:30.0519 13936 usbuhci - ok
18:13:30.0560 13936 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
18:13:30.0659 13936 UxSms - ok
18:13:30.0716 13936 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:13:30.0754 13936 VaultSvc - ok
18:13:30.0773 13936 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
18:13:30.0790 13936 vdrvroot - ok
18:13:30.0871 13936 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
18:13:30.0967 13936 vds - ok
18:13:30.0983 13936 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
18:13:31.0086 13936 vga - ok
18:13:31.0121 13936 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
18:13:31.0248 13936 VgaSave - ok
18:13:31.0276 13936 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
18:13:31.0301 13936 vhdmp - ok
18:13:31.0373 13936 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
18:13:31.0389 13936 viaagp - ok
18:13:31.0403 13936 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
18:13:31.0488 13936 ViaC7 - ok
18:13:31.0513 13936 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
18:13:31.0529 13936 viaide - ok
18:13:31.0561 13936 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
18:13:31.0588 13936 vmbus - ok
18:13:31.0602 13936 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
18:13:31.0699 13936 VMBusHID - ok
18:13:31.0755 13936 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
18:13:31.0772 13936 volmgr - ok
18:13:31.0814 13936 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
18:13:31.0849 13936 volmgrx - ok
18:13:31.0892 13936 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
18:13:31.0909 13936 volsnap - ok
18:13:31.0967 13936 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
18:13:31.0985 13936 vsmraid - ok
18:13:32.0101 13936 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
18:13:32.0259 13936 VSS - ok
18:13:32.0294 13936 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
18:13:32.0357 13936 vwifibus - ok
18:13:32.0432 13936 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
18:13:32.0585 13936 W32Time - ok
18:13:32.0601 13936 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
18:13:32.0676 13936 WacomPen - ok
18:13:32.0760 13936 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:13:32.0831 13936 WANARP - ok
18:13:32.0834 13936 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:13:32.0885 13936 Wanarpv6 - ok
18:13:33.0006 13936 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
18:13:33.0079 13936 WatAdminSvc - ok
18:13:33.0172 13936 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
18:13:33.0250 13936 wbengine - ok
18:13:33.0275 13936 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
18:13:33.0374 13936 WbioSrvc - ok
18:13:33.0457 13936 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
18:13:33.0539 13936 wcncsvc - ok
18:13:33.0555 13936 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
18:13:33.0677 13936 WcsPlugInService - ok
18:13:33.0723 13936 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
18:13:33.0739 13936 Wd - ok
18:13:33.0806 13936 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
18:13:33.0858 13936 WDC_SAM - ok
18:13:33.0895 13936 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
18:13:33.0934 13936 Wdf01000 - ok
18:13:33.0950 13936 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:13:34.0053 13936 WdiServiceHost - ok
18:13:34.0056 13936 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:13:34.0119 13936 WdiSystemHost - ok
18:13:34.0188 13936 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
18:13:34.0319 13936 WebClient - ok
18:13:34.0360 13936 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
18:13:34.0442 13936 Wecsvc - ok
18:13:34.0459 13936 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
18:13:34.0553 13936 wercplsupport - ok
18:13:34.0602 13936 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
18:13:34.0676 13936 WerSvc - ok
18:13:34.0696 13936 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
18:13:34.0776 13936 WfpLwf - ok
18:13:34.0784 13936 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
18:13:34.0800 13936 WIMMount - ok
18:13:34.0921 13936 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
18:13:35.0017 13936 WinDefend - ok
18:13:35.0023 13936 WinHttpAutoProxySvc - ok
18:13:35.0086 13936 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
18:13:35.0193 13936 Winmgmt - ok
18:13:35.0351 13936 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
18:13:35.0464 13936 WinRM - ok
18:13:35.0531 13936 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
18:13:35.0639 13936 Wlansvc - ok
18:13:35.0846 13936 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:13:35.0915 13936 wlidsvc - ok
18:13:36.0021 13936 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
18:13:36.0087 13936 WmiAcpi - ok
18:13:36.0128 13936 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
18:13:36.0193 13936 wmiApSrv - ok
18:13:36.0275 13936 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
18:13:36.0395 13936 WMPNetworkSvc - ok
18:13:36.0406 13936 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
18:13:36.0466 13936 WPCSvc - ok
18:13:36.0532 13936 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
18:13:36.0662 13936 WPDBusEnum - ok
18:13:36.0684 13936 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
18:13:36.0773 13936 ws2ifsl - ok
18:13:36.0797 13936 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
18:13:36.0884 13936 wscsvc - ok
18:13:36.0888 13936 WSearch - ok
18:13:37.0040 13936 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
18:13:37.0134 13936 wuauserv - ok
18:13:37.0235 13936 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
18:13:37.0350 13936 WudfPf - ok
18:13:37.0451 13936 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:13:37.0521 13936 WUDFRd - ok
18:13:37.0596 13936 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
18:13:37.0712 13936 wudfsvc - ok
18:13:37.0754 13936 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
18:13:37.0864 13936 WwanSvc - ok
18:13:37.0975 13936 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:13:38.0361 13936 \Device\Harddisk0\DR0 - ok
18:13:38.0682 13936 MBR (0x1B8) (ec6935b765c4bb759ca2ada3ade9642e) \Device\Harddisk1\DR2
18:13:38.0709 13936 \Device\Harddisk1\DR2 ( Rootkit.Boot.SST.a ) - infected
18:13:38.0710 13936 \Device\Harddisk1\DR2 - detected Rootkit.Boot.SST.a (0)
18:13:38.0899 13936 Boot (0x1200) (18e361ab8c4d33e8a08e3717dc6e68b8) \Device\Harddisk0\DR0\Partition0
18:13:38.0902 13936 \Device\Harddisk0\DR0\Partition0 - ok
18:13:38.0905 13936 Boot (0x1200) (8f4c6b66f45455547126be40c3535373) \Device\Harddisk0\DR0\Partition1
18:13:38.0906 13936 \Device\Harddisk0\DR0\Partition1 - ok
18:13:38.0922 13936 Boot (0x1200) (06761f1fefb41c38df9fa5b709f51844) \Device\Harddisk0\DR0\Partition2
18:13:38.0924 13936 \Device\Harddisk0\DR0\Partition2 - ok
18:13:38.0947 13936 Boot (0x1200) (0b0ebaa156198e8ec24d04a5a028d820) \Device\Harddisk1\DR2\Partition0
18:13:38.0949 13936 \Device\Harddisk1\DR2\Partition0 - ok
18:13:38.0962 13936 Boot (0x1200) (f2c4147657e229b81151ea36d5223e4d) \Device\Harddisk1\DR2\Partition1
18:13:38.0964 13936 \Device\Harddisk1\DR2\Partition1 - ok
18:13:38.0985 13936 Boot (0x1200) (8d73de8d36b587e1fa784e855b31168e) \Device\Harddisk1\DR2\Partition2
18:13:38.0988 13936 \Device\Harddisk1\DR2\Partition2 - ok
18:13:38.0989 13936 ============================================================
18:13:38.0989 13936 Scan finished
18:13:38.0989 13936 ============================================================
18:13:39.0001 13408 Detected object count: 3
18:13:39.0001 13408 Actual detected object count: 3
18:14:11.0830 13408 Polar Daemon ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:11.0830 13408 Polar Daemon ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:11.0830 13408 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:11.0830 13408 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:11.0832 13408 \Device\Harddisk1\DR2 ( Rootkit.Boot.SST.a ) - skipped by user
18:14:11.0832 13408 \Device\Harddisk1\DR2 ( Rootkit.Boot.SST.a ) - User select action: Skip

soltari · #30 Příspěvek od **soltari** » 11 črc 2012 23:06

Ok, takze killer nahlasil, ze opravit MBR neni mozne a jestli ho chci prehrat defaultnim. Povolil jsem to, nic custom tam snad nebylo. Tady je log, nasel ty druhe dve veci. Takze kopnout disk zpatky? Co pustit dal?

23:53:09.0723 4728 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
23:53:11.0807 4728 ============================================================
23:53:11.0807 4728 Current date / time: 2012/07/11 23:53:11.0807
23:53:11.0807 4728 SystemInfo:
23:53:11.0807 4728
23:53:11.0807 4728 OS Version: 6.1.7601 ServicePack: 1.0
23:53:11.0807 4728 Product type: Workstation
23:53:11.0807 4728 ComputerName: MARTIN-PC
23:53:12.0068 4728 UserName: Martin
23:53:12.0068 4728 Windows directory: C:\Windows
23:53:12.0068 4728 System windows directory: C:\Windows
23:53:12.0068 4728 Processor architecture: Intel x86
23:53:12.0068 4728 Number of processors: 2
23:53:12.0068 4728 Page size: 0x1000
23:53:12.0068 4728 Boot type: Normal boot
23:53:12.0068 4728 ============================================================
23:53:15.0605 4728 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:53:15.0636 4728 Drive \Device\Harddisk1\DR5 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:53:15.0945 4728 ============================================================
23:53:15.0945 4728 \Device\Harddisk0\DR0:
23:53:15.0946 4728 MBR partitions:
23:53:15.0946 4728 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x7530000
23:53:15.0946 4728 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x7530800, BlocksNum 0x32000
23:53:15.0946 4728 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7562800, BlocksNum 0x32E23000
23:53:15.0946 4728 \Device\Harddisk1\DR5:
23:53:15.0947 4728 MBR partitions:
23:53:15.0947 4728 \Device\Harddisk1\DR5\Partition0: MBR, Type 0x7, StartLBA 0x1C42000, BlocksNum 0x32000
23:53:15.0947 4728 \Device\Harddisk1\DR5\Partition1: MBR, Type 0x7, StartLBA 0x1C74000, BlocksNum 0x1CB68830
23:53:15.0969 4728 \Device\Harddisk1\DR5\Partition2: MBR, Type 0x7, StartLBA 0x1E7DD800, BlocksNum 0x1BBA3830
23:53:15.0969 4728 ============================================================
23:53:16.0067 4728 C: <-> \Device\Harddisk0\DR0\Partition2
23:53:16.0502 4728 D: <-> \Device\Harddisk0\DR0\Partition0
23:53:16.0566 4728 H: <-> \Device\Harddisk1\DR5\Partition1
23:53:16.0617 4728 I: <-> \Device\Harddisk1\DR5\Partition2
23:53:16.0644 4728 G: <-> \Device\Harddisk1\DR5\Partition0
23:53:16.0644 4728 ============================================================
23:53:16.0644 4728 Initialize success
23:53:16.0644 4728 ============================================================
23:53:24.0148 26336 ============================================================
23:53:24.0148 26336 Scan started
23:53:24.0148 26336 Mode: Manual; SigCheck; TDLFS;
23:53:24.0148 26336 ============================================================
23:53:37.0049 26336 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
23:53:38.0513 26336 1394ohci - ok
23:53:38.0611 26336 Accelerometer (465b6baaba53a628f7252846d0e900ee) C:\Windows\system32\DRIVERS\Accelerometer.sys
23:53:38.0625 26336 Accelerometer - ok
23:53:38.0785 26336 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
23:53:38.0827 26336 ACPI - ok
23:53:38.0922 26336 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
23:53:39.0159 26336 AcpiPmi - ok
23:53:39.0301 26336 ADIHdAudAddService (fb9ece3f7b8a03e474e611031ad4cd23) C:\Windows\system32\drivers\ADIHdAud.sys
23:53:39.0594 26336 ADIHdAudAddService - ok
23:53:39.0837 26336 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
23:53:39.0858 26336 adp94xx - ok
23:53:39.0933 26336 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
23:53:39.0976 26336 adpahci - ok
23:53:40.0008 26336 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
23:53:40.0024 26336 adpu320 - ok
23:53:40.0085 26336 AEADIFilters (12d23758621b00b8d3134095ec3325fd) C:\Windows\system32\AEADISRV.EXE
23:53:40.0379 26336 AEADIFilters - ok
23:53:40.0402 26336 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
23:53:40.0813 26336 AeLookupSvc - ok
23:53:40.0961 26336 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
23:53:41.0263 26336 AFD - ok
23:53:41.0346 26336 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\Windows\system32\DRIVERS\AGRSM.sys
23:53:41.0667 26336 AgereSoftModem - ok
23:53:41.0736 26336 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
23:53:41.0751 26336 agp440 - ok
23:53:41.0796 26336 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
23:53:41.0811 26336 aic78xx - ok
23:53:41.0846 26336 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
23:53:42.0181 26336 ALG - ok
23:53:42.0255 26336 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
23:53:42.0270 26336 aliide - ok
23:53:42.0373 26336 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
23:53:42.0388 26336 amdagp - ok
23:53:42.0411 26336 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
23:53:42.0425 26336 amdide - ok
23:53:42.0440 26336 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
23:53:42.0721 26336 AmdK8 - ok
23:53:42.0759 26336 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
23:53:43.0024 26336 AmdPPM - ok
23:53:43.0091 26336 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
23:53:43.0106 26336 amdsata - ok
23:53:43.0165 26336 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
23:53:43.0184 26336 amdsbs - ok
23:53:43.0196 26336 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
23:53:43.0211 26336 amdxata - ok
23:53:43.0304 26336 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
23:53:43.0697 26336 AppID - ok
23:53:43.0703 26336 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
23:53:43.0979 26336 AppIDSvc - ok
23:53:44.0076 26336 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
23:53:44.0375 26336 Appinfo - ok
23:53:44.0573 26336 Apple Mobile Device (018857ead9a077a56aedfc0e5ef7a24a) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:53:44.0585 26336 Apple Mobile Device - ok
23:53:44.0649 26336 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
23:53:45.0012 26336 AppMgmt - ok
23:53:45.0046 26336 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
23:53:45.0061 26336 arc - ok
23:53:45.0080 26336 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
23:53:45.0095 26336 arcsas - ok
23:53:45.0164 26336 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\Windows\system32\drivers\aswFsBlk.sys
23:53:45.0717 26336 aswFsBlk - ok
23:53:45.0841 26336 aswMonFlt (258143605e77e4008f1758481d6a977d) C:\Windows\system32\drivers\aswMonFlt.sys
23:53:45.0855 26336 aswMonFlt - ok
23:53:45.0888 26336 aswRdr (352d5a48ebab35a7693b048679304831) C:\Windows\system32\drivers\aswRdr.sys
23:53:45.0951 26336 aswRdr - ok
23:53:46.0145 26336 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\Windows\system32\drivers\aswSnx.sys
23:53:46.0197 26336 aswSnx - ok
23:53:46.0246 26336 aswSP (010012597333da1f46c3243f33f8409e) C:\Windows\system32\drivers\aswSP.sys
23:53:46.0291 26336 aswSP - ok
23:53:46.0354 26336 aswTdi (f9f84364416658e9786235904d448d37) C:\Windows\system32\drivers\aswTdi.sys
23:53:46.0370 26336 aswTdi - ok
23:53:46.0439 26336 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
23:53:46.0744 26336 AsyncMac - ok
23:53:46.0812 26336 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
23:53:46.0826 26336 atapi - ok
23:53:47.0360 26336 ATSwpWDF (befe54e9bc648a3c79c917a63b6ee7da) C:\Windows\system32\Drivers\ATSwpWDF.sys
23:53:47.0445 26336 ATSwpWDF - ok
23:53:47.0571 26336 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
23:53:47.0872 26336 AudioEndpointBuilder - ok
23:53:47.0879 26336 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
23:53:48.0264 26336 Audiosrv - ok
23:53:48.0385 26336 avast! Antivirus (996e6d052438e8d8dfd501f31560b2e0) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
23:53:48.0408 26336 avast! Antivirus - ok
23:53:48.0505 26336 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
23:53:48.0579 26336 AxInstSV - ok
23:53:48.0641 26336 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
23:53:48.0677 26336 b06bdrv - ok
23:53:48.0719 26336 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
23:53:49.0021 26336 b57nd60x - ok
23:53:49.0066 26336 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
23:53:49.0317 26336 BDESVC - ok
23:53:49.0373 26336 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
23:53:49.0663 26336 Beep - ok
23:53:49.0795 26336 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
23:53:50.0160 26336 BFE - ok
23:53:50.0302 26336 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
23:53:50.0587 26336 BITS - ok
23:53:50.0604 26336 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
23:53:50.0908 26336 blbdrive - ok
23:53:51.0291 26336 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files\Bonjour\mDNSResponder.exe
23:53:51.0307 26336 Bonjour Service - ok
23:53:51.0354 26336 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
23:53:51.0378 26336 bowser - ok
23:53:51.0402 26336 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:53:51.0821 26336 BrFiltLo - ok
23:53:51.0835 26336 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:53:52.0291 26336 BrFiltUp - ok
23:53:52.0364 26336 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
23:53:52.0606 26336 Browser - ok
23:53:52.0641 26336 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
23:53:52.0917 26336 Brserid - ok
23:53:52.0934 26336 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
23:53:53.0063 26336 BrSerWdm - ok
23:53:53.0177 26336 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:53:53.0557 26336 BrUsbMdm - ok
23:53:53.0561 26336 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
23:53:53.0821 26336 BrUsbSer - ok
23:53:53.0885 26336 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
23:53:54.0196 26336 BthEnum - ok
23:53:54.0217 26336 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
23:53:54.0519 26336 BTHMODEM - ok
23:53:54.0569 26336 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
23:53:54.0887 26336 BthPan - ok
23:53:54.0940 26336 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
23:53:55.0255 26336 BTHPORT - ok
23:53:55.0307 26336 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
23:53:55.0590 26336 bthserv - ok
23:53:55.0625 26336 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
23:53:55.0924 26336 BTHUSB - ok
23:53:56.0025 26336 btusbflt (f549c3fb145a4928e40bb1518b2034dc) C:\Windows\system32\drivers\btusbflt.sys
23:53:56.0063 26336 btusbflt - ok
23:53:56.0077 26336 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
23:53:56.0438 26336 cdfs - ok
23:53:56.0530 26336 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
23:53:56.0906 26336 cdrom - ok
23:53:56.0995 26336 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
23:53:57.0329 26336 CertPropSvc - ok
23:53:57.0438 26336 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
23:53:57.0809 26336 circlass - ok
23:53:57.0926 26336 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
23:53:57.0988 26336 CLFS - ok
23:53:58.0083 26336 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:53:58.0099 26336 clr_optimization_v2.0.50727_32 - ok
23:53:58.0234 26336 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:53:58.0250 26336 clr_optimization_v4.0.30319_32 - ok
23:53:58.0271 26336 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
23:53:58.0712 26336 CmBatt - ok
23:53:58.0751 26336 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
23:53:58.0766 26336 cmdide - ok
23:53:58.0861 26336 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
23:53:58.0918 26336 CNG - ok
23:53:58.0951 26336 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
23:53:58.0965 26336 Compbatt - ok
23:53:59.0029 26336 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
23:53:59.0452 26336 CompositeBus - ok
23:53:59.0503 26336 COMSysApp - ok
23:53:59.0655 26336 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
23:53:59.0753 26336 crcdisk - ok
23:54:00.0180 26336 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
23:54:00.0756 26336 CryptSvc - ok
23:54:00.0848 26336 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
23:54:01.0253 26336 CSC - ok
23:54:01.0346 26336 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
23:54:01.0768 26336 CscService - ok
23:54:01.0836 26336 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
23:54:02.0219 26336 DcomLaunch - ok
23:54:02.0273 26336 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
23:54:02.0572 26336 defragsvc - ok
23:54:02.0667 26336 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
23:54:02.0830 26336 DfsC - ok
23:54:02.0928 26336 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
23:54:03.0194 26336 Dhcp - ok
23:54:03.0221 26336 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
23:54:03.0546 26336 discache - ok
23:54:03.0585 26336 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
23:54:03.0601 26336 Disk - ok
23:54:03.0665 26336 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
23:54:03.0916 26336 Dnscache - ok
23:54:03.0983 26336 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
23:54:04.0278 26336 dot3svc - ok
23:54:04.0337 26336 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
23:54:04.0619 26336 DPS - ok
23:54:04.0681 26336 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
23:54:04.0843 26336 drmkaud - ok
23:54:04.0941 26336 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
23:54:04.0971 26336 DXGKrnl - ok
23:54:05.0014 26336 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
23:54:05.0296 26336 EapHost - ok
23:54:05.0489 26336 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
23:54:05.0836 26336 ebdrv - ok
23:54:06.0010 26336 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
23:54:06.0154 26336 EFS - ok
23:54:06.0242 26336 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
23:54:06.0593 26336 ehRecvr - ok
23:54:06.0629 26336 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
23:54:06.0961 26336 ehSched - ok
23:54:07.0035 26336 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
23:54:07.0080 26336 elxstor - ok
23:54:07.0142 26336 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
23:54:07.0182 26336 ErrDev - ok
23:54:07.0280 26336 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
23:54:07.0569 26336 EventSystem - ok
23:54:07.0602 26336 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
23:54:07.0758 26336 exfat - ok
23:54:07.0807 26336 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
23:54:07.0993 26336 fastfat - ok
23:54:08.0102 26336 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
23:54:08.0273 26336 Fax - ok
23:54:08.0294 26336 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
23:54:08.0545 26336 fdc - ok
23:54:08.0573 26336 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
23:54:08.0877 26336 fdPHost - ok
23:54:08.0909 26336 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
23:54:09.0138 26336 FDResPub - ok
23:54:09.0174 26336 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
23:54:09.0189 26336 FileInfo - ok
23:54:09.0208 26336 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
23:54:09.0428 26336 Filetrace - ok
23:54:09.0457 26336 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
23:54:09.0716 26336 flpydisk - ok
23:54:09.0764 26336 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
23:54:09.0783 26336 FltMgr - ok
23:54:09.0903 26336 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
23:54:10.0089 26336 FontCache - ok
23:54:10.0158 26336 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:54:10.0171 26336 FontCache3.0.0.0 - ok
23:54:10.0190 26336 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
23:54:10.0205 26336 FsDepends - ok
23:54:10.0289 26336 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
23:54:10.0304 26336 Fs_Rec - ok
23:54:10.0577 26336 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
23:54:10.0601 26336 fvevol - ok
23:54:10.0623 26336 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:54:10.0640 26336 gagp30kx - ok
23:54:10.0689 26336 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:54:10.0701 26336 GEARAspiWDM - ok
23:54:10.0785 26336 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
23:54:10.0843 26336 gpsvc - ok
23:54:11.0042 26336 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
23:54:11.0055 26336 gupdate - ok
23:54:11.0075 26336 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
23:54:11.0088 26336 gupdatem - ok
23:54:11.0165 26336 HBtnKey (7dad592a4d28092d584cfb4deef1373d) C:\Windows\system32\DRIVERS\cpqbttn.sys
23:54:11.0276 26336 HBtnKey - ok
23:54:11.0305 26336 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
23:54:11.0429 26336 hcw85cir - ok
23:54:11.0515 26336 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
23:54:11.0617 26336 HdAudAddService - ok
23:54:11.0676 26336 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
23:54:11.0742 26336 HDAudBus - ok
23:54:11.0794 26336 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
23:54:11.0876 26336 HidBatt - ok
23:54:11.0910 26336 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
23:54:11.0966 26336 HidBth - ok
23:54:12.0006 26336 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
23:54:12.0091 26336 HidIr - ok
23:54:12.0141 26336 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
23:54:12.0254 26336 hidserv - ok
23:54:12.0313 26336 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
23:54:12.0422 26336 HidUsb - ok
23:54:12.0753 26336 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
23:54:12.0838 26336 hkmsvc - ok
23:54:12.0912 26336 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
23:54:13.0051 26336 HomeGroupListener - ok
23:54:13.0111 26336 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
23:54:13.0131 26336 HomeGroupProvider - ok
23:54:13.0196 26336 hpdskflt (d5c35e6416a379c445cda826b9fe452f) C:\Windows\system32\DRIVERS\hpdskflt.sys
23:54:13.0208 26336 hpdskflt - ok
23:54:13.0390 26336 hpqwmiex (ef3ea06057132138b4e5895a61601dbe) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
23:54:13.0458 26336 hpqwmiex - ok
23:54:13.0521 26336 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
23:54:13.0536 26336 HpSAMD - ok
23:54:13.0556 26336 hpsrv (00dc55481fad2841284ed09e7d69cd11) C:\Windows\system32\Hpservice.exe
23:54:13.0569 26336 hpsrv - ok
23:54:13.0657 26336 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
23:54:13.0735 26336 HTTP - ok
23:54:13.0753 26336 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
23:54:13.0768 26336 hwpolicy - ok
23:54:13.0818 26336 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
23:54:13.0870 26336 i8042prt - ok
23:54:13.0933 26336 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
23:54:13.0954 26336 iaStorV - ok
23:54:14.0084 26336 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:54:14.0131 26336 idsvc - ok
23:54:14.0391 26336 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
23:54:14.0723 26336 igfx - ok
23:54:14.0841 26336 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
23:54:14.0856 26336 iirsp - ok
23:54:14.0937 26336 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
23:54:15.0070 26336 IKEEXT - ok
23:54:15.0108 26336 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
23:54:15.0123 26336 intelide - ok
23:54:15.0145 26336 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
23:54:15.0240 26336 intelppm - ok
23:54:15.0277 26336 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
23:54:15.0384 26336 IPBusEnum - ok
23:54:15.0421 26336 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:54:15.0514 26336 IpFilterDriver - ok
23:54:15.0721 26336 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
23:54:15.0967 26336 iphlpsvc - ok
23:54:16.0030 26336 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
23:54:16.0138 26336 IPMIDRV - ok
23:54:16.0172 26336 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
23:54:16.0243 26336 IPNAT - ok
23:54:16.0418 26336 iPod Service (0ca8c2e721617aa2f923a8151c96fb33) C:\Program Files\iPod\bin\iPodService.exe
23:54:16.0440 26336 iPod Service - ok
23:54:16.0466 26336 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
23:54:16.0592 26336 IRENUM - ok
23:54:16.0605 26336 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
23:54:16.0620 26336 isapnp - ok
23:54:16.0645 26336 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
23:54:16.0677 26336 iScsiPrt - ok
23:54:16.0714 26336 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
23:54:16.0729 26336 kbdclass - ok
23:54:16.0769 26336 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
23:54:16.0894 26336 kbdhid - ok
23:54:16.0957 26336 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
23:54:16.0996 26336 KeyIso - ok
23:54:17.0019 26336 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
23:54:17.0036 26336 KSecDD - ok
23:54:17.0061 26336 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
23:54:17.0110 26336 KSecPkg - ok
23:54:17.0142 26336 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
23:54:17.0250 26336 KtmRm - ok
23:54:17.0318 26336 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
23:54:17.0427 26336 LanmanServer - ok
23:54:17.0483 26336 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
23:54:17.0613 26336 LanmanWorkstation - ok
23:54:17.0689 26336 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
23:54:17.0814 26336 lltdio - ok
23:54:17.0869 26336 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
23:54:17.0940 26336 lltdsvc - ok
23:54:17.0971 26336 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
23:54:18.0059 26336 lmhosts - ok
23:54:18.0153 26336 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:54:18.0169 26336 LSI_FC - ok
23:54:18.0196 26336 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:54:18.0213 26336 LSI_SAS - ok
23:54:18.0253 26336 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:54:18.0294 26336 LSI_SAS2 - ok
23:54:18.0308 26336 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:54:18.0324 26336 LSI_SCSI - ok
23:54:18.0357 26336 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
23:54:18.0640 26336 luafv - ok
23:54:18.0701 26336 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
23:54:18.0914 26336 Mcx2Svc - ok
23:54:18.0934 26336 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
23:54:19.0445 26336 megasas - ok
23:54:19.0480 26336 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
23:54:19.0808 26336 MegaSR - ok
23:54:19.0864 26336 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
23:54:20.0005 26336 MMCSS - ok
23:54:20.0028 26336 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
23:54:20.0140 26336 Modem - ok
23:54:20.0192 26336 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
23:54:20.0288 26336 monitor - ok
23:54:20.0357 26336 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
23:54:20.0397 26336 mouclass - ok
23:54:20.0404 26336 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
23:54:20.0449 26336 mouhid - ok
23:54:20.0503 26336 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
23:54:20.0519 26336 mountmgr - ok
23:54:20.0582 26336 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
23:54:20.0600 26336 mpio - ok
23:54:20.0623 26336 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
23:54:20.0711 26336 mpsdrv - ok
23:54:20.0793 26336 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
23:54:20.0893 26336 MpsSvc - ok
23:54:20.0949 26336 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
23:54:21.0041 26336 MRxDAV - ok
23:54:21.0463 26336 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:54:21.0601 26336 mrxsmb - ok
23:54:21.0673 26336 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:54:21.0892 26336 mrxsmb10 - ok
23:54:21.0932 26336 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:54:22.0105 26336 mrxsmb20 - ok
23:54:22.0129 26336 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
23:54:22.0145 26336 msahci - ok
23:54:22.0213 26336 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
23:54:22.0230 26336 msdsm - ok
23:54:22.0269 26336 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
23:54:22.0380 26336 MSDTC - ok
23:54:22.0427 26336 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
23:54:22.0549 26336 Msfs - ok
23:54:22.0558 26336 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
23:54:22.0708 26336 mshidkmdf - ok
23:54:22.0769 26336 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
23:54:22.0785 26336 msisadrv - ok
23:54:22.0842 26336 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
23:54:22.0982 26336 MSiSCSI - ok
23:54:22.0987 26336 msiserver - ok
23:54:23.0062 26336 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
23:54:23.0251 26336 MSKSSRV - ok
23:54:23.0292 26336 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
23:54:23.0550 26336 MSPCLOCK - ok
23:54:23.0587 26336 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
23:54:23.0783 26336 MSPQM - ok
23:54:23.0840 26336 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
23:54:23.0874 26336 MsRPC - ok
23:54:23.0893 26336 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
23:54:23.0909 26336 mssmbios - ok
23:54:23.0916 26336 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
23:54:24.0072 26336 MSTEE - ok
23:54:24.0151 26336 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
23:54:24.0349 26336 MTConfig - ok
23:54:24.0381 26336 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
23:54:24.0396 26336 Mup - ok
23:54:24.0495 26336 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
23:54:24.0590 26336 napagent - ok
23:54:24.0652 26336 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
23:54:24.0712 26336 NativeWifiP - ok
23:54:24.0825 26336 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
23:54:24.0850 26336 NDIS - ok
23:54:24.0862 26336 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
23:54:24.0907 26336 NdisCap - ok
23:54:24.0934 26336 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
23:54:24.0983 26336 NdisTapi - ok
23:54:25.0038 26336 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
23:54:25.0093 26336 Ndisuio - ok
23:54:25.0178 26336 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
23:54:25.0243 26336 NdisWan - ok
23:54:25.0311 26336 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
23:54:25.0417 26336 NDProxy - ok
23:54:25.0437 26336 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
23:54:25.0506 26336 NetBIOS - ok
23:54:25.0576 26336 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
23:54:25.0628 26336 NetBT - ok
23:54:25.0688 26336 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
23:54:25.0735 26336 Netlogon - ok
23:54:25.0868 26336 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
23:54:25.0984 26336 Netman - ok
23:54:26.0022 26336 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
23:54:26.0138 26336 netprofm - ok
23:54:26.0279 26336 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:54:26.0295 26336 NetTcpPortSharing - ok
23:54:26.0737 26336 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
23:54:26.0825 26336 netw5v32 - ok
23:54:26.0954 26336 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
23:54:26.0970 26336 nfrd960 - ok
23:54:27.0016 26336 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
23:54:27.0055 26336 NlaSvc - ok
23:54:27.0096 26336 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
23:54:27.0126 26336 Npfs - ok
23:54:27.0202 26336 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
23:54:27.0245 26336 nsi - ok
23:54:27.0291 26336 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
23:54:27.0358 26336 nsiproxy - ok
23:54:27.0526 26336 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
23:54:27.0559 26336 Ntfs - ok
23:54:27.0579 26336 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
23:54:27.0634 26336 Null - ok
23:54:27.0729 26336 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
23:54:27.0745 26336 nvraid - ok
23:54:27.0971 26336 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
23:54:27.0998 26336 nvstor - ok
23:54:28.0037 26336 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
23:54:28.0053 26336 nv_agp - ok
23:54:28.0218 26336 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:54:28.0238 26336 odserv - ok
23:54:28.0304 26336 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
23:54:28.0344 26336 ohci1394 - ok
23:54:28.0414 26336 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:54:28.0429 26336 ose - ok
23:54:28.0478 26336 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
23:54:28.0580 26336 p2pimsvc - ok
23:54:28.0651 26336 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
23:54:28.0697 26336 p2psvc - ok
23:54:28.0736 26336 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
23:54:28.0763 26336 Parport - ok
23:54:28.0848 26336 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
23:54:28.0863 26336 partmgr - ok
23:54:28.0899 26336 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
23:54:28.0980 26336 Parvdm - ok
23:54:29.0003 26336 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
23:54:29.0103 26336 PcaSvc - ok
23:54:29.0136 26336 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
23:54:29.0153 26336 pci - ok
23:54:29.0201 26336 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
23:54:29.0216 26336 pciide - ok
23:54:29.0365 26336 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
23:54:29.0391 26336 pcmcia - ok
23:54:29.0421 26336 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
23:54:29.0436 26336 pcw - ok
23:54:29.0501 26336 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
23:54:29.0575 26336 PEAUTH - ok
23:54:29.0658 26336 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
23:54:29.0743 26336 PeerDistSvc - ok
23:54:29.0903 26336 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
23:54:30.0023 26336 pla - ok
23:54:30.0320 26336 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
23:54:30.0382 26336 PlugPlay - ok
23:54:30.0417 26336 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
23:54:30.0493 26336 PNRPAutoReg - ok
23:54:30.0553 26336 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
23:54:32.0637 26336 PNRPsvc - ok
23:54:32.0797 26336 Polar Daemon (64e5b51cc3df3112d95fd3b9287e3f6f) C:\Program Files\Polar\Daemon\polard.exe
23:54:32.0881 26336 Polar Daemon ( UnsignedFile.Multi.Generic ) - warning
23:54:32.0881 26336 Polar Daemon - detected UnsignedFile.Multi.Generic (1)
23:54:32.0917 26336 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
23:54:33.0022 26336 PolicyAgent - ok
23:54:33.0096 26336 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
23:54:33.0169 26336 Power - ok
23:54:33.0248 26336 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
23:54:33.0319 26336 PptpMiniport - ok
23:54:33.0350 26336 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
23:54:33.0443 26336 Processor - ok
23:54:33.0516 26336 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
23:54:33.0639 26336 ProfSvc - ok
23:54:33.0698 26336 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
23:54:33.0734 26336 ProtectedStorage - ok
23:54:33.0777 26336 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
23:54:33.0825 26336 Psched - ok
23:54:33.0971 26336 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
23:54:34.0006 26336 ql2300 - ok
23:54:34.0210 26336 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
23:54:34.0232 26336 ql40xx - ok
23:54:34.0342 26336 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
23:54:34.0436 26336 QWAVE - ok
23:54:34.0464 26336 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
23:54:34.0540 26336 QWAVEdrv - ok
23:54:34.0560 26336 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
23:54:34.0667 26336 RasAcd - ok
23:54:34.0710 26336 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:54:34.0772 26336 RasAgileVpn - ok
23:54:34.0798 26336 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
23:54:34.0861 26336 RasAuto - ok
23:54:34.0882 26336 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:54:34.0977 26336 Rasl2tp - ok
23:54:35.0066 26336 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
23:54:35.0178 26336 RasMan - ok
23:54:35.0208 26336 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
23:54:35.0342 26336 RasPppoe - ok
23:54:35.0373 26336 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
23:54:35.0473 26336 RasSstp - ok
23:54:35.0575 26336 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
23:54:35.0715 26336 rdbss - ok
23:54:35.0771 26336 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
23:54:35.0870 26336 rdpbus - ok
23:54:35.0930 26336 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:54:36.0042 26336 RDPCDD - ok
23:54:36.0101 26336 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
23:54:36.0229 26336 RDPDR - ok
23:54:36.0239 26336 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
23:54:36.0327 26336 RDPENCDD - ok
23:54:36.0364 26336 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
23:54:36.0436 26336 RDPREFMP - ok
23:54:36.0498 26336 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
23:54:36.0587 26336 RDPWD - ok
23:54:36.0672 26336 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
23:54:36.0691 26336 rdyboost - ok
23:54:36.0744 26336 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
23:54:36.0821 26336 RemoteAccess - ok
23:54:36.0856 26336 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
23:54:36.0911 26336 RemoteRegistry - ok
23:54:36.0964 26336 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
23:54:37.0012 26336 RFCOMM - ok
23:54:37.0078 26336 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
23:54:37.0137 26336 RpcEptMapper - ok
23:54:37.0178 26336 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
23:54:37.0272 26336 RpcLocator - ok
23:54:37.0358 26336 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
23:54:37.0407 26336 RpcSs - ok
23:54:37.0431 26336 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
23:54:37.0477 26336 rspndr - ok
23:54:37.0550 26336 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
23:54:37.0587 26336 s3cap - ok
23:54:37.0664 26336 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
23:54:37.0688 26336 SamSs - ok
23:54:37.0961 26336 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
23:54:37.0977 26336 sbp2port - ok
23:54:38.0009 26336 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
23:54:38.0165 26336 SCardSvr - ok
23:54:38.0283 26336 SCDEmu (20b2751cd4c8f3fd989739ca661b9f30) C:\Windows\system32\drivers\SCDEmu.sys
23:54:38.0335 26336 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
23:54:38.0335 26336 SCDEmu - detected UnsignedFile.Multi.Generic (1)
23:54:38.0366 26336 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
23:54:38.0440 26336 scfilter - ok
23:54:38.0586 26336 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
23:54:38.0719 26336 Schedule - ok
23:54:38.0792 26336 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
23:54:38.0861 26336 SCPolicySvc - ok
23:54:38.0944 26336 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
23:54:39.0026 26336 SDRSVC - ok
23:54:39.0063 26336 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
23:54:39.0165 26336 secdrv - ok
23:54:39.0179 26336 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
23:54:39.0245 26336 seclogon - ok
23:54:39.0284 26336 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
23:54:39.0378 26336 SENS - ok
23:54:39.0417 26336 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
23:54:39.0480 26336 SensrSvc - ok
23:54:39.0513 26336 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
23:54:39.0621 26336 Serenum - ok
23:54:39.0650 26336 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
23:54:39.0762 26336 Serial - ok
23:54:39.0785 26336 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
23:54:39.0835 26336 sermouse - ok
23:54:39.0895 26336 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
23:54:39.0963 26336 SessionEnv - ok
23:54:40.0025 26336 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
23:54:40.0096 26336 sffdisk - ok
23:54:40.0100 26336 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
23:54:40.0145 26336 sffp_mmc - ok
23:54:40.0160 26336 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
23:54:40.0240 26336 sffp_sd - ok
23:54:40.0260 26336 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
23:54:40.0334 26336 sfloppy - ok
23:54:40.0418 26336 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
23:54:40.0550 26336 SharedAccess - ok
23:54:40.0636 26336 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
23:54:40.0800 26336 ShellHWDetection - ok
23:54:40.0832 26336 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
23:54:40.0848 26336 sisagp - ok
23:54:40.0910 26336 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:54:40.0926 26336 SiSRaid2 - ok
23:54:40.0964 26336 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
23:54:41.0009 26336 SiSRaid4 - ok
23:54:41.0049 26336 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
23:54:41.0177 26336 Smb - ok
23:54:41.0231 26336 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
23:54:41.0321 26336 SNMPTRAP - ok
23:54:41.0335 26336 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
23:54:41.0352 26336 spldr - ok
23:54:41.0432 26336 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
23:54:41.0562 26336 Spooler - ok
23:54:41.0789 26336 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
23:54:42.0026 26336 sppsvc - ok
23:54:42.0184 26336 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
23:54:42.0263 26336 sppuinotify - ok
23:54:42.0375 26336 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
23:54:42.0499 26336 srv - ok
23:54:42.0888 26336 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
23:54:43.0041 26336 srv2 - ok
23:54:43.0428 26336 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
23:54:43.0539 26336 srvnet - ok
23:54:43.0578 26336 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
23:54:43.0660 26336 SSDPSRV - ok
23:54:44.0170 26336 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
23:54:44.0347 26336 SstpSvc - ok
23:54:44.0394 26336 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
23:54:44.0409 26336 stexstor - ok
23:54:44.0514 26336 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
23:54:44.0596 26336 StiSvc - ok
23:54:44.0655 26336 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
23:54:44.0671 26336 storflt - ok
23:54:44.0693 26336 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
23:54:44.0806 26336 StorSvc - ok
23:54:44.0838 26336 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
23:54:44.0853 26336 storvsc - ok
23:54:44.0916 26336 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
23:54:44.0931 26336 swenum - ok
23:54:44.0963 26336 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
23:54:45.0082 26336 swprv - ok
23:54:45.0209 26336 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
23:54:45.0316 26336 SysMain - ok
23:54:45.0379 26336 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
23:54:45.0500 26336 TabletInputService - ok
23:54:45.0579 26336 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
23:54:45.0677 26336 TapiSrv - ok
23:54:45.0718 26336 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
23:54:45.0828 26336 TBS - ok
23:54:46.0021 26336 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
23:54:46.0113 26336 Tcpip - ok
23:54:46.0135 26336 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
23:54:46.0171 26336 TCPIP6 - ok
23:54:46.0229 26336 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
23:54:46.0341 26336 tcpipreg - ok
23:54:46.0398 26336 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
23:54:46.0495 26336 TDPIPE - ok
23:54:46.0549 26336 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
23:54:46.0657 26336 TDTCP - ok
23:54:46.0694 26336 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
23:54:46.0764 26336 tdx - ok
23:54:46.0809 26336 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
23:54:46.0848 26336 TermDD - ok
23:54:46.0941 26336 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
23:54:46.0994 26336 TermService - ok
23:54:47.0015 26336 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
23:54:47.0117 26336 Themes - ok
23:54:47.0142 26336 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
23:54:47.0264 26336 THREADORDER - ok
23:54:47.0316 26336 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\Windows\system32\drivers\tpm.sys
23:54:47.0432 26336 TPM - ok
23:54:47.0471 26336 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
23:54:47.0598 26336 TrkWks - ok
23:54:47.0723 26336 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
23:54:47.0798 26336 TrustedInstaller - ok
23:54:47.0863 26336 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:54:47.0990 26336 tssecsrv - ok
23:54:48.0122 26336 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
23:54:48.0259 26336 TsUsbFlt - ok
23:54:48.0347 26336 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
23:54:48.0493 26336 tunnel - ok
23:54:48.0738 26336 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
23:54:48.0754 26336 uagp35 - ok
23:54:48.0851 26336 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
23:54:48.0974 26336 udfs - ok
23:54:49.0016 26336 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
23:54:49.0110 26336 UI0Detect - ok
23:54:49.0157 26336 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
23:54:49.0366 26336 uliagpkx - ok
23:54:49.0432 26336 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
23:54:49.0523 26336 umbus - ok
23:54:49.0584 26336 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
23:54:49.0665 26336 UmPass - ok
23:54:49.0746 26336 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
23:54:49.0908 26336 UmRdpService - ok
23:54:49.0961 26336 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
23:54:50.0148 26336 upnphost - ok
23:54:50.0210 26336 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys
23:54:50.0344 26336 USBAAPL - ok
23:54:50.0387 26336 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
23:54:50.0520 26336 usbccgp - ok
23:54:50.0584 26336 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
23:54:50.0647 26336 usbcir - ok
23:54:50.0660 26336 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
23:54:50.0732 26336 usbehci - ok
23:54:50.0788 26336 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
23:54:50.0916 26336 usbhub - ok
23:54:50.0929 26336 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
23:54:51.0006 26336 usbohci - ok
23:54:51.0035 26336 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
23:54:51.0089 26336 usbprint - ok
23:54:51.0165 26336 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
23:54:51.0232 26336 usbscan - ok
23:54:51.0264 26336 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:54:51.0354 26336 USBSTOR - ok
23:54:51.0387 26336 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
23:54:51.0449 26336 usbuhci - ok
23:54:51.0464 26336 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
23:54:51.0536 26336 UxSms - ok
23:54:51.0598 26336 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
23:54:51.0665 26336 VaultSvc - ok
23:54:51.0733 26336 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
23:54:51.0749 26336 vdrvroot - ok
23:54:51.0910 26336 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
23:54:52.0046 26336 vds - ok
23:54:52.0084 26336 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
23:54:52.0132 26336 vga - ok
23:54:52.0147 26336 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
23:54:52.0251 26336 VgaSave - ok
23:54:52.0295 26336 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
23:54:52.0338 26336 vhdmp - ok
23:54:52.0379 26336 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
23:54:52.0395 26336 viaagp - ok
23:54:52.0431 26336 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
23:54:52.0513 26336 ViaC7 - ok
23:54:52.0540 26336 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
23:54:52.0556 26336 viaide - ok
23:54:52.0587 26336 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
23:54:52.0605 26336 vmbus - ok
23:54:52.0617 26336 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
23:54:52.0692 26336 VMBusHID - ok
23:54:52.0747 26336 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
23:54:52.0763 26336 volmgr - ok
23:54:52.0793 26336 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
23:54:52.0812 26336 volmgrx - ok
23:54:52.0842 26336 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
23:54:52.0865 26336 volsnap - ok
23:54:52.0939 26336 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
23:54:52.0957 26336 vsmraid - ok
23:54:53.0090 26336 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
23:54:53.0207 26336 VSS - ok
23:54:53.0230 26336 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
23:54:53.0333 26336 vwifibus - ok
23:54:53.0414 26336 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
23:54:53.0506 26336 W32Time - ok
23:54:53.0526 26336 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
23:54:53.0599 26336 WacomPen - ok
23:54:53.0684 26336 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
23:54:53.0766 26336 WANARP - ok
23:54:53.0770 26336 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
23:54:53.0858 26336 Wanarpv6 - ok
23:54:54.0001 26336 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
23:54:54.0060 26336 WatAdminSvc - ok
23:54:54.0166 26336 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
23:54:54.0344 26336 wbengine - ok
23:54:54.0364 26336 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
23:54:54.0446 26336 WbioSrvc - ok
23:54:54.0552 26336 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
23:54:54.0639 26336 wcncsvc - ok
23:54:54.0676 26336 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
23:54:54.0769 26336 WcsPlugInService - ok
23:54:54.0815 26336 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
23:54:54.0835 26336 Wd - ok
23:54:54.0909 26336 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
23:54:55.0019 26336 WDC_SAM - ok
23:54:55.0061 26336 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
23:54:55.0146 26336 Wdf01000 - ok
23:54:55.0164 26336 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
23:54:55.0256 26336 WdiServiceHost - ok
23:54:55.0259 26336 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
23:54:55.0345 26336 WdiSystemHost - ok
23:54:55.0425 26336 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
23:54:55.0537 26336 WebClient - ok
23:54:55.0561 26336 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
23:54:55.0672 26336 Wecsvc - ok
23:54:55.0694 26336 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
23:54:55.0779 26336 wercplsupport - ok
23:54:55.0805 26336 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
23:54:55.0938 26336 WerSvc - ok
23:54:55.0966 26336 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
23:54:56.0036 26336 WfpLwf - ok
23:54:56.0041 26336 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
23:54:56.0057 26336 WIMMount - ok
23:54:56.0190 26336 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
23:54:56.0299 26336 WinDefend - ok
23:54:56.0305 26336 WinHttpAutoProxySvc - ok
23:54:56.0364 26336 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
23:54:56.0415 26336 Winmgmt - ok
23:54:56.0817 26336 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
23:54:56.0935 26336 WinRM - ok
23:54:57.0009 26336 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
23:54:57.0145 26336 Wlansvc - ok
23:54:57.0346 26336 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:54:57.0422 26336 wlidsvc - ok
23:54:57.0552 26336 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
23:54:57.0658 26336 WmiAcpi - ok
23:54:57.0708 26336 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
23:54:57.0773 26336 wmiApSrv - ok
23:54:57.0905 26336 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
23:54:58.0041 26336 WMPNetworkSvc - ok
23:54:58.0066 26336 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
23:54:58.0161 26336 WPCSvc - ok
23:54:58.0240 26336 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
23:54:58.0322 26336 WPDBusEnum - ok
23:54:58.0344 26336 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
23:54:58.0488 26336 ws2ifsl - ok
23:54:58.0529 26336 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
23:54:58.0592 26336 wscsvc - ok
23:54:58.0596 26336 WSearch - ok
23:54:58.0783 26336 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
23:54:59.0467 26336 wuauserv - ok
23:54:59.0600 26336 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
23:54:59.0662 26336 WudfPf - ok
23:54:59.0780 26336 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:54:59.0872 26336 WUDFRd - ok
23:54:59.0954 26336 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
23:55:00.0055 26336 wudfsvc - ok
23:55:00.0079 26336 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
23:55:00.0152 26336 WwanSvc - ok
23:55:00.0269 26336 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
23:55:00.0773 26336 \Device\Harddisk0\DR0 - ok
23:55:01.0120 26336 MBR (0x1B8) (ec6935b765c4bb759ca2ada3ade9642e) \Device\Harddisk1\DR5
23:55:01.0150 26336 \Device\Harddisk1\DR5 ( Rootkit.Boot.SST.a ) - infected
23:55:01.0150 26336 \Device\Harddisk1\DR5 - detected Rootkit.Boot.SST.a (0)
23:55:01.0370 26336 Boot (0x1200) (18e361ab8c4d33e8a08e3717dc6e68b8) \Device\Harddisk0\DR0\Partition0
23:55:01.0372 26336 \Device\Harddisk0\DR0\Partition0 - ok
23:55:01.0375 26336 Boot (0x1200) (8f4c6b66f45455547126be40c3535373) \Device\Harddisk0\DR0\Partition1
23:55:01.0377 26336 \Device\Harddisk0\DR0\Partition1 - ok
23:55:01.0397 26336 Boot (0x1200) (06761f1fefb41c38df9fa5b709f51844) \Device\Harddisk0\DR0\Partition2
23:55:01.0398 26336 \Device\Harddisk0\DR0\Partition2 - ok
23:55:01.0421 26336 Boot (0x1200) (0b0ebaa156198e8ec24d04a5a028d820) \Device\Harddisk1\DR5\Partition0
23:55:01.0423 26336 \Device\Harddisk1\DR5\Partition0 - ok
23:55:01.0436 26336 Boot (0x1200) (f2c4147657e229b81151ea36d5223e4d) \Device\Harddisk1\DR5\Partition1
23:55:01.0439 26336 \Device\Harddisk1\DR5\Partition1 - ok
23:55:01.0460 26336 Boot (0x1200) (8d73de8d36b587e1fa784e855b31168e) \Device\Harddisk1\DR5\Partition2
23:55:01.0462 26336 \Device\Harddisk1\DR5\Partition2 - ok
23:55:01.0463 26336 ============================================================
23:55:01.0463 26336 Scan finished
23:55:01.0463 26336 ============================================================
23:55:01.0480 25792 Detected object count: 3
23:55:01.0480 25792 Actual detected object count: 3
23:55:45.0457 25792 Polar Daemon ( UnsignedFile.Multi.Generic ) - skipped by user
23:55:45.0457 25792 Polar Daemon ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:55:45.0459 25792 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
23:55:45.0459 25792 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:55:47.0454 25792 \Device\Harddisk1\DR5\# - copied to quarantine
23:55:47.0456 25792 \Device\Harddisk1\DR5 - copied to quarantine
23:55:47.0600 25792 \Device\Harddisk1\DR5 - processing error
23:56:36.0841 25792 \Device\Harddisk1\DR5 - restored
23:56:36.0966 25792 \Device\Harddisk1\DR5 ( Rootkit.Boot.SST.a ) - User select action: Cure Restore

VIRY.CZ

Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc

Re: Atraps-PF [Trj] a dalsi bordel -- prosim o pomoc