Dobrý den,
chtěla bych poradit s trojským koněm, kterého mi hlásí AVG antivirus. Napadený soubor je C://Windows/System32/services.exe . Rezidentní štít mi stále píše, že infekce je vedena na bílé listině a nelze léčit. Jsem v tomto oboru amatér a tak budu vděčná za jakoukoliv pomoc. Děkuji S.
Run by Sandra at 2012-07-14 12:58:50
Microsoft® Windows Vista™ Home Premium Service Pack 2
System drive C: has 15 GB (10%) free of 144 GB
Total RAM: 1013 MB (14% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:00:46, on 14.7.2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19272)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Sandra\Desktop\staĹľeno\RSIT.exe
C:\Program Files\trend micro\Sandra.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: QIPBHO Class - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Sandra\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O1 - Hosts: ::1 localhost
O2 - BHO: XTTBPos00 - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Sandra\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &Search - ?p=ZNfox000
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.5 - {7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - C:\Program Files\ICQ7.5\ICQ.exe
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: HP Chytrý výběr - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windows ... 7705098219
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{5D397078-D39D-4699-93C7-15D8C45D702E}: NameServer = 192.168.2.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Unknown owner - C:\Program Files\Ahead\InCD\InCDsrv.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Spy Emergency Engine Service (SpyEmrgSrv) - NETGATE Technologies s.r.o. - C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 11050 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
C:\Windows\tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\vtfm3bfz.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
prefs.js - "extensions.enabledItems" - "{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.10, {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:12.0.0.1912, {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.9, {20a82645-c095-46ed-80e3-08825760534b}:1.1, personas@christopher.beard:1.6.2, {003D3EDC-99B9-4a34-9C20-60CB94F7E829}:2010.03, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"
prefs.js - "keyword.URL" - "http://search.icq.com/search/afe_result ... r=1.4.7&q="
"{20a82645-c095-46ed-80e3-08825760534b}"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"smartwebprinting@hp.com"=C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn2
"bkmrksync@nokia.com"=C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
"{3f963a5b-e555-4543-90e2-c3908898db71}"=C:\Program Files\AVG\AVG2012\Firefox\
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"=C:\Program Files\AVG\AVG2012\Firefox4\
"avg@toolbar"=C:\ProgramData\AVG Secure Search\11.1.0.12\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.3.300.265 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_265.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\\npsitesafety.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2571]
"Description"=RealMedia Plugin
"Path"=C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1739]
"Description"=RealPlayer Version Plugin
"Path"=C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@real.com/RhapsodyPlayerEngine,version=1.0]
"Description"=Rhapsody Control
"Path"=C:\Program Files\Real\RhapsodyPlayerEngine\nprhapengine.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0]
"Description"=WildTangent Games App Presence Detector Plugin
"Path"=C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\extensions\
{800b5000-a755-47e1-992b-48a1c1357f07}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
AskHPRFF.js
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
nppdf32.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
C:\Program Files\Mozilla Firefox\searchplugins\
avg-secure-search.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\vtfm3bfz.default\extensions\
personas@christopher.beard
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
{800b5000-a755-47e1-992b-48a1c1357f07}
C:\Users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\vtfm3bfz.default\searchplugins\
askcom.xml
icqplugin-1.xml
icqplugin-10.xml
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin-5.xml
icqplugin-6.xml
icqplugin-7.xml
icqplugin-8.xml
icqplugin-9.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{055FD26D-3A88-4e15-963D-DC8493744B1D}]
XTTBPos00 Class - C:\PROGRA~1\ICQTOO~1\toolbaru.dll [2006-12-25 701952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG2012\avgssie.dll [2011-11-11 1378144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\Sandra\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2009-02-12 119808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
AVG Security Toolbar - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll [2012-07-10 2074208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-23 192112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-05-16 1164680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll [2012-01-11 1003576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2008-10-16 505136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{855F3B16-6D32-4fe6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-11-21 1054520]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
{95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll [2012-07-10 2074208]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-23 192112]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVG_TRAY"=C:\Program Files\AVG\AVG2012\avgtray.exe [2012-01-24 2416480]
"ROC_roc_dec12"=C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe [2012-01-16 928096]
"vProt"=C:\Program Files\AVG Secure Search\vprot.exe [2012-07-10 1107552]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-01-19 39408]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
HP Digital Imaging Monitor.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2007-02-22 200704]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1
"BindDirectlyToPropertySetStorage"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.l3codecp"=
"MSVideo8"=VfWWDM32.dll
"msacm.tssoft32"=tssoft32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.divxa32"=divxa32.acm
"msacm.vorbis"=vorbis.acm
"vidc.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"vidc.wmv3"=wmv9vcm.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-07-14 12:58:52 ----D---- C:\Program Files\trend micro
2012-07-14 12:58:50 ----D---- C:\rsit
2012-07-12 08:59:11 ----D---- C:\Users\Sandra\AppData\Roaming\Spy Emergency
2012-07-12 08:59:03 ----A---- C:\Windows\system32\drivers\spyemrg_guard.sys
2012-07-12 08:59:03 ----A---- C:\Windows\system32\drivers\spyemrg_access.sys
2012-07-12 08:59:02 ----D---- C:\ProgramData\NETGATE
2012-07-12 08:59:02 ----A---- C:\Windows\system32\drivers\spyemrg.sys
2012-07-12 08:58:19 ----D---- C:\Program Files\NETGATE
2012-07-10 17:34:59 ----D---- C:\Program Files\ESET
2012-06-27 12:16:02 ----D---- C:\ProgramData\Mozilla
2012-06-27 12:15:58 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-06-27 10:57:39 ----A---- C:\Windows\system32\wmi.dll
2012-06-27 10:57:39 ----A---- C:\Windows\system32\wintrust.dll
2012-06-27 10:57:39 ----A---- C:\Windows\system32\imagehlp.dll
2012-06-27 10:57:39 ----A---- C:\Windows\system32\drivers\fs_rec.sys
2012-06-27 10:10:56 ----A---- C:\Windows\system32\win32k.sys
2012-06-27 10:10:35 ----A---- C:\Windows\system32\cryptsvc.dll
2012-06-27 10:10:35 ----A---- C:\Windows\system32\cryptnet.dll
2012-06-27 10:10:35 ----A---- C:\Windows\system32\crypt32.dll
2012-06-27 10:10:25 ----A---- C:\Windows\system32\urlmon.dll
2012-06-27 10:10:25 ----A---- C:\Windows\system32\msfeedsbs.dll
2012-06-27 10:10:25 ----A---- C:\Windows\system32\iernonce.dll
2012-06-27 10:10:25 ----A---- C:\Windows\system32\iedkcs32.dll
2012-06-27 10:10:24 ----A---- C:\Windows\system32\msfeeds.dll
2012-06-27 10:10:24 ----A---- C:\Windows\system32\iesetup.dll
2012-06-27 10:10:23 ----A---- C:\Windows\system32\wininet.dll
2012-06-27 10:10:22 ----A---- C:\Windows\system32\ieframe.dll
2012-06-27 10:10:21 ----A---- C:\Windows\system32\mshtmled.dll
2012-06-27 10:10:21 ----A---- C:\Windows\system32\licmgr10.dll
2012-06-27 10:10:21 ----A---- C:\Windows\system32\jsproxy.dll
2012-06-27 10:10:21 ----A---- C:\Windows\system32\ieui.dll
2012-06-27 10:10:21 ----A---- C:\Windows\system32\iepeers.dll
2012-06-27 10:10:20 ----A---- C:\Windows\system32\url.dll
2012-06-27 10:10:20 ----A---- C:\Windows\system32\mstime.dll
2012-06-27 10:10:20 ----A---- C:\Windows\system32\mshtml.dll
2012-06-27 10:10:18 ----A---- C:\Windows\system32\iertutil.dll
2012-06-27 10:10:17 ----A---- C:\Windows\system32\msfeedssync.exe
2012-06-27 10:10:17 ----A---- C:\Windows\system32\ie4uinit.exe
2012-06-27 10:10:16 ----A---- C:\Windows\system32\occache.dll
2012-06-27 10:10:16 ----A---- C:\Windows\system32\ieUnatt.exe
2012-06-27 10:10:16 ----A---- C:\Windows\system32\iesysprep.dll
2012-06-27 10:10:13 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-06-27 10:09:40 ----A---- C:\Windows\system32\DWrite.dll
2012-06-27 10:09:40 ----A---- C:\Windows\system32\d3d10warp.dll
2012-06-27 10:09:40 ----A---- C:\Windows\system32\d3d10_1core.dll
2012-06-27 10:09:40 ----A---- C:\Windows\system32\d3d10_1.dll
2012-06-27 10:09:40 ----A---- C:\Windows\system32\d2d1.dll
2012-06-27 10:09:27 ----A---- C:\Windows\system32\drivers\tcpip.sys
2012-06-27 10:09:22 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-06-27 10:09:21 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-06-27 10:09:15 ----A---- C:\Windows\system32\drivers\partmgr.sys
2012-06-24 11:42:49 ----A---- C:\Windows\system32\wups2.dll
2012-06-24 11:42:49 ----A---- C:\Windows\system32\wuauclt.exe
2012-06-24 11:42:48 ----A---- C:\Windows\system32\wucltux.dll
2012-06-24 11:42:48 ----A---- C:\Windows\system32\wuaueng.dll
2012-06-24 11:42:28 ----A---- C:\Windows\system32\wups.dll
2012-06-24 11:42:28 ----A---- C:\Windows\system32\wudriver.dll
2012-06-24 11:42:28 ----A---- C:\Windows\system32\wuapi.dll
2012-06-24 11:42:14 ----A---- C:\Windows\system32\wuwebv.dll
2012-06-24 11:42:14 ----A---- C:\Windows\system32\wuapp.exe
======List of files/folders modified in the last 1 month======
2012-07-14 13:00:50 ----D---- C:\Windows\Temp
2012-07-14 12:59:24 ----D---- C:\Windows\Prefetch
2012-07-14 12:58:52 ----D---- C:\Program Files
2012-07-14 12:34:48 ----SHD---- C:\Windows\Installer
2012-07-14 12:34:48 ----HD---- C:\Config.Msi
2012-07-14 09:40:24 ----D---- C:\ProgramData\MFAData
2012-07-14 09:40:14 ----D---- C:\Windows\system32\drivers\AVG
2012-07-12 13:32:59 ----D---- C:\Windows\System32
2012-07-12 13:32:49 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-07-12 09:06:47 ----SD---- C:\Users\Sandra\AppData\Roaming\Microsoft
2012-07-12 08:59:08 ----D---- C:\Windows\system32\drivers
2012-07-12 08:59:02 ----HD---- C:\ProgramData
2012-07-10 10:31:32 ----D---- C:\ProgramData\AVG Secure Search
2012-07-10 10:31:29 ----D---- C:\Program Files\AVG Secure Search
2012-07-09 18:59:54 ----D---- C:\Windows\inf
2012-07-09 18:59:54 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-07-01 11:30:48 ----D---- C:\Windows
2012-06-27 14:13:08 ----D---- C:\Program Files\Spybot - Search & Destroy
2012-06-27 14:10:40 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-06-27 12:45:59 ----D---- C:\Windows\Microsoft.NET
2012-06-27 12:45:56 ----RSD---- C:\Windows\assembly
2012-06-27 12:20:45 ----D---- C:\Program Files\Mozilla Firefox
2012-06-27 11:52:19 ----D---- C:\Windows\rescache
2012-06-27 11:50:19 ----D---- C:\Windows\winsxs
2012-06-27 11:29:38 ----D---- C:\Windows\system32\catroot
2012-06-27 11:25:32 ----D---- C:\Program Files\Microsoft Silverlight
2012-06-27 11:22:14 ----D---- C:\Windows\system32\en-US
2012-06-27 11:22:07 ----D---- C:\Program Files\Windows Journal
2012-06-27 11:22:05 ----D---- C:\Program Files\Internet Explorer
2012-06-27 11:22:04 ----D---- C:\Windows\system32\migration
2012-06-27 11:21:53 ----D---- C:\Program Files\Windows Mail
2012-06-27 11:03:40 ----D---- C:\Windows\system32\catroot2
2012-06-27 10:49:27 ----D---- C:\Windows\Debug
2012-06-27 10:11:53 ----D---- C:\Windows\system32\XPSViewer
2012-06-18 16:30:30 ----D---- C:\Users\Sandra\AppData\Roaming\ICQ
2012-06-17 21:15:51 ----D---- C:\Users\Sandra\AppData\Roaming\LangSoft
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSEH;AVGIDSEH; C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2007-02-02 43528]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2011-05-23 47968]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2011-08-08 40016]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2011-07-11 295248]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-02-20 218688]
R1 eabfiltr;eabfiltr; C:\Windows\system32\DRIVERS\eabfiltr.sys [2006-11-30 8192]
R1 SpyEmrg;Spy Emergency Driver; C:\Windows\System32\Drivers\spyemrg.sys [2011-04-21 14168]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2006-11-16 32256]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2006-11-16 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-16 37376]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-11-28 8192]
R3 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 134736]
R3 AVGIDSFilter;AVGIDSFilter; C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 24272]
R3 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
R3 E100B;Intel(R) PRO Adapter Driver; C:\Windows\system32\DRIVERS\e100b325.sys [2008-01-19 159744]
R3 HBtnKey;HBtnKey; C:\Windows\system32\DRIVERS\cpqbttn.sys [2006-06-28 9472]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDART.sys [2007-02-22 159232]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-12-07 985600]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-12-07 207360]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-02-22 1662464]
R3 NETw3v32;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\NETw3v32.sys [2007-02-07 1786880]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2009-04-11 89088]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2009-06-09 3482240]
R3 SpyEmrgGuard;Spy Emergency Real-Time Shield Driver; C:\Windows\System32\Drivers\spyemrg_guard.sys [2011-04-21 16216]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-19 9216]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-01-13 181432]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-12-07 659968]
S3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfo.sys [2007-09-25 15152]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 EagleNT;EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2007-12-30 25280]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2007-02-22 1662464]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2009-10-06 17664]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2009-10-06 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SpyEmrgAccess;Spy Emergency OnAccess Driver; C:\Windows\System32\Drivers\spyemrg_access.sys [2011-04-21 20056]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936]
S3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2009-04-11 73216]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-04-11 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-19 134016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-07-07 611664]
R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2012\avgfws.exe [2011-11-23 2391832]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
R2 CLCapSvc;CyberLink Background Capture Service (CBCS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe [2007-03-29 270431]
R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2007-03-14 62984]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-10-22 73728]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2009-11-29 244904]
R2 SpyEmrgSrv;Spy Emergency Engine Service; C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe [2012-02-23 2420400]
R2 vToolbarUpdater11.2.0;vToolbarUpdater11.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe [2012-07-10 935008]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-11-28 386560]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 CLSched;CyberLink Task Scheduler (CTS); C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe [2007-03-29 118877]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-18 135664]
S2 InCDsrvR;InCD Helper (read only); C:\Program Files\Ahead\InCD\InCDsrv.exe -r []
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-12 250056]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [2011-03-18 947528]
S3 Com4Qlb;Com4Qlb; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe [2007-01-09 110592]
S3 GamesAppService;GamesAppService; C:\Program Files\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-18 135664]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-11-27 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-15 113120]
S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2007-02-12 880640]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-02-17 74656]
S3 WPFFontCache_v0400;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 MyWebSearchService;My Web Search Service; C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe []
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
trojský kůň
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: trojský kůň
Tak otl jsem spustila,ale nakonec jaksi zamrzlo a nechce se zatím znovu rozjet.
Tady je odkaz na ten antivirus scan:
https://www.virustotal.com/file/e047efb ... 342275972/
Ted nevím, jestli ještě můžu udělat i ty další kroky co jsi psal, když mám spuštěné to otl?
Díky moc za odpověd
Tady je odkaz na ten antivirus scan:
https://www.virustotal.com/file/e047efb ... 342275972/
Ted nevím, jestli ještě můžu udělat i ty další kroky co jsi psal, když mám spuštěné to otl?
Díky moc za odpověd
Re: trojský kůň
Další krok:
Kód: Vybrat vše
MBRScan v1.1.1
OS : Windows Vista Service Pack 2 (32 bit)
PROCESSOR : x86 Family 6 Model 14 Stepping 12, GenuineIntel
BOOT : Normal Boot
DATE : 2012/07/14 (ISO 8601) at 18:15:21
________________________________________________________________________________
DISK : Device\Harddisk0\DR0 __ST9160821AS (3.BHD)
BUS_TYPE : (0x03) P-ATA
USE_PIO : NO
MAX_TRANSFER : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________
Device\Harddisk0\DR0 149.1 Go [Fixed] ==> Unknown MBR Code
MBR_MD5 : 58073066DBEBD02729237966891250F0
MBR_SHA1 : 718A7FC943F57028D298C9F6E82D1A9F1BD14C6B
Device\Harddisk0\Partition1 140.9 Go 0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2 8.13 Go 0x07 NTFS / HPFS
________________________________________________________________________________
############################### Additional scan ################################
DRIVER : C:\Windows\System32\Drivers\dump_dumpata.sys => Invisible on the disk
ADDRESS : 0x92EAC000
SIZE : 44.0 Ko
DRIVER : C:\Windows\System32\Drivers\dump_msahci.sys => Invisible on the disk
ADDRESS : 0x92EB7000
SIZE : 40.0 Ko
SystemStartOptions : /NOEXECUTE=OPTIN
________________________________________________________________________________
_______MBR \Device\Harddisk0\DR0
0x00000000 33 FF BE 00 02 8E D7 BC 00 7A BB A0 07 8B CE 8E 3.¾...×¼.z»...Î.
0x00000010 DB 8E C3 F3 A4 EA 72 00 A0 07 10 00 01 00 00 7A Û.Ãó¤êr........z
0x00000020 00 00 00 00 00 00 00 00 00 00 07 66 8B 55 08 B4 ...........f.U.´
0x00000030 42 C6 06 1F 00 7C 32 C0 66 89 16 22 00 BE 1A 00 BÆ...|2Àf..".¾..
0x00000040 B2 80 CD 13 0F 82 C2 00 81 3E FE 03 55 AA C3 AC ².Í...Â..>þ.UªÃ¬
0x00000050 0A C0 74 FA B4 0E BB 07 00 CD 10 EB F2 B8 12 5F .Àtú´.»..Í.ëò¸._
0x00000060 66 BA 51 50 48 5F CD 15 73 02 33 DB 80 E3 01 0A fºQPH_Í.s.3Û.ã..
0x00000070 DB C3 8B E9 8B D9 C6 06 2A 00 0C BF EE 01 B9 04 ÛÃ.é.ÙÆ.*..¿î.¹.
0x00000080 00 38 6D 04 74 39 E8 A2 FF 75 21 66 B8 52 45 43 .8m.t9è¢.u!f¸REC
0x00000090 4F 66 39 06 03 02 74 0C 66 39 06 F0 03 75 0D C6 Of9...t.f9.ð.u.Æ
0x000000A0 06 2A 00 07 8B DF C6 45 04 0C EB 13 8A 45 04 3C .*...ßÆE..ë..E.<
0x000000B0 07 74 0A 3C 0B 74 06 24 F5 3C 04 75 02 8B EF 88 .t.<.t.$õ<.u..ï.
0x000000C0 2D 83 EF 10 E2 BB 0B DB 74 1B 0B ED 74 17 8B FB -.ï.â».Ût..ít..û
0x000000D0 F6 06 4E 01 04 75 47 F6 06 4E 01 02 75 44 E8 7C ö.N..uGö.N..uDè|
0x000000E0 FF 75 3B EB 3D 66 33 D2 E8 44 FF BA 01 00 B1 04 .u;ë=f3ÒèD.º..±.
0x000000F0 BF BE 03 0B D2 75 06 80 7D 04 00 75 42 80 3D 80 ¿¾..Òu..}..uB.=.
0x00000100 74 3D 83 C7 10 E2 EC 4A 74 E4 8B 36 51 01 E8 3E t=.Ç.âìJtä.6Q.è>
0x00000110 FF 8B 36 53 01 E8 37 FF B4 00 CD 16 CD 18 8B EF ..6S.è7.´.Í.Í..ï
0x00000120 EB 00 A0 2A 00 88 45 04 8B FD C6 05 80 80 26 4E ë..*..E..ýÆ...&N
0x00000130 01 F9 66 33 D2 C6 06 1F 00 7A B4 43 E8 F7 FE E8 .ùf3ÒÆ...z´Cè÷þè
0x00000140 E9 FE 8B 36 4F 01 75 C6 EA 00 7C 00 00 01 50 57 éþ.6O.uÆê.|...PW
0x00000150 01 5C 01 63 01 68 01 45 72 72 32 00 0D 0A 45 72 .\.c.h.Err2...Er
0x00000160 72 31 00 45 72 72 33 00 0D 0A 50 72 65 73 73 20 r1.Err3...Press
0x00000170 46 31 31 20 66 6F 72 20 45 6D 65 72 67 65 6E 63 F11 for Emergenc
0x00000180 79 20 52 65 63 6F 76 65 72 79 20 00 73 20 61 20 y Recovery .s a
0x00000190 6B 65 79 0D 0A 00 00 00 00 00 00 00 00 00 00 00 key.............
0x000001A0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001B0 00 00 00 00 00 00 4D 01 22 BC 22 BC 00 00 80 01 ......M."¼"¼....
0x000001C0 01 00 07 FE FF FF 3F 00 00 00 9D 74 9D 11 00 FE ...þ..?....t...þ
0x000001D0 FF FF 07 FE FF FF DC 74 9D 11 E5 15 04 01 00 00 ...þ..Üt..å.....
0x000001E0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
0x000001F0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA ..............Uª
__________________________16_BIT_ASM_CODE
0x0000 33ff XOR DI, DI
0x0002 be 0002 MOV SI, 0x200
0x0005 8ed7 MOV SS, DI
0x0007 bc 007a MOV SP, 0x7a00
0x000A bb a007 MOV BX, 0x7a0
0x000D 8bce MOV CX, SI
0x000F 8edb MOV DS, BX
0x0011 8ec3 MOV ES, BX
0x0013 f3 a4 REP MOVSB
0x0015 ea 7200 a007 JMP FAR 0x7a0:0x72
0x001A 1000 ADC [BX+SI], AL
0x001C 0100 ADD [BX+SI], AX
0x001E 007a 00 ADD [BP+SI+0x0], BH
0x0021 0000 ADD [BX+SI], AL
0x0023 0000 ADD [BX+SI], AL
0x0025 0000 ADD [BX+SI], AL
0x0027 0000 ADD [BX+SI], AL
0x0029 0007 ADD [BX], AL
0x002B 66 8b55 08 MOV EDX, [DI+0x8]
0x002F b4 42 MOV AH, 0x42
0x0031 c606 1f00 7c MOV BYTE [0x1f], 0x7c
0x0036 32c0 XOR AL, AL
0x0038 66 8916 2200 MOV [0x22], EDX
0x003D be 1a00 MOV SI, 0x1a
0x0040 b2 80 MOV DL, 0x80
0x0042 cd 13 INT 0x13
0x0044 0f82 c200 JB 0x10a
0x0048 813e fe03 55aa CMP WORD [0x3fe], 0xaa55
0x004E c3 RET
0x004F ac LODSB
0x0050 0ac0 OR AL, AL
0x0052 74 fa JZ 0x4e
0x0054 b4 0e MOV AH, 0xe
0x0056 bb 0700 MOV BX, 0x7
0x0059 cd 10 INT 0x10
0x005B eb f2 JMP 0x4f
0x005D b8 125f MOV AX, 0x5f12
0x0060 66 ba 5150485f MOV EDX, 0x5f485051
0x0066 cd 15 INT 0x15
0x0068 73 02 JAE 0x6c
0x006A 33db XOR BX, BX
0x006C 80e3 01 AND BL, 0x1
0x006F 0adb OR BL, BL
0x0071 c3 RET
0x0072 8be9 MOV BP, CX
0x0074 8bd9 MOV BX, CX
0x0076 c606 2a00 0c MOV BYTE [0x2a], 0xc
0x007B bf ee01 MOV DI, 0x1ee
0x007E b9 0400 MOV CX, 0x4
0x0081 386d 04 CMP [DI+0x4], CH
0x0084 74 39 JZ 0xbf
0x0086 e8 a2ff CALL 0x2b
0x0089 75 21 JNZ 0xac
0x008B 66 b8 5245434f MOV EAX, 0x4f434552
0x0091 66 3906 0302 CMP [0x203], EAX
0x0096 74 0c JZ 0xa4
0x0098 66 3906 f003 CMP [0x3f0], EAX
0x009D 75 0d JNZ 0xac
0x009F c606 2a00 07 MOV BYTE [0x2a], 0x7
0x00A4 8bdf MOV BX, DI
0x00A6 c645 04 0c MOV BYTE [DI+0x4], 0xc
0x00AA eb 13 JMP 0xbf
0x00AC 8a45 04 MOV AL, [DI+0x4]
0x00AF 3c 07 CMP AL, 0x7
0x00B1 74 0a JZ 0xbd
0x00B3 3c 0b CMP AL, 0xb
0x00B5 74 06 JZ 0xbd
0x00B7 24 f5 AND AL, 0xf5
0x00B9 3c 04 CMP AL, 0x4
0x00BB 75 02 JNZ 0xbf
0x00BD 8bef MOV BP, DI
0x00BF 882d MOV [DI], CH
0x00C1 83ef 10 SUB DI, 0x10
0x00C4 e2 bb LOOP 0x81
0x00C6 0bdb OR BX, BX
0x00C8 74 1b JZ 0xe5
0x00CA 0bed OR BP, BP
0x00CC 74 17 JZ 0xe5
0x00CE 8bfb MOV DI, BX
0x00D0 f606 4e01 04 TEST BYTE [0x14e], 0x4
0x00D5 75 47 JNZ 0x11e
0x00D7 f606 4e01 02 TEST BYTE [0x14e], 0x2
0x00DC 75 44 JNZ 0x122
0x00DE e8 7cff CALL 0x5d
0x00E1 75 3b JNZ 0x11e
0x00E3 eb 3d JMP 0x122
0x00E5 66 33d2 XOR EDX, EDX
0x00E8 e8 44ff CALL 0x2f
0x00EB ba 0100 MOV DX, 0x1
0x00EE b1 04 MOV CL, 0x4
0x00F0 bf be03 MOV DI, 0x3be
0x00F3 0bd2 OR DX, DX
0x00F5 75 06 JNZ 0xfd
0x00F7 807d 04 00 CMP BYTE [DI+0x4], 0x0
0x00FB 75 42 JNZ 0x13f
0x00FD 803d 80 CMP BYTE [DI], 0x80
0x0100 74 3d JZ 0x13f
0x0102 83c7 10 ADD DI, 0x10
0x0105 e2 ec LOOP 0xf3
0x0107 4a DEC DX
0x0108 74 e4 JZ 0xee
0x010A 8b36 5101 MOV SI, [0x151]
0x010E e8 3eff CALL 0x4f
0x0111 8b36 5301 MOV SI, [0x153]
0x0115 e8 37ff CALL 0x4f
0x0118 b4 00 MOV AH, 0x0
0x011A cd 16 INT 0x16
0x011C cd 18 INT 0x18
0x011E 8bef MOV BP, DI
0x0120 eb 00 JMP 0x122
0x0122 a0 2a00 MOV AL, [0x2a]
0x0125 8845 04 MOV [DI+0x4], AL
0x0128 8bfd MOV DI, BP
0x012A c605 80 MOV BYTE [DI], 0x80
0x012D 8026 4e01 f9 AND BYTE [0x14e], 0xf9
0x0132 66 33d2 XOR EDX, EDX
0x0135 c606 1f00 7a MOV BYTE [0x1f], 0x7a
0x013A b4 43 MOV AH, 0x43
0x013C e8 f7fe CALL 0x36
0x013F e8 e9fe CALL 0x2b
0x0142 8b36 4f01 MOV SI, [0x14f]
0x0146 75 c6 JNZ 0x10e
0x0148 ea 007c 0000 JMP FAR 0x0:0x7c00
0x014D 0150 57 ADD [BX+SI+0x57], DX
0x0150 015c 01 ADD [SI+0x1], BX
0x0153 6301 ARPL [BX+DI], AX
0x0155 68 0145 PUSH 0x4501
0x0158 72 72 JB 0x1cc
0x015A 3200 XOR AL, [BX+SI]
0x015C 0d 0a45 OR AX, 0x450a
0x015F 72 72 JB 0x1d3
0x0161 3100 XOR [BX+SI], AX
0x0163 45 INC BP
0x0164 72 72 JB 0x1d8
0x0166 3300 XOR AX, [BX+SI]
0x0168 0d 0a50 OR AX, 0x500a
0x016B 72 65 JB 0x1d2
0x016D 73 73 JAE 0x1e2
0x016F 2046 31 AND [BP+0x31], AL
0x0172 3120 XOR [BX+SI], SP
0x0174 66 6f OUTSD
0x0176 72 20 JB 0x198
0x0178 45 INC BP
0x0179 6d INSW
0x017A 65 DB 0x65
0x017A 65 72 67 JB 0x1e4
0x017D 65 6e OUTS DX, BYTE GS:[SI]
0x017F 6379 20 ARPL [BX+DI+0x20], DI
0x0182 52 PUSH DX
0x0183 65 636f 76 ARPL GS:[BX+0x76], BP
0x0187 65 DB 0x65
0x0187 65 72 79 JB 0x203
0x018A 2000 AND [BX+SI], AL
0x018C 73 20 JAE 0x1ae
0x018E 61 POPA
0x018F 206b 65 AND [BP+DI+0x65], CH
0x0192 79 0d JNS 0x1a1
0x0194 0a00 OR AL, [BX+SI]
0x0196 0000 ADD [BX+SI], AL
0x0198 0000 ADD [BX+SI], AL
0x019A 0000 ADD [BX+SI], AL
0x019C 0000 ADD [BX+SI], AL
0x019E 0000 ADD [BX+SI], AL
0x01A0 0000 ADD [BX+SI], AL
0x01A2 0000 ADD [BX+SI], AL
0x01A4 0000 ADD [BX+SI], AL
0x01A6 0000 ADD [BX+SI], AL
0x01A8 0000 ADD [BX+SI], AL
0x01AA 0000 ADD [BX+SI], AL
0x01AC 0000 ADD [BX+SI], AL
0x01AE 0000 ADD [BX+SI], AL
0x01B0 0000 ADD [BX+SI], AL
0x01B2 0000 ADD [BX+SI], AL
0x01B4 0000 ADD [BX+SI], AL
0x01B6 4d DEC BP
0x01B7 0122 ADD [BP+SI], SP
0x01B9 bc 22bc MOV SP, 0xbc22
0x01BC 0000 ADD [BX+SI], AL
0x01BE 8001 01 ADD BYTE [BX+DI], 0x1
0x01C1 0007 ADD [BX], AL
0x01C3 fe DB 0xfe
0x01C4 ff DB 0xff
0x01C5 ff DB 0xff
0x01C6 3f AAS
0x01C7 0000 ADD [BX+SI], AL
0x01C9 009d 749d ADD [DI-0x628c], BL
0x01CD 1100 ADC [BX+SI], AX
0x01CF fe DB 0xfe
0x01D0 ff DB 0xff
0x01D1 ff07 INC WORD [BX]
0x01D3 fe DB 0xfe
0x01D4 ff DB 0xff
0x01D5 ff DB 0xff
0x01D6 dc74 9d FDIV QWORD [SI-0x63]
0x01D9 11e5 ADC BP, SP
0x01DB 15 0401 ADC AX, 0x104
0x01DE 0000 ADD [BX+SI], AL
0x01E0 0000 ADD [BX+SI], AL
0x01E2 0000 ADD [BX+SI], AL
0x01E4 0000 ADD [BX+SI], AL
0x01E6 0000 ADD [BX+SI], AL
0x01E8 0000 ADD [BX+SI], AL
0x01EA 0000 ADD [BX+SI], AL
0x01EC 0000 ADD [BX+SI], AL
0x01EE 0000 ADD [BX+SI], AL
0x01F0 0000 ADD [BX+SI], AL
0x01F2 0000 ADD [BX+SI], AL
0x01F4 0000 ADD [BX+SI], AL
0x01F6 0000 ADD [BX+SI], AL
0x01F8 0000 ADD [BX+SI], AL
0x01FA 0000 ADD [BX+SI], AL
0x01FC 0000 ADD [BX+SI], AL
0x01FE 55 PUSH BP
0x01FF aa STOSB
Re: trojský kůň
Poslední krok...tak snad jsem to provedla,tak jak se mělo
- Přílohy
-
- xuetr1.rar
- (127.62 KiB) Staženo 39 x
Re: trojský kůň
18:59:55.0444 5888 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
18:59:57.0449 5888 ============================================================
18:59:57.0449 5888 Current date / time: 2012/07/14 18:59:57.0449
18:59:57.0450 5888 SystemInfo:
18:59:57.0450 5888
18:59:57.0450 5888 OS Version: 6.0.6002 ServicePack: 2.0
18:59:57.0450 5888 Product type: Workstation
18:59:57.0450 5888 ComputerName: SANDRA-PC
18:59:57.0451 5888 UserName: Sandra
18:59:57.0451 5888 Windows directory: C:\Windows
18:59:57.0451 5888 System windows directory: C:\Windows
18:59:57.0451 5888 Processor architecture: Intel x86
18:59:57.0451 5888 Number of processors: 2
18:59:57.0451 5888 Page size: 0x1000
18:59:57.0451 5888 Boot type: Normal boot
18:59:57.0451 5888 ============================================================
19:00:07.0615 5888 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:00:07.0744 5888 ============================================================
19:00:07.0744 5888 \Device\Harddisk0\DR0:
19:00:07.0826 5888 MBR partitions:
19:00:07.0826 5888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x119D749D
19:00:07.0826 5888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x119D74DC, BlocksNum 0x10415E5
19:00:07.0826 5888 ============================================================
19:00:08.0227 5888 C: <-> \Device\Harddisk0\DR0\Partition0
19:00:08.0407 5888 D: <-> \Device\Harddisk0\DR0\Partition1
19:00:08.0462 5888 ============================================================
19:00:08.0462 5888 Initialize success
19:00:08.0462 5888 ============================================================
19:00:30.0023 3188 ============================================================
19:00:30.0024 3188 Scan started
19:00:30.0024 3188 Mode: Manual; SigCheck; TDLFS;
19:00:30.0024 3188 ============================================================
19:00:46.0833 3188 aawservice (17067069b9a7865028c1f2e6971d0ccc) C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
19:00:47.0866 3188 aawservice - ok
19:00:51.0144 3188 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
19:00:51.0507 3188 ACPI - ok
19:00:52.0465 3188 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:00:52.0515 3188 AdobeFlashPlayerUpdateSvc - ok
19:00:52.0995 3188 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
19:00:53.0071 3188 adp94xx - ok
19:00:53.0491 3188 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
19:00:53.0717 3188 adpahci - ok
19:00:53.0891 3188 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
19:00:53.0915 3188 adpu160m - ok
19:00:53.0954 3188 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
19:00:54.0036 3188 adpu320 - ok
19:00:54.0274 3188 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
19:00:55.0705 3188 AeLookupSvc - ok
19:00:55.0941 3188 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
19:00:56.0196 3188 AFD - ok
19:00:56.0494 3188 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
19:00:56.0541 3188 agp440 - ok
19:00:56.0912 3188 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:00:56.0939 3188 aic78xx - ok
19:00:57.0009 3188 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
19:00:58.0126 3188 ALG - ok
19:00:58.0178 3188 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
19:00:58.0192 3188 aliide - ok
19:00:58.0278 3188 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
19:00:58.0310 3188 amdagp - ok
19:00:58.0452 3188 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
19:00:58.0491 3188 amdide - ok
19:00:58.0578 3188 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
19:01:02.0109 3188 AmdK7 - ok
19:01:02.0336 3188 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
19:01:02.0526 3188 AmdK8 - ok
19:01:02.0739 3188 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
19:01:03.0132 3188 Appinfo - ok
19:01:03.0488 3188 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
19:01:03.0543 3188 arc - ok
19:01:03.0883 3188 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
19:01:03.0929 3188 arcsas - ok
19:01:04.0072 3188 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
19:01:04.0243 3188 AsyncMac - ok
19:01:04.0474 3188 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
19:01:04.0495 3188 atapi - ok
19:01:06.0856 3188 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
19:01:06.0967 3188 AudioEndpointBuilder - ok
19:01:06.0989 3188 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
19:01:07.0046 3188 Audiosrv - ok
19:01:08.0538 3188 AVG Security Toolbar Service (ee651d98b03fe3c075ccc58ab61c9287) C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
19:01:09.0087 3188 AVG Security Toolbar Service - ok
19:01:11.0431 3188 Avgfwfd (c46ba2c177df0b84f9c0bfc1e4574dc7) C:\Windows\system32\DRIVERS\avgfwd6x.sys
19:01:11.0511 3188 Avgfwfd - ok
19:01:13.0157 3188 avgfws (5cd22eb540f82c70e33e530003f3903b) C:\Program Files\AVG\AVG2012\avgfws.exe
19:01:14.0701 3188 avgfws - ok
19:01:15.0349 3188 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
19:01:15.0845 3188 AVGIDSAgent - ok
19:01:16.0165 3188 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
19:01:16.0207 3188 AVGIDSDriver - ok
19:01:16.0292 3188 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
19:01:16.0335 3188 AVGIDSEH - ok
19:01:16.0368 3188 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
19:01:16.0395 3188 AVGIDSFilter - ok
19:01:16.0431 3188 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
19:01:16.0461 3188 AVGIDSShim - ok
19:01:16.0597 3188 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
19:01:16.0640 3188 Avgldx86 - ok
19:01:16.0710 3188 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
19:01:16.0737 3188 Avgmfx86 - ok
19:01:16.0793 3188 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
19:01:16.0871 3188 Avgrkx86 - ok
19:01:16.0938 3188 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
19:01:17.0046 3188 Avgtdix - ok
19:01:17.0220 3188 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
19:01:17.0241 3188 avgwd - ok
19:01:17.0330 3188 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
19:01:17.0603 3188 BCM43XV - ok
19:01:17.0629 3188 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
19:01:17.0704 3188 Beep - ok
19:01:17.0707 3188 blbdrive - ok
19:01:17.0779 3188 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
19:01:17.0871 3188 bowser - ok
19:01:17.0937 3188 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:01:17.0989 3188 BrFiltLo - ok
19:01:18.0065 3188 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:01:18.0138 3188 BrFiltUp - ok
19:01:18.0175 3188 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
19:01:18.0254 3188 Browser - ok
19:01:18.0417 3188 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:01:18.0551 3188 Brserid - ok
19:01:18.0577 3188 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:01:18.0729 3188 BrSerWdm - ok
19:01:18.0747 3188 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:01:18.0876 3188 BrUsbMdm - ok
19:01:18.0903 3188 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:01:19.0007 3188 BrUsbSer - ok
19:01:19.0032 3188 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
19:01:19.0111 3188 BTHMODEM - ok
19:01:19.0157 3188 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
19:01:19.0244 3188 cdfs - ok
19:01:19.0307 3188 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
19:01:19.0356 3188 cdrom - ok
19:01:19.0425 3188 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
19:01:19.0474 3188 CertPropSvc - ok
19:01:19.0536 3188 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
19:01:19.0657 3188 circlass - ok
19:01:19.0916 3188 CLCapSvc (16356e5a3d7be77b2010be72c36e944c) C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
19:01:19.0961 3188 CLCapSvc ( UnsignedFile.Multi.Generic ) - warning
19:01:19.0962 3188 CLCapSvc - detected UnsignedFile.Multi.Generic (1)
19:01:20.0009 3188 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
19:01:20.0049 3188 CLFS - ok
19:01:20.0206 3188 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:01:20.0232 3188 clr_optimization_v2.0.50727_32 - ok
19:01:20.0325 3188 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:01:20.0359 3188 clr_optimization_v4.0.30319_32 - ok
19:01:20.0481 3188 CLSched (e97d797af6c2e64bfc22eeb7fa58bb63) C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
19:01:20.0520 3188 CLSched ( UnsignedFile.Multi.Generic ) - warning
19:01:20.0520 3188 CLSched - detected UnsignedFile.Multi.Generic (1)
19:01:20.0556 3188 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
19:01:20.0626 3188 CmBatt - ok
19:01:20.0709 3188 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
19:01:20.0757 3188 cmdide - ok
19:01:20.0837 3188 Com4Qlb (a5aaa656403e5e7afa9647ce73dbf944) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
19:01:20.0895 3188 Com4Qlb ( UnsignedFile.Multi.Generic ) - warning
19:01:20.0895 3188 Com4Qlb - detected UnsignedFile.Multi.Generic (1)
19:01:20.0932 3188 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
19:01:20.0970 3188 Compbatt - ok
19:01:20.0983 3188 COMSysApp - ok
19:01:21.0024 3188 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
19:01:21.0057 3188 crcdisk - ok
19:01:21.0077 3188 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
19:01:21.0205 3188 Crusoe - ok
19:01:21.0310 3188 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
19:01:21.0395 3188 CryptSvc - ok
19:01:21.0454 3188 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
19:01:21.0500 3188 CrystalSysInfo - ok
19:01:22.0139 3188 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
19:01:22.0247 3188 DcomLaunch - ok
19:01:22.0363 3188 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
19:01:22.0461 3188 DfsC - ok
19:01:22.0749 3188 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
19:01:23.0125 3188 DFSR - ok
19:01:23.0342 3188 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
19:01:23.0444 3188 Dhcp - ok
19:01:23.0585 3188 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
19:01:23.0615 3188 disk - ok
19:01:23.0683 3188 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
19:01:23.0764 3188 Dnscache - ok
19:01:23.0869 3188 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
19:01:23.0934 3188 dot3svc - ok
19:01:24.0010 3188 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
19:01:24.0084 3188 Dot4 - ok
19:01:24.0156 3188 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:01:24.0229 3188 Dot4Print - ok
19:01:24.0276 3188 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
19:01:24.0362 3188 dot4usb - ok
19:01:24.0463 3188 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
19:01:24.0557 3188 DPS - ok
19:01:24.0580 3188 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
19:01:24.0639 3188 drmkaud - ok
19:01:24.0751 3188 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:01:24.0799 3188 dtsoftbus01 - ok
19:01:25.0052 3188 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
19:01:25.0140 3188 DXGKrnl - ok
19:01:25.0193 3188 E100B (d00eeae1cacd77a1a8396bbc19140bba) C:\Windows\system32\DRIVERS\e100b325.sys
19:01:25.0333 3188 E100B - ok
19:01:25.0407 3188 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:01:25.0592 3188 E1G60 - ok
19:01:25.0623 3188 eabfiltr (e88b0cfcecf745211bba87f44f85d0dd) C:\Windows\system32\DRIVERS\eabfiltr.sys
19:01:25.0683 3188 eabfiltr - ok
19:01:25.0687 3188 EagleNT - ok
19:01:25.0716 3188 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
19:01:25.0742 3188 EapHost - ok
19:01:25.0786 3188 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
19:01:25.0958 3188 Ecache - ok
19:01:26.0061 3188 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
19:01:26.0131 3188 ehRecvr - ok
19:01:26.0164 3188 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
19:01:26.0312 3188 ehSched - ok
19:01:26.0345 3188 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
19:01:26.0396 3188 ehstart - ok
19:01:26.0454 3188 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
19:01:26.0619 3188 elxstor - ok
19:01:26.0729 3188 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
19:01:27.0002 3188 EMDMgmt - ok
19:01:27.0164 3188 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
19:01:27.0231 3188 EventSystem - ok
19:01:27.0325 3188 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
19:01:27.0454 3188 exfat - ok
19:01:27.0517 3188 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
19:01:27.0561 3188 fastfat - ok
19:01:27.0598 3188 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
19:01:27.0685 3188 fdc - ok
19:01:27.0753 3188 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
19:01:27.0836 3188 fdPHost - ok
19:01:27.0905 3188 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
19:01:27.0986 3188 FDResPub - ok
19:01:28.0077 3188 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
19:01:28.0106 3188 FileInfo - ok
19:01:28.0171 3188 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
19:01:28.0213 3188 Filetrace - ok
19:01:28.0244 3188 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
19:01:28.0314 3188 flpydisk - ok
19:01:28.0387 3188 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
19:01:28.0419 3188 FltMgr - ok
19:01:28.0548 3188 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
19:01:28.0766 3188 FontCache - ok
19:01:28.0938 3188 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:01:28.0983 3188 FontCache3.0.0.0 - ok
19:01:29.0053 3188 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
19:01:29.0135 3188 Fs_Rec - ok
19:01:29.0233 3188 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
19:01:29.0278 3188 gagp30kx - ok
19:01:29.0501 3188 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files\WildTangent Games\App\GamesAppService.exe
19:01:29.0546 3188 GamesAppService - ok
19:01:29.0646 3188 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
19:01:29.0759 3188 gpsvc - ok
19:01:29.0882 3188 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:01:29.0924 3188 gupdate - ok
19:01:29.0929 3188 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:01:29.0959 3188 gupdatem - ok
19:01:30.0052 3188 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:01:30.0143 3188 gusvc - ok
19:01:30.0278 3188 hamachi (7929a161f9951d173ca9900fe7067391) C:\Windows\system32\DRIVERS\hamachi.sys
19:01:30.0306 3188 hamachi - ok
19:01:30.0375 3188 HBtnKey (de15777902a5d9121857d155873a1d1b) C:\Windows\system32\DRIVERS\cpqbttn.sys
19:01:30.0456 3188 HBtnKey - ok
19:01:30.0511 3188 HdAudAddService (07eee11d6e2b78122e17db3878b4c687) C:\Windows\system32\drivers\CHDART.sys
19:01:30.0567 3188 HdAudAddService - ok
19:01:30.0757 3188 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:01:31.0243 3188 HDAudBus - ok
19:01:31.0404 3188 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:01:31.0599 3188 HidBth - ok
19:01:31.0628 3188 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:01:31.0693 3188 HidIr - ok
19:01:31.0926 3188 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
19:01:32.0229 3188 hidserv - ok
19:01:32.0393 3188 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
19:01:32.0506 3188 HidUsb - ok
19:01:32.0863 3188 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
19:01:32.0994 3188 hkmsvc - ok
19:01:33.0436 3188 HP Health Check Service (2ceeb349216febd91a907013d4abcff7) C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
19:01:33.0513 3188 HP Health Check Service - ok
19:01:33.0715 3188 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
19:01:33.0761 3188 HpCISSs - ok
19:01:34.0732 3188 hpqcxs08 (ce0fcec4d4d860f36d972759b11eaf0f) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll
19:01:34.0850 3188 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
19:01:34.0850 3188 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
19:01:35.0391 3188 hpqddsvc (7da3211ac63edd90b8eca1ca1abfd43b) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll
19:01:35.0510 3188 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
19:01:35.0510 3188 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
19:01:35.0829 3188 hpqwmiex (04c1dcbb226c6ae647b794833ce3ceb6) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
19:01:36.0017 3188 hpqwmiex ( UnsignedFile.Multi.Generic ) - warning
19:01:36.0017 3188 hpqwmiex - detected UnsignedFile.Multi.Generic (1)
19:01:37.0756 3188 HPSLPSVC (14229263aa19c704e0d6d2e7404a8455) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\HPSLPSVC32.DLL
19:01:38.0023 3188 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
19:01:38.0023 3188 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
19:01:42.0884 3188 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:01:43.0074 3188 HSFHWAZL - ok
19:01:43.0229 3188 HSF_DPV (0d7a055a840c3099c37d576573a42cd5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:01:43.0752 3188 HSF_DPV - ok
19:01:43.0788 3188 HSXHWAZL (bcc074692882c056b0e1ac97f3331a02) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
19:01:43.0855 3188 HSXHWAZL - ok
19:01:43.0975 3188 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
19:01:44.0074 3188 HTTP - ok
19:01:44.0284 3188 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
19:01:44.0316 3188 i2omp - ok
19:01:44.0347 3188 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
19:01:44.0387 3188 i8042prt - ok
19:01:44.0730 3188 ialm (dbb0588936e43c5f16b643f90f53c06d) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:01:45.0070 3188 ialm - ok
19:01:45.0304 3188 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
19:01:45.0345 3188 iaStorV - ok
19:01:45.0495 3188 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
19:01:45.0531 3188 IDriverT ( UnsignedFile.Multi.Generic ) - warning
19:01:45.0531 3188 IDriverT - detected UnsignedFile.Multi.Generic (1)
19:01:45.0754 3188 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:01:45.0888 3188 idsvc - ok
19:01:46.0366 3188 igfx (dbb0588936e43c5f16b643f90f53c06d) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:01:46.0479 3188 igfx - ok
19:01:46.0759 3188 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:01:46.0775 3188 iirsp - ok
19:01:46.0928 3188 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
19:01:47.0040 3188 IKEEXT - ok
19:01:47.0070 3188 InCDsrvR - ok
19:01:47.0093 3188 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
19:01:47.0112 3188 intelide - ok
19:01:47.0228 3188 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
19:01:47.0300 3188 intelppm - ok
19:01:47.0342 3188 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
19:01:47.0404 3188 IPBusEnum - ok
19:01:47.0532 3188 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:01:47.0585 3188 IpFilterDriver - ok
19:01:47.0588 3188 IpInIp - ok
19:01:47.0668 3188 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
19:01:47.0732 3188 IPMIDRV - ok
19:01:47.0830 3188 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
19:01:47.0900 3188 IPNAT - ok
19:01:47.0955 3188 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
19:01:47.0991 3188 IRENUM - ok
19:01:48.0016 3188 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
19:01:48.0032 3188 isapnp - ok
19:01:48.0130 3188 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
19:01:48.0164 3188 iScsiPrt - ok
19:01:48.0220 3188 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:01:48.0235 3188 iteatapi - ok
19:01:48.0259 3188 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:01:48.0274 3188 iteraid - ok
19:01:48.0303 3188 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:01:48.0322 3188 kbdclass - ok
19:01:48.0374 3188 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:01:48.0414 3188 kbdhid - ok
19:01:48.0444 3188 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:01:48.0493 3188 KeyIso - ok
19:01:48.0561 3188 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
19:01:48.0667 3188 KSecDD - ok
19:01:48.0732 3188 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
19:01:48.0879 3188 KtmRm - ok
19:01:48.0975 3188 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
19:01:49.0080 3188 LanmanServer - ok
19:01:49.0237 3188 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
19:01:49.0360 3188 LanmanWorkstation - ok
19:01:49.0528 3188 LightScribeService (d571c606e4391449293a706588cc4bdd) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:01:49.0553 3188 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
19:01:49.0553 3188 LightScribeService - detected UnsignedFile.Multi.Generic (1)
19:01:49.0614 3188 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
19:01:49.0694 3188 lltdio - ok
19:01:49.0803 3188 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
19:01:49.0886 3188 lltdsvc - ok
19:01:49.0936 3188 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
19:01:50.0024 3188 lmhosts - ok
19:01:50.0103 3188 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
19:01:50.0126 3188 LSI_FC - ok
19:01:50.0175 3188 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
19:01:50.0203 3188 LSI_SAS - ok
19:01:50.0221 3188 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
19:01:50.0245 3188 LSI_SCSI - ok
19:01:50.0275 3188 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
19:01:50.0361 3188 luafv - ok
19:01:50.0406 3188 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
19:01:50.0491 3188 Mcx2Svc - ok
19:01:50.0525 3188 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:01:50.0597 3188 mdmxsdk - ok
19:01:50.0656 3188 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
19:01:50.0681 3188 megasas - ok
19:01:50.0736 3188 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
19:01:50.0807 3188 MMCSS - ok
19:01:50.0870 3188 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
19:01:50.0975 3188 Modem - ok
19:01:51.0054 3188 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
19:01:51.0095 3188 monitor - ok
19:01:51.0192 3188 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
19:01:51.0225 3188 mouclass - ok
19:01:51.0256 3188 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
19:01:51.0311 3188 mouhid - ok
19:01:51.0363 3188 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
19:01:51.0379 3188 MountMgr - ok
19:01:51.0487 3188 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:01:51.0518 3188 MozillaMaintenance - ok
19:01:51.0560 3188 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
19:01:51.0578 3188 mpio - ok
19:01:51.0609 3188 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
19:01:51.0686 3188 mpsdrv - ok
19:01:51.0761 3188 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:01:51.0786 3188 Mraid35x - ok
19:01:51.0820 3188 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
19:01:51.0865 3188 MRxDAV - ok
19:01:51.0930 3188 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:01:52.0066 3188 mrxsmb - ok
19:01:52.0128 3188 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:01:52.0166 3188 mrxsmb10 - ok
19:01:52.0195 3188 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:01:52.0257 3188 mrxsmb20 - ok
19:01:52.0337 3188 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
19:01:52.0423 3188 msahci - ok
19:01:52.0463 3188 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
19:01:52.0484 3188 msdsm - ok
19:01:52.0624 3188 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
19:01:52.0709 3188 MSDTC - ok
19:01:52.0774 3188 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
19:01:52.0822 3188 Msfs - ok
19:01:52.0836 3188 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
19:01:52.0854 3188 msisadrv - ok
19:01:52.0964 3188 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
19:01:53.0040 3188 MSiSCSI - ok
19:01:53.0046 3188 msiserver - ok
19:01:53.0089 3188 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
19:01:53.0139 3188 MSKSSRV - ok
19:01:53.0179 3188 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
19:01:53.0761 3188 MSPCLOCK - ok
19:01:53.0785 3188 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
19:01:53.0841 3188 MSPQM - ok
19:01:53.0917 3188 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
19:01:53.0946 3188 MsRPC - ok
19:01:54.0034 3188 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
19:01:54.0081 3188 mssmbios - ok
19:01:54.0106 3188 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
19:01:54.0156 3188 MSTEE - ok
19:01:54.0189 3188 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
19:01:54.0207 3188 Mup - ok
19:01:54.0279 3188 MyWebSearchService - ok
19:01:54.0388 3188 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
19:01:54.0433 3188 napagent - ok
19:01:54.0616 3188 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
19:01:54.0666 3188 NativeWifiP - ok
19:01:54.0757 3188 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
19:01:54.0846 3188 NDIS - ok
19:01:54.0909 3188 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
19:01:54.0962 3188 NdisTapi - ok
19:01:55.0030 3188 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
19:01:55.0064 3188 Ndisuio - ok
19:01:55.0194 3188 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:01:55.0241 3188 NdisWan - ok
19:01:55.0320 3188 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
19:01:55.0358 3188 NDProxy - ok
19:01:55.0445 3188 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
19:01:55.0479 3188 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:01:55.0479 3188 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:01:55.0514 3188 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
19:01:55.0587 3188 NetBIOS - ok
19:01:55.0643 3188 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
19:01:55.0768 3188 netbt - ok
19:01:55.0795 3188 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:01:55.0821 3188 Netlogon - ok
19:01:55.0890 3188 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
19:01:55.0968 3188 Netman - ok
19:01:56.0065 3188 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
19:01:56.0150 3188 netprofm - ok
19:01:56.0237 3188 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:01:56.0264 3188 NetTcpPortSharing - ok
19:01:56.0514 3188 NETw3v32 (ea30bd026a7d1b745a37516880c4ac1b) C:\Windows\system32\DRIVERS\NETw3v32.sys
19:01:56.0780 3188 NETw3v32 - ok
19:01:57.0125 3188 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:01:57.0149 3188 nfrd960 - ok
19:01:57.0192 3188 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
19:01:57.0320 3188 NlaSvc - ok
19:01:57.0391 3188 nmwcd (357ddb51e03cae598c096d95497373d0) C:\Windows\system32\drivers\ccdcmb.sys
19:01:57.0511 3188 nmwcd - ok
19:01:57.0590 3188 nmwcdc (7cd443f9d36c80e152fadb274089577a) C:\Windows\system32\drivers\ccdcmbo.sys
19:01:57.0652 3188 nmwcdc - ok
19:01:57.0702 3188 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
19:01:57.0756 3188 Npfs - ok
19:01:57.0853 3188 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
19:01:57.0925 3188 nsi - ok
19:01:58.0002 3188 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
19:01:58.0052 3188 nsiproxy - ok
19:01:58.0244 3188 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
19:01:58.0416 3188 Ntfs - ok
19:01:58.0473 3188 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:01:58.0537 3188 ntrigdigi - ok
19:01:58.0581 3188 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
19:01:58.0620 3188 Null - ok
19:01:58.0650 3188 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
19:01:58.0673 3188 nvraid - ok
19:01:58.0744 3188 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
19:01:58.0771 3188 nvstor - ok
19:01:58.0794 3188 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
19:01:58.0823 3188 nv_agp - ok
19:01:58.0827 3188 NwlnkFlt - ok
19:01:58.0830 3188 NwlnkFwd - ok
19:01:58.0911 3188 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
19:01:58.0952 3188 ohci1394 - ok
19:01:59.0101 3188 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:01:59.0209 3188 p2pimsvc - ok
19:01:59.0218 3188 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:01:59.0352 3188 p2psvc - ok
19:01:59.0504 3188 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
19:01:59.0594 3188 Parport - ok
19:01:59.0863 3188 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
19:01:59.0914 3188 partmgr - ok
19:02:00.0118 3188 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
19:02:00.0199 3188 Parvdm - ok
19:02:00.0363 3188 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
19:02:00.0613 3188 PcaSvc - ok
19:02:00.0736 3188 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
19:02:00.0991 3188 pccsmcfd - ok
19:02:01.0455 3188 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
19:02:01.0499 3188 pci - ok
19:02:01.0577 3188 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
19:02:01.0614 3188 pciide - ok
19:02:01.0801 3188 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
19:02:01.0867 3188 pcmcia - ok
19:02:02.0077 3188 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:02:02.0262 3188 PEAUTH - ok
19:02:02.0480 3188 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
19:02:02.0666 3188 pla - ok
19:02:02.0803 3188 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
19:02:02.0859 3188 PlugPlay - ok
19:02:02.0953 3188 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
19:02:02.0989 3188 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:02:02.0989 3188 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:02:03.0081 3188 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:02:03.0264 3188 PNRPAutoReg - ok
19:02:03.0275 3188 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:02:03.0348 3188 PNRPsvc - ok
19:02:03.0414 3188 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
19:02:03.0530 3188 PolicyAgent - ok
19:02:03.0614 3188 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
19:02:03.0694 3188 PptpMiniport - ok
19:02:03.0774 3188 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
19:02:03.0897 3188 Processor - ok
19:02:03.0942 3188 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
19:02:03.0986 3188 ProfSvc - ok
19:02:04.0012 3188 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:02:04.0052 3188 ProtectedStorage - ok
19:02:04.0119 3188 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
19:02:04.0155 3188 PSched - ok
19:02:04.0223 3188 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\Windows\system32\Drivers\PxHelp20.sys
19:02:04.0238 3188 PxHelp20 - ok
19:02:04.0424 3188 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
19:02:04.0532 3188 ql2300 - ok
19:02:04.0561 3188 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:02:04.0592 3188 ql40xx - ok
19:02:04.0685 3188 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
19:02:04.0745 3188 QWAVE - ok
19:02:04.0815 3188 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
19:02:04.0845 3188 QWAVEdrv - ok
19:02:04.0912 3188 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
19:02:04.0968 3188 RasAcd - ok
19:02:05.0008 3188 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
19:02:05.0065 3188 RasAuto - ok
19:02:05.0134 3188 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:02:05.0186 3188 Rasl2tp - ok
19:02:05.0252 3188 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
19:02:05.0294 3188 RasMan - ok
19:02:05.0329 3188 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
19:02:05.0390 3188 RasPppoe - ok
19:02:05.0510 3188 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
19:02:05.0576 3188 RasSstp - ok
19:02:05.0657 3188 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
19:02:05.0703 3188 rdbss - ok
19:02:05.0768 3188 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:02:05.0840 3188 RDPCDD - ok
19:02:05.0900 3188 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
19:02:06.0045 3188 rdpdr - ok
19:02:06.0090 3188 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
19:02:06.0147 3188 RDPENCDD - ok
19:02:06.0228 3188 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
19:02:06.0303 3188 RDPWD - ok
19:02:06.0374 3188 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
19:02:06.0459 3188 RemoteAccess - ok
19:02:06.0529 3188 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
19:02:06.0589 3188 RemoteRegistry - ok
19:02:06.0791 3188 RichVideo (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files\CyberLink\Shared files\RichVideo.exe
19:02:06.0869 3188 RichVideo ( UnsignedFile.Multi.Generic ) - warning
19:02:06.0869 3188 RichVideo - detected UnsignedFile.Multi.Generic (1)
19:02:06.0958 3188 rimmptsk (d85e3fa9f5b1f29bb4ed185c450d1470) C:\Windows\system32\DRIVERS\rimmptsk.sys
19:02:06.0999 3188 rimmptsk - ok
19:02:07.0037 3188 rimsptsk (db8eb01c58c9fada00c70b1775278ae0) C:\Windows\system32\DRIVERS\rimsptsk.sys
19:02:07.0105 3188 rimsptsk - ok
19:02:07.0131 3188 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
19:02:07.0222 3188 rismxdp - ok
19:02:07.0409 3188 RoxMediaDB9 (08fb7d968805001c7adcbb14b0651fa2) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
19:02:07.0606 3188 RoxMediaDB9 ( UnsignedFile.Multi.Generic ) - warning
19:02:07.0606 3188 RoxMediaDB9 - detected UnsignedFile.Multi.Generic (1)
19:02:07.0634 3188 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
19:02:07.0683 3188 RpcLocator - ok
19:02:07.0908 3188 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
19:02:07.0956 3188 RpcSs - ok
19:02:08.0029 3188 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
19:02:08.0109 3188 rspndr - ok
19:02:08.0153 3188 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:02:08.0179 3188 SamSs - ok
19:02:08.0246 3188 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
19:02:08.0266 3188 sbp2port - ok
19:02:08.0370 3188 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
19:02:08.0452 3188 SCardSvr - ok
19:02:08.0629 3188 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
19:02:08.0758 3188 Schedule - ok
19:02:08.0792 3188 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
19:02:08.0837 3188 SCPolicySvc - ok
19:02:08.0948 3188 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
19:02:08.0997 3188 sdbus - ok
19:02:09.0067 3188 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
19:02:09.0281 3188 SDRSVC - ok
19:02:09.0307 3188 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:02:09.0380 3188 secdrv - ok
19:02:09.0428 3188 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
19:02:09.0518 3188 seclogon - ok
19:02:09.0539 3188 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
19:02:09.0593 3188 SENS - ok
19:02:09.0634 3188 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
19:02:09.0706 3188 Serenum - ok
19:02:09.0800 3188 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
19:02:09.0886 3188 Serial - ok
19:02:09.0913 3188 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
19:02:09.0947 3188 sermouse - ok
19:02:10.0129 3188 ServiceLayer (8988d1f32f56b3cd3f0f6c39f8a91a98) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:02:10.0193 3188 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
19:02:10.0193 3188 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
19:02:10.0350 3188 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
19:02:10.0407 3188 SessionEnv - ok
19:02:10.0445 3188 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
19:02:10.0515 3188 sffdisk - ok
19:02:10.0554 3188 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
19:02:10.0875 3188 sffp_mmc - ok
19:02:10.0987 3188 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
19:02:11.0058 3188 sffp_sd - ok
19:02:11.0088 3188 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
19:02:11.0145 3188 sfloppy - ok
19:02:11.0425 3188 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
19:02:11.0538 3188 ShellHWDetection - ok
19:02:11.0636 3188 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
19:02:11.0673 3188 sisagp - ok
19:02:11.0714 3188 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
19:02:11.0730 3188 SiSRaid2 - ok
19:02:11.0813 3188 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
19:02:11.0830 3188 SiSRaid4 - ok
19:02:12.0291 3188 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
19:02:13.0003 3188 slsvc - ok
19:02:13.0208 3188 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
19:02:13.0279 3188 SLUINotify - ok
19:02:13.0380 3188 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
19:02:13.0432 3188 Smb - ok
19:02:13.0460 3188 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
19:02:13.0492 3188 SNMPTRAP - ok
19:02:13.0986 3188 SNP2UVC (5140166bbcafe1393d4669353a1f8c0a) C:\Windows\system32\DRIVERS\snp2uvc.sys
19:02:14.0764 3188 SNP2UVC - ok
19:02:15.0085 3188 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
19:02:15.0169 3188 spldr - ok
19:02:15.0220 3188 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
19:02:15.0327 3188 Spooler - ok
19:02:15.0472 3188 SpyEmrg (edaef346de209f040d0c9f9effedf084) C:\Windows\system32\Drivers\spyemrg.sys
19:02:15.0487 3188 SpyEmrg - ok
19:02:15.0510 3188 SpyEmrgAccess (5a1c84d84a07a3b6d389eba12c345ea4) C:\Windows\system32\Drivers\spyemrg_access.sys
19:02:15.0527 3188 SpyEmrgAccess - ok
19:02:15.0584 3188 SpyEmrgGuard (9e91568feeb1c78f2f271fbc0f639365) C:\Windows\system32\Drivers\spyemrg_guard.sys
19:02:15.0602 3188 SpyEmrgGuard - ok
19:02:16.0040 3188 SpyEmrgSrv (3e7e68528123cbeea7bac9f309a957ac) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
19:02:16.0191 3188 SpyEmrgSrv - ok
19:02:16.0492 3188 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
19:02:16.0656 3188 srv - ok
19:02:16.0715 3188 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
19:02:16.0825 3188 srv2 - ok
19:02:16.0871 3188 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
19:02:16.0933 3188 srvnet - ok
19:02:16.0988 3188 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
19:02:17.0053 3188 SSDPSRV - ok
19:02:17.0085 3188 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
19:02:17.0121 3188 SstpSvc - ok
19:02:17.0173 3188 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
19:02:17.0226 3188 StillCam - ok
19:02:17.0321 3188 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
19:02:17.0445 3188 stisvc - ok
19:02:17.0567 3188 stllssvr (a9a23c8af361f7a93fd632e91a8c346f) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
19:02:17.0581 3188 stllssvr - ok
19:02:17.0642 3188 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
19:02:17.0661 3188 swenum - ok
19:02:17.0831 3188 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
19:02:17.0928 3188 swprv - ok
19:02:17.0961 3188 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:02:17.0982 3188 Symc8xx - ok
19:02:18.0052 3188 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:02:18.0090 3188 Sym_hi - ok
19:02:18.0117 3188 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:02:18.0135 3188 Sym_u3 - ok
19:02:18.0213 3188 SynTP (8327106d1c93e9a7b98e63b9fcc24bb7) C:\Windows\system32\DRIVERS\SynTP.sys
19:02:18.0253 3188 SynTP - ok
19:02:18.0404 3188 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
19:02:18.0528 3188 SysMain - ok
19:02:18.0609 3188 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
19:02:18.0702 3188 TabletInputService - ok
19:02:18.0794 3188 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
19:02:18.0900 3188 TapiSrv - ok
19:02:18.0944 3188 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
19:02:19.0039 3188 TBS - ok
19:02:19.0210 3188 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
19:02:19.0281 3188 Tcpip - ok
19:02:19.0294 3188 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
19:02:19.0356 3188 Tcpip6 - ok
19:02:19.0546 3188 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
19:02:19.0683 3188 tcpipreg - ok
19:02:19.0775 3188 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
19:02:19.0854 3188 TDPIPE - ok
19:02:19.0915 3188 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
19:02:19.0968 3188 TDTCP - ok
19:02:20.0052 3188 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
19:02:20.0143 3188 tdx - ok
19:02:20.0208 3188 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
19:02:20.0230 3188 TermDD - ok
19:02:20.0368 3188 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
19:02:20.0451 3188 TermService - ok
19:02:20.0614 3188 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
19:02:20.0650 3188 Themes - ok
19:02:20.0683 3188 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
19:02:20.0718 3188 THREADORDER - ok
19:02:20.0777 3188 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
19:02:20.0817 3188 TrkWks - ok
19:02:20.0932 3188 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
19:02:20.0978 3188 TrustedInstaller - ok
19:02:21.0005 3188 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:02:21.0043 3188 tssecsrv - ok
19:02:21.0073 3188 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
19:02:21.0210 3188 tunmp - ok
19:02:21.0241 3188 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
19:02:21.0275 3188 tunnel - ok
19:02:21.0316 3188 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
19:02:21.0336 3188 uagp35 - ok
19:02:21.0490 3188 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
19:02:21.0547 3188 udfs - ok
19:02:21.0591 3188 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
19:02:21.0646 3188 UI0Detect - ok
19:02:21.0729 3188 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
19:02:21.0754 3188 uliagpkx - ok
19:02:21.0787 3188 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
19:02:21.0823 3188 uliahci - ok
19:02:21.0881 3188 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:02:21.0900 3188 UlSata - ok
19:02:21.0995 3188 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:02:22.0029 3188 ulsata2 - ok
19:02:22.0063 3188 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
19:02:22.0106 3188 umbus - ok
19:02:22.0183 3188 UnlockerDriver5 (bb879dcfd22926efbeb3298129898cbb) C:\Program Files\Unlocker\UnlockerDriver5.sys
19:02:22.0205 3188 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning
19:02:22.0205 3188 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1)
19:02:22.0316 3188 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
19:02:22.0459 3188 upnphost - ok
19:02:22.0495 3188 upperdev (15629e4d65f97ab5432d6d9597cf6a33) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
19:02:22.0578 3188 upperdev - ok
19:02:22.0623 3188 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
19:02:22.0665 3188 usbaudio - ok
19:02:22.0701 3188 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
19:02:22.0746 3188 usbccgp - ok
19:02:22.0834 3188 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:02:22.0896 3188 usbcir - ok
19:02:22.0953 3188 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
19:02:22.0979 3188 usbehci - ok
19:02:23.0030 3188 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
19:02:23.0170 3188 usbhub - ok
19:02:23.0195 3188 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
19:02:23.0289 3188 usbohci - ok
19:02:23.0376 3188 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
19:02:23.0435 3188 usbprint - ok
19:02:23.0482 3188 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
19:02:23.0529 3188 usbscan - ok
19:02:23.0557 3188 usbser (d575246188f63de0accf6eac5fb59e6a) C:\Windows\system32\drivers\usbser.sys
19:02:23.0611 3188 usbser - ok
19:02:23.0701 3188 UsbserFilt (5c17e6a11aa8be53f79fd364ba19f0ce) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
19:02:23.0745 3188 UsbserFilt - ok
19:02:23.0787 3188 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:02:23.0833 3188 USBSTOR - ok
19:02:23.0857 3188 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
19:02:23.0883 3188 usbuhci - ok
19:02:24.0045 3188 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
19:02:24.0111 3188 usbvideo - ok
19:02:24.0173 3188 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
19:02:24.0215 3188 UxSms - ok
19:02:24.0348 3188 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
19:02:24.0424 3188 vds - ok
19:02:24.0501 3188 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
19:02:24.0630 3188 vga - ok
19:02:24.0672 3188 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
19:02:24.0718 3188 VgaSave - ok
19:02:24.0735 3188 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
19:02:24.0763 3188 viaagp - ok
19:02:24.0847 3188 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
19:02:24.0920 3188 ViaC7 - ok
19:02:24.0944 3188 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
19:02:24.0963 3188 viaide - ok
19:02:24.0990 3188 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
19:02:25.0008 3188 volmgr - ok
19:02:25.0142 3188 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
19:02:25.0184 3188 volmgrx - ok
19:02:25.0252 3188 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
19:02:25.0281 3188 volsnap - ok
19:02:25.0419 3188 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
19:02:25.0453 3188 vsmraid - ok
19:02:25.0573 3188 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
19:02:25.0825 3188 VSS - ok
19:02:26.0068 3188 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
19:02:26.0172 3188 vToolbarUpdater11.2.0 - ok
19:02:26.0455 3188 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
19:02:26.0515 3188 W32Time - ok
19:02:26.0675 3188 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:02:26.0741 3188 WacomPen - ok
19:02:26.0805 3188 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:02:26.0834 3188 Wanarp - ok
19:02:26.0837 3188 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:02:26.0872 3188 Wanarpv6 - ok
19:02:26.0977 3188 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
19:02:27.0020 3188 wcncsvc - ok
19:02:27.0041 3188 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
19:02:27.0085 3188 WcsPlugInService - ok
19:02:27.0156 3188 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
19:02:27.0226 3188 Wd - ok
19:02:27.0299 3188 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
19:02:27.0397 3188 Wdf01000 - ok
19:02:27.0493 3188 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
19:02:27.0548 3188 WdiServiceHost - ok
19:02:27.0576 3188 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
19:02:27.0615 3188 WdiSystemHost - ok
19:02:27.0681 3188 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
19:02:27.0787 3188 WebClient - ok
19:02:27.0860 3188 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
19:02:28.0048 3188 Wecsvc - ok
19:02:28.0094 3188 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
19:02:28.0153 3188 wercplsupport - ok
19:02:28.0239 3188 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
19:02:28.0283 3188 WerSvc - ok
19:02:28.0436 3188 winachsf (3b4522d0e750bac8fe7ae61622a57014) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:02:28.0499 3188 winachsf - ok
19:02:28.0504 3188 WinHttpAutoProxySvc - ok
19:02:28.0568 3188 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
19:02:28.0735 3188 Winmgmt - ok
19:02:28.0995 3188 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
19:02:29.0249 3188 WinRM - ok
19:02:29.0367 3188 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
19:02:29.0471 3188 Wlansvc - ok
19:02:29.0627 3188 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:02:29.0666 3188 WmiAcpi - ok
19:02:29.0718 3188 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
19:02:29.0819 3188 wmiApSrv - ok
19:02:30.0185 3188 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:02:30.0352 3188 WMPNetworkSvc - ok
19:02:30.0459 3188 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
19:02:30.0527 3188 WPCSvc - ok
19:02:30.0567 3188 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
19:02:30.0721 3188 WPDBusEnum - ok
19:02:30.0850 3188 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
19:02:30.0872 3188 WpdUsb - ok
19:02:31.0178 3188 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:02:31.0295 3188 WPFFontCache_v0400 - ok
19:02:31.0346 3188 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
19:02:31.0403 3188 ws2ifsl - ok
19:02:31.0411 3188 WSearch - ok
19:02:31.0468 3188 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:02:31.0535 3188 WUDFRd - ok
19:02:31.0633 3188 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
19:02:31.0750 3188 wudfsvc - ok
19:02:31.0780 3188 XAudio (88af537264f2b818da15479ceeaf5d7c) C:\Windows\system32\DRIVERS\xaudio.sys
19:02:31.0807 3188 XAudio - ok
19:02:31.0929 3188 XAudioService (15a317674a08df26be65164d959e9203) C:\Windows\system32\DRIVERS\xaudio.exe
19:02:31.0983 3188 XAudioService - ok
19:02:32.0039 3188 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
19:02:32.0279 3188 \Device\Harddisk0\DR0 - ok
19:02:32.0280 3188 Boot (0x1200) (716ce770b82920b2512ea1144ccd75c1) \Device\Harddisk0\DR0\Partition0
19:02:32.0283 3188 \Device\Harddisk0\DR0\Partition0 - ok
19:02:32.0284 3188 Boot (0x1200) (68747b882e784c2b11cc0f525e92c000) \Device\Harddisk0\DR0\Partition1
19:02:32.0286 3188 \Device\Harddisk0\DR0\Partition1 - ok
19:02:32.0287 3188 ============================================================
19:02:32.0287 3188 Scan finished
19:02:32.0287 3188 ============================================================
19:02:32.0290 4704 Detected object count: 15
19:02:32.0290 4704 Actual detected object count: 15
19:03:06.0031 4704 CLCapSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0031 4704 CLCapSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0032 4704 CLSched ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0032 4704 CLSched ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0033 4704 Com4Qlb ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0033 4704 Com4Qlb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0033 4704 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0033 4704 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0034 4704 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0035 4704 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0036 4704 hpqwmiex ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0037 4704 hpqwmiex ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0038 4704 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0038 4704 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0038 4704 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0039 4704 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0039 4704 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0039 4704 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0040 4704 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0040 4704 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0041 4704 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0041 4704 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0042 4704 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0042 4704 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0042 4704 RoxMediaDB9 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0042 4704 RoxMediaDB9 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0043 4704 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0043 4704 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0044 4704 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0044 4704 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:59:57.0449 5888 ============================================================
18:59:57.0449 5888 Current date / time: 2012/07/14 18:59:57.0449
18:59:57.0450 5888 SystemInfo:
18:59:57.0450 5888
18:59:57.0450 5888 OS Version: 6.0.6002 ServicePack: 2.0
18:59:57.0450 5888 Product type: Workstation
18:59:57.0450 5888 ComputerName: SANDRA-PC
18:59:57.0451 5888 UserName: Sandra
18:59:57.0451 5888 Windows directory: C:\Windows
18:59:57.0451 5888 System windows directory: C:\Windows
18:59:57.0451 5888 Processor architecture: Intel x86
18:59:57.0451 5888 Number of processors: 2
18:59:57.0451 5888 Page size: 0x1000
18:59:57.0451 5888 Boot type: Normal boot
18:59:57.0451 5888 ============================================================
19:00:07.0615 5888 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:00:07.0744 5888 ============================================================
19:00:07.0744 5888 \Device\Harddisk0\DR0:
19:00:07.0826 5888 MBR partitions:
19:00:07.0826 5888 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x119D749D
19:00:07.0826 5888 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x119D74DC, BlocksNum 0x10415E5
19:00:07.0826 5888 ============================================================
19:00:08.0227 5888 C: <-> \Device\Harddisk0\DR0\Partition0
19:00:08.0407 5888 D: <-> \Device\Harddisk0\DR0\Partition1
19:00:08.0462 5888 ============================================================
19:00:08.0462 5888 Initialize success
19:00:08.0462 5888 ============================================================
19:00:30.0023 3188 ============================================================
19:00:30.0024 3188 Scan started
19:00:30.0024 3188 Mode: Manual; SigCheck; TDLFS;
19:00:30.0024 3188 ============================================================
19:00:46.0833 3188 aawservice (17067069b9a7865028c1f2e6971d0ccc) C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
19:00:47.0866 3188 aawservice - ok
19:00:51.0144 3188 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
19:00:51.0507 3188 ACPI - ok
19:00:52.0465 3188 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:00:52.0515 3188 AdobeFlashPlayerUpdateSvc - ok
19:00:52.0995 3188 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
19:00:53.0071 3188 adp94xx - ok
19:00:53.0491 3188 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
19:00:53.0717 3188 adpahci - ok
19:00:53.0891 3188 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
19:00:53.0915 3188 adpu160m - ok
19:00:53.0954 3188 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
19:00:54.0036 3188 adpu320 - ok
19:00:54.0274 3188 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
19:00:55.0705 3188 AeLookupSvc - ok
19:00:55.0941 3188 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
19:00:56.0196 3188 AFD - ok
19:00:56.0494 3188 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
19:00:56.0541 3188 agp440 - ok
19:00:56.0912 3188 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:00:56.0939 3188 aic78xx - ok
19:00:57.0009 3188 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
19:00:58.0126 3188 ALG - ok
19:00:58.0178 3188 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
19:00:58.0192 3188 aliide - ok
19:00:58.0278 3188 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
19:00:58.0310 3188 amdagp - ok
19:00:58.0452 3188 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
19:00:58.0491 3188 amdide - ok
19:00:58.0578 3188 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
19:01:02.0109 3188 AmdK7 - ok
19:01:02.0336 3188 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
19:01:02.0526 3188 AmdK8 - ok
19:01:02.0739 3188 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
19:01:03.0132 3188 Appinfo - ok
19:01:03.0488 3188 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
19:01:03.0543 3188 arc - ok
19:01:03.0883 3188 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
19:01:03.0929 3188 arcsas - ok
19:01:04.0072 3188 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
19:01:04.0243 3188 AsyncMac - ok
19:01:04.0474 3188 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
19:01:04.0495 3188 atapi - ok
19:01:06.0856 3188 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
19:01:06.0967 3188 AudioEndpointBuilder - ok
19:01:06.0989 3188 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
19:01:07.0046 3188 Audiosrv - ok
19:01:08.0538 3188 AVG Security Toolbar Service (ee651d98b03fe3c075ccc58ab61c9287) C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
19:01:09.0087 3188 AVG Security Toolbar Service - ok
19:01:11.0431 3188 Avgfwfd (c46ba2c177df0b84f9c0bfc1e4574dc7) C:\Windows\system32\DRIVERS\avgfwd6x.sys
19:01:11.0511 3188 Avgfwfd - ok
19:01:13.0157 3188 avgfws (5cd22eb540f82c70e33e530003f3903b) C:\Program Files\AVG\AVG2012\avgfws.exe
19:01:14.0701 3188 avgfws - ok
19:01:15.0349 3188 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
19:01:15.0845 3188 AVGIDSAgent - ok
19:01:16.0165 3188 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
19:01:16.0207 3188 AVGIDSDriver - ok
19:01:16.0292 3188 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
19:01:16.0335 3188 AVGIDSEH - ok
19:01:16.0368 3188 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
19:01:16.0395 3188 AVGIDSFilter - ok
19:01:16.0431 3188 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
19:01:16.0461 3188 AVGIDSShim - ok
19:01:16.0597 3188 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
19:01:16.0640 3188 Avgldx86 - ok
19:01:16.0710 3188 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
19:01:16.0737 3188 Avgmfx86 - ok
19:01:16.0793 3188 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
19:01:16.0871 3188 Avgrkx86 - ok
19:01:16.0938 3188 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
19:01:17.0046 3188 Avgtdix - ok
19:01:17.0220 3188 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files\AVG\AVG2012\avgwdsvc.exe
19:01:17.0241 3188 avgwd - ok
19:01:17.0330 3188 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
19:01:17.0603 3188 BCM43XV - ok
19:01:17.0629 3188 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
19:01:17.0704 3188 Beep - ok
19:01:17.0707 3188 blbdrive - ok
19:01:17.0779 3188 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
19:01:17.0871 3188 bowser - ok
19:01:17.0937 3188 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:01:17.0989 3188 BrFiltLo - ok
19:01:18.0065 3188 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:01:18.0138 3188 BrFiltUp - ok
19:01:18.0175 3188 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
19:01:18.0254 3188 Browser - ok
19:01:18.0417 3188 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:01:18.0551 3188 Brserid - ok
19:01:18.0577 3188 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:01:18.0729 3188 BrSerWdm - ok
19:01:18.0747 3188 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:01:18.0876 3188 BrUsbMdm - ok
19:01:18.0903 3188 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:01:19.0007 3188 BrUsbSer - ok
19:01:19.0032 3188 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
19:01:19.0111 3188 BTHMODEM - ok
19:01:19.0157 3188 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
19:01:19.0244 3188 cdfs - ok
19:01:19.0307 3188 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
19:01:19.0356 3188 cdrom - ok
19:01:19.0425 3188 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
19:01:19.0474 3188 CertPropSvc - ok
19:01:19.0536 3188 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
19:01:19.0657 3188 circlass - ok
19:01:19.0916 3188 CLCapSvc (16356e5a3d7be77b2010be72c36e944c) C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
19:01:19.0961 3188 CLCapSvc ( UnsignedFile.Multi.Generic ) - warning
19:01:19.0962 3188 CLCapSvc - detected UnsignedFile.Multi.Generic (1)
19:01:20.0009 3188 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
19:01:20.0049 3188 CLFS - ok
19:01:20.0206 3188 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:01:20.0232 3188 clr_optimization_v2.0.50727_32 - ok
19:01:20.0325 3188 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:01:20.0359 3188 clr_optimization_v4.0.30319_32 - ok
19:01:20.0481 3188 CLSched (e97d797af6c2e64bfc22eeb7fa58bb63) C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
19:01:20.0520 3188 CLSched ( UnsignedFile.Multi.Generic ) - warning
19:01:20.0520 3188 CLSched - detected UnsignedFile.Multi.Generic (1)
19:01:20.0556 3188 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
19:01:20.0626 3188 CmBatt - ok
19:01:20.0709 3188 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
19:01:20.0757 3188 cmdide - ok
19:01:20.0837 3188 Com4Qlb (a5aaa656403e5e7afa9647ce73dbf944) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
19:01:20.0895 3188 Com4Qlb ( UnsignedFile.Multi.Generic ) - warning
19:01:20.0895 3188 Com4Qlb - detected UnsignedFile.Multi.Generic (1)
19:01:20.0932 3188 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
19:01:20.0970 3188 Compbatt - ok
19:01:20.0983 3188 COMSysApp - ok
19:01:21.0024 3188 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
19:01:21.0057 3188 crcdisk - ok
19:01:21.0077 3188 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
19:01:21.0205 3188 Crusoe - ok
19:01:21.0310 3188 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
19:01:21.0395 3188 CryptSvc - ok
19:01:21.0454 3188 CrystalSysInfo (f054744f67576a01139885173392502b) C:\Program Files\MediaCoder\SysInfo.sys
19:01:21.0500 3188 CrystalSysInfo - ok
19:01:22.0139 3188 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
19:01:22.0247 3188 DcomLaunch - ok
19:01:22.0363 3188 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
19:01:22.0461 3188 DfsC - ok
19:01:22.0749 3188 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
19:01:23.0125 3188 DFSR - ok
19:01:23.0342 3188 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
19:01:23.0444 3188 Dhcp - ok
19:01:23.0585 3188 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
19:01:23.0615 3188 disk - ok
19:01:23.0683 3188 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
19:01:23.0764 3188 Dnscache - ok
19:01:23.0869 3188 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
19:01:23.0934 3188 dot3svc - ok
19:01:24.0010 3188 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
19:01:24.0084 3188 Dot4 - ok
19:01:24.0156 3188 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:01:24.0229 3188 Dot4Print - ok
19:01:24.0276 3188 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
19:01:24.0362 3188 dot4usb - ok
19:01:24.0463 3188 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
19:01:24.0557 3188 DPS - ok
19:01:24.0580 3188 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
19:01:24.0639 3188 drmkaud - ok
19:01:24.0751 3188 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:01:24.0799 3188 dtsoftbus01 - ok
19:01:25.0052 3188 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
19:01:25.0140 3188 DXGKrnl - ok
19:01:25.0193 3188 E100B (d00eeae1cacd77a1a8396bbc19140bba) C:\Windows\system32\DRIVERS\e100b325.sys
19:01:25.0333 3188 E100B - ok
19:01:25.0407 3188 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:01:25.0592 3188 E1G60 - ok
19:01:25.0623 3188 eabfiltr (e88b0cfcecf745211bba87f44f85d0dd) C:\Windows\system32\DRIVERS\eabfiltr.sys
19:01:25.0683 3188 eabfiltr - ok
19:01:25.0687 3188 EagleNT - ok
19:01:25.0716 3188 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
19:01:25.0742 3188 EapHost - ok
19:01:25.0786 3188 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
19:01:25.0958 3188 Ecache - ok
19:01:26.0061 3188 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
19:01:26.0131 3188 ehRecvr - ok
19:01:26.0164 3188 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
19:01:26.0312 3188 ehSched - ok
19:01:26.0345 3188 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
19:01:26.0396 3188 ehstart - ok
19:01:26.0454 3188 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
19:01:26.0619 3188 elxstor - ok
19:01:26.0729 3188 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
19:01:27.0002 3188 EMDMgmt - ok
19:01:27.0164 3188 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
19:01:27.0231 3188 EventSystem - ok
19:01:27.0325 3188 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
19:01:27.0454 3188 exfat - ok
19:01:27.0517 3188 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
19:01:27.0561 3188 fastfat - ok
19:01:27.0598 3188 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
19:01:27.0685 3188 fdc - ok
19:01:27.0753 3188 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
19:01:27.0836 3188 fdPHost - ok
19:01:27.0905 3188 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
19:01:27.0986 3188 FDResPub - ok
19:01:28.0077 3188 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
19:01:28.0106 3188 FileInfo - ok
19:01:28.0171 3188 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
19:01:28.0213 3188 Filetrace - ok
19:01:28.0244 3188 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
19:01:28.0314 3188 flpydisk - ok
19:01:28.0387 3188 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
19:01:28.0419 3188 FltMgr - ok
19:01:28.0548 3188 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
19:01:28.0766 3188 FontCache - ok
19:01:28.0938 3188 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:01:28.0983 3188 FontCache3.0.0.0 - ok
19:01:29.0053 3188 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
19:01:29.0135 3188 Fs_Rec - ok
19:01:29.0233 3188 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
19:01:29.0278 3188 gagp30kx - ok
19:01:29.0501 3188 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files\WildTangent Games\App\GamesAppService.exe
19:01:29.0546 3188 GamesAppService - ok
19:01:29.0646 3188 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
19:01:29.0759 3188 gpsvc - ok
19:01:29.0882 3188 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:01:29.0924 3188 gupdate - ok
19:01:29.0929 3188 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:01:29.0959 3188 gupdatem - ok
19:01:30.0052 3188 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:01:30.0143 3188 gusvc - ok
19:01:30.0278 3188 hamachi (7929a161f9951d173ca9900fe7067391) C:\Windows\system32\DRIVERS\hamachi.sys
19:01:30.0306 3188 hamachi - ok
19:01:30.0375 3188 HBtnKey (de15777902a5d9121857d155873a1d1b) C:\Windows\system32\DRIVERS\cpqbttn.sys
19:01:30.0456 3188 HBtnKey - ok
19:01:30.0511 3188 HdAudAddService (07eee11d6e2b78122e17db3878b4c687) C:\Windows\system32\drivers\CHDART.sys
19:01:30.0567 3188 HdAudAddService - ok
19:01:30.0757 3188 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:01:31.0243 3188 HDAudBus - ok
19:01:31.0404 3188 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:01:31.0599 3188 HidBth - ok
19:01:31.0628 3188 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:01:31.0693 3188 HidIr - ok
19:01:31.0926 3188 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
19:01:32.0229 3188 hidserv - ok
19:01:32.0393 3188 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
19:01:32.0506 3188 HidUsb - ok
19:01:32.0863 3188 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
19:01:32.0994 3188 hkmsvc - ok
19:01:33.0436 3188 HP Health Check Service (2ceeb349216febd91a907013d4abcff7) C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
19:01:33.0513 3188 HP Health Check Service - ok
19:01:33.0715 3188 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
19:01:33.0761 3188 HpCISSs - ok
19:01:34.0732 3188 hpqcxs08 (ce0fcec4d4d860f36d972759b11eaf0f) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll
19:01:34.0850 3188 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
19:01:34.0850 3188 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
19:01:35.0391 3188 hpqddsvc (7da3211ac63edd90b8eca1ca1abfd43b) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll
19:01:35.0510 3188 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
19:01:35.0510 3188 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
19:01:35.0829 3188 hpqwmiex (04c1dcbb226c6ae647b794833ce3ceb6) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
19:01:36.0017 3188 hpqwmiex ( UnsignedFile.Multi.Generic ) - warning
19:01:36.0017 3188 hpqwmiex - detected UnsignedFile.Multi.Generic (1)
19:01:37.0756 3188 HPSLPSVC (14229263aa19c704e0d6d2e7404a8455) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\HPSLPSVC32.DLL
19:01:38.0023 3188 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
19:01:38.0023 3188 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
19:01:42.0884 3188 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:01:43.0074 3188 HSFHWAZL - ok
19:01:43.0229 3188 HSF_DPV (0d7a055a840c3099c37d576573a42cd5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:01:43.0752 3188 HSF_DPV - ok
19:01:43.0788 3188 HSXHWAZL (bcc074692882c056b0e1ac97f3331a02) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
19:01:43.0855 3188 HSXHWAZL - ok
19:01:43.0975 3188 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
19:01:44.0074 3188 HTTP - ok
19:01:44.0284 3188 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
19:01:44.0316 3188 i2omp - ok
19:01:44.0347 3188 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
19:01:44.0387 3188 i8042prt - ok
19:01:44.0730 3188 ialm (dbb0588936e43c5f16b643f90f53c06d) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:01:45.0070 3188 ialm - ok
19:01:45.0304 3188 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
19:01:45.0345 3188 iaStorV - ok
19:01:45.0495 3188 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
19:01:45.0531 3188 IDriverT ( UnsignedFile.Multi.Generic ) - warning
19:01:45.0531 3188 IDriverT - detected UnsignedFile.Multi.Generic (1)
19:01:45.0754 3188 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:01:45.0888 3188 idsvc - ok
19:01:46.0366 3188 igfx (dbb0588936e43c5f16b643f90f53c06d) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:01:46.0479 3188 igfx - ok
19:01:46.0759 3188 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:01:46.0775 3188 iirsp - ok
19:01:46.0928 3188 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
19:01:47.0040 3188 IKEEXT - ok
19:01:47.0070 3188 InCDsrvR - ok
19:01:47.0093 3188 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
19:01:47.0112 3188 intelide - ok
19:01:47.0228 3188 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
19:01:47.0300 3188 intelppm - ok
19:01:47.0342 3188 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
19:01:47.0404 3188 IPBusEnum - ok
19:01:47.0532 3188 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:01:47.0585 3188 IpFilterDriver - ok
19:01:47.0588 3188 IpInIp - ok
19:01:47.0668 3188 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
19:01:47.0732 3188 IPMIDRV - ok
19:01:47.0830 3188 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
19:01:47.0900 3188 IPNAT - ok
19:01:47.0955 3188 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
19:01:47.0991 3188 IRENUM - ok
19:01:48.0016 3188 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
19:01:48.0032 3188 isapnp - ok
19:01:48.0130 3188 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
19:01:48.0164 3188 iScsiPrt - ok
19:01:48.0220 3188 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:01:48.0235 3188 iteatapi - ok
19:01:48.0259 3188 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:01:48.0274 3188 iteraid - ok
19:01:48.0303 3188 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:01:48.0322 3188 kbdclass - ok
19:01:48.0374 3188 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:01:48.0414 3188 kbdhid - ok
19:01:48.0444 3188 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:01:48.0493 3188 KeyIso - ok
19:01:48.0561 3188 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
19:01:48.0667 3188 KSecDD - ok
19:01:48.0732 3188 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
19:01:48.0879 3188 KtmRm - ok
19:01:48.0975 3188 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
19:01:49.0080 3188 LanmanServer - ok
19:01:49.0237 3188 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
19:01:49.0360 3188 LanmanWorkstation - ok
19:01:49.0528 3188 LightScribeService (d571c606e4391449293a706588cc4bdd) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:01:49.0553 3188 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
19:01:49.0553 3188 LightScribeService - detected UnsignedFile.Multi.Generic (1)
19:01:49.0614 3188 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
19:01:49.0694 3188 lltdio - ok
19:01:49.0803 3188 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
19:01:49.0886 3188 lltdsvc - ok
19:01:49.0936 3188 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
19:01:50.0024 3188 lmhosts - ok
19:01:50.0103 3188 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
19:01:50.0126 3188 LSI_FC - ok
19:01:50.0175 3188 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
19:01:50.0203 3188 LSI_SAS - ok
19:01:50.0221 3188 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
19:01:50.0245 3188 LSI_SCSI - ok
19:01:50.0275 3188 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
19:01:50.0361 3188 luafv - ok
19:01:50.0406 3188 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
19:01:50.0491 3188 Mcx2Svc - ok
19:01:50.0525 3188 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:01:50.0597 3188 mdmxsdk - ok
19:01:50.0656 3188 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
19:01:50.0681 3188 megasas - ok
19:01:50.0736 3188 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
19:01:50.0807 3188 MMCSS - ok
19:01:50.0870 3188 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
19:01:50.0975 3188 Modem - ok
19:01:51.0054 3188 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
19:01:51.0095 3188 monitor - ok
19:01:51.0192 3188 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
19:01:51.0225 3188 mouclass - ok
19:01:51.0256 3188 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
19:01:51.0311 3188 mouhid - ok
19:01:51.0363 3188 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
19:01:51.0379 3188 MountMgr - ok
19:01:51.0487 3188 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:01:51.0518 3188 MozillaMaintenance - ok
19:01:51.0560 3188 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
19:01:51.0578 3188 mpio - ok
19:01:51.0609 3188 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
19:01:51.0686 3188 mpsdrv - ok
19:01:51.0761 3188 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:01:51.0786 3188 Mraid35x - ok
19:01:51.0820 3188 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
19:01:51.0865 3188 MRxDAV - ok
19:01:51.0930 3188 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:01:52.0066 3188 mrxsmb - ok
19:01:52.0128 3188 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:01:52.0166 3188 mrxsmb10 - ok
19:01:52.0195 3188 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:01:52.0257 3188 mrxsmb20 - ok
19:01:52.0337 3188 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
19:01:52.0423 3188 msahci - ok
19:01:52.0463 3188 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
19:01:52.0484 3188 msdsm - ok
19:01:52.0624 3188 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
19:01:52.0709 3188 MSDTC - ok
19:01:52.0774 3188 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
19:01:52.0822 3188 Msfs - ok
19:01:52.0836 3188 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
19:01:52.0854 3188 msisadrv - ok
19:01:52.0964 3188 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
19:01:53.0040 3188 MSiSCSI - ok
19:01:53.0046 3188 msiserver - ok
19:01:53.0089 3188 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
19:01:53.0139 3188 MSKSSRV - ok
19:01:53.0179 3188 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
19:01:53.0761 3188 MSPCLOCK - ok
19:01:53.0785 3188 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
19:01:53.0841 3188 MSPQM - ok
19:01:53.0917 3188 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
19:01:53.0946 3188 MsRPC - ok
19:01:54.0034 3188 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
19:01:54.0081 3188 mssmbios - ok
19:01:54.0106 3188 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
19:01:54.0156 3188 MSTEE - ok
19:01:54.0189 3188 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
19:01:54.0207 3188 Mup - ok
19:01:54.0279 3188 MyWebSearchService - ok
19:01:54.0388 3188 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
19:01:54.0433 3188 napagent - ok
19:01:54.0616 3188 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
19:01:54.0666 3188 NativeWifiP - ok
19:01:54.0757 3188 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
19:01:54.0846 3188 NDIS - ok
19:01:54.0909 3188 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
19:01:54.0962 3188 NdisTapi - ok
19:01:55.0030 3188 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
19:01:55.0064 3188 Ndisuio - ok
19:01:55.0194 3188 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:01:55.0241 3188 NdisWan - ok
19:01:55.0320 3188 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
19:01:55.0358 3188 NDProxy - ok
19:01:55.0445 3188 Net Driver HPZ12 (2969d26eee289be7422aa46fc55f4e38) C:\Windows\system32\HPZinw12.dll
19:01:55.0479 3188 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:01:55.0479 3188 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:01:55.0514 3188 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
19:01:55.0587 3188 NetBIOS - ok
19:01:55.0643 3188 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
19:01:55.0768 3188 netbt - ok
19:01:55.0795 3188 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:01:55.0821 3188 Netlogon - ok
19:01:55.0890 3188 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
19:01:55.0968 3188 Netman - ok
19:01:56.0065 3188 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
19:01:56.0150 3188 netprofm - ok
19:01:56.0237 3188 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:01:56.0264 3188 NetTcpPortSharing - ok
19:01:56.0514 3188 NETw3v32 (ea30bd026a7d1b745a37516880c4ac1b) C:\Windows\system32\DRIVERS\NETw3v32.sys
19:01:56.0780 3188 NETw3v32 - ok
19:01:57.0125 3188 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:01:57.0149 3188 nfrd960 - ok
19:01:57.0192 3188 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
19:01:57.0320 3188 NlaSvc - ok
19:01:57.0391 3188 nmwcd (357ddb51e03cae598c096d95497373d0) C:\Windows\system32\drivers\ccdcmb.sys
19:01:57.0511 3188 nmwcd - ok
19:01:57.0590 3188 nmwcdc (7cd443f9d36c80e152fadb274089577a) C:\Windows\system32\drivers\ccdcmbo.sys
19:01:57.0652 3188 nmwcdc - ok
19:01:57.0702 3188 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
19:01:57.0756 3188 Npfs - ok
19:01:57.0853 3188 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
19:01:57.0925 3188 nsi - ok
19:01:58.0002 3188 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
19:01:58.0052 3188 nsiproxy - ok
19:01:58.0244 3188 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
19:01:58.0416 3188 Ntfs - ok
19:01:58.0473 3188 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:01:58.0537 3188 ntrigdigi - ok
19:01:58.0581 3188 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
19:01:58.0620 3188 Null - ok
19:01:58.0650 3188 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
19:01:58.0673 3188 nvraid - ok
19:01:58.0744 3188 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
19:01:58.0771 3188 nvstor - ok
19:01:58.0794 3188 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
19:01:58.0823 3188 nv_agp - ok
19:01:58.0827 3188 NwlnkFlt - ok
19:01:58.0830 3188 NwlnkFwd - ok
19:01:58.0911 3188 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
19:01:58.0952 3188 ohci1394 - ok
19:01:59.0101 3188 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:01:59.0209 3188 p2pimsvc - ok
19:01:59.0218 3188 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:01:59.0352 3188 p2psvc - ok
19:01:59.0504 3188 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
19:01:59.0594 3188 Parport - ok
19:01:59.0863 3188 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
19:01:59.0914 3188 partmgr - ok
19:02:00.0118 3188 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
19:02:00.0199 3188 Parvdm - ok
19:02:00.0363 3188 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
19:02:00.0613 3188 PcaSvc - ok
19:02:00.0736 3188 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
19:02:00.0991 3188 pccsmcfd - ok
19:02:01.0455 3188 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
19:02:01.0499 3188 pci - ok
19:02:01.0577 3188 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys
19:02:01.0614 3188 pciide - ok
19:02:01.0801 3188 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
19:02:01.0867 3188 pcmcia - ok
19:02:02.0077 3188 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:02:02.0262 3188 PEAUTH - ok
19:02:02.0480 3188 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
19:02:02.0666 3188 pla - ok
19:02:02.0803 3188 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
19:02:02.0859 3188 PlugPlay - ok
19:02:02.0953 3188 Pml Driver HPZ12 (bafc9706bdf425a02b66468ab2605c59) C:\Windows\system32\HPZipm12.dll
19:02:02.0989 3188 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
19:02:02.0989 3188 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
19:02:03.0081 3188 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:02:03.0264 3188 PNRPAutoReg - ok
19:02:03.0275 3188 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
19:02:03.0348 3188 PNRPsvc - ok
19:02:03.0414 3188 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
19:02:03.0530 3188 PolicyAgent - ok
19:02:03.0614 3188 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
19:02:03.0694 3188 PptpMiniport - ok
19:02:03.0774 3188 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
19:02:03.0897 3188 Processor - ok
19:02:03.0942 3188 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
19:02:03.0986 3188 ProfSvc - ok
19:02:04.0012 3188 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:02:04.0052 3188 ProtectedStorage - ok
19:02:04.0119 3188 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
19:02:04.0155 3188 PSched - ok
19:02:04.0223 3188 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\Windows\system32\Drivers\PxHelp20.sys
19:02:04.0238 3188 PxHelp20 - ok
19:02:04.0424 3188 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
19:02:04.0532 3188 ql2300 - ok
19:02:04.0561 3188 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:02:04.0592 3188 ql40xx - ok
19:02:04.0685 3188 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
19:02:04.0745 3188 QWAVE - ok
19:02:04.0815 3188 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
19:02:04.0845 3188 QWAVEdrv - ok
19:02:04.0912 3188 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
19:02:04.0968 3188 RasAcd - ok
19:02:05.0008 3188 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
19:02:05.0065 3188 RasAuto - ok
19:02:05.0134 3188 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:02:05.0186 3188 Rasl2tp - ok
19:02:05.0252 3188 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
19:02:05.0294 3188 RasMan - ok
19:02:05.0329 3188 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
19:02:05.0390 3188 RasPppoe - ok
19:02:05.0510 3188 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
19:02:05.0576 3188 RasSstp - ok
19:02:05.0657 3188 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
19:02:05.0703 3188 rdbss - ok
19:02:05.0768 3188 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:02:05.0840 3188 RDPCDD - ok
19:02:05.0900 3188 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
19:02:06.0045 3188 rdpdr - ok
19:02:06.0090 3188 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
19:02:06.0147 3188 RDPENCDD - ok
19:02:06.0228 3188 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
19:02:06.0303 3188 RDPWD - ok
19:02:06.0374 3188 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
19:02:06.0459 3188 RemoteAccess - ok
19:02:06.0529 3188 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
19:02:06.0589 3188 RemoteRegistry - ok
19:02:06.0791 3188 RichVideo (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files\CyberLink\Shared files\RichVideo.exe
19:02:06.0869 3188 RichVideo ( UnsignedFile.Multi.Generic ) - warning
19:02:06.0869 3188 RichVideo - detected UnsignedFile.Multi.Generic (1)
19:02:06.0958 3188 rimmptsk (d85e3fa9f5b1f29bb4ed185c450d1470) C:\Windows\system32\DRIVERS\rimmptsk.sys
19:02:06.0999 3188 rimmptsk - ok
19:02:07.0037 3188 rimsptsk (db8eb01c58c9fada00c70b1775278ae0) C:\Windows\system32\DRIVERS\rimsptsk.sys
19:02:07.0105 3188 rimsptsk - ok
19:02:07.0131 3188 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
19:02:07.0222 3188 rismxdp - ok
19:02:07.0409 3188 RoxMediaDB9 (08fb7d968805001c7adcbb14b0651fa2) C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
19:02:07.0606 3188 RoxMediaDB9 ( UnsignedFile.Multi.Generic ) - warning
19:02:07.0606 3188 RoxMediaDB9 - detected UnsignedFile.Multi.Generic (1)
19:02:07.0634 3188 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
19:02:07.0683 3188 RpcLocator - ok
19:02:07.0908 3188 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
19:02:07.0956 3188 RpcSs - ok
19:02:08.0029 3188 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
19:02:08.0109 3188 rspndr - ok
19:02:08.0153 3188 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
19:02:08.0179 3188 SamSs - ok
19:02:08.0246 3188 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
19:02:08.0266 3188 sbp2port - ok
19:02:08.0370 3188 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
19:02:08.0452 3188 SCardSvr - ok
19:02:08.0629 3188 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
19:02:08.0758 3188 Schedule - ok
19:02:08.0792 3188 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
19:02:08.0837 3188 SCPolicySvc - ok
19:02:08.0948 3188 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
19:02:08.0997 3188 sdbus - ok
19:02:09.0067 3188 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
19:02:09.0281 3188 SDRSVC - ok
19:02:09.0307 3188 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:02:09.0380 3188 secdrv - ok
19:02:09.0428 3188 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
19:02:09.0518 3188 seclogon - ok
19:02:09.0539 3188 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
19:02:09.0593 3188 SENS - ok
19:02:09.0634 3188 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
19:02:09.0706 3188 Serenum - ok
19:02:09.0800 3188 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
19:02:09.0886 3188 Serial - ok
19:02:09.0913 3188 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
19:02:09.0947 3188 sermouse - ok
19:02:10.0129 3188 ServiceLayer (8988d1f32f56b3cd3f0f6c39f8a91a98) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:02:10.0193 3188 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
19:02:10.0193 3188 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
19:02:10.0350 3188 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
19:02:10.0407 3188 SessionEnv - ok
19:02:10.0445 3188 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
19:02:10.0515 3188 sffdisk - ok
19:02:10.0554 3188 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
19:02:10.0875 3188 sffp_mmc - ok
19:02:10.0987 3188 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
19:02:11.0058 3188 sffp_sd - ok
19:02:11.0088 3188 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
19:02:11.0145 3188 sfloppy - ok
19:02:11.0425 3188 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
19:02:11.0538 3188 ShellHWDetection - ok
19:02:11.0636 3188 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
19:02:11.0673 3188 sisagp - ok
19:02:11.0714 3188 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
19:02:11.0730 3188 SiSRaid2 - ok
19:02:11.0813 3188 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
19:02:11.0830 3188 SiSRaid4 - ok
19:02:12.0291 3188 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
19:02:13.0003 3188 slsvc - ok
19:02:13.0208 3188 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
19:02:13.0279 3188 SLUINotify - ok
19:02:13.0380 3188 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
19:02:13.0432 3188 Smb - ok
19:02:13.0460 3188 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
19:02:13.0492 3188 SNMPTRAP - ok
19:02:13.0986 3188 SNP2UVC (5140166bbcafe1393d4669353a1f8c0a) C:\Windows\system32\DRIVERS\snp2uvc.sys
19:02:14.0764 3188 SNP2UVC - ok
19:02:15.0085 3188 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
19:02:15.0169 3188 spldr - ok
19:02:15.0220 3188 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
19:02:15.0327 3188 Spooler - ok
19:02:15.0472 3188 SpyEmrg (edaef346de209f040d0c9f9effedf084) C:\Windows\system32\Drivers\spyemrg.sys
19:02:15.0487 3188 SpyEmrg - ok
19:02:15.0510 3188 SpyEmrgAccess (5a1c84d84a07a3b6d389eba12c345ea4) C:\Windows\system32\Drivers\spyemrg_access.sys
19:02:15.0527 3188 SpyEmrgAccess - ok
19:02:15.0584 3188 SpyEmrgGuard (9e91568feeb1c78f2f271fbc0f639365) C:\Windows\system32\Drivers\spyemrg_guard.sys
19:02:15.0602 3188 SpyEmrgGuard - ok
19:02:16.0040 3188 SpyEmrgSrv (3e7e68528123cbeea7bac9f309a957ac) C:\Program Files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
19:02:16.0191 3188 SpyEmrgSrv - ok
19:02:16.0492 3188 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
19:02:16.0656 3188 srv - ok
19:02:16.0715 3188 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
19:02:16.0825 3188 srv2 - ok
19:02:16.0871 3188 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
19:02:16.0933 3188 srvnet - ok
19:02:16.0988 3188 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
19:02:17.0053 3188 SSDPSRV - ok
19:02:17.0085 3188 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
19:02:17.0121 3188 SstpSvc - ok
19:02:17.0173 3188 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
19:02:17.0226 3188 StillCam - ok
19:02:17.0321 3188 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
19:02:17.0445 3188 stisvc - ok
19:02:17.0567 3188 stllssvr (a9a23c8af361f7a93fd632e91a8c346f) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
19:02:17.0581 3188 stllssvr - ok
19:02:17.0642 3188 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
19:02:17.0661 3188 swenum - ok
19:02:17.0831 3188 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
19:02:17.0928 3188 swprv - ok
19:02:17.0961 3188 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:02:17.0982 3188 Symc8xx - ok
19:02:18.0052 3188 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:02:18.0090 3188 Sym_hi - ok
19:02:18.0117 3188 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:02:18.0135 3188 Sym_u3 - ok
19:02:18.0213 3188 SynTP (8327106d1c93e9a7b98e63b9fcc24bb7) C:\Windows\system32\DRIVERS\SynTP.sys
19:02:18.0253 3188 SynTP - ok
19:02:18.0404 3188 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
19:02:18.0528 3188 SysMain - ok
19:02:18.0609 3188 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
19:02:18.0702 3188 TabletInputService - ok
19:02:18.0794 3188 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
19:02:18.0900 3188 TapiSrv - ok
19:02:18.0944 3188 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
19:02:19.0039 3188 TBS - ok
19:02:19.0210 3188 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
19:02:19.0281 3188 Tcpip - ok
19:02:19.0294 3188 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
19:02:19.0356 3188 Tcpip6 - ok
19:02:19.0546 3188 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
19:02:19.0683 3188 tcpipreg - ok
19:02:19.0775 3188 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
19:02:19.0854 3188 TDPIPE - ok
19:02:19.0915 3188 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
19:02:19.0968 3188 TDTCP - ok
19:02:20.0052 3188 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
19:02:20.0143 3188 tdx - ok
19:02:20.0208 3188 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
19:02:20.0230 3188 TermDD - ok
19:02:20.0368 3188 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
19:02:20.0451 3188 TermService - ok
19:02:20.0614 3188 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
19:02:20.0650 3188 Themes - ok
19:02:20.0683 3188 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
19:02:20.0718 3188 THREADORDER - ok
19:02:20.0777 3188 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
19:02:20.0817 3188 TrkWks - ok
19:02:20.0932 3188 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
19:02:20.0978 3188 TrustedInstaller - ok
19:02:21.0005 3188 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:02:21.0043 3188 tssecsrv - ok
19:02:21.0073 3188 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
19:02:21.0210 3188 tunmp - ok
19:02:21.0241 3188 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
19:02:21.0275 3188 tunnel - ok
19:02:21.0316 3188 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
19:02:21.0336 3188 uagp35 - ok
19:02:21.0490 3188 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
19:02:21.0547 3188 udfs - ok
19:02:21.0591 3188 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
19:02:21.0646 3188 UI0Detect - ok
19:02:21.0729 3188 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
19:02:21.0754 3188 uliagpkx - ok
19:02:21.0787 3188 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
19:02:21.0823 3188 uliahci - ok
19:02:21.0881 3188 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:02:21.0900 3188 UlSata - ok
19:02:21.0995 3188 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:02:22.0029 3188 ulsata2 - ok
19:02:22.0063 3188 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
19:02:22.0106 3188 umbus - ok
19:02:22.0183 3188 UnlockerDriver5 (bb879dcfd22926efbeb3298129898cbb) C:\Program Files\Unlocker\UnlockerDriver5.sys
19:02:22.0205 3188 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - warning
19:02:22.0205 3188 UnlockerDriver5 - detected UnsignedFile.Multi.Generic (1)
19:02:22.0316 3188 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
19:02:22.0459 3188 upnphost - ok
19:02:22.0495 3188 upperdev (15629e4d65f97ab5432d6d9597cf6a33) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
19:02:22.0578 3188 upperdev - ok
19:02:22.0623 3188 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
19:02:22.0665 3188 usbaudio - ok
19:02:22.0701 3188 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
19:02:22.0746 3188 usbccgp - ok
19:02:22.0834 3188 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:02:22.0896 3188 usbcir - ok
19:02:22.0953 3188 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
19:02:22.0979 3188 usbehci - ok
19:02:23.0030 3188 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
19:02:23.0170 3188 usbhub - ok
19:02:23.0195 3188 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
19:02:23.0289 3188 usbohci - ok
19:02:23.0376 3188 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
19:02:23.0435 3188 usbprint - ok
19:02:23.0482 3188 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
19:02:23.0529 3188 usbscan - ok
19:02:23.0557 3188 usbser (d575246188f63de0accf6eac5fb59e6a) C:\Windows\system32\drivers\usbser.sys
19:02:23.0611 3188 usbser - ok
19:02:23.0701 3188 UsbserFilt (5c17e6a11aa8be53f79fd364ba19f0ce) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
19:02:23.0745 3188 UsbserFilt - ok
19:02:23.0787 3188 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:02:23.0833 3188 USBSTOR - ok
19:02:23.0857 3188 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
19:02:23.0883 3188 usbuhci - ok
19:02:24.0045 3188 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
19:02:24.0111 3188 usbvideo - ok
19:02:24.0173 3188 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
19:02:24.0215 3188 UxSms - ok
19:02:24.0348 3188 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
19:02:24.0424 3188 vds - ok
19:02:24.0501 3188 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
19:02:24.0630 3188 vga - ok
19:02:24.0672 3188 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
19:02:24.0718 3188 VgaSave - ok
19:02:24.0735 3188 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
19:02:24.0763 3188 viaagp - ok
19:02:24.0847 3188 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
19:02:24.0920 3188 ViaC7 - ok
19:02:24.0944 3188 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
19:02:24.0963 3188 viaide - ok
19:02:24.0990 3188 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
19:02:25.0008 3188 volmgr - ok
19:02:25.0142 3188 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
19:02:25.0184 3188 volmgrx - ok
19:02:25.0252 3188 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
19:02:25.0281 3188 volsnap - ok
19:02:25.0419 3188 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
19:02:25.0453 3188 vsmraid - ok
19:02:25.0573 3188 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
19:02:25.0825 3188 VSS - ok
19:02:26.0068 3188 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
19:02:26.0172 3188 vToolbarUpdater11.2.0 - ok
19:02:26.0455 3188 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
19:02:26.0515 3188 W32Time - ok
19:02:26.0675 3188 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:02:26.0741 3188 WacomPen - ok
19:02:26.0805 3188 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:02:26.0834 3188 Wanarp - ok
19:02:26.0837 3188 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:02:26.0872 3188 Wanarpv6 - ok
19:02:26.0977 3188 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
19:02:27.0020 3188 wcncsvc - ok
19:02:27.0041 3188 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
19:02:27.0085 3188 WcsPlugInService - ok
19:02:27.0156 3188 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
19:02:27.0226 3188 Wd - ok
19:02:27.0299 3188 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
19:02:27.0397 3188 Wdf01000 - ok
19:02:27.0493 3188 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
19:02:27.0548 3188 WdiServiceHost - ok
19:02:27.0576 3188 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
19:02:27.0615 3188 WdiSystemHost - ok
19:02:27.0681 3188 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
19:02:27.0787 3188 WebClient - ok
19:02:27.0860 3188 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
19:02:28.0048 3188 Wecsvc - ok
19:02:28.0094 3188 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
19:02:28.0153 3188 wercplsupport - ok
19:02:28.0239 3188 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
19:02:28.0283 3188 WerSvc - ok
19:02:28.0436 3188 winachsf (3b4522d0e750bac8fe7ae61622a57014) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:02:28.0499 3188 winachsf - ok
19:02:28.0504 3188 WinHttpAutoProxySvc - ok
19:02:28.0568 3188 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
19:02:28.0735 3188 Winmgmt - ok
19:02:28.0995 3188 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
19:02:29.0249 3188 WinRM - ok
19:02:29.0367 3188 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
19:02:29.0471 3188 Wlansvc - ok
19:02:29.0627 3188 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:02:29.0666 3188 WmiAcpi - ok
19:02:29.0718 3188 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
19:02:29.0819 3188 wmiApSrv - ok
19:02:30.0185 3188 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:02:30.0352 3188 WMPNetworkSvc - ok
19:02:30.0459 3188 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
19:02:30.0527 3188 WPCSvc - ok
19:02:30.0567 3188 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
19:02:30.0721 3188 WPDBusEnum - ok
19:02:30.0850 3188 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
19:02:30.0872 3188 WpdUsb - ok
19:02:31.0178 3188 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:02:31.0295 3188 WPFFontCache_v0400 - ok
19:02:31.0346 3188 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
19:02:31.0403 3188 ws2ifsl - ok
19:02:31.0411 3188 WSearch - ok
19:02:31.0468 3188 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:02:31.0535 3188 WUDFRd - ok
19:02:31.0633 3188 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
19:02:31.0750 3188 wudfsvc - ok
19:02:31.0780 3188 XAudio (88af537264f2b818da15479ceeaf5d7c) C:\Windows\system32\DRIVERS\xaudio.sys
19:02:31.0807 3188 XAudio - ok
19:02:31.0929 3188 XAudioService (15a317674a08df26be65164d959e9203) C:\Windows\system32\DRIVERS\xaudio.exe
19:02:31.0983 3188 XAudioService - ok
19:02:32.0039 3188 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
19:02:32.0279 3188 \Device\Harddisk0\DR0 - ok
19:02:32.0280 3188 Boot (0x1200) (716ce770b82920b2512ea1144ccd75c1) \Device\Harddisk0\DR0\Partition0
19:02:32.0283 3188 \Device\Harddisk0\DR0\Partition0 - ok
19:02:32.0284 3188 Boot (0x1200) (68747b882e784c2b11cc0f525e92c000) \Device\Harddisk0\DR0\Partition1
19:02:32.0286 3188 \Device\Harddisk0\DR0\Partition1 - ok
19:02:32.0287 3188 ============================================================
19:02:32.0287 3188 Scan finished
19:02:32.0287 3188 ============================================================
19:02:32.0290 4704 Detected object count: 15
19:02:32.0290 4704 Actual detected object count: 15
19:03:06.0031 4704 CLCapSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0031 4704 CLCapSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0032 4704 CLSched ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0032 4704 CLSched ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0033 4704 Com4Qlb ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0033 4704 Com4Qlb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0033 4704 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0033 4704 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0034 4704 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0035 4704 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0036 4704 hpqwmiex ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0037 4704 hpqwmiex ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0038 4704 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0038 4704 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0038 4704 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0039 4704 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0039 4704 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0039 4704 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0040 4704 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0040 4704 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0041 4704 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0041 4704 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0042 4704 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0042 4704 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0042 4704 RoxMediaDB9 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0042 4704 RoxMediaDB9 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0043 4704 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0043 4704 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:06.0044 4704 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - skipped by user
19:03:06.0044 4704 UnlockerDriver5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
Re: trojský kůň
Ještě jen takový malý dotaz? Psal jsi, že ten ComboFix mám uložit na C, ale tady v tom návodu je, že se má uložit na plochu? Tak se jen pro jistotu ptám, který ten postup mám zvolit?
Re: trojský kůň
Tak se mi podařilo získat log z combofixu, ale ted mám problém se dostat na internet (píši momentálně z jiného pc), když chci spustit mozillu nebo i jiný program tak mi vyskočí upozornění: Illegal operation attempted on a registry key that has been marked for deletion. Co se s tím dá dělat?
Re: trojský kůň
Jj díky,
Tady je ten log:
ComboFix 12-07-14.01 - Sandra 14.07.2012 20:21:49.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1033.18.1013.211 [GMT 2:00]
Spuštěný z: c:\users\Sandra\ComboFix.exe
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Mozilla Firefox\components\AskHPRFF.js
c:\users\Sandra\AppData\Local\.#
c:\users\Sandra\AppData\Local\.#\MBX@153C@2752748.###
c:\users\Sandra\AppData\Local\.#\MBX@153C@2752778.###
c:\users\Sandra\AppData\Roaming\.#
c:\users\Sandra\AppData\Roaming\.#\MBX@21E0@6928F8.###
c:\users\Sandra\AppData\Roaming\.#\MBX@21E0@692928.###
c:\users\Sandra\AppData\Roaming\.#\MBX@21E0@692958.###
c:\users\Sandra\AppData\Roaming\FFSJ
c:\users\Sandra\AppData\Roaming\FFSJ\FFSJ.cfg
c:\users\Sandra\ComboFix.exe
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000001.@
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\800000cb.@
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
c:\windows\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
.
Nakažená kopie c:\windows\system32\services.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\32788r22fwjfw\HarddiskVolumeShadowCopy1_!Windows!winsxs!x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56!services.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_MYWEBSEARCHSERVICE
-------\Service_MyWebSearchService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-14 do 2012-07-14 )))))))))))))))))))))))))))))))
.
.
2012-07-14 18:41 . 2012-07-14 19:08 -------- d-----w- c:\users\Sandra\AppData\Local\temp
2012-07-14 18:41 . 2012-07-14 18:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-14 13:35 . 2012-07-14 13:35 512 ----a-w- C:\PhysicalMBR.bin
2012-07-14 10:58 . 2012-07-14 11:00 -------- d-----w- c:\program files\trend micro
2012-07-14 10:58 . 2012-07-14 11:01 -------- d-----w- C:\rsit
2012-07-12 06:59 . 2012-07-14 06:44 -------- d-----w- c:\users\Sandra\AppData\Roaming\Spy Emergency
2012-07-12 06:59 . 2011-04-21 09:31 20056 ----a-w- c:\windows\system32\drivers\spyemrg_access.sys
2012-07-12 06:59 . 2011-04-21 09:31 16216 ----a-w- c:\windows\system32\drivers\spyemrg_guard.sys
2012-07-12 06:59 . 2012-07-12 06:59 -------- d-----w- c:\programdata\NETGATE
2012-07-12 06:59 . 2011-04-21 09:31 14168 ----a-w- c:\windows\system32\drivers\spyemrg.sys
2012-07-12 06:58 . 2012-07-12 06:58 -------- d-----w- c:\program files\NETGATE
2012-07-10 15:34 . 2012-07-10 15:34 -------- d-----w- c:\program files\ESET
2012-06-27 10:20 . 2012-06-14 22:16 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2012-06-27 10:20 . 2012-06-14 22:16 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2012-06-27 08:57 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-06-27 08:57 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-06-27 08:09 . 2012-02-01 15:11 1218048 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-06-24 12:40 . 2012-06-14 22:18 16864 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe
2012-06-23 12:09 . 2012-06-23 12:09 -------- d-----w- c:\users\Sandra\AppData\Local\Macromedia
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-12 11:32 . 2012-06-11 07:14 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-12 11:32 . 2011-06-20 09:15 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-02 22:19 . 2012-06-24 09:42 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-24 09:42 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-24 09:42 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-24 09:42 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-24 09:42 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-24 09:42 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-24 09:42 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-24 09:42 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-24 09:42 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-05-15 19:51 . 2012-06-27 08:10 2045440 ----a-w- c:\windows\system32\win32k.sys
2012-05-15 06:37 . 2012-06-27 08:10 916992 ----a-w- c:\windows\system32\wininet.dll
2012-06-14 22:19 . 2012-06-27 10:15 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-07-10 08:31 2074208 ----a-w- c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll" [2012-07-10 2074208]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-19 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"ROC_roc_dec12"="c:\program files\AVG Secure Search\ROC_roc_dec12.exe" [2012-01-16 928096]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-07-10 1107552]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2008-10-16 214360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0lsdelete\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-10-22 18:55 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-11 11:32]
.
2012-07-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-18 08:39]
.
2012-07-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-18 08:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.icq.com/
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.yahoo.com
uSearchAssistant = hxxp://search.qip.ru/ie
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 172.16.1.1
TCP: Interfaces\{5D397078-D39D-4699-93C7-15D8C45D702E}: NameServer = 192.168.2.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
FF - ProfilePath - c:\users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\vtfm3bfz.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.7&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-Octoshape add-in for Adobe Flash Player - c:\users\Sandra\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe
.
.
.
**************************************************************************
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2396)
c:\program files\Hewlett-Packard\HP Advisor\Pillars\Market\MLDeskBand.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\program files\AVG\AVG2012\avgfws.exe
c:\program files\AVG\AVG2012\avgwdsvc.exe
c:\program files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\AVG\AVG2012\AVGIDSAgent.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\windows\system32\conime.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Celkový čas: 2012-07-14 21:26:40 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-07-14 19:23
.
Před spuštěním: 14 867 668 992 bytes free
Po spuštění: 14 947 835 904 bytes free
.
- - End Of File - - 6DCA08130FD98C1CBBC78034A28DFC7C
Tady je ten log:
ComboFix 12-07-14.01 - Sandra 14.07.2012 20:21:49.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1033.18.1013.211 [GMT 2:00]
Spuštěný z: c:\users\Sandra\ComboFix.exe
AV: AVG Internet Security 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Mozilla Firefox\components\AskHPRFF.js
c:\users\Sandra\AppData\Local\.#
c:\users\Sandra\AppData\Local\.#\MBX@153C@2752748.###
c:\users\Sandra\AppData\Local\.#\MBX@153C@2752778.###
c:\users\Sandra\AppData\Roaming\.#
c:\users\Sandra\AppData\Roaming\.#\MBX@21E0@6928F8.###
c:\users\Sandra\AppData\Roaming\.#\MBX@21E0@692928.###
c:\users\Sandra\AppData\Roaming\.#\MBX@21E0@692958.###
c:\users\Sandra\AppData\Roaming\FFSJ
c:\users\Sandra\AppData\Roaming\FFSJ\FFSJ.cfg
c:\users\Sandra\ComboFix.exe
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\@
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\00000001.@
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\80000000.@
c:\windows\Installer\{ff24043d-55f8-5ce9-a20a-8337d9b4b888}\U\800000cb.@
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\drivers\etc\hosts.ics
c:\windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job
c:\windows\Tasks\{66BA574B-1E11-49b8-909C-8CC9E0E8E015}.job
.
Nakažená kopie c:\windows\system32\services.exe byla nalezena a vyléčena.
Obnovena kopie z - c:\32788r22fwjfw\HarddiskVolumeShadowCopy1_!Windows!winsxs!x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.0.6002.18005_none_d14b3973ca6acc56!services.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_MYWEBSEARCHSERVICE
-------\Service_MyWebSearchService
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-06-14 do 2012-07-14 )))))))))))))))))))))))))))))))
.
.
2012-07-14 18:41 . 2012-07-14 19:08 -------- d-----w- c:\users\Sandra\AppData\Local\temp
2012-07-14 18:41 . 2012-07-14 18:41 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-14 13:35 . 2012-07-14 13:35 512 ----a-w- C:\PhysicalMBR.bin
2012-07-14 10:58 . 2012-07-14 11:00 -------- d-----w- c:\program files\trend micro
2012-07-14 10:58 . 2012-07-14 11:01 -------- d-----w- C:\rsit
2012-07-12 06:59 . 2012-07-14 06:44 -------- d-----w- c:\users\Sandra\AppData\Roaming\Spy Emergency
2012-07-12 06:59 . 2011-04-21 09:31 20056 ----a-w- c:\windows\system32\drivers\spyemrg_access.sys
2012-07-12 06:59 . 2011-04-21 09:31 16216 ----a-w- c:\windows\system32\drivers\spyemrg_guard.sys
2012-07-12 06:59 . 2012-07-12 06:59 -------- d-----w- c:\programdata\NETGATE
2012-07-12 06:59 . 2011-04-21 09:31 14168 ----a-w- c:\windows\system32\drivers\spyemrg.sys
2012-07-12 06:58 . 2012-07-12 06:58 -------- d-----w- c:\program files\NETGATE
2012-07-10 15:34 . 2012-07-10 15:34 -------- d-----w- c:\program files\ESET
2012-06-27 10:20 . 2012-06-14 22:16 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2012-06-27 10:20 . 2012-06-14 22:16 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2012-06-27 08:57 . 2012-02-29 15:09 157696 ----a-w- c:\windows\system32\imagehlp.dll
2012-06-27 08:57 . 2012-02-29 13:32 12800 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-06-27 08:09 . 2012-02-01 15:11 1218048 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2012-06-24 12:40 . 2012-06-14 22:18 16864 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe
2012-06-23 12:09 . 2012-06-23 12:09 -------- d-----w- c:\users\Sandra\AppData\Local\Macromedia
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-12 11:32 . 2012-06-11 07:14 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-12 11:32 . 2011-06-20 09:15 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-02 22:19 . 2012-06-24 09:42 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-24 09:42 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-24 09:42 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-24 09:42 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-24 09:42 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-24 09:42 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-24 09:42 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-24 09:42 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-24 09:42 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-05-15 19:51 . 2012-06-27 08:10 2045440 ----a-w- c:\windows\system32\win32k.sys
2012-05-15 06:37 . 2012-06-27 08:10 916992 ----a-w- c:\windows\system32\wininet.dll
2012-06-14 22:19 . 2012-06-27 10:15 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-07-10 08:31 2074208 ----a-w- c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll" [2012-07-10 2074208]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-19 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"ROC_roc_dec12"="c:\program files\AVG Secure Search\ROC_roc_dec12.exe" [2012-01-16 928096]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-07-10 1107552]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2008-10-16 214360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0lsdelete\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-10-22 18:55 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2012-07-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-11 11:32]
.
2012-07-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-18 08:39]
.
2012-07-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-18 08:39]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.icq.com/
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.yahoo.com
uSearchAssistant = hxxp://search.qip.ru/ie
uSearchURL,(Default) = Root: HKCU; Subkey: Software\Microsoft\Internet Explorer\SearchUrl; ValueType: string; ValueName: '; ValueData: '; Flags: createvalueifdoesntexist noerror; Tasks: AddSearchQip
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
TCP: DhcpNameServer = 172.16.1.1
TCP: Interfaces\{5D397078-D39D-4699-93C7-15D8C45D702E}: NameServer = 192.168.2.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
FF - ProfilePath - c:\users\Sandra\AppData\Roaming\Mozilla\Firefox\Profiles\vtfm3bfz.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.7&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-Octoshape add-in for Adobe Flash Player - c:\users\Sandra\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe
.
.
.
**************************************************************************
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory:
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2396)
c:\program files\Hewlett-Packard\HP Advisor\Pillars\Market\MLDeskBand.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\progra~1\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\Lavasoft\Ad-Aware\aawservice.exe
c:\program files\AVG\AVG2012\avgfws.exe
c:\program files\AVG\AVG2012\avgwdsvc.exe
c:\program files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\NETGATE\Spy Emergency\SpyEmergencySrv.exe
c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files\AVG\AVG2012\AVGIDSAgent.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\windows\system32\conime.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
.
**************************************************************************
.
Celkový čas: 2012-07-14 21:26:40 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-07-14 19:23
.
Před spuštěním: 14 867 668 992 bytes free
Po spuštění: 14 947 835 904 bytes free
.
- - End Of File - - 6DCA08130FD98C1CBBC78034A28DFC7C
Re: trojský kůň
Díky moc za pomoc, čas a trpělivost snad už to bude v pořádku a budu si dávat větší pozor..jinak aspoň případně vím, kam se obrátit
snad už to bude v pořádku a budu si dávat větší pozor..jinak aspoň případně vím, kam se obrátit Re: trojský kůň
Však jsem psala, že jsem v tom celkem amatér, tak ani pořádně nevím, co tam všechno mám.. 
a nikdy se nebylo jaksi koho zeptat, aby se mi na pc koukl, co je tam zbytečné Takže máš ještě nějaký tip, co by se dalo vylepšit?
a nikdy se nebylo jaksi koho zeptat, aby se mi na pc koukl, co je tam zbytečné Takže máš ještě nějaký tip, co by se dalo vylepšit? Re: trojský kůň
========== OTL ==========
Error: No service named MyWebSearchService was found to stop!
Service\Driver key MyWebSearchService not found.
File C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_USERS\S-1-5-21-1153613434-1182111917-439316606-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{55FAF0F2-44D4-425F-B5F5-6B275B621EAB} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{55FAF0F2-44D4-425F-B5F5-6B275B621EAB}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
File F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\iuhi64.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
File F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\iuhi64.exe not found.
========== FILES ==========
C:\Windows\System32\⍨Ů moved successfully.
C:\Windows\System32\䆘Ś moved successfully.
C:\Windows\System32\䭀ƿ moved successfully.
C:\Windows\System32\朐ū moved successfully.
C:\Windows\System32\椐Ń moved successfully.
C:\Windows\System32\溠ŗ moved successfully.
C:\Windows\System32\�ɹ moved successfully.
C:\Windows\System32\Hʼn moved successfully.
File\Folder C:\Windows\System32\?Ů not found.
File\Folder C:\Windows\System32\?Ś not found.
File\Folder C:\Windows\System32\?Ń not found.
File\Folder C:\Windows\System32\?u not found.
File\Folder C:\Windows\System32\H? not found.
File\Folder C:\Windows\System32\?r not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.54.0 log created on 07142012_225339
Error: No service named MyWebSearchService was found to stop!
Service\Driver key MyWebSearchService not found.
File C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_USERS\S-1-5-21-1153613434-1182111917-439316606-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{55FAF0F2-44D4-425F-B5F5-6B275B621EAB} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{55FAF0F2-44D4-425F-B5F5-6B275B621EAB}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
File F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\iuhi64.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{91d5a482-ab25-11dd-82ad-001b2439887a}\ not found.
File F:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\iuhi64.exe not found.
========== FILES ==========
C:\Windows\System32\⍨Ů moved successfully.
C:\Windows\System32\䆘Ś moved successfully.
C:\Windows\System32\䭀ƿ moved successfully.
C:\Windows\System32\朐ū moved successfully.
C:\Windows\System32\椐Ń moved successfully.
C:\Windows\System32\溠ŗ moved successfully.
C:\Windows\System32\�ɹ moved successfully.
C:\Windows\System32\Hʼn moved successfully.
File\Folder C:\Windows\System32\?Ů not found.
File\Folder C:\Windows\System32\?Ś not found.
File\Folder C:\Windows\System32\?Ń not found.
File\Folder C:\Windows\System32\?u not found.
File\Folder C:\Windows\System32\H? not found.
File\Folder C:\Windows\System32\?r not found.
========== COMMANDS ==========
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.54.0 log created on 07142012_225339
Re: trojský kůň
Neboj, nadávat ti nikdo nebude ale asi bych to nechala na zítra, pokud tu během dne budeš..? tohle mě jaksi už zmohlo
ale asi bych to nechala na zítra, pokud tu během dne budeš..? tohle mě jaksi už zmohlo Re: trojský kůň
Jj díky moc, hned se mi bude klidněji usínat, když je ten vir pryč tak třeba zítra kolem 13:00 plus mínus?
Též dobrou noc
tak třeba zítra kolem 13:00 plus mínus? Též dobrou noc
Přispějete na provoz fóra?