Dobrý deň,
vyhadzuje mi blue screen asi každých 10 min asi nejaký vír prosím vás o pomoc prikladám log kým ma zase nevipne.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Orion at 2012-07-18 09:20:12
Microsoft Windows 7 Ultimate
System drive C: has 137 GB (44%) free of 310 GB
Total RAM: 3572 MB (64% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:20:14, on 18. 7. 2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ASUS\AI Suite II\AsRoutineController.exe
C:\Program Files\ASUS\AI Suite II\DIGI+ VRM\VRMHelp.exe
C:\Program Files\YourFileDownloader\YourFileUpdater.exe
C:\Program Files\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\EXPERTool\TBPanel.exe
C:\Program Files\ASUS\AI Suite II\ASUS Mobilink\iPhone Simulator\pnSvc.exe
C:\Program Files\Anti-Vibrate Oscar Editor\OscarEditor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\ASUS\AI Suite II\EPU\EPUHelp.exe
C:\Program Files\ASUS\AI Suite II\AI Suite II.exe
C:\Program Files\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
C:\Program Files\Opera\opera.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Users\Orion\Desktop\RSIT.exe
C:\Program Files\trend micro\Orion.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com/bsprpc/{2055B ... D227356B16}
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {0b7430e9-e659-4555-ac67-be3340aaa519} - (no file)
O2 - BHO: CrossriderApp0000435 - {11111111-1111-1111-1111-110011041135} - C:\Program Files\Codec-V\Codec-V.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live ID Sign-in Helper - {54055123-4E50-0B78-308C-669837415A51} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
O2 - BHO: ???????@Mail.Ru - {8984B388-A5BB-4DF7-B274-77B879E179DB} - (no file)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [ASUS ShellProcess Execute] C:\Program Files\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot
O4 - HKCU\..\Run: [GAINWARD] C:\Program Files\EXPERTool\TBPanel.exe /A
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files\Anti-Vibrate Oscar Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [TBPanel] "C:\Program Files\EXPERTool\TBPanel.exe" /A
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4060915618-3275642364-3586104651-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4060915618-3275642364-3586104651-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs:
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files\ASUS\AXSP\1.00.13\atkexComSvc.exe
O23 - Service: ASUS HM Com Service (asHmComSvc) - Unknown owner - C:\Program Files\ASUS\AAHM\1.00.13\aaHMSvc.exe
O23 - Service: ASUS System Control Service (AsSysCtrlService) - Unknown owner - C:\Program Files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
--
End of file - 9088 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Ad-Aware Antivirus Scheduled Scan.job
C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\At1.job
C:\Windows\tasks\At2.job
C:\Windows\tasks\At3.job
C:\Windows\tasks\At4.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011041135}]
Codec-V - C:\Program Files\Codec-V\Codec-V.dll [2012-04-03 489472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll [2011-08-14 270960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2012-07-08 426736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{54055123-4E50-0B78-308C-669837415A51}]
Windows Live ID Sign-in Helper
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-05-04 453504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8984B388-A5BB-4DF7-B274-77B879E179DB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-05-04 157576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll [2011-08-14 237680]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-11-02 9808488]
"ASUS ShellProcess Execute"=C:\Program Files\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe [2010-09-28 252544]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"NUSB3MON"=C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-04-27 113288]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2010-11-05 283160]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2009-04-09 2029640]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-02-20 59240]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2012-01-17 252296]
"TkBellExe"=c:\program files\real\realplayer\Update\realsched.exe [2012-07-08 296096]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GAINWARD"=C:\Program Files\EXPERTool\TBPanel.exe [2012-04-11 2040136]
"OscarEditor"=C:\Program Files\Anti-Vibrate Oscar Editor\OscarEditor.exe [2010-07-22 2636800]
"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-09-18 205976]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"MsnMsgr"=C:\Program Files\MSN Messenger\MsnMsgr.Exe /background []
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
"TBPanel"=C:\Program Files\EXPERTool\TBPanel.exe [2012-04-11 2040136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"VIDC.WMV3"=wmv9vcm.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-07-18 09:01:30 ----D---- C:\Program Files\trend micro
2012-07-18 09:01:29 ----D---- C:\rsit
2012-07-17 09:27:12 ----D---- C:\Program Files\NirSoft
2012-07-15 10:09:28 ----D---- C:\ProgramData\Rockstar Games
2012-07-15 10:09:28 ----D---- C:\Program Files\Rockstar Games
2012-07-08 22:37:42 ----D---- C:\Program Files\LucasArts
2012-07-08 16:54:33 ----D---- C:\Program Files\Apple Software Update
2012-07-08 16:43:50 ----D---- C:\Program Files\Common Files\xing shared
2012-07-08 16:43:47 ----A---- C:\Windows\system32\rmoc3260.dll
2012-07-08 16:43:31 ----A---- C:\Windows\system32\pncrt.dll
2012-07-08 16:41:22 ----D---- C:\Program Files\Common Files\Java
2012-07-08 16:41:02 ----D---- C:\Program Files\Oracle
2012-07-08 16:40:31 ----A---- C:\Windows\system32\npDeployJava1.dll
2012-07-08 16:40:31 ----A---- C:\Windows\system32\javaws.exe
2012-07-08 16:32:11 ----D---- C:\Users\Orion\AppData\Roaming\RealNetworks
2012-07-06 19:32:30 ----D---- C:\Program Files\BabylonToolbar
2012-07-06 19:32:06 ----D---- C:\Users\Orion\AppData\Roaming\YourFileDownloader
2012-07-06 19:32:06 ----D---- C:\Program Files\YourFileDownloader
2012-07-05 13:27:00 ----A---- C:\Windows\ntbtlog.txt
======List of files/folders modified in the last 1 month======
2012-07-18 09:20:12 ----D---- C:\Windows\Temp
2012-07-18 09:16:58 ----D---- C:\Windows\Minidump
2012-07-18 09:16:58 ----D---- C:\ProgramData\NVIDIA
2012-07-18 09:16:54 ----D---- C:\Windows
2012-07-18 09:01:30 ----RD---- C:\Program Files
2012-07-18 08:49:16 ----D---- C:\Windows\system32\config
2012-07-17 09:56:49 ----SD---- C:\ProgramData\Microsoft
2012-07-17 09:27:16 ----D---- C:\Windows\Prefetch
2012-07-15 22:28:09 ----SHD---- C:\System Volume Information
2012-07-15 18:39:09 ----SHD---- C:\Windows\Installer
2012-07-15 18:36:46 ----D---- C:\Users\Orion\AppData\Roaming\uTorrent
2012-07-15 10:28:32 ----RSD---- C:\Windows\assembly
2012-07-15 10:09:28 ----HD---- C:\ProgramData
2012-07-15 10:09:28 ----HD---- C:\Program Files\InstallShield Installation Information
2012-07-13 22:41:54 ----D---- C:\Windows\System32
2012-07-13 22:41:49 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2012-07-12 09:05:14 ----D---- C:\Windows\system32\catroot2
2012-07-08 17:05:02 ----D---- C:\Windows\Tasks
2012-07-08 17:05:02 ----D---- C:\Windows\system32\Tasks
2012-07-08 17:05:02 ----D---- C:\Program Files\Google
2012-07-08 16:43:50 ----D---- C:\Program Files\Common Files
2012-07-08 16:43:49 ----D---- C:\ProgramData\Real
2012-07-08 16:43:34 ----A---- C:\Windows\system32\pndx5032.dll
2012-07-08 16:43:34 ----A---- C:\Windows\system32\pndx5016.dll
2012-07-08 16:43:30 ----A---- C:\Windows\system32\msvcr71.dll
2012-07-08 16:43:30 ----A---- C:\Windows\system32\msvcp71.dll
2012-07-08 16:40:13 ----A---- C:\Windows\system32\javaw.exe
2012-07-08 16:40:13 ----A---- C:\Windows\system32\java.exe
2012-07-08 16:40:11 ----D---- C:\Program Files\Java
2012-07-06 19:32:31 ----A---- C:\user.js
2012-07-06 15:04:23 ----D---- C:\Windows\system32\directx
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 354840]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-04-07 722416]
R1 AsIO;AsIO; C:\Windows\system32\drivers\AsIO.sys [2010-08-24 11456]
R1 AsUpIO;AsUpIO; C:\Windows\system32\drivers\AsUpIO.sys [2010-08-03 11832]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2009-04-09 107256]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\C:\Program Files\UltraISO\drivers\ISODrive.sys [2010-01-29 82320]
R1 SbFw;SbFw; C:\Windows\system32\drivers\SbFw.sys [2011-04-05 221784]
R1 SbTis;SbTis; C:\Windows\system32\drivers\sbtis.sys [2011-04-05 78936]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2011-06-11 281760]
R2 eamon;eamon; C:\Windows\system32\DRIVERS\eamon.sys [2009-04-09 113960]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2009-04-09 133000]
R2 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2009-04-09 38240]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2011-06-11 25888]
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-06-25 35088]
R3 Epfwndis;Eset Personal Firewall; C:\Windows\system32\DRIVERS\Epfwndis.sys [2009-04-09 33096]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT); C:\Windows\system32\DRIVERS\ICCWDT.sys [2010-08-17 22040]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-11-02 3228712]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-09-30 61824]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-09-30 141568]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2012-01-17 148800]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2010-10-26 322664]
R3 SBFWIMCLMP;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\Windows\system32\DRIVERS\SBFWIM.sys [2011-02-08 69208]
S1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 a3ret5u5;a3ret5u5; C:\Windows\system32\drivers\a3ret5u5.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt [2010-03-31 27760]
S3 GGSAFERDriver;GGSAFER Driver; \??\C:\Program Files\Garena\safedrv.sys []
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Service; C:\Windows\system32\DRIVERS\sbfwim.sys [2011-02-08 69208]
S3 sbhips;sbhips; C:\Windows\system32\drivers\sbhips.sys [2011-04-05 94040]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TBPanel;TBPanel; C:\Windows\system32\drivers\TBPanel.sys [2007-03-16 12256]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 asComSvc;ASUS Com Service; C:\Program Files\ASUS\AXSP\1.00.13\atkexComSvc.exe [2010-11-03 918144]
R2 asHmComSvc;ASUS HM Com Service; C:\Program Files\ASUS\AAHM\1.00.13\aaHMSvc.exe [2010-12-02 915584]
R2 AsSysCtrlService;ASUS System Control Service; C:\Program Files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [2010-10-21 586880]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2009-04-09 731840]
R2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-29 645440]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-11-17 66872]
R2 PnkBstrB;PnkBstrB; C:\Windows\system32\PnkBstrB.exe [2011-11-17 107832]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-29 382272]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-13 250056]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2009-04-09 20680]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Blue screen vždy po cca 10 minútach od zapnutia PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
Myslím že sa to nejak ustálilo a mám čas pre bližší popis. Včera mi robilo to isté asi 5-6 krát mi po 10 minútach vyhodí blue screen a keď nespustím Operu ale priamo kontrolu antivírovým programom tak mi už BS nevyhodí po kontrole vôbec. Môžem pozerať filmy, počúvať hudbu, hrať hry, surfovať na nete a BS to nevyhodí. Pár dní predtým mi BS vyhodilo vždy pri rozbaľovaní rar súborov alebo komprimovaní do rar.
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
Hezké dopoledne 
a antivir při kontrole něco najde?
a antivir při kontrole něco najde?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
Áno včera mi to našlo 12 vírov a dnes 1 je to ten istý čo bol včera medzi tými 12 včera Win32/Packed.VMProtect.AAH trojský kůň
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
No teraz mi vyhodilo BS zase a vírus je odstránený. Išiel mi vkuse 2 hodiny a ako náhle som začal sťahovať cez operu tak po pár minútach mi vyhodilo BS a po reštarte bola opera úplne prázna žiadne otvorené listy úplne vybielená.
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
v jakém souboru ten vir má být?
Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.
Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
Ten vír je .dll súbor ale NOD32 ho našiel a odstránil teraz je počítač čistý ale i tak mi vyhadzuje blue screen keď som dnes sťahoval z internetu a keď som včera komprimoval do rar súboru. BS to vyhadzuje tak rôzne neurčito pri rôznych operáciach ale i keď nič nerobím niekde musí byť ešte nejaký vír schovaný.
Urobil som to s TDSSKiller a našlo to len nejaký Locked file C:/Windows/system32/Drivers/sptd.sys a možnosti skip, copy to quarantine a delete dal som skip a report takýto:
20:50:26.0198 5244 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
20:50:26.0821 5244 ============================================================
20:50:26.0821 5244 Current date / time: 2012/07/18 20:50:26.0821
20:50:26.0821 5244 SystemInfo:
20:50:26.0821 5244
20:50:26.0821 5244 OS Version: 6.1.7600 ServicePack: 0.0
20:50:26.0821 5244 Product type: Workstation
20:50:26.0821 5244 ComputerName: ORION-PC
20:50:26.0821 5244 UserName: Orion
20:50:26.0821 5244 Windows directory: C:\Windows
20:50:26.0821 5244 System windows directory: C:\Windows
20:50:26.0821 5244 Processor architecture: Intel x86
20:50:26.0821 5244 Number of processors: 4
20:50:26.0821 5244 Page size: 0x1000
20:50:26.0821 5244 Boot type: Normal boot
20:50:26.0821 5244 ============================================================
20:50:27.0170 5244 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:50:27.0173 5244 ============================================================
20:50:27.0173 5244 \Device\Harddisk0\DR0:
20:50:27.0175 5244 MBR partitions:
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x25D46000
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x25D78800, BlocksNum 0x25D78000
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4BAF0800, BlocksNum 0x27CB8000
20:50:27.0175 5244 ============================================================
20:50:27.0195 5244 C: <-> \Device\Harddisk0\DR0\Partition1
20:50:27.0392 5244 D: <-> \Device\Harddisk0\DR0\Partition2
20:50:27.0486 5244 E: <-> \Device\Harddisk0\DR0\Partition3
20:50:27.0486 5244 ============================================================
20:50:27.0486 5244 Initialize success
20:50:27.0486 5244 ============================================================
20:50:52.0839 3132 ============================================================
20:50:52.0839 3132 Scan started
20:50:52.0839 3132 Mode: Manual;
20:50:52.0839 3132 ============================================================
20:50:53.0073 3132 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
20:50:53.0073 3132 1394ohci - ok
20:50:53.0104 3132 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
20:50:53.0104 3132 ACPI - ok
20:50:53.0130 3132 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
20:50:53.0130 3132 AcpiPmi - ok
20:50:53.0195 3132 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:50:53.0200 3132 AdobeFlashPlayerUpdateSvc - ok
20:50:53.0237 3132 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
20:50:53.0242 3132 adp94xx - ok
20:50:53.0257 3132 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
20:50:53.0262 3132 adpahci - ok
20:50:53.0300 3132 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
20:50:53.0302 3132 adpu320 - ok
20:50:53.0332 3132 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
20:50:53.0332 3132 AeLookupSvc - ok
20:50:53.0382 3132 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
20:50:53.0387 3132 AFD - ok
20:50:53.0410 3132 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
20:50:53.0410 3132 agp440 - ok
20:50:53.0410 3132 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
20:50:53.0426 3132 aic78xx - ok
20:50:53.0457 3132 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
20:50:53.0473 3132 ALG - ok
20:50:53.0488 3132 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
20:50:53.0488 3132 aliide - ok
20:50:53.0488 3132 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
20:50:53.0488 3132 amdagp - ok
20:50:53.0488 3132 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
20:50:53.0488 3132 amdide - ok
20:50:53.0504 3132 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
20:50:53.0504 3132 AmdK8 - ok
20:50:53.0520 3132 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
20:50:53.0520 3132 AmdPPM - ok
20:50:53.0551 3132 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
20:50:53.0551 3132 amdsata - ok
20:50:53.0551 3132 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
20:50:53.0551 3132 amdsbs - ok
20:50:53.0582 3132 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
20:50:53.0582 3132 amdxata - ok
20:50:53.0582 3132 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
20:50:53.0582 3132 AppID - ok
20:50:53.0613 3132 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
20:50:53.0613 3132 AppIDSvc - ok
20:50:53.0644 3132 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
20:50:53.0644 3132 Appinfo - ok
20:50:53.0676 3132 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
20:50:53.0676 3132 AppMgmt - ok
20:50:53.0691 3132 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
20:50:53.0691 3132 arc - ok
20:50:53.0691 3132 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
20:50:53.0691 3132 arcsas - ok
20:50:53.0832 3132 asComSvc (fb03a917c1294d3e6d671f24722e1ba3) C:\Program Files\ASUS\AXSP\1.00.13\atkexComSvc.exe
20:50:53.0832 3132 asComSvc - ok
20:50:53.0863 3132 asHmComSvc (a63173897ea1a73a75d0e65036de5b15) C:\Program Files\ASUS\AAHM\1.00.13\aaHMSvc.exe
20:50:53.0863 3132 asHmComSvc - ok
20:50:54.0003 3132 AsIO (419f3128e01b5ac038efd500314f62b8) C:\Windows\system32\drivers\AsIO.sys
20:50:54.0003 3132 AsIO - ok
20:50:54.0157 3132 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:50:54.0157 3132 aspnet_state - ok
20:50:54.0194 3132 AsSysCtrlService (5c31dfb196cb3a488a041881634d86d2) C:\Program Files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
20:50:54.0199 3132 AsSysCtrlService - ok
20:50:54.0224 3132 AsUpIO (a9a565c669786c402752f609afdd0dd5) C:\Windows\system32\drivers\AsUpIO.sys
20:50:54.0224 3132 AsUpIO - ok
20:50:54.0232 3132 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
20:50:54.0234 3132 AsyncMac - ok
20:50:54.0292 3132 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
20:50:54.0292 3132 atapi - ok
20:50:54.0341 3132 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\Windows\system32\DRIVERS\atksgt.sys
20:50:54.0341 3132 atksgt - ok
20:50:54.0387 3132 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
20:50:54.0403 3132 AudioEndpointBuilder - ok
20:50:54.0403 3132 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
20:50:54.0403 3132 Audiosrv - ok
20:50:54.0434 3132 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
20:50:54.0434 3132 AxInstSV - ok
20:50:54.0481 3132 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
20:50:54.0497 3132 b06bdrv - ok
20:50:54.0543 3132 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
20:50:54.0543 3132 b57nd60x - ok
20:50:54.0575 3132 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
20:50:54.0575 3132 BDESVC - ok
20:50:54.0590 3132 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
20:50:54.0590 3132 Beep - ok
20:50:54.0637 3132 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
20:50:54.0637 3132 BFE - ok
20:50:54.0684 3132 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
20:50:54.0699 3132 BITS - ok
20:50:54.0715 3132 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
20:50:54.0715 3132 blbdrive - ok
20:50:54.0746 3132 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
20:50:54.0746 3132 bowser - ok
20:50:54.0762 3132 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:50:54.0762 3132 BrFiltLo - ok
20:50:54.0777 3132 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:50:54.0777 3132 BrFiltUp - ok
20:50:54.0793 3132 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
20:50:54.0793 3132 Browser - ok
20:50:54.0824 3132 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
20:50:54.0824 3132 Brserid - ok
20:50:54.0840 3132 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
20:50:54.0840 3132 BrSerWdm - ok
20:50:54.0871 3132 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:50:54.0871 3132 BrUsbMdm - ok
20:50:54.0887 3132 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
20:50:54.0887 3132 BrUsbSer - ok
20:50:54.0887 3132 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
20:50:54.0887 3132 BTHMODEM - ok
20:50:54.0933 3132 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
20:50:54.0933 3132 bthserv - ok
20:50:54.0974 3132 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
20:50:54.0977 3132 cdfs - ok
20:50:55.0012 3132 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
20:50:55.0014 3132 cdrom - ok
20:50:55.0054 3132 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
20:50:55.0057 3132 CertPropSvc - ok
20:50:55.0072 3132 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
20:50:55.0072 3132 circlass - ok
20:50:55.0092 3132 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
20:50:55.0094 3132 CLFS - ok
20:50:55.0197 3132 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:50:55.0197 3132 clr_optimization_v2.0.50727_32 - ok
20:50:55.0302 3132 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:50:55.0302 3132 clr_optimization_v4.0.30319_32 - ok
20:50:55.0318 3132 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
20:50:55.0318 3132 CmBatt - ok
20:50:55.0349 3132 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
20:50:55.0349 3132 cmdide - ok
20:50:55.0380 3132 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
20:50:55.0380 3132 CNG - ok
20:50:55.0396 3132 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
20:50:55.0396 3132 Compbatt - ok
20:50:55.0427 3132 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
20:50:55.0427 3132 CompositeBus - ok
20:50:55.0427 3132 COMSysApp - ok
20:50:55.0505 3132 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
20:50:55.0505 3132 crcdisk - ok
20:50:55.0552 3132 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
20:50:55.0552 3132 CryptSvc - ok
20:50:55.0614 3132 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
20:50:55.0630 3132 CSC - ok
20:50:55.0661 3132 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
20:50:55.0661 3132 CscService - ok
20:50:55.0708 3132 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
20:50:55.0708 3132 DcomLaunch - ok
20:50:55.0754 3132 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
20:50:55.0754 3132 defragsvc - ok
20:50:55.0817 3132 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
20:50:55.0817 3132 DfsC - ok
20:50:55.0848 3132 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
20:50:55.0848 3132 Dhcp - ok
20:50:55.0864 3132 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
20:50:55.0864 3132 discache - ok
20:50:55.0895 3132 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
20:50:55.0895 3132 Disk - ok
20:50:55.0910 3132 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll
20:50:55.0910 3132 Dnscache - ok
20:50:55.0926 3132 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
20:50:55.0926 3132 dot3svc - ok
20:50:55.0942 3132 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
20:50:55.0942 3132 DPS - ok
20:50:55.0973 3132 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
20:50:55.0973 3132 drmkaud - ok
20:50:56.0004 3132 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys
20:50:56.0020 3132 DXGKrnl - ok
20:50:56.0035 3132 eamon (3b2e8f97b6869c29da023ee75bf585d5) C:\Windows\system32\DRIVERS\eamon.sys
20:50:56.0051 3132 eamon - ok
20:50:56.0066 3132 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
20:50:56.0066 3132 EapHost - ok
20:50:56.0191 3132 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
20:50:56.0222 3132 ebdrv - ok
20:50:56.0300 3132 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
20:50:56.0316 3132 EFS - ok
20:50:56.0347 3132 ehdrv (4fad054cbcaa296be7bd2cb77da9d9b4) C:\Windows\system32\DRIVERS\ehdrv.sys
20:50:56.0363 3132 ehdrv - ok
20:50:56.0425 3132 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe
20:50:56.0425 3132 ehRecvr - ok
20:50:56.0441 3132 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
20:50:56.0441 3132 ehSched - ok
20:50:56.0534 3132 EhttpSrv (a292d2284353af1350a6a3c20d231098) C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
20:50:56.0534 3132 EhttpSrv - ok
20:50:56.0581 3132 ekrn (8791f03854611deac8d2967c1c958a7e) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
20:50:56.0581 3132 ekrn - ok
20:50:56.0675 3132 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
20:50:56.0675 3132 elxstor - ok
20:50:56.0722 3132 epfw (63c9dfc27c401bff6188a1ca68d0abb0) C:\Windows\system32\DRIVERS\epfw.sys
20:50:56.0722 3132 epfw - ok
20:50:56.0737 3132 Epfwndis (3b47010b2425b69826004767e59045ba) C:\Windows\system32\DRIVERS\Epfwndis.sys
20:50:56.0737 3132 Epfwndis - ok
20:50:56.0784 3132 epfwwfp (b379d66406fe395e8adc557ef6074d17) C:\Windows\system32\DRIVERS\epfwwfp.sys
20:50:56.0784 3132 epfwwfp - ok
20:50:56.0800 3132 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
20:50:56.0800 3132 ErrDev - ok
20:50:56.0846 3132 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
20:50:56.0846 3132 EventSystem - ok
20:50:56.0924 3132 EverestDriver (898ad7d508f6ade242d94752e09f4152) C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt
20:50:56.0924 3132 EverestDriver - ok
20:50:56.0940 3132 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
20:50:56.0956 3132 exfat - ok
20:50:56.0987 3132 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
20:50:57.0002 3132 fastfat - ok
20:50:57.0034 3132 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
20:50:57.0034 3132 Fax - ok
20:50:57.0049 3132 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
20:50:57.0049 3132 fdc - ok
20:50:57.0065 3132 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
20:50:57.0065 3132 fdPHost - ok
20:50:57.0096 3132 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
20:50:57.0096 3132 FDResPub - ok
20:50:57.0147 3132 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
20:50:57.0149 3132 FileInfo - ok
20:50:57.0157 3132 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
20:50:57.0159 3132 Filetrace - ok
20:50:57.0169 3132 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
20:50:57.0169 3132 flpydisk - ok
20:50:57.0192 3132 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
20:50:57.0197 3132 FltMgr - ok
20:50:57.0249 3132 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll
20:50:57.0252 3132 FontCache - ok
20:50:57.0312 3132 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:50:57.0314 3132 FontCache3.0.0.0 - ok
20:50:57.0334 3132 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
20:50:57.0337 3132 FsDepends - ok
20:50:57.0382 3132 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
20:50:57.0382 3132 Fs_Rec - ok
20:50:57.0418 3132 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
20:50:57.0418 3132 fvevol - ok
20:50:57.0433 3132 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:50:57.0433 3132 gagp30kx - ok
20:50:57.0449 3132 GGSAFERDriver - ok
20:50:57.0480 3132 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
20:50:57.0480 3132 gpsvc - ok
20:50:57.0496 3132 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
20:50:57.0496 3132 hcw85cir - ok
20:50:57.0543 3132 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
20:50:57.0543 3132 HdAudAddService - ok
20:50:57.0574 3132 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:50:57.0574 3132 HDAudBus - ok
20:50:57.0589 3132 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
20:50:57.0589 3132 HidBatt - ok
20:50:57.0605 3132 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
20:50:57.0605 3132 HidBth - ok
20:50:57.0621 3132 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
20:50:57.0621 3132 HidIr - ok
20:50:57.0636 3132 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
20:50:57.0652 3132 hidserv - ok
20:50:57.0667 3132 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
20:50:57.0667 3132 HidUsb - ok
20:50:57.0699 3132 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
20:50:57.0699 3132 hkmsvc - ok
20:50:57.0730 3132 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
20:50:57.0730 3132 HomeGroupListener - ok
20:50:57.0761 3132 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
20:50:57.0761 3132 HomeGroupProvider - ok
20:50:57.0808 3132 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
20:50:57.0808 3132 HpSAMD - ok
20:50:57.0855 3132 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
20:50:57.0855 3132 HTTP - ok
20:50:57.0870 3132 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
20:50:57.0870 3132 hwpolicy - ok
20:50:57.0886 3132 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
20:50:57.0886 3132 i8042prt - ok
20:50:57.0917 3132 iaStor (f4037a3fedb92dd97c95f320766ea5c9) C:\Windows\system32\DRIVERS\iaStor.sys
20:50:57.0917 3132 iaStor - ok
20:50:57.0979 3132 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
20:50:57.0995 3132 IAStorDataMgrSvc - ok
20:50:58.0011 3132 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
20:50:58.0011 3132 iaStorV - ok
20:50:58.0056 3132 ICCWDT (8661b1d7706889463289a8660352f0f8) C:\Windows\system32\DRIVERS\ICCWDT.sys
20:50:58.0056 3132 ICCWDT - ok
20:50:58.0186 3132 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:50:58.0189 3132 IDriverT - ok
20:50:58.0279 3132 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:50:58.0291 3132 idsvc - ok
20:50:58.0301 3132 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
20:50:58.0317 3132 iirsp - ok
20:50:58.0364 3132 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
20:50:58.0379 3132 IKEEXT - ok
20:50:58.0504 3132 IntcAzAudAddService (da6ee479071883d263e75be7a67a70b8) C:\Windows\system32\drivers\RTKVHDA.sys
20:50:58.0520 3132 IntcAzAudAddService - ok
20:50:58.0644 3132 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
20:50:58.0644 3132 intelide - ok
20:50:58.0676 3132 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
20:50:58.0676 3132 intelppm - ok
20:50:58.0722 3132 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
20:50:58.0722 3132 IPBusEnum - ok
20:50:58.0785 3132 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:50:58.0785 3132 IpFilterDriver - ok
20:50:58.0816 3132 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
20:50:58.0816 3132 iphlpsvc - ok
20:50:58.0847 3132 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:50:58.0847 3132 IPMIDRV - ok
20:50:58.0894 3132 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
20:50:58.0894 3132 IPNAT - ok
20:50:58.0910 3132 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
20:50:58.0910 3132 IRENUM - ok
20:50:58.0968 3132 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
20:50:58.0968 3132 isapnp - ok
20:50:59.0011 3132 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
20:50:59.0013 3132 iScsiPrt - ok
20:50:59.0198 3132 ISODrive (2f03ceb28307983f3b36216d35ffa5aa) C:\Program Files\UltraISO\drivers\ISODrive.sys
20:50:59.0201 3132 ISODrive - ok
20:50:59.0216 3132 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:50:59.0216 3132 kbdclass - ok
20:50:59.0247 3132 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
20:50:59.0247 3132 kbdhid - ok
20:50:59.0309 3132 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:50:59.0325 3132 KeyIso - ok
20:50:59.0341 3132 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
20:50:59.0341 3132 KSecDD - ok
20:50:59.0356 3132 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
20:50:59.0356 3132 KSecPkg - ok
20:50:59.0403 3132 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
20:50:59.0403 3132 KtmRm - ok
20:50:59.0465 3132 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\system32\srvsvc.dll
20:50:59.0465 3132 LanmanServer - ok
20:50:59.0497 3132 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
20:50:59.0497 3132 LanmanWorkstation - ok
20:50:59.0575 3132 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\Windows\system32\DRIVERS\lirsgt.sys
20:50:59.0575 3132 lirsgt - ok
20:50:59.0575 3132 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
20:50:59.0575 3132 lltdio - ok
20:50:59.0606 3132 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
20:50:59.0621 3132 lltdsvc - ok
20:50:59.0637 3132 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
20:50:59.0637 3132 lmhosts - ok
20:50:59.0653 3132 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:50:59.0653 3132 LSI_FC - ok
20:50:59.0668 3132 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:50:59.0668 3132 LSI_SAS - ok
20:50:59.0668 3132 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:50:59.0668 3132 LSI_SAS2 - ok
20:50:59.0684 3132 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:50:59.0684 3132 LSI_SCSI - ok
20:50:59.0715 3132 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
20:50:59.0715 3132 luafv - ok
20:50:59.0746 3132 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
20:50:59.0746 3132 Mcx2Svc - ok
20:50:59.0762 3132 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
20:50:59.0762 3132 megasas - ok
20:50:59.0777 3132 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
20:50:59.0777 3132 MegaSR - ok
20:50:59.0824 3132 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:50:59.0824 3132 MMCSS - ok
20:50:59.0855 3132 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
20:50:59.0855 3132 Modem - ok
20:50:59.0871 3132 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
20:50:59.0871 3132 monitor - ok
20:50:59.0871 3132 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
20:50:59.0871 3132 mouclass - ok
20:50:59.0887 3132 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
20:50:59.0887 3132 mouhid - ok
20:50:59.0902 3132 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
20:50:59.0902 3132 mountmgr - ok
20:50:59.0918 3132 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
20:50:59.0918 3132 mpio - ok
20:50:59.0949 3132 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
20:50:59.0949 3132 mpsdrv - ok
20:50:59.0980 3132 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
20:50:59.0996 3132 MpsSvc - ok
20:51:00.0011 3132 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
20:51:00.0011 3132 MRxDAV - ok
20:51:00.0043 3132 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:51:00.0043 3132 mrxsmb - ok
20:51:00.0043 3132 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:51:00.0058 3132 mrxsmb10 - ok
20:51:00.0058 3132 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:51:00.0058 3132 mrxsmb20 - ok
20:51:00.0105 3132 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
20:51:00.0105 3132 msahci - ok
20:51:00.0121 3132 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
20:51:00.0121 3132 msdsm - ok
20:51:00.0172 3132 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
20:51:00.0172 3132 MSDTC - ok
20:51:00.0185 3132 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
20:51:00.0185 3132 Msfs - ok
20:51:00.0195 3132 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
20:51:00.0195 3132 mshidkmdf - ok
20:51:00.0242 3132 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
20:51:00.0242 3132 msisadrv - ok
20:51:00.0295 3132 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
20:51:00.0295 3132 MSiSCSI - ok
20:51:00.0297 3132 msiserver - ok
20:51:00.0332 3132 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
20:51:00.0335 3132 MSKSSRV - ok
20:51:00.0347 3132 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
20:51:00.0347 3132 MSPCLOCK - ok
20:51:00.0370 3132 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
20:51:00.0372 3132 MSPQM - ok
20:51:00.0422 3132 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
20:51:00.0425 3132 MsRPC - ok
20:51:00.0435 3132 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
20:51:00.0435 3132 mssmbios - ok
20:51:00.0442 3132 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
20:51:00.0442 3132 MSTEE - ok
20:51:00.0458 3132 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
20:51:00.0458 3132 MTConfig - ok
20:51:00.0474 3132 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
20:51:00.0474 3132 Mup - ok
20:51:00.0520 3132 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
20:51:00.0520 3132 napagent - ok
20:51:00.0583 3132 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
20:51:00.0598 3132 NativeWifiP - ok
20:51:00.0630 3132 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
20:51:00.0645 3132 NDIS - ok
20:51:00.0661 3132 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
20:51:00.0661 3132 NdisCap - ok
20:51:00.0708 3132 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
20:51:00.0708 3132 NdisTapi - ok
20:51:00.0723 3132 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
20:51:00.0723 3132 Ndisuio - ok
20:51:00.0739 3132 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
20:51:00.0739 3132 NdisWan - ok
20:51:00.0770 3132 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
20:51:00.0770 3132 NDProxy - ok
20:51:00.0786 3132 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
20:51:00.0786 3132 NetBIOS - ok
20:51:00.0801 3132 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
20:51:00.0801 3132 NetBT - ok
20:51:00.0832 3132 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:00.0832 3132 Netlogon - ok
20:51:00.0924 3132 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
20:51:00.0924 3132 Netman - ok
20:51:01.0059 3132 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0062 3132 NetMsmqActivator - ok
20:51:01.0064 3132 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0064 3132 NetPipeActivator - ok
20:51:01.0079 3132 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
20:51:01.0082 3132 netprofm - ok
20:51:01.0127 3132 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0127 3132 NetTcpActivator - ok
20:51:01.0132 3132 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0132 3132 NetTcpPortSharing - ok
20:51:01.0162 3132 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
20:51:01.0164 3132 nfrd960 - ok
20:51:01.0202 3132 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
20:51:01.0207 3132 NlaSvc - ok
20:51:01.0267 3132 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\Windows\system32\drivers\npf.sys
20:51:01.0269 3132 NPF - ok
20:51:01.0277 3132 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
20:51:01.0279 3132 Npfs - ok
20:51:01.0297 3132 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
20:51:01.0299 3132 nsi - ok
20:51:01.0314 3132 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
20:51:01.0314 3132 nsiproxy - ok
20:51:01.0360 3132 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
20:51:01.0375 3132 Ntfs - ok
20:51:01.0469 3132 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
20:51:01.0469 3132 Null - ok
20:51:01.0485 3132 nusb3hub (ff6d3248e791e7a897bd8ea2fbacbcff) C:\Windows\system32\DRIVERS\nusb3hub.sys
20:51:01.0500 3132 nusb3hub - ok
20:51:01.0531 3132 nusb3xhc (b5eb7e275f2967026c6031897624bc51) C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:51:01.0531 3132 nusb3xhc - ok
20:51:01.0594 3132 NVHDA (3d7fb57354703809b5f0c23287fac1d6) C:\Windows\system32\drivers\nvhda32v.sys
20:51:01.0594 3132 NVHDA - ok
20:51:01.0890 3132 nvlddmkm (e891b3979f0cf2740c1b073f834221fe) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:51:01.0968 3132 nvlddmkm - ok
20:51:02.0031 3132 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
20:51:02.0031 3132 nvraid - ok
20:51:02.0046 3132 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
20:51:02.0049 3132 nvstor - ok
20:51:02.0101 3132 NVSvc (ae2de8e165dcb93a66b21748e6f913df) C:\Windows\system32\nvvsvc.exe
20:51:02.0106 3132 NVSvc - ok
20:51:02.0274 3132 nvUpdatusService (c78581c14699c46fe0f0817416383134) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:51:02.0290 3132 nvUpdatusService - ok
20:51:02.0321 3132 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
20:51:02.0321 3132 nv_agp - ok
20:51:02.0321 3132 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
20:51:02.0321 3132 ohci1394 - ok
20:51:02.0415 3132 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:51:02.0415 3132 ose - ok
20:51:02.0637 3132 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:51:02.0670 3132 osppsvc - ok
20:51:02.0732 3132 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:51:02.0735 3132 p2pimsvc - ok
20:51:02.0767 3132 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
20:51:02.0772 3132 p2psvc - ok
20:51:02.0815 3132 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
20:51:02.0817 3132 Parport - ok
20:51:02.0827 3132 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
20:51:02.0827 3132 partmgr - ok
20:51:02.0835 3132 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
20:51:02.0837 3132 Parvdm - ok
20:51:02.0865 3132 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
20:51:02.0867 3132 PcaSvc - ok
20:51:02.0882 3132 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
20:51:02.0885 3132 pci - ok
20:51:02.0900 3132 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
20:51:02.0902 3132 pciide - ok
20:51:02.0917 3132 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
20:51:02.0920 3132 pcmcia - ok
20:51:02.0937 3132 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
20:51:02.0937 3132 pcw - ok
20:51:02.0967 3132 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
20:51:02.0972 3132 PEAUTH - ok
20:51:03.0037 3132 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
20:51:03.0045 3132 PeerDistSvc - ok
20:51:03.0209 3132 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
20:51:03.0240 3132 pla - ok
20:51:03.0302 3132 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll
20:51:03.0302 3132 PlugPlay - ok
20:51:03.0365 3132 PnkBstrA (831883b107684301f48ace752c963984) C:\Windows\system32\PnkBstrA.exe
20:51:03.0365 3132 PnkBstrA - ok
20:51:03.0396 3132 PnkBstrB (e24106a5eaecddff00b25497049dd65f) C:\Windows\system32\PnkBstrB.exe
20:51:03.0412 3132 PnkBstrB - ok
20:51:03.0427 3132 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
20:51:03.0427 3132 PNRPAutoReg - ok
20:51:03.0443 3132 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:51:03.0443 3132 PNRPsvc - ok
20:51:03.0474 3132 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
20:51:03.0490 3132 PolicyAgent - ok
20:51:03.0505 3132 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
20:51:03.0505 3132 Power - ok
20:51:03.0552 3132 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
20:51:03.0568 3132 PptpMiniport - ok
20:51:03.0568 3132 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
20:51:03.0568 3132 Processor - ok
20:51:03.0630 3132 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
20:51:03.0630 3132 ProfSvc - ok
20:51:03.0661 3132 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:03.0677 3132 ProtectedStorage - ok
20:51:03.0708 3132 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
20:51:03.0708 3132 Psched - ok
20:51:03.0786 3132 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
20:51:03.0802 3132 ql2300 - ok
20:51:03.0833 3132 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
20:51:03.0833 3132 ql40xx - ok
20:51:03.0880 3132 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
20:51:03.0880 3132 QWAVE - ok
20:51:03.0895 3132 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
20:51:03.0895 3132 QWAVEdrv - ok
20:51:03.0911 3132 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
20:51:03.0911 3132 RasAcd - ok
20:51:03.0973 3132 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:51:03.0973 3132 RasAgileVpn - ok
20:51:04.0004 3132 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
20:51:04.0004 3132 RasAuto - ok
20:51:04.0004 3132 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:51:04.0020 3132 Rasl2tp - ok
20:51:04.0051 3132 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
20:51:04.0067 3132 RasMan - ok
20:51:04.0114 3132 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
20:51:04.0116 3132 RasPppoe - ok
20:51:04.0126 3132 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
20:51:04.0126 3132 RasSstp - ok
20:51:04.0149 3132 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
20:51:04.0154 3132 rdbss - ok
20:51:04.0161 3132 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
20:51:04.0164 3132 rdpbus - ok
20:51:04.0169 3132 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:51:04.0169 3132 RDPCDD - ok
20:51:04.0194 3132 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
20:51:04.0194 3132 RDPDR - ok
20:51:04.0211 3132 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
20:51:04.0211 3132 RDPENCDD - ok
20:51:04.0219 3132 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
20:51:04.0219 3132 RDPREFMP - ok
20:51:04.0229 3132 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
20:51:04.0231 3132 RDPWD - ok
20:51:04.0251 3132 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
20:51:04.0254 3132 rdyboost - ok
20:51:04.0271 3132 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
20:51:04.0274 3132 RemoteAccess - ok
20:51:04.0284 3132 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
20:51:04.0286 3132 RemoteRegistry - ok
20:51:04.0351 3132 rpcapd (b60f58f175de20a6739194e85b035178) C:\Program Files\WinPcap\rpcapd.exe
20:51:04.0354 3132 rpcapd - ok
20:51:04.0379 3132 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
20:51:04.0381 3132 RpcEptMapper - ok
20:51:04.0404 3132 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
20:51:04.0404 3132 RpcLocator - ok
20:51:04.0420 3132 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
20:51:04.0420 3132 RpcSs - ok
20:51:04.0467 3132 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
20:51:04.0467 3132 rspndr - ok
20:51:04.0514 3132 RTL8167 (9c5da0bc3301dfca399056fd9adca413) C:\Windows\system32\DRIVERS\Rt86win7.sys
20:51:04.0514 3132 RTL8167 - ok
20:51:04.0545 3132 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
20:51:04.0545 3132 s3cap - ok
20:51:04.0576 3132 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:04.0576 3132 SamSs - ok
20:51:04.0638 3132 SbFw (9c9bcc79aef0aa97f16766c498002d36) C:\Windows\system32\drivers\SbFw.sys
20:51:04.0638 3132 SbFw - ok
20:51:04.0701 3132 SBFWIMCL (f27b38d70b7621378161d6f48be04d2c) C:\Windows\system32\DRIVERS\sbfwim.sys
20:51:04.0701 3132 SBFWIMCL - ok
20:51:04.0716 3132 SBFWIMCLMP (f27b38d70b7621378161d6f48be04d2c) C:\Windows\system32\DRIVERS\SBFWIM.sys
20:51:04.0716 3132 SBFWIMCLMP - ok
20:51:04.0748 3132 sbhips (53e5e7dc26bb920b97f258bbd52abfdc) C:\Windows\system32\drivers\sbhips.sys
20:51:04.0748 3132 sbhips - ok
20:51:04.0779 3132 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
20:51:04.0794 3132 sbp2port - ok
20:51:04.0794 3132 SBRE - ok
20:51:04.0826 3132 SbTis (6468e2973e04525decc105947ddd0d34) C:\Windows\system32\drivers\sbtis.sys
20:51:04.0826 3132 SbTis - ok
20:51:04.0841 3132 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
20:51:04.0857 3132 SCardSvr - ok
20:51:04.0857 3132 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
20:51:04.0857 3132 scfilter - ok
20:51:04.0888 3132 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll
20:51:04.0888 3132 Schedule - ok
20:51:04.0919 3132 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
20:51:04.0919 3132 SCPolicySvc - ok
20:51:04.0935 3132 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
20:51:04.0935 3132 SDRSVC - ok
20:51:04.0966 3132 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:51:04.0966 3132 secdrv - ok
20:51:04.0982 3132 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
20:51:04.0982 3132 seclogon - ok
20:51:05.0046 3132 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
20:51:05.0046 3132 SENS - ok
20:51:05.0061 3132 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
20:51:05.0063 3132 SensrSvc - ok
20:51:05.0086 3132 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
20:51:05.0086 3132 Serenum - ok
20:51:05.0106 3132 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
20:51:05.0106 3132 Serial - ok
20:51:05.0128 3132 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
20:51:05.0128 3132 sermouse - ok
20:51:05.0153 3132 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
20:51:05.0156 3132 SessionEnv - ok
20:51:05.0163 3132 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
20:51:05.0163 3132 sffdisk - ok
20:51:05.0173 3132 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:51:05.0173 3132 sffp_mmc - ok
20:51:05.0198 3132 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
20:51:05.0198 3132 sffp_sd - ok
20:51:05.0203 3132 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
20:51:05.0203 3132 sfloppy - ok
20:51:05.0246 3132 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
20:51:05.0251 3132 SharedAccess - ok
20:51:05.0283 3132 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
20:51:05.0288 3132 ShellHWDetection - ok
20:51:05.0303 3132 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
20:51:05.0303 3132 sisagp - ok
20:51:05.0319 3132 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:51:05.0319 3132 SiSRaid2 - ok
20:51:05.0319 3132 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
20:51:05.0319 3132 SiSRaid4 - ok
20:51:05.0335 3132 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
20:51:05.0335 3132 Smb - ok
20:51:05.0413 3132 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
20:51:05.0413 3132 SNMPTRAP - ok
20:51:05.0444 3132 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
20:51:05.0444 3132 spldr - ok
20:51:05.0537 3132 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe
20:51:05.0537 3132 Spooler - ok
20:51:05.0631 3132 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
20:51:05.0647 3132 sppsvc - ok
20:51:05.0725 3132 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
20:51:05.0725 3132 sppuinotify - ok
20:51:05.0803 3132 sptd (a80cd850d69d996c832bea37e3a6aa1e) C:\Windows\system32\Drivers\sptd.sys
20:51:05.0803 3132 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a80cd850d69d996c832bea37e3a6aa1e
20:51:05.0803 3132 sptd ( LockedFile.Multi.Generic ) - warning
20:51:05.0803 3132 sptd - detected LockedFile.Multi.Generic (1)
20:51:05.0834 3132 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys
20:51:05.0834 3132 srv - ok
20:51:05.0881 3132 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys
20:51:05.0881 3132 srv2 - ok
20:51:05.0896 3132 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys
20:51:05.0896 3132 srvnet - ok
20:51:05.0927 3132 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
20:51:05.0927 3132 SSDPSRV - ok
20:51:05.0958 3132 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
20:51:05.0960 3132 SstpSvc - ok
20:51:06.0033 3132 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
20:51:06.0033 3132 StarWindServiceAE - ok
20:51:06.0160 3132 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:51:06.0163 3132 Stereo Service - ok
20:51:06.0180 3132 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
20:51:06.0180 3132 stexstor - ok
20:51:06.0249 3132 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
20:51:06.0265 3132 StiSvc - ok
20:51:06.0296 3132 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
20:51:06.0296 3132 storflt - ok
20:51:06.0327 3132 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
20:51:06.0327 3132 storvsc - ok
20:51:06.0374 3132 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
20:51:06.0374 3132 swenum - ok
20:51:06.0421 3132 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
20:51:06.0421 3132 swprv - ok
20:51:06.0468 3132 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
20:51:06.0483 3132 SysMain - ok
20:51:06.0514 3132 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
20:51:06.0514 3132 TabletInputService - ok
20:51:06.0546 3132 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
20:51:06.0561 3132 TapiSrv - ok
20:51:06.0608 3132 TBPanel (04e1c782cf14b7282ebc633b0fd3ed16) C:\Windows\system32\drivers\TBPanel.sys
20:51:06.0608 3132 TBPanel - ok
20:51:06.0655 3132 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
20:51:06.0655 3132 TBS - ok
20:51:06.0702 3132 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys
20:51:06.0717 3132 Tcpip - ok
20:51:06.0826 3132 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys
20:51:06.0826 3132 TCPIP6 - ok
20:51:06.0858 3132 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
20:51:06.0858 3132 tcpipreg - ok
20:51:06.0873 3132 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
20:51:06.0873 3132 TDPIPE - ok
20:51:06.0889 3132 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
20:51:06.0889 3132 TDTCP - ok
20:51:06.0904 3132 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
20:51:06.0904 3132 tdx - ok
20:51:06.0920 3132 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
20:51:06.0920 3132 TermDD - ok
20:51:06.0936 3132 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
20:51:06.0951 3132 TermService - ok
20:51:06.0951 3132 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
20:51:06.0951 3132 Themes - ok
20:51:06.0998 3132 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:51:06.0998 3132 THREADORDER - ok
20:51:07.0014 3132 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
20:51:07.0029 3132 TrkWks - ok
20:51:07.0092 3132 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
20:51:07.0092 3132 TrustedInstaller - ok
20:51:07.0107 3132 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:51:07.0107 3132 tssecsrv - ok
20:51:07.0154 3132 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
20:51:07.0154 3132 tunnel - ok
20:51:07.0170 3132 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
20:51:07.0172 3132 uagp35 - ok
20:51:07.0205 3132 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
20:51:07.0210 3132 udfs - ok
20:51:07.0240 3132 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
20:51:07.0242 3132 UI0Detect - ok
20:51:07.0277 3132 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
20:51:07.0277 3132 uliagpkx - ok
20:51:07.0312 3132 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
20:51:07.0315 3132 umbus - ok
20:51:07.0340 3132 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
20:51:07.0340 3132 UmPass - ok
20:51:07.0417 3132 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
20:51:07.0422 3132 UmRdpService - ok
20:51:07.0442 3132 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
20:51:07.0445 3132 upnphost - ok
20:51:07.0476 3132 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
20:51:07.0476 3132 usbccgp - ok
20:51:07.0476 3132 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
20:51:07.0476 3132 usbcir - ok
20:51:07.0538 3132 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
20:51:07.0538 3132 usbehci - ok
20:51:07.0569 3132 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
20:51:07.0569 3132 usbhub - ok
20:51:07.0585 3132 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
20:51:07.0585 3132 usbohci - ok
20:51:07.0632 3132 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
20:51:07.0632 3132 usbprint - ok
20:51:07.0710 3132 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
20:51:07.0710 3132 usbscan - ok
20:51:07.0710 3132 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:51:07.0710 3132 USBSTOR - ok
20:51:07.0725 3132 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
20:51:07.0725 3132 usbuhci - ok
20:51:07.0757 3132 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
20:51:07.0757 3132 UxSms - ok
20:51:07.0803 3132 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:07.0803 3132 VaultSvc - ok
20:51:07.0803 3132 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
20:51:07.0819 3132 vdrvroot - ok
20:51:07.0835 3132 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
20:51:07.0850 3132 vds - ok
20:51:07.0866 3132 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
20:51:07.0866 3132 vga - ok
20:51:07.0881 3132 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
20:51:07.0881 3132 VgaSave - ok
20:51:07.0897 3132 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
20:51:07.0897 3132 vhdmp - ok
20:51:07.0897 3132 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
20:51:07.0897 3132 viaagp - ok
20:51:07.0913 3132 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
20:51:07.0913 3132 ViaC7 - ok
20:51:07.0928 3132 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
20:51:07.0928 3132 viaide - ok
20:51:07.0975 3132 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
20:51:07.0975 3132 vmbus - ok
20:51:07.0991 3132 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
20:51:07.0991 3132 VMBusHID - ok
20:51:08.0006 3132 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
20:51:08.0006 3132 volmgr - ok
20:51:08.0069 3132 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
20:51:08.0069 3132 volmgrx - ok
20:51:08.0097 3132 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
20:51:08.0099 3132 volsnap - ok
20:51:08.0122 3132 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
20:51:08.0124 3132 vsmraid - ok
20:51:08.0172 3132 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
20:51:08.0177 3132 VSS - ok
20:51:08.0187 3132 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
20:51:08.0187 3132 vwifibus - ok
20:51:08.0234 3132 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
20:51:08.0239 3132 W32Time - ok
20:51:08.0257 3132 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
20:51:08.0257 3132 WacomPen - ok
20:51:08.0279 3132 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
20:51:08.0282 3132 WANARP - ok
20:51:08.0284 3132 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
20:51:08.0284 3132 Wanarpv6 - ok
20:51:08.0344 3132 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
20:51:08.0357 3132 wbengine - ok
20:51:08.0362 3132 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
20:51:08.0377 3132 WbioSrvc - ok
20:51:08.0393 3132 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll
20:51:08.0393 3132 wcncsvc - ok
20:51:08.0408 3132 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
20:51:08.0408 3132 WcsPlugInService - ok
20:51:08.0440 3132 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
20:51:08.0440 3132 Wd - ok
20:51:08.0486 3132 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
20:51:08.0502 3132 Wdf01000 - ok
20:51:08.0518 3132 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:51:08.0518 3132 WdiServiceHost - ok
20:51:08.0518 3132 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:51:08.0518 3132 WdiSystemHost - ok
20:51:08.0533 3132 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll
20:51:08.0549 3132 WebClient - ok
20:51:08.0549 3132 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
20:51:08.0549 3132 Wecsvc - ok
20:51:08.0564 3132 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
20:51:08.0564 3132 wercplsupport - ok
20:51:08.0596 3132 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
20:51:08.0596 3132 WerSvc - ok
20:51:08.0596 3132 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
20:51:08.0596 3132 WfpLwf - ok
20:51:08.0611 3132 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
20:51:08.0611 3132 WIMMount - ok
20:51:08.0689 3132 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
20:51:08.0689 3132 WinDefend - ok
20:51:08.0705 3132 WinHttpAutoProxySvc - ok
20:51:08.0767 3132 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
20:51:08.0783 3132 Winmgmt - ok
20:51:08.0861 3132 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
20:51:08.0876 3132 WinRM - ok
20:51:08.0923 3132 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
20:51:08.0923 3132 WinUsb - ok
20:51:08.0986 3132 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
20:51:08.0986 3132 Wlansvc - ok
20:51:09.0169 3132 wlidsvc (5144ae67d60ec653f97ddf3feed29e77) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:51:09.0179 3132 wlidsvc - ok
20:51:09.0236 3132 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
20:51:09.0236 3132 WmiAcpi - ok
20:51:09.0256 3132 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
20:51:09.0259 3132 wmiApSrv - ok
20:51:09.0307 3132 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:51:09.0323 3132 WMPNetworkSvc - ok
20:51:09.0354 3132 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
20:51:09.0354 3132 WPCSvc - ok
20:51:09.0370 3132 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
20:51:09.0370 3132 WPDBusEnum - ok
20:51:09.0401 3132 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
20:51:09.0401 3132 ws2ifsl - ok
20:51:09.0417 3132 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
20:51:09.0417 3132 wscsvc - ok
20:51:09.0417 3132 WSearch - ok
20:51:09.0479 3132 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
20:51:09.0510 3132 wuauserv - ok
20:51:09.0541 3132 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
20:51:09.0541 3132 WudfPf - ok
20:51:09.0557 3132 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:51:09.0557 3132 WUDFRd - ok
20:51:09.0588 3132 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
20:51:09.0604 3132 wudfsvc - ok
20:51:09.0624 3132 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
20:51:09.0629 3132 WwanSvc - ok
20:51:09.0676 3132 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:51:09.0779 3132 \Device\Harddisk0\DR0 - ok
20:51:09.0781 3132 Boot (0x1200) (341067cffb1e1e2373adccfcf49b7326) \Device\Harddisk0\DR0\Partition0
20:51:09.0784 3132 \Device\Harddisk0\DR0\Partition0 - ok
20:51:09.0796 3132 Boot (0x1200) (e13c978aed0dcfdbd8cdd4add1244b24) \Device\Harddisk0\DR0\Partition1
20:51:09.0799 3132 \Device\Harddisk0\DR0\Partition1 - ok
20:51:09.0819 3132 Boot (0x1200) (7bbb6ecc5fdb8ae54b7194d3785bab5c) \Device\Harddisk0\DR0\Partition2
20:51:09.0819 3132 \Device\Harddisk0\DR0\Partition2 - ok
20:51:09.0834 3132 Boot (0x1200) (320e3aa04c77fa8af42a1d255211ebb1) \Device\Harddisk0\DR0\Partition3
20:51:09.0834 3132 \Device\Harddisk0\DR0\Partition3 - ok
20:51:09.0836 3132 ============================================================
20:51:09.0836 3132 Scan finished
20:51:09.0836 3132 ============================================================
20:51:09.0844 5148 Detected object count: 1
20:51:09.0844 5148 Actual detected object count: 1
21:17:16.0134 5148 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:17:16.0134 5148 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
Urobil som to s TDSSKiller a našlo to len nejaký Locked file C:/Windows/system32/Drivers/sptd.sys a možnosti skip, copy to quarantine a delete dal som skip a report takýto:
20:50:26.0198 5244 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
20:50:26.0821 5244 ============================================================
20:50:26.0821 5244 Current date / time: 2012/07/18 20:50:26.0821
20:50:26.0821 5244 SystemInfo:
20:50:26.0821 5244
20:50:26.0821 5244 OS Version: 6.1.7600 ServicePack: 0.0
20:50:26.0821 5244 Product type: Workstation
20:50:26.0821 5244 ComputerName: ORION-PC
20:50:26.0821 5244 UserName: Orion
20:50:26.0821 5244 Windows directory: C:\Windows
20:50:26.0821 5244 System windows directory: C:\Windows
20:50:26.0821 5244 Processor architecture: Intel x86
20:50:26.0821 5244 Number of processors: 4
20:50:26.0821 5244 Page size: 0x1000
20:50:26.0821 5244 Boot type: Normal boot
20:50:26.0821 5244 ============================================================
20:50:27.0170 5244 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:50:27.0173 5244 ============================================================
20:50:27.0173 5244 \Device\Harddisk0\DR0:
20:50:27.0175 5244 MBR partitions:
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x25D46000
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x25D78800, BlocksNum 0x25D78000
20:50:27.0175 5244 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x4BAF0800, BlocksNum 0x27CB8000
20:50:27.0175 5244 ============================================================
20:50:27.0195 5244 C: <-> \Device\Harddisk0\DR0\Partition1
20:50:27.0392 5244 D: <-> \Device\Harddisk0\DR0\Partition2
20:50:27.0486 5244 E: <-> \Device\Harddisk0\DR0\Partition3
20:50:27.0486 5244 ============================================================
20:50:27.0486 5244 Initialize success
20:50:27.0486 5244 ============================================================
20:50:52.0839 3132 ============================================================
20:50:52.0839 3132 Scan started
20:50:52.0839 3132 Mode: Manual;
20:50:52.0839 3132 ============================================================
20:50:53.0073 3132 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
20:50:53.0073 3132 1394ohci - ok
20:50:53.0104 3132 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
20:50:53.0104 3132 ACPI - ok
20:50:53.0130 3132 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
20:50:53.0130 3132 AcpiPmi - ok
20:50:53.0195 3132 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:50:53.0200 3132 AdobeFlashPlayerUpdateSvc - ok
20:50:53.0237 3132 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
20:50:53.0242 3132 adp94xx - ok
20:50:53.0257 3132 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
20:50:53.0262 3132 adpahci - ok
20:50:53.0300 3132 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
20:50:53.0302 3132 adpu320 - ok
20:50:53.0332 3132 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
20:50:53.0332 3132 AeLookupSvc - ok
20:50:53.0382 3132 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
20:50:53.0387 3132 AFD - ok
20:50:53.0410 3132 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
20:50:53.0410 3132 agp440 - ok
20:50:53.0410 3132 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
20:50:53.0426 3132 aic78xx - ok
20:50:53.0457 3132 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
20:50:53.0473 3132 ALG - ok
20:50:53.0488 3132 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
20:50:53.0488 3132 aliide - ok
20:50:53.0488 3132 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
20:50:53.0488 3132 amdagp - ok
20:50:53.0488 3132 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
20:50:53.0488 3132 amdide - ok
20:50:53.0504 3132 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
20:50:53.0504 3132 AmdK8 - ok
20:50:53.0520 3132 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
20:50:53.0520 3132 AmdPPM - ok
20:50:53.0551 3132 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
20:50:53.0551 3132 amdsata - ok
20:50:53.0551 3132 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
20:50:53.0551 3132 amdsbs - ok
20:50:53.0582 3132 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
20:50:53.0582 3132 amdxata - ok
20:50:53.0582 3132 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
20:50:53.0582 3132 AppID - ok
20:50:53.0613 3132 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
20:50:53.0613 3132 AppIDSvc - ok
20:50:53.0644 3132 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\Windows\System32\appinfo.dll
20:50:53.0644 3132 Appinfo - ok
20:50:53.0676 3132 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
20:50:53.0676 3132 AppMgmt - ok
20:50:53.0691 3132 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
20:50:53.0691 3132 arc - ok
20:50:53.0691 3132 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
20:50:53.0691 3132 arcsas - ok
20:50:53.0832 3132 asComSvc (fb03a917c1294d3e6d671f24722e1ba3) C:\Program Files\ASUS\AXSP\1.00.13\atkexComSvc.exe
20:50:53.0832 3132 asComSvc - ok
20:50:53.0863 3132 asHmComSvc (a63173897ea1a73a75d0e65036de5b15) C:\Program Files\ASUS\AAHM\1.00.13\aaHMSvc.exe
20:50:53.0863 3132 asHmComSvc - ok
20:50:54.0003 3132 AsIO (419f3128e01b5ac038efd500314f62b8) C:\Windows\system32\drivers\AsIO.sys
20:50:54.0003 3132 AsIO - ok
20:50:54.0157 3132 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:50:54.0157 3132 aspnet_state - ok
20:50:54.0194 3132 AsSysCtrlService (5c31dfb196cb3a488a041881634d86d2) C:\Program Files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
20:50:54.0199 3132 AsSysCtrlService - ok
20:50:54.0224 3132 AsUpIO (a9a565c669786c402752f609afdd0dd5) C:\Windows\system32\drivers\AsUpIO.sys
20:50:54.0224 3132 AsUpIO - ok
20:50:54.0232 3132 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
20:50:54.0234 3132 AsyncMac - ok
20:50:54.0292 3132 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
20:50:54.0292 3132 atapi - ok
20:50:54.0341 3132 atksgt (f0d933b42cd0594048e4d5200ae9e417) C:\Windows\system32\DRIVERS\atksgt.sys
20:50:54.0341 3132 atksgt - ok
20:50:54.0387 3132 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
20:50:54.0403 3132 AudioEndpointBuilder - ok
20:50:54.0403 3132 Audiosrv (510c873bfa135aa829f4180352772734) C:\Windows\System32\Audiosrv.dll
20:50:54.0403 3132 Audiosrv - ok
20:50:54.0434 3132 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\Windows\System32\AxInstSV.dll
20:50:54.0434 3132 AxInstSV - ok
20:50:54.0481 3132 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
20:50:54.0497 3132 b06bdrv - ok
20:50:54.0543 3132 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
20:50:54.0543 3132 b57nd60x - ok
20:50:54.0575 3132 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
20:50:54.0575 3132 BDESVC - ok
20:50:54.0590 3132 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
20:50:54.0590 3132 Beep - ok
20:50:54.0637 3132 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\Windows\System32\bfe.dll
20:50:54.0637 3132 BFE - ok
20:50:54.0684 3132 BITS (53f476476f55a27f580661bde09c4ec4) C:\Windows\System32\qmgr.dll
20:50:54.0699 3132 BITS - ok
20:50:54.0715 3132 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
20:50:54.0715 3132 blbdrive - ok
20:50:54.0746 3132 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
20:50:54.0746 3132 bowser - ok
20:50:54.0762 3132 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:50:54.0762 3132 BrFiltLo - ok
20:50:54.0777 3132 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:50:54.0777 3132 BrFiltUp - ok
20:50:54.0793 3132 Browser (598e1280e7ff3744f4b8329366cc5635) C:\Windows\System32\browser.dll
20:50:54.0793 3132 Browser - ok
20:50:54.0824 3132 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
20:50:54.0824 3132 Brserid - ok
20:50:54.0840 3132 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
20:50:54.0840 3132 BrSerWdm - ok
20:50:54.0871 3132 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:50:54.0871 3132 BrUsbMdm - ok
20:50:54.0887 3132 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
20:50:54.0887 3132 BrUsbSer - ok
20:50:54.0887 3132 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
20:50:54.0887 3132 BTHMODEM - ok
20:50:54.0933 3132 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
20:50:54.0933 3132 bthserv - ok
20:50:54.0974 3132 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
20:50:54.0977 3132 cdfs - ok
20:50:55.0012 3132 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
20:50:55.0014 3132 cdrom - ok
20:50:55.0054 3132 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
20:50:55.0057 3132 CertPropSvc - ok
20:50:55.0072 3132 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
20:50:55.0072 3132 circlass - ok
20:50:55.0092 3132 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
20:50:55.0094 3132 CLFS - ok
20:50:55.0197 3132 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:50:55.0197 3132 clr_optimization_v2.0.50727_32 - ok
20:50:55.0302 3132 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:50:55.0302 3132 clr_optimization_v4.0.30319_32 - ok
20:50:55.0318 3132 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
20:50:55.0318 3132 CmBatt - ok
20:50:55.0349 3132 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
20:50:55.0349 3132 cmdide - ok
20:50:55.0380 3132 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
20:50:55.0380 3132 CNG - ok
20:50:55.0396 3132 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
20:50:55.0396 3132 Compbatt - ok
20:50:55.0427 3132 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
20:50:55.0427 3132 CompositeBus - ok
20:50:55.0427 3132 COMSysApp - ok
20:50:55.0505 3132 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
20:50:55.0505 3132 crcdisk - ok
20:50:55.0552 3132 CryptSvc (9c231178ce4fb385f4b54b0a9080b8a4) C:\Windows\system32\cryptsvc.dll
20:50:55.0552 3132 CryptSvc - ok
20:50:55.0614 3132 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
20:50:55.0630 3132 CSC - ok
20:50:55.0661 3132 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\Windows\System32\cscsvc.dll
20:50:55.0661 3132 CscService - ok
20:50:55.0708 3132 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
20:50:55.0708 3132 DcomLaunch - ok
20:50:55.0754 3132 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
20:50:55.0754 3132 defragsvc - ok
20:50:55.0817 3132 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
20:50:55.0817 3132 DfsC - ok
20:50:55.0848 3132 Dhcp (c56495fbd770712367cad35e5de72da6) C:\Windows\system32\dhcpcore.dll
20:50:55.0848 3132 Dhcp - ok
20:50:55.0864 3132 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
20:50:55.0864 3132 discache - ok
20:50:55.0895 3132 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
20:50:55.0895 3132 Disk - ok
20:50:55.0910 3132 Dnscache (d0722e963d3c6145446874241401b209) C:\Windows\System32\dnsrslvr.dll
20:50:55.0910 3132 Dnscache - ok
20:50:55.0926 3132 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\Windows\System32\dot3svc.dll
20:50:55.0926 3132 dot3svc - ok
20:50:55.0942 3132 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\Windows\system32\dps.dll
20:50:55.0942 3132 DPS - ok
20:50:55.0973 3132 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
20:50:55.0973 3132 drmkaud - ok
20:50:56.0004 3132 DXGKrnl (39806cfeddcc55e686a49bccd2972f23) C:\Windows\System32\drivers\dxgkrnl.sys
20:50:56.0020 3132 DXGKrnl - ok
20:50:56.0035 3132 eamon (3b2e8f97b6869c29da023ee75bf585d5) C:\Windows\system32\DRIVERS\eamon.sys
20:50:56.0051 3132 eamon - ok
20:50:56.0066 3132 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
20:50:56.0066 3132 EapHost - ok
20:50:56.0191 3132 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
20:50:56.0222 3132 ebdrv - ok
20:50:56.0300 3132 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
20:50:56.0316 3132 EFS - ok
20:50:56.0347 3132 ehdrv (4fad054cbcaa296be7bd2cb77da9d9b4) C:\Windows\system32\DRIVERS\ehdrv.sys
20:50:56.0363 3132 ehdrv - ok
20:50:56.0425 3132 ehRecvr (3a74a6e33685662b125a3269b1f2114f) C:\Windows\ehome\ehRecvr.exe
20:50:56.0425 3132 ehRecvr - ok
20:50:56.0441 3132 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
20:50:56.0441 3132 ehSched - ok
20:50:56.0534 3132 EhttpSrv (a292d2284353af1350a6a3c20d231098) C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
20:50:56.0534 3132 EhttpSrv - ok
20:50:56.0581 3132 ekrn (8791f03854611deac8d2967c1c958a7e) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
20:50:56.0581 3132 ekrn - ok
20:50:56.0675 3132 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
20:50:56.0675 3132 elxstor - ok
20:50:56.0722 3132 epfw (63c9dfc27c401bff6188a1ca68d0abb0) C:\Windows\system32\DRIVERS\epfw.sys
20:50:56.0722 3132 epfw - ok
20:50:56.0737 3132 Epfwndis (3b47010b2425b69826004767e59045ba) C:\Windows\system32\DRIVERS\Epfwndis.sys
20:50:56.0737 3132 Epfwndis - ok
20:50:56.0784 3132 epfwwfp (b379d66406fe395e8adc557ef6074d17) C:\Windows\system32\DRIVERS\epfwwfp.sys
20:50:56.0784 3132 epfwwfp - ok
20:50:56.0800 3132 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
20:50:56.0800 3132 ErrDev - ok
20:50:56.0846 3132 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
20:50:56.0846 3132 EventSystem - ok
20:50:56.0924 3132 EverestDriver (898ad7d508f6ade242d94752e09f4152) C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt
20:50:56.0924 3132 EverestDriver - ok
20:50:56.0940 3132 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
20:50:56.0956 3132 exfat - ok
20:50:56.0987 3132 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
20:50:57.0002 3132 fastfat - ok
20:50:57.0034 3132 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\Windows\system32\fxssvc.exe
20:50:57.0034 3132 Fax - ok
20:50:57.0049 3132 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
20:50:57.0049 3132 fdc - ok
20:50:57.0065 3132 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
20:50:57.0065 3132 fdPHost - ok
20:50:57.0096 3132 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
20:50:57.0096 3132 FDResPub - ok
20:50:57.0147 3132 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
20:50:57.0149 3132 FileInfo - ok
20:50:57.0157 3132 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
20:50:57.0159 3132 Filetrace - ok
20:50:57.0169 3132 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
20:50:57.0169 3132 flpydisk - ok
20:50:57.0192 3132 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
20:50:57.0197 3132 FltMgr - ok
20:50:57.0249 3132 FontCache (b6512a85815fdc3d560c3705f5bdb93d) C:\Windows\system32\FntCache.dll
20:50:57.0252 3132 FontCache - ok
20:50:57.0312 3132 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:50:57.0314 3132 FontCache3.0.0.0 - ok
20:50:57.0334 3132 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
20:50:57.0337 3132 FsDepends - ok
20:50:57.0382 3132 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
20:50:57.0382 3132 Fs_Rec - ok
20:50:57.0418 3132 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
20:50:57.0418 3132 fvevol - ok
20:50:57.0433 3132 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:50:57.0433 3132 gagp30kx - ok
20:50:57.0449 3132 GGSAFERDriver - ok
20:50:57.0480 3132 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\Windows\System32\gpsvc.dll
20:50:57.0480 3132 gpsvc - ok
20:50:57.0496 3132 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
20:50:57.0496 3132 hcw85cir - ok
20:50:57.0543 3132 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
20:50:57.0543 3132 HdAudAddService - ok
20:50:57.0574 3132 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:50:57.0574 3132 HDAudBus - ok
20:50:57.0589 3132 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
20:50:57.0589 3132 HidBatt - ok
20:50:57.0605 3132 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
20:50:57.0605 3132 HidBth - ok
20:50:57.0621 3132 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
20:50:57.0621 3132 HidIr - ok
20:50:57.0636 3132 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
20:50:57.0652 3132 hidserv - ok
20:50:57.0667 3132 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
20:50:57.0667 3132 HidUsb - ok
20:50:57.0699 3132 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\Windows\system32\kmsvc.dll
20:50:57.0699 3132 hkmsvc - ok
20:50:57.0730 3132 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\Windows\system32\ListSvc.dll
20:50:57.0730 3132 HomeGroupListener - ok
20:50:57.0761 3132 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\Windows\system32\provsvc.dll
20:50:57.0761 3132 HomeGroupProvider - ok
20:50:57.0808 3132 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
20:50:57.0808 3132 HpSAMD - ok
20:50:57.0855 3132 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
20:50:57.0855 3132 HTTP - ok
20:50:57.0870 3132 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
20:50:57.0870 3132 hwpolicy - ok
20:50:57.0886 3132 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
20:50:57.0886 3132 i8042prt - ok
20:50:57.0917 3132 iaStor (f4037a3fedb92dd97c95f320766ea5c9) C:\Windows\system32\DRIVERS\iaStor.sys
20:50:57.0917 3132 iaStor - ok
20:50:57.0979 3132 IAStorDataMgrSvc (8fff9083252c16fe3960173722605e9e) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
20:50:57.0995 3132 IAStorDataMgrSvc - ok
20:50:58.0011 3132 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
20:50:58.0011 3132 iaStorV - ok
20:50:58.0056 3132 ICCWDT (8661b1d7706889463289a8660352f0f8) C:\Windows\system32\DRIVERS\ICCWDT.sys
20:50:58.0056 3132 ICCWDT - ok
20:50:58.0186 3132 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:50:58.0189 3132 IDriverT - ok
20:50:58.0279 3132 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:50:58.0291 3132 idsvc - ok
20:50:58.0301 3132 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
20:50:58.0317 3132 iirsp - ok
20:50:58.0364 3132 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\Windows\System32\ikeext.dll
20:50:58.0379 3132 IKEEXT - ok
20:50:58.0504 3132 IntcAzAudAddService (da6ee479071883d263e75be7a67a70b8) C:\Windows\system32\drivers\RTKVHDA.sys
20:50:58.0520 3132 IntcAzAudAddService - ok
20:50:58.0644 3132 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
20:50:58.0644 3132 intelide - ok
20:50:58.0676 3132 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
20:50:58.0676 3132 intelppm - ok
20:50:58.0722 3132 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
20:50:58.0722 3132 IPBusEnum - ok
20:50:58.0785 3132 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:50:58.0785 3132 IpFilterDriver - ok
20:50:58.0816 3132 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\Windows\System32\iphlpsvc.dll
20:50:58.0816 3132 iphlpsvc - ok
20:50:58.0847 3132 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:50:58.0847 3132 IPMIDRV - ok
20:50:58.0894 3132 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
20:50:58.0894 3132 IPNAT - ok
20:50:58.0910 3132 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
20:50:58.0910 3132 IRENUM - ok
20:50:58.0968 3132 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
20:50:58.0968 3132 isapnp - ok
20:50:59.0011 3132 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
20:50:59.0013 3132 iScsiPrt - ok
20:50:59.0198 3132 ISODrive (2f03ceb28307983f3b36216d35ffa5aa) C:\Program Files\UltraISO\drivers\ISODrive.sys
20:50:59.0201 3132 ISODrive - ok
20:50:59.0216 3132 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:50:59.0216 3132 kbdclass - ok
20:50:59.0247 3132 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
20:50:59.0247 3132 kbdhid - ok
20:50:59.0309 3132 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:50:59.0325 3132 KeyIso - ok
20:50:59.0341 3132 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
20:50:59.0341 3132 KSecDD - ok
20:50:59.0356 3132 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
20:50:59.0356 3132 KSecPkg - ok
20:50:59.0403 3132 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
20:50:59.0403 3132 KtmRm - ok
20:50:59.0465 3132 LanmanServer (bca92cb047a4326925ecef759dbaa233) C:\Windows\system32\srvsvc.dll
20:50:59.0465 3132 LanmanServer - ok
20:50:59.0497 3132 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\Windows\System32\wkssvc.dll
20:50:59.0497 3132 LanmanWorkstation - ok
20:50:59.0575 3132 lirsgt (f8a7212d0864ef5e9185fb95e6623f4d) C:\Windows\system32\DRIVERS\lirsgt.sys
20:50:59.0575 3132 lirsgt - ok
20:50:59.0575 3132 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
20:50:59.0575 3132 lltdio - ok
20:50:59.0606 3132 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
20:50:59.0621 3132 lltdsvc - ok
20:50:59.0637 3132 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
20:50:59.0637 3132 lmhosts - ok
20:50:59.0653 3132 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:50:59.0653 3132 LSI_FC - ok
20:50:59.0668 3132 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:50:59.0668 3132 LSI_SAS - ok
20:50:59.0668 3132 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:50:59.0668 3132 LSI_SAS2 - ok
20:50:59.0684 3132 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:50:59.0684 3132 LSI_SCSI - ok
20:50:59.0715 3132 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
20:50:59.0715 3132 luafv - ok
20:50:59.0746 3132 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\Windows\system32\Mcx2Svc.dll
20:50:59.0746 3132 Mcx2Svc - ok
20:50:59.0762 3132 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
20:50:59.0762 3132 megasas - ok
20:50:59.0777 3132 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
20:50:59.0777 3132 MegaSR - ok
20:50:59.0824 3132 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:50:59.0824 3132 MMCSS - ok
20:50:59.0855 3132 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
20:50:59.0855 3132 Modem - ok
20:50:59.0871 3132 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
20:50:59.0871 3132 monitor - ok
20:50:59.0871 3132 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
20:50:59.0871 3132 mouclass - ok
20:50:59.0887 3132 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
20:50:59.0887 3132 mouhid - ok
20:50:59.0902 3132 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
20:50:59.0902 3132 mountmgr - ok
20:50:59.0918 3132 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
20:50:59.0918 3132 mpio - ok
20:50:59.0949 3132 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
20:50:59.0949 3132 mpsdrv - ok
20:50:59.0980 3132 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\Windows\system32\mpssvc.dll
20:50:59.0996 3132 MpsSvc - ok
20:51:00.0011 3132 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
20:51:00.0011 3132 MRxDAV - ok
20:51:00.0043 3132 mrxsmb (f4a054be78af7f410129c4b64b07dc9b) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:51:00.0043 3132 mrxsmb - ok
20:51:00.0043 3132 mrxsmb10 (deffa295bd1895c6ed8e3078412ac60b) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:51:00.0058 3132 mrxsmb10 - ok
20:51:00.0058 3132 mrxsmb20 (24d76abe5dcad22f19d105f76fdf0ce1) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:51:00.0058 3132 mrxsmb20 - ok
20:51:00.0105 3132 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
20:51:00.0105 3132 msahci - ok
20:51:00.0121 3132 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
20:51:00.0121 3132 msdsm - ok
20:51:00.0172 3132 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
20:51:00.0172 3132 MSDTC - ok
20:51:00.0185 3132 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
20:51:00.0185 3132 Msfs - ok
20:51:00.0195 3132 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
20:51:00.0195 3132 mshidkmdf - ok
20:51:00.0242 3132 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
20:51:00.0242 3132 msisadrv - ok
20:51:00.0295 3132 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
20:51:00.0295 3132 MSiSCSI - ok
20:51:00.0297 3132 msiserver - ok
20:51:00.0332 3132 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
20:51:00.0335 3132 MSKSSRV - ok
20:51:00.0347 3132 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
20:51:00.0347 3132 MSPCLOCK - ok
20:51:00.0370 3132 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
20:51:00.0372 3132 MSPQM - ok
20:51:00.0422 3132 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
20:51:00.0425 3132 MsRPC - ok
20:51:00.0435 3132 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
20:51:00.0435 3132 mssmbios - ok
20:51:00.0442 3132 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
20:51:00.0442 3132 MSTEE - ok
20:51:00.0458 3132 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
20:51:00.0458 3132 MTConfig - ok
20:51:00.0474 3132 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
20:51:00.0474 3132 Mup - ok
20:51:00.0520 3132 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\Windows\system32\qagentRT.dll
20:51:00.0520 3132 napagent - ok
20:51:00.0583 3132 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
20:51:00.0598 3132 NativeWifiP - ok
20:51:00.0630 3132 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
20:51:00.0645 3132 NDIS - ok
20:51:00.0661 3132 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
20:51:00.0661 3132 NdisCap - ok
20:51:00.0708 3132 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
20:51:00.0708 3132 NdisTapi - ok
20:51:00.0723 3132 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
20:51:00.0723 3132 Ndisuio - ok
20:51:00.0739 3132 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
20:51:00.0739 3132 NdisWan - ok
20:51:00.0770 3132 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
20:51:00.0770 3132 NDProxy - ok
20:51:00.0786 3132 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
20:51:00.0786 3132 NetBIOS - ok
20:51:00.0801 3132 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
20:51:00.0801 3132 NetBT - ok
20:51:00.0832 3132 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:00.0832 3132 Netlogon - ok
20:51:00.0924 3132 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
20:51:00.0924 3132 Netman - ok
20:51:01.0059 3132 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0062 3132 NetMsmqActivator - ok
20:51:01.0064 3132 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0064 3132 NetPipeActivator - ok
20:51:01.0079 3132 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
20:51:01.0082 3132 netprofm - ok
20:51:01.0127 3132 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0127 3132 NetTcpActivator - ok
20:51:01.0132 3132 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:51:01.0132 3132 NetTcpPortSharing - ok
20:51:01.0162 3132 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
20:51:01.0164 3132 nfrd960 - ok
20:51:01.0202 3132 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\Windows\System32\nlasvc.dll
20:51:01.0207 3132 NlaSvc - ok
20:51:01.0267 3132 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\Windows\system32\drivers\npf.sys
20:51:01.0269 3132 NPF - ok
20:51:01.0277 3132 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
20:51:01.0279 3132 Npfs - ok
20:51:01.0297 3132 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
20:51:01.0299 3132 nsi - ok
20:51:01.0314 3132 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
20:51:01.0314 3132 nsiproxy - ok
20:51:01.0360 3132 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
20:51:01.0375 3132 Ntfs - ok
20:51:01.0469 3132 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
20:51:01.0469 3132 Null - ok
20:51:01.0485 3132 nusb3hub (ff6d3248e791e7a897bd8ea2fbacbcff) C:\Windows\system32\DRIVERS\nusb3hub.sys
20:51:01.0500 3132 nusb3hub - ok
20:51:01.0531 3132 nusb3xhc (b5eb7e275f2967026c6031897624bc51) C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:51:01.0531 3132 nusb3xhc - ok
20:51:01.0594 3132 NVHDA (3d7fb57354703809b5f0c23287fac1d6) C:\Windows\system32\drivers\nvhda32v.sys
20:51:01.0594 3132 NVHDA - ok
20:51:01.0890 3132 nvlddmkm (e891b3979f0cf2740c1b073f834221fe) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:51:01.0968 3132 nvlddmkm - ok
20:51:02.0031 3132 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
20:51:02.0031 3132 nvraid - ok
20:51:02.0046 3132 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
20:51:02.0049 3132 nvstor - ok
20:51:02.0101 3132 NVSvc (ae2de8e165dcb93a66b21748e6f913df) C:\Windows\system32\nvvsvc.exe
20:51:02.0106 3132 NVSvc - ok
20:51:02.0274 3132 nvUpdatusService (c78581c14699c46fe0f0817416383134) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:51:02.0290 3132 nvUpdatusService - ok
20:51:02.0321 3132 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
20:51:02.0321 3132 nv_agp - ok
20:51:02.0321 3132 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
20:51:02.0321 3132 ohci1394 - ok
20:51:02.0415 3132 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:51:02.0415 3132 ose - ok
20:51:02.0637 3132 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:51:02.0670 3132 osppsvc - ok
20:51:02.0732 3132 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:51:02.0735 3132 p2pimsvc - ok
20:51:02.0767 3132 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
20:51:02.0772 3132 p2psvc - ok
20:51:02.0815 3132 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
20:51:02.0817 3132 Parport - ok
20:51:02.0827 3132 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
20:51:02.0827 3132 partmgr - ok
20:51:02.0835 3132 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
20:51:02.0837 3132 Parvdm - ok
20:51:02.0865 3132 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
20:51:02.0867 3132 PcaSvc - ok
20:51:02.0882 3132 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
20:51:02.0885 3132 pci - ok
20:51:02.0900 3132 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
20:51:02.0902 3132 pciide - ok
20:51:02.0917 3132 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
20:51:02.0920 3132 pcmcia - ok
20:51:02.0937 3132 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
20:51:02.0937 3132 pcw - ok
20:51:02.0967 3132 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
20:51:02.0972 3132 PEAUTH - ok
20:51:03.0037 3132 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
20:51:03.0045 3132 PeerDistSvc - ok
20:51:03.0209 3132 pla (9c1bff7910c89a1d12e57343475840cb) C:\Windows\system32\pla.dll
20:51:03.0240 3132 pla - ok
20:51:03.0302 3132 PlugPlay (2cc2008f1296968fba162ed9f9afe328) C:\Windows\system32\umpnpmgr.dll
20:51:03.0302 3132 PlugPlay - ok
20:51:03.0365 3132 PnkBstrA (831883b107684301f48ace752c963984) C:\Windows\system32\PnkBstrA.exe
20:51:03.0365 3132 PnkBstrA - ok
20:51:03.0396 3132 PnkBstrB (e24106a5eaecddff00b25497049dd65f) C:\Windows\system32\PnkBstrB.exe
20:51:03.0412 3132 PnkBstrB - ok
20:51:03.0427 3132 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
20:51:03.0427 3132 PNRPAutoReg - ok
20:51:03.0443 3132 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
20:51:03.0443 3132 PNRPsvc - ok
20:51:03.0474 3132 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\Windows\System32\ipsecsvc.dll
20:51:03.0490 3132 PolicyAgent - ok
20:51:03.0505 3132 Power (dbff83f709a91049621c1d35dd45c92c) C:\Windows\system32\umpo.dll
20:51:03.0505 3132 Power - ok
20:51:03.0552 3132 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
20:51:03.0568 3132 PptpMiniport - ok
20:51:03.0568 3132 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
20:51:03.0568 3132 Processor - ok
20:51:03.0630 3132 ProfSvc (630cf26f0227498b7d5a92b12548960f) C:\Windows\system32\profsvc.dll
20:51:03.0630 3132 ProfSvc - ok
20:51:03.0661 3132 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:03.0677 3132 ProtectedStorage - ok
20:51:03.0708 3132 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
20:51:03.0708 3132 Psched - ok
20:51:03.0786 3132 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
20:51:03.0802 3132 ql2300 - ok
20:51:03.0833 3132 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
20:51:03.0833 3132 ql40xx - ok
20:51:03.0880 3132 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
20:51:03.0880 3132 QWAVE - ok
20:51:03.0895 3132 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
20:51:03.0895 3132 QWAVEdrv - ok
20:51:03.0911 3132 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
20:51:03.0911 3132 RasAcd - ok
20:51:03.0973 3132 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:51:03.0973 3132 RasAgileVpn - ok
20:51:04.0004 3132 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
20:51:04.0004 3132 RasAuto - ok
20:51:04.0004 3132 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:51:04.0020 3132 Rasl2tp - ok
20:51:04.0051 3132 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\Windows\System32\rasmans.dll
20:51:04.0067 3132 RasMan - ok
20:51:04.0114 3132 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
20:51:04.0116 3132 RasPppoe - ok
20:51:04.0126 3132 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
20:51:04.0126 3132 RasSstp - ok
20:51:04.0149 3132 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
20:51:04.0154 3132 rdbss - ok
20:51:04.0161 3132 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
20:51:04.0164 3132 rdpbus - ok
20:51:04.0169 3132 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:51:04.0169 3132 RDPCDD - ok
20:51:04.0194 3132 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
20:51:04.0194 3132 RDPDR - ok
20:51:04.0211 3132 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
20:51:04.0211 3132 RDPENCDD - ok
20:51:04.0219 3132 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
20:51:04.0219 3132 RDPREFMP - ok
20:51:04.0229 3132 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
20:51:04.0231 3132 RDPWD - ok
20:51:04.0251 3132 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
20:51:04.0254 3132 rdyboost - ok
20:51:04.0271 3132 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
20:51:04.0274 3132 RemoteAccess - ok
20:51:04.0284 3132 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
20:51:04.0286 3132 RemoteRegistry - ok
20:51:04.0351 3132 rpcapd (b60f58f175de20a6739194e85b035178) C:\Program Files\WinPcap\rpcapd.exe
20:51:04.0354 3132 rpcapd - ok
20:51:04.0379 3132 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
20:51:04.0381 3132 RpcEptMapper - ok
20:51:04.0404 3132 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
20:51:04.0404 3132 RpcLocator - ok
20:51:04.0420 3132 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\Windows\system32\rpcss.dll
20:51:04.0420 3132 RpcSs - ok
20:51:04.0467 3132 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
20:51:04.0467 3132 rspndr - ok
20:51:04.0514 3132 RTL8167 (9c5da0bc3301dfca399056fd9adca413) C:\Windows\system32\DRIVERS\Rt86win7.sys
20:51:04.0514 3132 RTL8167 - ok
20:51:04.0545 3132 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
20:51:04.0545 3132 s3cap - ok
20:51:04.0576 3132 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:04.0576 3132 SamSs - ok
20:51:04.0638 3132 SbFw (9c9bcc79aef0aa97f16766c498002d36) C:\Windows\system32\drivers\SbFw.sys
20:51:04.0638 3132 SbFw - ok
20:51:04.0701 3132 SBFWIMCL (f27b38d70b7621378161d6f48be04d2c) C:\Windows\system32\DRIVERS\sbfwim.sys
20:51:04.0701 3132 SBFWIMCL - ok
20:51:04.0716 3132 SBFWIMCLMP (f27b38d70b7621378161d6f48be04d2c) C:\Windows\system32\DRIVERS\SBFWIM.sys
20:51:04.0716 3132 SBFWIMCLMP - ok
20:51:04.0748 3132 sbhips (53e5e7dc26bb920b97f258bbd52abfdc) C:\Windows\system32\drivers\sbhips.sys
20:51:04.0748 3132 sbhips - ok
20:51:04.0779 3132 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
20:51:04.0794 3132 sbp2port - ok
20:51:04.0794 3132 SBRE - ok
20:51:04.0826 3132 SbTis (6468e2973e04525decc105947ddd0d34) C:\Windows\system32\drivers\sbtis.sys
20:51:04.0826 3132 SbTis - ok
20:51:04.0841 3132 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
20:51:04.0857 3132 SCardSvr - ok
20:51:04.0857 3132 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
20:51:04.0857 3132 scfilter - ok
20:51:04.0888 3132 Schedule (3e8b0c453e25613a1f59762a5c42aa75) C:\Windows\system32\schedsvc.dll
20:51:04.0888 3132 Schedule - ok
20:51:04.0919 3132 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\Windows\System32\certprop.dll
20:51:04.0919 3132 SCPolicySvc - ok
20:51:04.0935 3132 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\Windows\System32\SDRSVC.dll
20:51:04.0935 3132 SDRSVC - ok
20:51:04.0966 3132 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:51:04.0966 3132 secdrv - ok
20:51:04.0982 3132 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
20:51:04.0982 3132 seclogon - ok
20:51:05.0046 3132 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
20:51:05.0046 3132 SENS - ok
20:51:05.0061 3132 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
20:51:05.0063 3132 SensrSvc - ok
20:51:05.0086 3132 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
20:51:05.0086 3132 Serenum - ok
20:51:05.0106 3132 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
20:51:05.0106 3132 Serial - ok
20:51:05.0128 3132 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
20:51:05.0128 3132 sermouse - ok
20:51:05.0153 3132 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\Windows\system32\sessenv.dll
20:51:05.0156 3132 SessionEnv - ok
20:51:05.0163 3132 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
20:51:05.0163 3132 sffdisk - ok
20:51:05.0173 3132 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:51:05.0173 3132 sffp_mmc - ok
20:51:05.0198 3132 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
20:51:05.0198 3132 sffp_sd - ok
20:51:05.0203 3132 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
20:51:05.0203 3132 sfloppy - ok
20:51:05.0246 3132 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
20:51:05.0251 3132 SharedAccess - ok
20:51:05.0283 3132 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\Windows\System32\shsvcs.dll
20:51:05.0288 3132 ShellHWDetection - ok
20:51:05.0303 3132 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
20:51:05.0303 3132 sisagp - ok
20:51:05.0319 3132 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:51:05.0319 3132 SiSRaid2 - ok
20:51:05.0319 3132 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
20:51:05.0319 3132 SiSRaid4 - ok
20:51:05.0335 3132 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
20:51:05.0335 3132 Smb - ok
20:51:05.0413 3132 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
20:51:05.0413 3132 SNMPTRAP - ok
20:51:05.0444 3132 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
20:51:05.0444 3132 spldr - ok
20:51:05.0537 3132 Spooler (49b6dd6ab3715b7a67965f17194e98a9) C:\Windows\System32\spoolsv.exe
20:51:05.0537 3132 Spooler - ok
20:51:05.0631 3132 sppsvc (4c287f9069fedbd791178876ee9de536) C:\Windows\system32\sppsvc.exe
20:51:05.0647 3132 sppsvc - ok
20:51:05.0725 3132 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\Windows\system32\sppuinotify.dll
20:51:05.0725 3132 sppuinotify - ok
20:51:05.0803 3132 sptd (a80cd850d69d996c832bea37e3a6aa1e) C:\Windows\system32\Drivers\sptd.sys
20:51:05.0803 3132 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a80cd850d69d996c832bea37e3a6aa1e
20:51:05.0803 3132 sptd ( LockedFile.Multi.Generic ) - warning
20:51:05.0803 3132 sptd - detected LockedFile.Multi.Generic (1)
20:51:05.0834 3132 srv (2ba4ebc7dfba845a1edbe1f75913be33) C:\Windows\system32\DRIVERS\srv.sys
20:51:05.0834 3132 srv - ok
20:51:05.0881 3132 srv2 (dce7e10feaabd4cae95948b3de5340bb) C:\Windows\system32\DRIVERS\srv2.sys
20:51:05.0881 3132 srv2 - ok
20:51:05.0896 3132 srvnet (b5665baa2120b8a54e22e9cd07c05106) C:\Windows\system32\DRIVERS\srvnet.sys
20:51:05.0896 3132 srvnet - ok
20:51:05.0927 3132 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
20:51:05.0927 3132 SSDPSRV - ok
20:51:05.0958 3132 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
20:51:05.0960 3132 SstpSvc - ok
20:51:06.0033 3132 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
20:51:06.0033 3132 StarWindServiceAE - ok
20:51:06.0160 3132 Stereo Service (fc0a58529a02b1eed55ddc58696b7908) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:51:06.0163 3132 Stereo Service - ok
20:51:06.0180 3132 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
20:51:06.0180 3132 stexstor - ok
20:51:06.0249 3132 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\Windows\System32\wiaservc.dll
20:51:06.0265 3132 StiSvc - ok
20:51:06.0296 3132 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
20:51:06.0296 3132 storflt - ok
20:51:06.0327 3132 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
20:51:06.0327 3132 storvsc - ok
20:51:06.0374 3132 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
20:51:06.0374 3132 swenum - ok
20:51:06.0421 3132 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
20:51:06.0421 3132 swprv - ok
20:51:06.0468 3132 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\Windows\system32\sysmain.dll
20:51:06.0483 3132 SysMain - ok
20:51:06.0514 3132 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\Windows\System32\TabSvc.dll
20:51:06.0514 3132 TabletInputService - ok
20:51:06.0546 3132 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\Windows\System32\tapisrv.dll
20:51:06.0561 3132 TapiSrv - ok
20:51:06.0608 3132 TBPanel (04e1c782cf14b7282ebc633b0fd3ed16) C:\Windows\system32\drivers\TBPanel.sys
20:51:06.0608 3132 TBPanel - ok
20:51:06.0655 3132 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
20:51:06.0655 3132 TBS - ok
20:51:06.0702 3132 Tcpip (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\drivers\tcpip.sys
20:51:06.0717 3132 Tcpip - ok
20:51:06.0826 3132 TCPIP6 (2cc3d75488abd3ec628bbb9a4fc84efc) C:\Windows\system32\DRIVERS\tcpip.sys
20:51:06.0826 3132 TCPIP6 - ok
20:51:06.0858 3132 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
20:51:06.0858 3132 tcpipreg - ok
20:51:06.0873 3132 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
20:51:06.0873 3132 TDPIPE - ok
20:51:06.0889 3132 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
20:51:06.0889 3132 TDTCP - ok
20:51:06.0904 3132 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
20:51:06.0904 3132 tdx - ok
20:51:06.0920 3132 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
20:51:06.0920 3132 TermDD - ok
20:51:06.0936 3132 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\Windows\System32\termsrv.dll
20:51:06.0951 3132 TermService - ok
20:51:06.0951 3132 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
20:51:06.0951 3132 Themes - ok
20:51:06.0998 3132 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
20:51:06.0998 3132 THREADORDER - ok
20:51:07.0014 3132 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
20:51:07.0029 3132 TrkWks - ok
20:51:07.0092 3132 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\Windows\servicing\TrustedInstaller.exe
20:51:07.0092 3132 TrustedInstaller - ok
20:51:07.0107 3132 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:51:07.0107 3132 tssecsrv - ok
20:51:07.0154 3132 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
20:51:07.0154 3132 tunnel - ok
20:51:07.0170 3132 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
20:51:07.0172 3132 uagp35 - ok
20:51:07.0205 3132 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
20:51:07.0210 3132 udfs - ok
20:51:07.0240 3132 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
20:51:07.0242 3132 UI0Detect - ok
20:51:07.0277 3132 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
20:51:07.0277 3132 uliagpkx - ok
20:51:07.0312 3132 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
20:51:07.0315 3132 umbus - ok
20:51:07.0340 3132 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
20:51:07.0340 3132 UmPass - ok
20:51:07.0417 3132 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\Windows\System32\umrdp.dll
20:51:07.0422 3132 UmRdpService - ok
20:51:07.0442 3132 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
20:51:07.0445 3132 upnphost - ok
20:51:07.0476 3132 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
20:51:07.0476 3132 usbccgp - ok
20:51:07.0476 3132 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
20:51:07.0476 3132 usbcir - ok
20:51:07.0538 3132 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
20:51:07.0538 3132 usbehci - ok
20:51:07.0569 3132 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
20:51:07.0569 3132 usbhub - ok
20:51:07.0585 3132 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
20:51:07.0585 3132 usbohci - ok
20:51:07.0632 3132 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
20:51:07.0632 3132 usbprint - ok
20:51:07.0710 3132 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
20:51:07.0710 3132 usbscan - ok
20:51:07.0710 3132 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:51:07.0710 3132 USBSTOR - ok
20:51:07.0725 3132 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
20:51:07.0725 3132 usbuhci - ok
20:51:07.0757 3132 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
20:51:07.0757 3132 UxSms - ok
20:51:07.0803 3132 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
20:51:07.0803 3132 VaultSvc - ok
20:51:07.0803 3132 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
20:51:07.0819 3132 vdrvroot - ok
20:51:07.0835 3132 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\Windows\System32\vds.exe
20:51:07.0850 3132 vds - ok
20:51:07.0866 3132 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
20:51:07.0866 3132 vga - ok
20:51:07.0881 3132 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
20:51:07.0881 3132 VgaSave - ok
20:51:07.0897 3132 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
20:51:07.0897 3132 vhdmp - ok
20:51:07.0897 3132 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
20:51:07.0897 3132 viaagp - ok
20:51:07.0913 3132 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
20:51:07.0913 3132 ViaC7 - ok
20:51:07.0928 3132 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
20:51:07.0928 3132 viaide - ok
20:51:07.0975 3132 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
20:51:07.0975 3132 vmbus - ok
20:51:07.0991 3132 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
20:51:07.0991 3132 VMBusHID - ok
20:51:08.0006 3132 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
20:51:08.0006 3132 volmgr - ok
20:51:08.0069 3132 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
20:51:08.0069 3132 volmgrx - ok
20:51:08.0097 3132 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
20:51:08.0099 3132 volsnap - ok
20:51:08.0122 3132 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
20:51:08.0124 3132 vsmraid - ok
20:51:08.0172 3132 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\Windows\system32\vssvc.exe
20:51:08.0177 3132 VSS - ok
20:51:08.0187 3132 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
20:51:08.0187 3132 vwifibus - ok
20:51:08.0234 3132 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
20:51:08.0239 3132 W32Time - ok
20:51:08.0257 3132 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
20:51:08.0257 3132 WacomPen - ok
20:51:08.0279 3132 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
20:51:08.0282 3132 WANARP - ok
20:51:08.0284 3132 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
20:51:08.0284 3132 Wanarpv6 - ok
20:51:08.0344 3132 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\Windows\system32\wbengine.exe
20:51:08.0357 3132 wbengine - ok
20:51:08.0362 3132 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
20:51:08.0377 3132 WbioSrvc - ok
20:51:08.0393 3132 wcncsvc (d0f88aa11ee1a62bcc6d6a8a7783ca11) C:\Windows\System32\wcncsvc.dll
20:51:08.0393 3132 wcncsvc - ok
20:51:08.0408 3132 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
20:51:08.0408 3132 WcsPlugInService - ok
20:51:08.0440 3132 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
20:51:08.0440 3132 Wd - ok
20:51:08.0486 3132 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
20:51:08.0502 3132 Wdf01000 - ok
20:51:08.0518 3132 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:51:08.0518 3132 WdiServiceHost - ok
20:51:08.0518 3132 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
20:51:08.0518 3132 WdiSystemHost - ok
20:51:08.0533 3132 WebClient (d87c7d2c517f82a5ab7a73e203063d9e) C:\Windows\System32\webclnt.dll
20:51:08.0549 3132 WebClient - ok
20:51:08.0549 3132 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
20:51:08.0549 3132 Wecsvc - ok
20:51:08.0564 3132 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
20:51:08.0564 3132 wercplsupport - ok
20:51:08.0596 3132 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
20:51:08.0596 3132 WerSvc - ok
20:51:08.0596 3132 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
20:51:08.0596 3132 WfpLwf - ok
20:51:08.0611 3132 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
20:51:08.0611 3132 WIMMount - ok
20:51:08.0689 3132 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
20:51:08.0689 3132 WinDefend - ok
20:51:08.0705 3132 WinHttpAutoProxySvc - ok
20:51:08.0767 3132 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
20:51:08.0783 3132 Winmgmt - ok
20:51:08.0861 3132 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\Windows\system32\WsmSvc.dll
20:51:08.0876 3132 WinRM - ok
20:51:08.0923 3132 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
20:51:08.0923 3132 WinUsb - ok
20:51:08.0986 3132 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
20:51:08.0986 3132 Wlansvc - ok
20:51:09.0169 3132 wlidsvc (5144ae67d60ec653f97ddf3feed29e77) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:51:09.0179 3132 wlidsvc - ok
20:51:09.0236 3132 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
20:51:09.0236 3132 WmiAcpi - ok
20:51:09.0256 3132 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
20:51:09.0259 3132 wmiApSrv - ok
20:51:09.0307 3132 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:51:09.0323 3132 WMPNetworkSvc - ok
20:51:09.0354 3132 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
20:51:09.0354 3132 WPCSvc - ok
20:51:09.0370 3132 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\Windows\system32\wpdbusenum.dll
20:51:09.0370 3132 WPDBusEnum - ok
20:51:09.0401 3132 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
20:51:09.0401 3132 ws2ifsl - ok
20:51:09.0417 3132 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
20:51:09.0417 3132 wscsvc - ok
20:51:09.0417 3132 WSearch - ok
20:51:09.0479 3132 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\Windows\system32\wuaueng.dll
20:51:09.0510 3132 wuauserv - ok
20:51:09.0541 3132 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
20:51:09.0541 3132 WudfPf - ok
20:51:09.0557 3132 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:51:09.0557 3132 WUDFRd - ok
20:51:09.0588 3132 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\Windows\System32\WUDFSvc.dll
20:51:09.0604 3132 wudfsvc - ok
20:51:09.0624 3132 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
20:51:09.0629 3132 WwanSvc - ok
20:51:09.0676 3132 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
20:51:09.0779 3132 \Device\Harddisk0\DR0 - ok
20:51:09.0781 3132 Boot (0x1200) (341067cffb1e1e2373adccfcf49b7326) \Device\Harddisk0\DR0\Partition0
20:51:09.0784 3132 \Device\Harddisk0\DR0\Partition0 - ok
20:51:09.0796 3132 Boot (0x1200) (e13c978aed0dcfdbd8cdd4add1244b24) \Device\Harddisk0\DR0\Partition1
20:51:09.0799 3132 \Device\Harddisk0\DR0\Partition1 - ok
20:51:09.0819 3132 Boot (0x1200) (7bbb6ecc5fdb8ae54b7194d3785bab5c) \Device\Harddisk0\DR0\Partition2
20:51:09.0819 3132 \Device\Harddisk0\DR0\Partition2 - ok
20:51:09.0834 3132 Boot (0x1200) (320e3aa04c77fa8af42a1d255211ebb1) \Device\Harddisk0\DR0\Partition3
20:51:09.0834 3132 \Device\Harddisk0\DR0\Partition3 - ok
20:51:09.0836 3132 ============================================================
20:51:09.0836 3132 Scan finished
20:51:09.0836 3132 ============================================================
20:51:09.0844 5148 Detected object count: 1
20:51:09.0844 5148 Actual detected object count: 1
21:17:16.0134 5148 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:17:16.0134 5148 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
To je driver od Daemonu, to je v pořádku.
Zazálohujte si důležitá data, pro jistotu
Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
-souhlaste s instalací konzole pro zotavení
- ComboFix je třeba spustit pod účtem s právy administrátora
- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna
- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem
Zazálohujte si důležitá data, pro jistotu Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe -souhlaste s instalací konzole pro zotavení
- ComboFix je třeba spustit pod účtem s právy administrátora
- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary
- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano
- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna
- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
Takže som použil ComboFix, počítač mi zatiľ našťastie neexplodoval 
a vyhodilo mi to tento log prosím:
ComboFix 12-07-18.04 - Orion . 07. 2012 22:34:25.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.421.1029.18.3572.2516 [GMT 2:00]
Running from: c:\users\Orion\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: ESET personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
* Resident AV is active
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\BrowserCompanion
c:\program files\BrowserCompanion\BCHelper.exe
c:\program files\BrowserCompanion\blabbers-ch.crx
c:\program files\BrowserCompanion\logo.ico
c:\program files\BrowserCompanion\sqlite3.dll
c:\users\Orion\AppData\Local\.#
c:\users\Orion\AppData\Local\TempDIR
c:\users\Orion\AppData\Local\TempDIR\BetterInstaller.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\tmp9A7A.tmp
c:\windows\system32\tmp9A7B.tmp
c:\windows\system32\tmpDF68.tmp
c:\windows\system32\tmpDF89.tmp
c:\windows\Tasks\At1.job
c:\windows\Tasks\At2.job
c:\windows\Tasks\At3.job
c:\windows\Tasks\At4.job
.
.
((((((((((((((((((((((((( Files Created from 2012-06-18 to 2012-07-18 )))))))))))))))))))))))))))))))
.
.
2012-07-18 15:57 . 2012-07-18 15:57 -------- d-----w- c:\users\Orion\AppData\Local\ElevatedDiagnostics
2012-07-18 07:01 . 2012-07-18 07:20 -------- d-----w- c:\program files\trend micro
2012-07-18 07:01 . 2012-07-18 07:03 -------- d-----w- C:\rsit
2012-07-17 07:27 . 2012-07-17 07:27 -------- d-----w- c:\program files\NirSoft
2012-07-15 08:09 . 2012-07-15 08:50 -------- d-----w- c:\program files\Rockstar Games
2012-07-15 08:09 . 2012-07-15 08:09 -------- d-----w- c:\programdata\Rockstar Games
2012-07-08 21:57 . 2012-07-08 21:57 -------- d-----w- c:\users\Orion\AppData\Local\LucasArts
2012-07-08 20:37 . 2012-07-08 20:37 -------- d-----w- c:\program files\LucasArts
2012-07-08 14:54 . 2012-07-08 14:54 -------- d-----w- c:\program files\Apple Software Update
2012-07-08 14:43 . 2012-07-08 14:43 -------- d-----w- c:\program files\Common Files\xing shared
2012-07-08 14:41 . 2012-07-08 14:41 -------- d-----w- c:\program files\Common Files\Java
2012-07-08 14:41 . 2012-07-08 14:41 -------- d-----w- c:\program files\Oracle
2012-07-08 14:40 . 2012-05-04 17:29 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-08 14:32 . 2012-07-08 14:32 -------- d-----w- c:\users\Orion\AppData\Roaming\RealNetworks
2012-07-06 17:32 . 2012-07-06 17:32 -------- d-----w- c:\program files\YourFileDownloader
2012-07-06 17:32 . 2012-07-06 17:32 -------- d-----w- c:\users\Orion\AppData\Roaming\YourFileDownloader
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-13 20:41 . 2012-04-11 12:47 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-13 20:41 . 2011-07-02 07:48 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-08 14:43 . 2011-02-02 13:31 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-07-08 14:43 . 2011-02-02 13:31 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-05-04 17:29 . 2011-04-07 12:36 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\UC.PIF
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\RAR.PIF
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\LHA.PIF
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\ARJ.PIF
2011-06-04 19:40 164352 --sh--w- c:\windows\System32\SC.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GAINWARD"="c:\program files\EXPERTool\TBPanel.exe" [2012-04-11 2040136]
"OscarEditor"="c:\program files\Anti-Vibrate Oscar Editor\OscarEditor.exe" [2010-07-22 2636800]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-09-18 205976]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
"TBPanel"="c:\program files\EXPERTool\TBPanel.exe" [2012-04-11 2040136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-02 9808488]
"ASUS ShellProcess Execute"="c:\program files\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe" [2010-09-28 252544]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 113288]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-04-09 2029640]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2012-07-08 296096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena\safedrv.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Service;c:\windows\system32\DRIVERS\sbfwim.sys [x]
R3 sbhips;sbhips;c:\windows\system32\drivers\sbhips.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [x]
S1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [x]
S2 asComSvc;ASUS Com Service;c:\program files\ASUS\AXSP\1.00.13\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files\ASUS\AAHM\1.00.13\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
S3 SBFWIMCLMP;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\DRIVERS\SBFWIM.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 25719806
*Deregistered* - 25719806
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-11 20:41]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = hxxp://www.bigseekpro.com/bsprpc/{2055BAEE-42F ... D227356B16}
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{0b7430e9-e659-4555-ac67-be3340aaa519} - (no file)
BHO-{54055123-4E50-0B78-308C-669837415A51} - (no file)
Toolbar-10 - (no file)
WebBrowser-{0B7430E9-E659-4555-AC67-BE3340AAA519} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-4060915618-3275642364-3586104651-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:e6,7d,62,b9,37,5d,3a,46,67,29,c6,f3,e2,2f,b9,41,c0,f0,03,36,45,7e,ca,
03,54,a1,b6,40,00,0c,fc,a5,48,0a,85,58,28,05,ff,99,22,1a,2a,4e,66,1d,c6,07,\
"??"=hex:f7,26,36,5f,49,0b,36,91,59,2b,26,14,1f,2f,5b,f3
.
[HKEY_USERS\S-1-5-21-4060915618-3275642364-3586104651-1000\Software\SecuROM\License information*]
"datasecu"=hex:dd,81,22,44,0a,8d,aa,56,0e,e6,9b,d6,a8,ac,e7,30,85,78,40,87,3c,
67,bb,c6,af,3e,d2,eb,18,ee,45,5f,89,f2,e1,54,3f,92,b2,97,5d,3c,b0,7a,77,6d,\
"rkeysecu"=hex:46,10,31,81,e7,66,c6,3c,8d,30,71,5f,f2,d2,56,94
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-07-18 22:40:06
ComboFix-quarantined-files.txt 2012-07-18 20:40
.
Pre-Run: Volných bajtů: 144 665 239 552
Post-Run: Volných bajtů: 146 326 224 896
.
- - End Of File - - 0B4046145CBE5FBAB7C1E75F1CB89788
a vyhodilo mi to tento log prosím:ComboFix 12-07-18.04 - Orion . 07. 2012 22:34:25.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.421.1029.18.3572.2516 [GMT 2:00]
Running from: c:\users\Orion\Desktop\ComboFix.exe
AV: ESET Smart Security 4.0 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: ESET personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.0 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
* Resident AV is active
.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\BrowserCompanion
c:\program files\BrowserCompanion\BCHelper.exe
c:\program files\BrowserCompanion\blabbers-ch.crx
c:\program files\BrowserCompanion\logo.ico
c:\program files\BrowserCompanion\sqlite3.dll
c:\users\Orion\AppData\Local\.#
c:\users\Orion\AppData\Local\TempDIR
c:\users\Orion\AppData\Local\TempDIR\BetterInstaller.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\tmp9A7A.tmp
c:\windows\system32\tmp9A7B.tmp
c:\windows\system32\tmpDF68.tmp
c:\windows\system32\tmpDF89.tmp
c:\windows\Tasks\At1.job
c:\windows\Tasks\At2.job
c:\windows\Tasks\At3.job
c:\windows\Tasks\At4.job
.
.
((((((((((((((((((((((((( Files Created from 2012-06-18 to 2012-07-18 )))))))))))))))))))))))))))))))
.
.
2012-07-18 15:57 . 2012-07-18 15:57 -------- d-----w- c:\users\Orion\AppData\Local\ElevatedDiagnostics
2012-07-18 07:01 . 2012-07-18 07:20 -------- d-----w- c:\program files\trend micro
2012-07-18 07:01 . 2012-07-18 07:03 -------- d-----w- C:\rsit
2012-07-17 07:27 . 2012-07-17 07:27 -------- d-----w- c:\program files\NirSoft
2012-07-15 08:09 . 2012-07-15 08:50 -------- d-----w- c:\program files\Rockstar Games
2012-07-15 08:09 . 2012-07-15 08:09 -------- d-----w- c:\programdata\Rockstar Games
2012-07-08 21:57 . 2012-07-08 21:57 -------- d-----w- c:\users\Orion\AppData\Local\LucasArts
2012-07-08 20:37 . 2012-07-08 20:37 -------- d-----w- c:\program files\LucasArts
2012-07-08 14:54 . 2012-07-08 14:54 -------- d-----w- c:\program files\Apple Software Update
2012-07-08 14:43 . 2012-07-08 14:43 -------- d-----w- c:\program files\Common Files\xing shared
2012-07-08 14:41 . 2012-07-08 14:41 -------- d-----w- c:\program files\Common Files\Java
2012-07-08 14:41 . 2012-07-08 14:41 -------- d-----w- c:\program files\Oracle
2012-07-08 14:40 . 2012-05-04 17:29 772504 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-07-08 14:32 . 2012-07-08 14:32 -------- d-----w- c:\users\Orion\AppData\Roaming\RealNetworks
2012-07-06 17:32 . 2012-07-06 17:32 -------- d-----w- c:\program files\YourFileDownloader
2012-07-06 17:32 . 2012-07-06 17:32 -------- d-----w- c:\users\Orion\AppData\Roaming\YourFileDownloader
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-13 20:41 . 2012-04-11 12:47 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-13 20:41 . 2011-07-02 07:48 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-08 14:43 . 2011-02-02 13:31 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-07-08 14:43 . 2011-02-02 13:31 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-05-04 17:29 . 2011-04-07 12:36 687504 ----a-w- c:\windows\system32\deployJava1.dll
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\UC.PIF
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\RAR.PIF
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\LHA.PIF
2012-04-27 06:00 . 2012-05-12 14:21 545 ----a-w- c:\windows\ARJ.PIF
2011-06-04 19:40 164352 --sh--w- c:\windows\System32\SC.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GAINWARD"="c:\program files\EXPERTool\TBPanel.exe" [2012-04-11 2040136]
"OscarEditor"="c:\program files\Anti-Vibrate Oscar Editor\OscarEditor.exe" [2010-07-22 2636800]
"AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-09-18 205976]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
"TBPanel"="c:\program files\EXPERTool\TBPanel.exe" [2012-04-11 2040136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-11-02 9808488]
"ASUS ShellProcess Execute"="c:\program files\ASUS\AI Suite II\ASUS Mobilink\Simulator\AsShellProcess.exe" [2010-09-28 252544]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"NUSB3MON"="c:\program files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 113288]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-04-09 2029640]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-17 252296]
"TkBellExe"="c:\program files\real\realplayer\Update\realsched.exe" [2012-07-08 296096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt [x]
R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena\safedrv.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Service;c:\windows\system32\DRIVERS\sbfwim.sys [x]
R3 sbhips;sbhips;c:\windows\system32\drivers\sbhips.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [x]
S1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [x]
S2 asComSvc;ASUS Com Service;c:\program files\ASUS\AXSP\1.00.13\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files\ASUS\AAHM\1.00.13\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [x]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
S3 SBFWIMCLMP;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\DRIVERS\SBFWIM.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 25719806
*Deregistered* - 25719806
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-11 20:41]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = hxxp://www.bigseekpro.com/bsprpc/{2055BAEE-42F ... D227356B16}
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{0b7430e9-e659-4555-ac67-be3340aaa519} - (no file)
BHO-{54055123-4E50-0B78-308C-669837415A51} - (no file)
Toolbar-10 - (no file)
WebBrowser-{0B7430E9-E659-4555-AC67-BE3340AAA519} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-4060915618-3275642364-3586104651-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:e6,7d,62,b9,37,5d,3a,46,67,29,c6,f3,e2,2f,b9,41,c0,f0,03,36,45,7e,ca,
03,54,a1,b6,40,00,0c,fc,a5,48,0a,85,58,28,05,ff,99,22,1a,2a,4e,66,1d,c6,07,\
"??"=hex:f7,26,36,5f,49,0b,36,91,59,2b,26,14,1f,2f,5b,f3
.
[HKEY_USERS\S-1-5-21-4060915618-3275642364-3586104651-1000\Software\SecuROM\License information*]
"datasecu"=hex:dd,81,22,44,0a,8d,aa,56,0e,e6,9b,d6,a8,ac,e7,30,85,78,40,87,3c,
67,bb,c6,af,3e,d2,eb,18,ee,45,5f,89,f2,e1,54,3f,92,b2,97,5d,3c,b0,7a,77,6d,\
"rkeysecu"=hex:46,10,31,81,e7,66,c6,3c,8d,30,71,5f,f2,d2,56,94
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-07-18 22:40:06
ComboFix-quarantined-files.txt 2012-07-18 20:40
.
Pre-Run: Volných bajtů: 144 665 239 552
Post-Run: Volných bajtů: 146 326 224 896
.
- - End Of File - - 0B4046145CBE5FBAB7C1E75F1CB89788
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
Otestujte na www.virustotal.com
c:\windows\System32\SC.dll
(dejte procházet a do spodního okénka nakopírujte cestuk souboru)
c:\windows\System32\SC.dll
(dejte procházet a do spodního okénka nakopírujte cestuk souboru)
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
motji veľmi pekne Vám ďakujem za ochotu pomôcť mi veľmi si vážim že, ste bola ochotná venovať mi svoj čas 
. Počítač potrebujem každodenne k normálnemu fungovaniu preto som sa rozhodol sformátovať a preinštalovať celý hard disk ako by som mal naháňať jeden vírus po počítači . Po preinštalovaní mi počítač nevykazuje žiadne problémy takže je už asi všetko v poriadku 
. Problém vyriešený idem si ja pekne užívať prázdniny 
S pozdravom Emeron
. Počítač potrebujem každodenne k normálnemu fungovaniu preto som sa rozhodol sformátovať a preinštalovať celý hard disk ako by som mal naháňať jeden vírus po počítači . Po preinštalovaní mi počítač nevykazuje žiadne problémy takže je už asi všetko v poriadku . Problém vyriešený idem si ja pekne užívať prázdniny S pozdravom Emeron
Re: Blue screen vždy po cca 10 minútach od zapnutia PC
A po combofixu to nebylo lepší?
Tak formát je taky řešení .
Není zač, mějte se hezky
Tak formát je taky řešení
.Není zač, mějte se hezky
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?