prosím o preventivní kontrolu

[Mark.58]

ahoj, prosím o kontrolu, předem Děkuji


Logfile of random's system information tool 1.09 (written by random/random)
Run by Marek at 2012-07-25 14:00:55
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 671 GB (71%) free of 946 GB
Total RAM: 3319 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:01:07, on 25.7.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16447)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Windows\system32\taskeng.exe
C:\Users\Marek\Downloads\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\trend micro\Marek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: QIPBHO - {95289393-33EA-4F8D-B952-483415B9C955} - C:\Users\Marek\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2486506597-191449080-2524752556-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2486506597-191449080-2524752556-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: QipGuard - QIP.ru - C:\Program Files\QipGuard\QipGuard.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 7124 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\e2uexf2w.default

prefs.js - "browser.startup.homepage" - "seznam.cz"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\e2uexf2w.default\extensions\
{32a1fd71-835e-4b11-8e54-886fda0b4c89}

C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\e2uexf2w.default\searchplugins\
qip-search.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
QIPBHO Class - C:\Users\Marek\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-06-09 138240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files\Windows Live\Companion\companioncore.dll [2010-09-23 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-16 192112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-16 192112]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-11-02 59240]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2011-02-11 10025576]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2011-12-08 421736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"PlayNC Launcher"= []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
McAfee Security Scan Plus.lnk - C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codecp.acm
"vidc.cvid"=iccvid.dll
"msacm.siren"=sirenacm.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"VIDC.YV12"=xvidvfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.lameacm"=lameACM.acm
"VIDC.FFDS"=ff_vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-07-25 14:00:55 ----D---- C:\rsit
2012-07-25 14:00:55 ----D---- C:\Program Files\trend micro
2012-07-21 18:45:22 ----D---- C:\ProgramData\PMB Files
2012-07-21 18:45:21 ----D---- C:\Program Files\Pando Networks
2012-07-13 00:48:22 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-07-13 00:34:50 ----A---- C:\Windows\system32\MRT.exe
2012-07-11 17:44:23 ----A---- C:\Windows\system32\mshtmled.dll
2012-07-11 17:44:23 ----A---- C:\Windows\system32\ieui.dll
2012-07-11 17:44:23 ----A---- C:\Windows\system32\iertutil.dll
2012-07-11 17:44:22 ----A---- C:\Windows\system32\wininet.dll
2012-07-11 17:44:22 ----A---- C:\Windows\system32\url.dll
2012-07-11 17:44:22 ----A---- C:\Windows\system32\jsproxy.dll
2012-07-11 17:44:22 ----A---- C:\Windows\system32\jscript9.dll
2012-07-11 17:44:22 ----A---- C:\Windows\system32\jscript.dll
2012-07-11 17:44:22 ----A---- C:\Windows\system32\ieUnatt.exe
2012-07-11 17:44:21 ----A---- C:\Windows\system32\urlmon.dll
2012-07-11 17:44:21 ----A---- C:\Windows\system32\mshtml.dll
2012-07-11 17:44:20 ----A---- C:\Windows\system32\ieframe.dll
2012-07-11 17:43:48 ----A---- C:\Windows\system32\win32k.sys
2012-07-11 15:48:41 ----D---- C:\ProgramData\Windows
2012-07-11 15:48:06 ----A---- C:\Windows\system32\schannel.dll
2012-07-11 15:48:06 ----A---- C:\Windows\system32\ncrypt.dll
2012-07-11 15:48:06 ----A---- C:\Windows\system32\msxml6.dll
2012-07-11 15:48:06 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-07-11 15:48:06 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-07-11 15:48:06 ----A---- C:\Windows\system32\drivers\cng.sys
2012-07-11 15:48:05 ----A---- C:\Windows\system32\msxml3r.dll
2012-07-11 15:48:05 ----A---- C:\Windows\system32\msxml3.dll
2012-07-11 15:48:05 ----A---- C:\Windows\system32\cdosys.dll
2012-07-11 15:48:04 ----A---- C:\Windows\system32\shell32.dll
2012-07-10 06:41:03 ----A---- C:\Windows\system32\browserchoice.exe

======List of files/folders modified in the last 1 month======

2012-07-25 14:01:06 ----D---- C:\Windows\Prefetch
2012-07-25 14:01:04 ----D---- C:\Windows\Temp
2012-07-25 14:00:55 ----RD---- C:\Program Files
2012-07-25 13:44:11 ----D---- C:\Windows\system32\sysprep
2012-07-25 13:43:55 ----D---- C:\ProgramData\NVIDIA
2012-07-25 13:33:16 ----D---- C:\Windows\system32\config
2012-07-25 09:15:08 ----SHD---- C:\Windows\Installer
2012-07-24 10:06:24 ----SHD---- C:\System Volume Information
2012-07-22 13:07:04 ----D---- C:\Windows\system32\catroot2
2012-07-21 19:29:14 ----D---- C:\Windows\system32\drivers
2012-07-21 18:45:22 ----HD---- C:\ProgramData
2012-07-19 20:48:53 ----D---- C:\Program Files\Mozilla Firefox
2012-07-18 00:04:28 ----D---- C:\Users\Marek\AppData\Roaming\SoftGrid Client
2012-07-13 00:36:06 ----D---- C:\Windows\System32
2012-07-13 00:34:52 ----D---- C:\Windows\debug
2012-07-12 18:27:37 ----D---- C:\Windows\system32\NDF
2012-07-11 19:00:44 ----D---- C:\Windows\winsxs
2012-07-11 18:59:22 ----D---- C:\Windows\system32\migration
2012-07-11 18:59:22 ----D---- C:\Program Files\Internet Explorer
2012-07-11 17:44:27 ----D---- C:\Windows\system32\catroot

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2010-11-06 354840]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-11-17 239168]
R1 vpcnfltr;Virtual PC Network Filter Driver; C:\Windows\system32\DRIVERS\vpcnfltr.sys [2009-09-23 55040]
R1 vpcvmm;@%SystemRoot%\system32\drivers\vpcvmm.sys,-100; C:\Windows\system32\drivers\vpcvmm.sys [2009-09-23 294912]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-02-11 3396136]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2011-07-08 139880]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-06-10 394856]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 579944]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 194408]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 21864]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 19304]
R3 vpcbus;Služba hostitelské sběrnice programu Virtual PC; C:\Windows\system32\DRIVERS\vpchbus.sys [2009-09-23 165376]
R3 vpcusb;Služba konektoru virtualizace rozhraní USB; C:\Windows\system32\DRIVERS\vpcusb.sys [2009-09-23 78336]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x32.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 MEI;Intel(R) Management Engine Interface; C:\Windows\system32\drivers\HECI.sys [2010-10-19 41088]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2011-08-02 42496]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 390504]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1136448]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 QipGuard;QipGuard; C:\Program Files\QipGuard\QipGuard.exe [2011-10-27 191440]
R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-15 381248]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-12-08 821608]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-11-14 136176]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-11-14 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-11-14 182768]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-15 113120]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\system32\GameMon.des [2011-03-28 4323256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-11-16 1343400]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

[Márty84]

Zdravim

Zda se mi to, nebo v pc neni zadny antivir? Proc?

Udelejte !!!uplnou!!! kontrolu s MBAM http://forum.viry.cz/viewtopic.php?f=29&t=115222 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Je s pc nejaky problem?

[Mark.58]

Problém není žádný, krom toho že nejde sputit ani internet explorer ani mozzila, mozzilu pustim jen když je tam zaškrtnul sputit jako správce, přitom je to divné, celou dbu fungovala a najednou přestala... správce jsem... doporučíte nějakej free antivir ?


Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.62.0.1300
http://www.malwarebytes.org

Verze databáze: v2012.07.31.10

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Marek :: MAREK-PC [administrátor]

Ochrana: Povolena

31.7.2012 18:36:03
mbam-log-2012-07-31 (19-38-56).txt

Typ: Úplná kontrola (C:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 367746
Uplynulý čas: 1 hodin, 2 minut, 37 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 1
C:\ProgramData\Windows\wsse.dll (Rootkit.TDSS) -> Žádná instrukce nebyla provedena.

Nalezené klíče v registru: 1
HKCR\CLSID\{F12BE2CC-A901-4203-B4F2-ADCB957D1887} (Rootkit.TDSS) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 5
C:\ProgramData\Windows\wsse.dll (Rootkit.TDSS) -> Žádná instrukce nebyla provedena.
C:\Users\Marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GX9HQI1J\about[1].exe (Rootkit.TDSS) -> Žádná instrukce nebyla provedena.
C:\Users\Marek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HCGKJ8VN\bi_downloader[1].exe (PUP.BundleInstaller.BI) -> Žádná instrukce nebyla provedena.
C:\Users\Marek\AppData\Local\Temp\wpbt0.dll (Rootkit.TDSS) -> Žádná instrukce nebyla provedena.
C:\Users\Marek\AppData\Local\Temp\nsd64A.tmp (PUP.BundleInstaller.BI) -> Žádná instrukce nebyla provedena.

(konec)

[Márty84]

Doporucil bych Avast, pripadne Aviru, nebo MSE. Ale az po lecbe

Mate to totiz zavirovane. Velmi necekane, kdyz je pocitac nechraneny

Nalezy nechte odstranit. Chtel bych pak videt log, co MBAM napise, abych videl, zda se to zdarilo.

Pak postupujte podle navodu od kolegy vyoska

Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Kliknete na volbu Change parametrs
• V obou oknech (Objects to scan i Additional Option) zakliknete vsechny moznosti - ve vsech ctvereccich musi mit fajecka
• Kliknete na OK
• Utilite prikazte, at skenuje - klik na Start Scan
• Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
• Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
• Pokud mate vsude Skip, kliknete na Continue
• Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

[Mark.58]

MBAM LOG

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware) 1.62.0.1300
www.malwarebytes.org

Verze databáze: v2012.08.01.05

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Marek :: MAREK-PC [administrátor]

Ochrana: Povolena

1.8.2012 19:33:57
mbam-log-2012-08-01 (19-33-57).txt

Typ: Úplná kontrola (C:\|Q:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 368513
Uplynulý čas: 37 minut, 7 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)














A TDSSkiller

18:07:41.0348 2312 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
18:07:41.0447 2312 ============================================================
18:07:41.0447 2312 Current date / time: 2012/08/02 18:07:41.0447
18:07:41.0447 2312 SystemInfo:
18:07:41.0447 2312
18:07:41.0447 2312 OS Version: 6.1.7601 ServicePack: 1.0
18:07:41.0447 2312 Product type: Workstation
18:07:41.0447 2312 ComputerName: MAREK-PC
18:07:41.0447 2312 UserName: Marek
18:07:41.0447 2312 Windows directory: C:\Windows
18:07:41.0447 2312 System windows directory: C:\Windows
18:07:41.0447 2312 Processor architecture: Intel x86
18:07:41.0447 2312 Number of processors: 2
18:07:41.0447 2312 Page size: 0x1000
18:07:41.0447 2312 Boot type: Normal boot
18:07:41.0447 2312 ============================================================
18:07:41.0769 2312 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:07:41.0773 2312 ============================================================
18:07:41.0773 2312 \Device\Harddisk0\DR0:
18:07:41.0773 2312 MBR partitions:
18:07:41.0773 2312 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x73763800
18:07:41.0773 2312 ============================================================
18:07:41.0791 2312 C: <-> \Device\Harddisk0\DR0\Partition0
18:07:41.0791 2312 ============================================================
18:07:41.0791 2312 Initialize success
18:07:41.0791 2312 ============================================================
18:08:22.0206 2876 ============================================================
18:08:22.0206 2876 Scan started
18:08:22.0206 2876 Mode: Manual; SigCheck; TDLFS;
18:08:22.0206 2876 ============================================================
18:08:22.0378 2876 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
18:08:22.0440 2876 1394ohci - ok
18:08:22.0462 2876 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
18:08:22.0472 2876 ACPI - ok
18:08:22.0496 2876 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
18:08:22.0526 2876 AcpiPmi - ok
18:08:22.0570 2876 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
18:08:22.0582 2876 adp94xx - ok
18:08:22.0606 2876 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
18:08:22.0616 2876 adpahci - ok
18:08:22.0636 2876 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
18:08:22.0644 2876 adpu320 - ok
18:08:22.0663 2876 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
18:08:22.0739 2876 AeLookupSvc - ok
18:08:22.0785 2876 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
18:08:22.0818 2876 AFD - ok
18:08:22.0829 2876 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
18:08:22.0836 2876 agp440 - ok
18:08:22.0860 2876 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
18:08:22.0867 2876 aic78xx - ok
18:08:22.0885 2876 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
18:08:22.0913 2876 ALG - ok
18:08:22.0923 2876 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
18:08:22.0930 2876 aliide - ok
18:08:22.0940 2876 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
18:08:22.0947 2876 amdagp - ok
18:08:22.0956 2876 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
18:08:22.0963 2876 amdide - ok
18:08:22.0979 2876 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys
18:08:22.0994 2876 AmdK8 - ok
18:08:23.0005 2876 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
18:08:23.0023 2876 AmdPPM - ok
18:08:23.0038 2876 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
18:08:23.0046 2876 amdsata - ok
18:08:23.0058 2876 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
18:08:23.0067 2876 amdsbs - ok
18:08:23.0075 2876 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
18:08:23.0082 2876 amdxata - ok
18:08:23.0086 2876 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
18:08:23.0109 2876 AppID - ok
18:08:23.0117 2876 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
18:08:23.0149 2876 AppIDSvc - ok
18:08:23.0170 2876 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
18:08:23.0202 2876 Appinfo - ok
18:08:23.0266 2876 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:08:23.0273 2876 Apple Mobile Device - ok
18:08:23.0296 2876 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
18:08:23.0303 2876 arc - ok
18:08:23.0309 2876 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
18:08:23.0316 2876 arcsas - ok
18:08:23.0337 2876 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
18:08:23.0413 2876 AsyncMac - ok
18:08:23.0444 2876 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
18:08:23.0450 2876 atapi - ok
18:08:23.0483 2876 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:08:23.0513 2876 AudioEndpointBuilder - ok
18:08:23.0518 2876 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:08:23.0540 2876 Audiosrv - ok
18:08:23.0557 2876 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
18:08:23.0578 2876 AxInstSV - ok
18:08:23.0609 2876 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
18:08:23.0628 2876 b06bdrv - ok
18:08:23.0651 2876 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:08:23.0660 2876 b57nd60x - ok
18:08:23.0686 2876 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
18:08:23.0723 2876 BDESVC - ok
18:08:23.0729 2876 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
18:08:23.0755 2876 Beep - ok
18:08:23.0795 2876 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
18:08:23.0826 2876 BFE - ok
18:08:23.0870 2876 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
18:08:23.0895 2876 BITS - ok
18:08:23.0906 2876 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
18:08:23.0915 2876 blbdrive - ok
18:08:24.0007 2876 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
18:08:24.0016 2876 Bonjour Service - ok
18:08:24.0031 2876 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
18:08:24.0055 2876 bowser - ok
18:08:24.0061 2876 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
18:08:24.0071 2876 BrFiltLo - ok
18:08:24.0077 2876 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
18:08:24.0086 2876 BrFiltUp - ok
18:08:24.0101 2876 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
18:08:24.0120 2876 Browser - ok
18:08:24.0140 2876 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
18:08:24.0158 2876 Brserid - ok
18:08:24.0171 2876 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
18:08:24.0195 2876 BrSerWdm - ok
18:08:24.0209 2876 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:08:24.0224 2876 BrUsbMdm - ok
18:08:24.0226 2876 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
18:08:24.0239 2876 BrUsbSer - ok
18:08:24.0254 2876 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
18:08:24.0264 2876 BTHMODEM - ok
18:08:24.0298 2876 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
18:08:24.0329 2876 bthserv - ok
18:08:24.0349 2876 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
18:08:24.0370 2876 cdfs - ok
18:08:24.0388 2876 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
18:08:24.0407 2876 cdrom - ok
18:08:24.0429 2876 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:08:24.0447 2876 CertPropSvc - ok
18:08:24.0458 2876 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
18:08:24.0478 2876 circlass - ok
18:08:24.0505 2876 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
18:08:24.0515 2876 CLFS - ok
18:08:24.0563 2876 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:08:24.0571 2876 clr_optimization_v2.0.50727_32 - ok
18:08:24.0650 2876 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:08:24.0658 2876 clr_optimization_v4.0.30319_32 - ok
18:08:24.0667 2876 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
18:08:24.0684 2876 CmBatt - ok
18:08:24.0686 2876 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
18:08:24.0693 2876 cmdide - ok
18:08:24.0737 2876 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
18:08:24.0753 2876 CNG - ok
18:08:24.0765 2876 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
18:08:24.0772 2876 Compbatt - ok
18:08:24.0782 2876 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
18:08:24.0792 2876 CompositeBus - ok
18:08:24.0794 2876 COMSysApp - ok
18:08:24.0839 2876 cpuz135 - ok
18:08:24.0842 2876 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
18:08:24.0849 2876 crcdisk - ok
18:08:24.0882 2876 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
18:08:24.0918 2876 CryptSvc - ok
18:08:25.0048 2876 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
18:08:25.0066 2876 cvhsvc - ok
18:08:25.0103 2876 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:08:25.0131 2876 DcomLaunch - ok
18:08:25.0155 2876 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
18:08:25.0185 2876 defragsvc - ok
18:08:25.0237 2876 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
18:08:25.0262 2876 DfsC - ok
18:08:25.0291 2876 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
18:08:25.0322 2876 Dhcp - ok
18:08:25.0331 2876 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
18:08:25.0357 2876 discache - ok
18:08:25.0381 2876 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
18:08:25.0388 2876 Disk - ok
18:08:25.0402 2876 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
18:08:25.0420 2876 Dnscache - ok
18:08:25.0434 2876 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
18:08:25.0464 2876 dot3svc - ok
18:08:25.0478 2876 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
18:08:25.0504 2876 DPS - ok
18:08:25.0525 2876 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
18:08:25.0541 2876 drmkaud - ok
18:08:25.0600 2876 dtsoftbus01 (fb38473835476a6fb272215a1d972af9) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
18:08:25.0612 2876 dtsoftbus01 - ok
18:08:25.0652 2876 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
18:08:25.0668 2876 DXGKrnl - ok
18:08:25.0691 2876 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
18:08:25.0718 2876 EapHost - ok
18:08:25.0835 2876 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
18:08:25.0880 2876 ebdrv - ok
18:08:25.0956 2876 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
18:08:25.0986 2876 EFS - ok
18:08:26.0059 2876 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
18:08:26.0084 2876 ehRecvr - ok
18:08:26.0102 2876 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
18:08:26.0116 2876 ehSched - ok
18:08:26.0143 2876 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
18:08:26.0156 2876 elxstor - ok
18:08:26.0163 2876 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
18:08:26.0171 2876 ErrDev - ok
18:08:26.0201 2876 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
18:08:26.0231 2876 EventSystem - ok
18:08:26.0256 2876 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
18:08:26.0277 2876 exfat - ok
18:08:26.0294 2876 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
18:08:26.0325 2876 fastfat - ok
18:08:26.0361 2876 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
18:08:26.0389 2876 Fax - ok
18:08:26.0400 2876 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\drivers\fdc.sys
18:08:26.0408 2876 fdc - ok
18:08:26.0419 2876 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
18:08:26.0443 2876 fdPHost - ok
18:08:26.0455 2876 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
18:08:26.0480 2876 FDResPub - ok
18:08:26.0490 2876 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
18:08:26.0497 2876 FileInfo - ok
18:08:26.0510 2876 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
18:08:26.0529 2876 Filetrace - ok
18:08:26.0532 2876 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\drivers\flpydisk.sys
18:08:26.0540 2876 flpydisk - ok
18:08:26.0569 2876 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
18:08:26.0578 2876 FltMgr - ok
18:08:26.0629 2876 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
18:08:26.0655 2876 FontCache - ok
18:08:26.0697 2876 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:08:26.0703 2876 FontCache3.0.0.0 - ok
18:08:26.0710 2876 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
18:08:26.0718 2876 FsDepends - ok
18:08:26.0753 2876 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
18:08:26.0758 2876 fssfltr - ok
18:08:26.0856 2876 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
18:08:26.0887 2876 fsssvc - ok
18:08:26.0942 2876 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
18:08:26.0949 2876 Fs_Rec - ok
18:08:26.0984 2876 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
18:08:26.0995 2876 fvevol - ok
18:08:27.0015 2876 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
18:08:27.0022 2876 gagp30kx - ok
18:08:27.0046 2876 gdrv - ok
18:08:27.0074 2876 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:08:27.0079 2876 GEARAspiWDM - ok
18:08:27.0152 2876 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
18:08:27.0197 2876 gpsvc - ok
18:08:27.0255 2876 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:08:27.0262 2876 gupdate - ok
18:08:27.0267 2876 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:08:27.0274 2876 gupdatem - ok
18:08:27.0313 2876 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:08:27.0320 2876 gusvc - ok
18:08:27.0328 2876 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
18:08:27.0343 2876 hcw85cir - ok
18:08:27.0378 2876 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
18:08:27.0394 2876 HdAudAddService - ok
18:08:27.0404 2876 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:08:27.0414 2876 HDAudBus - ok
18:08:27.0418 2876 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
18:08:27.0432 2876 HidBatt - ok
18:08:27.0456 2876 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
18:08:27.0477 2876 HidBth - ok
18:08:27.0488 2876 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
18:08:27.0506 2876 HidIr - ok
18:08:27.0524 2876 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
18:08:27.0544 2876 hidserv - ok
18:08:27.0559 2876 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
18:08:27.0576 2876 HidUsb - ok
18:08:27.0591 2876 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
18:08:27.0609 2876 hkmsvc - ok
18:08:27.0625 2876 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
18:08:27.0653 2876 HomeGroupListener - ok
18:08:27.0662 2876 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
18:08:27.0683 2876 HomeGroupProvider - ok
18:08:27.0693 2876 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
18:08:27.0700 2876 HpSAMD - ok
18:08:27.0728 2876 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
18:08:27.0755 2876 HTTP - ok
18:08:27.0760 2876 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
18:08:27.0766 2876 hwpolicy - ok
18:08:27.0783 2876 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
18:08:27.0799 2876 i8042prt - ok
18:08:27.0830 2876 iaStor (f4037a3fedb92dd97c95f320766ea5c9) C:\Windows\system32\drivers\iaStor.sys
18:08:27.0839 2876 iaStor - ok
18:08:27.0864 2876 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
18:08:27.0876 2876 iaStorV - ok
18:08:27.0957 2876 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:08:27.0982 2876 idsvc - ok
18:08:27.0992 2876 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
18:08:27.0999 2876 iirsp - ok
18:08:28.0046 2876 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
18:08:28.0074 2876 IKEEXT - ok
18:08:28.0212 2876 IntcAzAudAddService (feaae1c549d14b9759b88c569f33cd4e) C:\Windows\system32\drivers\RTKVHDA.sys
18:08:28.0261 2876 IntcAzAudAddService - ok
18:08:28.0316 2876 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
18:08:28.0323 2876 intelide - ok
18:08:28.0347 2876 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
18:08:28.0366 2876 intelppm - ok
18:08:28.0381 2876 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
18:08:28.0401 2876 IPBusEnum - ok
18:08:28.0405 2876 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:08:28.0433 2876 IpFilterDriver - ok
18:08:28.0464 2876 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
18:08:28.0487 2876 iphlpsvc - ok
18:08:28.0500 2876 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
18:08:28.0509 2876 IPMIDRV - ok
18:08:28.0525 2876 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
18:08:28.0545 2876 IPNAT - ok
18:08:28.0649 2876 iPod Service (178fe38b7740f598391eb2f51ae4ccac) C:\Program Files\iPod\bin\iPodService.exe
18:08:28.0664 2876 iPod Service - ok
18:08:28.0676 2876 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
18:08:28.0691 2876 IRENUM - ok
18:08:28.0706 2876 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
18:08:28.0713 2876 isapnp - ok
18:08:28.0739 2876 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
18:08:28.0749 2876 iScsiPrt - ok
18:08:28.0769 2876 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:08:28.0776 2876 kbdclass - ok
18:08:28.0792 2876 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
18:08:28.0812 2876 kbdhid - ok
18:08:28.0848 2876 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:08:28.0856 2876 KeyIso - ok
18:08:28.0889 2876 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
18:08:28.0896 2876 KSecDD - ok
18:08:28.0910 2876 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
18:08:28.0918 2876 KSecPkg - ok
18:08:28.0944 2876 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
18:08:28.0967 2876 KtmRm - ok
18:08:28.0995 2876 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
18:08:29.0023 2876 LanmanServer - ok
18:08:29.0051 2876 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
18:08:29.0074 2876 LanmanWorkstation - ok
18:08:29.0096 2876 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
18:08:29.0127 2876 lltdio - ok
18:08:29.0153 2876 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
18:08:29.0185 2876 lltdsvc - ok
18:08:29.0197 2876 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
18:08:29.0221 2876 lmhosts - ok
18:08:29.0241 2876 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
18:08:29.0249 2876 LSI_FC - ok
18:08:29.0257 2876 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
18:08:29.0265 2876 LSI_SAS - ok
18:08:29.0279 2876 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
18:08:29.0286 2876 LSI_SAS2 - ok
18:08:29.0297 2876 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
18:08:29.0305 2876 LSI_SCSI - ok
18:08:29.0318 2876 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
18:08:29.0338 2876 luafv - ok
18:08:29.0365 2876 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
18:08:29.0371 2876 MBAMProtector - ok
18:08:29.0445 2876 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
18:08:29.0461 2876 MBAMService - ok
18:08:29.0491 2876 McComponentHostService (f453d1e6d881e8f8717e20ccd4199e85) C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
18:08:29.0501 2876 McComponentHostService - ok
18:08:29.0519 2876 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
18:08:29.0528 2876 Mcx2Svc - ok
18:08:29.0540 2876 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
18:08:29.0547 2876 megasas - ok
18:08:29.0577 2876 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
18:08:29.0587 2876 MegaSR - ok
18:08:29.0607 2876 MEI (d86ac00883b9c98b570e7643aaf8e554) C:\Windows\system32\drivers\HECI.sys
18:08:29.0626 2876 MEI - ok
18:08:29.0637 2876 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:08:29.0664 2876 MMCSS - ok
18:08:29.0666 2876 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
18:08:29.0692 2876 Modem - ok
18:08:29.0715 2876 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
18:08:29.0733 2876 monitor - ok
18:08:29.0752 2876 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
18:08:29.0759 2876 mouclass - ok
18:08:29.0770 2876 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
18:08:29.0783 2876 mouhid - ok
18:08:29.0803 2876 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
18:08:29.0811 2876 mountmgr - ok
18:08:29.0859 2876 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:08:29.0867 2876 MozillaMaintenance - ok
18:08:29.0894 2876 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
18:08:29.0902 2876 mpio - ok
18:08:29.0917 2876 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
18:08:29.0936 2876 mpsdrv - ok
18:08:29.0973 2876 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
18:08:30.0012 2876 MpsSvc - ok
18:08:30.0025 2876 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
18:08:30.0042 2876 MRxDAV - ok
18:08:30.0063 2876 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:08:30.0083 2876 mrxsmb - ok
18:08:30.0106 2876 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:08:30.0116 2876 mrxsmb10 - ok
18:08:30.0132 2876 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:08:30.0146 2876 mrxsmb20 - ok
18:08:30.0159 2876 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
18:08:30.0166 2876 msahci - ok
18:08:30.0184 2876 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
18:08:30.0192 2876 msdsm - ok
18:08:30.0204 2876 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
18:08:30.0222 2876 MSDTC - ok
18:08:30.0240 2876 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
18:08:30.0260 2876 Msfs - ok
18:08:30.0269 2876 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
18:08:30.0288 2876 mshidkmdf - ok
18:08:30.0291 2876 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
18:08:30.0297 2876 msisadrv - ok
18:08:30.0330 2876 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
18:08:30.0365 2876 MSiSCSI - ok
18:08:30.0366 2876 msiserver - ok
18:08:30.0379 2876 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
18:08:30.0407 2876 MSKSSRV - ok
18:08:30.0421 2876 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
18:08:30.0445 2876 MSPCLOCK - ok
18:08:30.0447 2876 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
18:08:30.0474 2876 MSPQM - ok
18:08:30.0486 2876 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
18:08:30.0495 2876 MsRPC - ok
18:08:30.0507 2876 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
18:08:30.0514 2876 mssmbios - ok
18:08:30.0516 2876 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
18:08:30.0535 2876 MSTEE - ok
18:08:30.0549 2876 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
18:08:30.0564 2876 MTConfig - ok
18:08:30.0569 2876 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
18:08:30.0576 2876 Mup - ok
18:08:30.0602 2876 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
18:08:30.0624 2876 napagent - ok
18:08:30.0655 2876 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
18:08:30.0668 2876 NativeWifiP - ok
18:08:30.0709 2876 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
18:08:30.0725 2876 NDIS - ok
18:08:30.0734 2876 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
18:08:30.0758 2876 NdisCap - ok
18:08:30.0774 2876 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
18:08:30.0792 2876 NdisTapi - ok
18:08:30.0816 2876 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
18:08:30.0834 2876 Ndisuio - ok
18:08:30.0847 2876 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
18:08:30.0873 2876 NdisWan - ok
18:08:30.0886 2876 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
18:08:30.0904 2876 NDProxy - ok
18:08:30.0907 2876 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
18:08:30.0937 2876 NetBIOS - ok
18:08:30.0956 2876 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
18:08:30.0976 2876 NetBT - ok
18:08:31.0006 2876 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:08:31.0014 2876 Netlogon - ok
18:08:31.0050 2876 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
18:08:31.0073 2876 Netman - ok
18:08:31.0099 2876 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
18:08:31.0133 2876 netprofm - ok
18:08:31.0184 2876 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:08:31.0192 2876 NetTcpPortSharing - ok
18:08:31.0207 2876 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
18:08:31.0215 2876 nfrd960 - ok
18:08:31.0238 2876 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
18:08:31.0268 2876 NlaSvc - ok
18:08:31.0277 2876 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
18:08:31.0297 2876 Npfs - ok
18:08:31.0328 2876 npggsvc - ok
18:08:31.0336 2876 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
18:08:31.0357 2876 nsi - ok
18:08:31.0362 2876 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
18:08:31.0390 2876 nsiproxy - ok
18:08:31.0453 2876 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
18:08:31.0479 2876 Ntfs - ok
18:08:31.0482 2876 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
18:08:31.0502 2876 Null - ok
18:08:31.0534 2876 NVHDA (93c0f383b39b1f5fe7203e3270d4cf52) C:\Windows\system32\drivers\nvhda32v.sys
18:08:31.0541 2876 NVHDA - ok
18:08:31.0822 2876 nvlddmkm (66b4bf606fcc7f0622d4a21bb1461089) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:08:31.0957 2876 nvlddmkm - ok
18:08:32.0013 2876 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
18:08:32.0021 2876 nvraid - ok
18:08:32.0038 2876 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
18:08:32.0046 2876 nvstor - ok
18:08:32.0101 2876 nvsvc (d122f7c5f79c68868f5dc28cefeb2ecf) C:\Windows\system32\nvvsvc.exe
18:08:32.0126 2876 nvsvc - ok
18:08:32.0260 2876 nvUpdatusService (003cb0a155568b4a53a301f07c734233) C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
18:08:32.0294 2876 nvUpdatusService - ok
18:08:32.0334 2876 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
18:08:32.0342 2876 nv_agp - ok
18:08:32.0350 2876 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
18:08:32.0364 2876 ohci1394 - ok
18:08:32.0435 2876 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:08:32.0443 2876 ose - ok
18:08:32.0620 2876 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:08:32.0721 2876 osppsvc - ok
18:08:32.0774 2876 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:08:32.0793 2876 p2pimsvc - ok
18:08:32.0827 2876 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
18:08:32.0842 2876 p2psvc - ok
18:08:32.0863 2876 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
18:08:32.0872 2876 Parport - ok
18:08:32.0903 2876 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
18:08:32.0910 2876 partmgr - ok
18:08:32.0917 2876 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
18:08:32.0926 2876 Parvdm - ok
18:08:32.0938 2876 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
18:08:32.0950 2876 PcaSvc - ok
18:08:32.0976 2876 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
18:08:32.0984 2876 pci - ok
18:08:33.0010 2876 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
18:08:33.0017 2876 pciide - ok
18:08:33.0034 2876 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
18:08:33.0043 2876 pcmcia - ok
18:08:33.0048 2876 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
18:08:33.0055 2876 pcw - ok
18:08:33.0095 2876 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
18:08:33.0138 2876 PEAUTH - ok
18:08:33.0207 2876 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
18:08:33.0244 2876 pla - ok
18:08:33.0342 2876 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
18:08:33.0372 2876 PlugPlay - ok
18:08:33.0385 2876 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
18:08:33.0404 2876 PNRPAutoReg - ok
18:08:33.0424 2876 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:08:33.0435 2876 PNRPsvc - ok
18:08:33.0466 2876 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
18:08:33.0500 2876 PolicyAgent - ok
18:08:33.0516 2876 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
18:08:33.0545 2876 Power - ok
18:08:33.0574 2876 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
18:08:33.0606 2876 PptpMiniport - ok
18:08:33.0614 2876 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
18:08:33.0626 2876 Processor - ok
18:08:33.0665 2876 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
18:08:33.0681 2876 ProfSvc - ok
18:08:33.0706 2876 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:08:33.0714 2876 ProtectedStorage - ok
18:08:33.0730 2876 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
18:08:33.0751 2876 Psched - ok
18:08:33.0818 2876 QipGuard (cb7de6d444d487ae9a324c58b88d7e14) C:\Program Files\QipGuard\QipGuard.exe
18:08:33.0825 2876 QipGuard - ok
18:08:33.0884 2876 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
18:08:33.0908 2876 ql2300 - ok
18:08:33.0970 2876 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
18:08:33.0977 2876 ql40xx - ok
18:08:34.0006 2876 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
18:08:34.0025 2876 QWAVE - ok
18:08:34.0041 2876 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
18:08:34.0051 2876 QWAVEdrv - ok
18:08:34.0056 2876 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
18:08:34.0075 2876 RasAcd - ok
18:08:34.0098 2876 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:08:34.0120 2876 RasAgileVpn - ok
18:08:34.0134 2876 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
18:08:34.0164 2876 RasAuto - ok
18:08:34.0180 2876 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:08:34.0211 2876 Rasl2tp - ok
18:08:34.0229 2876 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
18:08:34.0259 2876 RasMan - ok
18:08:34.0269 2876 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
18:08:34.0289 2876 RasPppoe - ok
18:08:34.0299 2876 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
18:08:34.0322 2876 RasSstp - ok
18:08:34.0345 2876 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
18:08:34.0375 2876 rdbss - ok
18:08:34.0390 2876 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\drivers\rdpbus.sys
18:08:34.0399 2876 rdpbus - ok
18:08:34.0411 2876 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:08:34.0434 2876 RDPCDD - ok
18:08:34.0451 2876 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
18:08:34.0474 2876 RDPENCDD - ok
18:08:34.0486 2876 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
18:08:34.0513 2876 RDPREFMP - ok
18:08:34.0551 2876 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
18:08:34.0578 2876 RDPWD - ok
18:08:34.0595 2876 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
18:08:34.0604 2876 rdyboost - ok
18:08:34.0622 2876 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
18:08:34.0641 2876 RemoteAccess - ok
18:08:34.0665 2876 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
18:08:34.0695 2876 RemoteRegistry - ok
18:08:34.0719 2876 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
18:08:34.0740 2876 RpcEptMapper - ok
18:08:34.0757 2876 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
18:08:34.0772 2876 RpcLocator - ok
18:08:34.0802 2876 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:08:34.0824 2876 RpcSs - ok
18:08:34.0848 2876 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
18:08:34.0868 2876 rspndr - ok
18:08:34.0900 2876 RTL8167 (5283b9a27ff230f2ff70d92451ff409a) C:\Windows\system32\DRIVERS\Rt86win7.sys
18:08:34.0910 2876 RTL8167 - ok
18:08:34.0939 2876 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:08:34.0947 2876 SamSs - ok
18:08:34.0972 2876 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
18:08:34.0980 2876 sbp2port - ok
18:08:34.0994 2876 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
18:08:35.0020 2876 SCardSvr - ok
18:08:35.0034 2876 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
18:08:35.0052 2876 scfilter - ok
18:08:35.0090 2876 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
18:08:35.0130 2876 Schedule - ok
18:08:35.0161 2876 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:08:35.0180 2876 SCPolicySvc - ok
18:08:35.0214 2876 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
18:08:35.0243 2876 SDRSVC - ok
18:08:35.0257 2876 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:08:35.0277 2876 secdrv - ok
18:08:35.0298 2876 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
18:08:35.0328 2876 seclogon - ok
18:08:35.0340 2876 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
18:08:35.0368 2876 SENS - ok
18:08:35.0385 2876 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
18:08:35.0399 2876 SensrSvc - ok
18:08:35.0416 2876 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
18:08:35.0425 2876 Serenum - ok
18:08:35.0444 2876 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
18:08:35.0463 2876 Serial - ok
18:08:35.0480 2876 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
18:08:35.0487 2876 sermouse - ok
18:08:35.0509 2876 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
18:08:35.0536 2876 SessionEnv - ok
18:08:35.0548 2876 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
18:08:35.0563 2876 sffdisk - ok
18:08:35.0565 2876 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
18:08:35.0575 2876 sffp_mmc - ok
18:08:35.0577 2876 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
18:08:35.0586 2876 sffp_sd - ok
18:08:35.0588 2876 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
18:08:35.0597 2876 sfloppy - ok
18:08:35.0662 2876 Sftfs (d9b734638dd8dba9d59aad3189cd0fad) C:\Windows\system32\DRIVERS\Sftfslh.sys
18:08:35.0674 2876 Sftfs - ok
18:08:35.0782 2876 sftlist (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
18:08:35.0796 2876 sftlist - ok
18:08:35.0815 2876 Sftplay (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\Windows\system32\DRIVERS\Sftplaylh.sys
18:08:35.0824 2876 Sftplay - ok
18:08:35.0831 2876 Sftredir (518bac0179f94304f422696b47c0ec12) C:\Windows\system32\DRIVERS\Sftredirlh.sys
18:08:35.0836 2876 Sftredir - ok
18:08:35.0846 2876 Sftvol (747325236d88b3f05ffd27ff9ec711c5) C:\Windows\system32\DRIVERS\Sftvollh.sys
18:08:35.0852 2876 Sftvol - ok
18:08:35.0871 2876 sftvsa (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
18:08:35.0880 2876 sftvsa - ok
18:08:35.0904 2876 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
18:08:35.0933 2876 SharedAccess - ok
18:08:35.0969 2876 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
18:08:35.0999 2876 ShellHWDetection - ok
18:08:36.0011 2876 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
18:08:36.0018 2876 sisagp - ok
18:08:36.0033 2876 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
18:08:36.0040 2876 SiSRaid2 - ok
18:08:36.0052 2876 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
18:08:36.0059 2876 SiSRaid4 - ok
18:08:36.0083 2876 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
18:08:36.0103 2876 Smb - ok
18:08:36.0128 2876 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
18:08:36.0138 2876 SNMPTRAP - ok
18:08:36.0141 2876 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
18:08:36.0148 2876 spldr - ok
18:08:36.0168 2876 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
18:08:36.0193 2876 Spooler - ok
18:08:36.0308 2876 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
18:08:36.0356 2876 sppsvc - ok
18:08:36.0420 2876 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
18:08:36.0446 2876 sppuinotify - ok
18:08:36.0478 2876 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
18:08:36.0493 2876 srv - ok
18:08:36.0514 2876 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
18:08:36.0536 2876 srv2 - ok
18:08:36.0560 2876 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
18:08:36.0568 2876 srvnet - ok
18:08:36.0588 2876 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
18:08:36.0610 2876 SSDPSRV - ok
18:08:36.0627 2876 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
18:08:36.0666 2876 SstpSvc - ok
18:08:36.0758 2876 Stereo Service (9e1222c417291bc836210743624a8e5e) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
18:08:36.0769 2876 Stereo Service - ok
18:08:36.0791 2876 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
18:08:36.0798 2876 stexstor - ok
18:08:36.0831 2876 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
18:08:36.0851 2876 StiSvc - ok
18:08:36.0853 2876 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
18:08:36.0860 2876 swenum - ok
18:08:36.0880 2876 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
18:08:36.0914 2876 swprv - ok
18:08:36.0964 2876 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
18:08:36.0986 2876 SysMain - ok
18:08:36.0999 2876 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
18:08:37.0023 2876 TabletInputService - ok
18:08:37.0044 2876 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
18:08:37.0070 2876 TapiSrv - ok
18:08:37.0080 2876 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
18:08:37.0102 2876 TBS - ok
18:08:37.0199 2876 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
18:08:37.0223 2876 Tcpip - ok
18:08:37.0232 2876 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
18:08:37.0255 2876 TCPIP6 - ok
18:08:37.0269 2876 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
18:08:37.0287 2876 tcpipreg - ok
18:08:37.0296 2876 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
18:08:37.0310 2876 TDPIPE - ok
18:08:37.0337 2876 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
18:08:37.0345 2876 TDTCP - ok
18:08:37.0358 2876 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
18:08:37.0377 2876 tdx - ok
18:08:37.0389 2876 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
18:08:37.0396 2876 TermDD - ok
18:08:37.0423 2876 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
18:08:37.0447 2876 TermService - ok
18:08:37.0461 2876 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
18:08:37.0476 2876 Themes - ok
18:08:37.0495 2876 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:08:37.0515 2876 THREADORDER - ok
18:08:37.0539 2876 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
18:08:37.0569 2876 TrkWks - ok
18:08:37.0620 2876 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
18:08:37.0649 2876 TrustedInstaller - ok
18:08:37.0661 2876 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:08:37.0692 2876 tssecsrv - ok
18:08:37.0701 2876 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
18:08:37.0724 2876 TsUsbFlt - ok
18:08:37.0734 2876 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
18:08:37.0747 2876 TsUsbGD - ok
18:08:37.0777 2876 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
18:08:37.0796 2876 tunnel - ok
18:08:37.0811 2876 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
18:08:37.0818 2876 uagp35 - ok
18:08:37.0840 2876 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
18:08:37.0867 2876 udfs - ok
18:08:37.0893 2876 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
18:08:37.0912 2876 UI0Detect - ok
18:08:37.0916 2876 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
18:08:37.0924 2876 uliagpkx - ok
18:08:37.0946 2876 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
18:08:37.0956 2876 umbus - ok
18:08:37.0962 2876 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
18:08:37.0970 2876 UmPass - ok
18:08:37.0995 2876 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
18:08:38.0026 2876 upnphost - ok
18:08:38.0058 2876 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
18:08:38.0071 2876 USBAAPL - ok
18:08:38.0084 2876 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\drivers\usbccgp.sys
18:08:38.0095 2876 usbccgp - ok
18:08:38.0109 2876 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
18:08:38.0119 2876 usbcir - ok
18:08:38.0134 2876 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
18:08:38.0142 2876 usbehci - ok
18:08:38.0176 2876 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
18:08:38.0195 2876 usbhub - ok
18:08:38.0214 2876 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
18:08:38.0227 2876 usbohci - ok
18:08:38.0241 2876 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\drivers\usbprint.sys
18:08:38.0254 2876 usbprint - ok
18:08:38.0275 2876 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:08:38.0303 2876 USBSTOR - ok
18:08:38.0319 2876 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:08:38.0327 2876 usbuhci - ok
18:08:38.0349 2876 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
18:08:38.0373 2876 UxSms - ok
18:08:38.0397 2876 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:08:38.0406 2876 VaultSvc - ok
18:08:38.0414 2876 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
18:08:38.0421 2876 vdrvroot - ok
18:08:38.0448 2876 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
18:08:38.0480 2876 vds - ok
18:08:38.0484 2876 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
18:08:38.0499 2876 vga - ok
18:08:38.0512 2876 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
18:08:38.0532 2876 VgaSave - ok
18:08:38.0548 2876 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
18:08:38.0557 2876 vhdmp - ok
18:08:38.0570 2876 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
18:08:38.0578 2876 viaagp - ok
18:08:38.0586 2876 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
18:08:38.0600 2876 ViaC7 - ok
18:08:38.0610 2876 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
18:08:38.0617 2876 viaide - ok
18:08:38.0624 2876 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
18:08:38.0631 2876 volmgr - ok
18:08:38.0653 2876 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
18:08:38.0663 2876 volmgrx - ok
18:08:38.0686 2876 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
18:08:38.0696 2876 volsnap - ok
18:08:38.0724 2876 vpcbus (33e74df34753fcaab06f6f2bdc8cabf5) C:\Windows\system32\DRIVERS\vpchbus.sys
18:08:38.0742 2876 vpcbus - ok
18:08:38.0760 2876 vpcnfltr (5f04362ceb5fb5901037e9d9eadd3760) C:\Windows\system32\DRIVERS\vpcnfltr.sys
18:08:38.0768 2876 vpcnfltr - ok
18:08:38.0795 2876 vpcusb (625088d6ee9ede977fd03cf18d1cd5c5) C:\Windows\system32\DRIVERS\vpcusb.sys
18:08:38.0815 2876 vpcusb - ok
18:08:38.0849 2876 vpcvmm (5ed378d91e32134f3c0b3810860ffd71) C:\Windows\system32\drivers\vpcvmm.sys
18:08:38.0860 2876 vpcvmm - ok
18:08:38.0887 2876 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
18:08:38.0896 2876 vsmraid - ok
18:08:38.0949 2876 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
18:08:38.0986 2876 VSS - ok
18:08:38.0996 2876 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
18:08:39.0013 2876 vwifibus - ok
18:08:39.0042 2876 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
18:08:39.0065 2876 W32Time - ok
18:08:39.0077 2876 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
18:08:39.0086 2876 WacomPen - ok
18:08:39.0106 2876 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:08:39.0134 2876 WANARP - ok
18:08:39.0136 2876 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:08:39.0155 2876 Wanarpv6 - ok
18:08:39.0238 2876 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
18:08:39.0262 2876 WatAdminSvc - ok
18:08:39.0319 2876 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
18:08:39.0352 2876 wbengine - ok
18:08:39.0375 2876 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
18:08:39.0389 2876 WbioSrvc - ok
18:08:39.0419 2876 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
18:08:39.0433 2876 wcncsvc - ok
18:08:39.0437 2876 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
18:08:39.0461 2876 WcsPlugInService - ok
18:08:39.0478 2876 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
18:08:39.0485 2876 Wd - ok
18:08:39.0510 2876 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
18:08:39.0522 2876 Wdf01000 - ok
18:08:39.0536 2876 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:08:39.0575 2876 WdiServiceHost - ok
18:08:39.0577 2876 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:08:39.0588 2876 WdiSystemHost - ok
18:08:39.0611 2876 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
18:08:39.0629 2876 WebClient - ok
18:08:39.0650 2876 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
18:08:39.0677 2876 Wecsvc - ok
18:08:39.0692 2876 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
18:08:39.0711 2876 wercplsupport - ok
18:08:39.0733 2876 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
18:08:39.0754 2876 WerSvc - ok
18:08:39.0767 2876 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
18:08:39.0793 2876 WfpLwf - ok
18:08:39.0807 2876 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
18:08:39.0814 2876 WIMMount - ok
18:08:39.0886 2876 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
18:08:39.0915 2876 WinDefend - ok
18:08:39.0918 2876 WinHttpAutoProxySvc - ok
18:08:39.0962 2876 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
18:08:39.0982 2876 Winmgmt - ok
18:08:40.0037 2876 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
18:08:40.0072 2876 WinRM - ok
18:08:40.0137 2876 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
18:08:40.0147 2876 WinUsb - ok
18:08:40.0190 2876 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
18:08:40.0234 2876 Wlansvc - ok
18:08:40.0279 2876 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:08:40.0285 2876 wlcrasvc - ok
18:08:40.0388 2876 wlidsvc (0a70f4022ec2e14c159efc4f69aa2477) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:08:40.0421 2876 wlidsvc - ok
18:08:40.0475 2876 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
18:08:40.0484 2876 WmiAcpi - ok
18:08:40.0525 2876 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
18:08:40.0542 2876 wmiApSrv - ok
18:08:40.0620 2876 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
18:08:40.0655 2876 WMPNetworkSvc - ok
18:08:40.0676 2876 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
18:08:40.0699 2876 WPCSvc - ok
18:08:40.0725 2876 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
18:08:40.0749 2876 WPDBusEnum - ok
18:08:40.0765 2876 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
18:08:40.0790 2876 ws2ifsl - ok
18:08:40.0802 2876 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
18:08:40.0822 2876 wscsvc - ok
18:08:40.0823 2876 WSearch - ok
18:08:40.0922 2876 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
18:08:40.0954 2876 wuauserv - ok
18:08:41.0003 2876 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
18:08:41.0034 2876 WudfPf - ok
18:08:41.0060 2876 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:08:41.0084 2876 WUDFRd - ok
18:08:41.0098 2876 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
18:08:41.0123 2876 wudfsvc - ok
18:08:41.0139 2876 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
18:08:41.0157 2876 WwanSvc - ok
18:08:41.0177 2876 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:08:41.0398 2876 \Device\Harddisk0\DR0 - ok
18:08:41.0400 2876 Boot (0x1200) (794d5e2f9209c686610557a09f35c007) \Device\Harddisk0\DR0\Partition0
18:08:41.0401 2876 \Device\Harddisk0\DR0\Partition0 - ok
18:08:41.0401 2876 ============================================================
18:08:41.0401 2876 Scan finished
18:08:41.0401 2876 ============================================================
18:08:41.0408 1676 Detected object count: 0
18:08:41.0408 1676 Actual detected object count: 0

[Márty84]

Najdete tento soubor C:\Program Files\trend micro\Marek.exe , kliknete na nej pravym mysidlem a levym na Spustit jako spravce
Kliknete na Main menu a na Do a system scan only
U techto radku dejte vlevo zatrzitko

Kód: Vybrat vše

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: (no name) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
O4 - Global Startup: McAfee Security Scan Plus.lnk = ?

Kliknete na nápis Fix checked a potvrdte




Stahnete OTM http://oldtimer.geekstogo.com/OTM.exe a ulozte nejlepe na plochu.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Do leveho okna zkopirujte tento skript (vcetne te dvojtecky pred slovem commands)

Kód: Vybrat vše

:commands
[EMPTYTEMP]
[EMPTYFLASH]
[RESETHOSTS]
[Purity]

:services
QipGuard
gupdate
gupdatem
gusvc
McComponentHostService
npggsvc

:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\e2uexf2w.default\searchplugins\qip-search.xml

:reg
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
[-HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95289393-33EA-4F8D-B952-483415B9C955}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"Adobe ARM"=-
"iTunesHelper"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"PlayNC Launcher"=-

Kliknete na MoveIt a nechte program pracovat. Pri otazce na restart souhlaste.
Po restartu sem dejte log, ktery na vas vyskoci, nebo bude zde C:\_OTM\MovedFiles\xxxxxxxx_xxxxxx (misto tech x budou cisla, predstavujici datum a cas spusteni)

[motji]

Jak to tu vypadá?

[motji]

Dobrý den,
pro neaktivitu je toto téma uzamknuto.
Pokud ho budete chtít odemknout, kontaktujte mě na email nebo některého z mých kolegů.
Děkujeme za pochopení