Notebook najede až po 10 minutách - prosím o kontrolu logu

[AndreaK]

Zdravim,

prosim o kontrolu prilozeneho logu z HJT, notebook (Lenovo T500) vzdy po startu najede az za cca 10 minut, pote bezi zcela normalne. Problem nevyresen ani po Restore & Recovery do tovarniho nastaveni...

Dekuji za pomoc.
Andrea

----------------------------

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 22:40:16, on 22.7.2013
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)


Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Lenovo\NPDIRECT\tpfnf7sp.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
C:\Program Files\ThinkPad\Utilities\EZEJMNAP.EXE
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\Program Files\ThinkVantage\PrdCtr\LPMGR.EXE
C:\Program Files\ThinkVantage\PrdCtr\LPMLCHK.EXE
C:\Program Files\ThinkVantage\AMSG\Amsg.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACGadgetWrapper.exe
C:\PROGRA~1\ThinkPad\UTILIT~1\PWMUIAux.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Password Manager Browser Helper Object - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [FingerPrintSoftware] "C:\Program Files\Lenovo Fingerprint Software\fpapp.exe" \s
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BTVLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWlIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe
O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent
O4 - HKLM\..\Run: [DDNIUser] C:\Program Files\DDNI\SBITS\DDNIUSER.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {F4F55DC8-0B69-4DFE-BA94-CB677B88B2A3} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra 'Tools' menuitem: Lenovo Password Manager... - {F4F55DC8-0B69-4DFE-BA94-CB677B88B2A3} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Windows\system32\AtService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: DDNIOEMService - Digital Delivery Networks, Inc. - C:\Program Files\DDNI\SBITS\DDNIOEMService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\Windows\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\Program Files\Lenovo\System Update\SUService.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\Windows\System32\TPHDEXLG.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: TSS Core Service (TSSCoreService) - Lenovo - C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8536 bytes

[JaRon]

ahoj,
1. skontroluj velkost adresara plocha - nemal by byt vacsi ako 300MB
2. otestuj disk programom HDTune http://forum.viry.cz/viewtopic.php?f=46&t=79325 cast 8

[AndreaK]

Ahoj,

slozka Plocha ma jen 5MB, prikladam vysledek z HDTune.

Jen pro upresneni - notebook se po zapnuti tvari jako vypnuty 10 minut, az pak zacne normalne startovat (logo ThinkPad, Microsoft a uvitaci obrazovka pro zadani hesla nabehnou az po 10 minutach a pak jede vse rychle a uplne OK). Mam podezreni na zbytek nejakeho viru...

Diky.

[Pavuk29]

Andrejka, JaRon bude urcite pytat od teba aj zalozku Health a poslednu zalozku - Error scan.
Tam klikni na Start a pozri, aby si nemala zafajknute Quickscan.

[AndreaK]

Error Scan - vse OK (zelene), "damaged blocks": 0,0%

Zalozka Health neukazuje nic, bohuzel mi nejde spustit

[JaRon]

disk je OK
vloz log RSIT

[AndreaK]

Log z RSIT:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Andrea at 2013-07-24 11:17:01
Microsoft® Windows Vista™ Business Service Pack 1
System drive C: has 123 GB (87%) free of 141 GB
Total RAM: 2519 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:17:08, on 24.7.2013
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Lenovo\NPDIRECT\tpfnf7sp.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
C:\Program Files\ThinkPad\Utilities\EZEJMNAP.EXE
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\Program Files\ThinkVantage\PrdCtr\LPMGR.EXE
C:\Program Files\ThinkVantage\PrdCtr\LPMLCHK.EXE
C:\Program Files\ThinkVantage\AMSG\Amsg.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACGadgetWrapper.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\PROGRA~1\ThinkPad\UTILIT~1\PWMUIAux.exe
C:\Users\Andrea\Downloads\RSIT.exe
C:\Program Files\trend micro\Andrea.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Password Manager Browser Helper Object - {BF468356-BB7E-42D7-9F15-4F3B9BCFCED2} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [FingerPrintSoftware] "C:\Program Files\Lenovo Fingerprint Software\fpapp.exe" \s
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BTVLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWlIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe
O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent
O4 - HKLM\..\Run: [DDNIUser] C:\Program Files\DDNI\SBITS\DDNIUSER.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {F4F55DC8-0B69-4DFE-BA94-CB677B88B2A3} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra 'Tools' menuitem: Lenovo Password Manager... - {F4F55DC8-0B69-4DFE-BA94-CB677B88B2A3} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AuthenTec Fingerprint Service (ATService) - AuthenTec, Inc. - C:\Windows\system32\AtService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: DDNIOEMService - Digital Delivery Networks, Inc. - C:\Program Files\DDNI\SBITS\DDNIOEMService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\Windows\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Power Manager DBC Service - Lenovo - C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\Program Files\Lenovo\System Update\SUService.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\Windows\System32\TPHDEXLG.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: TSS Core Service (TSSCoreService) - Lenovo - C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8630 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Check Updates for Windows Live Toolbar.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-02-12 546672]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BF468356-BB7E-42D7-9F15-4F3B9BCFCED2}]
IePasswordManagerHelper Class - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll [2008-06-14 808248]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - Windows Live Toolbar - C:\Program Files\Windows Live Toolbar\msntb.dll [2007-02-12 546672]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2007-11-21 820520]
"TPFNF7"=C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe [2008-07-30 60192]
"TpShocks"=C:\Windows\system32\TpShocks.exe [2008-06-07 181536]
"TPHOTKEY"=C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe [2008-03-24 68464]
"EZEJMNAP"=C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe [2008-06-04 242976]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-06-12 150040]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2008-06-12 170520]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-06-12 145944]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"FingerPrintSoftware"=C:\Program Files\Lenovo Fingerprint Software\fpapp.exe [2008-05-10 1396736]
"TVT Scheduler Proxy"=C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [2008-05-25 487424]
"LPManager"=C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe [2008-06-08 165208]
"LPMailChecker"=C:\PROGRA~1\THINKV~1\PrdCtr\LPMLCHK.exe [2008-06-08 124248]
"AMSG"=C:\Program Files\ThinkVantage\AMSG\Amsg.exe [2007-02-01 419376]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"PWMTRV"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.DLL,PwrMgrBkGndMonitor []
"BLOG"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BTVLogEx.DLL,StartBattLog []
"ACTray"=C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [2008-07-30 431392]
"ACWlIcon"=C:\Program Files\ThinkPad\ConnectUtilities\ACWlIcon.exe [2008-07-30 148768]
"cssauth"=C:\Program Files\Lenovo\Client Security Solution\cssauth.exe [2008-06-25 3077432]
"DDNIUser"=C:\Program Files\DDNI\SBITS\DDNIUSER.EXE [2007-09-28 227816]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-06-12 208896]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
"DisableCAD"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======List of files/folders created in the last 1 month======

2013-07-24 10:55:52 ----D---- C:\Program Files\trend micro
2013-07-24 10:55:51 ----D---- C:\rsit
2013-07-23 22:05:52 ----D---- C:\swwork
2013-07-23 17:48:32 ----D---- C:\Program Files\HD Tune
2013-07-22 22:19:27 ----D---- C:\Windows\temp
2013-07-22 22:19:25 ----A---- C:\ComboFix.txt
2013-07-22 22:17:19 ----D---- C:\$RECYCLE.BIN
2013-07-22 22:00:20 ----A---- C:\Windows\zip.exe
2013-07-22 22:00:20 ----A---- C:\Windows\SWSC.exe
2013-07-22 22:00:20 ----A---- C:\Windows\SWREG.exe
2013-07-22 22:00:20 ----A---- C:\Windows\sed.exe
2013-07-22 22:00:20 ----A---- C:\Windows\PEV.exe
2013-07-22 22:00:20 ----A---- C:\Windows\NIRCMD.exe
2013-07-22 22:00:20 ----A---- C:\Windows\MBR.exe
2013-07-22 22:00:20 ----A---- C:\Windows\grep.exe
2013-07-22 22:00:16 ----D---- C:\ComboFix
2013-07-22 22:00:14 ----AD---- C:\Qoobox
2013-07-22 22:00:00 ----D---- C:\Windows\erdnt
2013-07-22 21:58:23 ----D---- C:\Program Files\HijackThis
2013-07-22 19:36:58 ----D---- C:\Users\Andrea\AppData\Roaming\Adobe
2013-07-21 03:10:52 ----D---- C:\Windows\CSC
2013-07-21 02:57:16 ----ASH---- C:\hiberfil.sys
2013-07-21 02:57:14 ----SHD---- C:\System Volume Information
2013-07-21 02:57:14 ----ASH---- C:\pagefile.sys
2013-07-20 18:30:11 ----D---- C:\Users\Andrea\AppData\Roaming\ATI
2013-07-20 18:29:56 ----D---- C:\Users\Andrea\AppData\Roaming\Lenovo
2013-07-20 18:29:39 ----D---- C:\Users\Andrea\AppData\Roaming\Identities
2013-07-20 18:29:29 ----D---- C:\Program Files\Windows Live Toolbar
2013-07-20 18:25:33 ----SD---- C:\Users\Andrea\AppData\Roaming\Microsoft

======List of files/folders modified in the last 1 month======

2013-07-24 11:17:08 ----D---- C:\Windows\Prefetch
2013-07-24 11:14:31 ----D---- C:\Windows\SoftwareDistribution
2013-07-24 11:11:21 ----A---- C:\sysiclog.txt
2013-07-24 10:55:52 ----RD---- C:\Program Files
2013-07-22 22:19:28 ----D---- C:\Windows\system32\drivers
2013-07-22 22:19:27 ----D---- C:\Windows
2013-07-22 22:18:27 ----D---- C:\Windows\System32
2013-07-22 22:17:36 ----A---- C:\Windows\system.ini
2013-07-22 22:17:18 ----D---- C:\Windows\system32\drivers\etc
2013-07-22 22:04:44 ----D---- C:\Windows\system32\config
2013-07-22 22:04:07 ----D---- C:\ProgramData
2013-07-22 22:03:53 ----D---- C:\Windows\winsxs
2013-07-22 22:02:46 ----D---- C:\Windows\AppPatch
2013-07-22 22:02:45 ----D---- C:\Program Files\Common Files
2013-07-22 22:02:05 ----D---- C:\Windows\inf
2013-07-22 22:02:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-07-22 21:55:20 ----D---- C:\Windows\rescache
2013-07-22 21:53:03 ----D---- C:\Windows\system32\catroot
2013-07-22 21:53:02 ----D---- C:\Windows\system32\catroot2
2013-07-22 21:28:29 ----D---- C:\Windows\system32\en
2013-07-22 21:28:29 ----D---- C:\Windows\system32\drivers\en-US
2013-07-22 21:28:28 ----D---- C:\Windows\system32\en-US
2013-07-22 19:51:39 ----D---- C:\Windows\ModemLogs
2013-07-22 19:41:10 ----D---- C:\Program Files\PCDR5
2013-07-22 19:34:21 ----D---- C:\Windows\system32\WDI
2013-07-22 13:41:10 ----D---- C:\SWTOOLS
2013-07-20 18:30:19 ----D---- C:\ProgramData\Lenovo
2013-07-20 18:29:50 ----SHD---- C:\Windows\Installer
2013-07-20 18:29:49 ----D---- C:\Windows\system32\Tasks
2013-07-20 18:29:48 ----D---- C:\Windows\Tasks
2013-07-20 18:29:43 ----D---- C:\SWShare
2013-07-20 18:29:32 ----D---- C:\Windows\Panther
2013-07-20 18:29:31 ----D---- C:\Program Files\Common Files\Lenovo
2013-07-20 18:29:30 ----D---- C:\Program Files\Lenovo
2013-07-20 18:27:09 ----D---- C:\Windows\Microsoft.NET
2013-07-20 18:27:06 ----RSD---- C:\Windows\assembly
2013-07-20 18:25:33 ----RD---- C:\Users
2013-07-20 18:11:39 ----D---- C:\Windows\Debug

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-07-22 319000]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx86.sys [2008-05-15 114728]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM86.sys [2008-05-15 19496]
R1 lenovo.smi;Lenovo System Interface Driver; C:\Windows\system32\DRIVERS\smiif32.sys [2008-05-12 13480]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr32v.sys [2008-07-28 12080]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2008-04-09 12672]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2008-02-15 46592]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2007-07-30 43008]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2007-07-30 38400]
R2 tvtfilter;tvtfilter; C:\Windows\system32\DRIVERS\tvtfilter.sys [2008-09-01 33536]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2007-10-18 8704]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2008-08-21 3881472]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2008-08-21 54784]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT32.sys [2008-05-28 220672]
R3 e1yexpress;Intel(R) Gigabit Network Connections Driver; C:\Windows\system32\DRIVERS\e1y6032.sys [2008-03-27 224384]
R3 HECI;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECI.sys [2008-03-26 40832]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-03-25 980992]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-03-25 207872]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2008-02-20 22696]
R3 intelkmd;intelkmd; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-06-12 2381312]
R3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ; C:\Windows\system32\DRIVERS\NETw5v32.sys [2008-05-01 3660800]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2008-09-01 30144]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-21 88576]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2007-11-21 181168]
R3 TPM;TPM; C:\Windows\system32\drivers\tpm.sys [2008-01-21 45624]
R3 TVTI2C;Lenovo SM bus driver; C:\Windows\system32\DRIVERS\Tvti2c.sys [2008-02-23 37312]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2008-03-25 661504]
S1 tvtumon;tvtumon; C:\Windows\system32\DRIVERS\tvtumon.sys [2008-05-25 48192]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver; C:\Windows\System32\Drivers\ATSwpWDF.sys [2008-05-10 475136]
S3 BthEnum;Bluetooth Enumerator Service; C:\Windows\system32\DRIVERS\BthEnum.sys [2008-04-17 23040]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2008-04-17 507904]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2008-04-17 30208]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-03-17 81960]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\drivers\btwavdt.sys [2008-03-17 100392]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-01-29 29736]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-03-17 17320]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 e1express;Intel(R) PRO/1000 PCI Express Network Connection Driver; C:\Windows\system32\DRIVERS\e1e6032.sys [2008-01-21 220672]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2008-01-21 200704]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 PcdrNdisuio;PCDRNDISUIO Usermode I/O Protocol; C:\Windows\system32\DRIVERS\pcdrndisuio.sys []
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2008-04-17 149504]
S3 usbvideo;USB Video Device (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-04-19 128104]
S3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AcPrfMgrSvc;Ac Profile Manager Service; C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe [2008-07-30 116000]
R2 AcSvc;Access Connections Main Service; C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe [2008-07-30 238880]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2008-08-21 700416]
R2 ATService;AuthenTec Fingerprint Service; C:\Windows\system32\AtService.exe [2008-05-10 1160440]
R2 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service; C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-12 30312]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\Windows\system32\svchost.exe [2008-01-21 21504]
R2 btwdins;Bluetooth Service; C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe [2008-03-17 518696]
R2 DDNIOEMService;DDNIOEMService; C:\Program Files\DDNI\SBITS\DDNIOEMService.exe [2007-09-28 162280]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-05-06 815104]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2008-02-20 36128]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE [2008-07-28 66848]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-05-06 466944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2007-02-10 89968]
R2 SUService;System Update; c:\Program Files\Lenovo\System Update\SUService.exe [2008-05-25 32768]
R2 ThinkVantage Registry Monitor Service;ThinkVantage Registry Monitor Service; c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe [2008-06-14 746808]
R2 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG.exe [2008-05-15 37416]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2008-03-27 58736]
R2 TSSCoreService;TSS Core Service; C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe [2008-06-14 779576]
R2 TVT Backup Protection Service;TVT Backup Protection Service; C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe [2008-05-25 520192]
R2 TVT Backup Service;TVT Backup Service; C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe [2008-05-25 950272]
R2 TVT Scheduler;TVT Scheduler; c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [2008-05-25 1155072]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2007-10-18 386560]
S2 TVT_UpdateMonitor;TVT Windows Update Monitor; C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe [2008-05-25 253952]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2007-02-10 29178224]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2005-10-14 45272]
S4 SQLBrowser;SQL Server Browser; c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2007-02-10 242544]

-----------------EOF-----------------

[JaRon]

nevidim tam ziadny virusovy problem
- co si vystrajal s ComboFix-om
- doporucujem doinstalovat ServicePack2 + MSIE8 + novu javu
- potom vycistit s CCleanerom a urobit defragmentaciu disku

[AndreaK]

Diky, provedeno, ale porad to trva 10 minut, nez se notas spusti, cili zadna zmena

[JaRon]

vloz logy z MBAM + TDSSKiller
v spravcovi zariadeni je vsetko OK ziadne vykricniky, otazniky ,,,
skus BIOS nastavit na default settings

[AndreaK]

Ve Spravci zarizeni nehlasen zadny problem, vse OK.
BIOS jsem nastavila na defaults settings, bohuzel to nepomohlo, stale se spousti az po 10 minutach... Zkousela jsem po vypnuti ze site vyndat i baterii, opet beze zmeny
Nevim, jestli to s tim muze nejak souviset, ale po kazdem spusteni se objevi tato hlaska:

"There was a problem connecting to the TPM (security device) on this computer. It is possible that anti-virus or firewall software is blocking the connection. A missing or disabled device driver could also cause this problem. Please refer to the online documentation for more information."

Nize prikladam logy z MBAM + TDSSKiller:

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.07.26.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Andrea :: ANDREA-T500 [administrátor]

26.7.2013 16:51:20
mbam-log-2013-07-26 (16-51-20).txt

Typ: Kompletní kontrola (C:\|Q:\|S:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 485022
Uplynulý čas: 1 hodin, 14 minut, 57 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

--------------------------

18:11:02.0332 5100 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:11:02.0379 5100 ============================================================
18:11:02.0379 5100 Current date / time: 2013/07/26 18:11:02.0379
18:11:02.0379 5100 SystemInfo:
18:11:02.0379 5100
18:11:02.0379 5100 OS Version: 6.0.6002 ServicePack: 2.0
18:11:02.0379 5100 Product type: Workstation
18:11:02.0379 5100 ComputerName: ANDREA-T500
18:11:02.0379 5100 UserName: Andrea
18:11:02.0379 5100 Windows directory: C:\Windows
18:11:02.0379 5100 System windows directory: C:\Windows
18:11:02.0379 5100 Processor architecture: Intel x86
18:11:02.0379 5100 Number of processors: 2
18:11:02.0379 5100 Page size: 0x1000
18:11:02.0379 5100 Boot type: Normal boot
18:11:02.0379 5100 ============================================================
18:11:02.0706 5100 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
18:11:02.0706 5100 ============================================================
18:11:02.0706 5100 \Device\Harddisk0\DR0:
18:11:02.0706 5100 MBR partitions:
18:11:02.0706 5100 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2ED800
18:11:02.0706 5100 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2EE000, BlocksNum 0x113A3000
18:11:02.0706 5100 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x11691000, BlocksNum 0x1388000
18:11:02.0706 5100 ============================================================
18:11:02.0738 5100 C: <-> \Device\Harddisk0\DR0\Partition2
18:11:02.0753 5100 S: <-> \Device\Harddisk0\DR0\Partition1
18:11:02.0816 5100 Q: <-> \Device\Harddisk0\DR0\Partition3
18:11:02.0816 5100 ============================================================
18:11:02.0816 5100 Initialize success
18:11:02.0816 5100 ============================================================
18:11:42.0315 3884 ============================================================
18:11:42.0315 3884 Scan started
18:11:42.0315 3884 Mode: Manual; SigCheck; TDLFS;
18:11:42.0315 3884 ============================================================
18:11:43.0048 3884 ================ Scan system memory ========================
18:11:43.0048 3884 System memory - ok
18:11:43.0048 3884 ================ Scan services =============================
18:11:43.0220 3884 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
18:11:43.0329 3884 ACPI - ok
18:11:43.0438 3884 [ F7128B4CA71ADA9ABA113318829C56CE ] AcPrfMgrSvc C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
18:11:43.0454 3884 AcPrfMgrSvc - ok
18:11:43.0469 3884 [ 11F39BF8D4543083B5A9F67BDD29E0C4 ] AcSvc C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
18:11:43.0469 3884 AcSvc - ok
18:11:43.0563 3884 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:11:43.0578 3884 AdobeARMservice - ok
18:11:43.0625 3884 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
18:11:43.0656 3884 adp94xx - ok
18:11:43.0656 3884 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
18:11:43.0672 3884 adpahci - ok
18:11:43.0672 3884 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
18:11:43.0688 3884 adpu160m - ok
18:11:43.0688 3884 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
18:11:43.0703 3884 adpu320 - ok
18:11:43.0750 3884 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:11:43.0890 3884 AeLookupSvc - ok
18:11:43.0937 3884 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
18:11:43.0968 3884 AFD - ok
18:11:44.0046 3884 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:11:44.0062 3884 agp440 - ok
18:11:44.0078 3884 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
18:11:44.0093 3884 aic78xx - ok
18:11:44.0140 3884 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
18:11:44.0187 3884 ALG - ok
18:11:44.0202 3884 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
18:11:44.0202 3884 aliide - ok
18:11:44.0218 3884 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
18:11:44.0234 3884 amdagp - ok
18:11:44.0234 3884 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
18:11:44.0249 3884 amdide - ok
18:11:44.0265 3884 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
18:11:44.0280 3884 AmdK7 - ok
18:11:44.0312 3884 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
18:11:44.0343 3884 AmdK8 - ok
18:11:44.0483 3884 [ 31D9B4A474F3FD236881BAADB448C58F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:11:44.0811 3884 amdkmdag - ok
18:11:44.0842 3884 [ C82138687C31F12A619B3AF8AE683680 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:11:44.0873 3884 amdkmdap - ok
18:11:44.0920 3884 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
18:11:44.0936 3884 Appinfo - ok
18:11:45.0014 3884 [ 0FE769CAE5855B53C90E23F85E7E89FF ] AppMgmt C:\Windows\System32\appmgmts.dll
18:11:45.0060 3884 AppMgmt - ok
18:11:45.0076 3884 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
18:11:45.0092 3884 arc - ok
18:11:45.0092 3884 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
18:11:45.0107 3884 arcsas - ok
18:11:45.0123 3884 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:11:45.0138 3884 AsyncMac - ok
18:11:45.0170 3884 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
18:11:45.0185 3884 atapi - ok
18:11:45.0248 3884 [ A3D284B34EA55272923B7067EFC6521D ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
18:11:45.0279 3884 Ati External Event Utility - ok
18:11:45.0357 3884 [ CBD4D08D090B760F8D015CCF3F7FD9F1 ] ATService C:\Windows\system32\AtService.exe
18:11:45.0404 3884 ATService - ok
18:11:45.0466 3884 [ 30407FB218940AE61F1AA3821B69F567 ] ATSwpWDF C:\Windows\system32\Drivers\ATSwpWDF.sys
18:11:45.0528 3884 ATSwpWDF - ok
18:11:45.0575 3884 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:11:45.0606 3884 AudioEndpointBuilder - ok
18:11:45.0622 3884 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
18:11:45.0638 3884 Audiosrv - ok
18:11:45.0731 3884 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
18:11:45.0731 3884 BcmSqlStartupSvc - ok
18:11:45.0762 3884 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
18:11:45.0809 3884 Beep - ok
18:11:45.0887 3884 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
18:11:45.0918 3884 BFE - ok
18:11:45.0996 3884 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
18:11:46.0043 3884 BITS - ok
18:11:46.0074 3884 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
18:11:46.0106 3884 blbdrive - ok
18:11:46.0137 3884 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:11:46.0168 3884 bowser - ok
18:11:46.0184 3884 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
18:11:46.0215 3884 BrFiltLo - ok
18:11:46.0215 3884 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
18:11:46.0230 3884 BrFiltUp - ok
18:11:46.0277 3884 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
18:11:46.0324 3884 Browser - ok
18:11:46.0355 3884 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
18:11:46.0527 3884 Brserid - ok
18:11:46.0558 3884 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
18:11:46.0620 3884 BrSerWdm - ok
18:11:46.0652 3884 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
18:11:46.0698 3884 BrUsbMdm - ok
18:11:46.0698 3884 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
18:11:46.0745 3884 BrUsbSer - ok
18:11:46.0792 3884 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
18:11:46.0808 3884 BthEnum - ok
18:11:46.0823 3884 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
18:11:46.0854 3884 BTHMODEM - ok
18:11:46.0901 3884 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
18:11:46.0932 3884 BthPan - ok
18:11:46.0964 3884 [ 5A3ABAA2F8EECE7AEFB942773766E3DB ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
18:11:46.0995 3884 BTHPORT - ok
18:11:47.0042 3884 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
18:11:47.0073 3884 BthServ - ok
18:11:47.0088 3884 [ 94E2941280E3756A5E0BCB467865C43A ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
18:11:47.0120 3884 BTHUSB - ok
18:11:47.0151 3884 [ F2F7342742180D5060285499DEE50F99 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
18:11:47.0166 3884 btwaudio - ok
18:11:47.0213 3884 [ 32F59F26A30CFC508DA11DB3EA0F8B77 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
18:11:47.0213 3884 btwavdt - ok
18:11:47.0260 3884 [ 97689D6A5C74226071A8B19F68CB0D35 ] btwdins C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
18:11:47.0291 3884 btwdins - ok
18:11:47.0338 3884 [ ECB98391C756A7B9CFBAE89D9D1235E1 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
18:11:47.0338 3884 btwl2cap - ok
18:11:47.0369 3884 [ 03658734EF7D0F3B3F4636D3E8A38964 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
18:11:47.0369 3884 btwrchid - ok
18:11:47.0447 3884 catchme - ok
18:11:47.0494 3884 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:11:47.0525 3884 cdfs - ok
18:11:47.0572 3884 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:11:47.0588 3884 cdrom - ok
18:11:47.0634 3884 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
18:11:47.0650 3884 CertPropSvc - ok
18:11:47.0666 3884 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
18:11:47.0697 3884 circlass - ok
18:11:47.0744 3884 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
18:11:47.0759 3884 CLFS - ok
18:11:47.0806 3884 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:11:47.0822 3884 clr_optimization_v2.0.50727_32 - ok
18:11:47.0915 3884 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:11:47.0931 3884 clr_optimization_v4.0.30319_32 - ok
18:11:47.0993 3884 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:11:48.0040 3884 CmBatt - ok
18:11:48.0056 3884 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:11:48.0071 3884 cmdide - ok
18:11:48.0118 3884 [ 9688FF5E474DD03129AA8CA375ADD252 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
18:11:48.0165 3884 CnxtHdAudService - ok
18:11:48.0212 3884 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:11:48.0227 3884 Compbatt - ok
18:11:48.0227 3884 COMSysApp - ok
18:11:48.0258 3884 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
18:11:48.0258 3884 crcdisk - ok
18:11:48.0274 3884 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
18:11:48.0321 3884 Crusoe - ok
18:11:48.0383 3884 [ FB27772BEAF8E1D28CCD825C09DA939B ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:11:48.0414 3884 CryptSvc - ok
18:11:48.0446 3884 [ 9BDB2E89BE8D0EF37B1F25C3D3FC192C ] CSC C:\Windows\system32\drivers\csc.sys
18:11:48.0539 3884 CSC - ok
18:11:48.0570 3884 [ 0A2095F92F6AE4FE6484D911B0C21E95 ] CscService C:\Windows\System32\cscsvc.dll
18:11:48.0602 3884 CscService - ok
18:11:48.0664 3884 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:11:48.0711 3884 DcomLaunch - ok
18:11:48.0773 3884 [ 0181F7AEEF7E3FB5317097A0370BD61A ] DDNIOEMService C:\Program Files\DDNI\SBITS\DDNIOEMService.exe
18:11:48.0804 3884 DDNIOEMService ( UnsignedFile.Multi.Generic ) - warning
18:11:48.0804 3884 DDNIOEMService - detected UnsignedFile.Multi.Generic (1)
18:11:48.0836 3884 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:11:48.0867 3884 DfsC - ok
18:11:48.0976 3884 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
18:11:49.0148 3884 DFSR - ok
18:11:49.0257 3884 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
18:11:49.0288 3884 Dhcp - ok
18:11:49.0335 3884 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
18:11:49.0350 3884 disk - ok
18:11:49.0382 3884 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:11:49.0397 3884 Dnscache - ok
18:11:49.0444 3884 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:11:49.0475 3884 dot3svc - ok
18:11:49.0522 3884 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
18:11:49.0553 3884 DPS - ok
18:11:49.0600 3884 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:11:49.0616 3884 drmkaud - ok
18:11:49.0647 3884 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:11:49.0678 3884 DXGKrnl - ok
18:11:49.0740 3884 [ 908ED85B7806E8AF3AF5E9B74F7809D4 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
18:11:49.0772 3884 e1express - ok
18:11:49.0787 3884 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
18:11:49.0818 3884 E1G60 - ok
18:11:49.0865 3884 [ 76A02BC4E8008A8CBAF5CC7EFB9DF839 ] e1yexpress C:\Windows\system32\DRIVERS\e1y6032.sys
18:11:49.0865 3884 e1yexpress - ok
18:11:49.0896 3884 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
18:11:49.0928 3884 EapHost - ok
18:11:49.0974 3884 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
18:11:49.0990 3884 Ecache - ok
18:11:50.0021 3884 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
18:11:50.0052 3884 elxstor - ok
18:11:50.0099 3884 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
18:11:50.0146 3884 EMDMgmt - ok
18:11:50.0177 3884 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:11:50.0208 3884 ErrDev - ok
18:11:50.0271 3884 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
18:11:50.0286 3884 EventSystem - ok
18:11:50.0364 3884 [ 4D3AF2EA2C82C00F7E3B77C876A2986B ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:11:50.0411 3884 EvtEng ( UnsignedFile.Multi.Generic ) - warning
18:11:50.0411 3884 EvtEng - detected UnsignedFile.Multi.Generic (1)
18:11:50.0442 3884 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
18:11:50.0474 3884 exfat - ok
18:11:50.0505 3884 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:11:50.0520 3884 fastfat - ok
18:11:50.0583 3884 [ DFBA0F60FA301E5B1BFB1403A93EE23E ] Fax C:\Windows\system32\fxssvc.exe
18:11:50.0614 3884 Fax - ok
18:11:50.0676 3884 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:11:50.0708 3884 fdc - ok
18:11:50.0739 3884 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
18:11:50.0754 3884 fdPHost - ok
18:11:50.0754 3884 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
18:11:50.0817 3884 FDResPub - ok
18:11:50.0832 3884 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:11:50.0832 3884 FileInfo - ok
18:11:50.0848 3884 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:11:50.0895 3884 Filetrace - ok
18:11:50.0895 3884 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:11:50.0910 3884 flpydisk - ok
18:11:50.0957 3884 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:11:50.0973 3884 FltMgr - ok
18:11:51.0035 3884 [ 452FEAAB2A8DBB42ED751754CB2594F5 ] FontCache C:\Windows\system32\FntCache.dll
18:11:51.0082 3884 FontCache - ok
18:11:51.0144 3884 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:11:51.0160 3884 FontCache3.0.0.0 - ok
18:11:51.0176 3884 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:11:51.0191 3884 Fs_Rec - ok
18:11:51.0254 3884 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
18:11:51.0269 3884 gagp30kx - ok
18:11:51.0300 3884 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
18:11:51.0347 3884 gpsvc - ok
18:11:51.0425 3884 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
18:11:51.0425 3884 gupdate - ok
18:11:51.0425 3884 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
18:11:51.0441 3884 gupdatem - ok
18:11:51.0472 3884 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:11:51.0519 3884 HdAudAddService - ok
18:11:51.0566 3884 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:11:51.0612 3884 HDAudBus - ok
18:11:51.0659 3884 [ 2DF64415A28CE036AC6ACEC7645A996F ] HECI C:\Windows\system32\DRIVERS\HECI.sys
18:11:51.0690 3884 HECI - ok
18:11:51.0706 3884 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
18:11:51.0737 3884 HidBth - ok
18:11:51.0753 3884 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
18:11:51.0800 3884 HidIr - ok
18:11:51.0831 3884 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
18:11:51.0846 3884 hidserv - ok
18:11:51.0878 3884 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:11:51.0909 3884 HidUsb - ok
18:11:51.0940 3884 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:11:51.0971 3884 hkmsvc - ok
18:11:51.0971 3884 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
18:11:51.0987 3884 HpCISSs - ok
18:11:52.0034 3884 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:11:52.0049 3884 HSFHWAZL - ok
18:11:52.0112 3884 [ FADD7095163CB3CB4073793EBB50FE75 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:11:52.0158 3884 HSF_DPV - ok
18:11:52.0205 3884 [ 058783BEDD17615D1FECE09F77960436 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:11:52.0221 3884 HSXHWAZL - ok
18:11:52.0252 3884 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:11:52.0299 3884 HTTP - ok
18:11:52.0361 3884 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
18:11:52.0377 3884 i2omp - ok
18:11:52.0439 3884 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:11:52.0486 3884 i8042prt - ok
18:11:52.0517 3884 [ ABFEBC5F846C71AFEBD7F8F6BA740C03 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:11:52.0533 3884 iaStor - ok
18:11:52.0580 3884 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
18:11:52.0595 3884 iaStorV - ok
18:11:52.0626 3884 [ 699052E165698013020D2AC693CD80C7 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys
18:11:52.0626 3884 IBMPMDRV - ok
18:11:52.0658 3884 [ 5A92B2DC9CCA34105A4125BA8D0BA035 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe
18:11:52.0658 3884 IBMPMSVC - ok
18:11:52.0704 3884 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:11:52.0720 3884 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:11:52.0720 3884 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:11:52.0798 3884 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:11:52.0829 3884 idsvc - ok
18:11:52.0845 3884 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
18:11:52.0845 3884 iirsp - ok
18:11:52.0892 3884 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
18:11:52.0923 3884 IKEEXT - ok
18:11:52.0938 3884 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
18:11:52.0954 3884 intelide - ok
18:11:53.0063 3884 [ 6FB1858D1F0923D122B0331865695041 ] intelkmd C:\Windows\system32\DRIVERS\igdkmd32.sys
18:11:53.0313 3884 intelkmd - ok
18:11:53.0344 3884 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:11:53.0375 3884 intelppm - ok
18:11:53.0406 3884 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:11:53.0438 3884 IPBusEnum - ok
18:11:53.0453 3884 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:11:53.0484 3884 IpFilterDriver - ok
18:11:53.0516 3884 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:11:53.0531 3884 iphlpsvc - ok
18:11:53.0547 3884 IpInIp - ok
18:11:53.0547 3884 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
18:11:53.0594 3884 IPMIDRV - ok
18:11:53.0594 3884 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
18:11:53.0625 3884 IPNAT - ok
18:11:53.0640 3884 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:11:53.0656 3884 IRENUM - ok
18:11:53.0687 3884 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:11:53.0687 3884 isapnp - ok
18:11:53.0718 3884 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
18:11:53.0734 3884 iScsiPrt - ok
18:11:53.0734 3884 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
18:11:53.0750 3884 iteatapi - ok
18:11:53.0750 3884 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
18:11:53.0765 3884 iteraid - ok
18:11:53.0796 3884 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
18:11:53.0796 3884 IviRegMgr - ok
18:11:53.0812 3884 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:11:53.0828 3884 kbdclass - ok
18:11:53.0828 3884 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:11:53.0874 3884 kbdhid - ok
18:11:53.0890 3884 [ 3978F3540329E16C0AC3BCF677E5669F ] KeyIso C:\Windows\system32\lsass.exe
18:11:53.0921 3884 KeyIso - ok
18:11:53.0952 3884 [ 86165728AF9BF72D6442A894FDFB4F8B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:11:53.0968 3884 KSecDD - ok
18:11:54.0015 3884 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
18:11:54.0046 3884 KtmRm - ok
18:11:54.0093 3884 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
18:11:54.0108 3884 LanmanServer - ok
18:11:54.0140 3884 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:11:54.0186 3884 LanmanWorkstation - ok
18:11:54.0249 3884 [ 3C3F7F424E324C6971632C5DE5FF458F ] lenovo.smi C:\Windows\system32\DRIVERS\smiif32.sys
18:11:54.0249 3884 lenovo.smi - ok
18:11:54.0280 3884 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:11:54.0311 3884 lltdio - ok
18:11:54.0374 3884 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:11:54.0405 3884 lltdsvc - ok
18:11:54.0420 3884 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:11:54.0452 3884 lmhosts - ok
18:11:54.0483 3884 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
18:11:54.0483 3884 LSI_FC - ok
18:11:54.0483 3884 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
18:11:54.0498 3884 LSI_SAS - ok
18:11:54.0545 3884 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
18:11:54.0545 3884 LSI_SCSI - ok
18:11:54.0561 3884 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
18:11:54.0592 3884 luafv - ok
18:11:54.0608 3884 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:11:54.0639 3884 mdmxsdk - ok
18:11:54.0654 3884 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
18:11:54.0654 3884 megasas - ok
18:11:54.0686 3884 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
18:11:54.0701 3884 MegaSR - ok
18:11:54.0732 3884 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
18:11:54.0764 3884 MMCSS - ok
18:11:54.0795 3884 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
18:11:54.0826 3884 Modem - ok
18:11:54.0857 3884 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:11:54.0873 3884 monitor - ok
18:11:54.0888 3884 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:11:54.0904 3884 mouclass - ok
18:11:54.0904 3884 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:11:54.0935 3884 mouhid - ok
18:11:54.0951 3884 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
18:11:54.0951 3884 MountMgr - ok
18:11:54.0982 3884 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
18:11:54.0982 3884 mpio - ok
18:11:54.0998 3884 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:11:55.0029 3884 mpsdrv - ok
18:11:55.0060 3884 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
18:11:55.0107 3884 MpsSvc - ok
18:11:55.0138 3884 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
18:11:55.0154 3884 Mraid35x - ok
18:11:55.0185 3884 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:11:55.0200 3884 MRxDAV - ok
18:11:55.0232 3884 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:11:55.0247 3884 mrxsmb - ok
18:11:55.0263 3884 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:11:55.0278 3884 mrxsmb10 - ok
18:11:55.0294 3884 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:11:55.0310 3884 mrxsmb20 - ok
18:11:55.0356 3884 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
18:11:55.0356 3884 msahci - ok
18:11:55.0372 3884 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:11:55.0388 3884 msdsm - ok
18:11:55.0403 3884 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
18:11:55.0419 3884 MSDTC - ok
18:11:55.0419 3884 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:11:55.0466 3884 Msfs - ok
18:11:55.0481 3884 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:11:55.0481 3884 msisadrv - ok
18:11:55.0512 3884 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:11:55.0544 3884 MSiSCSI - ok
18:11:55.0544 3884 msiserver - ok
18:11:55.0590 3884 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:11:55.0606 3884 MSKSSRV - ok
18:11:55.0606 3884 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:11:55.0637 3884 MSPCLOCK - ok
18:11:55.0637 3884 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:11:55.0653 3884 MSPQM - ok
18:11:55.0700 3884 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:11:55.0715 3884 MsRPC - ok
18:11:55.0715 3884 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:11:55.0731 3884 mssmbios - ok
18:11:55.0762 3884 MSSQL$MSSMLBIZ - ok
18:11:55.0824 3884 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
18:11:55.0824 3884 MSSQLServerADHelper - ok
18:11:55.0824 3884 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:11:55.0856 3884 MSTEE - ok
18:11:55.0871 3884 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
18:11:55.0887 3884 Mup - ok
18:11:55.0918 3884 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
18:11:55.0949 3884 napagent - ok
18:11:55.0996 3884 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:11:55.0996 3884 NativeWifiP - ok
18:11:56.0058 3884 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:11:56.0090 3884 NDIS - ok
18:11:56.0121 3884 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:11:56.0152 3884 NdisTapi - ok
18:11:56.0199 3884 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:11:56.0214 3884 Ndisuio - ok
18:11:56.0261 3884 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:11:56.0292 3884 NdisWan - ok
18:11:56.0308 3884 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:11:56.0324 3884 NDProxy - ok
18:11:56.0339 3884 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:11:56.0355 3884 NetBIOS - ok
18:11:56.0402 3884 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
18:11:56.0417 3884 netbt - ok
18:11:56.0448 3884 [ 3978F3540329E16C0AC3BCF677E5669F ] Netlogon C:\Windows\system32\lsass.exe
18:11:56.0448 3884 Netlogon - ok
18:11:56.0480 3884 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
18:11:56.0511 3884 Netman - ok
18:11:56.0526 3884 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
18:11:56.0558 3884 netprofm - ok
18:11:56.0589 3884 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:11:56.0604 3884 NetTcpPortSharing - ok
18:11:56.0745 3884 [ 840D89327C45B0CB9E1AB130249046E2 ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
18:11:57.0072 3884 NETw5v32 - ok
18:11:57.0088 3884 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
18:11:57.0104 3884 nfrd960 - ok
18:11:57.0135 3884 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:11:57.0166 3884 NlaSvc - ok
18:11:57.0197 3884 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:11:57.0213 3884 Npfs - ok
18:11:57.0244 3884 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
18:11:57.0275 3884 nsi - ok
18:11:57.0306 3884 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:11:57.0322 3884 nsiproxy - ok
18:11:57.0416 3884 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:11:57.0447 3884 Ntfs - ok
18:11:57.0478 3884 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
18:11:57.0525 3884 ntrigdigi - ok
18:11:57.0556 3884 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
18:11:57.0572 3884 Null - ok
18:11:57.0572 3884 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:11:57.0587 3884 nvraid - ok
18:11:57.0587 3884 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:11:57.0603 3884 nvstor - ok
18:11:57.0618 3884 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:11:57.0634 3884 nv_agp - ok
18:11:57.0634 3884 NwlnkFlt - ok
18:11:57.0634 3884 NwlnkFwd - ok
18:11:57.0712 3884 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:11:57.0728 3884 odserv - ok
18:11:57.0759 3884 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
18:11:57.0774 3884 ohci1394 - ok
18:11:57.0821 3884 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:11:57.0821 3884 ose - ok
18:11:57.0884 3884 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
18:11:57.0930 3884 p2pimsvc - ok
18:11:57.0930 3884 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
18:11:57.0962 3884 p2psvc - ok
18:11:58.0024 3884 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
18:11:58.0071 3884 Parport - ok
18:11:58.0118 3884 [ 57389FA59A36D96B3EB09D0CB91E9CDC ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:11:58.0118 3884 partmgr - ok
18:11:58.0133 3884 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
18:11:58.0180 3884 Parvdm - ok
18:11:58.0227 3884 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
18:11:58.0258 3884 PcaSvc - ok
18:11:58.0258 3884 PcdrNdisuio - ok
18:11:58.0274 3884 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
18:11:58.0289 3884 pci - ok
18:11:58.0320 3884 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
18:11:58.0336 3884 pciide - ok
18:11:58.0367 3884 [ 3BB2244F343B610C29C98035504C9B75 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:11:58.0383 3884 pcmcia - ok
18:11:58.0445 3884 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:11:58.0508 3884 PEAUTH - ok
18:11:58.0882 3884 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
18:11:58.0976 3884 pla - ok
18:11:58.0991 3884 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:11:59.0038 3884 PlugPlay - ok
18:11:59.0132 3884 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
18:11:59.0163 3884 PNRPAutoReg - ok
18:11:59.0178 3884 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
18:11:59.0194 3884 PNRPsvc - ok
18:11:59.0241 3884 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:11:59.0272 3884 PolicyAgent - ok
18:11:59.0334 3884 [ D5B88B34655EC34308BF470E022BA80F ] Power Manager DBC Service C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE
18:11:59.0350 3884 Power Manager DBC Service - ok
18:11:59.0366 3884 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:11:59.0397 3884 PptpMiniport - ok
18:11:59.0428 3884 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
18:11:59.0459 3884 Processor - ok
18:11:59.0506 3884 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
18:11:59.0537 3884 ProfSvc - ok
18:11:59.0537 3884 [ 3978F3540329E16C0AC3BCF677E5669F ] ProtectedStorage C:\Windows\system32\lsass.exe
18:11:59.0553 3884 ProtectedStorage - ok
18:11:59.0600 3884 [ F8A25F1DD8B2C332CBC663E3579566E7 ] psadd C:\Windows\system32\DRIVERS\psadd.sys
18:11:59.0600 3884 psadd - ok
18:11:59.0631 3884 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
18:11:59.0662 3884 PSched - ok
18:11:59.0709 3884 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
18:11:59.0756 3884 ql2300 - ok
18:11:59.0771 3884 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
18:11:59.0771 3884 ql40xx - ok
18:11:59.0865 3884 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
18:11:59.0896 3884 QWAVE - ok
18:11:59.0896 3884 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:11:59.0912 3884 QWAVEdrv - ok
18:11:59.0927 3884 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:11:59.0943 3884 RasAcd - ok
18:11:59.0958 3884 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
18:12:00.0005 3884 RasAuto - ok
18:12:00.0021 3884 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:12:00.0052 3884 Rasl2tp - ok
18:12:00.0099 3884 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
18:12:00.0146 3884 RasMan - ok
18:12:00.0177 3884 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:12:00.0192 3884 RasPppoe - ok
18:12:00.0208 3884 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:12:00.0224 3884 RasSstp - ok
18:12:00.0255 3884 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:12:00.0286 3884 rdbss - ok
18:12:00.0317 3884 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:12:00.0348 3884 RDPCDD - ok
18:12:00.0380 3884 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\DRIVERS\rdpdr.sys
18:12:00.0411 3884 rdpdr - ok
18:12:00.0411 3884 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:12:00.0442 3884 RDPENCDD - ok
18:12:00.0473 3884 [ 30BFBDFB7F95559EDE971F9DDB9A00BA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:12:00.0489 3884 RDPWD - ok
18:12:00.0567 3884 [ 2B53836A7370291059129CA0D24B7E2D ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:12:00.0629 3884 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
18:12:00.0629 3884 RegSrvc - detected UnsignedFile.Multi.Generic (1)
18:12:00.0660 3884 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:12:00.0676 3884 RemoteAccess - ok
18:12:00.0723 3884 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:12:00.0770 3884 RemoteRegistry - ok
18:12:00.0785 3884 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
18:12:00.0832 3884 RFCOMM - ok
18:12:00.0894 3884 [ C2EF513BBE069F0D4EE0938A76F975D3 ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
18:12:00.0910 3884 rimmptsk - ok
18:12:00.0926 3884 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
18:12:00.0926 3884 rimsptsk - ok
18:12:00.0957 3884 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
18:12:00.0972 3884 rismxdp - ok
18:12:01.0004 3884 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
18:12:01.0035 3884 RpcLocator - ok
18:12:01.0097 3884 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
18:12:01.0128 3884 RpcSs - ok
18:12:01.0160 3884 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:12:01.0206 3884 rspndr - ok
18:12:01.0222 3884 [ 3978F3540329E16C0AC3BCF677E5669F ] SamSs C:\Windows\system32\lsass.exe
18:12:01.0222 3884 SamSs - ok
18:12:01.0238 3884 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:12:01.0269 3884 sbp2port - ok
18:12:01.0300 3884 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:12:01.0331 3884 SCardSvr - ok
18:12:01.0362 3884 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
18:12:01.0409 3884 Schedule - ok
18:12:01.0425 3884 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
18:12:01.0440 3884 SCPolicySvc - ok
18:12:01.0487 3884 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
18:12:01.0503 3884 sdbus - ok
18:12:01.0534 3884 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:12:01.0565 3884 SDRSVC - ok
18:12:01.0596 3884 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:12:01.0643 3884 secdrv - ok
18:12:01.0643 3884 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
18:12:01.0674 3884 seclogon - ok
18:12:01.0674 3884 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
18:12:01.0690 3884 SENS - ok
18:12:01.0706 3884 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
18:12:01.0737 3884 Serenum - ok
18:12:01.0737 3884 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
18:12:01.0784 3884 Serial - ok
18:12:01.0784 3884 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
18:12:01.0815 3884 sermouse - ok
18:12:01.0815 3884 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
18:12:01.0846 3884 SessionEnv - ok
18:12:01.0862 3884 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:12:01.0877 3884 sffdisk - ok
18:12:01.0877 3884 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:12:01.0893 3884 sffp_mmc - ok
18:12:01.0908 3884 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:12:01.0924 3884 sffp_sd - ok
18:12:01.0924 3884 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
18:12:01.0955 3884 sfloppy - ok
18:12:02.0002 3884 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:12:02.0049 3884 SharedAccess - ok
18:12:02.0080 3884 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:12:02.0111 3884 ShellHWDetection - ok
18:12:02.0142 3884 [ 1310C5E81966E86B2CED7AE8CE3D74F1 ] Shockprf C:\Windows\system32\DRIVERS\Apsx86.sys
18:12:02.0142 3884 Shockprf - ok
18:12:02.0158 3884 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
18:12:02.0174 3884 sisagp - ok
18:12:02.0174 3884 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
18:12:02.0189 3884 SiSRaid2 - ok
18:12:02.0189 3884 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
18:12:02.0205 3884 SiSRaid4 - ok
18:12:02.0252 3884 [ 3E587DBBDFF938DDE5D4CE4047BE9041 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
18:12:02.0267 3884 SkypeUpdate - ok
18:12:02.0517 3884 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
18:12:02.0876 3884 slsvc - ok
18:12:02.0891 3884 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
18:12:02.0922 3884 SLUINotify - ok
18:12:02.0969 3884 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:12:03.0000 3884 Smb - ok
18:12:03.0063 3884 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:12:03.0078 3884 SNMPTRAP - ok
18:12:03.0110 3884 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
18:12:03.0125 3884 spldr - ok
18:12:03.0141 3884 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
18:12:03.0188 3884 Spooler - ok
18:12:03.0203 3884 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
18:12:03.0219 3884 SQLBrowser - ok
18:12:03.0250 3884 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
18:12:03.0266 3884 SQLWriter - ok
18:12:03.0297 3884 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:12:03.0312 3884 srv - ok
18:12:03.0359 3884 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:12:03.0390 3884 srv2 - ok
18:12:03.0422 3884 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:12:03.0453 3884 srvnet - ok
18:12:03.0468 3884 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:12:03.0515 3884 SSDPSRV - ok
18:12:03.0546 3884 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:12:03.0562 3884 SstpSvc - ok
18:12:03.0687 3884 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
18:12:03.0765 3884 stisvc - ok
18:12:03.0952 3884 [ A5542490B61C8D8BDE2C8BAEACBD1613 ] SUService c:\Program Files\Lenovo\System Update\SUService.exe
18:12:04.0014 3884 SUService ( UnsignedFile.Multi.Generic ) - warning
18:12:04.0014 3884 SUService - detected UnsignedFile.Multi.Generic (1)
18:12:04.0046 3884 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:12:04.0046 3884 swenum - ok
18:12:04.0092 3884 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
18:12:04.0124 3884 swprv - ok
18:12:04.0139 3884 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
18:12:04.0155 3884 Symc8xx - ok
18:12:04.0155 3884 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
18:12:04.0170 3884 Sym_hi - ok
18:12:04.0170 3884 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
18:12:04.0186 3884 Sym_u3 - ok
18:12:04.0233 3884 [ D1E06D0B79FDBF6E86FF7BE04FF33651 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:12:04.0248 3884 SynTP - ok
18:12:04.0311 3884 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
18:12:04.0389 3884 SysMain - ok
18:12:04.0420 3884 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:12:04.0436 3884 TabletInputService - ok
18:12:04.0467 3884 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:12:04.0498 3884 TapiSrv - ok
18:12:04.0514 3884 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
18:12:04.0560 3884 TBS - ok
18:12:04.0607 3884 [ A474879AFA4A596B3A531F3E69730DBF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:12:04.0654 3884 Tcpip - ok
18:12:04.0670 3884 [ A474879AFA4A596B3A531F3E69730DBF ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
18:12:04.0716 3884 Tcpip6 - ok
18:12:04.0732 3884 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:12:04.0763 3884 tcpipreg - ok
18:12:04.0810 3884 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:12:04.0857 3884 TDPIPE - ok
18:12:04.0857 3884 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:12:04.0888 3884 TDTCP - ok
18:12:04.0935 3884 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:12:04.0982 3884 tdx - ok
18:12:05.0013 3884 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:12:05.0028 3884 TermDD - ok
18:12:05.0075 3884 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
18:12:05.0138 3884 TermService - ok
18:12:05.0169 3884 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
18:12:05.0184 3884 Themes - ok
18:12:05.0340 3884 [ EB90A37AABAEFD7B4F4F92BEFEA8C2E2 ] ThinkVantage Registry Monitor Service c:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
18:12:05.0372 3884 ThinkVantage Registry Monitor Service - ok
18:12:05.0387 3884 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
18:12:05.0403 3884 THREADORDER - ok
18:12:05.0434 3884 [ D7A29E343632E2FC5F7EBFC886F12675 ] TPDIGIMN C:\Windows\system32\DRIVERS\ApsHM86.sys
18:12:05.0434 3884 TPDIGIMN - ok
18:12:05.0450 3884 [ 51B679F627A43A25EF9444AD23BBFF9A ] TPHDEXLGSVC C:\Windows\system32\TPHDEXLG.exe
18:12:05.0465 3884 TPHDEXLGSVC - ok
18:12:05.0512 3884 [ 576B670378253341B2041CB042BB753C ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
18:12:05.0512 3884 TPHKSVC - ok
18:12:05.0543 3884 [ CB258C2F726F1BE73C507022BE33EBB3 ] TPM C:\Windows\system32\drivers\tpm.sys
18:12:05.0543 3884 TPM - ok
18:12:05.0559 3884 [ 1BD5719EF160E0AB739CD0FF3BA5E298 ] TPPWRIF C:\Windows\system32\drivers\Tppwr32v.sys
18:12:05.0574 3884 TPPWRIF - ok
18:12:05.0590 3884 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
18:12:05.0621 3884 TrkWks - ok
18:12:05.0684 3884 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:12:05.0699 3884 TrustedInstaller - ok
18:12:05.0762 3884 [ 4A4FFDEB90A151B734A0BEA3D420FD3B ] TSSCoreService C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe
18:12:05.0793 3884 TSSCoreService - ok
18:12:05.0808 3884 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:12:05.0840 3884 tssecsrv - ok
18:12:05.0840 3884 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
18:12:05.0855 3884 tunmp - ok
18:12:05.0902 3884 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:12:05.0918 3884 tunnel - ok
18:12:05.0949 3884 [ 1A9F115D6F82FC0753D06599E42B2295 ] TVT Backup Protection Service C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
18:12:05.0964 3884 TVT Backup Protection Service ( UnsignedFile.Multi.Generic ) - warning
18:12:05.0964 3884 TVT Backup Protection Service - detected UnsignedFile.Multi.Generic (1)
18:12:06.0011 3884 [ 43FFBB6AF7245C97865ADA74B8CEECF9 ] TVT Backup Service C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
18:12:06.0058 3884 TVT Backup Service ( UnsignedFile.Multi.Generic ) - warning
18:12:06.0058 3884 TVT Backup Service - detected UnsignedFile.Multi.Generic (1)
18:12:06.0136 3884 [ 58BC366538A8A1F252D2750C1F5193B6 ] TVT Scheduler c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
18:12:06.0214 3884 TVT Scheduler ( UnsignedFile.Multi.Generic ) - warning
18:12:06.0214 3884 TVT Scheduler - detected UnsignedFile.Multi.Generic (1)
18:12:06.0245 3884 [ 49258A02A1E8D304ED88B0F1C56B1738 ] tvtfilter C:\Windows\system32\DRIVERS\tvtfilter.sys
18:12:06.0261 3884 tvtfilter ( UnsignedFile.Multi.Generic ) - warning
18:12:06.0261 3884 tvtfilter - detected UnsignedFile.Multi.Generic (1)
18:12:06.0308 3884 [ 7E66DDA1EF146BFC3A6E36E08E036602 ] TVTI2C C:\Windows\system32\DRIVERS\Tvti2c.sys
18:12:06.0323 3884 TVTI2C - ok
18:12:06.0339 3884 [ 2D1EC233C89416BA8187C9D7D49A075A ] tvtumon C:\Windows\system32\DRIVERS\tvtumon.sys
18:12:06.0354 3884 tvtumon - ok
18:12:06.0370 3884 [ 3152355EA8E8274D4FDA092F454DA7C0 ] TVT_UpdateMonitor C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
18:12:06.0370 3884 TVT_UpdateMonitor ( UnsignedFile.Multi.Generic ) - warning
18:12:06.0370 3884 TVT_UpdateMonitor - detected UnsignedFile.Multi.Generic (1)
18:12:06.0401 3884 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
18:12:06.0401 3884 uagp35 - ok
18:12:06.0448 3884 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:12:06.0464 3884 udfs - ok
18:12:06.0526 3884 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:12:06.0557 3884 UI0Detect - ok
18:12:06.0573 3884 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:12:06.0573 3884 uliagpkx - ok
18:12:06.0620 3884 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
18:12:06.0635 3884 uliahci - ok
18:12:06.0635 3884 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
18:12:06.0651 3884 UlSata - ok
18:12:06.0666 3884 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
18:12:06.0682 3884 ulsata2 - ok
18:12:06.0698 3884 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:12:06.0729 3884 umbus - ok
18:12:06.0760 3884 [ 8A66360F38F81E960E2367B428CBD5D9 ] UmRdpService C:\Windows\System32\umrdp.dll
18:12:06.0791 3884 UmRdpService - ok
18:12:06.0822 3884 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
18:12:06.0854 3884 upnphost - ok
18:12:06.0885 3884 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:12:06.0900 3884 usbccgp - ok
18:12:06.0900 3884 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:12:06.0947 3884 usbcir - ok
18:12:06.0978 3884 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:12:07.0025 3884 usbehci - ok
18:12:07.0056 3884 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:12:07.0072 3884 usbhub - ok
18:12:07.0072 3884 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:12:07.0119 3884 usbohci - ok
18:12:07.0150 3884 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
18:12:07.0181 3884 usbprint - ok
18:12:07.0197 3884 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:12:07.0212 3884 USBSTOR - ok
18:12:07.0228 3884 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:12:07.0244 3884 usbuhci - ok
18:12:07.0275 3884 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
18:12:07.0322 3884 usbvideo - ok
18:12:07.0353 3884 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
18:12:07.0384 3884 UxSms - ok
18:12:07.0415 3884 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
18:12:07.0446 3884 vds - ok
18:12:07.0478 3884 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:12:07.0509 3884 vga - ok
18:12:07.0540 3884 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
18:12:07.0571 3884 VgaSave - ok
18:12:07.0571 3884 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
18:12:07.0587 3884 viaagp - ok
18:12:07.0587 3884 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
18:12:07.0602 3884 ViaC7 - ok
18:12:07.0602 3884 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
18:12:07.0618 3884 viaide - ok
18:12:07.0634 3884 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:12:07.0634 3884 volmgr - ok
18:12:07.0680 3884 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:12:07.0696 3884 volmgrx - ok
18:12:07.0727 3884 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:12:07.0743 3884 volsnap - ok
18:12:07.0774 3884 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
18:12:07.0790 3884 vsmraid - ok
18:12:07.0836 3884 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
18:12:07.0883 3884 VSS - ok
18:12:07.0914 3884 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
18:12:07.0946 3884 W32Time - ok
18:12:08.0008 3884 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
18:12:08.0055 3884 WacomPen - ok
18:12:08.0070 3884 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
18:12:08.0086 3884 Wanarp - ok
18:12:08.0086 3884 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:12:08.0102 3884 Wanarpv6 - ok
18:12:08.0164 3884 [ 20B23332885DFB93FE0185362EE811E9 ] wbengine C:\Windows\system32\wbengine.exe
18:12:08.0211 3884 wbengine - ok
18:12:08.0258 3884 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:12:08.0289 3884 wcncsvc - ok
18:12:08.0320 3884 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:12:08.0336 3884 WcsPlugInService - ok
18:12:08.0382 3884 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
18:12:08.0382 3884 Wd - ok
18:12:08.0414 3884 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:12:08.0445 3884 Wdf01000 - ok
18:12:08.0460 3884 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:12:08.0507 3884 WdiServiceHost - ok
18:12:08.0507 3884 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:12:08.0523 3884 WdiSystemHost - ok
18:12:08.0570 3884 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
18:12:08.0585 3884 WebClient - ok
18:12:08.0632 3884 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:12:08.0663 3884 Wecsvc - ok
18:12:08.0679 3884 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:12:08.0694 3884 wercplsupport - ok
18:12:08.0741 3884 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
18:12:08.0757 3884 WerSvc - ok
18:12:08.0772 3884 [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
18:12:08.0788 3884 WimFltr - ok
18:12:08.0850 3884 [ BB9CBAF6AC20452B245C324F1F50EE81 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:12:08.0866 3884 winachsf - ok
18:12:08.0928 3884 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
18:12:08.0944 3884 WinDefend - ok
18:12:08.0944 3884 WinHttpAutoProxySvc - ok
18:12:09.0006 3884 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:12:09.0022 3884 Winmgmt - ok
18:12:09.0100 3884 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
18:12:09.0162 3884 WinRM - ok
18:12:09.0256 3884 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
18:12:09.0287 3884 Wlansvc - ok
18:12:09.0303 3884 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
18:12:09.0334 3884 WmiAcpi - ok
18:12:09.0365 3884 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:12:09.0396 3884 wmiApSrv - ok
18:12:09.0459 3884 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
18:12:09.0506 3884 WMPNetworkSvc - ok
18:12:09.0521 3884 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:12:09.0552 3884 WPDBusEnum - ok
18:12:09.0662 3884 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:12:09.0693 3884 WPFFontCache_v0400 - ok
18:12:09.0724 3884 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:12:09.0740 3884 ws2ifsl - ok
18:12:09.0755 3884 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
18:12:09.0786 3884 wscsvc - ok
18:12:09.0802 3884 WSearch - ok
18:12:09.0911 3884 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
18:12:10.0020 3884 wuauserv - ok
18:12:10.0083 3884 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:12:10.0098 3884 WUDFRd - ok
18:12:10.0145 3884 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:12:10.0161 3884 wudfsvc - ok
18:12:10.0192 3884 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
18:12:10.0208 3884 XAudio - ok
18:12:10.0239 3884 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
18:12:10.0270 3884 XAudioService - ok
18:12:10.0286 3884 ================ Scan global ===============================
18:12:10.0317 3884 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
18:12:10.0364 3884 [ 5DF01708D214FDC0075AD197F1889557 ] C:\Windows\system32\winsrv.dll
18:12:10.0379 3884 [ 5DF01708D214FDC0075AD197F1889557 ] C:\Windows\system32\winsrv.dll
18:12:10.0395 3884 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
18:12:10.0410 3884 [Global] - ok
18:12:10.0410 3884 ================ Scan MBR ==================================
18:12:10.0426 3884 [ 9A96C5A884757F34AA79081904DCED36 ] \Device\Harddisk0\DR0
18:12:10.0722 3884 \Device\Harddisk0\DR0 - ok
18:12:10.0722 3884 ================ Scan VBR ==================================
18:12:10.0722 3884 [ 2081BE6128F13306C40499B8B0E49897 ] \Device\Harddisk0\DR0\Partition1
18:12:10.0722 3884 \Device\Harddisk0\DR0\Partition1 - ok
18:12:10.0738 3884 [ 2D648DA07241C86D66D38DA218AC9539 ] \Device\Harddisk0\DR0\Partition2
18:12:10.0754 3884 \Device\Harddisk0\DR0\Partition2 - ok
18:12:10.0769 3884 [ EB07451ECE98F84E4740D717C2758799 ] \Device\Harddisk0\DR0\Partition3
18:12:10.0769 3884 \Device\Harddisk0\DR0\Partition3 - ok
18:12:10.0769 3884 ============================================================
18:12:10.0769 3884 Scan finished
18:12:10.0769 3884 ============================================================
18:12:10.0785 5328 Detected object count: 10
18:12:10.0785 5328 Actual detected object count: 10
18:13:02.0780 5328 DDNIOEMService ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0780 5328 DDNIOEMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0780 5328 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0780 5328 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0795 5328 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0795 5328 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0795 5328 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0795 5328 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0795 5328 SUService ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0795 5328 SUService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0795 5328 TVT Backup Protection Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0795 5328 TVT Backup Protection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0795 5328 TVT Backup Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0811 5328 TVT Backup Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0811 5328 TVT Scheduler ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0811 5328 TVT Scheduler ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0811 5328 tvtfilter ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0811 5328 tvtfilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:02.0811 5328 TVT_UpdateMonitor ( UnsignedFile.Multi.Generic ) - skipped by user
18:13:02.0811 5328 TVT_UpdateMonitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:13:27.0100 5560 Deinitialize success

[Pavuk29]

skipped by user
to sem ani nedavaj.
Naco
odnes to do servisu, ani sa s tym netrap dalej. To nie je SW zavada.

[AndreaK]

OK, diky.