Prosím o kontrolu pomale PC

Zpráva

Oji · #31 Příspěvek od **Oji** » 29 srp 2013 16:17

za chvilku dam log

Oji · #32 Příspěvek od **Oji** » 29 srp 2013 16:41

ComboFix 13-08-29.01 - Administrator 29.08.2013 14:55:45.4.1 - x86 NETWORK
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1023.711 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrator\Plocha\ComboFix12.exe
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: Kerio Personal Firewall *Disabled* {333BECA0-DED8-4139-A516-8D9E44E22669}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-07-28 do 2013-08-29 )))))))))))))))))))))))))))))))
.
.
2013-08-26 14:33 . 2013-08-26 14:36 -------- d-----w- C:\ComboFix12
2013-08-25 11:46 . 2013-08-25 11:46 -------- d-----w- c:\windows\system32\wbem\Repository
2013-08-24 07:27 . 2013-08-24 07:27 -------- d-----w- c:\documents and settings\Moje\Data aplikací\Malwarebytes
2013-08-24 07:27 . 2013-08-24 07:27 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2013-08-22 10:55 . 2013-08-25 09:21 -------- d-----w- c:\program files\trend micro
2013-08-22 10:44 . 2013-08-25 07:10 -------- d-----w- c:\program files\HD Tune
2013-08-22 09:42 . 2013-08-25 11:46 -------- d-----w- c:\documents and settings\UpdatusUser
2013-08-22 09:42 . 2013-08-22 09:42 -------- d-----w- c:\documents and settings\All Users\Data aplikací\NVIDIA
2013-08-22 09:42 . 2011-08-03 11:49 146024 ----a-w- c:\windows\system32\nvsvc32.exe
2013-08-22 09:42 . 2011-08-03 11:49 145000 ----a-w- c:\windows\system32\nvcolor.exe
2013-08-22 09:42 . 2011-08-03 11:49 13892200 ----a-w- c:\windows\system32\nvcpl.dll
2013-08-22 09:42 . 2011-08-03 11:49 111208 ----a-w- c:\windows\system32\nvmctray.dll
2013-08-22 09:42 . 2011-08-03 11:49 600680 ----a-w- c:\windows\system32\easyupdatusapiu.dll
2013-08-22 09:42 . 2011-08-03 11:49 54272 ----a-w- c:\windows\system32\nvwddi.dll
2013-08-22 09:42 . 2013-08-22 09:42 280276 ----a-w- c:\windows\system32\nvdrsdb0.bin
2013-08-22 09:42 . 2013-08-22 09:42 1 ----a-w- c:\windows\system32\nvdrssel.bin
2013-08-22 09:42 . 2013-08-22 09:42 280276 ----a-w- c:\windows\system32\nvdrsdb1.bin
2013-08-22 09:20 . 2008-06-16 14:34 446464 ----a-w- c:\windows\system32\NVUNINST.EXE
2013-08-22 09:16 . 2013-08-22 09:20 -------- d-----w- C:\NVIDIA
2013-08-22 08:31 . 2013-08-25 11:46 -------- d-----w- c:\documents and settings\Administrator
2013-08-14 17:35 . 2013-08-14 17:35 -------- d-----w- c:\program files\Common Files\Skype
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-22 10:09 . 2012-05-19 11:37 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-22 10:09 . 2011-05-13 16:36 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-27 19:19 . 2013-03-23 19:21 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-06-27 19:19 . 2012-02-20 18:56 369584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-06-27 19:19 . 2012-02-20 18:56 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-04 11:44 . 2011-04-08 17:08 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2006-08-03 577536]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-05-09 4858968]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-08-03 13892200]
"NvMediaCenter"="NvMCTray.dll" [2011-08-03 111208]
"nwiz"="c:\program files\NVIDIA Corporation\nView\nwiz.exe" [2011-07-05 1632360]
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\WINDOWS\\system32\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Updatus\\daemonu.exe"=
.
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [27.9.2008 14:59 717296]
R1 fwdrv;Firewall Driver;c:\windows\system32\drivers\fwdrv.sys [26.9.2005 11:05 286720]
S0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [23.3.2013 21:21 49376]
S0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [23.3.2013 21:21 175176]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [20.2.2012 20:56 770344]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [20.2.2012 20:56 369584]
S1 khips;khips;c:\windows\system32\drivers\khips.sys [26.9.2005 11:05 81920]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20.2.2012 20:56 29816]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [23.3.2013 21:21 66336]
S2 ezGOSvc;Easybits GO Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [18.8.2004 14:00 14336]
S3 MSILiveVirtualCamera;MSI Live Virtual Camera;c:\windows\system32\drivers\MSILiveVirtualCamera.sys [29.1.2007 8:40 449408]
S3 s816bus;Sony Ericsson Device 816 driver (WDM);c:\windows\system32\drivers\s816bus.sys [22.3.2010 21:17 81832]
S3 s816mdfl;Sony Ericsson Device 816 USB WMC Modem Filter;c:\windows\system32\drivers\s816mdfl.sys [22.3.2010 21:17 13864]
S3 s816mdm;Sony Ericsson Device 816 USB WMC Modem Driver;c:\windows\system32\drivers\s816mdm.sys [22.3.2010 21:17 107304]
S3 s816mgmt;Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s816mgmt.sys [22.3.2010 21:17 99112]
S3 s816nd5;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS);c:\windows\system32\drivers\s816nd5.sys [22.3.2010 21:17 21928]
S3 s816obex;Sony Ericsson Device 816 USB WMC OBEX Interface;c:\windows\system32\drivers\s816obex.sys [22.3.2010 21:17 97320]
S3 s816unic;Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM);c:\windows\system32\drivers\s816unic.sys [22.3.2010 21:17 97704]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezGOSvc
.
Obsah adresáře 'Naplánované úlohy'
.
2013-08-28 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-08-05 08:58]
.
.
------- Doplňkový sken -------
.
TCP: Interfaces\{A1BCBBD7-2EF1-42B7-83B1-88D0540A2E83}: NameServer = 192.168.150.237,194.228.2.1
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\zvo9jpln.default\
FF - prefs.js: network.proxy.type - 0
FF - ExtSQL: 2013-08-26 16:14; {ea614400-e918-4741-9a97-7a972ff7c30b}; c:\documents and settings\Administrator\Data aplikacĂÂ\Mozilla\Firefox\Profiles\zvo9jpln.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-08-29 15:00
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2013-08-29 15:01:34
ComboFix-quarantined-files.txt 2013-08-29 13:01
ComboFix2.txt 2013-08-27 13:09
.
Před spuštěním: Volných bajtů: 28 722 483 200
Po spuštění: Volných bajtů: 28 708 171 776
.
- - End Of File - - 5E230EDD7345D4930E39CA8CF7A3A6D2
8F558EB6672622401DA993E1E865C861

#33 Příspěvek od **Márty84** » 30 srp 2013 01:10

Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

vyosek píše: T-Cleaner http://tharifas.sweb.cz/T-Cleaner.exe
Stahnete a spustte

Pro potvrzeni volby mackejte A, Enter

Po pouziti utilitu smazte

Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Nastala nejaka zmena?

Oji · #34 Příspěvek od **Oji** » 30 srp 2013 15:38

Je to stejne neli horši

#35 Příspěvek od **Márty84** » 30 srp 2013 18:15

Pouzijte WinsockFix http://www.softpedia.com/get/Tweak/Netw ... kFix.shtml

Pozor, program resetuje protokol tcp/ip. Jestli mate parametry site zadavany rucne, budete je muset znovu nastavit podle smlouvy s poskytovatelem.

Oji · #36 Příspěvek od **Oji** » 31 srp 2013 19:23

Tak o jedno procento je to lepší ale pořad to jede tak ze asi 10 minut než naskoci net atd pak přepnu stranku a trvato dalsich 10 minut

#37 Příspěvek od **Márty84** » 31 srp 2013 21:41

Spustte MBAR, podle navodu kolegy.

vyosek píše: Stahnete Malwarebytes Anti-Rootkit http://www.bleepingcomputer.com/downloa ... i-rootkit/
Ulozte nejlepe na Plochu a rozbalte

Spustte kliknutim na mbar

Nyni postupne kliknete na Next a Update

Po dokonceni update (aktualizace) databaze kliknete opet na Next

Nechte zaskrtnute vsechny tri moznosti a klinete na Scan cimz spustite prohledavani PC

Po dokonceni skenu (cca 5 minutek) zkontrolujte, zda-li je u vsech nalezu (samozrejme pokud budou) zatrzitko

Tez zkontrolujte, jetsli je zatrzitko u Create Restore point

Nyni kliknete na CleanUp cimz nalezenou infekci odstranime

PC bude restartovan

Slozka mbar by mela obsahovat log (a zrejme se i sam otevre) mbar-log-rok-mesic-den (hodina-minuta-sekunda).txt, ten mi sem dejte

Oji · #38 Příspěvek od **Oji** » 01 zář 2013 09:47

nic nenašel

#39 Příspěvek od **Márty84** » 01 zář 2013 14:17

Postupujte podle navodu kolegy

vyosek píše: Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe
Kliknete na volbu Change parametrs

V okne Additional Option zakliknete vsechny moznosti

Kliknete na OK

Utilite prikazte, at skenuje - klik na Start Scan

Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip

Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip

Pokud mate vsude Skip, kliknete na Continue

Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

Oji · #40 Příspěvek od **Oji** » 01 zář 2013 18:52

15:46:52.0656 1788 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:46:53.0281 1788 ============================================================
15:46:53.0281 1788 Current date / time: 2013/09/01 15:46:53.0281
15:46:53.0281 1788 SystemInfo:
15:46:53.0281 1788
15:46:53.0281 1788 OS Version: 5.1.2600 ServicePack: 3.0
15:46:53.0281 1788 Product type: Workstation
15:46:53.0281 1788 ComputerName: pc
15:46:53.0281 1788 UserName: Administrator
15:46:53.0281 1788 Windows directory: C:\WINDOWS
15:46:53.0281 1788 System windows directory: C:\WINDOWS
15:46:53.0281 1788 Processor architecture: Intel x86
15:46:53.0281 1788 Number of processors: 1
15:46:53.0281 1788 Page size: 0x1000
15:46:53.0281 1788 Boot type: Safe boot with network
15:46:53.0281 1788 ============================================================
15:46:55.0187 1788 BG loaded
15:46:55.0500 1788 Drive \Device\Harddisk0\DR0 - Size: 0x2F7AFF7E00 (189.92 Gb), SectorSize: 0x200, Cylinders: 0x60D8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:46:55.0500 1788 Drive \Device\Harddisk1\DR3 - Size: 0x7470C05E00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:46:55.0515 1788 ============================================================
15:46:55.0515 1788 \Device\Harddisk0\DR0:
15:46:55.0515 1788 MBR partitions:
15:46:55.0515 1788 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x9C41AD8
15:46:55.0515 1788 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C41B17, BlocksNum 0xDF937C1
15:46:55.0515 1788 \Device\Harddisk1\DR3:
15:46:55.0515 1788 MBR partitions:
15:46:55.0515 1788 \Device\Harddisk1\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
15:46:55.0515 1788 ============================================================
15:46:55.0531 1788 C: <-> \Device\Harddisk0\DR0\Partition1
15:46:55.0640 1788 G: <-> \Device\Harddisk1\DR3\Partition1
15:46:55.0796 1788 D: <-> \Device\Harddisk0\DR0\Partition2
15:46:55.0796 1788 ============================================================
15:46:55.0796 1788 Initialize success
15:46:55.0796 1788 ============================================================
15:47:05.0656 1844 ============================================================
15:47:05.0656 1844 Scan started
15:47:05.0656 1844 Mode: Manual; SigCheck; TDLFS;
15:47:05.0656 1844 ============================================================
15:47:06.0796 1844 ================ Scan system memory ========================
15:47:06.0796 1844 System memory - ok
15:47:06.0812 1844 ================ Scan services =============================
15:47:06.0984 1844 Abiosdsk - ok
15:47:07.0000 1844 abp480n5 - ok
15:47:07.0046 1844 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:47:08.0578 1844 ACPI - ok
15:47:08.0625 1844 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
15:47:08.0828 1844 ACPIEC - ok
15:47:08.0843 1844 adpu160m - ok
15:47:08.0906 1844 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:47:09.0078 1844 aec - ok
15:47:09.0125 1844 [ 7E775010EF291DA96AD17CA4B17137D7 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:47:09.0156 1844 AFD - ok
15:47:09.0171 1844 Aha154x - ok
15:47:09.0187 1844 aic78u2 - ok
15:47:09.0218 1844 aic78xx - ok
15:47:09.0375 1844 [ 34149A136B2B7525113950233F259EC1 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
15:47:09.0687 1844 ALCXWDM - ok
15:47:09.0734 1844 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:47:09.0890 1844 Alerter - ok
15:47:09.0921 1844 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
15:47:10.0093 1844 ALG - ok
15:47:10.0125 1844 AliIde - ok
15:47:10.0171 1844 [ 3980814F8027D27EA003E2E3D9D4F604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
15:47:10.0343 1844 AmdK7 - ok
15:47:10.0375 1844 amsint - ok
15:47:10.0421 1844 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
15:47:10.0593 1844 AppMgmt - ok
15:47:10.0609 1844 asc - ok
15:47:10.0640 1844 asc3350p - ok
15:47:10.0671 1844 asc3550 - ok
15:47:10.0812 1844 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:47:10.0843 1844 aspnet_state - ok
15:47:10.0906 1844 [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
15:47:10.0937 1844 aswFsBlk - ok
15:47:11.0015 1844 [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
15:47:11.0031 1844 aswMonFlt - ok
15:47:11.0078 1844 [ 7B43265F92257A21CBFD88E7A651044C ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
15:47:11.0093 1844 aswRdr - ok
15:47:11.0140 1844 [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
15:47:11.0156 1844 aswRvrt - ok
15:47:11.0218 1844 [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
15:47:11.0265 1844 aswSnx - ok
15:47:11.0328 1844 [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
15:47:11.0375 1844 aswSP - ok
15:47:11.0406 1844 [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
15:47:11.0421 1844 aswTdi - ok
15:47:11.0468 1844 [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
15:47:11.0484 1844 aswVmm - ok
15:47:11.0515 1844 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:47:11.0656 1844 AsyncMac - ok
15:47:11.0703 1844 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:47:11.0906 1844 atapi - ok
15:47:11.0937 1844 Atdisk - ok
15:47:11.0984 1844 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:47:12.0187 1844 Atmarpc - ok
15:47:12.0218 1844 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:47:12.0390 1844 AudioSrv - ok
15:47:12.0437 1844 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:47:12.0640 1844 audstub - ok
15:47:12.0765 1844 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:47:12.0781 1844 avast! Antivirus - ok
15:47:12.0843 1844 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:47:13.0093 1844 Beep - ok
15:47:13.0171 1844 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
15:47:13.0421 1844 BITS - ok
15:47:13.0453 1844 [ 249276D3EF1E74B992299CB96099E4D7 ] Browser C:\WINDOWS\System32\browser.dll
15:47:13.0656 1844 Browser - ok
15:47:13.0687 1844 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:47:13.0890 1844 cbidf2k - ok
15:47:13.0921 1844 [ FDC06E2ADA8C468EBB161624E03976CF ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:47:13.0953 1844 CCDECODE - ok
15:47:13.0968 1844 cd20xrnt - ok
15:47:14.0031 1844 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:47:14.0250 1844 Cdaudio - ok
15:47:14.0281 1844 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:47:14.0437 1844 Cdfs - ok
15:47:14.0468 1844 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:47:14.0656 1844 Cdrom - ok
15:47:14.0671 1844 Changer - ok
15:47:14.0734 1844 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:47:14.0906 1844 CiSvc - ok
15:47:14.0921 1844 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:47:15.0078 1844 ClipSrv - ok
15:47:15.0125 1844 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:47:15.0171 1844 clr_optimization_v2.0.50727_32 - ok
15:47:15.0187 1844 CmdIde - ok
15:47:15.0218 1844 COMSysApp - ok
15:47:15.0281 1844 Cpqarray - ok
15:47:15.0328 1844 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:47:15.0515 1844 CryptSvc - ok
15:47:15.0531 1844 dac2w2k - ok
15:47:15.0562 1844 dac960nt - ok
15:47:15.0625 1844 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:47:15.0687 1844 DcomLaunch - ok
15:47:15.0734 1844 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:47:15.0875 1844 Dhcp - ok
15:47:15.0937 1844 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:47:16.0093 1844 Disk - ok
15:47:16.0109 1844 dmadmin - ok
15:47:16.0187 1844 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:47:16.0359 1844 dmboot - ok
15:47:16.0390 1844 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:47:16.0562 1844 dmio - ok
15:47:16.0609 1844 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:47:16.0796 1844 dmload - ok
15:47:16.0843 1844 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:47:16.0968 1844 dmserver - ok
15:47:17.0031 1844 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:47:17.0171 1844 DMusic - ok
15:47:17.0203 1844 [ 0634B791684B84F4A331F3D3536FEEF8 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:47:17.0359 1844 Dnscache - ok
15:47:17.0421 1844 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:47:17.0578 1844 Dot3svc - ok
15:47:17.0593 1844 dpti2o - ok
15:47:17.0640 1844 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:47:17.0781 1844 drmkaud - ok
15:47:17.0859 1844 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:47:18.0015 1844 EapHost - ok
15:47:18.0046 1844 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:47:18.0234 1844 ERSvc - ok
15:47:18.0281 1844 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
15:47:18.0312 1844 Eventlog - ok
15:47:18.0375 1844 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
15:47:18.0406 1844 EventSystem - ok
15:47:18.0500 1844 [ DA7ED3A484A2A03FD8AEC1B3A0DB401C ] ezGOSvc C:\WINDOWS\system32\ezGOSvc.dll
15:47:18.0500 1844 ezGOSvc - ok
15:47:18.0546 1844 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:47:18.0703 1844 Fastfat - ok
15:47:18.0750 1844 [ B927443008910B412BEC72FC41C1BAD0 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:47:18.0921 1844 FastUserSwitchingCompatibility - ok
15:47:18.0953 1844 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
15:47:19.0109 1844 Fdc - ok
15:47:19.0140 1844 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:47:19.0281 1844 Fips - ok
15:47:19.0296 1844 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:47:19.0453 1844 Flpydisk - ok
15:47:19.0484 1844 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:47:19.0656 1844 FltMgr - ok
15:47:19.0718 1844 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:47:19.0718 1844 FontCache3.0.0.0 - ok
15:47:19.0765 1844 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:47:19.0953 1844 Fs_Rec - ok
15:47:19.0968 1844 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:47:20.0171 1844 Ftdisk - ok
15:47:20.0234 1844 [ BEAE63CA06345E0714A3CAE6232482EA ] fwdrv C:\WINDOWS\system32\drivers\fwdrv.sys
15:47:20.0250 1844 fwdrv ( UnsignedFile.Multi.Generic ) - warning
15:47:20.0250 1844 fwdrv - detected UnsignedFile.Multi.Generic (1)
15:47:20.0296 1844 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
15:47:20.0437 1844 gameenum - ok
15:47:20.0453 1844 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:47:20.0578 1844 Gpc - ok
15:47:20.0640 1844 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:47:20.0781 1844 helpsvc - ok
15:47:20.0812 1844 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:47:20.0968 1844 HidServ - ok
15:47:21.0000 1844 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:47:21.0171 1844 HidUsb - ok
15:47:21.0234 1844 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:47:21.0390 1844 hkmsvc - ok
15:47:21.0421 1844 hpn - ok
15:47:21.0484 1844 [ 863CC3A82C63C9F60ACF2E85D5310620 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
15:47:21.0531 1844 HPZid412 - ok
15:47:21.0562 1844 [ 08CB72E95DD75B61F2966B311D0E4366 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
15:47:21.0593 1844 HPZipr12 - ok
15:47:21.0640 1844 [ CA990306ED4EF732AF9695BFF24FC96F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
15:47:21.0656 1844 HPZius12 - ok
15:47:21.0703 1844 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:47:21.0750 1844 HTTP - ok
15:47:21.0812 1844 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:47:21.0984 1844 HTTPFilter - ok
15:47:22.0000 1844 i2omgmt - ok
15:47:22.0031 1844 i2omp - ok
15:47:22.0062 1844 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:47:22.0203 1844 i8042prt - ok
15:47:22.0296 1844 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:47:22.0375 1844 idsvc - ok
15:47:22.0406 1844 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:47:22.0531 1844 Imapi - ok
15:47:22.0562 1844 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:47:22.0718 1844 ImapiService - ok
15:47:22.0750 1844 ini910u - ok
15:47:22.0796 1844 IntelIde - ok
15:47:22.0843 1844 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:47:22.0984 1844 Ip6Fw - ok
15:47:23.0000 1844 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:47:23.0203 1844 IpFilterDriver - ok
15:47:23.0234 1844 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:47:23.0375 1844 IpInIp - ok
15:47:23.0437 1844 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:47:23.0546 1844 IpNat - ok
15:47:23.0578 1844 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:47:23.0734 1844 IPSec - ok
15:47:23.0765 1844 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:47:23.0890 1844 IRENUM - ok
15:47:23.0921 1844 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:47:24.0046 1844 isapnp - ok
15:47:24.0093 1844 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:47:24.0234 1844 Kbdclass - ok
15:47:24.0281 1844 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:47:24.0406 1844 kbdhid - ok
15:47:24.0453 1844 [ F1B81D62EA598047D28DD12E1F417976 ] khips C:\WINDOWS\system32\drivers\khips.sys
15:47:24.0468 1844 khips ( UnsignedFile.Multi.Generic ) - warning
15:47:24.0468 1844 khips - detected UnsignedFile.Multi.Generic (1)
15:47:24.0515 1844 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:47:24.0656 1844 kmixer - ok
15:47:24.0703 1844 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:47:24.0765 1844 KSecDD - ok
15:47:24.0796 1844 [ 21920AC69594AB021237054FA728FE46 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:47:24.0937 1844 lanmanserver - ok
15:47:24.0984 1844 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:47:25.0031 1844 lanmanworkstation - ok
15:47:25.0046 1844 lbrtfdc - ok
15:47:25.0125 1844 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:47:25.0265 1844 LmHosts - ok
15:47:25.0359 1844 [ B749B05D5A7AD704E47D4565B4894D99 ] mbamchameleon C:\WINDOWS\system32\drivers\mbamchameleon.sys
15:47:25.0375 1844 mbamchameleon - ok
15:47:25.0437 1844 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
15:47:25.0484 1844 MDM - ok
15:47:25.0515 1844 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:47:25.0656 1844 Messenger - ok
15:47:25.0703 1844 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:47:25.0906 1844 mnmdd - ok
15:47:25.0937 1844 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:47:26.0078 1844 mnmsrvc - ok
15:47:26.0156 1844 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:47:26.0281 1844 Modem - ok
15:47:26.0312 1844 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:47:26.0453 1844 Mouclass - ok
15:47:26.0531 1844 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:47:26.0718 1844 mouhid - ok
15:47:26.0750 1844 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:47:26.0890 1844 MountMgr - ok
15:47:26.0937 1844 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:47:26.0953 1844 MozillaMaintenance - ok
15:47:26.0968 1844 mraid35x - ok
15:47:27.0015 1844 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:47:27.0156 1844 MRxDAV - ok
15:47:27.0203 1844 [ F3AEFB11ABC521122B67095044169E98 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:47:27.0265 1844 MRxSmb - ok
15:47:27.0296 1844 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:47:27.0421 1844 MSDTC - ok
15:47:27.0468 1844 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:47:27.0609 1844 Msfs - ok
15:47:27.0671 1844 [ 2F51C135AC2B81F5242C20A47C307CBE ] MSILiveVirtualCamera C:\WINDOWS\system32\DRIVERS\MSILiveVirtualCamera.sys
15:47:27.0718 1844 MSILiveVirtualCamera - ok
15:47:27.0734 1844 MSIServer - ok
15:47:27.0765 1844 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:47:27.0906 1844 MSKSSRV - ok
15:47:27.0937 1844 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:47:28.0078 1844 MSPCLOCK - ok
15:47:28.0109 1844 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:47:28.0250 1844 MSPQM - ok
15:47:28.0265 1844 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:47:28.0406 1844 mssmbios - ok
15:47:28.0468 1844 [ D5059366B361F0E1124753447AF08AA2 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
15:47:28.0531 1844 MSTEE - ok
15:47:28.0546 1844 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:47:28.0687 1844 Mup - ok
15:47:28.0718 1844 [ AC31B352CE5E92704056D409834BEB74 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:47:28.0734 1844 NABTSFEC - ok
15:47:28.0796 1844 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:47:28.0953 1844 napagent - ok
15:47:29.0000 1844 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:47:29.0156 1844 NDIS - ok
15:47:29.0187 1844 [ ABD7629CF2796250F315C1DD0B6CF7A0 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:47:29.0187 1844 NdisIP - ok
15:47:29.0234 1844 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:47:29.0359 1844 NdisTapi - ok
15:47:29.0390 1844 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:47:29.0515 1844 Ndisuio - ok
15:47:29.0546 1844 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:47:29.0687 1844 NdisWan - ok
15:47:29.0718 1844 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:47:29.0843 1844 NDProxy - ok
15:47:29.0859 1844 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:47:30.0015 1844 NetBIOS - ok
15:47:30.0062 1844 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:47:30.0218 1844 NetBT - ok
15:47:30.0265 1844 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
15:47:30.0390 1844 NetDDE - ok
15:47:30.0406 1844 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:47:30.0562 1844 NetDDEdsdm - ok
15:47:30.0609 1844 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:47:30.0750 1844 Netlogon - ok
15:47:30.0781 1844 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
15:47:30.0906 1844 Netman - ok
15:47:30.0968 1844 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:47:30.0984 1844 NetTcpPortSharing - ok
15:47:31.0031 1844 [ 1289B7611CCD6CB27596AE92CBF03E35 ] Nla C:\WINDOWS\System32\mswsock.dll
15:47:31.0062 1844 Nla - ok
15:47:31.0156 1844 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:47:31.0296 1844 Npfs - ok
15:47:31.0359 1844 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:47:31.0515 1844 Ntfs - ok
15:47:31.0546 1844 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:47:31.0687 1844 NtLmSsp - ok
15:47:31.0734 1844 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:47:31.0921 1844 NtmsSvc - ok
15:47:31.0968 1844 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
15:47:32.0171 1844 Null - ok
15:47:32.0578 1844 [ 6733E80A193FC36F41C24142B0C45C0E ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:47:33.0218 1844 nv - ok
15:47:33.0250 1844 [ 2E6ED9FE65A9B3EC606603ED0F33DD7D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
15:47:33.0265 1844 NVSvc - ok
15:47:33.0390 1844 [ 3C09CC7992A8ADECD1FDDFD5D8E69BAE ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
15:47:33.0515 1844 nvUpdatusService - ok
15:47:33.0562 1844 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:47:33.0765 1844 NwlnkFlt - ok
15:47:33.0796 1844 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:47:33.0968 1844 NwlnkFwd - ok
15:47:34.0015 1844 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:47:34.0031 1844 ose - ok
15:47:34.0093 1844 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:47:34.0250 1844 Parport - ok
15:47:34.0296 1844 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:47:34.0421 1844 PartMgr - ok
15:47:34.0468 1844 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:47:34.0640 1844 ParVdm - ok
15:47:34.0656 1844 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:47:34.0796 1844 PCI - ok
15:47:34.0828 1844 PCIDump - ok
15:47:34.0953 1844 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
15:47:35.0125 1844 PCIIde - ok
15:47:35.0156 1844 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
15:47:35.0296 1844 Pcmcia - ok
15:47:35.0328 1844 PDCOMP - ok
15:47:35.0359 1844 PDFRAME - ok
15:47:35.0375 1844 PDRELI - ok
15:47:35.0421 1844 PDRFRAME - ok
15:47:35.0453 1844 perc2 - ok
15:47:35.0484 1844 perc2hib - ok
15:47:35.0578 1844 [ 6C1618A07B49E3873582B6449E744088 ] pfc C:\WINDOWS\system32\drivers\pfc.sys
15:47:35.0593 1844 pfc ( UnsignedFile.Multi.Generic ) - warning
15:47:35.0593 1844 pfc - detected UnsignedFile.Multi.Generic (1)
15:47:35.0625 1844 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
15:47:35.0640 1844 PlugPlay - ok
15:47:35.0671 1844 [ FB03F341FF5380394BF2EE52F1979925 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
15:47:35.0687 1844 Pml Driver HPZ12 - ok
15:47:35.0734 1844 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:47:35.0843 1844 PolicyAgent - ok
15:47:35.0890 1844 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:47:36.0046 1844 PptpMiniport - ok
15:47:36.0109 1844 [ 960BCE3ED38761B446AABAC06C76BADF ] prosync1 C:\WINDOWS\system32\drivers\prosync1.sys
15:47:36.0109 1844 prosync1 ( UnsignedFile.Multi.Generic ) - warning
15:47:36.0109 1844 prosync1 - detected UnsignedFile.Multi.Generic (1)
15:47:36.0125 1844 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:47:36.0265 1844 ProtectedStorage - ok
15:47:36.0312 1844 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:47:36.0453 1844 PSched - ok
15:47:36.0484 1844 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:47:36.0640 1844 Ptilink - ok
15:47:36.0671 1844 ql1080 - ok
15:47:36.0718 1844 Ql10wnt - ok
15:47:36.0750 1844 ql12160 - ok
15:47:36.0781 1844 ql1240 - ok
15:47:36.0812 1844 ql1280 - ok
15:47:36.0843 1844 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:47:37.0031 1844 RasAcd - ok
15:47:37.0062 1844 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:47:37.0187 1844 RasAuto - ok
15:47:37.0234 1844 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:47:37.0359 1844 Rasl2tp - ok
15:47:37.0390 1844 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:47:37.0531 1844 RasMan - ok
15:47:37.0578 1844 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:47:37.0703 1844 RasPppoe - ok
15:47:37.0718 1844 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:47:37.0890 1844 Raspti - ok
15:47:37.0937 1844 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:47:38.0078 1844 Rdbss - ok
15:47:38.0125 1844 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:47:38.0343 1844 RDPCDD - ok
15:47:38.0390 1844 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:47:38.0531 1844 rdpdr - ok
15:47:38.0593 1844 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:47:38.0812 1844 RDPWD - ok
15:47:38.0859 1844 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:47:39.0000 1844 RDSessMgr - ok
15:47:39.0031 1844 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:47:39.0171 1844 redbook - ok
15:47:39.0218 1844 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:47:39.0359 1844 RemoteAccess - ok
15:47:39.0375 1844 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
15:47:39.0515 1844 RemoteRegistry - ok
15:47:39.0531 1844 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
15:47:39.0671 1844 RpcLocator - ok
15:47:39.0718 1844 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
15:47:39.0734 1844 RpcSs - ok
15:47:39.0765 1844 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:47:39.0953 1844 RSVP - ok
15:47:39.0984 1844 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
15:47:40.0109 1844 rtl8139 - ok
15:47:40.0171 1844 [ 8C156E6B568AA927EB5DEADEB870BDD2 ] s816bus C:\WINDOWS\system32\DRIVERS\s816bus.sys
15:47:40.0187 1844 s816bus - ok
15:47:40.0234 1844 [ D4ED429953A2B8B09C702805813A26C8 ] s816mdfl C:\WINDOWS\system32\DRIVERS\s816mdfl.sys
15:47:40.0234 1844 s816mdfl - ok
15:47:40.0265 1844 [ 94306F371A6FF8B690BEA81157111B3B ] s816mdm C:\WINDOWS\system32\DRIVERS\s816mdm.sys
15:47:40.0281 1844 s816mdm - ok
15:47:40.0328 1844 [ FAFDD00ABAD1B6029BF7F4067764AB41 ] s816mgmt C:\WINDOWS\system32\DRIVERS\s816mgmt.sys
15:47:40.0343 1844 s816mgmt - ok
15:47:40.0390 1844 [ FD0D1E39CB22558D79BFF59B66A5874A ] s816nd5 C:\WINDOWS\system32\DRIVERS\s816nd5.sys
15:47:40.0390 1844 s816nd5 - ok
15:47:40.0421 1844 [ 8EACD5E46764463E75F171D9BF305348 ] s816obex C:\WINDOWS\system32\DRIVERS\s816obex.sys
15:47:40.0437 1844 s816obex - ok
15:47:40.0468 1844 [ E2090B041B935430ABC8E184B7D6CD75 ] s816unic C:\WINDOWS\system32\DRIVERS\s816unic.sys
15:47:40.0484 1844 s816unic - ok
15:47:40.0515 1844 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
15:47:40.0656 1844 SamSs - ok
15:47:40.0687 1844 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:47:40.0828 1844 SCardSvr - ok
15:47:40.0875 1844 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:47:41.0000 1844 Schedule - ok
15:47:41.0062 1844 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:47:41.0218 1844 Secdrv - ok
15:47:41.0234 1844 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:47:41.0390 1844 seclogon - ok
15:47:41.0437 1844 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
15:47:41.0562 1844 SENS - ok
15:47:41.0578 1844 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:47:41.0718 1844 serenum - ok
15:47:41.0750 1844 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:47:41.0890 1844 Serial - ok
15:47:41.0968 1844 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:47:42.0109 1844 Sfloppy - ok
15:47:42.0156 1844 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:47:42.0296 1844 SharedAccess - ok
15:47:42.0328 1844 [ B927443008910B412BEC72FC41C1BAD0 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:47:42.0468 1844 ShellHWDetection - ok
15:47:42.0500 1844 Simbad - ok
15:47:42.0546 1844 [ 1FFC44D6787EC1EA9A2B1440A90FA5C1 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:47:42.0562 1844 SLIP - ok
15:47:42.0625 1844 SNP2UVC - ok
15:47:42.0656 1844 Sparrow - ok
15:47:42.0703 1844 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:47:42.0843 1844 splitter - ok
15:47:42.0875 1844 [ CB1090BCA0E7B40D0B5B4E4D66531809 ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:47:43.0000 1844 Spooler - ok
15:47:43.0187 1844 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
15:47:43.0187 1844 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
15:47:43.0218 1844 sptd ( LockedFile.Multi.Generic ) - warning
15:47:43.0218 1844 sptd - detected LockedFile.Multi.Generic (1)
15:47:43.0265 1844 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:47:43.0421 1844 sr - ok
15:47:43.0453 1844 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
15:47:43.0578 1844 srservice - ok
15:47:43.0640 1844 [ DA852E3E0BF1CEA75D756F9866241E57 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:47:43.0687 1844 Srv - ok
15:47:43.0734 1844 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:47:43.0890 1844 SSDPSRV - ok
15:47:43.0937 1844 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:47:44.0078 1844 stisvc - ok
15:47:44.0109 1844 [ A9F9FD0212E572B84EDB9EB661F6BC04 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:47:44.0109 1844 streamip - ok
15:47:44.0156 1844 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:47:44.0281 1844 swenum - ok
15:47:44.0328 1844 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:47:44.0468 1844 swmidi - ok
15:47:44.0484 1844 SwPrv - ok
15:47:44.0531 1844 symc810 - ok
15:47:44.0562 1844 symc8xx - ok
15:47:44.0593 1844 sym_hi - ok
15:47:44.0625 1844 sym_u3 - ok
15:47:44.0671 1844 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:47:44.0781 1844 sysaudio - ok
15:47:44.0812 1844 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:47:44.0953 1844 SysmonLog - ok
15:47:45.0000 1844 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:47:45.0171 1844 TapiSrv - ok
15:47:45.0218 1844 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:47:45.0234 1844 Tcpip - ok
15:47:45.0281 1844 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:47:45.0421 1844 TDPIPE - ok
15:47:45.0453 1844 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:47:45.0562 1844 TDTCP - ok
15:47:45.0593 1844 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:47:45.0734 1844 TermDD - ok
15:47:45.0812 1844 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
15:47:45.0953 1844 TermService - ok
15:47:45.0984 1844 [ B927443008910B412BEC72FC41C1BAD0 ] Themes C:\WINDOWS\System32\shsvcs.dll
15:47:46.0109 1844 Themes - ok
15:47:46.0156 1844 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
15:47:46.0281 1844 TlntSvr - ok
15:47:46.0296 1844 TosIde - ok
15:47:46.0343 1844 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:47:46.0484 1844 TrkWks - ok
15:47:46.0546 1844 [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
15:47:46.0687 1844 uagp35 - ok
15:47:46.0750 1844 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:47:46.0859 1844 Udfs - ok
15:47:46.0875 1844 ultra - ok
15:47:46.0921 1844 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:47:47.0078 1844 Update - ok
15:47:47.0125 1844 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
15:47:47.0281 1844 upnphost - ok
15:47:47.0328 1844 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
15:47:47.0453 1844 UPS - ok
15:47:47.0500 1844 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
15:47:47.0640 1844 usbaudio - ok
15:47:47.0687 1844 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:47:47.0828 1844 usbccgp - ok
15:47:47.0843 1844 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:47:47.0984 1844 usbehci - ok
15:47:48.0031 1844 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:47:48.0171 1844 usbhub - ok
15:47:48.0203 1844 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:47:48.0328 1844 usbprint - ok
15:47:48.0343 1844 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:47:48.0500 1844 usbscan - ok
15:47:48.0546 1844 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:47:48.0687 1844 USBSTOR - ok
15:47:48.0703 1844 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:47:48.0843 1844 usbuhci - ok

Oji · #41 Příspěvek od **Oji** » 01 zář 2013 18:53

15:47:48.0875 1844 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
15:47:49.0015 1844 usbvideo - ok
15:47:49.0046 1844 [ E3389E42561670D112D77A431010377B ] VD_FileDisk C:\WINDOWS\system32\drivers\VD_FileDisk.sys
15:47:49.0093 1844 VD_FileDisk ( UnsignedFile.Multi.Generic ) - warning
15:47:49.0093 1844 VD_FileDisk - detected UnsignedFile.Multi.Generic (1)
15:47:49.0140 1844 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:47:49.0281 1844 VgaSave - ok
15:47:49.0343 1844 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
15:47:49.0375 1844 viaagp1 - ok
15:47:49.0421 1844 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
15:47:49.0562 1844 ViaIde - ok
15:47:49.0593 1844 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:47:49.0734 1844 VolSnap - ok
15:47:49.0781 1844 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
15:47:49.0937 1844 VSS - ok
15:47:49.0984 1844 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
15:47:50.0140 1844 W32Time - ok
15:47:50.0187 1844 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:47:50.0312 1844 Wanarp - ok
15:47:50.0343 1844 WDICA - ok
15:47:50.0390 1844 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:47:50.0500 1844 wdmaud - ok
15:47:50.0531 1844 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
15:47:50.0687 1844 WebClient - ok
15:47:50.0781 1844 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:47:50.0937 1844 winmgmt - ok
15:47:51.0031 1844 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:47:51.0109 1844 WmdmPmSN - ok
15:47:51.0203 1844 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
15:47:51.0250 1844 Wmi - ok
15:47:51.0312 1844 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:47:51.0437 1844 WmiApSrv - ok
15:47:51.0515 1844 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:47:51.0609 1844 WMPNetworkSvc - ok
15:47:51.0656 1844 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:47:51.0781 1844 WS2IFSL - ok
15:47:51.0843 1844 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:47:51.0984 1844 wscsvc - ok
15:47:52.0015 1844 [ 233CDD1C06942115802EB7CE6669E099 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:47:52.0031 1844 WSTCODEC - ok
15:47:52.0062 1844 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:47:52.0187 1844 wuauserv - ok
15:47:52.0234 1844 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:47:52.0265 1844 WudfPf - ok
15:47:52.0312 1844 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:47:52.0343 1844 WudfRd - ok
15:47:52.0359 1844 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:47:52.0375 1844 WudfSvc - ok
15:47:52.0437 1844 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:47:52.0578 1844 WZCSVC - ok
15:47:52.0640 1844 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:47:52.0984 1844 xmlprov - ok
15:47:53.0046 1844 ================ Scan global ===============================
15:47:53.0156 1844 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
15:47:53.0203 1844 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
15:47:53.0250 1844 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
15:47:53.0296 1844 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
15:47:53.0296 1844 [Global] - ok
15:47:53.0312 1844 ================ Scan MBR ==================================
15:47:53.0328 1844 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
15:47:54.0171 1844 \Device\Harddisk0\DR0 - ok
15:47:54.0203 1844 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR3
15:47:54.0718 1844 \Device\Harddisk1\DR3 - ok
15:47:54.0734 1844 ================ Scan VBR ==================================
15:47:54.0750 1844 [ B2FC9EB312F25A0CF5E686F0E4E3ADB8 ] \Device\Harddisk0\DR0\Partition1
15:47:54.0750 1844 \Device\Harddisk0\DR0\Partition1 - ok
15:47:54.0765 1844 [ ACD704A410351C1CBF618C697D4F8A91 ] \Device\Harddisk0\DR0\Partition2
15:47:54.0781 1844 \Device\Harddisk0\DR0\Partition2 - ok
15:47:54.0796 1844 [ 11E88D0AA04E7B2380A8159CF2E054D4 ] \Device\Harddisk1\DR3\Partition1
15:47:54.0796 1844 \Device\Harddisk1\DR3\Partition1 - ok
15:47:54.0796 1844 ================ Scan active images ========================
15:47:54.0812 1844 [ D507C1400284176573224903819FFDA3 ] C:\WINDOWS\system32\drivers\RTL8139.sys
15:47:54.0812 1844 C:\WINDOWS\system32\drivers\RTL8139.sys - ok
15:47:54.0828 1844 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
15:47:54.0828 1844 C:\WINDOWS\system32\drivers\imapi.sys - ok
15:47:54.0859 1844 [ 6C1618A07B49E3873582B6449E744088 ] C:\WINDOWS\system32\drivers\pfc.sys
15:47:54.0859 1844 C:\WINDOWS\system32\drivers\pfc.sys - ok
15:47:54.0875 1844 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
15:47:54.0875 1844 C:\WINDOWS\system32\drivers\cdrom.sys - ok
15:47:54.0906 1844 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
15:47:54.0906 1844 C:\WINDOWS\system32\drivers\ks.sys - ok
15:47:54.0937 1844 [ 611BFD220305BE3A85AE876EA47D4AA5 ] C:\WINDOWS\system32\drivers\redbook.sys
15:47:54.0937 1844 C:\WINDOWS\system32\drivers\redbook.sys - ok
15:47:54.0953 1844 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
15:47:54.0953 1844 C:\WINDOWS\system32\drivers\usbport.sys - ok
15:47:54.0984 1844 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
15:47:54.0984 1844 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
15:47:55.0000 1844 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
15:47:55.0000 1844 C:\WINDOWS\system32\drivers\usbehci.sys - ok
15:47:55.0031 1844 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
15:47:55.0031 1844 C:\WINDOWS\system32\drivers\fdc.sys - ok
15:47:55.0062 1844 [ C528E27945367191E7BAE364930B6932 ] C:\WINDOWS\system32\drivers\i8042prt.sys
15:47:55.0062 1844 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
15:47:55.0078 1844 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] C:\WINDOWS\system32\drivers\kbdclass.sys
15:47:55.0078 1844 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
15:47:55.0093 1844 [ 4CB582831DBDE63CE43B45D771218374 ] C:\WINDOWS\system32\drivers\mouclass.sys
15:47:55.0093 1844 C:\WINDOWS\system32\drivers\mouclass.sys - ok
15:47:55.0125 1844 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
15:47:55.0125 1844 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
15:47:55.0140 1844 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] C:\WINDOWS\system32\drivers\ndistapi.sys
15:47:55.0140 1844 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
15:47:55.0171 1844 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
15:47:55.0171 1844 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
15:47:55.0203 1844 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
15:47:55.0203 1844 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
15:47:55.0218 1844 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
15:47:55.0218 1844 C:\WINDOWS\system32\drivers\raspptp.sys - ok
15:47:55.0250 1844 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
15:47:55.0250 1844 C:\WINDOWS\system32\drivers\tdi.sys - ok
15:47:55.0281 1844 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
15:47:55.0281 1844 C:\WINDOWS\system32\drivers\psched.sys - ok
15:47:55.0296 1844 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
15:47:55.0296 1844 C:\WINDOWS\system32\drivers\msgpc.sys - ok
15:47:55.0328 1844 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
15:47:55.0328 1844 C:\WINDOWS\system32\drivers\ptilink.sys - ok
15:47:55.0343 1844 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
15:47:55.0343 1844 C:\WINDOWS\system32\drivers\raspti.sys - ok
15:47:55.0359 1844 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
15:47:55.0359 1844 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
15:47:55.0390 1844 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
15:47:55.0390 1844 C:\WINDOWS\system32\drivers\termdd.sys - ok
15:47:55.0421 1844 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
15:47:55.0421 1844 C:\WINDOWS\system32\drivers\swenum.sys - ok
15:47:55.0437 1844 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
15:47:55.0437 1844 C:\WINDOWS\system32\drivers\update.sys - ok
15:47:55.0468 1844 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
15:47:55.0468 1844 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
15:47:55.0484 1844 [ 6215023940CFD3702B46ABC304E1D45A ] C:\WINDOWS\system32\drivers\ndproxy.sys
15:47:55.0484 1844 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
15:47:55.0515 1844 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
15:47:55.0515 1844 C:\WINDOWS\system32\drivers\usbd.sys - ok
15:47:55.0546 1844 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
15:47:55.0546 1844 C:\WINDOWS\system32\drivers\usbhub.sys - ok
15:47:55.0562 1844 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
15:47:55.0562 1844 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
15:47:55.0578 1844 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
15:47:55.0578 1844 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
15:47:55.0609 1844 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
15:47:55.0609 1844 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
15:47:55.0640 1844 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
15:47:55.0640 1844 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
15:47:55.0656 1844 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
15:47:55.0656 1844 C:\WINDOWS\system32\drivers\beep.sys - ok
15:47:55.0687 1844 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
15:47:55.0687 1844 C:\WINDOWS\system32\drivers\null.sys - ok
15:47:55.0703 1844 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
15:47:55.0703 1844 C:\WINDOWS\system32\drivers\videoprt.sys - ok
15:47:55.0734 1844 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
15:47:55.0734 1844 C:\WINDOWS\system32\drivers\vga.sys - ok
15:47:55.0765 1844 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
15:47:55.0765 1844 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
15:47:55.0781 1844 [ BEAE63CA06345E0714A3CAE6232482EA ] C:\WINDOWS\system32\drivers\fwdrv.sys
15:47:55.0781 1844 C:\WINDOWS\system32\drivers\fwdrv.sys - ok
15:47:55.0812 1844 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
15:47:55.0812 1844 C:\WINDOWS\system32\drivers\msfs.sys - ok
15:47:55.0828 1844 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
15:47:55.0828 1844 C:\WINDOWS\system32\drivers\npfs.sys - ok
15:47:55.0843 1844 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
15:47:55.0843 1844 C:\WINDOWS\system32\drivers\rasacd.sys - ok
15:47:55.0875 1844 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
15:47:55.0875 1844 C:\WINDOWS\system32\drivers\ipsec.sys - ok
15:47:55.0906 1844 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
15:47:55.0906 1844 C:\WINDOWS\system32\drivers\tcpip.sys - ok
15:47:55.0921 1844 [ 1F71F170D90E42EFDE9633D81D5E12DC ] C:\WINDOWS\system32\drivers\aswTdi.sys
15:47:55.0921 1844 C:\WINDOWS\system32\drivers\aswTdi.sys - ok
15:47:55.0953 1844 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
15:47:55.0953 1844 C:\WINDOWS\system32\drivers\ipnat.sys - ok
15:47:55.0984 1844 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
15:47:55.0984 1844 C:\WINDOWS\system32\drivers\netbt.sys - ok
15:47:56.0000 1844 [ 7B43265F92257A21CBFD88E7A651044C ] C:\WINDOWS\system32\drivers\aswRdr.sys
15:47:56.0000 1844 C:\WINDOWS\system32\drivers\aswRdr.sys - ok
15:47:56.0031 1844 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
15:47:56.0031 1844 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
15:47:56.0046 1844 [ 7E775010EF291DA96AD17CA4B17137D7 ] C:\WINDOWS\system32\drivers\afd.sys
15:47:56.0046 1844 C:\WINDOWS\system32\drivers\afd.sys - ok
15:47:56.0078 1844 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
15:47:56.0078 1844 C:\WINDOWS\system32\drivers\netbios.sys - ok
15:47:56.0093 1844 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
15:47:56.0093 1844 C:\WINDOWS\system32\drivers\rdbss.sys - ok
15:47:56.0125 1844 [ F3AEFB11ABC521122B67095044169E98 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
15:47:56.0125 1844 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
15:47:56.0140 1844 [ 342F3C858DFEFC3A0722DADEA3F3EAAB ] C:\WINDOWS\system32\ntdll.dll
15:47:56.0140 1844 C:\WINDOWS\system32\ntdll.dll - ok
15:47:56.0171 1844 [ 9B08A8C6331C2DA9C30377BCB4262721 ] C:\WINDOWS\system32\smss.exe
15:47:56.0171 1844 C:\WINDOWS\system32\smss.exe - ok
15:47:56.0187 1844 [ C7A9FF12C63E2E448722B02C71A8C431 ] C:\WINDOWS\system32\autochk.exe
15:47:56.0187 1844 C:\WINDOWS\system32\autochk.exe - ok
15:47:56.0218 1844 [ 56A6034E7764E23D9114223EB3523925 ] C:\WINDOWS\system32\sfcfiles.dll
15:47:56.0218 1844 C:\WINDOWS\system32\sfcfiles.dll - ok
15:47:56.0250 1844 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
15:47:56.0250 1844 C:\WINDOWS\system32\drivers\cdfs.sys - ok
15:47:56.0265 1844 [ A32426D9B14A089EAA1D922E0C5801A9 ] C:\WINDOWS\system32\drivers\usbstor.sys
15:47:56.0265 1844 C:\WINDOWS\system32\drivers\usbstor.sys - ok
15:47:56.0296 1844 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
15:47:56.0296 1844 C:\WINDOWS\system32\drivers\atapi.sys - ok
15:47:56.0328 1844 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
15:47:56.0328 1844 C:\WINDOWS\system32\drivers\wmilib.sys - ok
15:47:56.0328 1844 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
15:47:56.0328 1844 C:\WINDOWS\system32\drivers\dxapi.sys - ok
15:47:56.0359 1844 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
15:47:56.0359 1844 C:\WINDOWS\system32\watchdog.sys - ok
15:47:56.0390 1844 [ 21A48AA96D99AEF0193526F5E762E21B ] C:\WINDOWS\system32\win32k.sys
15:47:56.0390 1844 C:\WINDOWS\system32\win32k.sys - ok
15:47:56.0406 1844 [ 628CE66E3FD35BFC7969DBAC245DC069 ] C:\WINDOWS\system32\csrss.exe
15:47:56.0406 1844 C:\WINDOWS\system32\csrss.exe - ok
15:47:56.0437 1844 [ C1BE86ABE39CAAFBF4E2EB18F8D75E98 ] C:\WINDOWS\system32\csrsrv.dll
15:47:56.0437 1844 C:\WINDOWS\system32\csrsrv.dll - ok
15:47:56.0468 1844 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
15:47:56.0468 1844 C:\WINDOWS\system32\basesrv.dll - ok
15:47:56.0484 1844 [ 77A41C497ADB0C96D1E8DF6F71D843C0 ] C:\WINDOWS\system32\winsrv.dll
15:47:56.0484 1844 C:\WINDOWS\system32\winsrv.dll - ok
15:47:56.0515 1844 [ 90C925765E695AB984BE2E8A21B62AE9 ] C:\WINDOWS\system32\gdi32.dll
15:47:56.0515 1844 C:\WINDOWS\system32\gdi32.dll - ok
15:47:56.0531 1844 [ 545C653E8FE241CA6200798AA94FE5C7 ] C:\WINDOWS\system32\kernel32.dll
15:47:56.0531 1844 C:\WINDOWS\system32\kernel32.dll - ok
15:47:56.0562 1844 [ E16E0990967374E76F3E40CACAFD3D53 ] C:\WINDOWS\system32\user32.dll
15:47:56.0562 1844 C:\WINDOWS\system32\user32.dll - ok
15:47:56.0578 1844 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
15:47:56.0578 1844 C:\WINDOWS\system32\drivers\dxg.sys - ok
15:47:56.0609 1844 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
15:47:56.0609 1844 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
15:47:56.0625 1844 [ 1BD2076C717CB48967D5078EC9650891 ] C:\WINDOWS\system32\vga.dll
15:47:56.0625 1844 C:\WINDOWS\system32\vga.dll - ok
15:47:56.0656 1844 [ 9BB4EED8CCB41C276E49746E87FB4FA3 ] C:\WINDOWS\system32\framebuf.dll
15:47:56.0656 1844 C:\WINDOWS\system32\framebuf.dll - ok
15:47:56.0687 1844 [ 0C08EC42BF50D8960874EC8F8D7FE206 ] C:\WINDOWS\system32\vga256.dll
15:47:56.0687 1844 C:\WINDOWS\system32\vga256.dll - ok
15:47:56.0703 1844 [ 259BE40578AD4AA29DB728BBAA51EC6B ] C:\WINDOWS\system32\vga64k.dll
15:47:56.0703 1844 C:\WINDOWS\system32\vga64k.dll - ok
15:47:56.0734 1844 [ CDDB1F8E1AEA356F3AD106F2CF9B7FEA ] C:\WINDOWS\system32\winlogon.exe
15:47:56.0734 1844 C:\WINDOWS\system32\winlogon.exe - ok
15:47:56.0750 1844 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] C:\WINDOWS\system32\advapi32.dll
15:47:56.0750 1844 C:\WINDOWS\system32\advapi32.dll - ok
15:47:56.0781 1844 [ 52AF295E211D59390DB80FE7467788F0 ] C:\WINDOWS\system32\rpcrt4.dll
15:47:56.0781 1844 C:\WINDOWS\system32\rpcrt4.dll - ok
15:47:56.0812 1844 [ 69DF78F490C85052C7AF6C8ABE4AF1C5 ] C:\WINDOWS\system32\secur32.dll
15:47:56.0812 1844 C:\WINDOWS\system32\secur32.dll - ok
15:47:56.0828 1844 [ DEA06DA25BB393E0A69C6E71BE5681DC ] C:\WINDOWS\system32\authz.dll
15:47:56.0828 1844 C:\WINDOWS\system32\authz.dll - ok
15:47:56.0843 1844 [ D165DFCB4EA452510E53416F573018BB ] C:\WINDOWS\system32\msvcrt.dll
15:47:56.0843 1844 C:\WINDOWS\system32\msvcrt.dll - ok
15:47:56.0875 1844 [ 8880CEB8AC06F4F102D2E7B55D9705CA ] C:\WINDOWS\system32\crypt32.dll
15:47:56.0875 1844 C:\WINDOWS\system32\crypt32.dll - ok
15:47:56.0890 1844 [ 052B3C1DADDE0D267987E8DA3BBE1AFB ] C:\WINDOWS\system32\msasn1.dll
15:47:56.0890 1844 C:\WINDOWS\system32\msasn1.dll - ok
15:47:56.0921 1844 [ 4D0C43A5446E4CA079D783CD70E9D543 ] C:\WINDOWS\system32\nddeapi.dll
15:47:56.0921 1844 C:\WINDOWS\system32\nddeapi.dll - ok
15:47:56.0953 1844 [ F8D0DF67ADAD212352170D5FCB0C0118 ] C:\WINDOWS\system32\netapi32.dll
15:47:56.0953 1844 C:\WINDOWS\system32\netapi32.dll - ok
15:47:56.0968 1844 [ ABBAF72B2E4D7C8D238D1AA8424244B4 ] C:\WINDOWS\system32\profmap.dll
15:47:56.0968 1844 C:\WINDOWS\system32\profmap.dll - ok
15:47:57.0000 1844 [ 7625B324EE90A716E447115A4B7F7364 ] C:\WINDOWS\system32\userenv.dll
15:47:57.0000 1844 C:\WINDOWS\system32\userenv.dll - ok
15:47:57.0031 1844 [ F9631D6681944F2CC0824FCEE52E8526 ] C:\WINDOWS\system32\psapi.dll
15:47:57.0031 1844 C:\WINDOWS\system32\psapi.dll - ok
15:47:57.0046 1844 [ FAE69704BB5FF6F8E7C60B21048CD1C3 ] C:\WINDOWS\system32\regapi.dll
15:47:57.0046 1844 C:\WINDOWS\system32\regapi.dll - ok
15:47:57.0078 1844 [ 0E93A7F2BE83AF906D9EAFB370300CAA ] C:\WINDOWS\system32\setupapi.dll
15:47:57.0078 1844 C:\WINDOWS\system32\setupapi.dll - ok
15:47:57.0093 1844 [ 614F8186BDAB926E3B1D8927A4161B54 ] C:\WINDOWS\system32\version.dll
15:47:57.0093 1844 C:\WINDOWS\system32\version.dll - ok
15:47:57.0109 1844 [ EF42EA58F8BF96753BE84B3227AD119E ] C:\WINDOWS\system32\winsta.dll
15:47:57.0109 1844 C:\WINDOWS\system32\winsta.dll - ok
15:47:57.0140 1844 [ 18C484762D2D930F135EFDA77619EBBD ] C:\WINDOWS\system32\wintrust.dll
15:47:57.0140 1844 C:\WINDOWS\system32\wintrust.dll - ok
15:47:57.0156 1844 [ 860EF4C3137D15C2C5F98969BEDC6430 ] C:\WINDOWS\system32\imagehlp.dll
15:47:57.0156 1844 C:\WINDOWS\system32\imagehlp.dll - ok
15:47:57.0187 1844 [ 859F7735F199C90403340183A3DDFB78 ] C:\WINDOWS\system32\ws2help.dll
15:47:57.0187 1844 C:\WINDOWS\system32\ws2help.dll - ok
15:47:57.0218 1844 [ 951D473917C51F21496D914CF6E5DDD1 ] C:\WINDOWS\system32\ws2_32.dll
15:47:57.0218 1844 C:\WINDOWS\system32\ws2_32.dll - ok
15:47:57.0234 1844 [ 6C60CA8AC7470AC01CFD3D24C7283CD1 ] C:\WINDOWS\system32\imm32.dll
15:47:57.0234 1844 C:\WINDOWS\system32\imm32.dll - ok
15:47:57.0265 1844 [ 36E68E02AF2206FC4A8C73CAEABE1FB0 ] C:\WINDOWS\system32\kbdcz.dll
15:47:57.0265 1844 C:\WINDOWS\system32\kbdcz.dll - ok
15:47:57.0296 1844 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
15:47:57.0296 1844 C:\WINDOWS\system32\kbdus.dll - ok
15:47:57.0312 1844 [ C1367E52DDAB839B8A21E412519E5FB5 ] C:\WINDOWS\system32\msgina.dll
15:47:57.0312 1844 C:\WINDOWS\system32\msgina.dll - ok
15:47:57.0343 1844 [ 4F993463DC5F3F80D77A3D34D7BFBFED ] C:\WINDOWS\system32\comctl32.dll
15:47:57.0343 1844 C:\WINDOWS\system32\comctl32.dll - ok
15:47:57.0359 1844 [ ACF3C945C1A704128EEBBE6090FA5E81 ] C:\WINDOWS\system32\odbc32.dll
15:47:57.0359 1844 C:\WINDOWS\system32\odbc32.dll - ok
15:47:57.0375 1844 [ D6F092E2D661AD284D34189B78FE08E6 ] C:\WINDOWS\system32\comdlg32.dll
15:47:57.0375 1844 C:\WINDOWS\system32\comdlg32.dll - ok
15:47:57.0406 1844 [ 760CB22F56551C9C25A91B5BC1493ED6 ] C:\WINDOWS\system32\shell32.dll
15:47:57.0406 1844 C:\WINDOWS\system32\shell32.dll - ok
15:47:57.0437 1844 [ 5553738BD481C5456BB4E22B6F4D99EB ] C:\WINDOWS\system32\shlwapi.dll
15:47:57.0437 1844 C:\WINDOWS\system32\shlwapi.dll - ok
15:47:57.0453 1844 [ E139BB65A83049154EE40B46A42B9BAC ] C:\WINDOWS\system32\sxs.dll
15:47:57.0453 1844 C:\WINDOWS\system32\sxs.dll - ok
15:47:57.0484 1844 [ D7B7AE36A2EBA312AC4B53862019B3F5 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
15:47:57.0484 1844 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll - ok
15:47:57.0500 1844 [ 62D35D5F2D6ACE259DF6226D7079A661 ] C:\WINDOWS\system32\odbcint.dll
15:47:57.0500 1844 C:\WINDOWS\system32\odbcint.dll - ok
15:47:57.0531 1844 [ B927443008910B412BEC72FC41C1BAD0 ] C:\WINDOWS\system32\shsvcs.dll
15:47:57.0531 1844 C:\WINDOWS\system32\shsvcs.dll - ok
15:47:57.0562 1844 [ 5EE949255BABC0B17C09DDB2E59E3878 ] C:\WINDOWS\system32\sfc.dll
15:47:57.0562 1844 C:\WINDOWS\system32\sfc.dll - ok
15:47:57.0578 1844 [ 83451053EAD9F92B697C1BCBA91987FC ] C:\WINDOWS\system32\sfc_os.dll
15:47:57.0578 1844 C:\WINDOWS\system32\sfc_os.dll - ok
15:47:57.0593 1844 [ 21F836AAB269FF644E0E708B794B0DF7 ] C:\WINDOWS\system32\ole32.dll
15:47:57.0593 1844 C:\WINDOWS\system32\ole32.dll - ok
15:47:57.0625 1844 [ 11882C729C6B2E2E045F8B93BDB69295 ] C:\WINDOWS\system32\apphelp.dll
15:47:57.0625 1844 C:\WINDOWS\system32\apphelp.dll - ok
15:47:57.0656 1844 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
15:47:57.0656 1844 C:\WINDOWS\system32\services.exe - ok
15:47:57.0671 1844 [ ED0A176354487CEED65B80A7148AB739 ] C:\WINDOWS\system32\lsass.exe
15:47:57.0671 1844 C:\WINDOWS\system32\lsass.exe - ok
15:47:57.0703 1844 [ AD7C4FD5F02FABCC93FB37C3C4F92458 ] C:\WINDOWS\system32\lsasrv.dll
15:47:57.0703 1844 C:\WINDOWS\system32\lsasrv.dll - ok
15:47:57.0718 1844 [ 1B7A9C069457EC6E37E1F1D79B58AE87 ] C:\WINDOWS\system32\ncobjapi.dll
15:47:57.0718 1844 C:\WINDOWS\system32\ncobjapi.dll - ok
15:47:57.0750 1844 [ A46994F7DF0F6FFFA9FBD52C57DFF15C ] C:\WINDOWS\system32\msvcp60.dll
15:47:57.0750 1844 C:\WINDOWS\system32\msvcp60.dll - ok
15:47:57.0781 1844 [ EE43B67C08B2DF9F529A75EAB8877D19 ] C:\WINDOWS\system32\scesrv.dll
15:47:57.0781 1844 C:\WINDOWS\system32\scesrv.dll - ok
15:47:57.0796 1844 [ 3FE1BBF9A6865275464D38B0A2B4A93D ] C:\WINDOWS\system32\mpr.dll
15:47:57.0796 1844 C:\WINDOWS\system32\mpr.dll - ok
15:47:57.0828 1844 [ 2FFDE877A4584FF839458B7500B53C54 ] C:\WINDOWS\system32\ntdsapi.dll
15:47:57.0828 1844 C:\WINDOWS\system32\ntdsapi.dll - ok
15:47:57.0843 1844 [ 008B50E4D1165EDE5686A4EE6C77F9D3 ] C:\WINDOWS\system32\dnsapi.dll
15:47:57.0843 1844 C:\WINDOWS\system32\dnsapi.dll - ok
15:47:57.0859 1844 [ CBE9EE6C6A5FD587CE6A4607C3B8B7C6 ] C:\WINDOWS\system32\umpnpmgr.dll
15:47:57.0859 1844 C:\WINDOWS\system32\umpnpmgr.dll - ok
15:47:57.0890 1844 [ AD68FEF8C99D87611F5617E46766E055 ] C:\WINDOWS\system32\wldap32.dll
15:47:57.0890 1844 C:\WINDOWS\system32\wldap32.dll - ok
15:47:57.0921 1844 [ 2E14E691EFA7847A603612A80889D6A0 ] C:\WINDOWS\system32\shimeng.dll
15:47:57.0921 1844 C:\WINDOWS\system32\shimeng.dll - ok
15:47:57.0937 1844 [ 5E5489C1D9AC8ED236EA8C6E54A997B9 ] C:\WINDOWS\AppPatch\acadproc.dll
15:47:57.0937 1844 C:\WINDOWS\AppPatch\acadproc.dll - ok
15:47:57.0968 1844 [ 2F1DE43508B086C7A6117A35FE17BA0D ] C:\WINDOWS\system32\samlib.dll
15:47:57.0968 1844 C:\WINDOWS\system32\samlib.dll - ok
15:47:58.0000 1844 [ 923122A0B25850462C2BD576EABD60AF ] C:\WINDOWS\system32\samsrv.dll
15:47:58.0000 1844 C:\WINDOWS\system32\samsrv.dll - ok
15:47:58.0015 1844 [ 6A9BDF7029BD29FBF3BE6EE6CD768013 ] C:\WINDOWS\system32\cryptdll.dll
15:47:58.0015 1844 C:\WINDOWS\system32\cryptdll.dll - ok
15:47:58.0046 1844 [ 2C677B499B36B7991643B04BB8AA7AEA ] C:\WINDOWS\AppPatch\acgenral.dll
15:47:58.0046 1844 C:\WINDOWS\AppPatch\acgenral.dll - ok
15:47:58.0062 1844 [ C3C8F1043E0612C17F6B70D4555572BC ] C:\WINDOWS\system32\winmm.dll
15:47:58.0062 1844 C:\WINDOWS\system32\winmm.dll - ok
15:47:58.0093 1844 [ 3FCA37E688219B4F80FBB7FA97899136 ] C:\WINDOWS\system32\oleaut32.dll
15:47:58.0093 1844 C:\WINDOWS\system32\oleaut32.dll - ok
15:47:58.0109 1844 [ 4B2068CB18F72E78ACD07BD94F743F94 ] C:\WINDOWS\system32\msacm32.dll
15:47:58.0109 1844 C:\WINDOWS\system32\msacm32.dll - ok
15:47:58.0140 1844 [ E04A8DC5C740C679EF62A614D9339ECF ] C:\WINDOWS\system32\uxtheme.dll
15:47:58.0140 1844 C:\WINDOWS\system32\uxtheme.dll - ok
15:47:58.0156 1844 [ 79D7A4B85ED05818604678E84746C176 ] C:\WINDOWS\system32\msapsspc.dll
15:47:58.0156 1844 C:\WINDOWS\system32\msapsspc.dll - ok
15:47:58.0187 1844 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
15:47:58.0187 1844 C:\WINDOWS\system32\msvcrt40.dll - ok
15:47:58.0203 1844 [ 4559148F0359606A56F1ADE79AA41369 ] C:\WINDOWS\system32\schannel.dll
15:47:58.0203 1844 C:\WINDOWS\system32\schannel.dll - ok
15:47:58.0234 1844 [ 50EAEE3F7F79A3206311AD09CB6EE2F1 ] C:\WINDOWS\system32\digest.dll
15:47:58.0234 1844 C:\WINDOWS\system32\digest.dll - ok
15:47:58.0265 1844 [ F987BA178D3D2AC5A448906AA74244A6 ] C:\WINDOWS\system32\msnsspc.dll
15:47:58.0265 1844 C:\WINDOWS\system32\msnsspc.dll - ok
15:47:58.0281 1844 [ 26AE5F5ADF4A30C8BCEA736343170201 ] C:\WINDOWS\system32\msctfime.ime
15:47:58.0281 1844 C:\WINDOWS\system32\msctfime.ime - ok
15:47:58.0312 1844 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
15:47:58.0312 1844 C:\WINDOWS\system32\msprivs.dll - ok
15:47:58.0343 1844 [ C305AAFDEAF14F6A836D551C79C42644 ] C:\WINDOWS\system32\kerberos.dll
15:47:58.0343 1844 C:\WINDOWS\system32\kerberos.dll - ok
15:47:58.0343 1844 [ E1E17EB9523D54F3A43C3DBB709D61A9 ] C:\WINDOWS\system32\msv1_0.dll
15:47:58.0343 1844 C:\WINDOWS\system32\msv1_0.dll - ok
15:47:58.0375 1844 [ 7A943FB5D0260595A7DA43246F070D2D ] C:\WINDOWS\system32\iphlpapi.dll
15:47:58.0375 1844 C:\WINDOWS\system32\iphlpapi.dll - ok
15:47:58.0406 1844 [ FB02DF1F0172C6CB8328BFB616F21020 ] C:\WINDOWS\system32\atmfd.dll
15:47:58.0406 1844 C:\WINDOWS\system32\atmfd.dll - ok
15:47:58.0421 1844 [ C2ED0E3408F50BBC149D4F0936E67832 ] C:\WINDOWS\system32\netlogon.dll
15:47:58.0421 1844 C:\WINDOWS\system32\netlogon.dll - ok
15:47:58.0453 1844 [ FA4E1CDBA256787F2149F4AAD07BC91F ] C:\WINDOWS\system32\w32time.dll
15:47:58.0453 1844 C:\WINDOWS\system32\w32time.dll - ok
15:47:58.0484 1844 [ A06D566DF5918E78DCF80596B17D2C9A ] C:\WINDOWS\system32\wdigest.dll
15:47:58.0484 1844 C:\WINDOWS\system32\wdigest.dll - ok
15:47:58.0500 1844 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
15:47:58.0500 1844 C:\WINDOWS\system32\rsaenh.dll - ok
15:47:58.0531 1844 [ 7D7B90E9DA5263804D9C6ADEADAC9D6E ] C:\WINDOWS\system32\winscard.dll
15:47:58.0531 1844 C:\WINDOWS\system32\winscard.dll - ok
15:47:58.0546 1844 [ 190E67B026EDB080440BD2F735654E0C ] C:\WINDOWS\system32\wtsapi32.dll
15:47:58.0546 1844 C:\WINDOWS\system32\wtsapi32.dll - ok
15:47:58.0578 1844 [ 830CE8951C71F361D7D2F38416CC8BC1 ] C:\WINDOWS\system32\scecli.dll
15:47:58.0578 1844 C:\WINDOWS\system32\scecli.dll - ok
15:47:58.0593 1844 [ BE4A520E29B6391F49E79CCC52044D93 ] C:\WINDOWS\system32\svchost.exe
15:47:58.0593 1844 C:\WINDOWS\system32\svchost.exe - ok
15:47:58.0625 1844 [ EB25940843AB2EBD333107CF064B8787 ] C:\WINDOWS\system32\ntmarta.dll
15:47:58.0625 1844 C:\WINDOWS\system32\ntmarta.dll - ok
15:47:58.0640 1844 [ BE27674D1CBC3214AEC84B4336A38BBF ] C:\WINDOWS\system32\rpcss.dll
15:47:58.0640 1844 C:\WINDOWS\system32\rpcss.dll - ok
15:47:58.0671 1844 [ 61AAE581F5DC8B393C93EE0DF32F38B2 ] C:\WINDOWS\system32\xpsp2res.dll
15:47:58.0671 1844 C:\WINDOWS\system32\xpsp2res.dll - ok
15:47:58.0687 1844 [ 2EE99F67C930931EB404DADCE57E976E ] C:\WINDOWS\system32\eventlog.dll
15:47:58.0687 1844 C:\WINDOWS\system32\eventlog.dll - ok
15:47:58.0718 1844 [ 1289B7611CCD6CB27596AE92CBF03E35 ] C:\WINDOWS\system32\mswsock.dll
15:47:58.0718 1844 C:\WINDOWS\system32\mswsock.dll - ok
15:47:58.0750 1844 [ ED18ADEE4AA21EB26977260152D7241A ] C:\WINDOWS\system32\hnetcfg.dll
15:47:58.0750 1844 C:\WINDOWS\system32\hnetcfg.dll - ok
15:47:58.0765 1844 [ DF2F39569BF7F223AF3CCBC23D07BF6E ] C:\WINDOWS\system32\winrnr.dll
15:47:58.0765 1844 C:\WINDOWS\system32\winrnr.dll - ok
15:47:58.0796 1844 [ 8DBCEA7B495024A29FEF59B5FE709DAC ] C:\WINDOWS\system32\wshtcpip.dll
15:47:58.0796 1844 C:\WINDOWS\system32\wshtcpip.dll - ok
15:47:58.0828 1844 [ B26098F3DC08D841DE3D79C38ACCB807 ] C:\WINDOWS\system32\rasadhlp.dll
15:47:58.0828 1844 C:\WINDOWS\system32\rasadhlp.dll - ok
15:47:58.0843 1844 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
15:47:58.0843 1844 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
15:47:58.0859 1844 [ 8CC571653F6741481F6B9BBEAF8F362F ] C:\WINDOWS\system32\logonui.exe
15:47:58.0859 1844 C:\WINDOWS\system32\logonui.exe - ok
15:47:58.0890 1844 [ 8C9A53E285AC5E6704844D0459EC85BE ] C:\WINDOWS\system32\dhcpcsvc.dll
15:47:58.0890 1844 C:\WINDOWS\system32\dhcpcsvc.dll - ok
15:47:58.0906 1844 [ 0634B791684B84F4A331F3D3536FEEF8 ] C:\WINDOWS\system32\dnsrslvr.dll
15:47:58.0906 1844 C:\WINDOWS\system32\dnsrslvr.dll - ok
15:47:58.0937 1844 [ 616A0CC9DA2BAA008306EEA895F8BC0F ] C:\WINDOWS\system32\cscdll.dll
15:47:58.0937 1844 C:\WINDOWS\system32\cscdll.dll - ok
15:47:58.0968 1844 [ 883E504885373DCC08DFEF30A10E4F12 ] C:\WINDOWS\system32\dimsntfy.dll
15:47:58.0968 1844 C:\WINDOWS\system32\dimsntfy.dll - ok
15:47:58.0984 1844 [ 4807A2D624C4D3643B29AE2BA3FAA13D ] C:\WINDOWS\system32\wlnotify.dll
15:47:58.0984 1844 C:\WINDOWS\system32\wlnotify.dll - ok
15:47:59.0015 1844 [ 01DEFAA24704069BDB1A559A9C6EBC88 ] C:\WINDOWS\system32\duser.dll
15:47:59.0015 1844 C:\WINDOWS\system32\duser.dll - ok
15:47:59.0046 1844 [ 0F1F2827B4FDF4401E0B9D60C63CE0D8 ] C:\WINDOWS\system32\winspool.drv
15:47:59.0046 1844 C:\WINDOWS\system32\winspool.drv - ok
15:47:59.0062 1844 [ 0AB159F536E3E8F7F07113702A07CCA5 ] C:\WINDOWS\system32\lmhsvc.dll
15:47:59.0062 1844 C:\WINDOWS\system32\lmhsvc.dll - ok
15:47:59.0093 1844 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] C:\WINDOWS\system32\wzcsvc.dll
15:47:59.0093 1844 C:\WINDOWS\system32\wzcsvc.dll - ok
15:47:59.0109 1844 [ 15A6CB4991BA08D408E2A36261A99B1F ] C:\WINDOWS\system32\WgaLogon.dll
15:47:59.0109 1844 C:\WINDOWS\system32\WgaLogon.dll - ok
15:47:59.0125 1844 [ 627551A1011199BCE013D0F4B6CACECF ] C:\WINDOWS\system32\msimg32.dll
15:47:59.0125 1844 C:\WINDOWS\system32\msimg32.dll - ok
15:47:59.0156 1844 [ 4D3E8B43B117AF50358DBEEAB367B0A2 ] C:\WINDOWS\system32\oleacc.dll
15:47:59.0156 1844 C:\WINDOWS\system32\oleacc.dll - ok
15:47:59.0187 1844 [ 043FD4E92FE9BA70BFB8AC49848887CB ] C:\WINDOWS\system32\rtutils.dll
15:47:59.0187 1844 C:\WINDOWS\system32\rtutils.dll - ok
15:47:59.0203 1844 [ 66DF63A7BAE72033C2E7E9B60A20E05C ] C:\WINDOWS\system32\clbcatq.dll
15:47:59.0203 1844 C:\WINDOWS\system32\clbcatq.dll - ok
15:47:59.0234 1844 [ ACDB4C56ADCAD6913371C2B38BC016E2 ] C:\WINDOWS\system32\wmi.dll
15:47:59.0234 1844 C:\WINDOWS\system32\wmi.dll - ok
15:47:59.0250 1844 [ 6E4DFC1D92AD235FC76E8C7EE5544A00 ] C:\WINDOWS\system32\eapolqec.dll
15:47:59.0250 1844 C:\WINDOWS\system32\eapolqec.dll - ok
15:47:59.0281 1844 [ AC531D7E51B7B5FB52D7585935222DE6 ] C:\WINDOWS\system32\atl.dll
15:47:59.0281 1844 C:\WINDOWS\system32\atl.dll - ok
15:47:59.0312 1844 [ E7B375DFFB68A16659CA66474A280C47 ] C:\WINDOWS\system32\comres.dll
15:47:59.0312 1844 C:\WINDOWS\system32\comres.dll - ok
15:47:59.0328 1844 [ 9D221D3CBB4DFA1FD225B2769009F99B ] C:\WINDOWS\system32\qutil.dll
15:47:59.0328 1844 C:\WINDOWS\system32\qutil.dll - ok
15:47:59.0343 1844 [ 6011D2787CD0CE16CE6E40C30F13F6F8 ] C:\WINDOWS\system32\dot3api.dll
15:47:59.0343 1844 C:\WINDOWS\system32\dot3api.dll - ok
15:47:59.0375 1844 [ 39026490EF6992293A38AA13204BA6F3 ] C:\WINDOWS\system32\esent.dll
15:47:59.0375 1844 C:\WINDOWS\system32\esent.dll - ok
15:47:59.0390 1844 [ 49B217705FCB32F3D2262D553C01306A ] C:\WINDOWS\system32\msxml3.dll
15:47:59.0390 1844 C:\WINDOWS\system32\msxml3.dll - ok
15:47:59.0421 1844 [ 98CA2F18D988D7EA7D0183CE1FE83461 ] C:\WINDOWS\system32\shgina.dll
15:47:59.0421 1844 C:\WINDOWS\system32\shgina.dll - ok
15:47:59.0453 1844 [ 936C1D110232D23B621CB0196E4F80F0 ] C:\WINDOWS\system32\wkssvc.dll
15:47:59.0453 1844 C:\WINDOWS\system32\wkssvc.dll - ok
15:47:59.0468 1844 [ 0B1AA4B12FC08CCB7EAB6AAA1E25AC16 ] C:\WINDOWS\system32\rastls.dll
15:47:59.0468 1844 C:\WINDOWS\system32\rastls.dll - ok
15:47:59.0500 1844 [ F37A3D11450C4BA9BD862DFF7451728C ] C:\WINDOWS\system32\cryptui.dll
15:47:59.0500 1844 C:\WINDOWS\system32\cryptui.dll - ok
15:47:59.0531 1844 [ D8B3732B92CF879ADE65CCE9361D36FB ] C:\WINDOWS\system32\wininet.dll
15:47:59.0531 1844 C:\WINDOWS\system32\wininet.dll - ok
15:47:59.0546 1844 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
15:47:59.0546 1844 C:\WINDOWS\system32\normaliz.dll - ok
15:47:59.0578 1844 [ 404B13C5009EF0DF5E0EA43B3D4A7EE5 ] C:\WINDOWS\system32\iertutil.dll
15:47:59.0578 1844 C:\WINDOWS\system32\iertutil.dll - ok
15:47:59.0593 1844 [ AC992C58B28038A43E63DE07361B9732 ] C:\WINDOWS\system32\mprapi.dll
15:47:59.0593 1844 C:\WINDOWS\system32\mprapi.dll - ok
15:47:59.0609 1844 [ 28217BEA16EC1790ADF5495BDCD03B35 ] C:\WINDOWS\system32\activeds.dll
15:47:59.0609 1844 C:\WINDOWS\system32\activeds.dll - ok
15:47:59.0640 1844 [ B88893C7FB9671C84DBF6400CD2170CD ] C:\WINDOWS\system32\adsldpc.dll
15:47:59.0640 1844 C:\WINDOWS\system32\adsldpc.dll - ok
15:47:59.0671 1844 [ 0B3077EC67D9509B6B8A1FA3006E717B ] C:\WINDOWS\system32\rasapi32.dll
15:47:59.0671 1844 C:\WINDOWS\system32\rasapi32.dll - ok
15:47:59.0687 1844 [ A4F20BF76D85B92FE6E0C6B3884E8718 ] C:\WINDOWS\system32\rasman.dll
15:47:59.0687 1844 C:\WINDOWS\system32\rasman.dll - ok
15:47:59.0718 1844 [ A8B1342EE63C191258460EFE5D30D6A1 ] C:\WINDOWS\system32\tapi32.dll
15:47:59.0718 1844 C:\WINDOWS\system32\tapi32.dll - ok
15:47:59.0734 1844 [ D1995A48DCC77C8C3DE97BF89C1F8232 ] C:\WINDOWS\system32\riched20.dll
15:47:59.0734 1844 C:\WINDOWS\system32\riched20.dll - ok
15:47:59.0765 1844 [ BF5A61ED318A04CE683374069EA42CA6 ] C:\WINDOWS\system32\raschap.dll
15:47:59.0765 1844 C:\WINDOWS\system32\raschap.dll - ok
15:47:59.0796 1844 [ 65DDCE6C4F63C6AAC3D99EFBA4C1E9C4 ] C:\WINDOWS\system32\cscui.dll
15:47:59.0796 1844 C:\WINDOWS\system32\cscui.dll - ok
15:47:59.0812 1844 [ 9FA69781CAA7A1DA981A24F240A61A60 ] C:\WINDOWS\system32\powrprof.dll
15:47:59.0812 1844 C:\WINDOWS\system32\powrprof.dll - ok
15:47:59.0843 1844 [ 2FAC0F5554606AE2AAC19028315FF361 ] C:\WINDOWS\system32\dpcdll.dll
15:47:59.0843 1844 C:\WINDOWS\system32\dpcdll.dll - ok
15:47:59.0859 1844 [ 7DC1830F22E7D275B438127B68030239 ] C:\WINDOWS\system32\userinit.exe
15:47:59.0859 1844 C:\WINDOWS\system32\userinit.exe - ok
15:47:59.0875 1844 [ 6227D7AF6039C18C8BC5AB3E150CC673 ] C:\WINDOWS\system32\WgaTray.exe
15:47:59.0875 1844 C:\WINDOWS\system32\WgaTray.exe - ok
15:47:59.0906 1844 [ 27AFD587C462E280EE046B8CCA3C2CD1 ] C:\WINDOWS\explorer.exe
15:47:59.0906 1844 C:\WINDOWS\explorer.exe - ok
15:47:59.0937 1844 [ E45ECB5A023F77F813CD0DFF92699B76 ] C:\WINDOWS\system32\browseui.dll
15:47:59.0937 1844 C:\WINDOWS\system32\browseui.dll - ok
15:47:59.0953 1844 [ 6D4084D7ACF7A369C802116A9128F2F5 ] C:\WINDOWS\system32\shdocvw.dll
15:47:59.0953 1844 C:\WINDOWS\system32\shdocvw.dll - ok
15:47:59.0984 1844 [ CD89FA96371429B0BEE893B156DB8932 ] C:\Program Files\AVAST Software\Avast\ashShell.dll
15:47:59.0984 1844 C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
15:48:00.0015 1844 [ DC9EFCC8827EB2C0D17A7E4B2DE77E63 ] C:\WINDOWS\system32\desk.cpl
15:48:00.0015 1844 C:\WINDOWS\system32\desk.cpl - ok
15:48:00.0031 1844 [ 42FC2993518A71372BE7B8176CAAC8CF ] C:\WINDOWS\system32\themeui.dll
15:48:00.0031 1844 C:\WINDOWS\system32\themeui.dll - ok
15:48:00.0062 1844 [ 47E827EB2C26A383AD16BF80C0FCA8FA ] C:\WINDOWS\system32\cryptnet.dll
15:48:00.0062 1844 C:\WINDOWS\system32\cryptnet.dll - ok
15:48:00.0093 1844 [ C77D916102E469F130A504CB9DACB930 ] C:\WINDOWS\system32\sensapi.dll
15:48:00.0093 1844 C:\WINDOWS\system32\sensapi.dll - ok
15:48:00.0093 1844 [ A5F60DF2B45B07626E2A14A3D897F852 ] C:\WINDOWS\system32\winhttp.dll
15:48:00.0093 1844 C:\WINDOWS\system32\winhttp.dll - ok
15:48:00.0125 1844 [ CC26451A90025F6C55F64146C333DEA5 ] C:\WINDOWS\system32\LegitCheckControl.dll
15:48:00.0125 1844 C:\WINDOWS\system32\LegitCheckControl.dll - ok
15:48:00.0156 1844 [ 5D1D9D1AC352D82C815EDF67E6EE5C97 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
15:48:00.0156 1844 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
15:48:00.0171 1844 [ 03853A3540EC3F64EBDEFFB2ECE757D4 ] C:\WINDOWS\system32\wbem\wbemprox.dll
15:48:00.0171 1844 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
15:48:00.0203 1844 [ F3AB0933CBD166D271992F411C27CCAF ] C:\WINDOWS\system32\cryptsvc.dll
15:48:00.0203 1844 C:\WINDOWS\system32\cryptsvc.dll - ok
15:48:00.0218 1844 [ 7BF2BC7728F77838E195743E76727F7B ] C:\WINDOWS\system32\certcli.dll
15:48:00.0218 1844 C:\WINDOWS\system32\certcli.dll - ok
15:48:00.0250 1844 [ E488332126E3B1182D2B8A0C35408EC6 ] C:\WINDOWS\system32\wbem\wmisvc.dll
15:48:00.0250 1844 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
15:48:00.0281 1844 [ 1635D157B5DAEADAF323B5E9FB6FD5E2 ] C:\WINDOWS\system32\vssapi.dll
15:48:00.0281 1844 C:\WINDOWS\system32\vssapi.dll - ok
15:48:00.0296 1844 [ 35B91147124F64AC8081A2EDB9EA4DEE ] C:\WINDOWS\system32\srsvc.dll
15:48:00.0296 1844 C:\WINDOWS\system32\srsvc.dll - ok
15:48:00.0328 1844 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] C:\WINDOWS\system32\netman.dll
15:48:00.0328 1844 C:\WINDOWS\system32\netman.dll - ok
15:48:00.0343 1844 [ E0DD5DB829C887C4DCC2D9B31470F7EC ] C:\WINDOWS\system32\netshell.dll
15:48:00.0343 1844 C:\WINDOWS\system32\netshell.dll - ok
15:48:00.0359 1844 [ 1D37681166E7B0AE1FABF5676439F924 ] C:\WINDOWS\system32\credui.dll
15:48:00.0359 1844 C:\WINDOWS\system32\credui.dll - ok
15:48:00.0390 1844 [ C9AFEA3C13B62701FAE571D8466EB5F6 ] C:\WINDOWS\system32\dot3dlg.dll
15:48:00.0390 1844 C:\WINDOWS\system32\dot3dlg.dll - ok
15:48:00.0421 1844 [ A7162CFFDA477AE2239D4FB6F8094534 ] C:\WINDOWS\system32\onex.dll
15:48:00.0421 1844 C:\WINDOWS\system32\onex.dll - ok
15:48:00.0437 1844 [ DFBCA5222331A476C42DF1AA3921629E ] C:\WINDOWS\system32\eappcfg.dll
15:48:00.0437 1844 C:\WINDOWS\system32\eappcfg.dll - ok
15:48:00.0468 1844 [ F6D35EBC8F11300AAFD1D4CA6DC65B9D ] C:\WINDOWS\system32\eappprxy.dll
15:48:00.0468 1844 C:\WINDOWS\system32\eappprxy.dll - ok
15:48:00.0500 1844 [ 2DF6B86A8CE10CC93CE4C6DC72C5E791 ] C:\WINDOWS\system32\wzcsapi.dll
15:48:00.0500 1844 C:\WINDOWS\system32\wzcsapi.dll - ok
15:48:00.0515 1844 [ 21920AC69594AB021237054FA728FE46 ] C:\WINDOWS\system32\srvsvc.dll
15:48:00.0515 1844 C:\WINDOWS\system32\srvsvc.dll - ok
15:48:00.0546 1844 [ FCFE31FB75F8A6295B6B0AF87A626282 ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
15:48:00.0546 1844 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
15:48:00.0562 1844 [ 2BFEFE9E865655A76982F050450B9591 ] C:\WINDOWS\system32\dmserver.dll
15:48:00.0562 1844 C:\WINDOWS\system32\dmserver.dll - ok
15:48:00.0593 1844 [ D905050080DB4CCC3EB09AD24DE6BD67 ] C:\WINDOWS\system32\netmsg.dll
15:48:00.0593 1844 C:\WINDOWS\system32\netmsg.dll - ok
15:48:00.0609 1844 [ F58FACA9621D2DB01BD0927D9A0A208E ] C:\WINDOWS\system32\ipnathlp.dll
15:48:00.0609 1844 C:\WINDOWS\system32\ipnathlp.dll - ok
15:48:00.0640 1844 [ DA852E3E0BF1CEA75D756F9866241E57 ] C:\WINDOWS\system32\drivers\srv.sys
15:48:00.0640 1844 C:\WINDOWS\system32\drivers\srv.sys - ok
15:48:00.0656 1844 [ 249276D3EF1E74B992299CB96099E4D7 ] C:\WINDOWS\system32\browser.dll
15:48:00.0656 1844 C:\WINDOWS\system32\browser.dll - ok
15:48:00.0687 1844 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] C:\WINDOWS\system32\termsrv.dll
15:48:00.0687 1844 C:\WINDOWS\system32\termsrv.dll - ok
15:48:00.0718 1844 [ 15BC40DEDF4E5A0DDB5D3623B9483DDA ] C:\WINDOWS\system32\wbem\wbemcore.dll
15:48:00.0718 1844 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
15:48:00.0734 1844 [ 72C1FF5AE0330CCF9C35BCBBAD267F3B ] C:\WINDOWS\system32\icaapi.dll
15:48:00.0734 1844 C:\WINDOWS\system32\icaapi.dll - ok
15:48:00.0765 1844 [ 6E0F6ABF57F2E3A73456450A1501D9B3 ] C:\WINDOWS\system32\mstlsapi.dll
15:48:00.0765 1844 C:\WINDOWS\system32\mstlsapi.dll - ok
15:48:00.0781 1844 [ BE47A0CA98B7192B59DC27A843C9CEA1 ] C:\WINDOWS\system32\wbem\esscli.dll
15:48:00.0781 1844 C:\WINDOWS\system32\wbem\esscli.dll - ok
15:48:00.0812 1844 [ FA898CA2FB6FBE4A46F9D27971B3E1B5 ] C:\WINDOWS\system32\wbem\fastprox.dll
15:48:00.0812 1844 C:\WINDOWS\system32\wbem\fastprox.dll - ok
15:48:00.0843 1844 [ 8E70589EC4DDE3B22C5EE4A527BA0865 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
15:48:00.0843 1844 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
15:48:00.0859 1844 [ 8A36A2FF9C36BCDDCBD8F7C0C4DC0083 ] C:\WINDOWS\system32\wbem\wmiutils.dll
15:48:00.0859 1844 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
15:48:00.0875 1844 [ E8A0384A25ECA1188E6F19F548947B53 ] C:\WINDOWS\system32\wbem\repdrvfs.dll
15:48:00.0875 1844 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
15:48:00.0906 1844 [ 4C501DD03666A9427DFEE53C3BD13900 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
15:48:00.0906 1844 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
15:48:00.0921 1844 [ 2FDB32EF0E2CFF15ECC751BD61235398 ] C:\WINDOWS\system32\wbem\wbemess.dll
15:48:00.0921 1844 C:\WINDOWS\system32\wbem\wbemess.dll - ok
15:48:00.0953 1844 [ 8DBB957A4E5DCA82F90C5F8A14BC789D ] C:\WINDOWS\system32\netcfgx.dll
15:48:00.0953 1844 C:\WINDOWS\system32\netcfgx.dll - ok
15:48:00.0984 1844 [ F0A0997640611EB605A122023FE47204 ] C:\WINDOWS\system32\clusapi.dll
15:48:00.0984 1844 C:\WINDOWS\system32\clusapi.dll - ok
15:48:01.0000 1844 [ 38D332A6D56AF32635675F132548343E ] C:\WINDOWS\system32\drivers\fastfat.sys
15:48:01.0000 1844 C:\WINDOWS\system32\drivers\fastfat.sys - ok
15:48:01.0031 1844 [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
15:48:01.0031 1844 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
15:48:01.0062 1844 [ 5D23A83D4B6324EC147F17334E057493 ] C:\WINDOWS\system32\ntshrui.dll
15:48:01.0062 1844 C:\WINDOWS\system32\ntshrui.dll - ok
15:48:01.0078 1844 [ ECCAE65799D06FB8FC44B5B4A6B66E5D ] C:\WINDOWS\system32\licwmi.dll
15:48:01.0078 1844 C:\WINDOWS\system32\licwmi.dll - ok
15:48:01.0093 1844 [ C3C4E2BDE357D77A128CE77C7E67E76A ] C:\WINDOWS\system32\wbem\framedyn.dll
15:48:01.0093 1844 C:\WINDOWS\system32\wbem\framedyn.dll - ok
15:48:01.0125 1844 [ 7FDE9FC15765E02B23E1756930165AD1 ] C:\WINDOWS\system32\linkinfo.dll
15:48:01.0125 1844 C:\WINDOWS\system32\linkinfo.dll - ok
15:48:01.0140 1844 [ C3E578B5FA76BAC26C078EE961EF5721 ] C:\WINDOWS\system32\licdll.dll
15:48:01.0140 1844 C:\WINDOWS\system32\licdll.dll - ok
15:48:01.0171 1844 [ 0F1427385E7CB1E2F9C8056B3D922A2F ] C:\WINDOWS\system32\msxml6.dll
15:48:01.0171 1844 C:\WINDOWS\system32\msxml6.dll - ok
15:48:01.0203 1844 [ 6B4377A3DA487722270E5DD2A20DDDF2 ] C:\WINDOWS\system32\verclsid.exe
15:48:01.0203 1844 C:\WINDOWS\system32\verclsid.exe - ok
15:48:01.0218 1844 [ CD5BBE0AC7DD5AD5B37101ADD38D195E ] C:\WINDOWS\system32\ieframe.dll
15:48:01.0218 1844 C:\WINDOWS\system32\ieframe.dll - ok
15:48:01.0250 1844 [ A6DC9E1950657DD5AA1395CB2E5B01CD ] C:\WINDOWS\system32\wbem\cimwin32.dll
15:48:01.0250 1844 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
15:48:01.0265 1844 [ AEC67D05840ED618DAF8A19BF8E80BAA ] C:\WINDOWS\system32\upnp.dll
15:48:01.0265 1844 C:\WINDOWS\system32\upnp.dll - ok
15:48:01.0296 1844 [ 129E4E748829A3D027787E6740EE351D ] C:\WINDOWS\system32\mlang.dll
15:48:01.0296 1844 C:\WINDOWS\system32\mlang.dll - ok
15:48:01.0328 1844 [ 55C3D3D15782ED6A92BDDEC0AE48E9E9 ] C:\WINDOWS\system32\ssdpapi.dll
15:48:01.0328 1844 C:\WINDOWS\system32\ssdpapi.dll - ok
15:48:01.0343 1844 [ D57554C664B64604BD1EE13EA2C07E77 ] C:\WINDOWS\system32\rasmans.dll
15:48:01.0343 1844 C:\WINDOWS\system32\rasmans.dll - ok
15:48:01.0359 1844 [ A530B75C10C23C9AB28FDB6CE719E21F ] C:\WINDOWS\system32\sens.dll
15:48:01.0359 1844 C:\WINDOWS\system32\sens.dll - ok
15:48:01.0390 1844 [ 8D65C4D78E0D22E2655AFEB682656F15 ] C:\WINDOWS\system32\winipsec.dll
15:48:01.0390 1844 C:\WINDOWS\system32\winipsec.dll - ok
15:48:01.0406 1844 [ F23EB535F0834B3B1E0CDD16DB4ED7A1 ] C:\WINDOWS\system32\cfgmgr32.dll
15:48:01.0406 1844 C:\WINDOWS\system32\cfgmgr32.dll - ok
15:48:01.0437 1844 [ 2C264A0CC77E3E307D5FE407F90FAF5E ] C:\WINDOWS\system32\msi.dll
15:48:01.0437 1844 C:\WINDOWS\system32\msi.dll - ok
15:48:01.0468 1844 [ 3DEF6FDE33BA5D75895A4D06D7FE051C ] C:\WINDOWS\system32\urlmon.dll
15:48:01.0468 1844 C:\WINDOWS\system32\urlmon.dll - ok
15:48:01.0484 1844 [ 165AE7A443F2139DD2C078AD87699F91 ] C:\Program Files\Microsoft Office\OFFICE11\MSOHEV.DLL
15:48:01.0484 1844 C:\Program Files\Microsoft Office\OFFICE11\MSOHEV.DLL - ok
15:48:01.0515 1844 [ 791B7564EBC6EFBAA2F97308E1BF7849 ] C:\WINDOWS\system32\mmcshext.dll
15:48:01.0515 1844 C:\WINDOWS\system32\mmcshext.dll - ok
15:48:01.0546 1844 [ D26E9120335356CFCC47812407D4F73B ] C:\WINDOWS\system32\hhsetup.dll
15:48:01.0546 1844 C:\WINDOWS\system32\hhsetup.dll - ok
15:48:01.0562 1844 [ 8702CD069DE8F6B527E92CF55F78D5D2 ] C:\WINDOWS\system32\cabinet.dll
15:48:01.0562 1844 C:\WINDOWS\system32\cabinet.dll - ok
15:48:01.0593 1844 [ A371F11EF07653591C8DE26AFB13CE7F ] C:\WINDOWS\system32\es.dll
15:48:01.0593 1844 C:\WINDOWS\system32\es.dll - ok
15:48:01.0609 1844 [ 178A34E5554DCE485E1262DDF027960C ] C:\Documents and Settings\Administrator\Plocha\tdsskiller.exe
15:48:01.0609 1844 C:\Documents and Settings\Administrator\Plocha\tdsskiller.exe - ok
15:48:01.0625 1844 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\48495649.sys
15:48:01.0625 1844 C:\WINDOWS\system32\drivers\48495649.sys - ok
15:48:01.0640 1844 ============================================================
15:48:01.0640 1844 Scan finished
15:48:01.0640 1844 ============================================================
15:48:01.0781 1836 Detected object count: 6
15:48:01.0781 1836 Actual detected object count: 6
15:59:06.0406 1836 fwdrv ( UnsignedFile.Multi.Generic ) - skipped by user
15:59:06.0406 1836 fwdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:59:06.0421 1836 khips ( UnsignedFile.Multi.Generic ) - skipped by user
15:59:06.0421 1836 khips ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:59:06.0437 1836 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
15:59:06.0437 1836 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:59:06.0453 1836 prosync1 ( UnsignedFile.Multi.Generic ) - skipped by user
15:59:06.0453 1836 prosync1 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:59:06.0468 1836 sptd ( LockedFile.Multi.Generic ) - skipped by user
15:59:06.0468 1836 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
15:59:06.0484 1836 VD_FileDisk ( UnsignedFile.Multi.Generic ) - skipped by user
15:59:06.0484 1836 VD_FileDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip

15:44:55.0906 0344 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:44:56.0109 0344 ============================================================
15:44:56.0109 0344 Current date / time: 2013/09/01 15:44:56.0109
15:44:56.0109 0344 SystemInfo:
15:44:56.0109 0344
15:44:56.0109 0344 OS Version: 5.1.2600 ServicePack: 3.0
15:44:56.0109 0344 Product type: Workstation
15:44:56.0109 0344 ComputerName: pc
15:44:56.0109 0344 UserName: Administrator
15:44:56.0109 0344 Windows directory: C:\WINDOWS
15:44:56.0109 0344 System windows directory: C:\WINDOWS
15:44:56.0109 0344 Processor architecture: Intel x86
15:44:56.0109 0344 Number of processors: 1
15:44:56.0109 0344 Page size: 0x1000
15:44:56.0109 0344 Boot type: Safe boot with network
15:44:56.0109 0344 ============================================================
15:44:58.0531 0344 Drive \Device\Harddisk0\DR0 - Size: 0x2F7AFF7E00 (189.92 Gb), SectorSize: 0x200, Cylinders: 0x60D8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:44:58.0531 0344 Drive \Device\Harddisk1\DR3 - Size: 0x7470C05E00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:44:58.0890 0344 ============================================================
15:44:58.0890 0344 \Device\Harddisk0\DR0:
15:44:58.0890 0344 MBR partitions:
15:44:58.0890 0344 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x9C41AD8
15:44:58.0890 0344 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C41B17, BlocksNum 0xDF937C1
15:44:58.0890 0344 \Device\Harddisk1\DR3:
15:44:58.0890 0344 MBR partitions:
15:44:58.0890 0344 \Device\Harddisk1\DR3\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
15:44:58.0890 0344 ============================================================
15:44:58.0906 0344 C: <-> \Device\Harddisk0\DR0\Partition1
15:44:59.0046 0344 G: <-> \Device\Harddisk1\DR3\Partition1
15:44:59.0187 0344 D: <-> \Device\Harddisk0\DR0\Partition2
15:44:59.0187 0344 ============================================================
15:44:59.0187 0344 Initialize success
15:44:59.0187 0344 ============================================================
15:45:19.0875 0340 Deinitialize success

#42 Příspěvek od **Márty84** » 02 zář 2013 03:08

Stahnete MBRScan http://eric71.geekstogo.com/tools/MbrScan.exe , ulozte ho na plochu a spustte.
Kliknete na Report
Za chvili vyskoci log s nazvem MBRScan.txt, ten mi sem zkopirujte.

Oji · #43 Příspěvek od **Oji** » 02 zář 2013 08:33

Kód: Vybrat vše

MBRScan v1.1.1

OS             : Windows XP Home Service Pack 3 (32 bit)
PROCESSOR      : x86 Family 6 Model 10 Stepping 0, AuthenticAMD
BOOT           : Normal Boot
DATE           : 2013/09/02 (ISO 8601) at 09:16:55
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __Maxtor 6L200M0 (BANC1G10)
BUS_TYPE       : (0x03)  P-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk1\DR3 __ST950032 5AS
BUS_TYPE       : (0x07)  USB
USE_PIO        : NO
MAX_TRANSFER   : 64 Kb
ALIGNMENT_MASK : byte aligned
________________________________________________________________________________

DISK           : Device\Harddisk6\DR13 __A-DATA USB Flash Drive (1100)
BUS_TYPE       : (0x07)  USB
USE_PIO        : NO
MAX_TRANSFER   : 64 Kb
ALIGNMENT_MASK : byte aligned
________________________________________________________________________________

Device\Harddisk0\DR0	189.9 Go  [Fixed] ==> XP MBR Code

MBR_MD5   : E009FDE99B6D1F94D0BABED83D44C53C
MBR_SHA1  : 268CACCCB0909615DCC23095C99AC4DEC0E5B99B

Device\Harddisk0\Partition1	78.13 Go  	0x07 NTFS / HPFS __ BOOTABLE __
Device\Harddisk0\Partition2	111.8 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk1\DR3	465.8 Go  [Fixed] ==> Vista MBR Code ....

MBR_MD5   : 78AF261C1BF88495EC8877FEDBE597DE
MBR_SHA1  : D9D804DDA5754BF4F1DA4FE68ED848424DC00350

Device\Harddisk1\Partition1	465.8 Go  	0x07 NTFS / HPFS
________________________________________________________________________________

Device\Harddisk6\DR13	7.56 Go  [Removable] ==> Unknown MBR Code

MBR_MD5   : E33DACA7C742D42B673DF2C7818EF271
MBR_SHA1  : 4CBF0A95348A397EC7E292F70144240ADDFD8557

Device\Harddisk6\Partition1	7.56 Go __ BOOTABLE __
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\WINDOWS\System32\Drivers\dump_atapi.sys => Invisible on the disk
ADDRESS : 0xF379E000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS => Invisible on the disk
ADDRESS : 0xF7BD1000
SIZE    : 8.0 Ko

SystemStartOptions : NOEXECUTE=OPTIN  FASTDETECT

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   33 C0 8E D0 BC 00 7C FB 50 07 50 1F FC BE 1B 7C   3À.Ð¼.|ûP.P.ü¾.|
0x00000010   BF 1B 06 50 57 B9 E5 01 F3 A4 CB BD BE 07 B1 04   ¿..PW¹å.ó¤Ë½¾.±.
0x00000020   38 6E 00 7C 09 75 13 83 C5 10 E2 F4 CD 18 8B F5   8n.|.u..Å.âôÍ..õ
0x00000030   83 C6 10 49 74 19 38 2C 74 F6 A0 B5 07 B4 07 8B   .Æ.It.8,tö.µ.´..
0x00000040   F0 AC 3C 00 74 FC BB 07 00 B4 0E CD 10 EB F2 88   ð¬<.tü»..´.Í.ëò.
0x00000050   4E 10 E8 46 00 73 2A FE 46 10 80 7E 04 0B 74 0B   N.èF.s*þF..~..t.
0x00000060   80 7E 04 0C 74 05 A0 B6 07 75 D2 80 46 02 06 83   .~..t..¶.uÒ.F...
0x00000070   46 08 06 83 56 0A 00 E8 21 00 73 05 A0 B6 07 EB   F...V..è!.s..¶.ë
0x00000080   BC 81 3E FE 7D 55 AA 74 0B 80 7E 10 00 74 C8 A0   ¼.>þ}Uªt..~..tÈ.
0x00000090   B7 07 EB A9 8B FC 1E 57 8B F5 CB BF 05 00 8A 56   ·.ë©.ü.W.õË¿...V
0x000000A0   00 B4 08 CD 13 72 23 8A C1 24 3F 98 8A DE 8A FC   .´.Í.r#.Á$?..Þ.ü
0x000000B0   43 F7 E3 8B D1 86 D6 B1 06 D2 EE 42 F7 E2 39 56   C÷ã.Ñ.Ö±.ÒîB÷â9V
0x000000C0   0A 77 23 72 05 39 46 08 73 1C B8 01 02 BB 00 7C   .w#r.9F.s.¸..».|
0x000000D0   8B 4E 02 8B 56 00 CD 13 73 51 4F 74 4E 32 E4 8A   .N..V.Í.sQOtN2ä.
0x000000E0   56 00 CD 13 EB E4 8A 56 00 60 BB AA 55 B4 41 CD   V.Í.ëä.V.`»ªU´AÍ
0x000000F0   13 72 36 81 FB 55 AA 75 30 F6 C1 01 74 2B 61 60   .r6.ûUªu0öÁ.t+a`
0x00000100   6A 00 6A 00 FF 76 0A FF 76 08 6A 00 68 00 7C 6A   j.j..v..v.j.h.|j
0x00000110   01 6A 10 B4 42 8B F4 CD 13 61 61 73 0E 4F 74 0B   .j.´B.ôÍ.aas.Ot.
0x00000120   32 E4 8A 56 00 CD 13 EB D6 61 F9 C3 49 6E 76 61   2ä.V.Í.ëÖaùÃInva
0x00000130   6C 69 64 20 70 61 72 74 69 74 69 6F 6E 20 74 61   lid partition ta
0x00000140   62 6C 65 00 45 72 72 6F 72 20 6C 6F 61 64 69 6E   ble.Error loadin
0x00000150   67 20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74   g operating syst
0x00000160   65 6D 00 4D 69 73 73 69 6E 67 20 6F 70 65 72 61   em.Missing opera
0x00000170   74 69 6E 67 20 73 79 73 74 65 6D 00 00 00 00 00   ting system.....
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 2C 44 63 DD 27 DE 27 00 00 80 01   .....,DcÝ'Þ'....
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 D8 1A C4 09 00 FE   ...þ..?...Ø.Ä..þ
0x000001D0   FF FF 07 FE FF FF 17 1B C4 09 C1 37 F9 0D 00 00   ...þ....Ä.Á7ù...
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk1\DR3  

0x00000000   33 C0 8E D0 BC 00 7C 8E C0 8E D8 BE 00 7C BF 00   3À.Ð¼.|.À.Ø¾.|¿.
0x00000010   06 B9 00 02 FC F3 A4 50 68 1C 06 CB FB B9 04 00   .¹..üó¤Ph..Ëû¹..
0x00000020   BD BE 07 80 7E 00 00 7C 0B 0F 85 10 01 83 C5 10   ½¾..~..|......Å.
0x00000030   E2 F1 CD 18 88 56 00 55 C6 46 11 05 C6 46 10 00   âñÍ..V.UÆF..ÆF..
0x00000040   B4 41 BB AA 55 CD 13 5D 72 0F 81 FB 55 AA 75 09   ´A»ªUÍ.]r..ûUªu.
0x00000050   F7 C1 01 00 74 03 FE 46 10 66 60 80 7E 10 00 74   ÷Á..t.þF.f`.~..t
0x00000060   26 66 68 00 00 00 00 66 FF 76 08 68 00 00 68 00   &fh....f.v.h..h.
0x00000070   7C 68 01 00 68 10 00 B4 42 8A 56 00 8B F4 CD 13   |h..h..´B.V..ôÍ.
0x00000080   9F 83 C4 10 9E EB 14 B8 01 02 BB 00 7C 8A 56 00   ..Ä..ë.¸..».|.V.
0x00000090   8A 76 01 8A 4E 02 8A 6E 03 CD 13 66 61 73 1E FE   .v..N..n.Í.fas.þ
0x000000A0   4E 11 0F 85 0C 00 80 7E 00 80 0F 84 8A 00 B2 80   N......~......².
0x000000B0   EB 82 55 32 E4 8A 56 00 CD 13 5D EB 9C 81 3E FE   ë.U2ä.V.Í.]ë..>þ
0x000000C0   7D 55 AA 75 6E FF 76 00 E8 8A 00 0F 85 15 00 B0   }Uªun.v.è......°
0x000000D0   D1 E6 64 E8 7F 00 B0 DF E6 60 E8 78 00 B0 FF E6   Ñædè..°ßæ`èx.°.æ
0x000000E0   64 E8 71 00 B8 00 BB CD 1A 66 23 C0 75 3B 66 81   dèq.¸.»Í.f#Àu;f.
0x000000F0   FB 54 43 50 41 75 32 81 F9 02 01 72 2C 66 68 07   ûTCPAu2.ù..r,fh.
0x00000100   BB 00 00 66 68 00 02 00 00 66 68 08 00 00 00 66   »..fh....fh....f
0x00000110   53 66 53 66 55 66 68 00 00 00 00 66 68 00 7C 00   SfSfUfh....fh.|.
0x00000120   00 66 61 68 00 00 07 CD 1A 5A 32 F6 EA 00 7C 00   .fah...Í.Z2öê.|.
0x00000130   00 CD 18 A0 B7 07 EB 08 A0 B6 07 EB 03 A0 B5 07   .Í..·.ë..¶.ë..µ.
0x00000140   32 E4 05 00 07 8B F0 AC 3C 00 74 FC BB 07 00 B4   2ä....ð¬<.tü»..´
0x00000150   0E CD 10 EB F2 2B C9 E4 64 EB 00 24 02 E0 F8 24   .Í.ëò+Éädë.$.àø$
0x00000160   02 C3 49 6E 76 61 6C 69 64 20 70 61 72 74 69 74   .ÃInvalid partit
0x00000170   69 6F 6E 20 74 61 62 6C 65 00 45 72 72 6F 72 20   ion table.Error 
0x00000180   6C 6F 61 64 69 6E 67 20 6F 70 65 72 61 74 69 6E   loading operatin
0x00000190   67 20 73 79 73 74 65 6D 00 4D 69 73 73 69 6E 67   g system.Missing
0x000001A0   20 6F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65    operating syste
0x000001B0   6D 00 00 00 00 62 7A 99 6E 49 B3 D9 00 00 00 01   m....bz.nI³Ù....
0x000001C0   01 00 07 FE FF FF 3F 00 00 00 02 4C 38 3A 00 00   ...þ..?....L8:..
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk6\DR13  

0x00000000   FA 31 C0 8E D8 8E D0 BC 00 7C 89 E6 06 57 8E C0   ú1À.Ø.Ð¼.|.æ.W.À
0x00000010   FB FC BF 00 06 B9 00 01 F3 A5 EA 1F 06 00 00 52   ûü¿..¹..ó¥ê....R
0x00000020   52 B4 41 BB AA 55 31 C9 30 F6 F9 CD 13 72 13 81   R´A»ªU1É0öùÍ.r..
0x00000030   FB 55 AA 75 0D D1 E9 73 09 66 C7 06 8D 06 B4 42   ûUªu.Ñés.fÇ...´B
0x00000040   EB 15 5A B4 08 CD 13 83 E1 3F 51 0F B6 C6 40 F7   ë.Z´.Í..á?Q.¶Æ@÷
0x00000050   E1 52 50 66 31 C0 66 99 E8 66 00 E8 21 01 4D 69   áRPf1Àf.èf.è!.Mi
0x00000060   73 73 69 6E 67 20 6F 70 65 72 61 74 69 6E 67 20   ssing operating 
0x00000070   73 79 73 74 65 6D 2E 0D 0A 66 60 66 31 D2 BB 00   system...f`f1Ò».
0x00000080   7C 66 52 66 50 06 53 6A 01 6A 10 89 E6 66 F7 36   |fRfP.Sj.j..æf÷6
0x00000090   F4 7B C0 E4 06 88 E1 88 C5 92 F6 36 F8 7B 88 C6   ô{Àä..á.Å.ö6ø{.Æ
0x000000A0   08 E1 41 B8 01 02 8A 16 FA 7B CD 13 8D 64 10 66   .áA¸....ú{Í..d.f
0x000000B0   61 C3 E8 C4 FF BE BE 7D BF BE 07 B9 20 00 F3 A5   aÃèÄ.¾¾}¿¾.¹ .ó¥
0x000000C0   C3 66 60 89 E5 BB BE 07 B9 04 00 31 C0 53 51 F6   Ãf`.å»¾.¹..1ÀSQö
0x000000D0   07 80 74 03 40 89 DE 83 C3 10 E2 F3 48 74 5B 79   ..t.@.Þ.Ã.âóHt[y
0x000000E0   39 59 5B 8A 47 04 3C 0F 74 06 24 7F 3C 05 75 22   9Y[.G.<.t.$.<.u"
0x000000F0   66 8B 47 08 66 8B 56 14 66 01 D0 66 21 D2 75 03   f.G.f.V.f.Ðf!Òu.
0x00000100   66 89 C2 E8 AC FF 72 03 E8 B6 FF 66 8B 46 1C E8   f.Âè¬.r.è¶.f.F.è
0x00000110   A0 FF 83 C3 10 E2 CC 66 61 C3 E8 62 00 4D 75 6C   ...Ã.âÌfaÃèb.Mul
0x00000120   74 69 70 6C 65 20 61 63 74 69 76 65 20 70 61 72   tiple active par
0x00000130   74 69 74 69 6F 6E 73 2E 0D 0A 66 8B 44 08 66 03   titions...f.D.f.
0x00000140   46 1C 66 89 44 08 E8 30 FF 72 13 81 3E FE 7D 55   F.f.D.è0.r..>þ}U
0x00000150   AA 0F 85 06 FF BC FA 7B 5A 5F 07 FA FF E4 E8 1E   ª....¼ú{Z_.ú.äè.
0x00000160   00 4F 70 65 72 61 74 69 6E 67 20 73 79 73 74 65   .Operating syste
0x00000170   6D 20 6C 6F 61 64 20 65 72 72 6F 72 2E 0D 0A 5E   m load error...^
0x00000180   AC B4 0E 8A 3E 62 04 B3 07 CD 10 3C 0A 75 F1 CD   ¬´..>b.³.Í.<.uñÍ
0x00000190   18 F4 EB FD 00 00 00 00 00 00 00 00 00 00 00 00   .ôëý............
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 20   ............... 
0x000001C0   21 00 07 FE FF D9 00 08 00 00 00 D8 F1 00 00 00   !..þ.Ù.....Øñ...
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

#44 Příspěvek od **Márty84** » 02 zář 2013 08:46

Vsechno to vypada ciste.

Zkuste na chvili vypnout Avast a Kerio a dejte vedet, jak se to chova.

Oji · #45 Příspěvek od **Oji** » 02 zář 2013 09:58

a kerio je co?

VIRY.CZ

Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC

Re: Prosím o kontrolu pomale PC