VIRY.CZ

RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Kontrola -- Datum : 10/08/2012 12:35:46

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: WDC WD3200AAKS-75VYA0 ATA Device +++++
--- User ---
[MBR] 37c1640e8ea2737723d49eac45ecd241
[BSP] a83cce7d2bccbdcd470a7f61974bdede : MBR Code unknown
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 91204 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 186787760 | Size: 214037 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[4].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt


RogueKiller V8.1.1 [10/03/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Operační systém: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Oprava HOSTS -- Datum : 10/08/2012 12:40:53

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost

Dokončeno : << RKreport[5].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt ; RKreport[4].txt ; RKreport[5].txt

Jeste posledni skener.


Pokud nemate, zazalohujte si dulezita data

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

ComboFix 12-10-08.01 - uzivatel 08.10.2012 12:54:58.2.2 - x86
Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1250.420.1029.18.2039.965 [GMT 2:00]
Spuštěný z: c:\users\uzivatel\Desktop\ComboFix.exe
AV: COMODO Antivirus *Disabled/Updated* {675CEE69-9702-A524-3989-6D7CC8BF3695}
FW: COMODO Firewall *Enabled* {5F676F4C-DD6D-A47C-12D6-C449366C71EE}
SP: COMODO Defense+ *Disabled/Updated* {DC3D0F8D-B138-AAAA-0339-560EB3387C28}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\pthreadVC.dll
D:\install.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-08 do 2012-10-08 )))))))))))))))))))))))))))))))
.
.
2012-10-08 11:04 . 2012-10-08 11:04 -------- d-----w- c:\users\sssugi\AppData\Local\temp
2012-10-08 11:04 . 2012-10-08 11:04 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-10-08 11:04 . 2012-10-08 11:04 -------- d-----w- c:\users\Guest\AppData\Local\temp
2012-10-08 11:04 . 2012-10-08 11:04 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-08 05:11 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{62622BE1-E970-480E-AD40-5DCE8AF9D71E}\mpengine.dll
2012-10-05 08:22 . 2012-10-05 08:22 -------- d-----w- C:\_OTL
2012-10-04 20:24 . 2012-10-04 20:24 512 ----a-w- C:\PhysicalMBR.bin
2012-10-02 08:43 . 2012-10-02 08:43 -------- d-----w- c:\users\uzivatel\AppData\Local\MSKLC
2012-10-02 08:42 . 2012-10-02 08:42 -------- d-----w- c:\program files\Microsoft Keyboard Layout Creator 1.4
2012-09-27 08:26 . 2012-09-27 08:26 -------- d-----w- c:\users\uzivatel\AppData\Local\FlatOut Ultimate Carnage
2012-09-24 06:01 . 2012-08-24 07:34 140936 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2012-09-20 10:23 . 2012-09-20 10:23 73136 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-20 10:23 . 2012-09-20 10:23 696240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-12 13:48 . 2012-09-12 13:55 -------- d-----w- c:\program files\Paint.NET
2012-09-12 13:47 . 2012-10-03 09:48 -------- d-----w- c:\users\uzivatel\AppData\Local\Paint.NET
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-04 05:52 . 2012-09-04 05:53 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-09-04 05:52 . 2012-07-09 06:30 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-04 05:52 . 2010-08-27 12:34 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-09-07 13:26 . 2012-09-07 13:26 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-02-03 2548552]
"StartupDelayer"="c:\program files\r2 Studios\Startup Delayer\Startup Launcher.exe" [2011-08-16 893440]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
.
c:\users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\uzivatel\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
Mozilla Thunderbird.lnk - c:\program files\Mozilla Thunderbird\thunderbird.exe [2009-4-15 388576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3261852175-3587454928-1856105747-1000]
"EnableNotificationsRef"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3261852175-3587454928-1856105747-501]
"EnableNotificationsRef"=dword:00000001
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMSWISSARMY
*Deregistered* - TrueSight
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7070D8E0-650A-46b3-B03C-9497582E6A74}]
2008-04-11 15:23 38400 ----a-w- c:\windows\System32\SoundSchemes.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B3688A53-AB2A-4b1d-8CEF-8F93D8C51C24}]
2008-08-28 09:50 30720 ----a-w- c:\windows\System32\soundschemes2.exe
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\qd2m0xmo.default\
FF - prefs.js: browser.startup.homepage - hxxp://zpravy.ihned.cz/
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-08 13:04
Windows 6.0.6002 Service Pack 2 NTFS
.
detected NTDLL code modification:
ZwClose, ZwOpenFile
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3261852175-3587454928-1856105747-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{C5225F98-560E-7229-D8E8-86816883DF3C}*]
"aa"=hex:6a,61,63,67,70,68,65,65,63,67,65,63,63,6f,61,6d,6b,64,62,70,00,00
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(812)
c:\windows\System32\guard32.dll
.
- - - - - - - > 'lsass.exe'(756)
c:\windows\System32\guard32.dll
.
Celkový čas: 2012-10-08 13:07:06
ComboFix-quarantined-files.txt 2012-10-08 11:07
ComboFix2.txt 2012-02-08 14:04
ComboFix3.txt 2009-08-19 08:21
.
Před spuštěním: Volných bajtů: 26 703 818 752
Po spuštění: Volných bajtů: 26 446 028 800
.
- - End Of File - - A582A8AED61EDAEFF4DC17F73E1C67B9

Otevrete si poznamkovy blok a zkopirujte do nej tento skript Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace

při skenu došlo k nestandardnímu restartu PC, log se nevytvořil.

EDIT: musím jít vydělávat na chleba, ozvu se večer, popřípadě ráno. Děkuji za pochopení a Velké Díky za vaši trpělivost, je obdivuhodná

Zkuste to tedy jeste jednou, ale tentokrat v nouzovem rezimu.

V nouzovem rezimu ta klavesnice funguje normalne?

Kdy se problem s klavesnici objevil poprve?

Blbne to pokazde, nebo obcas funguje spravne?

Kdyz v ovladacich panelech najedete ne Centrum usnadneni pristupu a spustite Klavesnici na obrazovce, pise to pismenka/cisla tak jak ma?

V ovladacich panelech najedte do Spravce zarizeni. Nemate tam nejaky vykricnik, nebo otaznik?

Jestli mate moznost pujcit si jeste nejakou jinou klavesnici, vyzkousejte ji/je



Nemate vubec zac, to nestoji za rec
Bohuzel se ale musim priznat, ze zatim netusim, proc to nejde. Sice postupne mazu ruzne chybky a zbytecnosti, ale to, co by vedlo k tem chybam klavesnic zatim nevidim

Márty84 píše: Zkuste to tedy jeste jednou, ale tentokrat v nouzovem rezimu.

ComboFix 12-10-08.01 - uzivatel 09.10.2012 14:27:27.3.2 - x86 MINIMAL
Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1250.420.1029.18.2039.1506 [GMT 2:00]
Spuštěný z: c:\users\uzivatel\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\uzivatel\Desktop\CFScript.txt
AV: COMODO Antivirus *Disabled/Updated* {675CEE69-9702-A524-3989-6D7CC8BF3695}
FW: COMODO Firewall *Enabled* {5F676F4C-DD6D-A47C-12D6-C449366C71EE}
SP: COMODO Defense+ *Disabled/Updated* {DC3D0F8D-B138-AAAA-0339-560EB3387C28}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\uzivatel\AppData\Roaming\vso_ts_preview.xml
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-09 do 2012-10-09 )))))))))))))))))))))))))))))))
.
.
2012-10-09 12:33 . 2012-10-09 12:35 -------- d-----w- c:\users\uzivatel\AppData\Local\temp
2012-10-09 12:33 . 2012-10-09 12:33 -------- d-----w- c:\users\sssugi\AppData\Local\temp
2012-10-09 12:33 . 2012-10-09 12:33 -------- d-----w- c:\users\Public\AppData\Local\temp
2012-10-09 12:33 . 2012-10-09 12:33 -------- d-----w- c:\users\Guest\AppData\Local\temp
2012-10-09 12:33 . 2012-10-09 12:33 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-10-09 06:11 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9EB383DA-27C6-494C-A919-B71E4D4EB426}\mpengine.dll
2012-10-04 20:24 . 2012-10-04 20:24 512 ----a-w- C:\PhysicalMBR.bin
2012-10-02 08:43 . 2012-10-02 08:43 -------- d-----w- c:\users\uzivatel\AppData\Local\MSKLC
2012-10-02 08:42 . 2012-10-02 08:42 -------- d-----w- c:\program files\Microsoft Keyboard Layout Creator 1.4
2012-09-27 08:26 . 2012-09-27 08:26 -------- d-----w- c:\users\uzivatel\AppData\Local\FlatOut Ultimate Carnage
2012-09-24 06:01 . 2012-08-24 07:34 140936 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2012-09-20 10:23 . 2012-09-20 10:23 73136 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-20 10:23 . 2012-09-20 10:23 696240 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-09-12 13:48 . 2012-09-12 13:55 -------- d-----w- c:\program files\Paint.NET
2012-09-12 13:47 . 2012-10-03 09:48 -------- d-----w- c:\users\uzivatel\AppData\Local\Paint.NET
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-04 05:52 . 2012-09-04 05:53 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2012-09-04 05:52 . 2012-07-09 06:30 821736 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-04 05:52 . 2010-08-27 12:34 746984 ----a-w- c:\windows\system32\deployJava1.dll
2012-09-07 13:26 . 2012-09-07 13:26 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-02-03 2548552]
"StartupDelayer"="c:\program files\r2 Studios\Startup Delayer\Startup Launcher.exe" [2011-08-16 893440]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 1821576]
.
c:\users\uzivatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\uzivatel\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
Mozilla Thunderbird.lnk - c:\program files\Mozilla Thunderbird\thunderbird.exe [2009-4-15 388576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3261852175-3587454928-1856105747-1000]
"EnableNotificationsRef"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3261852175-3587454928-1856105747-501]
"EnableNotificationsRef"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7070D8E0-650A-46b3-B03C-9497582E6A74}]
2008-04-11 15:23 38400 ----a-w- c:\windows\System32\SoundSchemes.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{B3688A53-AB2A-4b1d-8CEF-8F93D8C51C24}]
2008-08-28 09:50 30720 ----a-w- c:\windows\System32\soundschemes2.exe
.
.
------- Doplňkový sken -------
.
uStart Page = about:blank
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\qd2m0xmo.default\
FF - prefs.js: browser.startup.homepage - hxxp://zpravy.ihned.cz/
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-09 14:37
Windows 6.0.6002 Service Pack 2 NTFS
.
detected NTDLL code modification:
ZwClose, ZwOpenFile
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3261852175-3587454928-1856105747-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{C5225F98-560E-7229-D8E8-86816883DF3C}*]
"aa"=hex:6a,61,63,67,70,68,65,65,63,67,65,63,63,6f,61,6d,6b,64,62,70,00,00
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(820)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(3924)
c:\windows\system32\guard32.dll
c:\users\uzivatel\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\COMODO\COMODO Internet Security\cmdagent.exe
c:\program files\Common Files\AVerMedia\Service\AVerRemote.exe
c:\program files\Common Files\AVerMedia\Service\AVerScheduleService.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\windows\system32\conime.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Sandboxie\SbieSvc.exe
.
**************************************************************************
.
Celkový čas: 2012-10-09 14:41:07 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-09 12:41
ComboFix2.txt 2012-10-08 11:07
ComboFix3.txt 2012-02-08 14:04
ComboFix4.txt 2009-08-19 08:21
.
Před spuštěním: Volných bajtů: 35 106 357 248
Po spuštění: Volných bajtů: 32 828 076 032
.
- - End Of File - - D27E911834A39C0C8AD2129FEE2B14DA

Márty84 píše: V nouzovem rezimu ta klavesnice funguje normalne?

Zkoušel jsem to 3x a pokaždé vše bylo v pořádku a fungovalo.

Márty84 píše: Kdy se problem s klavesnici objevil poprve?

Nejsem schopný říct, táhne se to možná od začátku roku. Nevím o žádné přímé souvislosti s nějakou instalací softu, update atd.

Márty84 píše: Blbne to pokazde, nebo obcas funguje spravne?

Občas funguje správně, nejvíc to blbne při přepnutí uživatele. Zkoušel jsem uživatele Host odebrat a znova vytvořit, nepomohlo. Bohužel to ale není na 100%, takže to nedokážu ani nasimulovat, aby to blblo, či šlo správně

Márty84 píše: Kdyz v ovladacich panelech najedete ne Centrum usnadneni pristupu a spustite Klavesnici na obrazovce, pise to pismenka/cisla tak jak ma?

Ano, vždy psalo - přihlašoval jsem se kolikrát jen přes ni, protože mi nefungovalo písmenko v hesle k účtu.

Márty84 píše: V ovladacich panelech najedte do Spravce zarizeni. Nemate tam nejaky vykricnik, nebo otaznik?

Ne, nebýval tam. Jen někdy při řežimu spánku mi "odpojí" USB řadič - ale počítám, že to s tím nesouvisí, klávesnice byla původně PS/2

Márty84 píše: Jestli mate moznost pujcit si jeste nejakou jinou klavesnici, vyzkousejte ji/je

Zkoušeno 3x klávesnice PS2, z toho 2 úplně nové. Teď zakoupena USB klávesnice a problém přetrvává.

Márty84 píše:Bohuzel se ale musim priznat, ze zatim netusim, proc to nejde. Sice postupne mazu ruzne chybky a zbytecnosti, ale to, co by vedlo k tem chybam klavesnic zatim nevidim

Už začínám být skeptický a uvažuju o komplet reinstalu systému.

Vsechny tyto programy - vcetne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)
Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.

vyosek píše: T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe

• Stahnete a spustte
• Pro potvrzeni volby mackejte A, Enter
• Po pouziti utilitu smazte
• Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.

Stahnete TFC http://oldtimer.geekstogo.com/TFC.exe , ulozte a spustte
Kliknete na START a pote OK - Po uklidu dojde k restartu pc.
Po pouziti muzete programek smazat

Stahnete Ccleaner http://www.stahuj.centrum.cz/utility_a_ ... /ccleaner/ a spustte.
Pri instalaci pozor na toolbar, jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!

Defragmentujte disk(y)
Stahnete napriklad program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Zkuste jeste preinstalovat, pripadne aktualizovat, ovladac klavesnice.


Projedte to jeste s AVPTool http://forum.viry.cz/viewtopic.php?f=29&t=58179


Reinstal systemu by to mozna vyresil, ale taky to neni jiste

Zkusim se poptat jeste kolegu

Díky, uklidím tedy a projedu ještě AVP. Klávesnice Ovladač nenabízí, ale zkusím když tak poladit, i když jak jsem psal - dělalo to bez ohledu na typ klávesnice (výrobce, způsob zapojení).

Jen pro info: klávesnice blbla, vyčistil jsem OTL > restart > klávesnice šla v pořádku > TFC > restart > klávesnice opět blbne a nefunguje num. 6
To je jen ukázka, jak to funguje nestabilně a nejsem schopný vypozorovat, co to způsobuje.

Ještě jednou díky za pomoc Vlákno budu dál sledovat, takže pokud se Vám podaří přijít na nějakou věc, napište, budu rád. Pokud problém dokážu odstranit vlastním přičiněním, budu vás informovat.

PS: T-cleaner nejde stáhnout z odkazu, tak jsem to vynechal.

Takze kdyz kouknete do Spravce zarizeni a najdete klavesnici, neni tam zadny ovladac? Ale tim, ze to nekdy jde, nekdy ne, to asi ovladac taky nezpusobuje

Snad AVP neco najde Je to docela zahada.

Ten T-Cleaner mi normalne stahnout jde, tak to pak jeste zkuste, uklidi po pouzitych programech.

Zatim bohuzel neni zac, kdyz problem stale trva

Ovladač je standard - viz. screen: http://2i.cz/eafcc1eb38

AVP našlo pouze věci v Sandboxu, takže to je taky pase (v 32bitovém systému je Sandbox 100%) - sandbox jsem pro jistotu vymazal.

T-cleaner už jde stáhnout bez problémů, asi jsem se tehdy trefil do nějakých úprav na serveru, protože to opravdu nešlo Takže s ním ještě uklidím.

Budu dál pátrat, hlavně mě překvapilo, že to v Nouzovém režimu funguje v pořádku - což se sám sobě divím, že jsem to nezkusil před tím, než jsem šel pro radu sem

Kolega psal, ze by tam mohla byt havet v MBR sektoru, kterou casto AV nedetekuje. A v takovem pripade by nepomohl ani reinstal systemu!

Stahnete MBRScan http://eric71.geekstogo.com/tools/MbrScan.exe , ulozte ho na plochu a spustte jako spravce.
Kliknete na Report
Za chvili vyskoci log s nazvem MBRScan.txt, ten mi sem zkopirujte

vyosek píše: Stahnete si TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe

• Kliknete na volbu Change parametrs
• V okne Additional Option zakliknete vsechny moznosti
• Kliknete na OK
• Utilite prikazte, at skenuje - klik na Start Scan
• Po dokonceni skenu se objevi okno, zkontrolujte, zda-li je vsude moznost Skip
• Pokud moznost Skip nebude primarne nastavena, prekliknete ji na Skip
• Pokud mate vsude Skip, kliknete na Continue
• Na disku, kde mate Windows (obvykle c:\) ve tvaru TDSSKiller.nejaka cisilka _log.txt bude log - jeho obsah sem vlozte

MBRScan log

log: TDSSKiller

11:50:51.0686 0876 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
11:50:53.0702 0876 ============================================================
11:50:53.0702 0876 Current date / time: 2012/10/10 11:50:53.0702
11:50:53.0702 0876 SystemInfo:
11:50:53.0702 0876
11:50:53.0702 0876 OS Version: 6.0.6002 ServicePack: 2.0
11:50:53.0702 0876 Product type: Workstation
11:50:53.0702 0876 ComputerName: VISTA
11:50:53.0702 0876 UserName: uzivatel
11:50:53.0702 0876 Windows directory: C:\Windows
11:50:53.0702 0876 System windows directory: C:\Windows
11:50:53.0702 0876 Processor architecture: Intel x86
11:50:53.0702 0876 Number of processors: 2
11:50:53.0702 0876 Page size: 0x1000
11:50:53.0702 0876 Boot type: Normal boot
11:50:53.0702 0876 ============================================================
11:50:54.0795 0876 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:50:54.0811 0876 ============================================================
11:50:54.0811 0876 \Device\Harddisk0\DR0:
11:50:54.0811 0876 MBR partitions:
11:50:54.0811 0876 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xB22276C
11:50:54.0811 0876 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xB2227B0, BlocksNum 0x1A20AF11
11:50:54.0811 0876 ============================================================
11:50:54.0842 0876 C: <-> \Device\Harddisk0\DR0\Partition1
11:50:54.0905 0876 D: <-> \Device\Harddisk0\DR0\Partition2
11:50:54.0905 0876 ============================================================
11:50:54.0905 0876 Initialize success
11:50:54.0905 0876 ============================================================
11:51:25.0058 2356 ============================================================
11:51:25.0058 2356 Scan started
11:51:25.0058 2356 Mode: Manual; SigCheck; TDLFS;
11:51:25.0058 2356 ============================================================
11:51:25.0808 2356 ================ Scan system memory ========================
11:51:25.0808 2356 System memory - ok
11:51:25.0808 2356 ================ Scan services =============================
11:51:25.0964 2356 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:51:26.0120 2356 ACPI - ok
11:51:26.0167 2356 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:51:26.0199 2356 adp94xx - ok
11:51:26.0230 2356 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:51:26.0261 2356 adpahci - ok
11:51:26.0308 2356 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:51:26.0324 2356 adpu160m - ok
11:51:26.0355 2356 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:51:26.0370 2356 adpu320 - ok
11:51:26.0417 2356 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:51:26.0480 2356 AeLookupSvc - ok
11:51:26.0511 2356 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:51:26.0573 2356 AFD - ok
11:51:26.0605 2356 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:51:26.0620 2356 agp440 - ok
11:51:26.0652 2356 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:51:26.0683 2356 aic78xx - ok
11:51:26.0730 2356 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:51:26.0777 2356 ALG - ok
11:51:26.0808 2356 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
11:51:26.0823 2356 aliide - ok
11:51:26.0839 2356 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:51:26.0855 2356 amdagp - ok
11:51:26.0870 2356 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
11:51:26.0902 2356 amdide - ok
11:51:26.0917 2356 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:51:27.0089 2356 AmdK7 - ok
11:51:27.0120 2356 [ 0CA0071DA4315B00FC1328CA86B425DA ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:51:27.0198 2356 AmdK8 - ok
11:51:27.0245 2356 [ 3E59DF4984FBD6800D6621480B38A34E ] Andbus C:\Windows\system32\DRIVERS\lgandbus.sys
11:51:27.0277 2356 Andbus - ok
11:51:27.0308 2356 [ 8E0BF6F3B2C9C292BC7CE0DE727CDD56 ] AndDiag C:\Windows\system32\DRIVERS\lganddiag.sys
11:51:27.0339 2356 AndDiag - ok
11:51:27.0370 2356 [ 1D2C90E25483363D54B652898BBC8F2A ] AndGps C:\Windows\system32\DRIVERS\lgandgps.sys
11:51:27.0386 2356 AndGps - ok
11:51:27.0402 2356 [ B1B06A95DA2CAC7FA19832C60C348C85 ] ANDModem C:\Windows\system32\DRIVERS\lgandmodem.sys
11:51:27.0433 2356 ANDModem - ok
11:51:27.0480 2356 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:51:27.0542 2356 Appinfo - ok
11:51:27.0589 2356 [ 0FE769CAE5855B53C90E23F85E7E89FF ] AppMgmt C:\Windows\System32\appmgmts.dll
11:51:27.0636 2356 AppMgmt - ok
11:51:27.0667 2356 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
11:51:27.0698 2356 arc - ok
11:51:27.0745 2356 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:51:27.0776 2356 arcsas - ok
11:51:27.0839 2356 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:51:27.0870 2356 AsyncMac - ok
11:51:27.0901 2356 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:51:27.0917 2356 atapi - ok
11:51:27.0980 2356 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:51:28.0026 2356 AudioEndpointBuilder - ok
11:51:28.0058 2356 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:51:28.0089 2356 Audiosrv - ok
11:51:28.0151 2356 [ EA2D28BBE98256654397CD1F6EAEBDD8 ] Autodesk Licensing Service C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
11:51:28.0183 2356 Autodesk Licensing Service - ok
11:51:28.0245 2356 [ 335695874407763E72FC61B8D7FB01AA ] AVerAF35 C:\Windows\system32\Drivers\AVerAF35.sys
11:51:28.0339 2356 AVerAF35 - ok
11:51:28.0401 2356 [ B085322DC9984B31190BD80D2542329F ] AVerRemote C:\Program Files\Common Files\AVerMedia\Service\AVerRemote.exe
11:51:28.0464 2356 AVerRemote ( UnsignedFile.Multi.Generic ) - warning
11:51:28.0464 2356 AVerRemote - detected UnsignedFile.Multi.Generic (1)
11:51:28.0480 2356 [ 3094F37D17C9F91632689FFE9381FC4B ] AVerScheduleService C:\Program Files\Common Files\AVerMedia\Service\AVerScheduleService.exe
11:51:28.0526 2356 AVerScheduleService ( UnsignedFile.Multi.Generic ) - warning
11:51:28.0526 2356 AVerScheduleService - detected UnsignedFile.Multi.Generic (1)
11:51:28.0589 2356 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:51:28.0636 2356 Beep - ok
11:51:28.0698 2356 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:51:28.0761 2356 BFE - ok
11:51:28.0854 2356 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
11:51:28.0964 2356 BITS - ok
11:51:28.0979 2356 blbdrive - ok
11:51:29.0011 2356 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:51:29.0058 2356 bowser - ok
11:51:29.0089 2356 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:51:29.0136 2356 BrFiltLo - ok
11:51:29.0151 2356 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:51:29.0183 2356 BrFiltUp - ok
11:51:29.0214 2356 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:51:29.0261 2356 Browser - ok
11:51:29.0292 2356 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:51:29.0370 2356 Brserid - ok
11:51:29.0386 2356 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:51:29.0448 2356 BrSerWdm - ok
11:51:29.0464 2356 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:51:29.0526 2356 BrUsbMdm - ok
11:51:29.0542 2356 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:51:29.0620 2356 BrUsbSer - ok
11:51:29.0651 2356 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:51:29.0714 2356 BTHMODEM - ok
11:51:29.0776 2356 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:51:29.0854 2356 cdfs - ok
11:51:29.0886 2356 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:51:29.0917 2356 cdrom - ok
11:51:29.0964 2356 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:51:29.0995 2356 CertPropSvc - ok
11:51:30.0026 2356 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:51:30.0073 2356 circlass - ok
11:51:30.0104 2356 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:51:30.0136 2356 CLFS - ok
11:51:30.0198 2356 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:51:30.0229 2356 clr_optimization_v2.0.50727_32 - ok
11:51:30.0323 2356 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:51:30.0354 2356 clr_optimization_v4.0.30319_32 - ok
11:51:30.0448 2356 [ A98775F9140D0337F019C381707444A1 ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
11:51:30.0542 2356 cmdAgent - ok
11:51:30.0573 2356 [ 0346C4BCFBE97DDAFB6D6106E3A5E577 ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
11:51:30.0604 2356 cmderd - ok
11:51:30.0620 2356 [ 8A4C864777B717AE45580C1E0DE2C103 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
11:51:30.0636 2356 cmdGuard - ok
11:51:30.0651 2356 [ 6BA0554461114A6A8C12543F6F965CCC ] cmdHlp C:\Windows\system32\DRIVERS\cmdhlp.sys
11:51:30.0682 2356 cmdHlp - ok
11:51:30.0698 2356 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:51:30.0714 2356 cmdide - ok
11:51:30.0729 2356 [ 82B8C91D327CFECF76CB58716F7D4997 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:51:30.0761 2356 Compbatt - ok
11:51:30.0776 2356 COMSysApp - ok
11:51:30.0792 2356 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:51:30.0823 2356 crcdisk - ok
11:51:30.0854 2356 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:51:30.0932 2356 Crusoe - ok
11:51:30.0995 2356 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:51:31.0057 2356 CryptSvc - ok
11:51:31.0089 2356 [ 9BDB2E89BE8D0EF37B1F25C3D3FC192C ] CSC C:\Windows\system32\drivers\csc.sys
11:51:31.0151 2356 CSC - ok
11:51:31.0198 2356 [ 0A2095F92F6AE4FE6484D911B0C21E95 ] CscService C:\Windows\System32\cscsvc.dll
11:51:31.0276 2356 CscService - ok
11:51:31.0307 2356 [ CA812B19C0E2BC044214AD3F6436E730 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
11:51:31.0339 2356 dc3d - ok
11:51:31.0385 2356 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:51:31.0448 2356 DcomLaunch - ok
11:51:31.0479 2356 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:51:31.0510 2356 DfsC - ok
11:51:31.0589 2356 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:51:31.0792 2356 DFSR - ok
11:51:31.0932 2356 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:51:31.0979 2356 Dhcp - ok
11:51:32.0042 2356 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:51:32.0057 2356 disk - ok
11:51:32.0120 2356 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:51:32.0214 2356 Dnscache - ok
11:51:32.0245 2356 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:51:32.0292 2356 dot3svc - ok
11:51:32.0323 2356 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:51:32.0370 2356 DPS - ok
11:51:32.0417 2356 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:51:32.0448 2356 drmkaud - ok
11:51:32.0495 2356 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:51:32.0542 2356 DXGKrnl - ok
11:51:32.0588 2356 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:51:32.0667 2356 E1G60 - ok
11:51:32.0713 2356 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:51:32.0760 2356 EapHost - ok
11:51:32.0807 2356 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:51:32.0854 2356 Ecache - ok
11:51:32.0932 2356 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:51:32.0995 2356 ehRecvr - ok
11:51:33.0026 2356 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:51:33.0073 2356 ehSched - ok
11:51:33.0088 2356 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:51:33.0104 2356 ehstart - ok
11:51:33.0135 2356 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:51:33.0167 2356 elxstor - ok
11:51:33.0213 2356 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:51:33.0307 2356 EMDMgmt - ok
11:51:33.0354 2356 [ BDD170FECB0E496A914318009D85B819 ] ENTECH C:\Windows\system32\DRIVERS\ENTECH.SYS
11:51:33.0370 2356 ENTECH ( UnsignedFile.Multi.Generic ) - warning
11:51:33.0370 2356 ENTECH - detected UnsignedFile.Multi.Generic (1)
11:51:33.0432 2356 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:51:33.0463 2356 EventSystem - ok
11:51:33.0495 2356 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:51:33.0542 2356 exfat - ok
11:51:33.0588 2356 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:51:33.0620 2356 fastfat - ok
11:51:33.0651 2356 [ DFBA0F60FA301E5B1BFB1403A93EE23E ] Fax C:\Windows\system32\fxssvc.exe
11:51:33.0729 2356 Fax - ok
11:51:33.0760 2356 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:51:33.0854 2356 fdc - ok
11:51:33.0901 2356 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:51:33.0932 2356 fdPHost - ok
11:51:33.0963 2356 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:51:34.0041 2356 FDResPub - ok
11:51:34.0073 2356 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:51:34.0104 2356 FileInfo - ok
11:51:34.0135 2356 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:51:34.0166 2356 Filetrace - ok
11:51:34.0182 2356 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:51:34.0245 2356 flpydisk - ok
11:51:34.0276 2356 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:51:34.0307 2356 FltMgr - ok
11:51:34.0385 2356 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:51:34.0495 2356 FontCache - ok
11:51:34.0541 2356 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:51:34.0557 2356 FontCache3.0.0.0 - ok
11:51:34.0588 2356 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:51:34.0620 2356 Fs_Rec - ok
11:51:34.0666 2356 [ FECF4C2E42440A8D132BF94EEE3C3FC9 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:51:34.0698 2356 fvevol - ok
11:51:34.0713 2356 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:51:34.0745 2356 gagp30kx - ok
11:51:34.0791 2356 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:51:34.0854 2356 gpsvc - ok
11:51:34.0901 2356 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:51:34.0994 2356 HdAudAddService - ok
11:51:35.0026 2356 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:51:35.0119 2356 HDAudBus - ok
11:51:35.0151 2356 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:51:35.0213 2356 HidBth - ok
11:51:35.0229 2356 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:51:35.0307 2356 HidIr - ok
11:51:35.0338 2356 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
11:51:35.0385 2356 hidserv - ok
11:51:35.0416 2356 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:51:35.0448 2356 HidUsb - ok
11:51:35.0479 2356 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:51:35.0541 2356 hkmsvc - ok
11:51:35.0635 2356 [ F90DD89E8A482AC976DD4E1029802E49 ] HP LaserJet Service C:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
11:51:35.0635 2356 HP LaserJet Service ( UnsignedFile.Multi.Generic ) - warning
11:51:35.0651 2356 HP LaserJet Service - detected UnsignedFile.Multi.Generic (1)
11:51:35.0666 2356 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:51:35.0682 2356 HpCISSs - ok
11:51:35.0713 2356 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:51:35.0791 2356 HTTP - ok
11:51:35.0854 2356 [ 6D1FE3A24A49EE8A3E0F5F589813E934 ] HWiNFO32 C:\Program Files\HWiNFO32\HWiNFO32.SYS
11:51:35.0869 2356 HWiNFO32 - ok
11:51:35.0885 2356 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:51:35.0916 2356 i2omp - ok
11:51:35.0963 2356 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:51:35.0994 2356 i8042prt - ok
11:51:36.0088 2356 [ 9378D57E2B96C0A185D844770AD49948 ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
11:51:36.0213 2356 ialm - ok
11:51:36.0229 2356 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:51:36.0260 2356 iaStorV - ok
11:51:36.0322 2356 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:51:36.0401 2356 idsvc - ok
11:51:36.0588 2356 [ 9378D57E2B96C0A185D844770AD49948 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
11:51:36.0682 2356 igfx - ok
11:51:36.0713 2356 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:51:36.0729 2356 iirsp - ok
11:51:36.0776 2356 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:51:36.0838 2356 IKEEXT - ok
11:51:36.0869 2356 [ 7783FE23D056EAF8F0081ED1474640A3 ] inspect C:\Windows\system32\DRIVERS\inspect.sys
11:51:36.0885 2356 inspect - ok
11:51:36.0963 2356 [ 9438FE15DA89C6AACE8A79DB2C6F60C1 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:51:37.0072 2356 IntcAzAudAddService - ok
11:51:37.0135 2356 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:51:37.0151 2356 intelide - ok
11:51:37.0213 2356 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:51:37.0276 2356 intelppm - ok
11:51:37.0307 2356 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:51:37.0369 2356 IPBusEnum - ok
11:51:37.0400 2356 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:51:37.0447 2356 IpFilterDriver - ok
11:51:37.0494 2356 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:51:37.0557 2356 iphlpsvc - ok
11:51:37.0588 2356 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:51:37.0650 2356 IPMIDRV - ok
11:51:37.0682 2356 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:51:37.0744 2356 IPNAT - ok
11:51:37.0760 2356 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:51:37.0807 2356 IRENUM - ok
11:51:37.0838 2356 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:51:37.0854 2356 isapnp - ok
11:51:37.0885 2356 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:51:37.0916 2356 iScsiPrt - ok
11:51:37.0932 2356 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:51:37.0963 2356 iteatapi - ok
11:51:37.0979 2356 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:51:38.0010 2356 iteraid - ok
11:51:38.0041 2356 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:51:38.0057 2356 kbdclass - ok
11:51:38.0104 2356 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:51:38.0150 2356 kbdhid - ok
11:51:38.0182 2356 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
11:51:38.0213 2356 KeyIso - ok
11:51:38.0244 2356 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:51:38.0291 2356 KSecDD - ok
11:51:38.0322 2356 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:51:38.0385 2356 KtmRm - ok
11:51:38.0416 2356 [ 3CE13ABC9F612E08F6B23EECC63780E4 ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys
11:51:38.0432 2356 L8042Kbd - ok
11:51:38.0479 2356 [ 43446F197C74EF2030F84B3A4F39D570 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:51:38.0525 2356 LanmanServer - ok
11:51:38.0572 2356 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:51:38.0650 2356 LanmanWorkstation - ok
11:51:38.0682 2356 [ 4DD47B5AF0B24871EBB9EFC012A7474E ] LgBttPort C:\Windows\system32\DRIVERS\lgbtport.sys
11:51:38.0728 2356 LgBttPort - ok
11:51:38.0775 2356 [ 1D038CA6C529203087A990E5E97887B4 ] lgbusenum C:\Windows\system32\DRIVERS\lgbtbus.sys
11:51:38.0791 2356 lgbusenum - ok
11:51:38.0807 2356 [ 26F1976A330195D62A6224C76968CF0D ] LGVMODEM C:\Windows\system32\DRIVERS\lgvmodem.sys
11:51:38.0838 2356 LGVMODEM - ok
11:51:38.0869 2356 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:51:38.0916 2356 lltdio - ok
11:51:38.0947 2356 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:51:38.0994 2356 lltdsvc - ok
11:51:39.0025 2356 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:51:39.0088 2356 lmhosts - ok
11:51:39.0135 2356 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:51:39.0150 2356 LSI_FC - ok
11:51:39.0182 2356 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:51:39.0197 2356 LSI_SAS - ok
11:51:39.0228 2356 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:51:39.0244 2356 LSI_SCSI - ok
11:51:39.0291 2356 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:51:39.0338 2356 luafv - ok
11:51:39.0369 2356 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:51:39.0400 2356 Mcx2Svc - ok
11:51:39.0432 2356 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
11:51:39.0447 2356 megasas - ok
11:51:39.0525 2356 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:51:39.0603 2356 MMCSS - ok
11:51:39.0650 2356 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:51:39.0713 2356 Modem - ok
11:51:39.0744 2356 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:51:39.0806 2356 monitor - ok
11:51:39.0838 2356 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:51:39.0869 2356 mouclass - ok
11:51:39.0900 2356 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:51:39.0947 2356 mouhid - ok
11:51:39.0978 2356 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:51:39.0994 2356 MountMgr - ok
11:51:40.0041 2356 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:51:40.0072 2356 MozillaMaintenance - ok
11:51:40.0088 2356 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
11:51:40.0103 2356 mpio - ok
11:51:40.0119 2356 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:51:40.0150 2356 mpsdrv - ok
11:51:40.0197 2356 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:51:40.0244 2356 MpsSvc - ok
11:51:40.0275 2356 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:51:40.0291 2356 Mraid35x - ok
11:51:40.0322 2356 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:51:40.0369 2356 MRxDAV - ok
11:51:40.0400 2356 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:51:40.0431 2356 mrxsmb - ok
11:51:40.0463 2356 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:51:40.0494 2356 mrxsmb10 - ok
11:51:40.0510 2356 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:51:40.0572 2356 mrxsmb20 - ok
11:51:40.0588 2356 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
11:51:40.0619 2356 msahci - ok
11:51:40.0635 2356 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:51:40.0650 2356 msdsm - ok
11:51:40.0697 2356 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:51:40.0744 2356 MSDTC - ok
11:51:40.0775 2356 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:51:40.0806 2356 Msfs - ok
11:51:40.0853 2356 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:51:40.0869 2356 msisadrv - ok
11:51:40.0900 2356 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:51:40.0947 2356 MSiSCSI - ok
11:51:40.0963 2356 msiserver - ok
11:51:40.0994 2356 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:51:41.0056 2356 MSKSSRV - ok
11:51:41.0072 2356 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:51:41.0134 2356 MSPCLOCK - ok
11:51:41.0166 2356 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:51:41.0213 2356 MSPQM - ok
11:51:41.0244 2356 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:51:41.0275 2356 MsRPC - ok
11:51:41.0291 2356 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:51:41.0322 2356 mssmbios - ok
11:51:41.0338 2356 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:51:41.0384 2356 MSTEE - ok
11:51:41.0400 2356 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:51:41.0416 2356 Mup - ok
11:51:41.0463 2356 [ F0CF56D0DD02D33A34998F87541B2A50 ] mvusbews C:\Windows\system32\Drivers\mvusbews.sys
11:51:41.0525 2356 mvusbews - ok
11:51:41.0572 2356 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:51:41.0634 2356 napagent - ok
11:51:41.0681 2356 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:51:41.0728 2356 NativeWifiP - ok
11:51:41.0775 2356 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:51:41.0869 2356 NDIS - ok
11:51:41.0900 2356 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:51:41.0931 2356 NdisTapi - ok
11:51:41.0963 2356 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:51:42.0009 2356 Ndisuio - ok
11:51:42.0041 2356 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:51:42.0072 2356 NdisWan - ok
11:51:42.0119 2356 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:51:42.0150 2356 NDProxy - ok
11:51:42.0181 2356 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:51:42.0228 2356 NetBIOS - ok
11:51:42.0275 2356 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:51:42.0337 2356 netbt - ok
11:51:42.0369 2356 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
11:51:42.0384 2356 Netlogon - ok
11:51:42.0416 2356 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:51:42.0478 2356 Netman - ok
11:51:42.0509 2356 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:51:42.0556 2356 netprofm - ok
11:51:42.0603 2356 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:51:42.0634 2356 NetTcpPortSharing - ok
11:51:42.0681 2356 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:51:42.0775 2356 nfrd960 - ok
11:51:42.0806 2356 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:51:42.0853 2356 NlaSvc - ok
11:51:42.0916 2356 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:51:42.0947 2356 Npfs - ok
11:51:42.0978 2356 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:51:43.0009 2356 nsi - ok
11:51:43.0056 2356 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:51:43.0103 2356 nsiproxy - ok
11:51:43.0166 2356 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:51:43.0275 2356 Ntfs - ok
11:51:43.0306 2356 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:51:43.0416 2356 ntrigdigi - ok
11:51:43.0478 2356 [ 37BE10FF10A92031FC5A01E8363925CC ] NuidFltr C:\Windows\system32\DRIVERS\NuidFltr.sys
11:51:43.0494 2356 NuidFltr - ok
11:51:43.0540 2356 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:51:43.0587 2356 Null - ok
11:51:43.0619 2356 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:51:43.0650 2356 nvraid - ok
11:51:43.0681 2356 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:51:43.0697 2356 nvstor - ok
11:51:43.0744 2356 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:51:43.0775 2356 nv_agp - ok
11:51:43.0884 2356 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:51:43.0931 2356 odserv - ok
11:51:43.0962 2356 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:51:44.0009 2356 ohci1394 - ok
11:51:44.0056 2356 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:51:44.0072 2356 ose - ok
11:51:44.0181 2356 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:51:44.0306 2356 p2pimsvc - ok
11:51:44.0322 2356 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:51:44.0353 2356 p2psvc - ok
11:51:44.0400 2356 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:51:44.0462 2356 Parport - ok
11:51:44.0494 2356 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:51:44.0509 2356 partmgr - ok
11:51:44.0540 2356 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
11:51:44.0572 2356 Parvdm - ok
11:51:44.0603 2356 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:51:44.0681 2356 PcaSvc - ok
11:51:44.0712 2356 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:51:44.0728 2356 pci - ok
11:51:44.0759 2356 [ 3B1901E401473E03EB8C874271E50C26 ] pciide C:\Windows\system32\drivers\pciide.sys
11:51:44.0775 2356 pciide - ok
11:51:44.0806 2356 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:51:44.0822 2356 pcmcia - ok
11:51:44.0868 2356 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
11:51:44.0884 2356 pcouffin - ok
11:51:44.0947 2356 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:51:45.0072 2356 PEAUTH - ok
11:51:45.0243 2356 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:51:45.0400 2356 pla - ok
11:51:45.0447 2356 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:51:45.0509 2356 PlugPlay - ok
11:51:45.0556 2356 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:51:45.0587 2356 PNRPAutoReg - ok
11:51:45.0650 2356 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:51:45.0681 2356 PNRPsvc - ok
11:51:45.0759 2356 [ 896D916DE06F5502D301E8C4DC442AE8 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
11:51:45.0775 2356 Point32 - ok
11:51:45.0837 2356 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:51:45.0900 2356 PolicyAgent - ok
11:51:45.0946 2356 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:51:45.0993 2356 PptpMiniport - ok
11:51:46.0025 2356 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
11:51:46.0103 2356 Processor - ok
11:51:46.0165 2356 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:51:46.0212 2356 ProfSvc - ok
11:51:46.0275 2356 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
11:51:46.0306 2356 ProtectedStorage - ok
11:51:46.0368 2356 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:51:46.0400 2356 PSched - ok
11:51:46.0462 2356 [ 0B6DEA0A1662CAB8F2BF339DC0752EF4 ] PSI_SVC_2 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
11:51:46.0478 2356 PSI_SVC_2 - ok
11:51:46.0525 2356 [ C8EB36910D3BD582891977E80925E21E ] PSSDK42 C:\Windows\system32\Drivers\pssdk42.sys
11:51:46.0540 2356 PSSDK42 - ok
11:51:46.0618 2356 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:51:46.0712 2356 ql2300 - ok
11:51:46.0728 2356 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:51:46.0759 2356 ql40xx - ok
11:51:46.0806 2356 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:51:46.0853 2356 QWAVE - ok
11:51:46.0900 2356 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:51:46.0946 2356 QWAVEdrv - ok
11:51:46.0993 2356 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:51:47.0025 2356 RasAcd - ok
11:51:47.0071 2356 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:51:47.0134 2356 RasAuto - ok
11:51:47.0196 2356 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:51:47.0228 2356 Rasl2tp - ok
11:51:47.0290 2356 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:51:47.0337 2356 RasMan - ok
11:51:47.0384 2356 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:51:47.0431 2356 RasPppoe - ok
11:51:47.0462 2356 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:51:47.0493 2356 RasSstp - ok
11:51:47.0540 2356 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:51:47.0603 2356 rdbss - ok
11:51:47.0634 2356 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:51:47.0681 2356 RDPCDD - ok
11:51:47.0728 2356 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\DRIVERS\rdpdr.sys
11:51:47.0759 2356 rdpdr - ok
11:51:47.0774 2356 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:51:47.0837 2356 RDPENCDD - ok
11:51:47.0884 2356 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:51:47.0931 2356 RDPWD - ok
11:51:47.0993 2356 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:51:48.0040 2356 RemoteAccess - ok
11:51:48.0071 2356 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:51:48.0103 2356 RemoteRegistry - ok
11:51:48.0118 2356 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:51:48.0165 2356 RpcLocator - ok
11:51:48.0196 2356 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\System32\rpcss.dll
11:51:48.0243 2356 RpcSs - ok
11:51:48.0274 2356 [ B7061003D30A049C6B4B3AD8228B808D ] rspAux C:\Windows\system32\DRIVERS\rspAux32.sys
11:51:48.0290 2356 rspAux - ok
11:51:48.0321 2356 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:51:48.0384 2356 rspndr - ok
11:51:48.0446 2356 [ 283392AF1860ECDB5E0F8EBD7F3D72DF ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
11:51:48.0524 2356 RTL8169 - ok
11:51:48.0556 2356 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
11:51:48.0571 2356 SamSs - ok
11:51:48.0649 2356 [ 9FDE1F581A7494130901F18F82E6CF32 ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
11:51:48.0649 2356 SbieDrv ( UnsignedFile.Multi.Generic ) - warning
11:51:48.0649 2356 SbieDrv - detected UnsignedFile.Multi.Generic (1)
11:51:48.0696 2356 [ 6D9C2098C0B0F68D4440AD9D884EBA5D ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
11:51:48.0712 2356 SbieSvc ( UnsignedFile.Multi.Generic ) - warning
11:51:48.0712 2356 SbieSvc - detected UnsignedFile.Multi.Generic (1)
11:51:48.0774 2356 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:51:48.0790 2356 sbp2port - ok
11:51:48.0837 2356 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:51:48.0884 2356 SCardSvr - ok
11:51:48.0946 2356 [ 20B2751CD4C8F3FD989739CA661B9F30 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
11:51:48.0946 2356 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
11:51:48.0946 2356 SCDEmu - detected UnsignedFile.Multi.Generic (1)
11:51:48.0993 2356 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:51:49.0087 2356 Schedule - ok
11:51:49.0102 2356 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:51:49.0134 2356 SCPolicySvc - ok
11:51:49.0196 2356 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:51:49.0259 2356 SDRSVC - ok
11:51:49.0274 2356 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:51:49.0352 2356 secdrv - ok
11:51:49.0399 2356 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:51:49.0446 2356 seclogon - ok
11:51:49.0477 2356 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
11:51:49.0509 2356 SENS - ok
11:51:49.0524 2356 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:51:49.0571 2356 Serenum - ok
11:51:49.0587 2356 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:51:49.0634 2356 Serial - ok
11:51:49.0665 2356 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:51:49.0696 2356 sermouse - ok
11:51:49.0743 2356 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:51:49.0790 2356 SessionEnv - ok
11:51:49.0805 2356 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:51:49.0868 2356 sffdisk - ok
11:51:49.0899 2356 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:51:49.0962 2356 sffp_mmc - ok
11:51:49.0993 2356 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:51:50.0055 2356 sffp_sd - ok
11:51:50.0087 2356 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:51:50.0165 2356 sfloppy - ok
11:51:50.0196 2356 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:51:50.0243 2356 SharedAccess - ok
11:51:50.0274 2356 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:51:50.0337 2356 ShellHWDetection - ok
11:51:50.0352 2356 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:51:50.0384 2356 sisagp - ok
11:51:50.0399 2356 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:51:50.0446 2356 SiSRaid2 - ok
11:51:50.0477 2356 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:51:50.0509 2356 SiSRaid4 - ok
11:51:50.0649 2356 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:51:50.0790 2356 slsvc - ok
11:51:50.0821 2356 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:51:50.0868 2356 SLUINotify - ok
11:51:50.0899 2356 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:51:50.0930 2356 Smb - ok
11:51:50.0962 2356 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:51:50.0993 2356 SNMPTRAP - ok
11:51:51.0024 2356 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:51:51.0055 2356 spldr - ok
11:51:51.0087 2356 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:51:51.0133 2356 Spooler - ok
11:51:51.0180 2356 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:51:51.0243 2356 srv - ok
11:51:51.0274 2356 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:51:51.0337 2356 srv2 - ok
11:51:51.0368 2356 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:51:51.0415 2356 srvnet - ok
11:51:51.0477 2356 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:51:51.0524 2356 SSDPSRV - ok
11:51:51.0602 2356 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:51:51.0665 2356 SstpSvc - ok
11:51:51.0727 2356 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:51:51.0774 2356 stisvc - ok
11:51:51.0805 2356 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:51:51.0821 2356 swenum - ok
11:51:51.0868 2356 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:51:51.0899 2356 swprv - ok
11:51:51.0930 2356 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:51:51.0946 2356 Symc8xx - ok
11:51:51.0962 2356 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:51:51.0993 2356 Sym_hi - ok
11:51:52.0008 2356 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:51:52.0024 2356 Sym_u3 - ok
11:51:52.0055 2356 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:51:52.0118 2356 SysMain - ok
11:51:52.0149 2356 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:51:52.0196 2356 TabletInputService - ok
11:51:52.0227 2356 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:51:52.0258 2356 TapiSrv - ok
11:51:52.0290 2356 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:51:52.0336 2356 TBS - ok
11:51:52.0446 2356 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:51:52.0555 2356 Tcpip - ok
11:51:52.0618 2356 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:51:52.0665 2356 Tcpip6 - ok
11:51:52.0774 2356 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:51:52.0868 2356 tcpipreg - ok
11:51:52.0899 2356 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:51:52.0930 2356 TDPIPE - ok
11:51:52.0993 2356 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:51:53.0071 2356 TDTCP - ok
11:51:53.0118 2356 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:51:53.0149 2356 tdx - ok
11:51:53.0289 2356 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
11:51:53.0446 2356 TeamViewer7 - ok
11:51:53.0493 2356 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:51:53.0524 2356 TermDD - ok
11:51:53.0664 2356 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:51:53.0758 2356 TermService - ok
11:51:53.0789 2356 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:51:53.0821 2356 Themes - ok
11:51:53.0836 2356 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:51:53.0883 2356 THREADORDER - ok
11:51:53.0914 2356 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:51:53.0961 2356 TrkWks - ok
11:51:54.0008 2356 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:51:54.0039 2356 TrustedInstaller - ok
11:51:54.0071 2356 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:51:54.0118 2356 tssecsrv - ok
11:51:54.0164 2356 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:51:54.0196 2356 tunmp - ok
11:51:54.0243 2356 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:51:54.0258 2356 tunnel - ok
11:51:54.0289 2356 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:51:54.0305 2356 uagp35 - ok
11:51:54.0336 2356 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:51:54.0368 2356 udfs - ok
11:51:54.0430 2356 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:51:54.0477 2356 UI0Detect - ok
11:51:54.0508 2356 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:51:54.0539 2356 uliagpkx - ok
11:51:54.0602 2356 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:51:54.0664 2356 uliahci - ok
11:51:54.0680 2356 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:51:54.0711 2356 UlSata - ok
11:51:54.0727 2356 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:51:54.0758 2356 ulsata2 - ok
11:51:54.0789 2356 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:51:54.0852 2356 umbus - ok
11:51:54.0883 2356 [ 8A66360F38F81E960E2367B428CBD5D9 ] UmRdpService C:\Windows\System32\umrdp.dll
11:51:54.0930 2356 UmRdpService - ok
11:51:54.0961 2356 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:51:55.0008 2356 upnphost - ok
11:51:55.0039 2356 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:51:55.0086 2356 usbccgp - ok
11:51:55.0102 2356 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:51:55.0164 2356 usbcir - ok
11:51:55.0211 2356 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:51:55.0258 2356 usbehci - ok
11:51:55.0305 2356 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:51:55.0352 2356 usbhub - ok
11:51:55.0367 2356 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:51:55.0430 2356 usbohci - ok
11:51:55.0446 2356 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:51:55.0492 2356 usbprint - ok
11:51:55.0539 2356 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:51:55.0571 2356 usbscan - ok
11:51:55.0602 2356 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:51:55.0664 2356 USBSTOR - ok
11:51:55.0711 2356 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:51:55.0758 2356 usbuhci - ok
11:51:55.0789 2356 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:51:55.0852 2356 UxSms - ok
11:51:55.0899 2356 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:51:55.0945 2356 vds - ok
11:51:55.0961 2356 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:51:56.0039 2356 vga - ok
11:51:56.0070 2356 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:51:56.0117 2356 VgaSave - ok
11:51:56.0133 2356 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:51:56.0164 2356 viaagp - ok
11:51:56.0180 2356 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:51:56.0242 2356 ViaC7 - ok
11:51:56.0258 2356 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
11:51:56.0274 2356 viaide - ok
11:51:56.0289 2356 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:51:56.0320 2356 volmgr - ok
11:51:56.0352 2356 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:51:56.0383 2356 volmgrx - ok
11:51:56.0414 2356 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:51:56.0445 2356 volsnap - ok
11:51:56.0477 2356 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:51:56.0492 2356 vsmraid - ok
11:51:56.0555 2356 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:51:56.0664 2356 VSS - ok
11:51:56.0758 2356 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:51:56.0805 2356 W32Time - ok
11:51:56.0836 2356 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:51:56.0914 2356 WacomPen - ok
11:51:56.0945 2356 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:51:56.0992 2356 Wanarp - ok
11:51:57.0008 2356 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:51:57.0039 2356 Wanarpv6 - ok
11:51:57.0086 2356 [ 20B23332885DFB93FE0185362EE811E9 ] wbengine C:\Windows\system32\wbengine.exe
11:51:57.0164 2356 wbengine - ok
11:51:57.0258 2356 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:51:57.0305 2356 wcncsvc - ok
11:51:57.0336 2356 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:51:57.0414 2356 WcsPlugInService - ok
11:51:57.0430 2356 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
11:51:57.0445 2356 Wd - ok
11:51:57.0523 2356 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:51:57.0586 2356 Wdf01000 - ok
11:51:57.0648 2356 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:51:57.0711 2356 WdiServiceHost - ok
11:51:57.0711 2356 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:51:57.0758 2356 WdiSystemHost - ok
11:51:57.0773 2356 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:51:57.0836 2356 WebClient - ok
11:51:57.0852 2356 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:51:57.0930 2356 Wecsvc - ok
11:51:57.0961 2356 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:51:58.0023 2356 wercplsupport - ok
11:51:58.0055 2356 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:51:58.0117 2356 WerSvc - ok
11:51:58.0195 2356 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:51:58.0226 2356 WinDefend - ok
11:51:58.0226 2356 WinHttpAutoProxySvc - ok
11:51:58.0273 2356 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:51:58.0336 2356 Winmgmt - ok
11:51:58.0398 2356 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:51:58.0476 2356 WinRM - ok
11:51:58.0555 2356 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:51:58.0617 2356 Wlansvc - ok
11:51:58.0648 2356 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:51:58.0742 2356 WmiAcpi - ok
11:51:58.0773 2356 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:51:58.0820 2356 wmiApSrv - ok
11:51:58.0851 2356 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:51:58.0914 2356 WPCSvc - ok
11:51:58.0945 2356 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:51:59.0008 2356 WPDBusEnum - ok
11:51:59.0117 2356 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:51:59.0164 2356 WPFFontCache_v0400 - ok
11:51:59.0211 2356 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:51:59.0258 2356 ws2ifsl - ok
11:51:59.0320 2356 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
11:51:59.0383 2356 wscsvc - ok
11:51:59.0383 2356 WSearch - ok
11:51:59.0601 2356 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:51:59.0789 2356 wuauserv - ok
11:51:59.0836 2356 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:51:59.0867 2356 WUDFRd - ok
11:51:59.0898 2356 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:51:59.0945 2356 wudfsvc - ok
11:51:59.0961 2356 ================ Scan global ===============================
11:51:59.0992 2356 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:52:00.0039 2356 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:52:00.0054 2356 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:52:00.0101 2356 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:52:00.0117 2356 [Global] - ok
11:52:00.0117 2356 ================ Scan MBR ==================================
11:52:00.0117 2356 [ D1AD4C53EADD115593E05FA56D6B9DEA ] \Device\Harddisk0\DR0
11:52:00.0695 2356 \Device\Harddisk0\DR0 - ok
11:52:00.0695 2356 ================ Scan VBR ==================================
11:52:00.0695 2356 [ 4F2C6BF20429722FBD54097372C7CF6F ] \Device\Harddisk0\DR0\Partition1
11:52:00.0695 2356 \Device\Harddisk0\DR0\Partition1 - ok
11:52:00.0726 2356 [ A2F733787B70452F91B17CEA7A25B211 ] \Device\Harddisk0\DR0\Partition2
11:52:00.0742 2356 \Device\Harddisk0\DR0\Partition2 - ok
11:52:00.0742 2356 ============================================================
11:52:00.0742 2356 Scan finished
11:52:00.0742 2356 ============================================================
11:52:00.0820 2184 Detected object count: 7
11:52:00.0820 2184 Actual detected object count: 7
11:52:27.0099 2184 AVerRemote ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0099 2184 AVerRemote ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:52:27.0099 2184 AVerScheduleService ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0099 2184 AVerScheduleService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:52:27.0099 2184 ENTECH ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0099 2184 ENTECH ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:52:27.0099 2184 HP LaserJet Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0099 2184 HP LaserJet Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:52:27.0114 2184 SbieDrv ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0114 2184 SbieDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:52:27.0114 2184 SbieSvc ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0114 2184 SbieSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:52:27.0114 2184 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
11:52:27.0114 2184 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip

Udelejte jeste test s GMER http://forum.viry.cz/viewtopic.php?f=29&t=62878 a dejte sem oba jeho logy.