Log z TDSSKiller prikladám.
MBAR - ten som skúšal včera pred založením vlákna. Skončil modrou smrťou. Mám ho znova skúsiť?
(Podobne mi padá MBAM dvojková verzia, Staršia verzia 1.75 mi funguje)
------------------
19:58:00.0462 0x0460 TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
19:58:15.0672 0x0460 ============================================================
19:58:15.0672 0x0460 Current date / time: 2014/11/26 19:58:15.0672
19:58:15.0672 0x0460 SystemInfo:
19:58:15.0672 0x0460
19:58:15.0672 0x0460 OS Version: 6.1.7601 ServicePack: 1.0
19:58:15.0672 0x0460 Product type: Workstation
19:58:15.0672 0x0460 ComputerName: JANKA-PC
19:58:15.0672 0x0460 UserName: janka
19:58:15.0672 0x0460 Windows directory: C:\Windows
19:58:15.0672 0x0460 System windows directory: C:\Windows
19:58:15.0672 0x0460 Processor architecture: Intel x86
19:58:15.0672 0x0460 Number of processors: 2
19:58:15.0672 0x0460 Page size: 0x1000
19:58:15.0672 0x0460 Boot type: Normal boot
19:58:15.0672 0x0460 ============================================================
19:58:16.0047 0x0460 KLMD registered as C:\Windows\system32\drivers\60900158.sys
19:58:16.0640 0x0460 System UUID: {0836F527-EA44-757F-03FF-61C2FE955DDB}
19:58:17.0529 0x0460 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:58:17.0560 0x0460 Drive \Device\Harddisk2\DR2 - Size: 0x15D50D00000 ( 1397.26 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:58:17.0560 0x0460 ============================================================
19:58:17.0560 0x0460 \Device\Harddisk1\DR1:
19:58:17.0560 0x0460 MBR partitions:
19:58:17.0560 0x0460 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:58:17.0560 0x0460 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x74FD800
19:58:17.0560 0x0460 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x75304E0, BlocksNum 0xB4E4720
19:58:17.0560 0x0460 \Device\Harddisk2\DR2:
19:58:17.0560 0x0460 MBR partitions:
19:58:17.0560 0x0460 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA86000
19:58:17.0560 0x0460 ============================================================
19:58:17.0560 0x0460 C: <-> \Device\Harddisk1\DR1\Partition2
19:58:17.0576 0x0460 D: <-> \Device\Harddisk1\DR1\Partition3
19:58:17.0607 0x0460 F: <-> \Device\Harddisk2\DR2\Partition1
19:58:17.0607 0x0460 ============================================================
19:58:17.0607 0x0460 Initialize success
19:58:17.0607 0x0460 ============================================================
20:02:33.0135 0x0278 ============================================================
20:02:33.0135 0x0278 Scan started
20:02:33.0135 0x0278 Mode: Manual; SigCheck; TDLFS;
20:02:33.0135 0x0278 ============================================================
20:02:33.0135 0x0278 KSN ping started
20:02:46.0972 0x0278 KSN ping finished: true
20:02:47.0752 0x0278 ================ Scan system memory ========================
20:02:47.0752 0x0278 System memory - ok
20:02:47.0752 0x0278 ================ Scan services =============================
20:02:47.0830 0x0278 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:02:47.0986 0x0278 1394ohci - ok
20:02:48.0018 0x0278 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:02:48.0080 0x0278 ACPI - ok
20:02:48.0080 0x0278 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:02:48.0158 0x0278 AcpiPmi - ok
20:02:48.0158 0x0278 [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:02:48.0220 0x0278 AdobeARMservice - ok
20:02:48.0283 0x0278 [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:02:48.0314 0x0278 AdobeFlashPlayerUpdateSvc - ok
20:02:48.0361 0x0278 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:02:48.0454 0x0278 adp94xx - ok
20:02:48.0486 0x0278 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:02:48.0548 0x0278 adpahci - ok
20:02:48.0564 0x0278 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:02:48.0595 0x0278 adpu320 - ok
20:02:48.0626 0x0278 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:02:48.0688 0x0278 AeLookupSvc - ok
20:02:48.0720 0x0278 [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD C:\Windows\system32\drivers\afd.sys
20:02:48.0813 0x0278 AFD - ok
20:02:48.0844 0x0278 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
20:02:48.0907 0x0278 agp440 - ok
20:02:48.0922 0x0278 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:02:49.0000 0x0278 aic78xx - ok
20:02:49.0016 0x0278 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
20:02:49.0110 0x0278 ALG - ok
20:02:49.0156 0x0278 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
20:02:49.0203 0x0278 aliide - ok
20:02:49.0234 0x0278 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
20:02:49.0266 0x0278 amdagp - ok
20:02:49.0281 0x0278 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
20:02:49.0344 0x0278 amdide - ok
20:02:49.0359 0x0278 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:02:49.0437 0x0278 AmdK8 - ok
20:02:49.0453 0x0278 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:02:49.0515 0x0278 AmdPPM - ok
20:02:49.0531 0x0278 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:02:49.0578 0x0278 amdsata - ok
20:02:49.0609 0x0278 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:02:49.0671 0x0278 amdsbs - ok
20:02:49.0702 0x0278 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:02:49.0749 0x0278 amdxata - ok
20:02:49.0780 0x0278 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
20:02:49.0858 0x0278 AppID - ok
20:02:49.0874 0x0278 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:02:49.0952 0x0278 AppIDSvc - ok
20:02:49.0968 0x0278 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
20:02:50.0030 0x0278 Appinfo - ok
20:02:50.0046 0x0278 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
20:02:50.0108 0x0278 AppMgmt - ok
20:02:50.0124 0x0278 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:02:50.0186 0x0278 arc - ok
20:02:50.0217 0x0278 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:02:50.0280 0x0278 arcsas - ok
20:02:50.0311 0x0278 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
20:02:50.0373 0x0278 aspnet_state - ok
20:02:50.0373 0x0278 [ 9D23DE88C3B18BA87CD4587177CA6CEA, 46DBB867FC73E30320852F744F38B66906DD5B96C4EBB03F504CF33E867A8470 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
20:02:50.0420 0x0278 aswHwid - ok
20:02:50.0420 0x0278 [ 73A9014A9C4B19AA093DA05ED4246E27, F03C8433EB00229490BCD293CC97EF72452E156212D56C24BBA95C8E1B207D1A ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:02:50.0451 0x0278 aswMonFlt - ok
20:02:50.0467 0x0278 [ DE8D7912469E4BC5FAED78D9D1076888, 8545139B7A7D0B672A0225686BFB03EBEA6E7202D93B772CB2F74CA9E4D7F81D ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
20:02:50.0514 0x0278 aswRdr - ok
20:02:50.0529 0x0278 [ 6544697080421E62E97AAFBD0A8AA391, BB3F492BF828A147B82FDD1FC9EB9867D96DE0481554A59745D41C6BAB551700 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
20:02:50.0576 0x0278 aswRvrt - ok
20:02:50.0623 0x0278 [ E73CBE3420ECFA8FF7D0467E170E335D, B994342C92AE9167908B8CA3D03DC278E919C7073512461AFFD4C25E8D2D8D66 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
20:02:50.0716 0x0278 aswSnx - ok
20:02:50.0748 0x0278 [ 1624D5AD126B8AFE2B2E85E5B8364EB6, AB97A74C1CA9921F7753D98516D7E11750D5D3ACD143C83273B0B295625440A0 ] aswSP C:\Windows\system32\drivers\aswSP.sys
20:02:50.0794 0x0278 aswSP - ok
20:02:50.0810 0x0278 [ 401E663D9CBAFB580FF37A1A44AC84D9, EFF1DA23A1F316B0FA03467F6C04B83EA39D8484A1A7EDF5FCFF20F1CF8DC2E2 ] aswStm C:\Windows\system32\drivers\aswStm.sys
20:02:50.0904 0x0278 aswStm - ok
20:02:50.0935 0x0278 [ 0EFBC2962B156E8AC267F96D4D93EF06, 8A69672CE8B68A0A683D583287473BFAB7CF8B9771C22E398607CF2A151C7124 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
20:02:50.0997 0x0278 aswVmm - ok
20:02:51.0013 0x0278 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:02:51.0091 0x0278 AsyncMac - ok
20:02:51.0106 0x0278 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
20:02:51.0138 0x0278 atapi - ok
20:02:51.0169 0x0278 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:02:51.0278 0x0278 AudioEndpointBuilder - ok
20:02:51.0294 0x0278 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:02:51.0356 0x0278 Audiosrv - ok
20:02:51.0372 0x0278 [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:02:51.0418 0x0278 avast! Antivirus - ok
20:02:51.0637 0x0278 [ 496208E0276BFAA171696D7EB38CCC01, B1E0914A2421DA91F9E6442B8BCDD6650D45801A091BC17531312E88E6A46369 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
20:02:51.0902 0x0278 AvastVBoxSvc - ok
20:02:52.0011 0x0278 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:02:52.0089 0x0278 AxInstSV - ok
20:02:52.0136 0x0278 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:02:52.0261 0x0278 b06bdrv - ok
20:02:52.0292 0x0278 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:02:52.0401 0x0278 b57nd60x - ok
20:02:52.0432 0x0278 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
20:02:52.0510 0x0278 BDESVC - ok
20:02:52.0526 0x0278 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
20:02:52.0620 0x0278 Beep - ok
20:02:52.0651 0x0278 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
20:02:52.0744 0x0278 BFE - ok
20:02:52.0791 0x0278 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\system32\qmgr.dll
20:02:52.0885 0x0278 BITS - ok
20:02:52.0900 0x0278 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:02:52.0947 0x0278 blbdrive - ok
20:02:52.0947 0x0278 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:02:53.0025 0x0278 bowser - ok
20:02:53.0056 0x0278 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:02:53.0134 0x0278 BrFiltLo - ok
20:02:53.0150 0x0278 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:02:53.0212 0x0278 BrFiltUp - ok
20:02:53.0228 0x0278 [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
20:02:53.0353 0x0278 BridgeMP - ok
20:02:53.0368 0x0278 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
20:02:53.0431 0x0278 Browser - ok
20:02:53.0478 0x0278 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:02:53.0587 0x0278 Brserid - ok
20:02:53.0618 0x0278 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:02:53.0680 0x0278 BrSerWdm - ok
20:02:53.0696 0x0278 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:02:53.0790 0x0278 BrUsbMdm - ok
20:02:53.0821 0x0278 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:02:53.0868 0x0278 BrUsbSer - ok
20:02:53.0883 0x0d50 Object required for P2P: [ D51145F6B0CE987850F13A61DAD5E531 ] AdobeFlashPlayerUpdateSvc
20:02:53.0899 0x0278 [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:02:54.0024 0x0278 BthEnum - ok
20:02:54.0039 0x0278 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:02:54.0117 0x0278 BTHMODEM - ok
20:02:54.0133 0x0278 [ AD1872E5829E8A2C3B5B4B641C3EAB0E, 8C2DBCAC08DDB41E2B44E257C55FA2D0272959B308EFF9EAF5FF9AE1E4A0AA39 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:02:54.0211 0x0278 BthPan - ok
20:02:54.0273 0x0278 [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:02:54.0382 0x0278 BTHPORT - ok
20:02:54.0398 0x0278 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
20:02:54.0492 0x0278 bthserv - ok
20:02:54.0507 0x0278 [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:02:54.0554 0x0278 BTHUSB - ok
20:02:54.0570 0x0278 [ D57D29132EFE13A83133D9BD449E0CF1, 8C12FC2404A53EFA028B3423A96F2B5ADDE1640A964AFAF2C460E73338551FFB ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:02:54.0616 0x0278 btwaudio - ok
20:02:54.0632 0x0278 [ D282C14A69357D0E1BAFAECC2CA98C3A, 1F576218591B87920641F7E2FA349E477032C4C38DF5A6584738DC0280E203A9 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
20:02:54.0663 0x0278 btwavdt - ok
20:02:54.0710 0x0278 [ F7434401AE320BB97903A3C1865242FB, B401B13133A7D7B2861D81F800F6DEFF361320C994C704B6688A1E6A61439E8D ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:02:54.0788 0x0278 btwdins - ok
20:02:54.0804 0x0278 [ AAFD7CB76BA61FBB08E302DA208C974A, 1B342095E373ECCA1775B30E92CD337BECEB4BA9F821132C33507A646E6A341C ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:02:54.0835 0x0278 btwl2cap - ok
20:02:54.0882 0x0278 [ 02EB4D2B05967DF2D32F29C84AB1FB17, 95B7901F7BCE41DF53309158AC12888BA1F82FF2E576BF3ED0E67EA3CFAB1288 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:02:54.0913 0x0278 btwrchid - ok
20:02:54.0928 0x0278 [ 7953C40D24BFFE71EC7637EDF9154C2C, 6F19FDBC82D7CD207DD3BA0C1D09237955321DC7A2FF5EBB2FAFE08109B9566F ] c2wts C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe
20:02:54.0975 0x0278 c2wts - ok
20:02:54.0975 0x0278 catchme - ok
20:02:54.0991 0x0278 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:02:55.0069 0x0278 cdfs - ok
20:02:55.0084 0x0278 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:02:55.0147 0x0278 cdrom - ok
20:02:55.0162 0x0278 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
20:02:55.0240 0x0278 CertPropSvc - ok
20:02:55.0240 0x0278 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:02:55.0318 0x0278 circlass - ok
20:02:55.0334 0x0278 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
20:02:55.0381 0x0278 CLFS - ok
20:02:55.0428 0x0278 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:02:55.0490 0x0278 clr_optimization_v2.0.50727_32 - ok
20:02:55.0537 0x0278 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:02:55.0568 0x0278 clr_optimization_v4.0.30319_32 - ok
20:02:55.0584 0x0278 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:02:55.0646 0x0278 CmBatt - ok
20:02:55.0646 0x0278 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:02:55.0677 0x0278 cmdide - ok
20:02:55.0740 0x0278 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
20:02:55.0833 0x0278 CNG - ok
20:02:55.0833 0x0278 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:02:55.0880 0x0278 Compbatt - ok
20:02:55.0880 0x0278 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:02:55.0958 0x0278 CompositeBus - ok
20:02:55.0958 0x0278 COMSysApp - ok
20:02:55.0989 0x0278 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:02:56.0020 0x0278 crcdisk - ok
20:02:56.0036 0x0278 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:02:56.0114 0x0278 CryptSvc - ok
20:02:56.0130 0x0278 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
20:02:56.0223 0x0278 CSC - ok
20:02:56.0270 0x0278 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
20:02:56.0364 0x0278 CscService - ok
20:02:56.0395 0x0278 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
20:02:56.0488 0x0278 DcomLaunch - ok
20:02:56.0520 0x0278 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
20:02:56.0613 0x0278 defragsvc - ok
20:02:56.0629 0x0278 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:02:56.0707 0x0278 DfsC - ok
20:02:56.0738 0x0278 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:02:56.0769 0x0d50 Object send P2P result: true
20:02:56.0832 0x0278 Dhcp - ok
20:02:56.0832 0x0278 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
20:02:56.0910 0x0278 discache - ok
20:02:56.0925 0x0278 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:02:56.0956 0x0278 Disk - ok
20:02:56.0972 0x0278 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:02:57.0050 0x0278 Dnscache - ok
20:02:57.0081 0x0278 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
20:02:57.0144 0x0278 dot3svc - ok
20:02:57.0175 0x0278 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
20:02:57.0268 0x0278 DPS - ok
20:02:57.0315 0x0278 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:02:57.0362 0x0278 drmkaud - ok
20:02:57.0409 0x0278 [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:02:57.0487 0x0278 DXGKrnl - ok
20:02:57.0487 0x0278 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
20:02:57.0658 0x0278 EapHost - ok
20:02:57.0814 0x0278 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:02:58.0126 0x0278 ebdrv - ok
20:02:58.0142 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS C:\Windows\System32\lsass.exe
20:02:58.0220 0x0278 EFS - ok
20:02:58.0267 0x0278 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:02:58.0392 0x0278 ehRecvr - ok
20:02:58.0407 0x0278 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
20:02:58.0470 0x0278 ehSched - ok
20:02:58.0501 0x0278 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:02:58.0548 0x0278 elxstor - ok
20:02:58.0563 0x0278 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:02:58.0626 0x0278 ErrDev - ok
20:02:58.0657 0x0278 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
20:02:58.0766 0x0278 EventSystem - ok
20:02:58.0782 0x0278 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
20:02:58.0860 0x0278 exfat - ok
20:02:58.0875 0x0278 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:02:58.0953 0x0278 fastfat - ok
20:02:58.0984 0x0278 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
20:02:59.0094 0x0278 Fax - ok
20:02:59.0109 0x0278 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:02:59.0187 0x0278 fdc - ok
20:02:59.0187 0x0278 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
20:02:59.0265 0x0278 fdPHost - ok
20:02:59.0281 0x0278 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
20:02:59.0374 0x0278 FDResPub - ok
20:02:59.0374 0x0278 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:02:59.0421 0x0278 FileInfo - ok
20:02:59.0437 0x0278 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:02:59.0499 0x0278 Filetrace - ok
20:02:59.0530 0x0278 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:02:59.0593 0x0278 flpydisk - ok
20:02:59.0593 0x0278 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:02:59.0640 0x0278 FltMgr - ok
20:02:59.0718 0x0278 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
20:02:59.0842 0x0278 FontCache - ok
20:02:59.0905 0x0278 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:02:59.0967 0x0278 FontCache3.0.0.0 - ok
20:02:59.0983 0x0278 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:03:00.0014 0x0278 FsDepends - ok
20:03:00.0030 0x0278 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:03:00.0045 0x0278 Fs_Rec - ok
20:03:00.0061 0x0278 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:03:00.0108 0x0278 fvevol - ok
20:03:00.0154 0x0278 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:03:00.0186 0x0278 gagp30kx - ok
20:03:00.0248 0x0278 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
20:03:00.0404 0x0278 gpsvc - ok
20:03:00.0435 0x0278 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:03:00.0482 0x0278 hcw85cir - ok
20:03:00.0513 0x0278 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:03:00.0607 0x0278 HdAudAddService - ok
20:03:00.0607 0x0278 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:03:00.0685 0x0278 HDAudBus - ok
20:03:00.0700 0x0278 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:03:00.0778 0x0278 HidBatt - ok
20:03:00.0794 0x0278 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:03:00.0856 0x0278 HidBth - ok
20:03:00.0872 0x0278 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:03:00.0919 0x0278 HidIr - ok
20:03:00.0919 0x0278 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\System32\hidserv.dll
20:03:00.0997 0x0278 hidserv - ok
20:03:01.0012 0x0278 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:03:01.0075 0x0278 HidUsb - ok
20:03:01.0090 0x0278 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
20:03:01.0184 0x0278 hkmsvc - ok
20:03:01.0200 0x0278 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:03:01.0278 0x0278 HomeGroupListener - ok
20:03:01.0293 0x0278 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:03:01.0387 0x0278 HomeGroupProvider - ok
20:03:01.0402 0x0278 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:03:01.0434 0x0278 HpSAMD - ok
20:03:01.0465 0x0278 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:03:01.0574 0x0278 HTTP - ok
20:03:01.0621 0x0278 [ BD01CB77FBEFF75089915E361457F7CB, D1B7268F51BC0C4804BD5EA5A4D6A02DEBD1C1DC680B423C6DE8F645E6102E85 ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
20:03:01.0699 0x0278 hwdatacard - ok
20:03:01.0714 0x0278 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:03:01.0746 0x0278 hwpolicy - ok
20:03:01.0761 0x0278 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:03:01.0792 0x0278 i8042prt - ok
20:03:01.0824 0x0278 [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
20:03:01.0886 0x0278 IAANTMON - ok
20:03:01.0902 0x0278 [ 3DB9F6F69B8BB99D241B15C7B52E3A3D, 0DE90C073DB032EA78AE6C15A3E275643D5409FDB643569949651191A8844183 ] iaNvStor C:\Windows\system32\DRIVERS\iaNvStor.sys
20:03:01.0933 0x0278 iaNvStor - ok
20:03:01.0964 0x0278 [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:03:01.0995 0x0278 iaStor - ok
20:03:02.0026 0x0278 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:03:02.0089 0x0278 iaStorV - ok
20:03:02.0182 0x0278 [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:03:02.0292 0x0278 idsvc - ok
20:03:02.0292 0x0278 IEEtwCollectorService - ok
20:03:02.0307 0x0278 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:03:02.0338 0x0278 iirsp - ok
20:03:02.0416 0x0278 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
20:03:02.0541 0x0278 IKEEXT - ok
20:03:02.0697 0x0278 [ DA7DCB6565E68E3F95F043C4B01B8960, 6022ABDEEE276E8E66CE039DAB2FD818BBC3847D5DA4FB50D840AF386193109A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
20:03:02.0931 0x0278 IntcAzAudAddService - ok
20:03:02.0978 0x0278 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
20:03:03.0009 0x0278 intelide - ok
20:03:03.0009 0x0278 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:03:03.0072 0x0278 intelppm - ok
20:03:03.0087 0x0278 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:03:03.0165 0x0278 IPBusEnum - ok
20:03:03.0196 0x0278 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:03:03.0259 0x0278 IpFilterDriver - ok
20:03:03.0290 0x0278 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:03:03.0368 0x0278 iphlpsvc - ok
20:03:03.0399 0x0278 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:03:03.0462 0x0278 IPMIDRV - ok
20:03:03.0493 0x0278 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:03:03.0586 0x0278 IPNAT - ok
20:03:03.0586 0x0278 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:03:03.0649 0x0278 IRENUM - ok
20:03:03.0664 0x0278 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:03:03.0680 0x0278 isapnp - ok
20:03:03.0727 0x0278 [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:03:03.0774 0x0278 iScsiPrt - ok
20:03:03.0789 0x0278 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:03:03.0820 0x0278 kbdclass - ok
20:03:03.0820 0x0278 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:03:03.0883 0x0278 kbdhid - ok
20:03:03.0883 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso C:\Windows\system32\lsass.exe
20:03:03.0914 0x0278 KeyIso - ok
20:03:03.0961 0x0278 [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:03:03.0992 0x0278 KSecDD - ok
20:03:04.0023 0x0278 [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:03:04.0086 0x0278 KSecPkg - ok
20:03:04.0117 0x0278 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
20:03:04.0210 0x0278 KtmRm - ok
20:03:04.0226 0x0278 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\System32\srvsvc.dll
20:03:04.0335 0x0278 LanmanServer - ok
20:03:04.0351 0x0278 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:03:04.0429 0x0278 LanmanWorkstation - ok
20:03:04.0444 0x0278 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:03:04.0522 0x0278 lltdio - ok
20:03:04.0538 0x0278 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:03:04.0600 0x0278 lltdsvc - ok
20:03:04.0616 0x0278 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:03:04.0694 0x0278 lmhosts - ok
20:03:04.0710 0x0278 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:03:04.0741 0x0278 LSI_FC - ok
20:03:04.0756 0x0278 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:03:04.0803 0x0278 LSI_SAS - ok
20:03:04.0819 0x0278 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:03:04.0850 0x0278 LSI_SAS2 - ok
20:03:04.0866 0x0278 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:03:04.0912 0x0278 LSI_SCSI - ok
20:03:04.0928 0x0278 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
20:03:05.0006 0x0278 luafv - ok
20:03:05.0022 0x0278 [ CD85463E3AB753443D77B4A04638E418, 9EB4142342BC43587BE33638A082B0375B775F1AD35398E420741C5F1A9C7049 ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
20:03:05.0053 0x0278 mbamchameleon - ok
20:03:05.0053 0x0278 [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:03:05.0100 0x0278 MBAMProtector - ok
20:03:05.0131 0x0278 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:03:05.0178 0x0278 MBAMScheduler - ok
20:03:05.0224 0x0278 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:03:05.0287 0x0278 MBAMService - ok
20:03:05.0302 0x0278 [ 5CA4A22D15763AF10FD20B4CBCB176ED, 33E6F001FCDD522458437AA3084A80FDC5980E0E9C436F1BD8195010F8CAD613 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
20:03:05.0349 0x0278 MBAMSwissArmy - ok
20:03:05.0380 0x0278 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:03:05.0458 0x0278 Mcx2Svc - ok
20:03:05.0474 0x0278 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:03:05.0505 0x0278 megasas - ok
20:03:05.0536 0x0278 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:03:05.0583 0x0278 MegaSR - ok
20:03:05.0583 0x0278 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
20:03:05.0661 0x0278 MMCSS - ok
20:03:05.0677 0x0278 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
20:03:05.0755 0x0278 Modem - ok
20:03:05.0755 0x0278 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:03:05.0802 0x0278 monitor - ok
20:03:05.0817 0x0278 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:03:05.0848 0x0278 mouclass - ok
20:03:05.0864 0x0278 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:03:05.0926 0x0278 mouhid - ok
20:03:05.0926 0x0278 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:03:05.0973 0x0278 mountmgr - ok
20:03:06.0004 0x0278 [ 7AC68E2EC32C182777B9675EC26ADFEF, 723E6EE9703EC696ADF707DBD7A87D2CF36A0D64151214A148A39D3807B20971 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:03:06.0067 0x0278 MozillaMaintenance - ok
20:03:06.0098 0x0278 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
20:03:06.0160 0x0278 mpio - ok
20:03:06.0176 0x0278 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:03:06.0238 0x0278 mpsdrv - ok
20:03:06.0301 0x0278 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:03:06.0394 0x0278 MpsSvc - ok
20:03:06.0410 0x0278 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:03:06.0457 0x0278 MRxDAV - ok
20:03:06.0472 0x0278 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:03:06.0535 0x0278 mrxsmb - ok
20:03:06.0550 0x0278 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:03:06.0644 0x0278 mrxsmb10 - ok
20:03:06.0644 0x0278 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:03:06.0706 0x0278 mrxsmb20 - ok
20:03:06.0722 0x0278 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
20:03:06.0738 0x0278 msahci - ok
20:03:06.0769 0x0278 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:03:06.0800 0x0278 msdsm - ok
20:03:06.0831 0x0278 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
20:03:06.0894 0x0278 MSDTC - ok
20:03:06.0909 0x0278 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:03:06.0972 0x0278 Msfs - ok
20:03:06.0987 0x0278 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:03:07.0050 0x0278 mshidkmdf - ok
20:03:07.0050 0x0278 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:03:07.0081 0x0278 msisadrv - ok
20:03:07.0128 0x0278 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:03:07.0206 0x0278 MSiSCSI - ok
20:03:07.0206 0x0278 msiserver - ok
20:03:07.0221 0x0278 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:03:07.0299 0x0278 MSKSSRV - ok
20:03:07.0299 0x0278 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:03:07.0408 0x0278 MSPCLOCK - ok
20:03:07.0424 0x0278 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:03:07.0502 0x0278 MSPQM - ok
20:03:07.0518 0x0278 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:03:07.0564 0x0278 MsRPC - ok
20:03:07.0564 0x0278 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:03:07.0611 0x0278 mssmbios - ok
20:03:07.0611 0x0278 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:03:07.0674 0x0278 MSTEE - ok
20:03:07.0689 0x0278 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:03:07.0752 0x0278 MTConfig - ok
20:03:07.0752 0x0278 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
20:03:07.0783 0x0278 Mup - ok
20:03:07.0814 0x0278 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
20:03:07.0908 0x0278 napagent - ok
20:03:07.0939 0x0278 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:03:08.0001 0x0278 NativeWifiP - ok
20:03:08.0033 0x0278 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:03:08.0189 0x0278 NDIS - ok
20:03:08.0220 0x0278 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:03:08.0298 0x0278 NdisCap - ok
20:03:08.0298 0x0278 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:03:08.0360 0x0278 NdisTapi - ok
20:03:08.0376 0x0278 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:03:08.0454 0x0278 Ndisuio - ok
20:03:08.0469 0x0278 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:03:08.0579 0x0278 NdisWan - ok
20:03:08.0579 0x0278 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:03:08.0657 0x0278 NDProxy - ok
20:03:08.0672 0x0278 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:03:08.0719 0x0278 NetBIOS - ok
20:03:08.0735 0x0278 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:03:08.0813 0x0278 NetBT - ok
20:03:08.0828 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon C:\Windows\system32\lsass.exe
20:03:08.0859 0x0278 Netlogon - ok
20:03:08.0875 0x0278 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
20:03:08.0969 0x0278 Netman - ok
20:03:08.0984 0x0278 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:03:09.0047 0x0278 NetMsmqActivator - ok
20:03:09.0047 0x0278 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:03:09.0078 0x0278 NetPipeActivator - ok
20:03:09.0109 0x0278 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
20:03:09.0187 0x0278 netprofm - ok
20:03:09.0203 0x0278 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:03:09.0234 0x0278 NetTcpActivator - ok
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosim o pomoc - system "odkrajuje" týždenne 10GB z disku C:
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
20:03:09.0249 0x0278 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
20:03:09.0281 0x0278 NetTcpPortSharing - ok
20:03:09.0499 0x0278 [ 58218EC6B61B1169CF54AAB0D00F5FE2, B76ABB2AD78CE68D30F0F08563B0593D658298CDCF1B138B6E9FB0D64CBCC3C2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
20:03:09.0905 0x0278 netw5v32 - ok
20:03:09.0936 0x0278 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:03:09.0983 0x0278 nfrd960 - ok
20:03:09.0998 0x0278 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:03:10.0076 0x0278 NlaSvc - ok
20:03:10.0092 0x0278 [ B1EF4686961986DFFB7FE8F18E6FCB5B, 562F144DAA8C2D6E4D55C7ABEF1DB52FC67F1A09E03CD700E27DFC3A4920E271 ] nlsX86cc C:\Windows\system32\nlssrv32.exe
20:03:10.0154 0x0278 nlsX86cc - detected UnsignedFile.Multi.Generic ( 1 )
20:03:12.0869 0x0278 Detect skipped due to KSN trusted
20:03:12.0869 0x0278 nlsX86cc - ok
20:03:12.0884 0x0278 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:03:12.0978 0x0278 Npfs - ok
20:03:12.0993 0x0278 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
20:03:13.0071 0x0278 nsi - ok
20:03:13.0087 0x0278 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:03:13.0149 0x0278 nsiproxy - ok
20:03:13.0227 0x0278 [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:03:13.0337 0x0278 Ntfs - ok
20:03:13.0337 0x0278 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
20:03:13.0415 0x0278 Null - ok
20:03:13.0415 0x0278 [ 7F5D69A031BE0E7BDFB8126E1A212417, E0ECC8D47D9385FC97B962A72F435A94F9AAF88694E84EE8AF7F3D0EBD2C15DC ] nuvotoncir C:\Windows\system32\DRIVERS\nuvotoncir.sys
20:03:13.0493 0x0278 nuvotoncir - ok
20:03:13.0992 0x0278 [ 646D250E731EC2AD624DCC944AC06F3D, 6A9EB34854B68FB9EA20CD5582C4644820F3F0F66B95396A799670067F7EFC26 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:03:14.0631 0x0278 nvlddmkm - ok
20:03:14.0694 0x0278 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:03:14.0725 0x0278 nvraid - ok
20:03:14.0756 0x0278 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:03:14.0787 0x0278 nvstor - ok
20:03:14.0803 0x0278 [ 03F1FC77F8477308195D19A5BF441D42, 75864B9E6EDFB1C187E3F396A915A537D5A99B2A677DC20AFB650A083C63D7D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:03:14.0850 0x0278 nvsvc - ok
20:03:14.0881 0x0278 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:03:14.0928 0x0278 nv_agp - ok
20:03:14.0943 0x0278 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:03:15.0037 0x0278 ohci1394 - ok
20:03:15.0068 0x0278 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:03:15.0146 0x0278 p2pimsvc - ok
20:03:15.0177 0x0278 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
20:03:15.0240 0x0278 p2psvc - ok
20:03:15.0255 0x0278 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:03:15.0302 0x0278 Parport - ok
20:03:15.0318 0x0278 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:03:15.0349 0x0278 partmgr - ok
20:03:15.0365 0x0278 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:03:15.0411 0x0278 Parvdm - ok
20:03:15.0427 0x0278 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:03:15.0521 0x0278 PcaSvc - ok
20:03:15.0521 0x0278 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
20:03:15.0567 0x0278 pci - ok
20:03:15.0599 0x0278 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
20:03:15.0661 0x0278 pciide - ok
20:03:15.0692 0x0278 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:03:15.0739 0x0278 pcmcia - ok
20:03:15.0755 0x0278 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
20:03:15.0801 0x0278 pcw - ok
20:03:15.0833 0x0278 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:03:15.0957 0x0278 PEAUTH - ok
20:03:16.0004 0x0278 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:03:16.0129 0x0278 PeerDistSvc - ok
20:03:16.0223 0x0278 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
20:03:16.0379 0x0278 pla - ok
20:03:16.0425 0x0278 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:03:16.0503 0x0278 PlugPlay - ok
20:03:16.0519 0x0278 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:03:16.0581 0x0278 PNRPAutoReg - ok
20:03:16.0597 0x0278 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:03:16.0644 0x0278 PNRPsvc - ok
20:03:16.0691 0x0278 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:03:16.0753 0x0278 PolicyAgent - ok
20:03:16.0769 0x0278 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
20:03:16.0847 0x0278 Power - ok
20:03:16.0862 0x0278 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:03:16.0925 0x0278 PptpMiniport - ok
20:03:16.0956 0x0278 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:03:17.0034 0x0278 Processor - ok
20:03:17.0065 0x0278 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:03:17.0143 0x0278 ProfSvc - ok
20:03:17.0159 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:03:17.0190 0x0278 ProtectedStorage - ok
20:03:17.0205 0x0278 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:03:17.0252 0x0278 Psched - ok
20:03:17.0330 0x0278 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:03:17.0424 0x0278 ql2300 - ok
20:03:17.0439 0x0278 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:03:17.0471 0x0278 ql40xx - ok
20:03:17.0502 0x0278 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
20:03:17.0595 0x0278 QWAVE - ok
20:03:17.0611 0x0278 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:03:17.0673 0x0278 QWAVEdrv - ok
20:03:17.0689 0x0278 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:03:17.0751 0x0278 RasAcd - ok
20:03:17.0767 0x0278 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:03:17.0829 0x0278 RasAgileVpn - ok
20:03:17.0845 0x0278 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
20:03:17.0923 0x0278 RasAuto - ok
20:03:17.0939 0x0278 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:03:18.0001 0x0278 Rasl2tp - ok
20:03:18.0032 0x0278 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
20:03:18.0110 0x0278 RasMan - ok
20:03:18.0126 0x0278 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:03:18.0204 0x0278 RasPppoe - ok
20:03:18.0219 0x0278 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:03:18.0313 0x0278 RasSstp - ok
20:03:18.0329 0x0278 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:03:18.0407 0x0278 rdbss - ok
20:03:18.0407 0x0278 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:03:18.0453 0x0278 rdpbus - ok
20:03:18.0453 0x0278 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:03:18.0516 0x0278 RDPCDD - ok
20:03:18.0547 0x0278 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:03:18.0625 0x0278 RDPDR - ok
20:03:18.0625 0x0278 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:03:18.0703 0x0278 RDPENCDD - ok
20:03:18.0719 0x0278 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:03:18.0797 0x0278 RDPREFMP - ok
20:03:18.0859 0x0278 [ 68A0387F58E226DEEE23D9715955572A, F95BB1D2BB3E79AF47B1C715BB5E3003EEF888AAA963F46F4A2FE8AFBD4F37A4 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:03:18.0921 0x0278 RdpVideoMiniport - ok
20:03:18.0968 0x0278 [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:03:19.0015 0x0278 RDPWD - ok
20:03:19.0062 0x0278 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:03:19.0109 0x0278 rdyboost - ok
20:03:19.0124 0x0278 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:03:19.0187 0x0278 RemoteAccess - ok
20:03:19.0202 0x0278 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:03:19.0280 0x0278 RemoteRegistry - ok
20:03:19.0327 0x0278 [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:03:19.0358 0x0278 RFCOMM - ok
20:03:19.0374 0x0278 [ DF672613FBBCD58C38BB0BC2694BCFB0, 9B574773C7E796B7E30481F7A22D996078D5D3D295270B5BA5931A2D2F03EB4B ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
20:03:19.0405 0x0278 rimmptsk - ok
20:03:19.0421 0x0278 [ 9BFB54D3559F2FF7301271D29D383564, DA7F9D7432D2DD4B8FCEEB5D995E4E0A2BF6226C3A244BE4EE6BF08EF29C8687 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
20:03:19.0467 0x0278 rimsptsk - ok
20:03:19.0483 0x0278 [ DCB87DA83CC1010CBC9FC4DC9E395BBC, 2123B7CAD746141C69F7DFCB4C351905C32E5B433F806EDA50074B088DC886DC ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
20:03:19.0514 0x0278 rismxdp - ok
20:03:19.0530 0x0278 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:03:19.0608 0x0278 RpcEptMapper - ok
20:03:19.0639 0x0278 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
20:03:19.0686 0x0278 RpcLocator - ok
20:03:19.0717 0x0278 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\System32\rpcss.dll
20:03:19.0779 0x0278 RpcSs - ok
20:03:19.0795 0x0278 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:03:19.0857 0x0278 rspndr - ok
20:03:19.0889 0x0278 [ 1C5C2CB892553D2CF3F45A4BB323FCD6, 635FDBCF5FAEE1C90BF3C9CD80E659A4B3B97B4BD9221CD0DCD534797FB40220 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
20:03:19.0920 0x0278 s1018bus - ok
20:03:19.0967 0x0278 [ 38F5EA219593F19B6B3A1B9C169E3B61, 714ADF14971D563C6890286E858B54D3CB9E459077DDBEA4A9AD796726D1F36D ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
20:03:20.0013 0x0278 s1018mdfl - ok
20:03:20.0029 0x0278 [ 666AF6B64FC7DF92D3CA4819EA91631D, E9916FEDD81B277AD37DB7286523622040667210B061E823DD9A692A66686FC9 ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
20:03:20.0076 0x0278 s1018mdm - ok
20:03:20.0091 0x0278 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0, 9D32B4399B9F5E6A2BEDC51C8039886B51E9CBEA088B04811AFC2ABEEA3CAD3D ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
20:03:20.0169 0x0278 s1018mgmt - ok
20:03:20.0185 0x0278 [ 3622D9FF2253DCBE885B10736609A4CA, 6C8AFFFB165B31339716BDCE1A67ED486DA6EE2670C78FA525B4BE568632337E ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
20:03:20.0216 0x0278 s1018nd5 - ok
20:03:20.0232 0x0278 [ 49431EFDA842B474531C29FFAE9F5D09, DA69D12F11608EF016D50A1293DEA0AEE1C4A626C1833F88A6853EABDABD4B99 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
20:03:20.0279 0x0278 s1018obex - ok
20:03:20.0310 0x0278 [ AC6B514CB4474F4C867D7CDC9CD54F05, 8846559C8B78CF3863A79BBEAAE6A49555C5C2AC67C837DE94B253FD1D0D39A3 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
20:03:20.0341 0x0278 s1018unic - ok
20:03:20.0372 0x0278 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:03:20.0481 0x0278 s3cap - ok
20:03:20.0497 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs C:\Windows\system32\lsass.exe
20:03:20.0528 0x0278 SamSs - ok
20:03:20.0559 0x0278 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:03:20.0575 0x0278 sbp2port - ok
20:03:20.0606 0x0278 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:03:20.0715 0x0278 SCardSvr - ok
20:03:20.0731 0x0278 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:03:20.0793 0x0278 scfilter - ok
20:03:20.0840 0x0278 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
20:03:20.0934 0x0278 Schedule - ok
20:03:20.0949 0x0278 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:03:20.0996 0x0278 SCPolicySvc - ok
20:03:21.0012 0x0278 [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus C:\Windows\system32\drivers\sdbus.sys
20:03:21.0074 0x0278 sdbus - ok
20:03:21.0105 0x0278 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:03:21.0183 0x0278 SDRSVC - ok
20:03:21.0183 0x0278 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:03:21.0261 0x0278 secdrv - ok
20:03:21.0277 0x0278 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
20:03:21.0324 0x0278 seclogon - ok
20:03:21.0339 0x0278 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\system32\sens.dll
20:03:21.0402 0x0278 SENS - ok
20:03:21.0417 0x0278 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:03:21.0464 0x0278 SensrSvc - ok
20:03:21.0495 0x0278 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:03:21.0542 0x0278 Serenum - ok
20:03:21.0573 0x0278 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:03:21.0667 0x0278 Serial - ok
20:03:21.0683 0x0278 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:03:21.0745 0x0278 sermouse - ok
20:03:21.0761 0x0278 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
20:03:21.0854 0x0278 SessionEnv - ok
20:03:21.0885 0x0278 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:03:21.0932 0x0278 sffdisk - ok
20:03:21.0948 0x0278 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:03:21.0995 0x0278 sffp_mmc - ok
20:03:22.0026 0x0278 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:03:22.0073 0x0278 sffp_sd - ok
20:03:22.0104 0x0278 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:03:22.0166 0x0278 sfloppy - ok
20:03:22.0197 0x0278 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:03:22.0307 0x0278 SharedAccess - ok
20:03:22.0338 0x0278 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:03:22.0431 0x0278 ShellHWDetection - ok
20:03:22.0447 0x0278 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:03:22.0478 0x0278 sisagp - ok
20:03:22.0509 0x0278 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:03:22.0541 0x0278 SiSRaid2 - ok
20:03:22.0572 0x0278 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:03:22.0603 0x0278 SiSRaid4 - ok
20:03:22.0619 0x0278 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:03:22.0697 0x0278 Smb - ok
20:03:22.0697 0x0278 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:03:22.0759 0x0278 SNMPTRAP - ok
20:03:22.0806 0x0278 [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files\Sony\Sony PC Companion\PCCService.exe
20:03:22.0837 0x0278 Sony PC Companion - ok
20:03:22.0853 0x0278 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
20:03:22.0884 0x0278 spldr - ok
20:03:22.0915 0x0278 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
20:03:22.0977 0x0278 Spooler - ok
20:03:23.0165 0x0278 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
20:03:23.0383 0x0278 sppsvc - ok
20:03:23.0399 0x0278 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:03:23.0477 0x0278 sppuinotify - ok
20:03:23.0523 0x0278 [ CDDDEC541BC3C96F91ECB48759673505, B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB ] sptd C:\Windows\system32\Drivers\sptd.sys
20:03:23.0523 0x0278 Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505, sha256: B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB
20:03:23.0523 0x0278 sptd - detected LockedFile.Multi.Generic ( 1 )
20:03:26.0238 0x0278 Detect skipped due to KSN trusted
20:03:26.0238 0x0278 sptd - ok
20:03:26.0269 0x0278 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:03:26.0331 0x0278 srv - ok
20:03:26.0347 0x0278 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:03:26.0425 0x0278 srv2 - ok
20:03:26.0441 0x0278 [ E00FDFAFF025E94F9821153750C35A6D, 6ECDC5F314A29B859B0DCB7FF114CACE0718612556299B16412C21F9539DC9B5 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
20:03:26.0487 0x0278 SrvHsfHDA - ok
20:03:26.0550 0x0278 [ CEB4E3B6890E1E42DCA6694D9E59E1A0, 00D841690A88F1051A238F67AACCE905E8A59C86070F215A8D31FA3E68C6BF35 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
20:03:26.0643 0x0278 SrvHsfV92 - ok
20:03:26.0690 0x0278 [ BC0C7EA89194C299F051C24119000E17, F5FB21F7AD7370F3D5DF7C23F33118ECF19865B995AF12E9A8A8D893E7E6264F ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
20:03:26.0784 0x0278 SrvHsfWinac - ok
20:03:26.0799 0x0278 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:03:26.0846 0x0278 srvnet - ok
20:03:26.0893 0x0278 [ 069351A1D7D291013177A90AE6EDCCBC, 9AAC7DAEAD7ABF593FB3F7B959BB1F9310C46DBF86395FF4117DDCE4B74E849B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
20:03:26.0955 0x0278 sscdbus - ok
20:03:26.0987 0x0278 [ 1C925BE223A5C0F9F469252292A48DF6, 0A3F59040B0B856D7888F4AA2EC229F506B82C4DB62470E1D1B76B34EB49AF3F ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
20:03:27.0018 0x0278 sscdmdfl - ok
20:03:27.0033 0x0278 [ AE3E77AE0FBDB07EB1AC3FED74A0695E, E491A8610AA82D612314C336FDED109D66F7306291798218CBB154D389375096 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
20:03:27.0080 0x0278 sscdmdm - ok
20:03:27.0096 0x0278 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:03:27.0158 0x0278 SSDPSRV - ok
20:03:27.0174 0x0278 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:03:27.0236 0x0278 SstpSvc - ok
20:03:27.0267 0x0278 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:03:27.0299 0x0278 stexstor - ok
20:03:27.0330 0x0278 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
20:03:27.0408 0x0278 StiSvc - ok
20:03:27.0423 0x0278 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:03:27.0455 0x0278 storflt - ok
20:03:27.0470 0x0278 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:03:27.0501 0x0278 storvsc - ok
20:03:27.0501 0x0278 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
20:03:27.0548 0x0278 swenum - ok
20:03:27.0579 0x0278 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
20:03:27.0689 0x0278 swprv - ok
20:03:27.0704 0x0278 Synth3dVsc - ok
20:03:27.0720 0x0278 [ 6BEF3ACD6EE22EEC55B68699E8AACE09, 5C726D7CB2BF1C811AF7093ED096A4F1BD6E37D2E7EDA99579C49BC479CA4C4B ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:03:27.0767 0x0278 SynTP - ok
20:03:27.0829 0x0278 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
20:03:27.0985 0x0278 SysMain - ok
20:03:28.0001 0x0278 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
20:03:28.0094 0x0278 TabletInputService - ok
20:03:28.0110 0x0278 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
20:03:28.0203 0x0278 TapiSrv - ok
20:03:28.0219 0x0278 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
20:03:28.0313 0x0278 TBS - ok
20:03:28.0422 0x0278 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:03:28.0500 0x0278 Tcpip - ok
20:03:28.0578 0x0278 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:03:28.0656 0x0278 TCPIP6 - ok
20:03:28.0671 0x0278 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:03:28.0781 0x0278 tcpipreg - ok
20:03:28.0812 0x0278 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:03:28.0874 0x0278 TDPIPE - ok
20:03:28.0921 0x0278 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:03:28.0983 0x0278 TDTCP - ok
20:03:28.0983 0x0278 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:03:29.0061 0x0278 tdx - ok
20:03:29.0061 0x0278 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:03:29.0093 0x0278 TermDD - ok
20:03:29.0139 0x0278 [ E05E31F7BF577228E27CFFCA5B54ABBD, BF053DE7FA6DF33E15D0DD421F34962D92575ED163E4A605FE6B8DA9CEA5CF55 ] TermService C:\Windows\System32\termsrv.dll
20:03:29.0202 0x0278 TermService - ok
20:03:29.0217 0x0278 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
20:03:29.0280 0x0278 Themes - ok
20:03:29.0295 0x0278 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
20:03:29.0342 0x0278 THREADORDER - ok
20:03:29.0358 0x0278 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
20:03:29.0436 0x0278 TrkWks - ok
20:03:29.0483 0x0278 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:03:29.0576 0x0278 TrustedInstaller - ok
20:03:29.0607 0x0278 [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:03:29.0654 0x0278 tssecsrv - ok
20:03:29.0685 0x0278 [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:03:29.0717 0x0278 TsUsbFlt - ok
20:03:29.0717 0x0278 tsusbhub - ok
20:03:29.0732 0x0278 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:03:29.0779 0x0278 tunnel - ok
20:03:29.0810 0x0278 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:03:29.0841 0x0278 uagp35 - ok
20:03:29.0873 0x0278 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:03:29.0951 0x0278 udfs - ok
20:03:29.0982 0x0278 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:03:30.0060 0x0278 UI0Detect - ok
20:03:30.0075 0x0278 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:03:30.0107 0x0278 uliagpkx - ok
20:03:30.0122 0x0278 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
20:03:30.0185 0x0278 umbus - ok
20:03:30.0216 0x0278 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:03:30.0278 0x0278 UmPass - ok
20:03:30.0309 0x0278 [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService C:\Windows\System32\umrdp.dll
20:03:30.0356 0x0278 UmRdpService - ok
20:03:30.0387 0x0278 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
20:03:30.0481 0x0278 upnphost - ok
20:03:30.0497 0x0278 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:03:30.0575 0x0278 usbccgp - ok
20:03:30.0606 0x0278 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:03:30.0668 0x0278 usbcir - ok
20:03:30.0668 0x0278 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:03:30.0699 0x0278 usbehci - ok
20:03:30.0715 0x0278 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:03:30.0777 0x0278 usbhub - ok
20:03:30.0809 0x0278 [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:03:30.0855 0x0278 usbohci - ok
20:03:30.0887 0x0278 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:03:30.0918 0x0278 usbprint - ok
20:03:30.0965 0x0278 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:03:31.0011 0x0278 usbscan - ok
20:03:31.0027 0x0278 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:03:31.0089 0x0278 USBSTOR - ok
20:03:31.0105 0x0278 [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:03:31.0136 0x0278 usbuhci - ok
20:03:31.0152 0x0278 [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:03:31.0214 0x0278 usbvideo - ok
20:03:31.0230 0x0278 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
20:03:31.0277 0x0278 UxSms - ok
20:03:31.0277 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc C:\Windows\system32\lsass.exe
20:03:31.0308 0x0278 VaultSvc - ok
20:03:31.0339 0x0278 [ 534C6B89EAC808A6C0B98591D37CDF67, 5458E8B3CA2BED60CFD2AD2F2640A6C94C6D1D9B3D9B1A8CA9BE9F1B861B1AB1 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
20:03:31.0386 0x0278 VBoxAswDrv - ok
20:03:31.0401 0x0278 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:03:31.0433 0x0278 vdrvroot - ok
20:03:31.0464 0x0278 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
20:03:31.0573 0x0278 vds - ok
20:03:31.0589 0x0278 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:03:31.0635 0x0278 vga - ok
20:03:31.0651 0x0278 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:03:31.0698 0x0278 VgaSave - ok
20:03:31.0698 0x0278 VGPU - ok
20:03:31.0729 0x0278 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:03:31.0776 0x0278 vhdmp - ok
20:03:31.0776 0x0278 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:03:31.0807 0x0278 viaagp - ok
20:03:31.0823 0x0278 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:03:31.0885 0x0278 ViaC7 - ok
20:03:31.0901 0x0278 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
20:03:31.0932 0x0278 viaide - ok
20:03:31.0947 0x0278 [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:03:31.0994 0x0278 vmbus - ok
20:03:32.0010 0x0278 [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:03:32.0072 0x0278 VMBusHID - ok
20:03:32.0072 0x0278 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:03:32.0103 0x0278 volmgr - ok
20:03:32.0119 0x0278 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:03:32.0166 0x0278 volmgrx - ok
20:03:32.0181 0x0278 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:03:32.0228 0x0278 volsnap - ok
20:03:32.0244 0x0278 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:03:32.0291 0x0278 vsmraid - ok
20:03:32.0337 0x0278 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
20:03:32.0462 0x0278 VSS - ok
20:03:32.0509 0x0278 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:03:32.0556 0x0278 vwifibus - ok
20:03:32.0587 0x0278 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
20:03:32.0665 0x0278 W32Time - ok
20:03:32.0696 0x0278 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:03:32.0727 0x0278 WacomPen - ok
20:03:32.0743 0x0278 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:03:32.0821 0x0278 WANARP - ok
20:03:32.0821 0x0278 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:03:32.0868 0x0278 Wanarpv6 - ok
20:03:32.0946 0x0278 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:03:33.0039 0x0278 WatAdminSvc - ok
20:03:33.0117 0x0278 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
20:03:33.0242 0x0278 wbengine - ok
20:03:33.0273 0x0278 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:03:33.0351 0x0278 WbioSrvc - ok
20:03:33.0383 0x0278 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:03:33.0445 0x0278 wcncsvc - ok
20:03:33.0445 0x0278 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:03:33.0492 0x0278 WcsPlugInService - ok
20:03:33.0523 0x0278 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:03:33.0570 0x0278 Wd - ok
20:03:33.0585 0x0278 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:03:33.0648 0x0278 Wdf01000 - ok
20:03:33.0663 0x0278 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:03:33.0773 0x0278 WdiServiceHost - ok
20:03:33.0773 0x0278 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:03:33.0819 0x0278 WdiSystemHost - ok
20:03:33.0851 0x0278 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
20:03:33.0913 0x0278 WebClient - ok
20:03:33.0944 0x0278 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:03:34.0022 0x0278 Wecsvc - ok
20:03:34.0022 0x0278 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:03:34.0100 0x0278 wercplsupport - ok
20:03:34.0116 0x0278 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
20:03:34.0194 0x0278 WerSvc - ok
20:03:34.0194 0x0278 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:03:34.0256 0x0278 WfpLwf - ok
20:03:34.0272 0x0278 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:03:34.0365 0x0278 WIMMount - ok
20:03:34.0428 0x0278 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:03:34.0553 0x0278 WinDefend - ok
20:03:34.0568 0x0278 WinHttpAutoProxySvc - ok
20:03:34.0599 0x0278 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:03:34.0646 0x0278 Winmgmt - ok
20:03:34.0740 0x0278 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
20:03:34.0911 0x0278 WinRM - ok
20:03:34.0927 0x0278 [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:03:34.0989 0x0278 WinUsb - ok
20:03:35.0036 0x0278 [ F318A95329B60D487DB5CC392AB86978, 7DBD2DC7E76A1D6F0FA26411C1B410887D11B62390F1D162116ECB5A6A3CC622 ] WLAN(WLAN) C:\Windows\system32\DRIVERS\zd1211u.sys
20:03:35.0099 0x0278 WLAN(WLAN) - detected UnsignedFile.Multi.Generic ( 1 )
20:03:45.0239 0x0278 WLAN(WLAN) ( UnsignedFile.Multi.Generic ) - warning
20:03:59.0091 0x0278 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:03:59.0232 0x0278 Wlansvc - ok
20:03:59.0247 0x0278 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:03:59.0310 0x0278 WmiAcpi - ok
20:03:59.0341 0x0278 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:03:59.0403 0x0278 wmiApSrv - ok
20:03:59.0419 0x0278 [ C8F8AAC50B5B0BF821AB7D7126056B30, 9E392A6198B941FEBF3AE509626887C68457C7349866AB9B719B15FE52659C29 ] WMIService C:\Program Files\Acer\Empowering Technology\ePower\ePowerSvc.exe
20:03:59.0466 0x0278 WMIService - detected UnsignedFile.Multi.Generic ( 1 )
20:04:09.0481 0x0278 WMIService ( UnsignedFile.Multi.Generic ) - warning
20:04:12.0305 0x0278 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:04:12.0414 0x0278 WMPNetworkSvc - ok
20:04:12.0429 0x0278 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:04:12.0461 0x0278 WPCSvc - ok
20:04:12.0476 0x0278 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:04:12.0539 0x0278 WPDBusEnum - ok
20:04:12.0554 0x0278 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:04:12.0632 0x0278 ws2ifsl - ok
20:04:12.0648 0x0278 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\system32\wscsvc.dll
20:04:12.0695 0x0278 wscsvc - ok
20:04:12.0710 0x0278 WSearch - ok
20:04:12.0835 0x0278 [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv C:\Windows\system32\wuaueng.dll
20:04:12.0975 0x0278 wuauserv - ok
20:04:13.0069 0x0278 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:04:13.0131 0x0278 WudfPf - ok
20:04:13.0163 0x0278 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:04:13.0241 0x0278 WUDFRd - ok
20:04:13.0256 0x0278 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:04:13.0319 0x0278 wudfsvc - ok
20:04:13.0350 0x0278 [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc C:\Windows\System32\wwansvc.dll
20:04:13.0412 0x0278 WwanSvc - ok
20:04:13.0428 0x0278 ================ Scan global ===============================
20:04:13.0443 0x0278 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
20:04:13.0475 0x0278 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
20:04:13.0490 0x0278 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
20:04:13.0506 0x0278 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
20:04:13.0521 0x0278 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
20:04:13.0537 0x0278 [ Global ] - ok
20:04:13.0537 0x0278 ================ Scan MBR ==================================
20:04:13.0553 0x0278 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:04:14.0099 0x0278 \Device\Harddisk1\DR1 - ok
20:04:14.0114 0x0278 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
20:04:14.0239 0x0278 \Device\Harddisk2\DR2 - ok
20:04:14.0239 0x0278 ================ Scan VBR ==================================
20:04:14.0255 0x0278 [ D869A865DA803FD2730A3EE0D79CF21A ] \Device\Harddisk1\DR1\Partition1
20:04:14.0255 0x0278 \Device\Harddisk1\DR1\Partition1 - ok
20:04:14.0255 0x0278 [ BD7E9AA5EBE9B4C706DDCFFC1BF59424 ] \Device\Harddisk1\DR1\Partition2
20:04:14.0255 0x0278 \Device\Harddisk1\DR1\Partition2 - ok
20:04:14.0255 0x0278 [ F40EA450387A7EC78BD0200E6A88A7A0 ] \Device\Harddisk1\DR1\Partition3
20:04:14.0286 0x0278 \Device\Harddisk1\DR1\Partition3 - ok
20:04:14.0286 0x0278 [ 6D11A7DAAD7E2A4659571EF189F60A24 ] \Device\Harddisk2\DR2\Partition1
20:04:14.0379 0x0278 \Device\Harddisk2\DR2\Partition1 - ok
20:04:14.0379 0x0278 ================ Scan generic autorun ======================
20:04:14.0754 0x0278 [ 664B6D2D5C50500374D109C7750FC0C9, 0948FB9F1EA9C3C221668F641598036DDD73D495967F34871B3BF54A316B5CDC ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
20:04:15.0050 0x0278 RtHDVCpl - ok
20:04:15.0113 0x0278 [ 2F2DF068BED6E62E4C007DF7446B4F19, 96FE78E2B8BD067B7378ECDF1E74939C71EFFBF09B2C184361650DBF4ED0FCC3 ] C:\Windows\PLFSetI.exe
20:04:15.0159 0x0278 PLFSetI - detected UnsignedFile.Multi.Generic ( 1 )
20:04:25.0175 0x0278 PLFSetI ( UnsignedFile.Multi.Generic ) - warning
20:04:25.0175 0x0278 Force sending object to P2P due to detect: C:\Windows\PLFSetI.exe
20:04:28.0076 0x0278 Object send P2P result: true
20:04:31.0321 0x0278 [ 8895BE670D1D4BD478B16DD311273F4A, 1E4232658CBFFBF1E15B4D04891F1FF77CDFB8E520595DEEF59E7911FBDA98AC ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
20:04:31.0399 0x0278 SynTPEnh - ok
20:04:31.0415 0x0278 NvCplDaemon - ok
20:04:31.0493 0x0278 [ 57ECB45BEC6814479D5D341D19AC63DF, 4FD1F0B018804C16D9F376D5E255B0F48FDD15889A82854AE35FDBC3B55F1F7D ] C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
20:04:31.0602 0x0278 eAudio - detected UnsignedFile.Multi.Generic ( 1 )
20:04:41.0617 0x0278 eAudio ( UnsignedFile.Multi.Generic ) - warning
20:04:41.0617 0x0278 Force sending object to P2P due to detect: C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
20:04:44.0534 0x0278 Object send P2P result: true
20:04:47.0405 0x0278 [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
20:04:47.0451 0x0278 IAAnotif - ok
20:04:47.0451 0x0278 [ 9F35F5948217D601B0A881C9072FBE22, B7A1FC0F66E7214D75B242EEE4EBA52D1DDA0F060B43FE9A4E1AAA281A1703B3 ] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
20:04:47.0483 0x0278 IaNvSrv - ok
20:04:47.0748 0x0278 [ FFB8CB731D62EC434A552680E0F8EC1A, 7738881188FF99820F6FD667E32FE73E63260289188C449D3462F8B19C48D3FA ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
20:04:48.0263 0x0278 AvastUI.exe - ok
20:04:48.0294 0x0278 Waiting for KSN requests completion. In queue: 4
20:04:49.0308 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:50.0322 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:51.0336 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:52.0350 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:53.0364 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:54.0456 0x0278 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
20:04:54.0471 0x0278 Win FW state via NFP2: enabled
20:04:57.0217 0x0278 ============================================================
20:04:57.0217 0x0278 Scan finished
20:04:57.0217 0x0278 ============================================================
20:04:57.0233 0x0458 Detected object count: 4
20:04:57.0233 0x0458 Actual detected object count: 4
20:05:46.0498 0x0458 WLAN(WLAN) ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 WLAN(WLAN) ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:05:46.0498 0x0458 WMIService ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 WMIService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:05:46.0498 0x0458 PLFSetI ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 PLFSetI ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:05:46.0498 0x0458 eAudio ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 eAudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:06:36.0043 0x0828 Deinitialize success
20:03:09.0281 0x0278 NetTcpPortSharing - ok
20:03:09.0499 0x0278 [ 58218EC6B61B1169CF54AAB0D00F5FE2, B76ABB2AD78CE68D30F0F08563B0593D658298CDCF1B138B6E9FB0D64CBCC3C2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
20:03:09.0905 0x0278 netw5v32 - ok
20:03:09.0936 0x0278 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:03:09.0983 0x0278 nfrd960 - ok
20:03:09.0998 0x0278 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:03:10.0076 0x0278 NlaSvc - ok
20:03:10.0092 0x0278 [ B1EF4686961986DFFB7FE8F18E6FCB5B, 562F144DAA8C2D6E4D55C7ABEF1DB52FC67F1A09E03CD700E27DFC3A4920E271 ] nlsX86cc C:\Windows\system32\nlssrv32.exe
20:03:10.0154 0x0278 nlsX86cc - detected UnsignedFile.Multi.Generic ( 1 )
20:03:12.0869 0x0278 Detect skipped due to KSN trusted
20:03:12.0869 0x0278 nlsX86cc - ok
20:03:12.0884 0x0278 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:03:12.0978 0x0278 Npfs - ok
20:03:12.0993 0x0278 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
20:03:13.0071 0x0278 nsi - ok
20:03:13.0087 0x0278 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:03:13.0149 0x0278 nsiproxy - ok
20:03:13.0227 0x0278 [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:03:13.0337 0x0278 Ntfs - ok
20:03:13.0337 0x0278 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
20:03:13.0415 0x0278 Null - ok
20:03:13.0415 0x0278 [ 7F5D69A031BE0E7BDFB8126E1A212417, E0ECC8D47D9385FC97B962A72F435A94F9AAF88694E84EE8AF7F3D0EBD2C15DC ] nuvotoncir C:\Windows\system32\DRIVERS\nuvotoncir.sys
20:03:13.0493 0x0278 nuvotoncir - ok
20:03:13.0992 0x0278 [ 646D250E731EC2AD624DCC944AC06F3D, 6A9EB34854B68FB9EA20CD5582C4644820F3F0F66B95396A799670067F7EFC26 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:03:14.0631 0x0278 nvlddmkm - ok
20:03:14.0694 0x0278 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:03:14.0725 0x0278 nvraid - ok
20:03:14.0756 0x0278 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:03:14.0787 0x0278 nvstor - ok
20:03:14.0803 0x0278 [ 03F1FC77F8477308195D19A5BF441D42, 75864B9E6EDFB1C187E3F396A915A537D5A99B2A677DC20AFB650A083C63D7D9 ] nvsvc C:\Windows\system32\nvvsvc.exe
20:03:14.0850 0x0278 nvsvc - ok
20:03:14.0881 0x0278 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:03:14.0928 0x0278 nv_agp - ok
20:03:14.0943 0x0278 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:03:15.0037 0x0278 ohci1394 - ok
20:03:15.0068 0x0278 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:03:15.0146 0x0278 p2pimsvc - ok
20:03:15.0177 0x0278 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
20:03:15.0240 0x0278 p2psvc - ok
20:03:15.0255 0x0278 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:03:15.0302 0x0278 Parport - ok
20:03:15.0318 0x0278 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:03:15.0349 0x0278 partmgr - ok
20:03:15.0365 0x0278 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:03:15.0411 0x0278 Parvdm - ok
20:03:15.0427 0x0278 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:03:15.0521 0x0278 PcaSvc - ok
20:03:15.0521 0x0278 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
20:03:15.0567 0x0278 pci - ok
20:03:15.0599 0x0278 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
20:03:15.0661 0x0278 pciide - ok
20:03:15.0692 0x0278 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:03:15.0739 0x0278 pcmcia - ok
20:03:15.0755 0x0278 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
20:03:15.0801 0x0278 pcw - ok
20:03:15.0833 0x0278 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:03:15.0957 0x0278 PEAUTH - ok
20:03:16.0004 0x0278 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:03:16.0129 0x0278 PeerDistSvc - ok
20:03:16.0223 0x0278 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
20:03:16.0379 0x0278 pla - ok
20:03:16.0425 0x0278 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:03:16.0503 0x0278 PlugPlay - ok
20:03:16.0519 0x0278 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:03:16.0581 0x0278 PNRPAutoReg - ok
20:03:16.0597 0x0278 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:03:16.0644 0x0278 PNRPsvc - ok
20:03:16.0691 0x0278 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:03:16.0753 0x0278 PolicyAgent - ok
20:03:16.0769 0x0278 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
20:03:16.0847 0x0278 Power - ok
20:03:16.0862 0x0278 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:03:16.0925 0x0278 PptpMiniport - ok
20:03:16.0956 0x0278 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:03:17.0034 0x0278 Processor - ok
20:03:17.0065 0x0278 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:03:17.0143 0x0278 ProfSvc - ok
20:03:17.0159 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:03:17.0190 0x0278 ProtectedStorage - ok
20:03:17.0205 0x0278 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:03:17.0252 0x0278 Psched - ok
20:03:17.0330 0x0278 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:03:17.0424 0x0278 ql2300 - ok
20:03:17.0439 0x0278 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:03:17.0471 0x0278 ql40xx - ok
20:03:17.0502 0x0278 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
20:03:17.0595 0x0278 QWAVE - ok
20:03:17.0611 0x0278 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:03:17.0673 0x0278 QWAVEdrv - ok
20:03:17.0689 0x0278 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:03:17.0751 0x0278 RasAcd - ok
20:03:17.0767 0x0278 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:03:17.0829 0x0278 RasAgileVpn - ok
20:03:17.0845 0x0278 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
20:03:17.0923 0x0278 RasAuto - ok
20:03:17.0939 0x0278 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:03:18.0001 0x0278 Rasl2tp - ok
20:03:18.0032 0x0278 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
20:03:18.0110 0x0278 RasMan - ok
20:03:18.0126 0x0278 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:03:18.0204 0x0278 RasPppoe - ok
20:03:18.0219 0x0278 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:03:18.0313 0x0278 RasSstp - ok
20:03:18.0329 0x0278 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:03:18.0407 0x0278 rdbss - ok
20:03:18.0407 0x0278 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:03:18.0453 0x0278 rdpbus - ok
20:03:18.0453 0x0278 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:03:18.0516 0x0278 RDPCDD - ok
20:03:18.0547 0x0278 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:03:18.0625 0x0278 RDPDR - ok
20:03:18.0625 0x0278 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:03:18.0703 0x0278 RDPENCDD - ok
20:03:18.0719 0x0278 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:03:18.0797 0x0278 RDPREFMP - ok
20:03:18.0859 0x0278 [ 68A0387F58E226DEEE23D9715955572A, F95BB1D2BB3E79AF47B1C715BB5E3003EEF888AAA963F46F4A2FE8AFBD4F37A4 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
20:03:18.0921 0x0278 RdpVideoMiniport - ok
20:03:18.0968 0x0278 [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:03:19.0015 0x0278 RDPWD - ok
20:03:19.0062 0x0278 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:03:19.0109 0x0278 rdyboost - ok
20:03:19.0124 0x0278 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:03:19.0187 0x0278 RemoteAccess - ok
20:03:19.0202 0x0278 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:03:19.0280 0x0278 RemoteRegistry - ok
20:03:19.0327 0x0278 [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:03:19.0358 0x0278 RFCOMM - ok
20:03:19.0374 0x0278 [ DF672613FBBCD58C38BB0BC2694BCFB0, 9B574773C7E796B7E30481F7A22D996078D5D3D295270B5BA5931A2D2F03EB4B ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
20:03:19.0405 0x0278 rimmptsk - ok
20:03:19.0421 0x0278 [ 9BFB54D3559F2FF7301271D29D383564, DA7F9D7432D2DD4B8FCEEB5D995E4E0A2BF6226C3A244BE4EE6BF08EF29C8687 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
20:03:19.0467 0x0278 rimsptsk - ok
20:03:19.0483 0x0278 [ DCB87DA83CC1010CBC9FC4DC9E395BBC, 2123B7CAD746141C69F7DFCB4C351905C32E5B433F806EDA50074B088DC886DC ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
20:03:19.0514 0x0278 rismxdp - ok
20:03:19.0530 0x0278 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:03:19.0608 0x0278 RpcEptMapper - ok
20:03:19.0639 0x0278 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
20:03:19.0686 0x0278 RpcLocator - ok
20:03:19.0717 0x0278 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\System32\rpcss.dll
20:03:19.0779 0x0278 RpcSs - ok
20:03:19.0795 0x0278 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:03:19.0857 0x0278 rspndr - ok
20:03:19.0889 0x0278 [ 1C5C2CB892553D2CF3F45A4BB323FCD6, 635FDBCF5FAEE1C90BF3C9CD80E659A4B3B97B4BD9221CD0DCD534797FB40220 ] s1018bus C:\Windows\system32\DRIVERS\s1018bus.sys
20:03:19.0920 0x0278 s1018bus - ok
20:03:19.0967 0x0278 [ 38F5EA219593F19B6B3A1B9C169E3B61, 714ADF14971D563C6890286E858B54D3CB9E459077DDBEA4A9AD796726D1F36D ] s1018mdfl C:\Windows\system32\DRIVERS\s1018mdfl.sys
20:03:20.0013 0x0278 s1018mdfl - ok
20:03:20.0029 0x0278 [ 666AF6B64FC7DF92D3CA4819EA91631D, E9916FEDD81B277AD37DB7286523622040667210B061E823DD9A692A66686FC9 ] s1018mdm C:\Windows\system32\DRIVERS\s1018mdm.sys
20:03:20.0076 0x0278 s1018mdm - ok
20:03:20.0091 0x0278 [ F4CEDA6E2DDFF2AF8BD745615A7CA9C0, 9D32B4399B9F5E6A2BEDC51C8039886B51E9CBEA088B04811AFC2ABEEA3CAD3D ] s1018mgmt C:\Windows\system32\DRIVERS\s1018mgmt.sys
20:03:20.0169 0x0278 s1018mgmt - ok
20:03:20.0185 0x0278 [ 3622D9FF2253DCBE885B10736609A4CA, 6C8AFFFB165B31339716BDCE1A67ED486DA6EE2670C78FA525B4BE568632337E ] s1018nd5 C:\Windows\system32\DRIVERS\s1018nd5.sys
20:03:20.0216 0x0278 s1018nd5 - ok
20:03:20.0232 0x0278 [ 49431EFDA842B474531C29FFAE9F5D09, DA69D12F11608EF016D50A1293DEA0AEE1C4A626C1833F88A6853EABDABD4B99 ] s1018obex C:\Windows\system32\DRIVERS\s1018obex.sys
20:03:20.0279 0x0278 s1018obex - ok
20:03:20.0310 0x0278 [ AC6B514CB4474F4C867D7CDC9CD54F05, 8846559C8B78CF3863A79BBEAAE6A49555C5C2AC67C837DE94B253FD1D0D39A3 ] s1018unic C:\Windows\system32\DRIVERS\s1018unic.sys
20:03:20.0341 0x0278 s1018unic - ok
20:03:20.0372 0x0278 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:03:20.0481 0x0278 s3cap - ok
20:03:20.0497 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs C:\Windows\system32\lsass.exe
20:03:20.0528 0x0278 SamSs - ok
20:03:20.0559 0x0278 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:03:20.0575 0x0278 sbp2port - ok
20:03:20.0606 0x0278 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:03:20.0715 0x0278 SCardSvr - ok
20:03:20.0731 0x0278 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:03:20.0793 0x0278 scfilter - ok
20:03:20.0840 0x0278 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
20:03:20.0934 0x0278 Schedule - ok
20:03:20.0949 0x0278 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:03:20.0996 0x0278 SCPolicySvc - ok
20:03:21.0012 0x0278 [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus C:\Windows\system32\drivers\sdbus.sys
20:03:21.0074 0x0278 sdbus - ok
20:03:21.0105 0x0278 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:03:21.0183 0x0278 SDRSVC - ok
20:03:21.0183 0x0278 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:03:21.0261 0x0278 secdrv - ok
20:03:21.0277 0x0278 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
20:03:21.0324 0x0278 seclogon - ok
20:03:21.0339 0x0278 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\system32\sens.dll
20:03:21.0402 0x0278 SENS - ok
20:03:21.0417 0x0278 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:03:21.0464 0x0278 SensrSvc - ok
20:03:21.0495 0x0278 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:03:21.0542 0x0278 Serenum - ok
20:03:21.0573 0x0278 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:03:21.0667 0x0278 Serial - ok
20:03:21.0683 0x0278 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:03:21.0745 0x0278 sermouse - ok
20:03:21.0761 0x0278 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
20:03:21.0854 0x0278 SessionEnv - ok
20:03:21.0885 0x0278 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:03:21.0932 0x0278 sffdisk - ok
20:03:21.0948 0x0278 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:03:21.0995 0x0278 sffp_mmc - ok
20:03:22.0026 0x0278 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:03:22.0073 0x0278 sffp_sd - ok
20:03:22.0104 0x0278 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:03:22.0166 0x0278 sfloppy - ok
20:03:22.0197 0x0278 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:03:22.0307 0x0278 SharedAccess - ok
20:03:22.0338 0x0278 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:03:22.0431 0x0278 ShellHWDetection - ok
20:03:22.0447 0x0278 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
20:03:22.0478 0x0278 sisagp - ok
20:03:22.0509 0x0278 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:03:22.0541 0x0278 SiSRaid2 - ok
20:03:22.0572 0x0278 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:03:22.0603 0x0278 SiSRaid4 - ok
20:03:22.0619 0x0278 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:03:22.0697 0x0278 Smb - ok
20:03:22.0697 0x0278 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:03:22.0759 0x0278 SNMPTRAP - ok
20:03:22.0806 0x0278 [ 3A4F2C0BB87A0895ABEBA341AA1E341B, 4DADEEF3C5D181502D6F4A00FBBF3B001FA626E49569FB330D7AE2955CC7DE08 ] Sony PC Companion C:\Program Files\Sony\Sony PC Companion\PCCService.exe
20:03:22.0837 0x0278 Sony PC Companion - ok
20:03:22.0853 0x0278 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
20:03:22.0884 0x0278 spldr - ok
20:03:22.0915 0x0278 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
20:03:22.0977 0x0278 Spooler - ok
20:03:23.0165 0x0278 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
20:03:23.0383 0x0278 sppsvc - ok
20:03:23.0399 0x0278 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:03:23.0477 0x0278 sppuinotify - ok
20:03:23.0523 0x0278 [ CDDDEC541BC3C96F91ECB48759673505, B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB ] sptd C:\Windows\system32\Drivers\sptd.sys
20:03:23.0523 0x0278 Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505, sha256: B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB
20:03:23.0523 0x0278 sptd - detected LockedFile.Multi.Generic ( 1 )
20:03:26.0238 0x0278 Detect skipped due to KSN trusted
20:03:26.0238 0x0278 sptd - ok
20:03:26.0269 0x0278 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:03:26.0331 0x0278 srv - ok
20:03:26.0347 0x0278 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:03:26.0425 0x0278 srv2 - ok
20:03:26.0441 0x0278 [ E00FDFAFF025E94F9821153750C35A6D, 6ECDC5F314A29B859B0DCB7FF114CACE0718612556299B16412C21F9539DC9B5 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
20:03:26.0487 0x0278 SrvHsfHDA - ok
20:03:26.0550 0x0278 [ CEB4E3B6890E1E42DCA6694D9E59E1A0, 00D841690A88F1051A238F67AACCE905E8A59C86070F215A8D31FA3E68C6BF35 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
20:03:26.0643 0x0278 SrvHsfV92 - ok
20:03:26.0690 0x0278 [ BC0C7EA89194C299F051C24119000E17, F5FB21F7AD7370F3D5DF7C23F33118ECF19865B995AF12E9A8A8D893E7E6264F ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
20:03:26.0784 0x0278 SrvHsfWinac - ok
20:03:26.0799 0x0278 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:03:26.0846 0x0278 srvnet - ok
20:03:26.0893 0x0278 [ 069351A1D7D291013177A90AE6EDCCBC, 9AAC7DAEAD7ABF593FB3F7B959BB1F9310C46DBF86395FF4117DDCE4B74E849B ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
20:03:26.0955 0x0278 sscdbus - ok
20:03:26.0987 0x0278 [ 1C925BE223A5C0F9F469252292A48DF6, 0A3F59040B0B856D7888F4AA2EC229F506B82C4DB62470E1D1B76B34EB49AF3F ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
20:03:27.0018 0x0278 sscdmdfl - ok
20:03:27.0033 0x0278 [ AE3E77AE0FBDB07EB1AC3FED74A0695E, E491A8610AA82D612314C336FDED109D66F7306291798218CBB154D389375096 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
20:03:27.0080 0x0278 sscdmdm - ok
20:03:27.0096 0x0278 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:03:27.0158 0x0278 SSDPSRV - ok
20:03:27.0174 0x0278 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:03:27.0236 0x0278 SstpSvc - ok
20:03:27.0267 0x0278 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:03:27.0299 0x0278 stexstor - ok
20:03:27.0330 0x0278 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
20:03:27.0408 0x0278 StiSvc - ok
20:03:27.0423 0x0278 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:03:27.0455 0x0278 storflt - ok
20:03:27.0470 0x0278 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:03:27.0501 0x0278 storvsc - ok
20:03:27.0501 0x0278 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
20:03:27.0548 0x0278 swenum - ok
20:03:27.0579 0x0278 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
20:03:27.0689 0x0278 swprv - ok
20:03:27.0704 0x0278 Synth3dVsc - ok
20:03:27.0720 0x0278 [ 6BEF3ACD6EE22EEC55B68699E8AACE09, 5C726D7CB2BF1C811AF7093ED096A4F1BD6E37D2E7EDA99579C49BC479CA4C4B ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:03:27.0767 0x0278 SynTP - ok
20:03:27.0829 0x0278 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
20:03:27.0985 0x0278 SysMain - ok
20:03:28.0001 0x0278 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
20:03:28.0094 0x0278 TabletInputService - ok
20:03:28.0110 0x0278 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
20:03:28.0203 0x0278 TapiSrv - ok
20:03:28.0219 0x0278 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
20:03:28.0313 0x0278 TBS - ok
20:03:28.0422 0x0278 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:03:28.0500 0x0278 Tcpip - ok
20:03:28.0578 0x0278 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:03:28.0656 0x0278 TCPIP6 - ok
20:03:28.0671 0x0278 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:03:28.0781 0x0278 tcpipreg - ok
20:03:28.0812 0x0278 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:03:28.0874 0x0278 TDPIPE - ok
20:03:28.0921 0x0278 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:03:28.0983 0x0278 TDTCP - ok
20:03:28.0983 0x0278 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:03:29.0061 0x0278 tdx - ok
20:03:29.0061 0x0278 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:03:29.0093 0x0278 TermDD - ok
20:03:29.0139 0x0278 [ E05E31F7BF577228E27CFFCA5B54ABBD, BF053DE7FA6DF33E15D0DD421F34962D92575ED163E4A605FE6B8DA9CEA5CF55 ] TermService C:\Windows\System32\termsrv.dll
20:03:29.0202 0x0278 TermService - ok
20:03:29.0217 0x0278 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
20:03:29.0280 0x0278 Themes - ok
20:03:29.0295 0x0278 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
20:03:29.0342 0x0278 THREADORDER - ok
20:03:29.0358 0x0278 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
20:03:29.0436 0x0278 TrkWks - ok
20:03:29.0483 0x0278 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:03:29.0576 0x0278 TrustedInstaller - ok
20:03:29.0607 0x0278 [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:03:29.0654 0x0278 tssecsrv - ok
20:03:29.0685 0x0278 [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:03:29.0717 0x0278 TsUsbFlt - ok
20:03:29.0717 0x0278 tsusbhub - ok
20:03:29.0732 0x0278 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:03:29.0779 0x0278 tunnel - ok
20:03:29.0810 0x0278 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:03:29.0841 0x0278 uagp35 - ok
20:03:29.0873 0x0278 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:03:29.0951 0x0278 udfs - ok
20:03:29.0982 0x0278 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:03:30.0060 0x0278 UI0Detect - ok
20:03:30.0075 0x0278 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:03:30.0107 0x0278 uliagpkx - ok
20:03:30.0122 0x0278 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
20:03:30.0185 0x0278 umbus - ok
20:03:30.0216 0x0278 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:03:30.0278 0x0278 UmPass - ok
20:03:30.0309 0x0278 [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService C:\Windows\System32\umrdp.dll
20:03:30.0356 0x0278 UmRdpService - ok
20:03:30.0387 0x0278 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
20:03:30.0481 0x0278 upnphost - ok
20:03:30.0497 0x0278 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:03:30.0575 0x0278 usbccgp - ok
20:03:30.0606 0x0278 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:03:30.0668 0x0278 usbcir - ok
20:03:30.0668 0x0278 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:03:30.0699 0x0278 usbehci - ok
20:03:30.0715 0x0278 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:03:30.0777 0x0278 usbhub - ok
20:03:30.0809 0x0278 [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:03:30.0855 0x0278 usbohci - ok
20:03:30.0887 0x0278 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:03:30.0918 0x0278 usbprint - ok
20:03:30.0965 0x0278 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:03:31.0011 0x0278 usbscan - ok
20:03:31.0027 0x0278 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:03:31.0089 0x0278 USBSTOR - ok
20:03:31.0105 0x0278 [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:03:31.0136 0x0278 usbuhci - ok
20:03:31.0152 0x0278 [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:03:31.0214 0x0278 usbvideo - ok
20:03:31.0230 0x0278 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
20:03:31.0277 0x0278 UxSms - ok
20:03:31.0277 0x0278 [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc C:\Windows\system32\lsass.exe
20:03:31.0308 0x0278 VaultSvc - ok
20:03:31.0339 0x0278 [ 534C6B89EAC808A6C0B98591D37CDF67, 5458E8B3CA2BED60CFD2AD2F2640A6C94C6D1D9B3D9B1A8CA9BE9F1B861B1AB1 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
20:03:31.0386 0x0278 VBoxAswDrv - ok
20:03:31.0401 0x0278 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:03:31.0433 0x0278 vdrvroot - ok
20:03:31.0464 0x0278 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
20:03:31.0573 0x0278 vds - ok
20:03:31.0589 0x0278 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:03:31.0635 0x0278 vga - ok
20:03:31.0651 0x0278 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:03:31.0698 0x0278 VgaSave - ok
20:03:31.0698 0x0278 VGPU - ok
20:03:31.0729 0x0278 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:03:31.0776 0x0278 vhdmp - ok
20:03:31.0776 0x0278 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
20:03:31.0807 0x0278 viaagp - ok
20:03:31.0823 0x0278 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:03:31.0885 0x0278 ViaC7 - ok
20:03:31.0901 0x0278 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
20:03:31.0932 0x0278 viaide - ok
20:03:31.0947 0x0278 [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:03:31.0994 0x0278 vmbus - ok
20:03:32.0010 0x0278 [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:03:32.0072 0x0278 VMBusHID - ok
20:03:32.0072 0x0278 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:03:32.0103 0x0278 volmgr - ok
20:03:32.0119 0x0278 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:03:32.0166 0x0278 volmgrx - ok
20:03:32.0181 0x0278 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:03:32.0228 0x0278 volsnap - ok
20:03:32.0244 0x0278 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:03:32.0291 0x0278 vsmraid - ok
20:03:32.0337 0x0278 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
20:03:32.0462 0x0278 VSS - ok
20:03:32.0509 0x0278 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:03:32.0556 0x0278 vwifibus - ok
20:03:32.0587 0x0278 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
20:03:32.0665 0x0278 W32Time - ok
20:03:32.0696 0x0278 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:03:32.0727 0x0278 WacomPen - ok
20:03:32.0743 0x0278 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:03:32.0821 0x0278 WANARP - ok
20:03:32.0821 0x0278 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:03:32.0868 0x0278 Wanarpv6 - ok
20:03:32.0946 0x0278 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:03:33.0039 0x0278 WatAdminSvc - ok
20:03:33.0117 0x0278 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
20:03:33.0242 0x0278 wbengine - ok
20:03:33.0273 0x0278 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:03:33.0351 0x0278 WbioSrvc - ok
20:03:33.0383 0x0278 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:03:33.0445 0x0278 wcncsvc - ok
20:03:33.0445 0x0278 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:03:33.0492 0x0278 WcsPlugInService - ok
20:03:33.0523 0x0278 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:03:33.0570 0x0278 Wd - ok
20:03:33.0585 0x0278 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:03:33.0648 0x0278 Wdf01000 - ok
20:03:33.0663 0x0278 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:03:33.0773 0x0278 WdiServiceHost - ok
20:03:33.0773 0x0278 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:03:33.0819 0x0278 WdiSystemHost - ok
20:03:33.0851 0x0278 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
20:03:33.0913 0x0278 WebClient - ok
20:03:33.0944 0x0278 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:03:34.0022 0x0278 Wecsvc - ok
20:03:34.0022 0x0278 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:03:34.0100 0x0278 wercplsupport - ok
20:03:34.0116 0x0278 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
20:03:34.0194 0x0278 WerSvc - ok
20:03:34.0194 0x0278 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:03:34.0256 0x0278 WfpLwf - ok
20:03:34.0272 0x0278 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:03:34.0365 0x0278 WIMMount - ok
20:03:34.0428 0x0278 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
20:03:34.0553 0x0278 WinDefend - ok
20:03:34.0568 0x0278 WinHttpAutoProxySvc - ok
20:03:34.0599 0x0278 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:03:34.0646 0x0278 Winmgmt - ok
20:03:34.0740 0x0278 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
20:03:34.0911 0x0278 WinRM - ok
20:03:34.0927 0x0278 [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:03:34.0989 0x0278 WinUsb - ok
20:03:35.0036 0x0278 [ F318A95329B60D487DB5CC392AB86978, 7DBD2DC7E76A1D6F0FA26411C1B410887D11B62390F1D162116ECB5A6A3CC622 ] WLAN(WLAN) C:\Windows\system32\DRIVERS\zd1211u.sys
20:03:35.0099 0x0278 WLAN(WLAN) - detected UnsignedFile.Multi.Generic ( 1 )
20:03:45.0239 0x0278 WLAN(WLAN) ( UnsignedFile.Multi.Generic ) - warning
20:03:59.0091 0x0278 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:03:59.0232 0x0278 Wlansvc - ok
20:03:59.0247 0x0278 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:03:59.0310 0x0278 WmiAcpi - ok
20:03:59.0341 0x0278 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:03:59.0403 0x0278 wmiApSrv - ok
20:03:59.0419 0x0278 [ C8F8AAC50B5B0BF821AB7D7126056B30, 9E392A6198B941FEBF3AE509626887C68457C7349866AB9B719B15FE52659C29 ] WMIService C:\Program Files\Acer\Empowering Technology\ePower\ePowerSvc.exe
20:03:59.0466 0x0278 WMIService - detected UnsignedFile.Multi.Generic ( 1 )
20:04:09.0481 0x0278 WMIService ( UnsignedFile.Multi.Generic ) - warning
20:04:12.0305 0x0278 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:04:12.0414 0x0278 WMPNetworkSvc - ok
20:04:12.0429 0x0278 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:04:12.0461 0x0278 WPCSvc - ok
20:04:12.0476 0x0278 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:04:12.0539 0x0278 WPDBusEnum - ok
20:04:12.0554 0x0278 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:04:12.0632 0x0278 ws2ifsl - ok
20:04:12.0648 0x0278 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\system32\wscsvc.dll
20:04:12.0695 0x0278 wscsvc - ok
20:04:12.0710 0x0278 WSearch - ok
20:04:12.0835 0x0278 [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv C:\Windows\system32\wuaueng.dll
20:04:12.0975 0x0278 wuauserv - ok
20:04:13.0069 0x0278 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:04:13.0131 0x0278 WudfPf - ok
20:04:13.0163 0x0278 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:04:13.0241 0x0278 WUDFRd - ok
20:04:13.0256 0x0278 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:04:13.0319 0x0278 wudfsvc - ok
20:04:13.0350 0x0278 [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc C:\Windows\System32\wwansvc.dll
20:04:13.0412 0x0278 WwanSvc - ok
20:04:13.0428 0x0278 ================ Scan global ===============================
20:04:13.0443 0x0278 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
20:04:13.0475 0x0278 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
20:04:13.0490 0x0278 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
20:04:13.0506 0x0278 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
20:04:13.0521 0x0278 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
20:04:13.0537 0x0278 [ Global ] - ok
20:04:13.0537 0x0278 ================ Scan MBR ==================================
20:04:13.0553 0x0278 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:04:14.0099 0x0278 \Device\Harddisk1\DR1 - ok
20:04:14.0114 0x0278 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
20:04:14.0239 0x0278 \Device\Harddisk2\DR2 - ok
20:04:14.0239 0x0278 ================ Scan VBR ==================================
20:04:14.0255 0x0278 [ D869A865DA803FD2730A3EE0D79CF21A ] \Device\Harddisk1\DR1\Partition1
20:04:14.0255 0x0278 \Device\Harddisk1\DR1\Partition1 - ok
20:04:14.0255 0x0278 [ BD7E9AA5EBE9B4C706DDCFFC1BF59424 ] \Device\Harddisk1\DR1\Partition2
20:04:14.0255 0x0278 \Device\Harddisk1\DR1\Partition2 - ok
20:04:14.0255 0x0278 [ F40EA450387A7EC78BD0200E6A88A7A0 ] \Device\Harddisk1\DR1\Partition3
20:04:14.0286 0x0278 \Device\Harddisk1\DR1\Partition3 - ok
20:04:14.0286 0x0278 [ 6D11A7DAAD7E2A4659571EF189F60A24 ] \Device\Harddisk2\DR2\Partition1
20:04:14.0379 0x0278 \Device\Harddisk2\DR2\Partition1 - ok
20:04:14.0379 0x0278 ================ Scan generic autorun ======================
20:04:14.0754 0x0278 [ 664B6D2D5C50500374D109C7750FC0C9, 0948FB9F1EA9C3C221668F641598036DDD73D495967F34871B3BF54A316B5CDC ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
20:04:15.0050 0x0278 RtHDVCpl - ok
20:04:15.0113 0x0278 [ 2F2DF068BED6E62E4C007DF7446B4F19, 96FE78E2B8BD067B7378ECDF1E74939C71EFFBF09B2C184361650DBF4ED0FCC3 ] C:\Windows\PLFSetI.exe
20:04:15.0159 0x0278 PLFSetI - detected UnsignedFile.Multi.Generic ( 1 )
20:04:25.0175 0x0278 PLFSetI ( UnsignedFile.Multi.Generic ) - warning
20:04:25.0175 0x0278 Force sending object to P2P due to detect: C:\Windows\PLFSetI.exe
20:04:28.0076 0x0278 Object send P2P result: true
20:04:31.0321 0x0278 [ 8895BE670D1D4BD478B16DD311273F4A, 1E4232658CBFFBF1E15B4D04891F1FF77CDFB8E520595DEEF59E7911FBDA98AC ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
20:04:31.0399 0x0278 SynTPEnh - ok
20:04:31.0415 0x0278 NvCplDaemon - ok
20:04:31.0493 0x0278 [ 57ECB45BEC6814479D5D341D19AC63DF, 4FD1F0B018804C16D9F376D5E255B0F48FDD15889A82854AE35FDBC3B55F1F7D ] C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
20:04:31.0602 0x0278 eAudio - detected UnsignedFile.Multi.Generic ( 1 )
20:04:41.0617 0x0278 eAudio ( UnsignedFile.Multi.Generic ) - warning
20:04:41.0617 0x0278 Force sending object to P2P due to detect: C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
20:04:44.0534 0x0278 Object send P2P result: true
20:04:47.0405 0x0278 [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
20:04:47.0451 0x0278 IAAnotif - ok
20:04:47.0451 0x0278 [ 9F35F5948217D601B0A881C9072FBE22, B7A1FC0F66E7214D75B242EEE4EBA52D1DDA0F060B43FE9A4E1AAA281A1703B3 ] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
20:04:47.0483 0x0278 IaNvSrv - ok
20:04:47.0748 0x0278 [ FFB8CB731D62EC434A552680E0F8EC1A, 7738881188FF99820F6FD667E32FE73E63260289188C449D3462F8B19C48D3FA ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
20:04:48.0263 0x0278 AvastUI.exe - ok
20:04:48.0294 0x0278 Waiting for KSN requests completion. In queue: 4
20:04:49.0308 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:50.0322 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:51.0336 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:52.0350 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:53.0364 0x0278 Waiting for KSN requests completion. In queue: 1
20:04:54.0456 0x0278 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
20:04:54.0471 0x0278 Win FW state via NFP2: enabled
20:04:57.0217 0x0278 ============================================================
20:04:57.0217 0x0278 Scan finished
20:04:57.0217 0x0278 ============================================================
20:04:57.0233 0x0458 Detected object count: 4
20:04:57.0233 0x0458 Actual detected object count: 4
20:05:46.0498 0x0458 WLAN(WLAN) ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 WLAN(WLAN) ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:05:46.0498 0x0458 WMIService ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 WMIService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:05:46.0498 0x0458 PLFSetI ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 PLFSetI ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:05:46.0498 0x0458 eAudio ( UnsignedFile.Multi.Generic ) - skipped by user
20:05:46.0498 0x0458 eAudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:06:36.0043 0x0828 Deinitialize success
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Takže: skúsil som spustiť MBAR, samozrejme - modrá obrazovka. Po reštarte som si musel dať silnejšie okuliare:
na C: je približne 30GB voľného miesta
pred chvíľou to bolo asi 4GB. Začínam vidieť čerešničky Vašej práce. Jupíííííí..
Nechcem predčasne ďakovať, ale predsa... ĎAKUJEM a čakám ďalšie pokyny.
EDIT: body obnovy sú fuč.
na C: je približne 30GB voľného miesta
pred chvíľou to bolo asi 4GB. Začínam vidieť čerešničky Vašej práce. Jupíííííí..
Nechcem predčasne ďakovať, ale predsa... ĎAKUJEM a čakám ďalšie pokyny.
EDIT: body obnovy sú fuč.
Naposledy upravil(a) yossarian2 dne 26 lis 2014 21:12, celkem upraveno 1 x.
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Zkuste spustit MBAR v nouzovem rezimu. Kdyz nepujde ani tam, dejte log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786
Zitra vstavam ve 3 do prace, takze jdu spat. Odpoledne pak sepisu skript pro OTL a smaznem par veci
Zitra vstavam ve 3 do prace, takze jdu spat. Odpoledne pak sepisu skript pro OTL a smaznem par veci
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
MBAR v núdzovom režime preskenoval - nič nenašiel. Prikladám log:
Malwarebytes Anti-Rootkit BETA 1.08.2.1001
www.malwarebytes.org
Database version: v2014.11.26.06
Windows 7 Service Pack 1 x86 NTFS (Safe Mode)
Internet Explorer 11.0.9600.17358
janka :: JANKA-PC [administrator]
26. 11. 2014 21:26:41
mbar-log-2014-11-26 (21-26-41).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 333521
Time elapsed: 9 minute(s), 19 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Malwarebytes Anti-Rootkit BETA 1.08.2.1001
www.malwarebytes.org
Database version: v2014.11.26.06
Windows 7 Service Pack 1 x86 NTFS (Safe Mode)
Internet Explorer 11.0.9600.17358
janka :: JANKA-PC [administrator]
26. 11. 2014 21:26:41
mbar-log-2014-11-26 (21-26-41).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 333521
Time elapsed: 9 minute(s), 19 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Odinstalujte MBAM (vsechny verze) a pouzijte i jejich cistic http://www.malwarebytes.org/mbam-clean.exe
Pak dejte ten log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786
Pak dejte ten log z RSIT http://forum.viry.cz/viewtopic.php?f=13&t=130786
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
MBAM vyčistený. MBAR ostal (zdá sa mi, že sa neinštaluje).
Log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by janka at 2014-11-27 15:52:46
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 30 GB (50%) free of 60 GB
Total RAM: 2046 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:25, on 27. 11. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Users\janka\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox 4.0 Beta 7\firefox.exe
C:\Program Files\Total Commander\TOTALCMD.EXE
C:\Users\janka\Desktop\RSIT.exe
C:\Program Files\trend micro\janka.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\nlssrv32.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Program Files\Acer\Empowering Technology\ePower\ePowerSvc.exe
--
End of file - 5258 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\janka\AppData\Roaming\Mozilla\Firefox\Profiles\n3ytitto.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox 4.0 Beta 7\extensions\
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
C:\Users\janka\AppData\Roaming\Mozilla\Firefox\Profiles\n3ytitto.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\janka\AppData\Roaming\Mozilla\Firefox\Profiles\n3ytitto.default\searchplugins\
duckduckgo.xml
facebook-search.xml
googletranslate.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-10-19 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-19 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-19 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-07-23 7625248]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-07-29 200704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-28 1557800]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-08-06 13797920]
"eAudio"=C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [2007-04-26 1286144]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-04 186904]
"IaNvSrv"=C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [2009-07-13 33304]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-21 5226600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Belkin Storage Manager]
C:\Program Files\Belkin Storage Manager\StorageManager.exe [2009-02-03 858624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-03-09 15872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^802.11b+g USB Wireless LAN Utility.lnk]
C:\PROGRA~1\WLAN\802~1.11B\ZDWlan.exe [2004-10-19 430080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-07-01 795936]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Empowering Technology Launcher.lnk - C:\Program Files\Acer\Empowering Technology\eAPLauncher.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-11-27 15:52:46 ----D---- C:\rsit
2014-11-27 01:36:11 ----D---- C:\Program Files\Mozilla Firefox 4.0 Beta 7
2014-11-26 21:25:20 ----A---- C:\Windows\ntbtlog.txt
2014-11-26 19:58:00 ----A---- C:\TDSSKiller.3.0.0.41_26.11.2014_19.58.00_log.txt
2014-11-26 19:25:58 ----A---- C:\ComboFix.txt
2014-11-26 19:18:56 ----SHD---- C:\$RECYCLE.BIN
2014-11-26 09:22:58 ----A---- C:\Windows\zip.exe
2014-11-26 09:22:58 ----A---- C:\Windows\SWSC.exe
2014-11-26 09:22:58 ----A---- C:\Windows\SWREG.exe
2014-11-26 09:22:58 ----A---- C:\Windows\sed.exe
2014-11-26 09:22:58 ----A---- C:\Windows\PEV.exe
2014-11-26 09:22:58 ----A---- C:\Windows\NIRCMD.exe
2014-11-26 09:22:58 ----A---- C:\Windows\MBR.exe
2014-11-26 09:22:58 ----A---- C:\Windows\grep.exe
2014-11-26 09:22:44 ----AD---- C:\Qoobox
2014-11-26 09:22:07 ----D---- C:\Windows\erdnt
2014-11-25 18:04:10 ----D---- C:\FRST
2014-11-25 14:43:21 ----D---- C:\AdwCleaner
2014-11-24 20:08:43 ----D---- C:\Config.Msi
2014-11-24 19:31:51 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-19 14:22:18 ----A---- C:\Windows\system32\aswBoot.exe
2014-11-19 14:22:15 ----A---- C:\Windows\avastSS.scr
======List of files/folders modified in the last 1 month======
2014-11-27 15:52:58 ----D---- C:\Windows\Prefetch
2014-11-27 15:52:49 ----D---- C:\Program Files\trend micro
2014-11-27 15:50:11 ----D---- C:\Windows\System32
2014-11-27 15:45:56 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-27 15:44:05 ----D---- C:\ProgramData
2014-11-27 15:44:04 ----D---- C:\Windows\system32\drivers
2014-11-27 15:38:08 ----D---- C:\Program Files
2014-11-27 01:37:11 ----D---- C:\Windows\Temp
2014-11-26 22:29:02 ----D---- C:\Windows\system32\config
2014-11-26 22:11:49 ----SHD---- C:\System Volume Information
2014-11-26 21:25:20 ----AD---- C:\Windows
2014-11-26 20:35:07 ----D---- C:\Windows\Minidump
2014-11-26 19:18:59 ----A---- C:\Windows\system.ini
2014-11-26 19:18:08 ----D---- C:\Windows\system32\drivers\etc
2014-11-26 19:09:38 ----D---- C:\Windows\AppPatch
2014-11-26 19:09:36 ----D---- C:\Program Files\Common Files
2014-11-26 11:43:27 ----D---- C:\Users\janka\AppData\Roaming\vlc
2014-11-24 20:20:07 ----D---- C:\Windows\winsxs
2014-11-24 20:17:05 ----D---- C:\Windows\Microsoft.NET
2014-11-24 20:17:04 ----RSD---- C:\Windows\assembly
2014-11-24 20:11:01 ----SHD---- C:\Windows\Installer
2014-11-24 20:10:52 ----D---- C:\ProgramData\Microsoft Help
2014-11-24 20:09:45 ----SD---- C:\ProgramData\Microsoft
2014-11-24 20:09:45 ----D---- C:\Program Files\Microsoft.NET
2014-11-24 20:09:45 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-24 20:09:40 ----RSD---- C:\Windows\Fonts
2014-11-24 20:09:21 ----D---- C:\Program Files\MSBuild
2014-11-24 20:09:18 ----D---- C:\Windows\system32\wbem
2014-11-24 20:08:09 ----D---- C:\Windows\ShellNew
2014-11-24 02:00:10 ----D---- C:\Program Files\Common Files\Adobe
2014-11-24 01:58:46 ----D---- C:\Program Files\Adobe
2014-11-24 01:49:52 ----D---- C:\ProgramData\Adobe
2014-11-23 22:41:10 ----D---- C:\Windows\Tasks
2014-11-23 18:44:16 ----D---- C:\Windows\inf
2014-11-23 18:44:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-19 19:10:54 ----D---- C:\Windows\pss
2014-11-19 14:37:46 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-19 14:22:23 ----D---- C:\Windows\system32\Tasks
2014-11-11 09:50:22 ----D---- C:\Program Files\Total Commander
2014-11-11 05:48:00 ----D---- C:\Windows\system32\catroot2
2014-11-04 14:30:58 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-19 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-19 206248]
R0 iaNvStor;Intel(R) Turbo Memory Controller; C:\Windows\system32\DRIVERS\iaNvStor.sys [2009-07-01 232472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-25 691696]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-19 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-22 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-21 423784]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-19 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-19 70384]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-19 91496]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2009-06-25 44544]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2009-06-25 38400]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-19 218192]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-07-23 2737248]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 nuvotoncir;Nuvoton IR Transceiver; C:\Windows\system32\DRIVERS\nuvotoncir.sys [2009-06-24 44544]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-28 228784]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-02 86056]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-02 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-02 18344]
S3 catchme;catchme; \??\C:\Users\janka\AppData\Local\Temp\catchme.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-05-26 101376]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 104648]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 14920]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 132424]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S3 WLAN(WLAN);802.11b+g USB Wireless LAN Adapter Driver(WLAN); C:\Windows\system32\DRIVERS\zd1211u.sys [2004-10-06 248320]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-19 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 582944]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\system32\nlssrv32.exe [2012-01-31 66560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-08-06 211488]
R2 WMIService;ePower Service; C:\Program Files\Acer\Empowering Technology\ePower\ePowerSvc.exe [2007-09-20 167936]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-19 3192344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-19 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-05-11 13080]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-27 114800]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-28 1343400]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Log z RSIT:
Logfile of random's system information tool 1.10 (written by random/random)
Run by janka at 2014-11-27 15:52:46
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 30 GB (50%) free of 60 GB
Total RAM: 2046 MB (54% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:53:25, on 27. 11. 2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17344)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Users\janka\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox 4.0 Beta 7\firefox.exe
C:\Program Files\Total Commander\TOTALCMD.EXE
C:\Users\janka\Desktop\RSIT.exe
C:\Program Files\trend micro\janka.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\system32\nlssrv32.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Program Files\Acer\Empowering Technology\ePower\ePowerSvc.exe
--
End of file - 5258 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\janka\AppData\Roaming\Mozilla\Firefox\Profiles\n3ytitto.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 15.0.0.223 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.25.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.0]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox 4.0 Beta 7\extensions\
{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
C:\Users\janka\AppData\Roaming\Mozilla\Firefox\Profiles\n3ytitto.default\extensions\
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
C:\Users\janka\AppData\Roaming\Mozilla\Firefox\Profiles\n3ytitto.default\searchplugins\
duckduckgo.xml
facebook-search.xml
googletranslate.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2014-10-19 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-19 586968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2014-10-19 172968]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-07-23 7625248]
"PLFSetI"=C:\Windows\PLFSetI.exe [2008-07-29 200704]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-08-28 1557800]
"NvCplDaemon"=C:\Windows\system32\NvCpl.dll [2009-08-06 13797920]
"eAudio"=C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [2007-04-26 1286144]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-04 186904]
"IaNvSrv"=C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe [2009-07-13 33304]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-11-21 5226600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Belkin Storage Manager]
C:\Program Files\Belkin Storage Manager\StorageManager.exe [2009-02-03 858624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UnlockerAssistant]
C:\Program Files\Unlocker\UnlockerAssistant.exe [2010-03-09 15872]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^802.11b+g USB Wireless LAN Utility.lnk]
C:\PROGRA~1\WLAN\802~1.11B\ZDWlan.exe [2004-10-19 430080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-07-01 795936]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Empowering Technology Launcher.lnk - C:\Program Files\Acer\Empowering Technology\eAPLauncher.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2014-11-27 15:52:46 ----D---- C:\rsit
2014-11-27 01:36:11 ----D---- C:\Program Files\Mozilla Firefox 4.0 Beta 7
2014-11-26 21:25:20 ----A---- C:\Windows\ntbtlog.txt
2014-11-26 19:58:00 ----A---- C:\TDSSKiller.3.0.0.41_26.11.2014_19.58.00_log.txt
2014-11-26 19:25:58 ----A---- C:\ComboFix.txt
2014-11-26 19:18:56 ----SHD---- C:\$RECYCLE.BIN
2014-11-26 09:22:58 ----A---- C:\Windows\zip.exe
2014-11-26 09:22:58 ----A---- C:\Windows\SWSC.exe
2014-11-26 09:22:58 ----A---- C:\Windows\SWREG.exe
2014-11-26 09:22:58 ----A---- C:\Windows\sed.exe
2014-11-26 09:22:58 ----A---- C:\Windows\PEV.exe
2014-11-26 09:22:58 ----A---- C:\Windows\NIRCMD.exe
2014-11-26 09:22:58 ----A---- C:\Windows\MBR.exe
2014-11-26 09:22:58 ----A---- C:\Windows\grep.exe
2014-11-26 09:22:44 ----AD---- C:\Qoobox
2014-11-26 09:22:07 ----D---- C:\Windows\erdnt
2014-11-25 18:04:10 ----D---- C:\FRST
2014-11-25 14:43:21 ----D---- C:\AdwCleaner
2014-11-24 20:08:43 ----D---- C:\Config.Msi
2014-11-24 19:31:51 ----D---- C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-19 14:22:18 ----A---- C:\Windows\system32\aswBoot.exe
2014-11-19 14:22:15 ----A---- C:\Windows\avastSS.scr
======List of files/folders modified in the last 1 month======
2014-11-27 15:52:58 ----D---- C:\Windows\Prefetch
2014-11-27 15:52:49 ----D---- C:\Program Files\trend micro
2014-11-27 15:50:11 ----D---- C:\Windows\System32
2014-11-27 15:45:56 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-11-27 15:44:05 ----D---- C:\ProgramData
2014-11-27 15:44:04 ----D---- C:\Windows\system32\drivers
2014-11-27 15:38:08 ----D---- C:\Program Files
2014-11-27 01:37:11 ----D---- C:\Windows\Temp
2014-11-26 22:29:02 ----D---- C:\Windows\system32\config
2014-11-26 22:11:49 ----SHD---- C:\System Volume Information
2014-11-26 21:25:20 ----AD---- C:\Windows
2014-11-26 20:35:07 ----D---- C:\Windows\Minidump
2014-11-26 19:18:59 ----A---- C:\Windows\system.ini
2014-11-26 19:18:08 ----D---- C:\Windows\system32\drivers\etc
2014-11-26 19:09:38 ----D---- C:\Windows\AppPatch
2014-11-26 19:09:36 ----D---- C:\Program Files\Common Files
2014-11-26 11:43:27 ----D---- C:\Users\janka\AppData\Roaming\vlc
2014-11-24 20:20:07 ----D---- C:\Windows\winsxs
2014-11-24 20:17:05 ----D---- C:\Windows\Microsoft.NET
2014-11-24 20:17:04 ----RSD---- C:\Windows\assembly
2014-11-24 20:11:01 ----SHD---- C:\Windows\Installer
2014-11-24 20:10:52 ----D---- C:\ProgramData\Microsoft Help
2014-11-24 20:09:45 ----SD---- C:\ProgramData\Microsoft
2014-11-24 20:09:45 ----D---- C:\Program Files\Microsoft.NET
2014-11-24 20:09:45 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-24 20:09:40 ----RSD---- C:\Windows\Fonts
2014-11-24 20:09:21 ----D---- C:\Program Files\MSBuild
2014-11-24 20:09:18 ----D---- C:\Windows\system32\wbem
2014-11-24 20:08:09 ----D---- C:\Windows\ShellNew
2014-11-24 02:00:10 ----D---- C:\Program Files\Common Files\Adobe
2014-11-24 01:58:46 ----D---- C:\Program Files\Adobe
2014-11-24 01:49:52 ----D---- C:\ProgramData\Adobe
2014-11-23 22:41:10 ----D---- C:\Windows\Tasks
2014-11-23 18:44:16 ----D---- C:\Windows\inf
2014-11-23 18:44:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-11-19 19:10:54 ----D---- C:\Windows\pss
2014-11-19 14:37:46 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2014-11-19 14:22:23 ----D---- C:\Windows\system32\Tasks
2014-11-11 09:50:22 ----D---- C:\Program Files\Total Commander
2014-11-11 05:48:00 ----D---- C:\Windows\system32\catroot2
2014-11-04 14:30:58 ----N---- C:\Windows\system32\MpSigStub.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2014-11-19 49944]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2014-11-19 206248]
R0 iaNvStor;Intel(R) Turbo Memory Controller; C:\Windows\system32\DRIVERS\iaNvStor.sys [2009-07-01 232472]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-25 691696]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2014-11-19 81768]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2014-11-22 787800]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2014-11-21 423784]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2014-11-19 24184]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2014-11-19 70384]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2014-11-19 91496]
R2 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2009-06-25 48128]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2009-06-25 44544]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2009-06-25 38400]
R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2014-11-19 218192]
R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-07-23 2737248]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 nuvotoncir;Nuvoton IR Transceiver; C:\Windows\system32\DRIVERS\nuvotoncir.sys [2009-06-24 44544]
R3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 84992]
R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-08-28 228784]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-02 86056]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-02 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-02 18344]
S3 catchme;catchme; \??\C:\Users\janka\AppData\Local\Temp\catchme.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys [2007-05-26 101376]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM); C:\Windows\system32\DRIVERS\s1018bus.sys [2009-03-25 86824]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter; C:\Windows\system32\DRIVERS\s1018mdfl.sys [2009-03-25 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver; C:\Windows\system32\DRIVERS\s1018mdm.sys [2009-03-25 114728]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM); C:\Windows\system32\DRIVERS\s1018mgmt.sys [2009-03-25 106208]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS); C:\Windows\system32\DRIVERS\s1018nd5.sys [2009-03-25 26024]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s1018obex.sys [2009-03-25 104744]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM); C:\Windows\system32\DRIVERS\s1018unic.sys [2009-03-25 109864]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2010-11-11 104648]
S3 sscdmdfl;SAMSUNG Mobile Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2010-11-11 14920]
S3 sscdmdm;SAMSUNG Mobile Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2010-11-11 132424]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
S3 WLAN(WLAN);802.11b+g USB Wireless LAN Adapter Driver(WLAN); C:\Windows\system32\DRIVERS\zd1211u.sys [2004-10-06 248320]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-11-19 50344]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 582944]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\system32\nlssrv32.exe [2012-01-31 66560]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2009-08-06 211488]
R2 WMIService;ePower Service; C:\Program Files\Acer\Empowering Technology\ePower\ePowerSvc.exe [2007-09-20 167936]
R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2014-11-19 3192344]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-19 267440]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 c2wts;@%ProgramFiles%\Windows Identity Foundation\v3.5\c2wtsres.dll,-1000; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [2010-05-11 13080]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-09-19 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-11-27 114800]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-28 1343400]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
-----------------EOF-----------------
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Napiste mi velikost adresare plochy (C:\Users\janka\Plocha)
Jestli bude Avast rvat, ze to chce otevrit v sandboxu, nedovolte to! Vyberte moznost Otevrit normalne Znovu spustte OTL jako spravceDo spodniho okna vlozte nasledujici text (vcetne te dvojtecky pred slovem commands)
Kód: Vybrat vše
:commands
[EMPTYTEMP]
[EMPTYFLASH]
[Purity]
[ClearAllRestorePoints]
:services
AdobeARMservice
AdobeFlashPlayerUpdateSvc
:files
%windir%\system32\*.tmp.dll /s
%windir%\system32\SET*.tmp /s
%windir%\*.tmp
C:\ProgramData\Malwarebytes' Anti-Malware (portable)
:otl
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-192176685-3027731864-3682753610-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKU\S-1-5-21-192176685-3027731864-3682753610-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
O8 - Extra context menu item: E&xportovať do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Od&oslať do programu OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
[2014/11/24 19:30:27 | 000,000,000 | ---D | C] -- C:\Users\janka\Desktop\mbar
[1 C:\Program Files\*.tmp files -> C:\Program Files\*.tmp -> ]
[2010/11/25 21:05:11 | 000,000,000 | ---D | M] -- C:\Users\janka\AppData\Roaming\ESET
[16 C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp files -> C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\*.tmp -> ]
@Alternate Data Stream - 6168 bytes -> C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh
Po restartu se objevi novy log, ten sem dejte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
desktop: 42,7MB
vratane adresára MBAR s programom a ostatné sú všetko aplikácie použité pri identifikácii problému.
Idem spusstiť OTL.
vratane adresára MBAR s programom a ostatné sú všetko aplikácie použité pri identifikácii problému.
Idem spusstiť OTL.
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
"opravit" je anglicky "Run Fix"?
možno stupídna otázka, ale nechcem niečo pokaziť. radšej sa opýtam.
možno stupídna otázka, ale nechcem niečo pokaziť. radšej sa opýtam.
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Anoyossarian2 píše:"opravit" je anglicky "Run Fix"?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Files\Folders moved on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Neprobehlo to jak melo. Zkuste to znovu, ale tentokrat v nouzovem rezimu.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
-
yossarian2
- Návštěvník
- Příspěvky: 48
- Registrován: 29 pro 2009 18:32
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
All processes killed
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: janka
->Temp folder emptied: 204800 bytes
->Temporary Internet Files folder emptied: 128 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 2248539 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 2,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default
User: Default User
User: janka
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
Unable to stop System Restore Service. Error code 1084. Restore points not cleared.
Unable to start System Restore Service. Error code 1084. Restore point not created.
========== SERVICES/DRIVERS ==========
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\ProgramData\Malwarebytes' Anti-Malware (portable) folder moved successfully.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-192176685-3027731864-3682753610-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-192176685-3027731864-3682753610-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportovať do programu Microsoft Excel\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Od&oslať do programu OneNote\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Users\janka\Desktop\mbar\Plugins folder moved successfully.
C:\Users\janka\Desktop\mbar\Languages folder moved successfully.
C:\Users\janka\Desktop\mbar\imageformats folder moved successfully.
C:\Users\janka\Desktop\mbar\Data\Configuration folder moved successfully.
C:\Users\janka\Desktop\mbar\Data folder moved successfully.
C:\Users\janka\Desktop\mbar folder moved successfully.
C:\Program Files\GUT4A0C.tmp deleted successfully.
C:\Users\janka\AppData\Roaming\ESET\ESET Smart Security\Antispam folder moved successfully.
C:\Users\janka\AppData\Roaming\ESET\ESET Smart Security folder moved successfully.
C:\Users\janka\AppData\Roaming\ESET folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1F33.tmp\Microsoft.Office.Tools.Common.v9.0.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1F33.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP208B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP455A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4B65.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP52A2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP74EB.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP785E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP787A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP867D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9F6B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA074.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBF72.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE90C.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFF9.tmp folder deleted successfully.
ADS C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 11272014_173212
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: janka
->Temp folder emptied: 204800 bytes
->Temporary Internet Files folder emptied: 128 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 2248539 bytes
->Flash cache emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 2,00 mb
[EMPTYFLASH]
User: Administrator
User: All Users
User: Default
User: Default User
User: janka
->Flash cache emptied: 0 bytes
User: Public
Total Flash Files Cleaned = 0,00 mb
Unable to stop System Restore Service. Error code 1084. Restore points not cleared.
Unable to start System Restore Service. Error code 1084. Restore point not created.
========== SERVICES/DRIVERS ==========
Service AdobeARMservice stopped successfully!
Service AdobeARMservice deleted successfully!
Service AdobeFlashPlayerUpdateSvc stopped successfully!
Service AdobeFlashPlayerUpdateSvc deleted successfully!
========== FILES ==========
File/Folder C:\Windows\system32\*.tmp.dll not found.
File/Folder C:\Windows\system32\SET*.tmp not found.
File/Folder C:\Windows\*.tmp not found.
C:\ProgramData\Malwarebytes' Anti-Malware (portable) folder moved successfully.
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-192176685-3027731864-3682753610-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_USERS\S-1-5-21-192176685-3027731864-3682753610-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\ not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\E&xportovať do programu Microsoft Excel\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Od&oslať do programu OneNote\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
C:\Users\janka\Desktop\mbar\Plugins folder moved successfully.
C:\Users\janka\Desktop\mbar\Languages folder moved successfully.
C:\Users\janka\Desktop\mbar\imageformats folder moved successfully.
C:\Users\janka\Desktop\mbar\Data\Configuration folder moved successfully.
C:\Users\janka\Desktop\mbar\Data folder moved successfully.
C:\Users\janka\Desktop\mbar folder moved successfully.
C:\Program Files\GUT4A0C.tmp deleted successfully.
C:\Users\janka\AppData\Roaming\ESET\ESET Smart Security\Antispam folder moved successfully.
C:\Users\janka\AppData\Roaming\ESET\ESET Smart Security folder moved successfully.
C:\Users\janka\AppData\Roaming\ESET folder moved successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1F33.tmp\Microsoft.Office.Tools.Common.v9.0.dll deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP1F33.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP208B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP455A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP4B65.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP52A2.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP5E64.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP74EB.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP785E.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP787A.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP8545.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP867D.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAP9F6B.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPA074.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPBF72.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPE90C.tmp folder deleted successfully.
C:\Windows\assembly\NativeImages_v2.0.50727_32\Temp\ZAPFF9.tmp folder deleted successfully.
ADS C:\Windows\PLA\System\System Diagnostics.xml:0v1ieca3Feahez0jAwxjjk5uRh deleted successfully.
OTL by OldTimer - Version 3.2.69.0 log created on 11272014_173212
Files\Folders moved on Reboot...
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Re: Prosim o pomoc - system "odkrajuje" týždenne 10GB z disk
Vymazte pripadne body obnovy (pokud nemate povolene vytvareni bodu obnovy, tak to povolte) http://forum.viry.cz/viewtopic.php?f=46 ... 0#p1020613
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)
Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat.
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.
Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) Prejmenujte ComboFix na Uninstall a spustte ho. CF by se mel odinstalovat. vyosek píše:
- Stahnete a spustte
- Pro potvrzeni volby mackejte A, Enter
- Po pouziti utilitu smazte
- Antiviry mohou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)
Stahnete OTC http://oldtimer.geekstogo.com/OTC.exe , ulozte a spustte.Kliknete na napis CleanUp a pote OK - Po uklidu dojde k restartu pc.
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler http://www.stahuj.centrum.cz/utility_a_ ... efraggler/
Pri instalaci opet pozor na toolbar
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak je na tom pc.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?