Prosím o kontrolu a pomoc při odstranění havěti

Zpráva

Max_cz · #31 Příspěvek od **Max_cz** » 23 srp 2012 16:51

Combo Fix log

ComboFix 12-08-22.03 - Zárubová 23.08.2012 18:35:35.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1789.1056 [GMT 2:00]
Spuštěný z: c:\documents and settings\Zßrubovß\Dokumenty\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\msmqinst.log
c:\windows\system32\SET5B.tmp
c:\windows\system32\SET5D.tmp
c:\windows\system32\SET61.tmp
c:\windows\system32\SET62.tmp
c:\windows\system32\SET69.tmp
c:\windows\system32\SET6B.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
C:\zip.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-23 do 2012-08-23 )))))))))))))))))))))))))))))))
.
.
2012-08-23 15:52 . 2012-08-23 15:52 29904 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\MpKsl78b09a25.sys
2012-08-23 04:11 . 2012-08-01 22:51 7023536 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\mpengine.dll
2012-08-22 00:16 . 2012-08-01 22:51 7023536 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-08-21 15:37 . 2012-08-23 15:48 574 ----a-w- C:\cleanup.bat
2012-08-21 15:37 . 2012-08-23 15:48 19286 ----a-w- C:\cleanup.exe
2012-08-20 12:51 . 2012-08-20 12:51 -------- d-----w- C:\rsit
2012-08-20 12:51 . 2012-08-20 12:51 -------- d-----w- c:\program files\trend micro
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-20 13:51 . 2012-08-20 13:51 2658 ----a-w- C:\RK_Quarantine.zip
2012-07-06 13:58 . 2007-08-07 14:14 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2007-08-07 14:28 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2007-08-07 14:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:38 . 2007-08-07 14:15 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2007-08-07 14:14 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2007-08-07 14:14 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2007-08-07 14:14 385024 ----a-w- c:\windows\system32\html.iec
2012-06-06 18:59 . 2012-06-06 18:59 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-06-05 15:49 . 2008-04-14 03:21 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2007-08-07 14:14 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2007-08-07 14:14 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2008-10-16 12:07 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2008-10-16 12:08 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2007-08-07 14:30 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2007-08-07 14:30 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2007-08-07 14:30 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2008-10-16 12:09 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2008-10-16 12:07 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2008-10-16 12:07 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2007-08-07 14:30 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2007-08-07 14:30 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2007-08-07 14:14 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2007-08-07 14:30 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2007-08-07 14:30 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2011-10-01 03:41 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2011-10-01 03:41 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2011-10-01 03:41 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2007-08-07 14:14 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-07-19 23:49 . 2012-07-15 05:51 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"="c:\program files\Nokia\Nokia Suite\NokiaSuite.exe" [2012-05-16 1084840]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2007-08-10 16384000]
"SiSPower"="SiSPower.dll" [2007-08-03 53248]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-05-10 864256]
"TouchPadHotKey"="c:\program files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe" [2007-08-13 364544]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb05.exe" [2002-07-10 188416]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-02-19 49152]
"TO2SSM_McciTrayApp"="c:\program files\TO2SSM\McciTrayApp.exe" [2009-01-16 1473536]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-07-09 229888]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2011-07-27 434080]
.
c:\documents and settings\Zárubová\Nabídka Start\Programy\Po spuštění\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2009-1-15 393216]
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
Rychlý začátek s aplikací HP Photosmart Premier.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2006-2-10 73728]
WirelessSelector.lnk - c:\program files\FSC\Wireless Utility\WirelessSelector.exe [2009-7-15 650752]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleilCS.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:Remote Desktop
"65533:TCP"= 65533:TCP:Services
"52344:TCP"= 52344:TCP:Services
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [21.1.2008 20:28 21512]
R1 MpKsl78b09a25;MpKsl78b09a25;c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\MpKsl78b09a25.sys [23.8.2012 17:52 29904]
R2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [4.6.2008 19:26 143467]
R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [21.1.2008 20:28 26248]
S3 djhf.sys;djhf.sys;\??\c:\windows\system32\drivers\djhf.sys --> c:\windows\system32\drivers\djhf.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [11.7.2012 17:20 113120]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MPKSL78B09A25
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-23 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2012-03-26 15:03]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.idnes.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\Office\Office12\EXCEL.EXE/3000
IE: Send by Bluetooth - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
IE: Send via &Message... - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Zárubová\Data aplikací\Mozilla\Firefox\Profiles\0js5c2on.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-TkBellExe - c:\program files\K-Lite Codec Pack\Real\Update_OB\realsched.exe
SafeBoot-WudfPf
SafeBoot-WudfRd
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-23 18:40
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2012-08-23 18:41:46
ComboFix-quarantined-files.txt 2012-08-23 16:41
.
Před spuštěním: Volných bajtů: 121 352 671 232
Po spuštění: Volných bajtů: 122 298 531 840
.
- - End Of File - - 78BDF4FF4FA35B9175B357AB476BBBAC

#32 Příspěvek od **vyosek** » 23 srp 2012 16:57

Pokud bud chtit CF nainstalovat Konyolu pro zotaveni, tak mu to odsouhlaste

Pokud nemate, tak presunte Combofix primo na disk c:\

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

KillAll::

FileLook::
c:\windows\system32\drivers\atapi.sys

File::
C:\cleanup.bat
C:\cleanup.exe

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"=-
"HP Software Update"=-
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"=-
"65533:TCP"=-
"52344:TCP"=-

Driver::
djhf.sys

Collect::
c:\windows\system32\drivers\djhf.sys

Rootkit::
c:\windows\system32\drivers\djhf.sys

ClearJavaCache::

Reboot::

Ulozte vytvoreny TXT jako CFScript.txt tez primo na c:\
Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci

Max_cz · #33 Příspěvek od **Max_cz** » 23 srp 2012 17:18

error

#34 Příspěvek od **vyosek** » 23 srp 2012 17:22

Mate nejak chybne pojmenovany skript

tady jsem Vam ho uploadnul http://leteckaposta.cz/337749939 takze jej stahnete a aplikujte

Max_cz · #35 Příspěvek od **Max_cz** » 23 srp 2012 17:28

CFScript.txt

Každopádně stažený jede a to měli stejné názvy i velikost

#36 Příspěvek od **vyosek** » 23 srp 2012 17:30

Mozna pripona tam haprovala

Max_cz · #37 Příspěvek od **Max_cz** » 23 srp 2012 17:38

combofix log

ComboFix 12-08-22.03 - Zárubová 23.08.2012 18:28:52.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1789.1096 [GMT 2:00]
Spuštěný z: C:\ComboFix.exe
Použité ovládací přepínače :: C:\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
FILE ::
"C:\cleanup.bat"
"C:\cleanup.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\cleanup.bat
C:\cleanup.exe
c:\windows\EventSystem.log
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\dllcache\dlimport.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_DJHF.SYS
-------\Service_djhf.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-23 do 2012-08-23 )))))))))))))))))))))))))))))))
.
.
2012-08-23 15:52 . 2012-08-23 15:52 29904 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\MpKsl78b09a25.sys
2012-08-23 04:11 . 2012-08-01 22:51 7023536 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\mpengine.dll
2012-08-22 00:16 . 2012-08-01 22:51 7023536 ----a-w- c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-08-20 12:51 . 2012-08-20 12:51 -------- d-----w- C:\rsit
2012-08-20 12:51 . 2012-08-20 12:51 -------- d-----w- c:\program files\trend micro
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-20 13:51 . 2012-08-20 13:51 2658 ----a-w- C:\RK_Quarantine.zip
2012-07-06 13:58 . 2007-08-07 14:14 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05 . 2007-08-07 14:28 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:22 . 2007-08-07 14:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:38 . 2007-08-07 14:15 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2007-08-07 14:14 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:38 . 2007-08-07 14:14 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05 . 2007-08-07 14:14 385024 ----a-w- c:\windows\system32\html.iec
2012-06-06 18:59 . 2012-06-06 18:59 1070152 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2012-06-05 15:49 . 2008-04-14 03:21 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2007-08-07 14:14 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2007-08-07 14:14 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2008-10-16 12:07 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2008-10-16 12:08 22552 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2007-08-07 14:30 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2007-08-07 14:30 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2007-08-07 14:30 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2008-10-16 12:09 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2008-10-16 12:07 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2008-10-16 12:07 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2007-08-07 14:30 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2007-08-07 14:30 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2007-08-07 14:14 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2007-08-07 14:30 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2007-08-07 14:30 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2011-10-01 03:41 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2011-10-01 03:41 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2011-10-01 03:41 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2007-08-07 14:14 602112 ----a-w- c:\windows\system32\crypt32.dll
2012-07-19 23:49 . 2012-07-15 05:51 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((((((((((((( Look )))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
--- c:\windows\system32\drivers\atapi.sys ---
Company: Microsoft Corporation
File Description: IDE/ATAPI Port Driver
File Version: 5.1.2600.5512 (xpsp.080413-2108)
Product Name: Microsoft® Windows® Operating System
Copyright: © Microsoft Corporation. All rights reserved.
Original Filename: atapi.sys
File size: 96512
Created time: 2004-08-03 22:59
Modified time: 2008-04-13 18:40
MD5: 9F3A2F5AA6875C72BF062C712CFA2674
SHA1: A719156E8AD67456556A02C34E762944234E7A44
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2007-08-10 16384000]
"SiSPower"="SiSPower.dll" [2007-08-03 53248]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-05-10 864256]
"TouchPadHotKey"="c:\program files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe" [2007-08-13 364544]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb05.exe" [2002-07-10 188416]
"TO2SSM_McciTrayApp"="c:\program files\TO2SSM\McciTrayApp.exe" [2009-01-16 1473536]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-07-09 229888]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2011-07-27 434080]
.
c:\documents and settings\Zárubová\Nabídka Start\Programy\Po spuštění\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2009-1-15 393216]
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2006-2-19 288472]
Rychlý začátek s aplikací HP Photosmart Premier.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2006-2-10 73728]
WirelessSelector.lnk - c:\program files\FSC\Wireless Utility\WirelessSelector.exe [2009-7-15 650752]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleilCS.exe"=
.
R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [21.1.2008 20:28 21512]
R1 MpKsl78b09a25;MpKsl78b09a25;c:\documents and settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\MpKsl78b09a25.sys [23.8.2012 17:52 29904]
R2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [4.6.2008 19:26 143467]
R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [21.1.2008 20:28 26248]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [11.7.2012 17:20 113120]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-23 c:\windows\Tasks\Microsoft Antimalware Scheduled Scan.job
- c:\program files\Microsoft Security Client\MpCmdRun.exe [2012-03-26 15:03]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.idnes.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\Office\Office12\EXCEL.EXE/3000
IE: Send by Bluetooth - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
IE: Send via &Message... - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\documents and settings\Zárubová\Data aplikací\Mozilla\Firefox\Profiles\0js5c2on.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - seznam.cz
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-08-23 18:34
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'explorer.exe'(2716)
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\BsMobileSDK.dll
c:\windows\system32\BsLangInDepRes.dll
c:\windows\system32\Bs2Res.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Motive\McciCMService.exe
c:\program files\OpenOffice.org 3\program\soffice.exe
c:\program files\OpenOffice.org 3\program\soffice.bin
c:\program files\HP\Digital Imaging\bin\hpqimzone.exe
c:\windows\system32\wscntfy.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\IVT Corporation\BlueSoleil\BsHelpCS.exe
.
**************************************************************************
.
Celkový čas: 2012-08-23 18:37:23 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-08-23 16:37
ComboFix2.txt 2012-08-23 16:41
ComboFix3.txt 2012-08-23 16:41
.
Před spuštěním: Volných bajtů: 122 304 548 864
Po spuštění: Volných bajtů: 122 213 376 000
.
- - End Of File - - 62FB996B39ED1112C16DDFE0829AE6DD

#38 Příspěvek od **vyosek** » 23 srp 2012 17:39

Udelejte prosim jeste sken RogueKillerem a TDSSKillerem a napiste co nas pacient

Max_cz · #39 Příspěvek od **Max_cz** » 23 srp 2012 17:49

RogueKiller

RogueKiller V7.6.6 [08/10/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Podpora: http://www.geekstogo.com/forum/files/fi ... guekiller/
Operační systém: Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v: Normální režim
Uživatel: Zárubová [Práva správce]
Mód: Kontrola -- Datum: 08/23/2012 18:40:58

¤¤¤ Škodlivé procesy: 0 ¤¤¤

¤¤¤ Záznamy Registrů: 1 ¤¤¤
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač: [NAHRÁNO] ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
127.0.0.1 localhost

¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS543216L9A300 +++++
--- User ---
[MBR] 466f0a9e3a5fecd8a25de2a39ee4cd88
[BSP] dcc679d2b750cc5052826061c97f540b : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 152617 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[3].txt >>
RKreport[1].txt ; RKreport[2].txt ; RKreport[3].txt

Max_cz · #40 Příspěvek od **Max_cz** » 23 srp 2012 17:51

TDSSKiller

18:45:40.0937 2052 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
18:45:44.0031 2052 ============================================================
18:45:44.0031 2052 Current date / time: 2012/08/23 18:45:44.0031
18:45:44.0031 2052 SystemInfo:
18:45:44.0031 2052
18:45:44.0031 2052 OS Version: 5.1.2600 ServicePack: 3.0
18:45:44.0031 2052 Product type: Workstation
18:45:44.0046 2052 ComputerName: ZARUBOVA_NT
18:45:44.0046 2052 UserName: Zárubová
18:45:44.0046 2052 Windows directory: C:\WINDOWS
18:45:44.0046 2052 System windows directory: C:\WINDOWS
18:45:44.0046 2052 Processor architecture: Intel x86
18:45:44.0046 2052 Number of processors: 2
18:45:44.0046 2052 Page size: 0x1000
18:45:44.0046 2052 Boot type: Normal boot
18:45:44.0046 2052 ============================================================
18:45:49.0390 2052 BG loaded
18:45:53.0046 2052 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:45:53.0250 2052 ============================================================
18:45:53.0250 2052 \Device\Harddisk0\DR0:
18:45:53.0250 2052 MBR partitions:
18:45:53.0250 2052 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1
18:45:53.0250 2052 ============================================================
18:45:53.0500 2052 C: <-> \Device\Harddisk0\DR0\Partition1
18:45:53.0500 2052 ============================================================
18:45:53.0500 2052 Initialize success
18:45:53.0500 2052 ============================================================
18:46:00.0578 3876 ============================================================
18:46:00.0578 3876 Scan started
18:46:00.0578 3876 Mode: Manual; SigCheck; TDLFS;
18:46:00.0578 3876 ============================================================
18:46:02.0750 3876 ================ Scan services =============================
18:46:03.0046 3876 Abiosdsk - ok
18:46:03.0125 3876 [ 6abb91494fe6c59089b9336452ab2ea3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
18:46:06.0078 3876 abp480n5 - ok
18:46:06.0125 3876 [ 4fe34f1f3126b61fcc6b2043aa8112c9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:46:06.0312 3876 ACPI - ok
18:46:06.0328 3876 [ afdff022a01f0b11c776f0860c3b282f ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:46:06.0453 3876 ACPIEC - ok
18:46:06.0484 3876 [ 9a11864873da202c996558b2106b0bbc ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
18:46:06.0625 3876 adpu160m - ok
18:46:06.0656 3876 [ 8bed39e3c35d6a489438b8141717a557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:46:06.0781 3876 aec - ok
18:46:06.0828 3876 [ 1e44bc1e83d8fd2305f8d452db109cf9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:46:06.0906 3876 AFD - ok
18:46:06.0968 3876 [ 03a7e0922acfe1b07d5db2eeb0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
18:46:07.0093 3876 agpCPQ - ok
18:46:07.0125 3876 [ c23ea9b5f46c7f7910db3eab648ff013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
18:46:07.0218 3876 Aha154x - ok
18:46:07.0250 3876 [ 19dd0fb48b0c18892f70e2e7d61a1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
18:46:07.0421 3876 aic78u2 - ok
18:46:07.0437 3876 [ b7fe594a7468aa0132deb03fb8e34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
18:46:07.0578 3876 aic78xx - ok
18:46:07.0640 3876 [ e0a6fa244b8624d78fe5ff6f56a33bae ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:46:07.0750 3876 Alerter - ok
18:46:07.0781 3876 [ 88842de939a827577bf24243699ac80a ] ALG C:\WINDOWS\System32\alg.exe
18:46:07.0906 3876 ALG - ok
18:46:07.0953 3876 [ 1140ab9938809700b46bb88e46d72a96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
18:46:08.0062 3876 AliIde - ok
18:46:08.0093 3876 [ cb08aed0de2dd889a8a820cd8082d83c ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
18:46:08.0218 3876 alim1541 - ok
18:46:08.0234 3876 [ 95b4fb835e28aa1336ceeb07fd5b9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
18:46:08.0375 3876 amdagp - ok
18:46:08.0406 3876 [ 3980814f8027d27ea003e2e3d9d4f604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
18:46:08.0515 3876 AmdK7 - ok
18:46:08.0578 3876 [ 79f5add8d24bd6893f2903a3e2f3fad6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
18:46:08.0640 3876 amsint - ok
18:46:08.0687 3876 [ 6b8e7a90e576d4fe308f97c69060a171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
18:46:08.0828 3876 AppMgmt - ok
18:46:08.0875 3876 [ 9108f38c07f4953ea4ee89243e787cad ] AR5211 C:\WINDOWS\system32\DRIVERS\ar5211.sys
18:46:08.0953 3876 AR5211 - ok
18:46:09.0000 3876 [ 62d318e9a0c8fc9b780008e724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
18:46:09.0156 3876 asc - ok
18:46:09.0171 3876 [ 69eb0cc7714b32896ccbfd5edcbea447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
18:46:09.0296 3876 asc3350p - ok
18:46:09.0312 3876 [ 5d8de112aa0254b907861e9e9c31d597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
18:46:09.0484 3876 asc3550 - ok
18:46:09.0562 3876 [ e1a1206a4fb19b675e947b29ccd25fba ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
18:46:09.0578 3876 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
18:46:09.0578 3876 aspnet_state - detected UnsignedFile.Multi.Generic (1)
18:46:09.0609 3876 [ b153affac761e7f5fcfa822b9c4e97bc ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:46:09.0734 3876 AsyncMac - ok
18:46:09.0765 3876 [ 9f3a2f5aa6875c72bf062c712cfa2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:46:09.0890 3876 atapi - ok
18:46:09.0906 3876 Atdisk - ok
18:46:09.0937 3876 [ 9916c1225104ba14794209cfa8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:46:10.0062 3876 Atmarpc - ok
18:46:10.0109 3876 [ de31b88962a8645dba5a37b993e7b0f1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:46:11.0015 3876 AudioSrv - ok
18:46:11.0062 3876 [ d9f724aa26c010a217c97606b160ed68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:46:11.0234 3876 audstub - ok
18:46:11.0265 3876 [ da1f27d85e0d1525f6621372e7b685e9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:46:11.0406 3876 Beep - ok
18:46:11.0531 3876 [ 19395d092fd85ddc2d9c7729cf5a2ac8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:46:11.0765 3876 BITS - ok
18:46:11.0906 3876 [ 3c0d557d62d35d2738f7daac323e35ab ] BlueSoleilCS C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
18:46:11.0937 3876 BlueSoleilCS ( UnsignedFile.Multi.Generic ) - warning
18:46:11.0937 3876 BlueSoleilCS - detected UnsignedFile.Multi.Generic (1)
18:46:12.0000 3876 [ 89e739bba5f636297ea5b5f811189e06 ] Browser C:\WINDOWS\System32\browser.dll
18:46:12.0046 3876 Browser - ok
18:46:12.0093 3876 [ 76762d169ffc6727359fd58c8fc00487 ] BsHelpCS C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
18:46:12.0109 3876 BsHelpCS ( UnsignedFile.Multi.Generic ) - warning
18:46:12.0109 3876 BsHelpCS - detected UnsignedFile.Multi.Generic (1)
18:46:12.0171 3876 [ 9c2600c566ba40953fdf4d886d47fb94 ] BsMobileCS C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
18:46:12.0171 3876 BsMobileCS ( UnsignedFile.Multi.Generic ) - warning
18:46:12.0171 3876 BsMobileCS - detected UnsignedFile.Multi.Generic (1)
18:46:12.0250 3876 [ 32ccf60f6e491a2a931a63e928677403 ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
18:46:12.0312 3876 BT - ok
18:46:12.0375 3876 [ 34031372274933839c842473623be5ee ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
18:46:12.0406 3876 Btcsrusb - ok
18:46:12.0437 3876 [ b279426e3c0c344893ed78a613a73bde ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
18:46:12.0656 3876 BthEnum - ok
18:46:12.0687 3876 [ fcf500c9e89e193e038dcfcdba6aa032 ] BtHidBus C:\WINDOWS\system32\Drivers\BtHidBus.sys
18:46:12.0734 3876 BtHidBus - ok
18:46:12.0750 3876 [ 80602b8746d3738f5886ce3d67ef06b6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
18:46:12.0890 3876 BthPan - ok
18:46:12.0968 3876 [ f338662a6c1fc11dd9508f6dff2c06a2 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
18:46:13.0078 3876 BTHPORT - ok
18:46:13.0140 3876 [ 70ca4b3f634c9dca200832f8da76e009 ] BthServ C:\WINDOWS\System32\bthserv.dll
18:46:13.0515 3876 BthServ - ok
18:46:13.0546 3876 [ 61364cd71ef63b0f038b7e9df00f1efa ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
18:46:13.0687 3876 BTHUSB - ok
18:46:13.0703 3876 catchme - ok
18:46:13.0718 3876 [ 90a673fc8e12a79afbed2576f6a7aaf9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
18:46:13.0875 3876 cbidf - ok
18:46:13.0906 3876 [ 90a673fc8e12a79afbed2576f6a7aaf9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:46:14.0031 3876 cbidf2k - ok
18:46:14.0062 3876 [ f3ec03299634490e97bbce94cd2954c7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
18:46:14.0140 3876 cd20xrnt - ok
18:46:14.0218 3876 [ c1b486a7658353d33a10cc15211a873b ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:46:14.0359 3876 Cdaudio - ok
18:46:14.0421 3876 [ c885b02847f5d2fd45a24e219ed93b32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:46:14.0546 3876 Cdfs - ok
18:46:14.0640 3876 [ 1f4260cc5b42272d71f79e570a27a4fe ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:46:14.0796 3876 Cdrom - ok
18:46:14.0812 3876 Changer - ok
18:46:14.0859 3876 [ e390dc1d7c461d7d56ec53402f329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:46:15.0031 3876 CiSvc - ok
18:46:15.0078 3876 [ 064507a8dfa8c5c7e2ffddd3e6f424fa ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:46:15.0234 3876 ClipSrv - ok
18:46:15.0281 3876 [ 0f6c187d38d98f8df904589a5f94d411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:46:15.0531 3876 CmBatt - ok
18:46:15.0593 3876 [ 964d0f042aca51d5644779eb9d9ee40f ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
18:46:15.0750 3876 CmdIde - ok
18:46:15.0781 3876 [ 6e4c9f21f0fae8940661144f41b13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:46:15.0937 3876 Compbatt - ok
18:46:15.0937 3876 COMSysApp - ok
18:46:16.0046 3876 [ 3ee529119eed34cd212a215e8c40d4b6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
18:46:16.0203 3876 Cpqarray - ok
18:46:16.0281 3876 [ f3ab0933cbd166d271992f411c27ccaf ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:46:16.0406 3876 CryptSvc - ok
18:46:16.0453 3876 [ e550e7418984b65a78299d248f0a7f36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
18:46:16.0656 3876 dac2w2k - ok
18:46:17.0031 3876 [ 683789caa3864eb46125ae86ff677d34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
18:46:17.0218 3876 dac960nt - ok
18:46:17.0328 3876 [ be27674d1cbc3214aec84b4336a38bbf ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:46:17.0453 3876 DcomLaunch - ok
18:46:17.0500 3876 [ 8c9a53e285ac5e6704844d0459ec85be ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:46:17.0703 3876 Dhcp - ok
18:46:17.0734 3876 [ 044452051f3e02e7963599fc8f4f3e25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:46:17.0859 3876 Disk - ok
18:46:17.0875 3876 dmadmin - ok
18:46:17.0921 3876 [ db5fd2bf5b07dc54bfcb3664ff05bd7c ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:46:18.0062 3876 dmboot - ok
18:46:18.0125 3876 [ fff1720af51171f32f1ead5cf71f2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:46:18.0250 3876 dmio - ok
18:46:18.0281 3876 [ e9317282a63ca4d188c0df5e09c6ac5f ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:46:18.0421 3876 dmload - ok
18:46:18.0531 3876 [ 2bfefe9e865655a76982f050450b9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:46:18.0656 3876 dmserver - ok
18:46:18.0671 3876 [ 8a208dfcf89792a484e76c40e5f50b45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:46:18.0796 3876 DMusic - ok
18:46:18.0843 3876 [ dfaa406bf19f4ee806a6f8d4342137f7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:46:18.0937 3876 Dnscache - ok
18:46:18.0984 3876 [ 4a3e2bd20157a0946751229e92eb8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:46:19.0093 3876 Dot3svc - ok
18:46:19.0125 3876 [ 40f3b93b4e5b0126f2f5c0a7a5e22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
18:46:19.0250 3876 dpti2o - ok
18:46:19.0281 3876 [ 8f5fcff8e8848afac920905fbd9d33c8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:46:19.0468 3876 drmkaud - ok
18:46:19.0531 3876 [ 0887d9c2be8d940778cad1e3b85f2a41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:46:19.0734 3876 EapHost - ok
18:46:19.0781 3876 [ a2a4912798f2be706abadd3d30800d16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:46:19.0890 3876 ERSvc - ok
18:46:19.0953 3876 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] Eventlog C:\WINDOWS\system32\services.exe
18:46:19.0968 3876 Eventlog - ok
18:46:20.0031 3876 [ a371f11ef07653591c8de26afb13ce7f ] EventSystem C:\WINDOWS\system32\es.dll
18:46:20.0078 3876 EventSystem - ok
18:46:20.0140 3876 [ 38d332a6d56af32635675f132548343e ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:46:20.0250 3876 Fastfat - ok
18:46:20.0296 3876 [ ee9a2b9ea968a792a053c9d1a86bf870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:46:20.0406 3876 FastUserSwitchingCompatibility - ok
18:46:20.0437 3876 [ 92cdd60b6730b9f50f6a1a0c1f8cdc81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
18:46:20.0687 3876 Fdc - ok
18:46:20.0734 3876 [ e9648254056bce81a85380c0c3647dc4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
18:46:20.0875 3876 FETNDIS - ok
18:46:20.0906 3876 [ ac366695a0796560aa37215ad5762aaf ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:46:21.0015 3876 Fips - ok
18:46:21.0046 3876 [ 9d27e7b80bfcdf1cdd9b555862d5e7f0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
18:46:21.0156 3876 Flpydisk - ok
18:46:21.0203 3876 [ b2cf4b0786f8212cb92ed2b50c6db6b0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:46:21.0968 3876 FltMgr - ok
18:46:22.0000 3876 [ 3e1e2bd4f39b0e2b7dc4f4d2bcc2779a ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:46:22.0234 3876 Fs_Rec - ok
18:46:22.0250 3876 [ 4e664d8541db4a66b73a24257e322e1f ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:46:22.0421 3876 Ftdisk - ok
18:46:22.0500 3876 [ 0a02c63c8b144bd8c86b103dee7c86a2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:46:22.0625 3876 Gpc - ok
18:46:22.0671 3876 [ 573c7d0a32852b48f3058cfd8026f511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:46:22.0812 3876 HDAudBus - ok
18:46:22.0906 3876 [ fcfe31fb75f8a6295b6b0af87a626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:46:23.0062 3876 helpsvc - ok
18:46:23.0109 3876 [ 00e25ee90166b3e1be6e74aebf858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
18:46:23.0265 3876 HidServ - ok
18:46:23.0296 3876 [ ccf82c5ec8a7326c3066de870c06daf1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:46:23.0468 3876 HidUsb - ok
18:46:23.0515 3876 [ 7a6b320928f86bc851530d63c82965d9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:46:23.0640 3876 hkmsvc - ok
18:46:23.0718 3876 [ b028377dea0546a5fcfba928a8aefae0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
18:46:23.0843 3876 hpn - ok
18:46:23.0890 3876 [ 30ca91e657cede2f95359d6ef186f650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:46:23.0984 3876 HPZid412 - ok
18:46:24.0000 3876 [ efd31afa752aa7c7bbb57bcbe2b01c78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:46:24.0031 3876 HPZipr12 - ok
18:46:24.0062 3876 [ 7ac43c38ca8fd7ed0b0a4466f753e06e ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:46:24.0125 3876 HPZius12 - ok
18:46:24.0171 3876 [ f80a415ef82cd06ffaf0d971528ead38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:46:24.0218 3876 HTTP - ok
18:46:24.0250 3876 [ 58fe2f2da3bc5573f4a35b3760d3125f ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:46:24.0406 3876 HTTPFilter - ok
18:46:24.0531 3876 [ 9368670bd426ebea5e8b18a62416ec28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
18:46:24.0734 3876 i2omgmt - ok
18:46:24.0765 3876 [ f10863bf1ccc290babd1a09188ae49e0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
18:46:24.0890 3876 i2omp - ok
18:46:24.0921 3876 [ c528e27945367191e7bae364930b6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:46:25.0046 3876 i8042prt - ok
18:46:25.0078 3876 [ fd7f9d74c2b35dbda400804a3f5ed5d8 ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
18:46:25.0093 3876 iaStor - ok
18:46:25.0140 3876 [ 083a052659f5310dd8b6a6cb05edcf8e ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:46:25.0250 3876 Imapi - ok
18:46:25.0312 3876 [ f7b93aafad33b2320954c17e26c8d361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:46:25.0437 3876 ImapiService - ok
18:46:25.0468 3876 [ 4a40e045faee58631fd8d91afc620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
18:46:25.0609 3876 ini910u - ok
18:46:26.0171 3876 [ 8f924588c272fdaa28cf31a9bbc21a72 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:46:26.0375 3876 IntcAzAudAddService - ok
18:46:26.0421 3876 [ 57d928e548b38502abba7a77a6eb7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
18:46:26.0578 3876 IntelIde - ok
18:46:26.0625 3876 [ 27b290d632af2cf3cf40bfddb7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:46:26.0828 3876 intelppm - ok
18:46:26.0843 3876 [ 3bb22519a194418d5fec05d800a19ad0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:46:27.0171 3876 Ip6Fw - ok
18:46:27.0203 3876 [ 731f22ba402ee4b62748adaf6363c182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:46:27.0343 3876 IpFilterDriver - ok
18:46:27.0343 3876 [ b87ab476dcf76e72010632b5550955f5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:46:27.0546 3876 IpInIp - ok
18:46:27.0593 3876 [ cc748ea12c6effde940ee98098bf96bb ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:46:27.0703 3876 IpNat - ok
18:46:27.0734 3876 [ 23c74d75e36e7158768dd63d92789a91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:46:27.0843 3876 IPSec - ok
18:46:27.0906 3876 [ c93c9ff7b04d772627a3646d89f7bf89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:46:28.0015 3876 IRENUM - ok
18:46:28.0062 3876 [ cc9f8a2d60aed1a51a3ac34c59b987ae ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:46:28.0171 3876 isapnp - ok
18:46:28.0218 3876 [ d53d7ed7d85a18b0cd4626b88b6da52a ] IvtBtBUs C:\WINDOWS\system32\Drivers\IvtBtBus.sys
18:46:28.0234 3876 IvtBtBUs - ok
18:46:28.0250 3876 [ 1b6162fe7f66b1a71a4b70f941c4aa9b ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:46:28.0375 3876 Kbdclass - ok
18:46:28.0390 3876 [ 86c8f23616c6c6e5b2776901c17b945b ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:46:28.0500 3876 kbdhid - ok
18:46:28.0578 3876 [ 692bcf44383d056aed41b045a323d378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:46:28.0703 3876 kmixer - ok
18:46:28.0718 3876 [ b467646c54cc746128904e1654c750c1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:46:28.0828 3876 KSecDD - ok
18:46:28.0875 3876 [ 3428e8f86f8add36b42fb23542c7b3e4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:46:28.0921 3876 lanmanserver - ok
18:46:28.0968 3876 [ 936c1d110232d23b621cb0196e4f80f0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:46:29.0015 3876 lanmanworkstation - ok
18:46:29.0031 3876 lbrtfdc - ok
18:46:29.0093 3876 [ 0ab159f536e3e8f7f07113702a07cca5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:46:29.0296 3876 LmHosts - ok
18:46:29.0390 3876 [ 4f74184920b2d6e33024409b4c5c57c1 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
18:46:29.0406 3876 McciCMService ( UnsignedFile.Multi.Generic ) - warning
18:46:29.0406 3876 McciCMService - detected UnsignedFile.Multi.Generic (1)
18:46:29.0453 3876 [ 221cd1c815b8a6b79389c3f5d1018de8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:46:29.0640 3876 Messenger - ok
18:46:29.0718 3876 [ 4ae068242760a1fb6e1a44bf4e16afa6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:46:29.0890 3876 mnmdd - ok
18:46:29.0937 3876 [ 9a57d046f88f4b69751b11fd40088a61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:46:30.0125 3876 mnmsrvc - ok
18:46:30.0218 3876 [ 44032b0c6d9954d3fd26438330b99ee7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:46:30.0390 3876 Modem - ok
18:46:30.0406 3876 [ 4cb582831dbde63ce43b45d771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:46:30.0609 3876 Mouclass - ok
18:46:30.0718 3876 [ bb269eba740737ab749b214d568b6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:46:30.0921 3876 mouhid - ok
18:46:30.0984 3876 [ a80b9a0bad1b73637dbcbba7df72d3fd ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:46:31.0171 3876 MountMgr - ok
18:46:31.0265 3876 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:46:31.0359 3876 MozillaMaintenance - ok
18:46:31.0406 3876 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
18:46:31.0437 3876 MpFilter - ok
18:46:31.0453 3876 [ 3f4bb95e5a44f3be34824e8e7caf0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
18:46:31.0593 3876 mraid35x - ok
18:46:31.0625 3876 [ 9bd4dcb5412921864a7aacdedfbd1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
18:46:31.0671 3876 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
18:46:31.0671 3876 MREMP50 - detected UnsignedFile.Multi.Generic (1)
18:46:31.0687 3876 MREMP50a64 - ok
18:46:31.0703 3876 MREMPR5 - ok
18:46:31.0718 3876 MRENDIS5 - ok
18:46:31.0765 3876 [ 07c02c892e8e1a72d6bf35004f0e9c5e ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
18:46:31.0781 3876 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
18:46:31.0781 3876 MRESP50 - detected UnsignedFile.Multi.Generic (1)
18:46:31.0781 3876 MRESP50a64 - ok
18:46:31.0890 3876 [ 11d42bb6206f33fbb3ba0288d3ef81bd ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:46:32.0031 3876 MRxDAV - ok
18:46:32.0171 3876 [ 7d304a5eb4344ebeeab53a2fe3ffb9f0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:46:32.0625 3876 MRxSmb - ok
18:46:32.0687 3876 [ 6db4d1521caba9a5ffab54ade0ae867d ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:46:32.0906 3876 MSDTC - ok
18:46:32.0953 3876 [ c941ea2454ba8350021d774daf0f1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:46:33.0062 3876 Msfs - ok
18:46:33.0078 3876 MSIServer - ok
18:46:33.0109 3876 [ d1575e71568f4d9e14ca56b7b0453bf1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:46:33.0234 3876 MSKSSRV - ok
18:46:33.0312 3876 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:46:33.0328 3876 MsMpSvc - ok
18:46:33.0359 3876 [ 325bb26842fc7ccc1fcce2c457317f3e ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:46:33.0468 3876 MSPCLOCK - ok
18:46:33.0515 3876 [ bad59648ba099da4a17680b39730cb3d ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:46:33.0656 3876 MSPQM - ok
18:46:33.0687 3876 [ af5f4f3f14a8ea2c26de30f7a1e17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:46:33.0843 3876 mssmbios - ok
18:46:33.0890 3876 [ de6a75f5c270e756c5508d94b6cf68f5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:46:33.0937 3876 Mup - ok
18:46:34.0000 3876 [ 6ea362e9db03d44f6b996f4d8be237e9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:46:34.0109 3876 napagent - ok
18:46:34.0156 3876 [ 1df7f42665c94b825322fae71721130d ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:46:34.0281 3876 NDIS - ok
18:46:34.0328 3876 [ 0109c4f3850dfbab279542515386ae22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:46:34.0437 3876 NdisTapi - ok
18:46:34.0484 3876 [ f927a4434c5028758a842943ef1a3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:46:34.0640 3876 Ndisuio - ok
18:46:34.0656 3876 [ edc1531a49c80614b2cfda43ca8659ab ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:46:34.0812 3876 NdisWan - ok
18:46:34.0859 3876 [ 9282bd12dfb069d3889eb3fcc1000a9b ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:46:34.0890 3876 NDProxy - ok
18:46:34.0921 3876 [ 5d81cf9a2f1a3a756b66cf684911cdf0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:46:35.0031 3876 NetBIOS - ok
18:46:35.0078 3876 [ 74b2b2f5bea5e9a3dc021d685551bd3d ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:46:35.0187 3876 NetBT - ok
18:46:35.0296 3876 [ 933de774986ec85e48210c44ab431de6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:46:35.0421 3876 NetDDE - ok
18:46:35.0437 3876 [ 933de774986ec85e48210c44ab431de6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:46:35.0546 3876 NetDDEdsdm - ok
18:46:35.0578 3876 [ ed0a176354487ceed65b80a7148ab739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:46:35.0687 3876 Netlogon - ok
18:46:35.0734 3876 [ 72e1e9e2977be08bdeedb6d8fd9d4d40 ] Netman C:\WINDOWS\System32\netman.dll
18:46:35.0859 3876 Netman - ok
18:46:35.0890 3876 [ 39ee7c3bfbc64ba87cc8cf67386e814c ] Nla C:\WINDOWS\System32\mswsock.dll
18:46:35.0906 3876 Nla - ok
18:46:35.0921 3876 [ 3182d64ae053d6fb034f44b6def8034a ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:46:36.0046 3876 Npfs - ok
18:46:36.0109 3876 [ 78a08dd6a8d65e697c18e1db01c5cdca ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:46:36.0312 3876 Ntfs - ok
18:46:36.0343 3876 [ ed0a176354487ceed65b80a7148ab739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:46:36.0453 3876 NtLmSsp - ok
18:46:36.0500 3876 [ 023dd70573d644f3d9c8b1258a7bfd08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:46:36.0656 3876 NtmsSvc - ok
18:46:36.0718 3876 [ 73c1e1f395918bc2c6dd67af7591a3ad ] Null C:\WINDOWS\system32\drivers\Null.sys
18:46:36.0859 3876 Null - ok
18:46:36.0890 3876 [ b305f3fad35083837ef46a0bbce2fc57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:46:37.0031 3876 NwlnkFlt - ok
18:46:37.0046 3876 [ c99b3415198d1aab7227f2c88fd664b9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:46:37.0187 3876 NwlnkFwd - ok
18:46:37.0343 3876 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:46:37.0375 3876 odserv - ok
18:46:37.0421 3876 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:46:37.0437 3876 ose - ok
18:46:37.0468 3876 [ 46f8db73b4a53e543f8e371dc7c75bae ] Parport C:\WINDOWS\system32\drivers\Parport.sys
18:46:37.0593 3876 Parport - ok
18:46:37.0656 3876 [ beb3ba25197665d82ec7065b724171c6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:46:38.0031 3876 PartMgr - ok
18:46:38.0062 3876 [ 1fae19d0457176318bba4a8795656ebc ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:46:38.0203 3876 ParVdm - ok
18:46:38.0296 3876 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
18:46:38.0343 3876 pccsmcfd - ok
18:46:38.0359 3876 [ 6ce351d149cb4befc702951e471e1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:46:38.0484 3876 PCI - ok
18:46:38.0500 3876 PCIDump - ok
18:46:38.0515 3876 [ 2da4ec85e0ea7a45c6b2a05820492d5a ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:46:38.0656 3876 PCIIde - ok
18:46:38.0671 3876 [ 4fc31e6c19a5ce5198b1abff94cae758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:46:38.0812 3876 Pcmcia - ok
18:46:38.0828 3876 PDCOMP - ok
18:46:38.0843 3876 PDFRAME - ok
18:46:38.0859 3876 PDRELI - ok
18:46:38.0875 3876 PDRFRAME - ok
18:46:38.0906 3876 [ 6c14b9c19ba84f73d3a86dba11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
18:46:39.0015 3876 perc2 - ok
18:46:39.0031 3876 [ f50f7c27f131afe7beba13e14a3b9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
18:46:39.0171 3876 perc2hib - ok
18:46:39.0265 3876 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:46:39.0296 3876 PlugPlay - ok
18:46:39.0359 3876 [ 2d091a99624fb9e7eef0a86d872ec0c3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
18:46:39.0375 3876 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:46:39.0375 3876 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:46:39.0375 3876 [ ed0a176354487ceed65b80a7148ab739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:46:39.0484 3876 PolicyAgent - ok
18:46:39.0593 3876 [ efeec01b1d3cf84f16ddd24d9d9d8f99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:46:39.0718 3876 PptpMiniport - ok
18:46:39.0718 3876 [ ed0a176354487ceed65b80a7148ab739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:46:39.0859 3876 ProtectedStorage - ok
18:46:39.0875 3876 [ 09298ec810b07e5d582cb3a3f9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:46:40.0000 3876 PSched - ok
18:46:40.0031 3876 [ 80d317bd1c3dbc5d4fe7b1678c60cadd ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:46:40.0156 3876 Ptilink - ok
18:46:40.0203 3876 [ 0457e25bb122b854e267cf552dcdc370 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:46:40.0203 3876 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
18:46:40.0203 3876 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
18:46:40.0234 3876 [ 0a63fb54039eb5662433caba3b26dba7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
18:46:40.0375 3876 ql1080 - ok
18:46:40.0390 3876 [ 6503449e1d43a0ff0201ad5cb1b8c706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
18:46:40.0515 3876 Ql10wnt - ok
18:46:40.0531 3876 [ 156ed0ef20c15114ca097a34a30d8a01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
18:46:40.0656 3876 ql12160 - ok
18:46:40.0671 3876 [ 70f016bebde6d29e864c1230a07cc5e6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
18:46:40.0812 3876 ql1240 - ok
18:46:40.0828 3876 [ 907f0aeea6bc451011611e732bd31fcf ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
18:46:40.0953 3876 ql1280 - ok
18:46:40.0984 3876 [ fe0d99d6f31e4fad8159f690d68ded9c ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:46:41.0109 3876 RasAcd - ok
18:46:41.0187 3876 [ 2b5e44ea009f2f374b980e1e9a70635d ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:46:41.0312 3876 RasAuto - ok
18:46:41.0343 3876 [ 11b4a627bc9614b885c4969bfa5ff8a6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:46:41.0453 3876 Rasl2tp - ok
18:46:41.0500 3876 [ d57554c664b64604bd1ee13ea2c07e77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:46:41.0625 3876 RasMan - ok
18:46:41.0640 3876 [ 5bc962f2654137c9909c3d4603587dee ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:46:41.0765 3876 RasPppoe - ok
18:46:41.0781 3876 [ fdbb1d60066fcfbb7452fd8f9829b242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:46:41.0906 3876 Raspti - ok
18:46:41.0984 3876 [ 7ad224ad1a1437fe28d89cf22b17780a ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:46:42.0093 3876 Rdbss - ok
18:46:42.0125 3876 [ 4912d5b403614ce99c28420f75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:46:42.0265 3876 RDPCDD - ok
18:46:42.0312 3876 [ 15cabd0f7c00c47c70124907916af3f1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:46:42.0421 3876 rdpdr - ok
18:46:42.0484 3876 [ 43af5212bd8fb5ba6eed9754358bd8f7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:46:42.0578 3876 RDPWD - ok
18:46:42.0625 3876 [ c0d9d9711cb74ee9bc66353d8cbdab0e ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:46:42.0750 3876 RDSessMgr - ok
18:46:42.0765 3876 [ 611bfd220305be3a85ae876ea47d4aa5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:46:42.0890 3876 redbook - ok
18:46:42.0968 3876 [ 127c26b5371651043450e52542099aba ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:46:43.0218 3876 RemoteAccess - ok
18:46:43.0250 3876 [ 8f31505484a190d5b22274708799f4ec ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
18:46:43.0359 3876 RemoteRegistry - ok
18:46:43.0390 3876 [ 851c30df2807fcfa21e4c681a7d6440e ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
18:46:43.0515 3876 RFCOMM - ok
18:46:43.0562 3876 [ d8b0b4ade32574b2d9c5cc34dc0dbbe7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
18:46:43.0687 3876 ROOTMODEM - ok
18:46:43.0750 3876 [ 718b3bdc0bc3c2f7d065a53d26202af9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:46:43.0859 3876 RpcLocator - ok
18:46:43.0906 3876 [ be27674d1cbc3214aec84b4336a38bbf ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:46:43.0968 3876 RpcSs - ok
18:46:44.0015 3876 [ 09ab2e71e58b078038e3bfdba7ffc984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:46:44.0187 3876 RSVP - ok
18:46:44.0281 3876 [ 0dbcc071a268e0340a2ba6bdd98bace4 ] S3SavageNB C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
18:46:44.0421 3876 S3SavageNB - ok
18:46:44.0437 3876 [ ed0a176354487ceed65b80a7148ab739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:46:44.0578 3876 SamSs - ok
18:46:44.0687 3876 [ 410046e401eb11e1e6749e9deea41d4a ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:46:44.0828 3876 SCardSvr - ok
18:46:44.0859 3876 [ 3ff232a7731621b8902d81d42418c93c ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:46:45.0015 3876 Schedule - ok
18:46:45.0046 3876 [ 90a3935d05b494a5a39d37e71f09a677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:46:45.0203 3876 Secdrv - ok
18:46:45.0234 3876 [ 477e2c3cc5e4a0d635bcb0ea8dcac3c6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:46:45.0343 3876 seclogon - ok
18:46:45.0375 3876 [ a530b75c10c23c9ab28fdb6ce719e21f ] SENS C:\WINDOWS\system32\sens.dll
18:46:45.0500 3876 SENS - ok
18:46:45.0531 3876 [ b842729337c9b921615c40d3c1a1af96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
18:46:45.0625 3876 Serial - ok
18:46:45.0734 3876 [ c15b813f2fdb44f87f23312472c6e790 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
18:46:45.0765 3876 ServiceLayer - ok
18:46:45.0812 3876 [ 8e6b8c671615d126fdc553d1e2de5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:46:45.0921 3876 Sfloppy - ok
18:46:45.0984 3876 [ f58faca9621d2db01bd0927d9a0a208e ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:46:46.0140 3876 SharedAccess - ok
18:46:46.0156 3876 [ ee9a2b9ea968a792a053c9d1a86bf870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:46:46.0187 3876 ShellHWDetection - ok
18:46:46.0187 3876 Simbad - ok
18:46:46.0250 3876 [ 69611b2ffa1c48b7dfe86c8c12500ddb ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
18:46:46.0296 3876 SiS315 - ok
18:46:46.0343 3876 [ ded793c377fa132912b4381043a4d554 ] SiSGbeXP C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys
18:46:46.0375 3876 SiSGbeXP - ok
18:46:46.0421 3876 [ b701c7f3c816e9d72f733e792df6bf0a ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
18:46:46.0453 3876 SiSkp - ok
18:46:46.0484 3876 [ 83c0f71f86d3bdaf915685f3d568b20e ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
18:46:46.0593 3876 Sparrow - ok
18:46:46.0609 3876 [ ab8b92451ecb048a4d1de7c3ffcb4a9f ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:46:46.0765 3876 splitter - ok
18:46:46.0812 3876 [ 60784f891563fb1b767f70117fc2428f ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:46:46.0890 3876 Spooler - ok
18:46:46.0906 3876 [ 94610c8653635e4459316a0050d55ce7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:46:47.0093 3876 sr - ok
18:46:47.0156 3876 [ 35b91147124f64ac8081a2edb9ea4dee ] srservice C:\WINDOWS\system32\srsvc.dll
18:46:47.0328 3876 srservice - ok
18:46:47.0359 3876 [ 47ddfc2f003f7f9f0592c6874962a2e7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:46:47.0421 3876 Srv - ok
18:46:47.0453 3876 [ becd5271dc4e3b7c3d035f790fcbc1e5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:46:47.0578 3876 SSDPSRV - ok
18:46:47.0625 3876 [ c1cdd9275f6a115bb0ae1d55d8d27ba6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:46:47.0765 3876 stisvc - ok
18:46:47.0812 3876 [ 3941d127aef12e93addf6fe6ee027e0f ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:46:47.0937 3876 swenum - ok
18:46:47.0984 3876 [ 8ce882bcc6cf8a62f2b2323d95cb3d01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:46:48.0093 3876 swmidi - ok
18:46:48.0109 3876 SwPrv - ok
18:46:48.0171 3876 [ 1ff3217614018630d0a6758630fc698c ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
18:46:48.0406 3876 symc810 - ok
18:46:48.0406 3876 [ 070e001d95cf725186ef8b20335f933c ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
18:46:48.0562 3876 symc8xx - ok
18:46:48.0578 3876 [ 80ac1c4abbe2df3b738bf15517a51f2c ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
18:46:48.0703 3876 sym_hi - ok
18:46:48.0718 3876 [ bf4fab949a382a8e105f46ebb4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
18:46:48.0843 3876 sym_u3 - ok
18:46:48.0875 3876 [ 76d8be42d50455c7c8446b8ff1bfb9e0 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:46:48.0906 3876 SynTP - ok
18:46:48.0953 3876 [ 8b83f3ed0f1688b4958f77cd6d2bf290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:46:49.0078 3876 sysaudio - ok
18:46:49.0109 3876 [ ce06f01b88ace199a1bf460cac29c110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:46:49.0234 3876 SysmonLog - ok
18:46:49.0281 3876 [ c2546cd7a398476f9df5614b2ae160e8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:46:49.0406 3876 TapiSrv - ok
18:46:49.0468 3876 [ 9aefa14bd6b182d61e3119fa5f436d3d ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:46:49.0500 3876 Tcpip - ok
18:46:49.0546 3876 [ 6471a66807f5e104e4885f5b67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:46:49.0671 3876 TDPIPE - ok
18:46:49.0718 3876 [ c56b6d0402371cf3700eb322ef3aaf61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:46:49.0843 3876 TDTCP - ok
18:46:49.0875 3876 [ 88155247177638048422893737429d9e ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:46:50.0031 3876 TermDD - ok
18:46:50.0109 3876 [ a75dd6fc3dbee4fff5ebc9f2c28bb66e ] TermService C:\WINDOWS\System32\termsrv.dll
18:46:50.0265 3876 TermService - ok
18:46:50.0296 3876 [ ee9a2b9ea968a792a053c9d1a86bf870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:46:50.0312 3876 Themes - ok
18:46:50.0375 3876 [ cd0cc7b167d78043a41c98d4921efb54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
18:46:50.0531 3876 TlntSvr - ok
18:46:50.0562 3876 [ fd4fd7d6fda5c019ed86025d7be1510f ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
18:46:50.0781 3876 TosIde - ok
18:46:50.0812 3876 [ 38853304ccb938d30e0c4cde8d2c2a8a ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:46:50.0921 3876 TrkWks - ok
18:46:50.0984 3876 [ d85938f272d1bcf3db3a31fc0a048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
18:46:51.0093 3876 uagp35 - ok
18:46:51.0140 3876 [ 5787b80c2e3c5e2f56c2a233d91fa2c9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:46:51.0265 3876 Udfs - ok
18:46:51.0296 3876 [ 1b698a51cd528d8da4ffaed66dfc51b9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
18:46:51.0359 3876 ultra - ok
18:46:51.0406 3876 [ 402ddc88356b1bac0ee3dd1580c76a31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:46:51.0515 3876 Update - ok
18:46:51.0562 3876 [ 651bd90dcee5b7bdc74a2eb7c9266f9e ] upnphost C:\WINDOWS\System32\upnphost.dll
18:46:51.0687 3876 upnphost - ok
18:46:51.0718 3876 [ 20a0f6a11959e92908717d09e87d670d ] UPS C:\WINDOWS\System32\ups.exe
18:46:51.0828 3876 UPS - ok
18:46:51.0875 3876 [ 173f317ce0db8e21322e71b7e60a27e8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:46:51.0984 3876 usbccgp - ok
18:46:52.0046 3876 [ 65dcf09d0e37d4c6b11b5b0b76d470a7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:46:52.0156 3876 usbehci - ok
18:46:52.0203 3876 [ 1ab3cdde553b6e064d2e754efe20285c ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:46:52.0328 3876 usbhub - ok
18:46:52.0359 3876 [ 0daecce65366ea32b162f85f07c6753b ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:46:52.0453 3876 usbohci - ok
18:46:52.0515 3876 [ a717c8721046828520c9edf31288fc00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:46:52.0640 3876 usbprint - ok
18:46:52.0656 3876 [ a0b8cf9deb1184fbdd20784a58fa75d4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:46:52.0765 3876 usbscan - ok
18:46:52.0781 3876 [ a32426d9b14a089eaa1d922e0c5801a9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:46:52.0906 3876 USBSTOR - ok
18:46:52.0937 3876 [ 26496f9dee2d787fc3e61ad54821ffe6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:46:53.0031 3876 usbuhci - ok
18:46:53.0078 3876 [ 0955553090e0a88614e5b8a02af9324c ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
18:46:53.0093 3876 VComm - ok
18:46:53.0156 3876 [ ebf022ec5b0e15b4c225f28031e4123a ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
18:46:53.0156 3876 VcommMgr - ok
18:46:53.0187 3876 [ 0d3a8fafceacd8b7625cd549757a7df1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:46:53.0312 3876 VgaSave - ok
18:46:53.0343 3876 [ 754292ce5848b3738281b4f3607eaef4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
18:46:53.0593 3876 viaagp - ok
18:46:53.0625 3876 [ 3b3efcda263b8ac14fdf9cbdd0791b2e ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
18:46:53.0812 3876 ViaIde - ok
18:46:53.0843 3876 [ 28a4b296b47782173c346e376cb374d1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:46:53.0953 3876 VolSnap - ok
18:46:54.0000 3876 [ d6ba1a63d9e00933f1cd2a885573afb2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:46:54.0140 3876 VSS - ok
18:46:54.0171 3876 [ fa4e1cdba256787f2149f4aad07bc91f ] W32Time C:\WINDOWS\system32\w32time.dll
18:46:54.0281 3876 W32Time - ok
18:46:54.0296 3876 [ e20b95baedb550f32dd489265c1da1f6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:46:54.0421 3876 Wanarp - ok
18:46:54.0437 3876 WDICA - ok
18:46:54.0500 3876 [ 6768acf64b18196494413695f0c3a00f ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:46:54.0640 3876 wdmaud - ok
18:46:54.0671 3876 [ 47ae51048a82dfa1cd6b51d369f7e169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:46:54.0796 3876 WebClient - ok
18:46:54.0890 3876 [ e488332126e3b1182d2b8a0c35408ec6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:46:55.0000 3876 winmgmt - ok
18:46:55.0062 3876 [ c51b4a5c05a5475708e3c81c7765b71d ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
18:46:55.0125 3876 WmdmPmSN - ok
18:46:55.0171 3876 [ 0171cff34bba8c5977f18c48d8aef8c6 ] Wmi C:\WINDOWS\System32\advapi32.dll
18:46:55.0218 3876 Wmi - ok
18:46:55.0281 3876 [ 23f6f03272f7e5679f1f050aed5acee6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:46:55.0421 3876 WmiApSrv - ok
18:46:55.0531 3876 [ 3739866d20abd42f26a7b85f9e2560af ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
18:46:55.0593 3876 WMPNetworkSvc - ok
18:46:55.0656 3876 [ cf4def1bf66f06964dc0d91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:46:55.0687 3876 WpdUsb - ok
18:46:55.0734 3876 [ 6abe6e225adb5a751622a9cc3bc19ce8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:46:55.0875 3876 WS2IFSL - ok
18:46:55.0921 3876 [ 4c86d5faf78194995af9cc1075f65dd3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:46:56.0125 3876 wscsvc - ok
18:46:56.0156 3876 [ c1364564800ee9784192145324a23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:46:56.0265 3876 wuauserv - ok
18:46:56.0328 3876 [ eaa6324f51214d2f6718977ec9ce0def ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:46:56.0390 3876 WudfPf - ok
18:46:56.0437 3876 [ f91ff1e51fca30b3c3981db7d5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:46:56.0468 3876 WudfRd - ok
18:46:56.0500 3876 [ ddee3682fe97037c45f4d7ab467cb8b6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
18:46:56.0531 3876 WudfSvc - ok
18:46:56.0593 3876 [ a27d4ba7264c0bf52f32d10405bea1d4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:46:56.0750 3876 WZCSVC - ok
18:46:56.0796 3876 [ eaa4bb9edb3fb10cf8979fe65e63658f ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:46:56.0953 3876 xmlprov - ok
18:46:57.0015 3876 [ bdfa6a3a7ce1d083889b316a484a356a ] zntport C:\WINDOWS\system32\drivers\zntport.sys
18:46:57.0031 3876 zntport - ok
18:46:57.0062 3876 ================ Scan global ===============================
18:46:57.0125 3876 (f36278e42c8c5df03ce17dac8231c91c) C:\WINDOWS\system32\basesrv.dll
18:46:57.0187 3876 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
18:46:57.0218 3876 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
18:46:57.0234 3876 (9ef697af07bb8dd82c3b02ca953a95b7) C:\WINDOWS\system32\services.exe
18:46:57.0250 3876 [Global] - ok
18:46:57.0250 3876 ================ Scan MBR ==================================
18:46:57.0265 3876 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:46:57.0296 3876 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected
18:46:57.0296 3876 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)
18:46:57.0328 3876 ================ Scan VBR ==================================
18:46:57.0343 3876 Boot (0x1200) (3bdfb410f5212329af90f6136d2cf454) \Device\Harddisk0\DR0\Partition1
18:46:57.0343 3876 \Device\Harddisk0\DR0\Partition1 - ok
18:46:57.0343 3876 ================ Scan active images ========================
18:46:57.0359 3876 [ 27B290D632AF2CF3CF40BFDDB7370985 ] C:\WINDOWS\system32\drivers\intelppm.sys
18:46:57.0359 3876 C:\WINDOWS\system32\drivers\intelppm.sys - ok
18:46:57.0375 3876 [ 0F6C187D38D98F8DF904589A5F94D411 ] C:\WINDOWS\system32\drivers\cmbatt.sys
18:46:57.0375 3876 C:\WINDOWS\system32\drivers\cmbatt.sys - ok
18:46:57.0390 3876 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
18:46:57.0390 3876 C:\WINDOWS\system32\drivers\videoprt.sys - ok
18:46:57.0406 3876 [ C528E27945367191E7BAE364930B6932 ] C:\WINDOWS\system32\drivers\i8042prt.sys
18:46:57.0406 3876 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
18:46:57.0421 3876 [ 69611B2FFA1C48B7DFE86C8C12500DDB ] C:\WINDOWS\system32\drivers\sisgrp.sys
18:46:57.0421 3876 C:\WINDOWS\system32\drivers\sisgrp.sys - ok
18:46:57.0437 3876 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
18:46:57.0437 3876 C:\WINDOWS\system32\drivers\usbd.sys - ok
18:46:57.0453 3876 [ 76D8BE42D50455C7C8446B8FF1BFB9E0 ] C:\WINDOWS\system32\drivers\SynTP.sys
18:46:57.0453 3876 C:\WINDOWS\system32\drivers\SynTP.sys - ok
18:46:57.0468 3876 [ 4CB582831DBDE63CE43B45D771218374 ] C:\WINDOWS\system32\drivers\mouclass.sys
18:46:57.0468 3876 C:\WINDOWS\system32\drivers\mouclass.sys - ok
18:46:57.0484 3876 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] C:\WINDOWS\system32\drivers\kbdclass.sys
18:46:57.0484 3876 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
18:46:57.0500 3876 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
18:46:57.0500 3876 C:\WINDOWS\system32\drivers\cdrom.sys - ok
18:46:57.0515 3876 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
18:46:57.0515 3876 C:\WINDOWS\system32\drivers\imapi.sys - ok
18:46:57.0531 3876 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
18:46:57.0531 3876 C:\WINDOWS\system32\drivers\ks.sys - ok
18:46:57.0546 3876 [ 611BFD220305BE3A85AE876EA47D4AA5 ] C:\WINDOWS\system32\drivers\redbook.sys
18:46:57.0546 3876 C:\WINDOWS\system32\drivers\redbook.sys - ok
18:46:57.0546 3876 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
18:46:57.0546 3876 C:\WINDOWS\system32\drivers\usbport.sys - ok
18:46:57.0562 3876 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
18:46:57.0562 3876 C:\WINDOWS\system32\drivers\usbehci.sys - ok
18:46:57.0578 3876 [ 0DAECCE65366EA32B162F85F07C6753B ] C:\WINDOWS\system32\drivers\usbohci.sys
18:46:57.0578 3876 C:\WINDOWS\system32\drivers\usbohci.sys - ok
18:46:57.0593 3876 [ DED793C377FA132912B4381043A4D554 ] C:\WINDOWS\system32\drivers\SiSGbeXP.sys

Max_cz · #41 Příspěvek od **Max_cz** » 23 srp 2012 17:53

18:46:57.0593 3876 C:\WINDOWS\system32\drivers\SiSGbeXP.sys - ok
18:46:57.0609 3876 [ 9108F38C07F4953EA4EE89243E787CAD ] C:\WINDOWS\system32\drivers\ar5211.sys
18:46:57.0609 3876 C:\WINDOWS\system32\drivers\ar5211.sys - ok
18:46:57.0609 3876 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
18:46:57.0609 3876 C:\WINDOWS\system32\drivers\audstub.sys - ok
18:46:57.0625 3876 [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
18:46:57.0625 3876 C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
18:46:57.0640 3876 [ D53D7ED7D85A18B0CD4626B88B6DA52A ] C:\WINDOWS\system32\drivers\IvtBtBus.sys
18:46:57.0640 3876 C:\WINDOWS\system32\drivers\IvtBtBus.sys - ok
18:46:57.0656 3876 [ 44032B0C6D9954D3FD26438330B99EE7 ] C:\WINDOWS\system32\drivers\modem.sys
18:46:57.0656 3876 C:\WINDOWS\system32\drivers\modem.sys - ok
18:46:57.0671 3876 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] C:\WINDOWS\system32\drivers\rootmdm.sys
18:46:57.0671 3876 C:\WINDOWS\system32\drivers\rootmdm.sys - ok
18:46:57.0687 3876 [ EBF022EC5B0E15B4C225F28031E4123A ] C:\WINDOWS\system32\drivers\VcommMgr.sys
18:46:57.0687 3876 C:\WINDOWS\system32\drivers\VcommMgr.sys - ok
18:46:57.0703 3876 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
18:46:57.0703 3876 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
18:46:57.0718 3876 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
18:46:57.0718 3876 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
18:46:57.0718 3876 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
18:46:57.0718 3876 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
18:46:57.0734 3876 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
18:46:57.0734 3876 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
18:46:57.0750 3876 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
18:46:57.0750 3876 C:\WINDOWS\system32\drivers\tdi.sys - ok
18:46:57.0765 3876 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
18:46:57.0765 3876 C:\WINDOWS\system32\drivers\msgpc.sys - ok
18:46:57.0781 3876 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
18:46:57.0781 3876 C:\WINDOWS\system32\drivers\psched.sys - ok
18:46:57.0796 3876 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
18:46:57.0796 3876 C:\WINDOWS\system32\drivers\raspptp.sys - ok
18:46:57.0812 3876 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
18:46:57.0812 3876 C:\WINDOWS\system32\drivers\ptilink.sys - ok
18:46:57.0812 3876 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
18:46:57.0812 3876 C:\WINDOWS\system32\drivers\raspti.sys - ok
18:46:57.0828 3876 [ 32CCF60F6E491A2A931A63E928677403 ] C:\WINDOWS\system32\drivers\btnetdrv.sys
18:46:57.0828 3876 C:\WINDOWS\system32\drivers\btnetdrv.sys - ok
18:46:57.0843 3876 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
18:46:57.0843 3876 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
18:46:57.0859 3876 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
18:46:57.0859 3876 C:\WINDOWS\system32\drivers\swenum.sys - ok
18:46:57.0875 3876 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
18:46:57.0875 3876 C:\WINDOWS\system32\drivers\termdd.sys - ok
18:46:57.0890 3876 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
18:46:57.0890 3876 C:\WINDOWS\system32\drivers\update.sys - ok
18:46:57.0906 3876 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
18:46:57.0906 3876 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
18:46:57.0921 3876 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
18:46:57.0921 3876 C:\WINDOWS\system32\drivers\drmk.sys - ok
18:46:57.0921 3876 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
18:46:57.0921 3876 C:\WINDOWS\system32\drivers\portcls.sys - ok
18:46:57.0937 3876 [ 8F924588C272FDAA28CF31A9BBC21A72 ] C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:46:57.0937 3876 C:\WINDOWS\system32\drivers\RtkHDAud.sys - ok
18:46:57.0953 3876 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
18:46:57.0953 3876 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
18:46:57.0968 3876 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
18:46:57.0968 3876 C:\WINDOWS\system32\drivers\usbhub.sys - ok
18:46:57.0984 3876 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
18:46:57.0984 3876 C:\WINDOWS\system32\drivers\beep.sys - ok
18:46:58.0000 3876 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
18:46:58.0000 3876 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
18:46:58.0015 3876 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
18:46:58.0015 3876 C:\WINDOWS\system32\drivers\fdc.sys - ok
18:46:58.0015 3876 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
18:46:58.0015 3876 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
18:46:58.0031 3876 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
18:46:58.0031 3876 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
18:46:58.0046 3876 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
18:46:58.0046 3876 C:\WINDOWS\system32\drivers\hidparse.sys - ok
18:46:58.0062 3876 [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
18:46:58.0062 3876 C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
18:46:58.0078 3876 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
18:46:58.0078 3876 C:\WINDOWS\system32\drivers\null.sys - ok
18:46:58.0078 3876 [ 86C8F23616C6C6E5B2776901C17B945B ] C:\WINDOWS\system32\drivers\kbdhid.sys
18:46:58.0078 3876 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
18:46:58.0093 3876 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
18:46:58.0093 3876 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
18:46:58.0109 3876 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
18:46:58.0109 3876 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
18:46:58.0125 3876 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
18:46:58.0125 3876 C:\WINDOWS\system32\drivers\vga.sys - ok
18:46:58.0140 3876 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
18:46:58.0140 3876 C:\WINDOWS\system32\drivers\ipsec.sys - ok
18:46:58.0156 3876 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
18:46:58.0156 3876 C:\WINDOWS\system32\drivers\msfs.sys - ok
18:46:58.0171 3876 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
18:46:58.0171 3876 C:\WINDOWS\system32\drivers\npfs.sys - ok
18:46:58.0171 3876 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
18:46:58.0171 3876 C:\WINDOWS\system32\drivers\rasacd.sys - ok
18:46:58.0187 3876 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
18:46:58.0187 3876 C:\WINDOWS\system32\drivers\netbt.sys - ok
18:46:58.0203 3876 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
18:46:58.0203 3876 C:\WINDOWS\system32\drivers\tcpip.sys - ok
18:46:58.0218 3876 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
18:46:58.0218 3876 C:\WINDOWS\system32\drivers\ipnat.sys - ok
18:46:58.0234 3876 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
18:46:58.0234 3876 C:\WINDOWS\system32\drivers\afd.sys - ok
18:46:58.0250 3876 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
18:46:58.0250 3876 C:\WINDOWS\system32\drivers\netbios.sys - ok
18:46:58.0265 3876 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
18:46:58.0265 3876 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
18:46:58.0281 3876 [ 3980814F8027D27EA003E2E3D9D4F604 ] C:\WINDOWS\system32\drivers\amdk7.sys
18:46:58.0281 3876 C:\WINDOWS\system32\drivers\amdk7.sys - ok
18:46:58.0281 3876 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
18:46:58.0281 3876 C:\WINDOWS\system32\drivers\rdbss.sys - ok
18:46:58.0296 3876 [ B701C7F3C816E9D72F733E792DF6BF0A ] C:\WINDOWS\system32\drivers\srvkp.sys
18:46:58.0296 3876 C:\WINDOWS\system32\drivers\srvkp.sys - ok
18:46:58.0312 3876 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
18:46:58.0312 3876 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
18:46:58.0328 3876 [ AC366695A0796560AA37215AD5762AAF ] C:\WINDOWS\system32\drivers\fips.sys
18:46:58.0328 3876 C:\WINDOWS\system32\drivers\fips.sys - ok
18:46:58.0328 3876 [ 9B08A8C6331C2DA9C30377BCB4262721 ] C:\WINDOWS\system32\smss.exe
18:46:58.0328 3876 C:\WINDOWS\system32\smss.exe - ok
18:46:58.0343 3876 [ 0A12141F94F9C7A478AF490454320E97 ] C:\WINDOWS\system32\ntdll.dll
18:46:58.0343 3876 C:\WINDOWS\system32\ntdll.dll - ok
18:46:58.0359 3876 [ C7A9FF12C63E2E448722B02C71A8C431 ] C:\WINDOWS\system32\autochk.exe
18:46:58.0359 3876 C:\WINDOWS\system32\autochk.exe - ok
18:46:58.0375 3876 [ 56A6034E7764E23D9114223EB3523925 ] C:\WINDOWS\system32\sfcfiles.dll
18:46:58.0375 3876 C:\WINDOWS\system32\sfcfiles.dll - ok
18:46:58.0390 3876 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
18:46:58.0390 3876 C:\WINDOWS\system32\drivers\cdfs.sys - ok
18:46:58.0406 3876 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
18:46:58.0406 3876 C:\WINDOWS\system32\drivers\wmilib.sys - ok
18:46:58.0421 3876 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
18:46:58.0421 3876 C:\WINDOWS\system32\drivers\atapi.sys - ok
18:46:58.0437 3876 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
18:46:58.0437 3876 C:\WINDOWS\system32\drivers\dxapi.sys - ok
18:46:58.0437 3876 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
18:46:58.0437 3876 C:\WINDOWS\system32\watchdog.sys - ok
18:46:58.0453 3876 [ 89B9C5051E815C943C3A9EBB2619DF6A ] C:\WINDOWS\system32\win32k.sys
18:46:58.0453 3876 C:\WINDOWS\system32\win32k.sys - ok
18:46:58.0468 3876 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
18:46:58.0468 3876 C:\WINDOWS\system32\basesrv.dll - ok
18:46:58.0484 3876 [ CE440A5DEB0861CC621A6A704EBB1E71 ] C:\WINDOWS\system32\csrsrv.dll
18:46:58.0484 3876 C:\WINDOWS\system32\csrsrv.dll - ok
18:46:58.0500 3876 [ 628CE66E3FD35BFC7969DBAC245DC069 ] C:\WINDOWS\system32\csrss.exe
18:46:58.0500 3876 C:\WINDOWS\system32\csrss.exe - ok
18:46:58.0515 3876 [ 90C925765E695AB984BE2E8A21B62AE9 ] C:\WINDOWS\system32\gdi32.dll
18:46:58.0515 3876 C:\WINDOWS\system32\gdi32.dll - ok
18:46:58.0531 3876 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:46:58.0531 3876 C:\WINDOWS\system32\winsrv.dll - ok
18:46:58.0531 3876 [ 545C653E8FE241CA6200798AA94FE5C7 ] C:\WINDOWS\system32\kernel32.dll
18:46:58.0531 3876 C:\WINDOWS\system32\kernel32.dll - ok
18:46:58.0546 3876 [ E16E0990967374E76F3E40CACAFD3D53 ] C:\WINDOWS\system32\user32.dll
18:46:58.0546 3876 C:\WINDOWS\system32\user32.dll - ok
18:46:58.0562 3876 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
18:46:58.0562 3876 C:\WINDOWS\system32\drivers\dxg.sys - ok
18:46:58.0578 3876 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
18:46:58.0578 3876 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
18:46:58.0593 3876 [ 923C12D76399508F4319B2D7CBEEB538 ] C:\WINDOWS\system32\sisgrv.dll
18:46:58.0593 3876 C:\WINDOWS\system32\sisgrv.dll - ok
18:46:58.0593 3876 [ 1BD2076C717CB48967D5078EC9650891 ] C:\WINDOWS\system32\vga.dll
18:46:58.0593 3876 C:\WINDOWS\system32\vga.dll - ok
18:46:58.0609 3876 [ CDDB1F8E1AEA356F3AD106F2CF9B7FEA ] C:\WINDOWS\system32\winlogon.exe
18:46:58.0609 3876 C:\WINDOWS\system32\winlogon.exe - ok
18:46:58.0625 3876 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] C:\WINDOWS\system32\advapi32.dll
18:46:58.0640 3876 C:\WINDOWS\system32\advapi32.dll - ok
18:46:58.0640 3876 [ DD2A19C756A3992416C00CEEE55A3337 ] C:\WINDOWS\system32\rpcrt4.dll
18:46:58.0640 3876 C:\WINDOWS\system32\rpcrt4.dll - ok
18:46:58.0656 3876 [ 69DF78F490C85052C7AF6C8ABE4AF1C5 ] C:\WINDOWS\system32\secur32.dll
18:46:58.0656 3876 C:\WINDOWS\system32\secur32.dll - ok
18:46:58.0671 3876 [ DEA06DA25BB393E0A69C6E71BE5681DC ] C:\WINDOWS\system32\authz.dll
18:46:58.0671 3876 C:\WINDOWS\system32\authz.dll - ok
18:46:58.0687 3876 [ D165DFCB4EA452510E53416F573018BB ] C:\WINDOWS\system32\msvcrt.dll
18:46:58.0687 3876 C:\WINDOWS\system32\msvcrt.dll - ok
18:46:58.0703 3876 [ D405267A0CAB7A2F9A97F8BE0E8C7A1D ] C:\WINDOWS\system32\crypt32.dll
18:46:58.0703 3876 C:\WINDOWS\system32\crypt32.dll - ok
18:46:58.0718 3876 [ 052B3C1DADDE0D267987E8DA3BBE1AFB ] C:\WINDOWS\system32\msasn1.dll
18:46:58.0718 3876 C:\WINDOWS\system32\msasn1.dll - ok
18:46:58.0718 3876 [ 4D0C43A5446E4CA079D783CD70E9D543 ] C:\WINDOWS\system32\nddeapi.dll
18:46:58.0718 3876 C:\WINDOWS\system32\nddeapi.dll - ok
18:46:58.0734 3876 [ 8F43DFAF8B01F5775B931145E0FBB4B1 ] C:\WINDOWS\system32\netapi32.dll
18:46:58.0734 3876 C:\WINDOWS\system32\netapi32.dll - ok
18:46:58.0750 3876 [ ABBAF72B2E4D7C8D238D1AA8424244B4 ] C:\WINDOWS\system32\profmap.dll
18:46:58.0750 3876 C:\WINDOWS\system32\profmap.dll - ok
18:46:58.0765 3876 [ 7625B324EE90A716E447115A4B7F7364 ] C:\WINDOWS\system32\userenv.dll
18:46:58.0765 3876 C:\WINDOWS\system32\userenv.dll - ok
18:46:58.0781 3876 [ F9631D6681944F2CC0824FCEE52E8526 ] C:\WINDOWS\system32\psapi.dll
18:46:58.0781 3876 C:\WINDOWS\system32\psapi.dll - ok
18:46:58.0796 3876 [ FAE69704BB5FF6F8E7C60B21048CD1C3 ] C:\WINDOWS\system32\regapi.dll
18:46:58.0796 3876 C:\WINDOWS\system32\regapi.dll - ok
18:46:58.0812 3876 [ 0E93A7F2BE83AF906D9EAFB370300CAA ] C:\WINDOWS\system32\setupapi.dll
18:46:58.0812 3876 C:\WINDOWS\system32\setupapi.dll - ok
18:46:58.0828 3876 [ 614F8186BDAB926E3B1D8927A4161B54 ] C:\WINDOWS\system32\version.dll
18:46:58.0828 3876 C:\WINDOWS\system32\version.dll - ok
18:46:58.0859 3876 [ EF42EA58F8BF96753BE84B3227AD119E ] C:\WINDOWS\system32\winsta.dll
18:46:58.0859 3876 C:\WINDOWS\system32\winsta.dll - ok
18:46:58.0875 3876 [ FCD15D33AD9D7BD371F00651A23947CE ] C:\WINDOWS\system32\wintrust.dll
18:46:58.0875 3876 C:\WINDOWS\system32\wintrust.dll - ok
18:46:58.0890 3876 [ D21DBAA97839B1786E278FDD2F3444AC ] C:\WINDOWS\system32\imagehlp.dll
18:46:58.0890 3876 C:\WINDOWS\system32\imagehlp.dll - ok
18:46:58.0906 3876 [ 859F7735F199C90403340183A3DDFB78 ] C:\WINDOWS\system32\ws2help.dll
18:46:58.0906 3876 C:\WINDOWS\system32\ws2help.dll - ok
18:46:58.0906 3876 [ 951D473917C51F21496D914CF6E5DDD1 ] C:\WINDOWS\system32\ws2_32.dll
18:46:58.0906 3876 C:\WINDOWS\system32\ws2_32.dll - ok
18:46:58.0921 3876 [ 6C60CA8AC7470AC01CFD3D24C7283CD1 ] C:\WINDOWS\system32\imm32.dll
18:46:58.0921 3876 C:\WINDOWS\system32\imm32.dll - ok
18:46:58.0937 3876 [ 36E68E02AF2206FC4A8C73CAEABE1FB0 ] C:\WINDOWS\system32\kbdcz.dll
18:46:58.0937 3876 C:\WINDOWS\system32\kbdcz.dll - ok
18:46:58.0953 3876 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
18:46:58.0953 3876 C:\WINDOWS\system32\kbdus.dll - ok
18:46:58.0968 3876 [ C1367E52DDAB839B8A21E412519E5FB5 ] C:\WINDOWS\system32\msgina.dll
18:46:58.0968 3876 C:\WINDOWS\system32\msgina.dll - ok
18:46:58.0984 3876 [ E145ADD7DAEF759C4F5FB80A180A9C30 ] C:\WINDOWS\system32\comctl32.dll
18:46:58.0984 3876 C:\WINDOWS\system32\comctl32.dll - ok
18:46:59.0000 3876 [ D6F092E2D661AD284D34189B78FE08E6 ] C:\WINDOWS\system32\comdlg32.dll
18:46:59.0000 3876 C:\WINDOWS\system32\comdlg32.dll - ok
18:46:59.0015 3876 [ ED180CFF554C5797E983501823E78613 ] C:\WINDOWS\system32\odbc32.dll
18:46:59.0015 3876 C:\WINDOWS\system32\odbc32.dll - ok
18:46:59.0031 3876 [ 639A1D31DCB23068087B1F781EDCD4A9 ] C:\WINDOWS\system32\shell32.dll
18:46:59.0031 3876 C:\WINDOWS\system32\shell32.dll - ok
18:46:59.0046 3876 [ 5553738BD481C5456BB4E22B6F4D99EB ] C:\WINDOWS\system32\shlwapi.dll
18:46:59.0046 3876 C:\WINDOWS\system32\shlwapi.dll - ok
18:46:59.0046 3876 [ E139BB65A83049154EE40B46A42B9BAC ] C:\WINDOWS\system32\sxs.dll
18:46:59.0046 3876 C:\WINDOWS\system32\sxs.dll - ok
18:46:59.0062 3876 [ 8A72A30FDC803DC06755D3B36D966F31 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
18:46:59.0062 3876 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
18:46:59.0078 3876 [ 62D35D5F2D6ACE259DF6226D7079A661 ] C:\WINDOWS\system32\odbcint.dll
18:46:59.0078 3876 C:\WINDOWS\system32\odbcint.dll - ok
18:46:59.0093 3876 [ EE9A2B9EA968A792A053C9D1A86BF870 ] C:\WINDOWS\system32\shsvcs.dll
18:46:59.0093 3876 C:\WINDOWS\system32\shsvcs.dll - ok
18:46:59.0109 3876 [ ED9B683C7A8BBAAAB9B377197D20832C ] C:\WINDOWS\system32\ole32.dll
18:46:59.0109 3876 C:\WINDOWS\system32\ole32.dll - ok
18:46:59.0109 3876 [ 5EE949255BABC0B17C09DDB2E59E3878 ] C:\WINDOWS\system32\sfc.dll
18:46:59.0109 3876 C:\WINDOWS\system32\sfc.dll - ok
18:46:59.0125 3876 [ 83451053EAD9F92B697C1BCBA91987FC ] C:\WINDOWS\system32\sfc_os.dll
18:46:59.0125 3876 C:\WINDOWS\system32\sfc_os.dll - ok
18:46:59.0140 3876 [ 11882C729C6B2E2E045F8B93BDB69295 ] C:\WINDOWS\system32\apphelp.dll
18:46:59.0140 3876 C:\WINDOWS\system32\apphelp.dll - ok
18:46:59.0156 3876 [ ED0A176354487CEED65B80A7148AB739 ] C:\WINDOWS\system32\lsass.exe
18:46:59.0156 3876 C:\WINDOWS\system32\lsass.exe - ok
18:46:59.0171 3876 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
18:46:59.0171 3876 C:\WINDOWS\system32\services.exe - ok
18:46:59.0187 3876 [ C8F04C22EB595DBC0624CB4484DCF6D4 ] C:\WINDOWS\system32\lsasrv.dll
18:46:59.0187 3876 C:\WINDOWS\system32\lsasrv.dll - ok
18:46:59.0203 3876 [ A46994F7DF0F6FFFA9FBD52C57DFF15C ] C:\WINDOWS\system32\msvcp60.dll
18:46:59.0203 3876 C:\WINDOWS\system32\msvcp60.dll - ok
18:46:59.0203 3876 [ 1B7A9C069457EC6E37E1F1D79B58AE87 ] C:\WINDOWS\system32\ncobjapi.dll
18:46:59.0203 3876 C:\WINDOWS\system32\ncobjapi.dll - ok
18:46:59.0218 3876 [ 3FE1BBF9A6865275464D38B0A2B4A93D ] C:\WINDOWS\system32\mpr.dll
18:46:59.0218 3876 C:\WINDOWS\system32\mpr.dll - ok
18:46:59.0234 3876 [ EE43B67C08B2DF9F529A75EAB8877D19 ] C:\WINDOWS\system32\scesrv.dll
18:46:59.0234 3876 C:\WINDOWS\system32\scesrv.dll - ok
18:46:59.0250 3876 [ 2FFDE877A4584FF839458B7500B53C54 ] C:\WINDOWS\system32\ntdsapi.dll
18:46:59.0250 3876 C:\WINDOWS\system32\ntdsapi.dll - ok
18:46:59.0265 3876 [ CBE9EE6C6A5FD587CE6A4607C3B8B7C6 ] C:\WINDOWS\system32\umpnpmgr.dll
18:46:59.0265 3876 C:\WINDOWS\system32\umpnpmgr.dll - ok
18:46:59.0281 3876 [ 443FA2B9D23DAA57077A670E7B14052A ] C:\WINDOWS\system32\dnsapi.dll
18:46:59.0281 3876 C:\WINDOWS\system32\dnsapi.dll - ok
18:46:59.0296 3876 [ 2E14E691EFA7847A603612A80889D6A0 ] C:\WINDOWS\system32\shimeng.dll
18:46:59.0296 3876 C:\WINDOWS\system32\shimeng.dll - ok
18:46:59.0312 3876 [ 5E5489C1D9AC8ED236EA8C6E54A997B9 ] C:\WINDOWS\AppPatch\acadproc.dll
18:46:59.0312 3876 C:\WINDOWS\AppPatch\acadproc.dll - ok
18:46:59.0312 3876 [ AD68FEF8C99D87611F5617E46766E055 ] C:\WINDOWS\system32\wldap32.dll
18:46:59.0312 3876 C:\WINDOWS\system32\wldap32.dll - ok
18:46:59.0328 3876 [ 2F1DE43508B086C7A6117A35FE17BA0D ] C:\WINDOWS\system32\samlib.dll
18:46:59.0328 3876 C:\WINDOWS\system32\samlib.dll - ok
18:46:59.0343 3876 [ 923122A0B25850462C2BD576EABD60AF ] C:\WINDOWS\system32\samsrv.dll
18:46:59.0343 3876 C:\WINDOWS\system32\samsrv.dll - ok
18:46:59.0359 3876 [ 6A9BDF7029BD29FBF3BE6EE6CD768013 ] C:\WINDOWS\system32\cryptdll.dll
18:46:59.0359 3876 C:\WINDOWS\system32\cryptdll.dll - ok
18:46:59.0375 3876 [ 2C677B499B36B7991643B04BB8AA7AEA ] C:\WINDOWS\AppPatch\acgenral.dll
18:46:59.0375 3876 C:\WINDOWS\AppPatch\acgenral.dll - ok
18:46:59.0390 3876 [ D61C4E13A776DC9D29EF22B44EB0AB7F ] C:\WINDOWS\system32\winmm.dll
18:46:59.0390 3876 C:\WINDOWS\system32\winmm.dll - ok
18:46:59.0406 3876 [ 865E2815C3597A952F13ECF463B52D7E ] C:\WINDOWS\system32\oleaut32.dll
18:46:59.0406 3876 C:\WINDOWS\system32\oleaut32.dll - ok
18:46:59.0406 3876 [ 4B2068CB18F72E78ACD07BD94F743F94 ] C:\WINDOWS\system32\msacm32.dll
18:46:59.0406 3876 C:\WINDOWS\system32\msacm32.dll - ok
18:46:59.0421 3876 [ E04A8DC5C740C679EF62A614D9339ECF ] C:\WINDOWS\system32\uxtheme.dll
18:46:59.0421 3876 C:\WINDOWS\system32\uxtheme.dll - ok
18:46:59.0437 3876 [ 79D7A4B85ED05818604678E84746C176 ] C:\WINDOWS\system32\msapsspc.dll
18:46:59.0437 3876 C:\WINDOWS\system32\msapsspc.dll - ok
18:46:59.0453 3876 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
18:46:59.0453 3876 C:\WINDOWS\system32\msvcrt40.dll - ok
18:46:59.0468 3876 [ A639E2A83CD57882B6D0F6F203BA73AF ] C:\WINDOWS\system32\schannel.dll
18:46:59.0468 3876 C:\WINDOWS\system32\schannel.dll - ok
18:46:59.0484 3876 [ 50EAEE3F7F79A3206311AD09CB6EE2F1 ] C:\WINDOWS\system32\digest.dll
18:46:59.0484 3876 C:\WINDOWS\system32\digest.dll - ok
18:46:59.0500 3876 [ DAE17E35517159E5852B1712878D9702 ] C:\WINDOWS\system32\kerberos.dll
18:46:59.0500 3876 C:\WINDOWS\system32\kerberos.dll - ok
18:46:59.0515 3876 [ 26AE5F5ADF4A30C8BCEA736343170201 ] C:\WINDOWS\system32\msctfime.ime
18:46:59.0515 3876 C:\WINDOWS\system32\msctfime.ime - ok
18:46:59.0515 3876 [ F987BA178D3D2AC5A448906AA74244A6 ] C:\WINDOWS\system32\msnsspc.dll
18:46:59.0515 3876 C:\WINDOWS\system32\msnsspc.dll - ok
18:46:59.0531 3876 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
18:46:59.0531 3876 C:\WINDOWS\system32\msprivs.dll - ok
18:46:59.0546 3876 [ 7A943FB5D0260595A7DA43246F070D2D ] C:\WINDOWS\system32\iphlpapi.dll
18:46:59.0546 3876 C:\WINDOWS\system32\iphlpapi.dll - ok
18:46:59.0562 3876 [ E1E17EB9523D54F3A43C3DBB709D61A9 ] C:\WINDOWS\system32\msv1_0.dll
18:46:59.0562 3876 C:\WINDOWS\system32\msv1_0.dll - ok
18:46:59.0578 3876 [ C2ED0E3408F50BBC149D4F0936E67832 ] C:\WINDOWS\system32\netlogon.dll
18:46:59.0578 3876 C:\WINDOWS\system32\netlogon.dll - ok
18:46:59.0578 3876 [ FA4E1CDBA256787F2149F4AAD07BC91F ] C:\WINDOWS\system32\w32time.dll
18:46:59.0578 3876 C:\WINDOWS\system32\w32time.dll - ok
18:46:59.0593 3876 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
18:46:59.0593 3876 C:\WINDOWS\system32\rsaenh.dll - ok
18:46:59.0609 3876 [ A06D566DF5918E78DCF80596B17D2C9A ] C:\WINDOWS\system32\wdigest.dll
18:46:59.0609 3876 C:\WINDOWS\system32\wdigest.dll - ok
18:46:59.0625 3876 [ 7D7B90E9DA5263804D9C6ADEADAC9D6E ] C:\WINDOWS\system32\winscard.dll
18:46:59.0625 3876 C:\WINDOWS\system32\winscard.dll - ok
18:46:59.0640 3876 [ 190E67B026EDB080440BD2F735654E0C ] C:\WINDOWS\system32\wtsapi32.dll
18:46:59.0640 3876 C:\WINDOWS\system32\wtsapi32.dll - ok
18:46:59.0656 3876 [ 830CE8951C71F361D7D2F38416CC8BC1 ] C:\WINDOWS\system32\scecli.dll
18:46:59.0656 3876 C:\WINDOWS\system32\scecli.dll - ok
18:46:59.0671 3876 [ BE4A520E29B6391F49E79CCC52044D93 ] C:\WINDOWS\system32\svchost.exe
18:46:59.0671 3876 C:\WINDOWS\system32\svchost.exe - ok
18:46:59.0687 3876 [ EB25940843AB2EBD333107CF064B8787 ] C:\WINDOWS\system32\ntmarta.dll
18:46:59.0687 3876 C:\WINDOWS\system32\ntmarta.dll - ok
18:46:59.0687 3876 [ BE27674D1CBC3214AEC84B4336A38BBF ] C:\WINDOWS\system32\rpcss.dll
18:46:59.0687 3876 C:\WINDOWS\system32\rpcss.dll - ok
18:46:59.0703 3876 [ 61AAE581F5DC8B393C93EE0DF32F38B2 ] C:\WINDOWS\system32\xpsp2res.dll
18:46:59.0703 3876 C:\WINDOWS\system32\xpsp2res.dll - ok
18:46:59.0718 3876 [ 2EE99F67C930931EB404DADCE57E976E ] C:\WINDOWS\system32\eventlog.dll
18:46:59.0718 3876 C:\WINDOWS\system32\eventlog.dll - ok
18:46:59.0734 3876 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] C:\WINDOWS\system32\mswsock.dll
18:46:59.0734 3876 C:\WINDOWS\system32\mswsock.dll - ok
18:46:59.0750 3876 [ ED18ADEE4AA21EB26977260152D7241A ] C:\WINDOWS\system32\hnetcfg.dll
18:46:59.0750 3876 C:\WINDOWS\system32\hnetcfg.dll - ok
18:46:59.0765 3876 [ 8DBCEA7B495024A29FEF59B5FE709DAC ] C:\WINDOWS\system32\wshtcpip.dll
18:46:59.0765 3876 C:\WINDOWS\system32\wshtcpip.dll - ok
18:46:59.0781 3876 [ 120AA0938E8B76CE044D5307DD6CAA11 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
18:46:59.0781 3876 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
18:46:59.0781 3876 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
18:46:59.0781 3876 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
18:46:59.0796 3876 [ B26098F3DC08D841DE3D79C38ACCB807 ] C:\WINDOWS\system32\rasadhlp.dll
18:46:59.0796 3876 C:\WINDOWS\system32\rasadhlp.dll - ok
18:46:59.0812 3876 [ DF2F39569BF7F223AF3CCBC23D07BF6E ] C:\WINDOWS\system32\winrnr.dll
18:46:59.0812 3876 C:\WINDOWS\system32\winrnr.dll - ok
18:46:59.0828 3876 [ E7CA4AAE4BA93999DBBD3E1071E6620E ] C:\WINDOWS\system32\wshbth.dll
18:46:59.0828 3876 C:\WINDOWS\system32\wshbth.dll - ok
18:46:59.0843 3876 [ 410CCADF699CEE2C0C741DF0FD90F204 ] C:\Program Files\Microsoft Security Client\MpClient.dll
18:46:59.0843 3876 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
18:46:59.0843 3876 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] C:\WINDOWS\system32\WudfSvc.dll
18:46:59.0843 3876 C:\WINDOWS\system32\WudfSvc.dll - ok
18:46:59.0859 3876 [ 0B3E2A065BB0E0C8854FEF37F90DC3BE ] C:\Program Files\Microsoft Security Client\MpRTP.dll
18:46:59.0859 3876 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
18:46:59.0875 3876 [ 708E6997420592E033CF01B60E6E4223 ] C:\WINDOWS\system32\WudfPlatform.dll
18:46:59.0875 3876 C:\WINDOWS\system32\WudfPlatform.dll - ok
18:46:59.0890 3876 [ C74B93113F4515D8B963E46A589BE85E ] C:\WINDOWS\system32\fltlib.dll
18:46:59.0890 3876 C:\WINDOWS\system32\fltlib.dll - ok
18:46:59.0906 3876 [ 616A0CC9DA2BAA008306EEA895F8BC0F ] C:\WINDOWS\system32\cscdll.dll
18:46:59.0906 3876 C:\WINDOWS\system32\cscdll.dll - ok
18:46:59.0921 3876 [ 8CC571653F6741481F6B9BBEAF8F362F ] C:\WINDOWS\system32\logonui.exe
18:46:59.0921 3876 C:\WINDOWS\system32\logonui.exe - ok
18:46:59.0937 3876 [ 253973CA45D11D646D5FD23F205B8922 ] C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\mpengine.dll
18:46:59.0937 3876 C:\Documents and Settings\All Users\Data aplikací\Microsoft\Microsoft Antimalware\Definition Updates\{DBFDC487-D548-414F-9F33-CABFA3A42185}\mpengine.dll - ok
18:46:59.0937 3876 [ 883E504885373DCC08DFEF30A10E4F12 ] C:\WINDOWS\system32\dimsntfy.dll
18:46:59.0937 3876 C:\WINDOWS\system32\dimsntfy.dll - ok
18:46:59.0953 3876 [ 4807A2D624C4D3643B29AE2BA3FAA13D ] C:\WINDOWS\system32\wlnotify.dll
18:46:59.0953 3876 C:\WINDOWS\system32\wlnotify.dll - ok
18:46:59.0968 3876 [ 0F1F2827B4FDF4401E0B9D60C63CE0D8 ] C:\WINDOWS\system32\winspool.drv
18:46:59.0968 3876 C:\WINDOWS\system32\winspool.drv - ok
18:46:59.0984 3876 [ 01DEFAA24704069BDB1A559A9C6EBC88 ] C:\WINDOWS\system32\duser.dll
18:46:59.0984 3876 C:\WINDOWS\system32\duser.dll - ok
18:47:00.0000 3876 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
18:47:00.0000 3876 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
18:47:00.0015 3876 [ 15A6CB4991BA08D408E2A36261A99B1F ] C:\WINDOWS\system32\WgaLogon.dll
18:47:00.0015 3876 C:\WINDOWS\system32\WgaLogon.dll - ok
18:47:00.0031 3876 [ 8C9A53E285AC5E6704844D0459EC85BE ] C:\WINDOWS\system32\dhcpcsvc.dll
18:47:00.0031 3876 C:\WINDOWS\system32\dhcpcsvc.dll - ok
18:47:00.0031 3876 [ 66DF63A7BAE72033C2E7E9B60A20E05C ] C:\WINDOWS\system32\clbcatq.dll
18:47:00.0046 3876 C:\WINDOWS\system32\clbcatq.dll - ok
18:47:00.0046 3876 [ DFAA406BF19F4EE806A6F8D4342137F7 ] C:\WINDOWS\system32\dnsrslvr.dll
18:47:00.0046 3876 C:\WINDOWS\system32\dnsrslvr.dll - ok
18:47:00.0062 3876 [ 627551A1011199BCE013D0F4B6CACECF ] C:\WINDOWS\system32\msimg32.dll
18:47:00.0062 3876 C:\WINDOWS\system32\msimg32.dll - ok
18:47:00.0078 3876 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
18:47:00.0078 3876 C:\WINDOWS\system32\oleacc.dll - ok
18:47:00.0093 3876 [ E7B375DFFB68A16659CA66474A280C47 ] C:\WINDOWS\system32\comres.dll
18:47:00.0093 3876 C:\WINDOWS\system32\comres.dll - ok
18:47:00.0093 3876 [ 21C141732D231677D8FEC89A73EB44A2 ] C:\WINDOWS\system32\msxml3.dll
18:47:00.0093 3876 C:\WINDOWS\system32\msxml3.dll - ok
18:47:00.0109 3876 [ 98CA2F18D988D7EA7D0183CE1FE83461 ] C:\WINDOWS\system32\shgina.dll
18:47:00.0109 3876 C:\WINDOWS\system32\shgina.dll - ok
18:47:00.0125 3876 [ 0AB159F536E3E8F7F07113702A07CCA5 ] C:\WINDOWS\system32\lmhsvc.dll
18:47:00.0125 3876 C:\WINDOWS\system32\lmhsvc.dll - ok
18:47:00.0140 3876 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] C:\WINDOWS\system32\wzcsvc.dll
18:47:00.0140 3876 C:\WINDOWS\system32\wzcsvc.dll - ok
18:47:00.0156 3876 [ 043FD4E92FE9BA70BFB8AC49848887CB ] C:\WINDOWS\system32\rtutils.dll
18:47:00.0156 3876 C:\WINDOWS\system32\rtutils.dll - ok
18:47:00.0171 3876 [ AC531D7E51B7B5FB52D7585935222DE6 ] C:\WINDOWS\system32\atl.dll
18:47:00.0171 3876 C:\WINDOWS\system32\atl.dll - ok
18:47:00.0187 3876 [ 6E4DFC1D92AD235FC76E8C7EE5544A00 ] C:\WINDOWS\system32\eapolqec.dll
18:47:00.0187 3876 C:\WINDOWS\system32\eapolqec.dll - ok
18:47:00.0187 3876 [ ACDB4C56ADCAD6913371C2B38BC016E2 ] C:\WINDOWS\system32\wmi.dll
18:47:00.0187 3876 C:\WINDOWS\system32\wmi.dll - ok
18:47:00.0203 3876 [ 6011D2787CD0CE16CE6E40C30F13F6F8 ] C:\WINDOWS\system32\dot3api.dll
18:47:00.0203 3876 C:\WINDOWS\system32\dot3api.dll - ok
18:47:00.0218 3876 [ 9D221D3CBB4DFA1FD225B2769009F99B ] C:\WINDOWS\system32\qutil.dll
18:47:00.0218 3876 C:\WINDOWS\system32\qutil.dll - ok
18:47:00.0234 3876 [ 39026490EF6992293A38AA13204BA6F3 ] C:\WINDOWS\system32\esent.dll
18:47:00.0234 3876 C:\WINDOWS\system32\esent.dll - ok
18:47:00.0250 3876 [ 0B1AA4B12FC08CCB7EAB6AAA1E25AC16 ] C:\WINDOWS\system32\rastls.dll
18:47:00.0250 3876 C:\WINDOWS\system32\rastls.dll - ok
18:47:00.0265 3876 [ F37A3D11450C4BA9BD862DFF7451728C ] C:\WINDOWS\system32\cryptui.dll
18:47:00.0265 3876 C:\WINDOWS\system32\cryptui.dll - ok
18:47:00.0281 3876 [ A579E4FFF919F9A892F9E0BDA82A65BD ] C:\WINDOWS\system32\wininet.dll
18:47:00.0281 3876 C:\WINDOWS\system32\wininet.dll - ok
18:47:00.0296 3876 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
18:47:00.0296 3876 C:\WINDOWS\system32\drivers\wanarp.sys - ok
18:47:00.0296 3876 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
18:47:00.0296 3876 C:\WINDOWS\system32\normaliz.dll - ok
18:47:00.0312 3876 [ 8F541317DF26B3686B3B6F4CF7A39401 ] C:\WINDOWS\system32\urlmon.dll
18:47:00.0312 3876 C:\WINDOWS\system32\urlmon.dll - ok
18:47:00.0328 3876 [ DC9155CBB3E68868E4F1170C528D6DA1 ] C:\WINDOWS\system32\iertutil.dll
18:47:00.0328 3876 C:\WINDOWS\system32\iertutil.dll - ok
18:47:00.0343 3876 [ AC992C58B28038A43E63DE07361B9732 ] C:\WINDOWS\system32\mprapi.dll
18:47:00.0343 3876 C:\WINDOWS\system32\mprapi.dll - ok
18:47:00.0343 3876 [ 28217BEA16EC1790ADF5495BDCD03B35 ] C:\WINDOWS\system32\activeds.dll
18:47:00.0343 3876 C:\WINDOWS\system32\activeds.dll - ok
18:47:00.0359 3876 [ B88893C7FB9671C84DBF6400CD2170CD ] C:\WINDOWS\system32\adsldpc.dll
18:47:00.0359 3876 C:\WINDOWS\system32\adsldpc.dll - ok
18:47:00.0375 3876 [ 0B3077EC67D9509B6B8A1FA3006E717B ] C:\WINDOWS\system32\rasapi32.dll
18:47:00.0375 3876 C:\WINDOWS\system32\rasapi32.dll - ok
18:47:00.0390 3876 [ A4F20BF76D85B92FE6E0C6B3884E8718 ] C:\WINDOWS\system32\rasman.dll
18:47:00.0390 3876 C:\WINDOWS\system32\rasman.dll - ok
18:47:00.0406 3876 [ A8B1342EE63C191258460EFE5D30D6A1 ] C:\WINDOWS\system32\tapi32.dll
18:47:00.0406 3876 C:\WINDOWS\system32\tapi32.dll - ok
18:47:00.0421 3876 [ D1995A48DCC77C8C3DE97BF89C1F8232 ] C:\WINDOWS\system32\riched20.dll
18:47:00.0421 3876 C:\WINDOWS\system32\riched20.dll - ok
18:47:00.0437 3876 [ 129E4E748829A3D027787E6740EE351D ] C:\WINDOWS\system32\mlang.dll
18:47:00.0437 3876 C:\WINDOWS\system32\mlang.dll - ok
18:47:00.0453 3876 [ 65DDCE6C4F63C6AAC3D99EFBA4C1E9C4 ] C:\WINDOWS\system32\cscui.dll
18:47:00.0453 3876 C:\WINDOWS\system32\cscui.dll - ok
18:47:00.0453 3876 [ BF5A61ED318A04CE683374069EA42CA6 ] C:\WINDOWS\system32\raschap.dll
18:47:00.0453 3876 C:\WINDOWS\system32\raschap.dll - ok
18:47:00.0468 3876 [ 7750F405686848AC39A47411759C7BA1 ] C:\WINDOWS\system32\xmlprovi.dll
18:47:00.0468 3876 C:\WINDOWS\system32\xmlprovi.dll - ok
18:47:00.0484 3876 [ 2DF6B86A8CE10CC93CE4C6DC72C5E791 ] C:\WINDOWS\system32\wzcsapi.dll
18:47:00.0484 3876 C:\WINDOWS\system32\wzcsapi.dll - ok
18:47:00.0500 3876 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] C:\WINDOWS\system32\netman.dll
18:47:00.0500 3876 C:\WINDOWS\system32\netman.dll - ok
18:47:00.0515 3876 [ 9FA69781CAA7A1DA981A24F240A61A60 ] C:\WINDOWS\system32\powrprof.dll
18:47:00.0515 3876 C:\WINDOWS\system32\powrprof.dll - ok
18:47:00.0531 3876 [ E0DD5DB829C887C4DCC2D9B31470F7EC ] C:\WINDOWS\system32\netshell.dll
18:47:00.0531 3876 C:\WINDOWS\system32\netshell.dll - ok
18:47:00.0546 3876 [ 2FAC0F5554606AE2AAC19028315FF361 ] C:\WINDOWS\system32\dpcdll.dll
18:47:00.0546 3876 C:\WINDOWS\system32\dpcdll.dll - ok
18:47:00.0562 3876 [ 1D37681166E7B0AE1FABF5676439F924 ] C:\WINDOWS\system32\credui.dll
18:47:00.0562 3876 C:\WINDOWS\system32\credui.dll - ok
18:47:00.0562 3876 [ C9AFEA3C13B62701FAE571D8466EB5F6 ] C:\WINDOWS\system32\dot3dlg.dll
18:47:00.0562 3876 C:\WINDOWS\system32\dot3dlg.dll - ok
18:47:00.0578 3876 [ A7162CFFDA477AE2239D4FB6F8094534 ] C:\WINDOWS\system32\onex.dll
18:47:00.0578 3876 C:\WINDOWS\system32\onex.dll - ok
18:47:00.0593 3876 [ 7DC1830F22E7D275B438127B68030239 ] C:\WINDOWS\system32\userinit.exe
18:47:00.0593 3876 C:\WINDOWS\system32\userinit.exe - ok
18:47:00.0609 3876 [ DFBCA5222331A476C42DF1AA3921629E ] C:\WINDOWS\system32\eappcfg.dll
18:47:00.0609 3876 C:\WINDOWS\system32\eappcfg.dll - ok
18:47:00.0625 3876 [ F6D35EBC8F11300AAFD1D4CA6DC65B9D ] C:\WINDOWS\system32\eappprxy.dll
18:47:00.0625 3876 C:\WINDOWS\system32\eappprxy.dll - ok
18:47:00.0640 3876 [ 6227D7AF6039C18C8BC5AB3E150CC673 ] C:\WINDOWS\system32\WgaTray.exe
18:47:00.0640 3876 C:\WINDOWS\system32\WgaTray.exe - ok
18:47:00.0656 3876 [ 27AFD587C462E280EE046B8CCA3C2CD1 ] C:\WINDOWS\explorer.exe
18:47:00.0656 3876 C:\WINDOWS\explorer.exe - ok
18:47:00.0671 3876 [ E45ECB5A023F77F813CD0DFF92699B76 ] C:\WINDOWS\system32\browseui.dll
18:47:00.0671 3876 C:\WINDOWS\system32\browseui.dll - ok
18:47:00.0671 3876 [ F76EFBEA5A02699AA5275DA8669E9D89 ] C:\WINDOWS\system32\shdocvw.dll
18:47:00.0671 3876 C:\WINDOWS\system32\shdocvw.dll - ok
18:47:00.0687 3876 [ 3FF232A7731621B8902D81D42418C93C ] C:\WINDOWS\system32\schedsvc.dll
18:47:00.0687 3876 C:\WINDOWS\system32\schedsvc.dll - ok
18:47:00.0703 3876 [ DC9EFCC8827EB2C0D17A7E4B2DE77E63 ] C:\WINDOWS\system32\desk.cpl
18:47:00.0703 3876 C:\WINDOWS\system32\desk.cpl - ok
18:47:00.0718 3876 [ 42FC2993518A71372BE7B8176CAAC8CF ] C:\WINDOWS\system32\themeui.dll
18:47:00.0718 3876 C:\WINDOWS\system32\themeui.dll - ok
18:47:00.0734 3876 [ 508B8A0B72953469B3282A495CA6D482 ] C:\WINDOWS\system32\actxprxy.dll
18:47:00.0734 3876 C:\WINDOWS\system32\actxprxy.dll - ok
18:47:00.0750 3876 [ 47E827EB2C26A383AD16BF80C0FCA8FA ] C:\WINDOWS\system32\cryptnet.dll
18:47:00.0750 3876 C:\WINDOWS\system32\cryptnet.dll - ok
18:47:00.0765 3876 [ F6226D2AF6E3ACF5889F33E9E53602AC ] C:\WINDOWS\system32\msidle.dll
18:47:00.0765 3876 C:\WINDOWS\system32\msidle.dll - ok
18:47:00.0781 3876 [ C77D916102E469F130A504CB9DACB930 ] C:\WINDOWS\system32\sensapi.dll
18:47:00.0781 3876 C:\WINDOWS\system32\sensapi.dll - ok
18:47:00.0781 3876 [ 84963584AEEF0562B632FC85B108B654 ] C:\WINDOWS\system32\winhttp.dll
18:47:00.0781 3876 C:\WINDOWS\system32\winhttp.dll - ok
18:47:00.0796 3876 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
18:47:00.0796 3876 C:\WINDOWS\system32\spoolsv.exe - ok
18:47:00.0812 3876 [ CC26451A90025F6C55F64146C333DEA5 ] C:\WINDOWS\system32\LegitCheckControl.dll
18:47:00.0812 3876 C:\WINDOWS\system32\LegitCheckControl.dll - ok
18:47:00.0828 3876 [ 03853A3540EC3F64EBDEFFB2ECE757D4 ] C:\WINDOWS\system32\wbem\wbemprox.dll
18:47:00.0828 3876 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
18:47:00.0828 3876 [ 5D1D9D1AC352D82C815EDF67E6EE5C97 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
18:47:00.0828 3876 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
18:47:00.0843 3876 [ 58A4129B7AB2CF2E7F00256F7EDAEAC2 ] C:\WINDOWS\system32\cmd.exe
18:47:00.0843 3876 C:\WINDOWS\system32\cmd.exe - ok
18:47:00.0859 3876 [ DE31B88962A8645DBA5A37B993E7B0F1 ] C:\WINDOWS\system32\audiosrv.dll
18:47:00.0859 3876 C:\WINDOWS\system32\audiosrv.dll - ok
18:47:00.0875 3876 [ 936C1D110232D23B621CB0196E4F80F0 ] C:\WINDOWS\system32\wkssvc.dll
18:47:00.0875 3876 C:\WINDOWS\system32\wkssvc.dll - ok
18:47:00.0890 3876 [ B9D1F1606B3A4EA30E2141FDEDCA4342 ] C:\WINDOWS\system32\ieframe.dll
18:47:00.0890 3876 C:\WINDOWS\system32\ieframe.dll - ok
18:47:00.0906 3876 [ 653B038066D1FD5962BB88796ED7CFC0 ] C:\WINDOWS\system32\wdmaud.drv
18:47:00.0906 3876 C:\WINDOWS\system32\wdmaud.drv - ok
18:47:00.0921 3876 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
18:47:00.0921 3876 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
18:47:00.0921 3876 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
18:47:00.0921 3876 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
18:47:00.0937 3876 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
18:47:00.0937 3876 C:\WINDOWS\system32\drivers\splitter.sys - ok
18:47:00.0953 3876 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
18:47:00.0953 3876 C:\WINDOWS\system32\drivers\aec.sys - ok
18:47:00.0968 3876 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
18:47:00.0968 3876 C:\WINDOWS\system32\drivers\swmidi.sys - ok
18:47:00.0984 3876 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
18:47:00.0984 3876 C:\WINDOWS\system32\drivers\dmusic.sys - ok
18:47:01.0000 3876 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
18:47:01.0000 3876 C:\WINDOWS\system32\drivers\kmixer.sys - ok
18:47:01.0015 3876 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
18:47:01.0015 3876 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
18:47:01.0031 3876 [ 58A0D4A0DB5FB76438A38F30E666B212 ] C:\WINDOWS\system32\msacm32.drv
18:47:01.0031 3876 C:\WINDOWS\system32\msacm32.drv - ok
18:47:01.0031 3876 [ 160A1500DDBE42F8793E3AD341E4BEC4 ] C:\WINDOWS\system32\midimap.dll
18:47:01.0031 3876 C:\WINDOWS\system32\midimap.dll - ok
18:47:01.0046 3876 [ D66E48ABA96AFB61A29580713FB19D4B ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
18:47:01.0046 3876 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
18:47:01.0062 3876 [ 8702CD069DE8F6B527E92CF55F78D5D2 ] C:\WINDOWS\system32\cabinet.dll
18:47:01.0062 3876 C:\WINDOWS\system32\cabinet.dll - ok
18:47:01.0078 3876 [ 950163AE5EE91E60CE0D7BC36FF15202 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
18:47:01.0078 3876 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
18:47:01.0078 3876 [ A26E0A6A7EBB45815A3583E170C27031 ] C:\Program Files\Microsoft Security Client\LegitLib.dll
18:47:01.0078 3876 C:\Program Files\Microsoft Security Client\LegitLib.dll - ok
18:47:01.0093 3876 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
18:47:01.0093 3876 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
18:47:01.0109 3876 [ 47AE51048A82DFA1CD6B51D369F7E169 ] C:\WINDOWS\system32\webclnt.dll
18:47:01.0109 3876 C:\WINDOWS\system32\webclnt.dll - ok
18:47:01.0125 3876 [ 3C0D557D62D35D2738F7DAAC323E35AB ] C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
18:47:01.0125 3876 C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe - ok
18:47:01.0140 3876 [ B842729337C9B921615C40D3C1A1AF96 ] C:\WINDOWS\system32\drivers\serial.sys
18:47:01.0140 3876 C:\WINDOWS\system32\drivers\serial.sys - ok
18:47:01.0156 3876 [ C09F55892B3D089AC4CE149568BE4112 ] C:\WINDOWS\system32\BsTrace.dll
18:47:01.0156 3876 C:\WINDOWS\system32\BsTrace.dll - ok
18:47:01.0171 3876 [ BC18DA4B391ED0B6202123048EEC4A0D ] C:\WINDOWS\system32\mfc42.dll
18:47:01.0171 3876 C:\WINDOWS\system32\mfc42.dll - ok
18:47:01.0187 3876 [ C0B677971967E6807F280A0D184DD533 ] C:\WINDOWS\system32\mfc42loc.dll
18:47:01.0187 3876 C:\WINDOWS\system32\mfc42loc.dll - ok
18:47:01.0187 3876 [ B07780B0B2CF4F6456289679FE9DF368 ] C:\WINDOWS\system32\wsock32.dll
18:47:01.0187 3876 C:\WINDOWS\system32\wsock32.dll - ok
18:47:01.0203 3876 [ 9C2600C566BA40953FDF4D886D47FB94 ] C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
18:47:01.0203 3876 C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe - ok
18:47:01.0218 3876 [ 5F4A91C3FFBF6F3A52FA3FDE197E6EE6 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\BaseLib.dll
18:47:01.0218 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\BaseLib.dll - ok
18:47:01.0234 3876 [ 53FD34153D9EB9C6B50D6635B3A5DF4A ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\svrpack.dll
18:47:01.0234 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\svrpack.dll - ok
18:47:01.0250 3876 [ 2F33F82AC02F0106CD6C39B392BCC1B4 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\ExtraLib.dll
18:47:01.0250 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\ExtraLib.dll - ok
18:47:01.0265 3876 [ E8335D896DECD1C1B7AD583411EC9F5D ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\CsCvt.dll
18:47:01.0265 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\CsCvt.dll - ok
18:47:01.0281 3876 [ F3AB0933CBD166D271992F411C27CCAF ] C:\WINDOWS\system32\cryptsvc.dll
18:47:01.0281 3876 C:\WINDOWS\system32\cryptsvc.dll - ok
18:47:01.0296 3876 [ 9C5A5ADA4A7B346FC9AF90E12C2B581C ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\EriT39s.plug
18:47:01.0296 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\EriT39s.plug - ok
18:47:01.0296 3876 [ 7BF2BC7728F77838E195743E76727F7B ] C:\WINDOWS\system32\certcli.dll
18:47:01.0296 3876 C:\WINDOWS\system32\certcli.dll - ok
18:47:01.0312 3876 [ 8F309463941C046F30C66F431BBB067E ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Other.base
18:47:01.0312 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Other.base - ok
18:47:01.0328 3876 [ 4F74184920B2D6E33024409B4C5C57C1 ] C:\Program Files\Common Files\Motive\McciCMService.exe
18:47:01.0328 3876 C:\Program Files\Common Files\Motive\McciCMService.exe - ok
18:47:01.0343 3876 [ F2C6EAC4E68611FF04677B8461C47A18 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\EriT610s.plug
18:47:01.0343 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\EriT610s.plug - ok
18:47:01.0343 3876 [ A371F11EF07653591C8DE26AFB13CE7F ] C:\WINDOWS\system32\es.dll
18:47:01.0343 3876 C:\WINDOWS\system32\es.dll - ok
18:47:01.0359 3876 [ A2A4912798F2BE706ABADD3D30800D16 ] C:\WINDOWS\system32\ersvc.dll
18:47:01.0359 3876 C:\WINDOWS\system32\ersvc.dll - ok
18:47:01.0375 3876 [ 00E25EE90166B3E1BE6E74AEBF858306 ] C:\WINDOWS\system32\hidserv.dll
18:47:01.0375 3876 C:\WINDOWS\system32\hidserv.dll - ok
18:47:01.0390 3876 [ FFB0A2D2B73A64979CD29C15B3B0A9D5 ] C:\WINDOWS\system32\hid.dll
18:47:01.0390 3876 C:\WINDOWS\system32\hid.dll - ok
18:47:01.0406 3876 [ FCFE31FB75F8A6295B6B0AF87A626282 ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
18:47:01.0406 3876 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
18:47:01.0421 3876 [ 2BFEFE9E865655A76982F050450B9591 ] C:\WINDOWS\system32\dmserver.dll
18:47:01.0421 3876 C:\WINDOWS\system32\dmserver.dll - ok
18:47:01.0437 3876 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] C:\WINDOWS\system32\HPZipm12.exe
18:47:01.0437 3876 C:\WINDOWS\system32\HPZipm12.exe - ok
18:47:01.0453 3876 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] C:\WINDOWS\system32\srvsvc.dll
18:47:01.0453 3876 C:\WINDOWS\system32\srvsvc.dll - ok
18:47:01.0453 3876 [ 25F816B13512D251261DE9715F26408E ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\EriT68s.plug
18:47:01.0453 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\EriT68s.plug - ok
18:47:01.0468 3876 [ D76D39056EF8B8C09BC544754448E48F ] C:\WINDOWS\system32\ipsecsvc.dll
18:47:01.0468 3876 C:\WINDOWS\system32\ipsecsvc.dll - ok
18:47:01.0484 3876 [ D5A00F3273271AA981AF3B5F3652B795 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Lg622.plug
18:47:01.0484 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Lg622.plug - ok
18:47:01.0500 3876 [ D905050080DB4CCC3EB09AD24DE6BD67 ] C:\WINDOWS\system32\netmsg.dll
18:47:01.0500 3876 C:\WINDOWS\system32\netmsg.dll - ok
18:47:01.0515 3876 [ 8F31505484A190D5B22274708799F4EC ] C:\WINDOWS\system32\regsvc.dll
18:47:01.0515 3876 C:\WINDOWS\system32\regsvc.dll - ok
18:47:01.0531 3876 [ 44E2D9C2C7192467D4D0A8E03A621567 ] C:\WINDOWS\system32\oakley.dll
18:47:01.0531 3876 C:\WINDOWS\system32\oakley.dll - ok
18:47:01.0546 3876 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] C:\WINDOWS\system32\seclogon.dll
18:47:01.0546 3876 C:\WINDOWS\system32\seclogon.dll - ok
18:47:01.0562 3876 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] C:\WINDOWS\system32\termsrv.dll
18:47:01.0562 3876 C:\WINDOWS\system32\termsrv.dll - ok
18:47:01.0562 3876 [ BDFA6A3A7CE1D083889B316A484A356A ] C:\WINDOWS\system32\drivers\zntport.sys
18:47:01.0562 3876 C:\WINDOWS\system32\drivers\zntport.sys - ok
18:47:01.0578 3876 [ 0A23F1A798F05966457A16FCD09B19D4 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\MotoE1000s.plug
18:47:01.0578 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\MotoE1000s.plug - ok
18:47:01.0593 3876 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] C:\WINDOWS\system32\wiaservc.dll
18:47:01.0593 3876 C:\WINDOWS\system32\wiaservc.dll - ok
18:47:01.0609 3876 [ 35B91147124F64AC8081A2EDB9EA4DEE ] C:\WINDOWS\system32\srsvc.dll
18:47:01.0609 3876 C:\WINDOWS\system32\srsvc.dll - ok
18:47:01.0625 3876 [ 72C1FF5AE0330CCF9C35BCBBAD267F3B ] C:\WINDOWS\system32\icaapi.dll
18:47:01.0625 3876 C:\WINDOWS\system32\icaapi.dll - ok
18:47:01.0640 3876 [ 6E0F6ABF57F2E3A73456450A1501D9B3 ] C:\WINDOWS\system32\mstlsapi.dll
18:47:01.0640 3876 C:\WINDOWS\system32\mstlsapi.dll - ok
18:47:01.0656 3876 [ 8D65C4D78E0D22E2655AFEB682656F15 ] C:\WINDOWS\system32\winipsec.dll
18:47:01.0656 3876 C:\WINDOWS\system32\winipsec.dll - ok
18:47:01.0671 3876 [ BCFF4AF4E7A7433A827612716801A00D ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\MotoV600s.plug
18:47:01.0671 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\MotoV600s.plug - ok
18:47:01.0671 3876 [ F23EB535F0834B3B1E0CDD16DB4ED7A1 ] C:\WINDOWS\system32\cfgmgr32.dll
18:47:01.0671 3876 C:\WINDOWS\system32\cfgmgr32.dll - ok
18:47:01.0687 3876 [ A530B75C10C23C9AB28FDB6CE719E21F ] C:\WINDOWS\system32\sens.dll
18:47:01.0687 3876 C:\WINDOWS\system32\sens.dll - ok
18:47:01.0703 3876 [ 4F45453DF86912A09E757859FE18A26C ] C:\WINDOWS\system32\mscms.dll
18:47:01.0703 3876 C:\WINDOWS\system32\mscms.dll - ok
18:47:01.0718 3876 [ D92DBED30DBF45E7D2700596BB491B03 ] C:\WINDOWS\system32\pstorsvc.dll
18:47:01.0718 3876 C:\WINDOWS\system32\pstorsvc.dll - ok
18:47:01.0734 3876 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] C:\WINDOWS\system32\trkwks.dll
18:47:01.0734 3876 C:\WINDOWS\system32\trkwks.dll - ok
18:47:01.0750 3876 [ 3D8593AA6CB1C610CCC4EE4A2079841C ] C:\WINDOWS\system32\psbase.dll
18:47:01.0750 3876 C:\WINDOWS\system32\psbase.dll - ok
18:47:01.0765 3876 [ F56F8CCDE3CB8C816B64F90F4ED22A5D ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\MtAll.plug
18:47:01.0765 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\MtAll.plug - ok
18:47:01.0765 3876 [ CD78F171ACF966E4F83302C4192E881F ] C:\WINDOWS\system32\spoolss.dll
18:47:01.0781 3876 C:\WINDOWS\system32\spoolss.dll - ok
18:47:01.0781 3876 [ E488332126E3B1182D2B8A0C35408EC6 ] C:\WINDOWS\system32\wbem\wmisvc.dll
18:47:01.0781 3876 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
18:47:01.0796 3876 [ 32BAAEAEC3ED1536ED6EA387C4AA85A5 ] C:\WINDOWS\system32\localspl.dll
18:47:01.0796 3876 C:\WINDOWS\system32\localspl.dll - ok
18:47:01.0812 3876 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
18:47:01.0812 3876 C:\WINDOWS\system32\drivers\srv.sys - ok
18:47:01.0828 3876 [ 1635D157B5DAEADAF323B5E9FB6FD5E2 ] C:\WINDOWS\system32\vssapi.dll
18:47:01.0828 3876 C:\WINDOWS\system32\vssapi.dll - ok
18:47:01.0828 3876 [ 926AFE972E919D10360C7C444900A0F5 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\NokiaDku2.plug
18:47:01.0828 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\NokiaDku2.plug - ok
18:47:01.0843 3876 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
18:47:01.0843 3876 C:\WINDOWS\system32\dssenh.dll - ok
18:47:01.0859 3876 [ F66D2E3B8CA33F29D63F27A5676FE0C9 ] C:\WINDOWS\system32\rdpwsx.dll
18:47:01.0859 3876 C:\WINDOWS\system32\rdpwsx.dll - ok
18:47:01.0875 3876 [ EDB3D87983DA77A0A4CFA046C8BCE5CA ] C:\WINDOWS\system32\cnbjmon.dll
18:47:01.0875 3876 C:\WINDOWS\system32\cnbjmon.dll - ok
18:47:01.0890 3876 [ 81E9A9DBF97157D5959F5E7C9BCFB964 ] C:\WINDOWS\system32\BsCommon.dll
18:47:01.0890 3876 C:\WINDOWS\system32\BsCommon.dll - ok
18:47:01.0906 3876 [ 8715AE825FB420E782ECD8AF77FA1062 ] C:\WINDOWS\system32\BsMonSvr.dll
18:47:01.0906 3876 C:\WINDOWS\system32\BsMonSvr.dll - ok
18:47:01.0921 3876 [ BF68248D574FA7C84FD72B721F1C55B5 ] C:\WINDOWS\system32\BsSDK.dll
18:47:01.0921 3876 C:\WINDOWS\system32\BsSDK.dll - ok
18:47:01.0921 3876 [ 0E8CB0A757E27B87F4DB45AC031BF02E ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
18:47:01.0921 3876 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
18:47:01.0937 3876 [ 0DE69B6DF002A94C969A92DF3780C1F4 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Nokia.base
18:47:01.0937 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Nokia.base - ok
18:47:01.0953 3876 [ C1364564800EE9784192145324A23308 ] C:\WINDOWS\system32\wuauserv.dll
18:47:01.0953 3876 C:\WINDOWS\system32\wuauserv.dll - ok
18:47:01.0968 3876 [ 67B155299A158B33067C7B16841FD362 ] C:\WINDOWS\system32\BsMobileSDK.dll
18:47:01.0968 3876 C:\WINDOWS\system32\BsMobileSDK.dll - ok
18:47:01.0984 3876 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
18:47:01.0984 3876 C:\WINDOWS\system32\wuaueng.dll - ok
18:47:02.0000 3876 [ A296C47A9CB6EAF85418B17F6DF81065 ] C:\WINDOWS\system32\Bs2Res.dll
18:47:02.0000 3876 C:\WINDOWS\system32\Bs2Res.dll - ok
18:47:02.0015 3876 [ 4E460240CB29778F5F8C1FEB38806679 ] C:\WINDOWS\system32\HPTcpMon.dll
18:47:02.0015 3876 C:\WINDOWS\system32\HPTcpMon.dll - ok
18:47:02.0031 3876 [ EAB45B0DEDE0670F5029F804DFA7CE9E ] C:\WINDOWS\system32\HPTcpMUI.dll
18:47:02.0031 3876 C:\WINDOWS\system32\HPTcpMUI.dll - ok
18:47:02.0031 3876 [ EE142789631138C42112B5B757DDE6A9 ] C:\WINDOWS\system32\hpzjrd01.dll
18:47:02.0031 3876 C:\WINDOWS\system32\hpzjrd01.dll - ok
18:47:02.0046 3876 [ EF5C4757C35B5892D97EA14D9F3FA045 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\NokiaDku5.plug
18:47:02.0046 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\NokiaDku5.plug - ok
18:47:02.0062 3876 [ ADBB61BF0B9C97DE818090738EC71E57 ] C:\WINDOWS\system32\HPTcpMib.dll
18:47:02.0062 3876 C:\WINDOWS\system32\HPTcpMib.dll - ok
18:47:02.0078 3876 [ B61BC0FC94C5D83D74DB71672446BE14 ] C:\WINDOWS\system32\mgmtapi.dll
18:47:02.0078 3876 C:\WINDOWS\system32\mgmtapi.dll - ok
18:47:02.0078 3876 [ 643569529D150D8BF7AA690DEE5BF43B ] C:\WINDOWS\system32\snmpapi.dll
18:47:02.0078 3876 C:\WINDOWS\system32\snmpapi.dll - ok
18:47:02.0093 3876 [ 2898D940AB492340C3F8DDD7707E1B78 ] C:\WINDOWS\system32\wsnmp32.dll
18:47:02.0093 3876 C:\WINDOWS\system32\wsnmp32.dll - ok
18:47:02.0109 3876 [ AE7EBD55B8284FE791EA73F38AA861B6 ] C:\WINDOWS\system32\hpzsnt05.dll
18:47:02.0109 3876 C:\WINDOWS\system32\hpzsnt05.dll - ok
18:47:02.0125 3876 [ FDB859F93C8491F961C3B9168FA90F51 ] C:\WINDOWS\system32\hpz3l054.dll
18:47:02.0125 3876 C:\WINDOWS\system32\hpz3l054.dll - ok
18:47:02.0140 3876 [ E2EB496B7A1CACF6550EF028B329893A ] C:\WINDOWS\system32\pjlmon.dll
18:47:02.0140 3876 C:\WINDOWS\system32\pjlmon.dll - ok
18:47:02.0156 3876 [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\WINDOWS\system32\msonpmon.dll
18:47:02.0156 3876 C:\WINDOWS\system32\msonpmon.dll - ok
18:47:02.0171 3876 [ 127FF5077A44A70AF3D09EB34CB11810 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\NokiaOld.Plug
18:47:02.0171 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\NokiaOld.Plug - ok
18:47:02.0187 3876 [ 1169436EE42F860C7DB37A4692B38F0E ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
18:47:02.0187 3876 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll - ok
18:47:02.0187 3876 [ 8B50013ABD709CBED19CAA716118A2CD ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\PanaX70.plug
18:47:02.0187 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\PanaX70.plug - ok
18:47:02.0203 3876 [ 3A3C1A6E89530C0E85681C723BB69DEE ] C:\WINDOWS\system32\mspatcha.dll
18:47:02.0203 3876 C:\WINDOWS\system32\mspatcha.dll - ok
18:47:02.0218 3876 [ 05A6D4AE85AEB83A9B1F892AA142E08B ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Phi568.plug
18:47:02.0218 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\Phi568.plug - ok
18:47:02.0234 3876 [ 2C264A0CC77E3E307D5FE407F90FAF5E ] C:\WINDOWS\system32\msi.dll
18:47:02.0234 3876 C:\WINDOWS\system32\msi.dll - ok
18:47:02.0250 3876 [ 1CF31B59FDD8C0E529BA918A2AAC3032 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SagemX8.plug
18:47:02.0250 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SagemX8.plug - ok
18:47:02.0265 3876 [ BE42FB02ACC6DA9D4343F9A2D6169D5D ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SamD500.plug
18:47:02.0265 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SamD500.plug - ok
18:47:02.0281 3876 [ F7208705BCED0C3F47530349FD83F05C ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SamE720.plug
18:47:02.0281 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SamE720.plug - ok
18:47:02.0296 3876 [ F6ACEE75AA6CFB14C2062F425E27038A ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SharpGZ200.plug
18:47:02.0296 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SharpGZ200.plug - ok
18:47:02.0296 3876 [ 519C77BC60B14AB6187C4D328105CD61 ] C:\WINDOWS\system32\tcpmon.dll
18:47:02.0296 3876 C:\WINDOWS\system32\tcpmon.dll - ok
18:47:02.0312 3876 [ 2143BCB3450124682E764FACD81FB833 ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SmeX55.plug
18:47:02.0312 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SmeX55.plug - ok
18:47:02.0328 3876 [ 9DD7DCC47F1EAA3FBCC985C20AD71B64 ] C:\WINDOWS\system32\usbmon.dll
18:47:02.0328 3876 C:\WINDOWS\system32\usbmon.dll - ok
18:47:02.0343 3876 [ 5C3598E4BC33B23FF26E85E52B2AAF2E ] C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SmeX65.plug
18:47:02.0343 3876 C:\Program Files\IVT Corporation\BlueSoleil\Mobile\MsmPlugs\SmeX65.plug - ok
18:47:02.0343 3876 [ 4B410E9DBC93846D2E6C9EBDE8304845 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp054.dll
18:47:02.0343 3876 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp054.dll - ok
18:47:02.0359 3876 [ F348280907B38FDBDB3CEF55D456E149 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
18:47:02.0359 3876 C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll - ok
18:47:02.0375 3876 [ 1EC6A255B9B5AE8F53F0F3A41E66E5FD ] C:\WINDOWS\system32\win32spl.dll
18:47:02.0375 3876 C:\WINDOWS\system32\win32spl.dll - ok
18:47:02.0390 3876 [ 6E3248D3F8766502A51DF12F1F54BCE3 ] C:\WINDOWS\system32\netrap.dll
18:47:02.0390 3876 C:\WINDOWS\system32\netrap.dll - ok
18:47:02.0406 3876 [ F420C325956CA593679A8796065BFBB6 ] C:\WINDOWS\system32\inetpp.dll
18:47:02.0406 3876 C:\WINDOWS\system32\inetpp.dll - ok
18:47:02.0421 3876 [ F58FACA9621D2DB01BD0927D9A0A208E ] C:\WINDOWS\system32\ipnathlp.dll
18:47:02.0421 3876 C:\WINDOWS\system32\ipnathlp.dll - ok
18:47:02.0437 3876 [ 15BC40DEDF4E5A0DDB5D3623B9483DDA ] C:\WINDOWS\system32\wbem\wbemcore.dll
18:47:02.0437 3876 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
18:47:02.0453 3876 [ BE47A0CA98B7192B59DC27A843C9CEA1 ] C:\WINDOWS\system32\wbem\esscli.dll
18:47:02.0453 3876 C:\WINDOWS\system32\wbem\esscli.dll - ok
18:47:02.0453 3876 [ FA898CA2FB6FBE4A46F9D27971B3E1B5 ] C:\WINDOWS\system32\wbem\fastprox.dll
18:47:02.0453 3876 C:\WINDOWS\system32\wbem\fastprox.dll - ok
18:47:02.0468 3876 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
18:47:02.0468 3876 C:\WINDOWS\system32\wups.dll - ok
18:47:02.0484 3876 [ 48D065081DC8666764A903952AD6FB80 ] C:\WINDOWS\system32\comsvcs.dll
18:47:02.0484 3876 C:\WINDOWS\system32\comsvcs.dll - ok
18:47:02.0500 3876 [ 0892B57DC527FCED9FB02F2E6343C5FF ] C:\WINDOWS\system32\colbact.dll
18:47:02.0500 3876 C:\WINDOWS\system32\colbact.dll - ok
18:47:02.0515 3876 [ F0A0997640611EB605A122023FE47204 ] C:\WINDOWS\system32\clusapi.dll
18:47:02.0515 3876 C:\WINDOWS\system32\clusapi.dll - ok
18:47:02.0531 3876 [ E9113D2BAAE752340038024DAFC23535 ] C:\WINDOWS\system32\mtxclu.dll
18:47:02.0531 3876 C:\WINDOWS\system32\mtxclu.dll - ok
18:47:02.0546 3876 [ FBA94CD67E28DF2BDB4D6824A95FF9DB ] C:\WINDOWS\system32\resutils.dll
18:47:02.0546 3876 C:\WINDOWS\system32\resutils.dll - ok
18:47:02.0562 3876 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
18:47:02.0562 3876 C:\WINDOWS\system32\wups2.dll - ok
18:47:02.0562 3876 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] C:\WINDOWS\system32\wscsvc.dll
18:47:02.0562 3876 C:\WINDOWS\system32\wscsvc.dll - ok
18:47:02.0578 3876 [ 89E739BBA5F636297EA5B5F811189E06 ] C:\WINDOWS\system32\browser.dll
18:47:02.0578 3876 C:\WINDOWS\system32\browser.dll - ok
18:47:02.0593 3876 [ 8E70589EC4DDE3B22C5EE4A527BA0865 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
18:47:02.0593 3876 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
18:47:02.0609 3876 [ 8A36A2FF9C36BCDDCBD8F7C0C4DC0083 ] C:\WINDOWS\system32\wbem\wmiutils.dll
18:47:02.0609 3876 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
18:47:02.0625 3876 [ E8A0384A25ECA1188E6F19F548947B53 ] C:\WINDOWS\system32\wbem\repdrvfs.dll
18:47:02.0625 3876 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
18:47:02.0640 3876 [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
18:47:02.0640 3876 C:\WINDOWS\system32\wuauclt.exe - ok
18:47:02.0656 3876 [ 4C501DD03666A9427DFEE53C3BD13900 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
18:47:02.0656 3876 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
18:47:02.0671 3876 [ 2FDB32EF0E2CFF15ECC751BD61235398 ] C:\WINDOWS\system32\wbem\wbemess.dll
18:47:02.0671 3876 C:\WINDOWS\system32\wbem\wbemess.dll - ok
18:47:02.0671 3876 [ C56B6D0402371CF3700EB322EF3AAF61 ] C:\WINDOWS\system32\drivers\tdtcp.sys
18:47:02.0671 3876 C:\WINDOWS\system32\drivers\tdtcp.sys - ok
18:47:02.0687 3876 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] C:\WINDOWS\system32\drivers\rdpwd.sys
18:47:02.0687 3876 C:\WINDOWS\system32\drivers\rdpwd.sys - ok
18:47:02.0703 3876 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
18:47:02.0703 3876 C:\WINDOWS\system32\wuapi.dll - ok
18:47:02.0718 3876 [ 278A14BEDEF58687EAF8BEC056A78D8B ] C:\WINDOWS\system32\wscntfy.exe
18:47:02.0718 3876 C:\WINDOWS\system32\wscntfy.exe - ok
18:47:02.0734 3876 [ 76762D169FFC6727359FD58C8FC00487 ] C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
18:47:02.0734 3876 C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe - ok
18:47:02.0750 3876 [ C97254C95FF161F9EAEBE5CB0DFDEC3C ] C:\WINDOWS\system32\wbem\ncprov.dll
18:47:02.0750 3876 C:\WINDOWS\system32\wbem\ncprov.dll - ok
18:47:02.0765 3876 [ 0AF6BFCE166E427B0215DFAE361D1966 ] C:\WINDOWS\system32\BsHelpCSps.dll
18:47:02.0765 3876 C:\WINDOWS\system32\BsHelpCSps.dll - ok
18:47:02.0781 3876 [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
18:47:02.0781 3876 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
18:47:02.0781 3876 [ 88842DE939A827577BF24243699AC80A ] C:\WINDOWS\system32\alg.exe
18:47:02.0781 3876 C:\WINDOWS\system32\alg.exe - ok
18:47:02.0796 3876 [ DC02DF6BBCC74BC8022807B968BD24BC ] C:\WINDOWS\system32\wbem\wbemcons.dll
18:47:02.0796 3876 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
18:47:02.0812 3876 [ 8DBB957A4E5DCA82F90C5F8A14BC789D ] C:\WINDOWS\system32\netcfgx.dll
18:47:02.0812 3876 C:\WINDOWS\system32\netcfgx.dll - ok
18:47:02.0828 3876 [ ECCAE65799D06FB8FC44B5B4A6B66E5D ] C:\WINDOWS\system32\licwmi.dll
18:47:02.0828 3876 C:\WINDOWS\system32\licwmi.dll - ok
18:47:02.0843 3876 [ C3C4E2BDE357D77A128CE77C7E67E76A ] C:\WINDOWS\system32\wbem\framedyn.dll
18:47:02.0843 3876 C:\WINDOWS\system32\wbem\framedyn.dll - ok
18:47:02.0859 3876 [ C3E578B5FA76BAC26C078EE961EF5721 ] C:\WINDOWS\system32\licdll.dll
18:47:02.0859 3876 C:\WINDOWS\system32\licdll.dll - ok
18:47:02.0859 3876 [ E011FB730348AD9A725FA4CA15948353 ] C:\WINDOWS\system32\msxml6.dll
18:47:02.0859 3876 C:\WINDOWS\system32\msxml6.dll - ok
18:47:02.0875 3876 [ A6DC9E1950657DD5AA1395CB2E5B01CD ] C:\WINDOWS\system32\wbem\cimwin32.dll
18:47:02.0875 3876 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
18:47:02.0890 3876 [ 3BE18EEB1A93CC5F70F5A9C977B71A75 ] C:\DOCUME~1\ZRUBOV~1\LOCALS~1\temp\51F4FF39-C502-488A-97E3-A8E6B1B2F61A.exe
18:47:02.0890 3876 C:\DOCUME~1\ZRUBOV~1\LOCALS~1\temp\51F4FF39-C502-488A-97E3-A8E6B1B2F61A.exe - ok
18:47:02.0906 3876 [ D65C288E5F9B0C557F685CECC0B1B1E6 ] C:\WINDOWS\system32\msutb.dll
18:47:02.0906 3876 C:\WINDOWS\system32\msutb.dll - ok
18:47:02.0921 3876 [ 269A0930085C63E0464C85F3FA1D2DBA ] C:\WINDOWS\system32\msctf.dll
18:47:02.0921 3876 C:\WINDOWS\system32\msctf.dll - ok
18:47:02.0937 3876 [ 7FDE9FC15765E02B23E1756930165AD1 ] C:\WINDOWS\system32\linkinfo.dll
18:47:02.0937 3876 C:\WINDOWS\system32\linkinfo.dll - ok
18:47:02.0953 3876 [ 5D23A83D4B6324EC147F17334E057493 ] C:\WINDOWS\system32\ntshrui.dll
18:47:02.0953 3876 C:\WINDOWS\system32\ntshrui.dll - ok
18:47:02.0953 3876 [ 6B4377A3DA487722270E5DD2A20DDDF2 ] C:\WINDOWS\system32\verclsid.exe
18:47:02.0968 3876 C:\WINDOWS\system32\verclsid.exe - ok
18:47:02.0968 3876 [ 9DB17EA44276963E155E908B8EAF2DEF ] C:\WINDOWS\RTHDCPL.EXE
18:47:02.0968 3876 C:\WINDOWS\RTHDCPL.EXE - ok
18:47:02.0984 3876 [ 33FC9AB5D74633F257B879B401F70BBE ] C:\WINDOWS\system32\rundll32.exe
18:47:02.0984 3876 C:\WINDOWS\system32\rundll32.exe - ok
18:47:03.0000 3876 [ C5A3BFD6D7BFC86CE47DF36923FE61A7 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
18:47:03.0000 3876 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
18:47:03.0015 3876 [ 83B683A510B5119FD4F6F84AB0BDF3FB ] C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe
18:47:03.0015 3876 C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_HotKey.exe - ok
18:47:03.0031 3876 [ 23F7B8DB5D4AAB03FF544F93E6103ACA ] C:\Program Files\TO2SSM\McciTrayApp.exe
18:47:03.0031 3876 C:\Program Files\TO2SSM\McciTrayApp.exe - ok
18:47:03.0046 3876 [ 2CEC0358AEAF3D34E7FAEE85ED55E9EB ] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe
18:47:03.0046 3876 C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb05.exe - ok
18:47:03.0062 3876 [ 4766E3ABE6BC139D6076DEFB5A7C8480 ] C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
18:47:03.0062 3876 C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe - ok
18:47:03.0062 3876 [ 0837EF72FA796C3D1E40BE886ADC332C ] C:\WINDOWS\system32\Bscdlg.dll
18:47:03.0062 3876 C:\WINDOWS\system32\Bscdlg.dll - ok
18:47:03.0078 3876 [ 581C7F828CA6569D88477AC70B2DD9EC ] C:\WINDOWS\system32\BsLangInDepRes.dll
18:47:03.0078 3876 C:\WINDOWS\system32\BsLangInDepRes.dll - ok
18:47:03.0093 3876 [ 687B71C161B246ECE1A13D24AACF0413 ] C:\Program Files\Microsoft Security Client\msseces.exe
18:47:03.0093 3876 C:\Program Files\Microsoft Security Client\msseces.exe - ok
18:47:03.0109 3876 [ 61347A0764DB25825C521C82F63D21FF ] C:\WINDOWS\system32\bthprops.cpl
18:47:03.0109 3876 C:\WINDOWS\system32\bthprops.cpl - ok
18:47:03.0125 3876 [ 44C3257AA79246B247C1EC37075C4375 ] C:\WINDOWS\system32\SiSPower.dll
18:47:03.0125 3876 C:\WINDOWS\system32\SiSPower.dll - ok
18:47:03.0140 3876 [ 5D999BF519415D1C8EE0B97FF6A254DB ] C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL
18:47:03.0140 3876 C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL - ok
18:47:03.0156 3876 [ AEC67D05840ED618DAF8A19BF8E80BAA ] C:\WINDOWS\system32\upnp.dll
18:47:03.0156 3876 C:\WINDOWS\system32\upnp.dll - ok
18:47:03.0156 3876 [ 7EAEB8FBD9B69E393521759CE4C79F9C ] C:\WINDOWS\system32\devmgr.dll
18:47:03.0171 3876 C:\WINDOWS\system32\devmgr.dll - ok
18:47:03.0171 3876 [ 55C3D3D15782ED6A92BDDEC0AE48E9E9 ] C:\WINDOWS\system32\ssdpapi.dll
18:47:03.0171 3876 C:\WINDOWS\system32\ssdpapi.dll - ok
18:47:03.0187 3876 [ D6B18454ACCBA9258735ACD83BC4F220 ] C:\WINDOWS\system32\msisip.dll
18:47:03.0187 3876 C:\WINDOWS\system32\msisip.dll - ok
18:47:03.0203 3876 [ DA97675EC9029801E874E52208DEDF83 ] C:\WINDOWS\system32\wshext.dll
18:47:03.0203 3876 C:\WINDOWS\system32\wshext.dll - ok
18:47:03.0218 3876 [ 4543367E50BD35E7D1269D42841B156E ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
18:47:03.0218 3876 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe - ok
18:47:03.0234 3876 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
18:47:03.0234 3876 C:\WINDOWS\system32\drivers\http.sys - ok
18:47:03.0250 3876 [ 862E1CC09441B192218E86C0CA5C5F30 ] C:\WINDOWS\system32\SynCOM.dll
18:47:03.0250 3876 C:\WINDOWS\system32\SynCOM.dll - ok
18:47:03.0265 3876 [ 630F185A7A3CBABE2CF591BBB36985E1 ] C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
18:47:03.0265 3876 C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe - ok
18:47:03.0265 3876 [ 128DD9AF8640DBCC711940903C8B554F ] C:\WINDOWS\system32\mscoree.dll
18:47:03.0265 3876 C:\WINDOWS\system32\mscoree.dll - ok
18:47:03.0281 3876 [ 1E5ACC40DBF59B53C04DEB0BC8AD7442 ] C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe
18:47:03.0281 3876 C:\Program Files\FSC\Wireless Utility\WirelessSelector.exe - ok
18:47:03.0296 3876 [ 24A8A18B68E7F5436C277C7BE71C9FE5 ] C:\Program Files\OpenOffice.org 3\program\quickstart.exe
18:47:03.0296 3876 C:\Program Files\OpenOffice.org 3\program\quickstart.exe - ok
18:47:03.0312 3876 [ 32C26797AB646074A2BB562F9D10ADB5 ] C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
18:47:03.0312 3876 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE - ok
18:47:03.0312 3876 [ 53BAF27CA22DE1F5B346622F3EAE9ECB ] C:\Program Files\Microsoft Office\Office12\1029\ONINTL.DLL
18:47:03.0312 3876 C:\Program Files\Microsoft Office\Office12\1029\ONINTL.DLL - ok
18:47:03.0328 3876 [ 36CCAE7C9264535935E27C82FFB4509C ] C:\Program Files\FSC\Wireless Utility\NTPORT.DLL
18:47:03.0328 3876 C:\Program Files\FSC\Wireless Utility\NTPORT.DLL - ok
18:47:03.0343 3876 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\OpenOffice.org 3\program\msvcr71.dll
18:47:03.0343 3876 C:\Program Files\OpenOffice.org 3\program\msvcr71.dll - ok
18:47:03.0359 3876 [ 425FDBF3C4F268ED0543BE2E747684B7 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
18:47:03.0359 3876 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll - ok
18:47:03.0375 3876 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] C:\WINDOWS\system32\ssdpsrv.dll
18:47:03.0375 3876 C:\WINDOWS\system32\ssdpsrv.dll - ok
18:47:03.0390 3876 [ 3FBE1CFB1C1B8078C48162B88B20BF3B ] C:\WINDOWS\system32\SynTPAPI.dll
18:47:03.0390 3876 C:\WINDOWS\system32\SynTPAPI.dll - ok
18:47:03.0406 3876 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
18:47:03.0406 3876 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll - ok
18:47:03.0421 3876 [ 7C87A5FB95777E4132B11FC3D92CAAF5 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll
18:47:03.0421 3876 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll - ok
18:47:03.0421 3876 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\53806012.sys
18:47:03.0421 3876 C:\WINDOWS\system32\drivers\53806012.sys - ok
18:47:03.0437 3876 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
18:47:03.0437 3876 C:\WINDOWS\system32\webcheck.dll - ok
18:47:03.0453 3876 [ 9F93567C76C9E3CA7CD0171EFB124020 ] C:\WINDOWS\system32\BsProfileFunc.dll
18:47:03.0453 3876 C:\WINDOWS\system32\BsProfileFunc.dll - ok
18:47:03.0468 3876 [ 0FC6A06A953F7F4A8336DB27767310C4 ] C:\WINDOWS\system32\rasdlg.dll
18:47:03.0468 3876 C:\WINDOWS\system32\rasdlg.dll - ok
18:47:03.0484 3876 [ B68B20BC561C8ECF672DF627A4D8DC8F ] C:\WINDOWS\system32\stobject.dll
18:47:03.0484 3876 C:\WINDOWS\system32\stobject.dll - ok
18:47:03.0500 3876 [ C4A2E21E829766FFBA11B854502E81DD ] C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll

Max_cz · #42 Příspěvek od **Max_cz** » 23 srp 2012 17:53

18:47:03.0500 3876 C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll - ok
18:47:03.0515 3876 [ 332D5439C89E9FA475EDFB69B02E1975 ] C:\WINDOWS\system32\shfolder.dll
18:47:03.0515 3876 C:\WINDOWS\system32\shfolder.dll - ok
18:47:03.0531 3876 [ F6791D20B574C2076479203D91E42734 ] C:\Program Files\OpenOffice.org 3\program\soffice.exe
18:47:03.0531 3876 C:\Program Files\OpenOffice.org 3\program\soffice.exe - ok
18:47:03.0531 3876 [ 3DA977851FE3013741091ED584EE7658 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
18:47:03.0531 3876 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll - ok
18:47:03.0546 3876 [ 8E009E7AC012823845D5F39A77F4A27F ] C:\WINDOWS\system32\dsound.dll
18:47:03.0546 3876 C:\WINDOWS\system32\dsound.dll - ok
18:47:03.0562 3876 [ E868299439DCBFD5117A2FEB90217C84 ] C:\WINDOWS\system32\batmeter.dll
18:47:03.0562 3876 C:\WINDOWS\system32\batmeter.dll - ok
18:47:03.0578 3876 [ F7B93AAFAD33B2320954C17E26C8D361 ] C:\WINDOWS\system32\imapi.exe
18:47:03.0578 3876 C:\WINDOWS\system32\imapi.exe - ok
18:47:03.0593 3876 [ 1B01E7F30FED150FA8015C9E6EF0CB09 ] C:\WINDOWS\system32\hhctrl.ocx
18:47:03.0593 3876 C:\WINDOWS\system32\hhctrl.ocx - ok
18:47:03.0593 3876 [ 0EC84FFCF769D2B4E2998BA36474792D ] C:\WINDOWS\system32\versit.dll
18:47:03.0593 3876 C:\WINDOWS\system32\versit.dll - ok
18:47:03.0609 3876 [ 64D6E922964D2F8F7665DCCE6D13DD51 ] C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll
18:47:03.0609 3876 C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll - ok
18:47:03.0625 3876 [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\system32\WPDShServiceObj.dll
18:47:03.0625 3876 C:\WINDOWS\system32\WPDShServiceObj.dll - ok
18:47:03.0640 3876 [ A8E35801E04A4183A27DF60829402867 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
18:47:03.0640 3876 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
18:47:03.0656 3876 [ 654DB0DAC68ED84EA4848160B6F2ADA0 ] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
18:47:03.0656 3876 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc - ok
18:47:03.0671 3876 [ 814E84685DB4E9B6971D6247BF33209E ] C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll
18:47:03.0671 3876 C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll - ok
18:47:03.0687 3876 [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
18:47:03.0687 3876 C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
18:47:03.0703 3876 [ 6865072D4D05D9E994722CB492628791 ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_d9497e42\mscorlib.dll
18:47:03.0703 3876 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_d9497e42\mscorlib.dll - ok
18:47:03.0703 3876 [ ABEC6AD92EDE64CFD3E63CF846248EB2 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
18:47:03.0703 3876 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll - ok
18:47:03.0718 3876 [ AAE63E9B22A217E2763A7E67894222D1 ] C:\WINDOWS\system32\mui\0005\hhctrlui.dll
18:47:03.0718 3876 C:\WINDOWS\system32\mui\0005\hhctrlui.dll - ok
18:47:03.0734 3876 [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\system32\PortableDeviceApi.dll
18:47:03.0734 3876 C:\WINDOWS\system32\PortableDeviceApi.dll - ok
18:47:03.0750 3876 [ CA75C883EA05A05B592EE3C562CFAE10 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
18:47:03.0750 3876 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll - ok
18:47:03.0765 3876 [ E150AAE0FD5FDBE8DCA75AE23DE24941 ] C:\WINDOWS\system32\wbem\wmiprov.dll
18:47:03.0765 3876 C:\WINDOWS\system32\wbem\wmiprov.dll - ok
18:47:03.0781 3876 [ C52C34260B3B6C4759842F4CF992644D ] C:\WINDOWS\system32\msftedit.dll
18:47:03.0781 3876 C:\WINDOWS\system32\msftedit.dll - ok
18:47:03.0796 3876 [ ED4558869C7D2251F86CC24B90F15976 ] C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
18:47:03.0796 3876 C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll - ok
18:47:03.0796 3876 [ 4F7787FF22768AEF1BE6620F27F0E677 ] C:\WINDOWS\system32\vdmdbg.dll
18:47:03.0796 3876 C:\WINDOWS\system32\vdmdbg.dll - ok
18:47:03.0812 3876 [ CCC12B934B93505A4114779234A90FAB ] C:\Program Files\TO2SSM\McciBrowser.exe
18:47:03.0812 3876 C:\Program Files\TO2SSM\McciBrowser.exe - ok
18:47:03.0828 3876 [ 7F600419A94A1F175FABE0F15275583B ] C:\Program Files\Common Files\Motive\McciContextX.dll
18:47:03.0828 3876 C:\Program Files\Common Files\Motive\McciContextX.dll - ok
18:47:03.0843 3876 [ B15120FDD741500C20C4DCBB29BAAB46 ] C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
18:47:03.0843 3876 C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll - ok
18:47:03.0859 3876 [ 224E50DCC963263CD7A1E5D12EE95EAE ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_78a6d64c\System.dll
18:47:03.0859 3876 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_78a6d64c\System.dll - ok
18:47:03.0859 3876 [ 6113EE7CB182422F21849B170CFBEB5B ] C:\Program Files\Common Files\Motive\McciContextDetectorWin32_6-1-0_DSR.dll
18:47:03.0859 3876 C:\Program Files\Common Files\Motive\McciContextDetectorWin32_6-1-0_DSR.dll - ok
18:47:03.0875 3876 [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
18:47:03.0875 3876 C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
18:47:03.0890 3876 [ C599E7EF5D52055E4637D590AB3D8612 ] C:\Program Files\OpenOffice.org 3\program\soffice.bin
18:47:03.0890 3876 C:\Program Files\OpenOffice.org 3\program\soffice.bin - ok
18:47:03.0906 3876 [ D57554C664B64604BD1EE13EA2C07E77 ] C:\WINDOWS\system32\rasmans.dll
18:47:03.0906 3876 C:\WINDOWS\system32\rasmans.dll - ok
18:47:03.0921 3876 [ 00E5D82D53A85A23206C9E71C5D260BF ] C:\WINDOWS\system32\BlueSoleilCSps.dll
18:47:03.0921 3876 C:\WINDOWS\system32\BlueSoleilCSps.dll - ok
18:47:03.0937 3876 [ 408F0FEE14F7A93A9A5741D8BA5C83C1 ] C:\Program Files\Common Files\Motive\McciContextDetectorEmail_6-1-0_DSR.dll
18:47:03.0937 3876 C:\Program Files\Common Files\Motive\McciContextDetectorEmail_6-1-0_DSR.dll - ok
18:47:03.0953 3876 [ C2546CD7A398476F9DF5614B2AE160E8 ] C:\WINDOWS\system32\tapisrv.dll
18:47:03.0953 3876 C:\WINDOWS\system32\tapisrv.dll - ok
18:47:03.0968 3876 [ D8B25453BD74930000E5A7AF1AE139A4 ] C:\Program Files\Common Files\Motive\McciContextHook_6-1-0_DSR.dll
18:47:03.0968 3876 C:\Program Files\Common Files\Motive\McciContextHook_6-1-0_DSR.dll - ok
18:47:03.0984 3876 [ 3F3135D4015FD9FEF531CCF8DC4E4FD4 ] C:\WINDOWS\system32\dciman32.dll
18:47:03.0984 3876 C:\WINDOWS\system32\dciman32.dll - ok
18:47:03.0984 3876 [ 86F994FAF3644B1372B389D4C1155692 ] C:\WINDOWS\system32\mshtml.dll
18:47:03.0984 3876 C:\WINDOWS\system32\mshtml.dll - ok
18:47:04.0000 3876 [ 145EFD367C1FD3F5C20FD669F15DA1E2 ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_4992367b\System.Windows.Forms.dll
18:47:04.0000 3876 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_4992367b\System.Windows.Forms.dll - ok
18:47:04.0015 3876 [ F74C8AB9F489518613C60A94ADCAB00F ] C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_ONOFF.dll
18:47:04.0015 3876 C:\Program Files\FSC\TouchPad HotKey Utility\TouchPad_ONOFF.dll - ok
18:47:04.0031 3876 [ EFEC5E7E5FE57957F9592A1500762E02 ] C:\WINDOWS\system32\rastapi.dll
18:47:04.0031 3876 C:\WINDOWS\system32\rastapi.dll - ok
18:47:04.0046 3876 [ BAC8E3F046F1A96207C996EFA18C6FEB ] C:\WINDOWS\system32\BsMobileCSps.dll
18:47:04.0046 3876 C:\WINDOWS\system32\BsMobileCSps.dll - ok
18:47:04.0062 3876 [ 87BCF7A6A70060A48F9F5E6F80228A3F ] C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
18:47:04.0062 3876 C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe - ok
18:47:04.0078 3876 [ CE21D96724212D72D8D8406FD232072F ] C:\WINDOWS\system32\unimdm.tsp
18:47:04.0078 3876 C:\WINDOWS\system32\unimdm.tsp - ok
18:47:04.0078 3876 [ 06C93A33555CF66FA5618125658B7594 ] C:\WINDOWS\system32\uniplat.dll
18:47:04.0078 3876 C:\WINDOWS\system32\uniplat.dll - ok
18:47:04.0093 3876 [ DC1080D5ADACB0AD6E640EA8D06DDF2A ] C:\WINDOWS\system32\unimdmat.dll
18:47:04.0093 3876 C:\WINDOWS\system32\unimdmat.dll - ok
18:47:04.0109 3876 [ 44FE769F516A0140207B773A15D1C661 ] C:\WINDOWS\assembly\GAC\hpqiface\4.0.0.0__a53cf5803f4c3827\hpqiface.dll
18:47:04.0109 3876 C:\WINDOWS\assembly\GAC\hpqiface\4.0.0.0__a53cf5803f4c3827\hpqiface.dll - ok
18:47:04.0125 3876 [ DF695E9850F66CCCC70659975184DF2A ] C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
18:47:04.0125 3876 C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
18:47:04.0140 3876 [ 962D8973B56A1A7A0FD75956AC0A0438 ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_64a2b194\System.Drawing.dll
18:47:04.0140 3876 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_64a2b194\System.Drawing.dll - ok
18:47:04.0156 3876 [ 94E92874160C311AA3E1C9684A2655C7 ] C:\WINDOWS\system32\modemui.dll
18:47:04.0156 3876 C:\WINDOWS\system32\modemui.dll - ok
18:47:04.0171 3876 [ 51D35B6C3383B4AA8D68CA26DED1D125 ] C:\WINDOWS\assembly\GAC\hpqcc2\3.0.0.0__a53cf5803f4c3827\hpqcc2.dll
18:47:04.0171 3876 C:\WINDOWS\assembly\GAC\hpqcc2\3.0.0.0__a53cf5803f4c3827\hpqcc2.dll - ok
18:47:04.0187 3876 [ 133601A55D03031BD16DC6732D8EF1D1 ] C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll
18:47:04.0187 3876 C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll - ok
18:47:04.0203 3876 [ 4EB458471415ADA85DE62D03E770D0CD ] C:\WINDOWS\system32\kmddsp.tsp
18:47:04.0203 3876 C:\WINDOWS\system32\kmddsp.tsp - ok
18:47:04.0218 3876 [ AF6A4BCDE2343E8562D3003A1740CC96 ] C:\WINDOWS\system32\ksuser.dll
18:47:04.0218 3876 C:\WINDOWS\system32\ksuser.dll - ok
18:47:04.0218 3876 [ 2FD5B68A31883FCE02B5A98CACA226F7 ] C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc
18:47:04.0218 3876 C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc - ok
18:47:04.0234 3876 [ E3DBBB00C9CEACBDD374EFA2E9684E1F ] C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
18:47:04.0234 3876 C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll - ok
18:47:04.0250 3876 [ 6729B7A0721464EE5CD6DA22C5B36C0F ] C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
18:47:04.0250 3876 C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll - ok
18:47:04.0265 3876 [ DB58F7609F096F62A7F6A5BA12162DA1 ] C:\WINDOWS\assembly\GAC\hpqutils\4.0.0.0__a53cf5803f4c3827\hpqutils.dll
18:47:04.0265 3876 C:\WINDOWS\assembly\GAC\hpqutils\4.0.0.0__a53cf5803f4c3827\hpqutils.dll - ok
18:47:04.0281 3876 [ CCB8943DABEFD22CF9FC93934D1EE06F ] C:\WINDOWS\assembly\GAC\hpqfmrsc\4.0.0.0__a53cf5803f4c3827\hpqfmrsc.dll
18:47:04.0281 3876 C:\WINDOWS\assembly\GAC\hpqfmrsc\4.0.0.0__a53cf5803f4c3827\hpqfmrsc.dll - ok
18:47:04.0296 3876 [ EF1905EB64AE8FA60ADF221EBB5CED0D ] C:\WINDOWS\assembly\GAC\hpqtray\4.0.0.0__a53cf5803f4c3827\hpqtray.dll
18:47:04.0296 3876 C:\WINDOWS\assembly\GAC\hpqtray\4.0.0.0__a53cf5803f4c3827\hpqtray.dll - ok
18:47:04.0312 3876 [ F919C0C70C768FF6E9DB66D1C33BF7BE ] C:\WINDOWS\assembly\GAC\hpqovskn\3.0.0.0__a53cf5803f4c3827\hpqovskn.dll
18:47:04.0312 3876 C:\WINDOWS\assembly\GAC\hpqovskn\3.0.0.0__a53cf5803f4c3827\hpqovskn.dll - ok
18:47:04.0328 3876 [ C40CABC022E2183D6BB81FE984A68982 ] C:\WINDOWS\assembly\GAC\hpqimvlt\3.0.0.0__a53cf5803f4c3827\hpqimvlt.dll
18:47:04.0328 3876 C:\WINDOWS\assembly\GAC\hpqimvlt\3.0.0.0__a53cf5803f4c3827\hpqimvlt.dll - ok
18:47:04.0328 3876 [ 95638A6B405F1132499C8555382709A8 ] C:\WINDOWS\assembly\GAC\hpqthumb\3.0.0.0__a53cf5803f4c3827\hpqthumb.dll
18:47:04.0328 3876 C:\WINDOWS\assembly\GAC\hpqthumb\3.0.0.0__a53cf5803f4c3827\hpqthumb.dll - ok
18:47:04.0343 3876 [ 988492049768322F4968C9C0FE1A44C3 ] C:\WINDOWS\assembly\GAC\hpqimgrc\4.0.0.0__a53cf5803f4c3827\hpqimgrc.dll
18:47:04.0343 3876 C:\WINDOWS\assembly\GAC\hpqimgrc\4.0.0.0__a53cf5803f4c3827\hpqimgrc.dll - ok
18:47:04.0359 3876 [ 6FD0456A046649399FEF9110FFFB0E79 ] C:\WINDOWS\system32\ndptsp.tsp
18:47:04.0359 3876 C:\WINDOWS\system32\ndptsp.tsp - ok
18:47:04.0375 3876 [ 29787E7C916CBAFDA26FE0AF85909EF6 ] C:\Program Files\HP\Digital Imaging\bin\cs\hpqimzone.resources.dll
18:47:04.0375 3876 C:\Program Files\HP\Digital Imaging\bin\cs\hpqimzone.resources.dll - ok
18:47:04.0390 3876 [ 2ACCD352451EC0F99AF2AD9DB6DB4439 ] C:\WINDOWS\system32\msls31.dll
18:47:04.0390 3876 C:\WINDOWS\system32\msls31.dll - ok
18:47:04.0406 3876 [ 86FD7ADC29741B1D6BF376B6703DA765 ] C:\WINDOWS\assembly\GAC\hpqntrop\4.0.0.0__a53cf5803f4c3827\hpqntrop.dll
18:47:04.0406 3876 C:\WINDOWS\assembly\GAC\hpqntrop\4.0.0.0__a53cf5803f4c3827\hpqntrop.dll - ok
18:47:04.0421 3876 [ A374B8064DAF91B2A1CAC1FDB1B919D0 ] C:\WINDOWS\assembly\GAC\Interop.hpqcxm08\3.0.0.0__a53cf5803f4c3827\Interop.hpqcxm08.dll
18:47:04.0421 3876 C:\WINDOWS\assembly\GAC\Interop.hpqcxm08\3.0.0.0__a53cf5803f4c3827\Interop.hpqcxm08.dll - ok
18:47:04.0437 3876 [ 3382CA270103BBDA349CE07BDBA60DA7 ] C:\WINDOWS\system32\ipconf.tsp
18:47:04.0437 3876 C:\WINDOWS\system32\ipconf.tsp - ok
18:47:04.0437 3876 [ A5205B3AF85B1477AB2C2A1E12201598 ] C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
18:47:04.0437 3876 C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll - ok
18:47:04.0453 3876 [ 67FF1B2F19BED51A335BBC844A32EF46 ] C:\WINDOWS\system32\h323.tsp
18:47:04.0453 3876 C:\WINDOWS\system32\h323.tsp - ok
18:47:04.0468 3876 [ 64E40FD404C15EB8E8143AD18AB48FD3 ] C:\WINDOWS\system32\msimtf.dll
18:47:04.0468 3876 C:\WINDOWS\system32\msimtf.dll - ok
18:47:04.0484 3876 [ CCA3DF71751FC1526660791CEBDD4628 ] C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll
18:47:04.0484 3876 C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll - ok
18:47:04.0500 3876 [ 6D05606C17FBA2DCC559816A2CB0FF0B ] C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll
18:47:04.0500 3876 C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll - ok
18:47:04.0515 3876 [ 2C14BFD9080113C61D79D0E11E6EE34A ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_b1dd3874\System.Xml.dll
18:47:04.0515 3876 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_b1dd3874\System.Xml.dll - ok
18:47:04.0531 3876 [ B28A503A41BA3602083BAD95D271D153 ] C:\Program Files\HP\Digital Imaging\bin\HPQDocViewer.exe
18:47:04.0531 3876 C:\Program Files\HP\Digital Imaging\bin\HPQDocViewer.exe - ok
18:47:04.0546 3876 [ A756B8F0F7BAFBA6DFE39F7D169F2519 ] C:\WINDOWS\system32\ctfmon.exe
18:47:04.0546 3876 C:\WINDOWS\system32\ctfmon.exe - ok
18:47:04.0562 3876 [ 508D2C123D48C6A63DAE370FFC6770A8 ] C:\WINDOWS\system32\hidphone.tsp
18:47:04.0562 3876 C:\WINDOWS\system32\hidphone.tsp - ok
18:47:04.0562 3876 [ 83D0F52B94011B3289EB7BF826CC8A71 ] C:\WINDOWS\assembly\GAC\mscorlib.resources\1.0.5000.0_cs_b77a5c561934e089\Mscorlib.resources.dll
18:47:04.0562 3876 C:\WINDOWS\assembly\GAC\mscorlib.resources\1.0.5000.0_cs_b77a5c561934e089\Mscorlib.resources.dll - ok
18:47:04.0578 3876 [ 8479C88126FFE6BE958E76A0D0F4F660 ] C:\WINDOWS\system32\jscript.dll
18:47:04.0578 3876 C:\WINDOWS\system32\jscript.dll - ok
18:47:04.0593 3876 [ 88D41E91779725A6B4E8EBB643C001B0 ] C:\Program Files\OpenOffice.org 3\URE\bin\sal3.dll
18:47:04.0593 3876 C:\Program Files\OpenOffice.org 3\URE\bin\sal3.dll - ok
18:47:04.0609 3876 [ 648FE0D27734BB73EF04BC6789B20935 ] C:\WINDOWS\assembly\GAC\LEAD\13.0.0.113__9cf889f53ea9b907\LEAD.dll
18:47:04.0609 3876 C:\WINDOWS\assembly\GAC\LEAD\13.0.0.113__9cf889f53ea9b907\LEAD.dll - ok
18:47:04.0625 3876 [ 335270904FED5F3629FE0D2FCAB7BD4F ] C:\WINDOWS\assembly\GAC\LEAD.Wrapper\13.0.0.113__9cf889f53ea9b907\LEAD.Wrapper.dll
18:47:04.0625 3876 C:\WINDOWS\assembly\GAC\LEAD.Wrapper\13.0.0.113__9cf889f53ea9b907\LEAD.Wrapper.dll - ok
18:47:04.0640 3876 [ E2CD12A09AAB75B19123E4AB807B2D25 ] C:\Program Files\HP\Digital Imaging\bin\ltkrn13n.dll
18:47:04.0640 3876 C:\Program Files\HP\Digital Imaging\bin\ltkrn13n.dll - ok
18:47:04.0656 3876 [ FE4083ADBD690EF8B02EC30CF756EFBD ] C:\WINDOWS\ime\sptip.dll
18:47:04.0656 3876 C:\WINDOWS\ime\sptip.dll - ok
18:47:04.0671 3876 [ 8E89B72CB355EA260936B3A59B5071A9 ] C:\Program Files\HP\Digital Imaging\Unload\hpnkhTA.dll
18:47:04.0671 3876 C:\Program Files\HP\Digital Imaging\Unload\hpnkhTA.dll - ok
18:47:04.0671 3876 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\WINDOWS\system32\MFC71.dll
18:47:04.0671 3876 C:\WINDOWS\system32\MFC71.dll - ok
18:47:04.0687 3876 [ 4D252655B9FBC4002447EEBC1751B5D9 ] C:\WINDOWS\system32\rasppp.dll
18:47:04.0687 3876 C:\WINDOWS\system32\rasppp.dll - ok
18:47:04.0703 3876 [ 8629D50A36457B58030C88C0CB0B043F ] C:\Program Files\Common Files\Motive\McciLogX.dll
18:47:04.0703 3876 C:\Program Files\Common Files\Motive\McciLogX.dll - ok
18:47:04.0718 3876 [ 745FDD7F13F34F42CA2773754672D86A ] C:\WINDOWS\assembly\GAC\hpqtray.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqtray.resources.dll
18:47:04.0718 3876 C:\WINDOWS\assembly\GAC\hpqtray.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqtray.resources.dll - ok
18:47:04.0734 3876 [ D037051D2461EBDA94A11CFE6F763762 ] C:\Program Files\Common Files\Motive\McciSMX.dll
18:47:04.0734 3876 C:\Program Files\Common Files\Motive\McciSMX.dll - ok
18:47:04.0750 3876 [ 7F7D93A344EE1CF8047EEF0BAA2E3199 ] C:\Program Files\OpenOffice.org 3\URE\bin\uwinapi.dll
18:47:04.0750 3876 C:\Program Files\OpenOffice.org 3\URE\bin\uwinapi.dll - ok
18:47:04.0765 3876 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\system32\msvcr71.dll
18:47:04.0765 3876 C:\WINDOWS\system32\msvcr71.dll - ok
18:47:04.0781 3876 [ D63EAABBB757EB417EDDC8CDB5598704 ] C:\WINDOWS\system32\ntlsapi.dll
18:47:04.0781 3876 C:\WINDOWS\system32\ntlsapi.dll - ok
18:47:04.0781 3876 [ 8F2097E8B174F38178570C611464935F ] C:\WINDOWS\system32\atl71.dll
18:47:04.0781 3876 C:\WINDOWS\system32\atl71.dll - ok
18:47:04.0796 3876 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\WINDOWS\system32\msvcp71.dll
18:47:04.0796 3876 C:\WINDOWS\system32\msvcp71.dll - ok
18:47:04.0812 3876 [ A2DB699F45B6E2D44B0077C46BB7DE70 ] C:\Program Files\OpenOffice.org 3\Basis\program\sofficeapp.dll
18:47:04.0812 3876 C:\Program Files\OpenOffice.org 3\Basis\program\sofficeapp.dll - ok
18:47:04.0828 3876 [ 00EB241917B9D83FAA64E6C30C69A0B5 ] C:\WINDOWS\assembly\GAC\hpqfmrsc.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqfmrsc.resources.dll
18:47:04.0828 3876 C:\WINDOWS\assembly\GAC\hpqfmrsc.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqfmrsc.resources.dll - ok
18:47:04.0828 3876 [ 4BBF2F7E4F0F21FDCF30F540E7331BD7 ] C:\WINDOWS\assembly\GAC\LEAD.Windows.Forms\13.0.0.113__9cf889f53ea9b907\LEAD.Windows.Forms.dll
18:47:04.0828 3876 C:\WINDOWS\assembly\GAC\LEAD.Windows.Forms\13.0.0.113__9cf889f53ea9b907\LEAD.Windows.Forms.dll - ok
18:47:04.0843 3876 [ 7F2DF847FEBCA65BA9968AC8D4B25170 ] C:\Program Files\OpenOffice.org 3\Basis\program\comphelp4MSC.dll
18:47:04.0843 3876 C:\Program Files\OpenOffice.org 3\Basis\program\comphelp4MSC.dll - ok
18:47:04.0859 3876 [ B8549829AABD31329CB20367F05630EA ] C:\WINDOWS\assembly\GAC\LEAD.Drawing\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.dll
18:47:04.0859 3876 C:\WINDOWS\assembly\GAC\LEAD.Drawing\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.dll - ok
18:47:04.0875 3876 [ 76E55B5E1EB8FD93C9684F16036785D4 ] C:\WINDOWS\assembly\GAC\interop.hpqimgr\4.0.0.0__a53cf5803f4c3827\interop.hpqimgr.dll
18:47:04.0875 3876 C:\WINDOWS\assembly\GAC\interop.hpqimgr\4.0.0.0__a53cf5803f4c3827\interop.hpqimgr.dll - ok
18:47:04.0890 3876 [ 6A1FCB39E891F3F1E4F69096A3541F98 ] C:\Program Files\Common Files\Motive\McciNetX.dll
18:47:04.0890 3876 C:\Program Files\Common Files\Motive\McciNetX.dll - ok
18:47:04.0906 3876 [ DEDF090BB17D77B12A7465486AA7F91C ] C:\WINDOWS\system32\rasqec.dll
18:47:04.0906 3876 C:\WINDOWS\system32\rasqec.dll - ok
18:47:04.0921 3876 [ 0891EC710BC41AE1A6ED492EE5DDB3CC ] C:\Program Files\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
18:47:04.0921 3876 C:\Program Files\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll - ok
18:47:04.0937 3876 [ 7864ED6B9635693AC776EDFF3C33166C ] C:\Program Files\Common Files\Motive\ipworks6.dll
18:47:04.0937 3876 C:\Program Files\Common Files\Motive\ipworks6.dll - ok
18:47:04.0937 3876 [ E0A3C6215E338EF464D755D1912DF1AE ] C:\Program Files\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
18:47:04.0937 3876 C:\Program Files\OpenOffice.org 3\URE\bin\salhelper3MSC.dll - ok
18:47:04.0953 3876 [ 7309F81A74924803EA5739908C1F9EB0 ] C:\Program Files\OpenOffice.org 3\URE\bin\cppu3.dll
18:47:04.0953 3876 C:\Program Files\OpenOffice.org 3\URE\bin\cppu3.dll - ok
18:47:04.0968 3876 [ DB2E083814B065D83F623E9C394D0F3E ] C:\Program Files\HP\Digital Imaging\bin\hpqimgr.dll
18:47:04.0968 3876 C:\Program Files\HP\Digital Imaging\bin\hpqimgr.dll - ok
18:47:04.0984 3876 [ 1620058D6D25797600FFD91305013508 ] C:\Program Files\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
18:47:04.0984 3876 C:\Program Files\OpenOffice.org 3\URE\bin\stlport_vc7145.dll - ok
18:47:05.0000 3876 [ F7EF94589A5B91C0A8B13E96F3775FCB ] C:\Program Files\Common Files\Motive\ipwssl6.dll
18:47:05.0000 3876 C:\Program Files\Common Files\Motive\ipwssl6.dll - ok
18:47:05.0015 3876 [ D7328628EE47A02CC55CB8BB16D69C34 ] C:\WINDOWS\system32\icmp.dll
18:47:05.0015 3876 C:\WINDOWS\system32\icmp.dll - ok
18:47:05.0031 3876 [ C2B7970AAE0FAA51FAD2EABB1B02B534 ] C:\Program Files\OpenOffice.org 3\Basis\program\ucbhelper4MSC.dll
18:47:05.0031 3876 C:\Program Files\OpenOffice.org 3\Basis\program\ucbhelper4MSC.dll - ok
18:47:05.0031 3876 [ E162B072785CAD20F3F5262965F2E809 ] C:\WINDOWS\system32\security.dll
18:47:05.0031 3876 C:\WINDOWS\system32\security.dll - ok
18:47:05.0046 3876 [ 10AAE1D5E87E38FE12EF48353D95D824 ] C:\WINDOWS\assembly\GAC\hpqasset\4.0.0.0__a53cf5803f4c3827\hpqasset.dll
18:47:05.0046 3876 C:\WINDOWS\assembly\GAC\hpqasset\4.0.0.0__a53cf5803f4c3827\hpqasset.dll - ok
18:47:05.0062 3876 [ 3D11B4DC80A2CD3DAD008CB1B4E7D56A ] C:\Program Files\Common Files\Motive\McciSysNetX.dll
18:47:05.0062 3876 C:\Program Files\Common Files\Motive\McciSysNetX.dll - ok
18:47:05.0078 3876 [ B51A14DB88EACFB607C351800A5C8597 ] C:\Program Files\OpenOffice.org 3\Basis\program\vos3MSC.dll
18:47:05.0078 3876 C:\Program Files\OpenOffice.org 3\Basis\program\vos3MSC.dll - ok
18:47:05.0093 3876 [ CD60DBCFB83252C32D4A0DD92D4CA0F0 ] C:\Program Files\OpenOffice.org 3\Basis\program\i18nisolang1MSC.dll
18:47:05.0093 3876 C:\Program Files\OpenOffice.org 3\Basis\program\i18nisolang1MSC.dll - ok
18:47:05.0093 3876 [ 604B8AF5A1FCE468A5016053E185553D ] C:\Program Files\OpenOffice.org 3\Basis\program\sfxmi.dll
18:47:05.0093 3876 C:\Program Files\OpenOffice.org 3\Basis\program\sfxmi.dll - ok
18:47:05.0109 3876 [ F6181AD7C61ADE698314165BF5E0CC2D ] C:\Program Files\Common Files\Motive\MREW32N55_550-1804-1_DSR.dll
18:47:05.0109 3876 C:\Program Files\Common Files\Motive\MREW32N55_550-1804-1_DSR.dll - ok
18:47:05.0125 3876 [ 769A5CA0CAC365A6DAA1049F73359A1A ] C:\Program Files\HP\Digital Imaging\bin\cs\hpqmirsc.resources.dll
18:47:05.0125 3876 C:\Program Files\HP\Digital Imaging\bin\cs\hpqmirsc.resources.dll - ok
18:47:05.0140 3876 [ FFE7D9939F4139EF33125FDBAA929FF6 ] C:\Program Files\HP\Digital Imaging\bin\hpqmirsc.dll
18:47:05.0140 3876 C:\Program Files\HP\Digital Imaging\bin\hpqmirsc.dll - ok
18:47:05.0156 3876 [ 92C82E1DE8F4E0A2457596ABB032799D ] C:\WINDOWS\assembly\GAC\hpqedit\3.0.0.0__a53cf5803f4c3827\hpqedit.dll
18:47:05.0156 3876 C:\WINDOWS\assembly\GAC\hpqedit\3.0.0.0__a53cf5803f4c3827\hpqedit.dll - ok
18:47:05.0171 3876 [ 86B33FED643591940E922D2664099EA6 ] C:\WINDOWS\assembly\GAC\hpqvideo\3.0.0.0__a53cf5803f4c3827\hpqvideo.dll
18:47:05.0171 3876 C:\WINDOWS\assembly\GAC\hpqvideo\3.0.0.0__a53cf5803f4c3827\hpqvideo.dll - ok
18:47:05.0187 3876 [ D086D14AE3E163DD38230CBC804C6747 ] C:\WINDOWS\assembly\GAC\LEAD.Windows.Forms.DrawingContainer\13.0.0.113__9cf889f53ea9b907\LEAD.Windows.Forms.DrawingContainer.dll
18:47:05.0187 3876 C:\WINDOWS\assembly\GAC\LEAD.Windows.Forms.DrawingContainer\13.0.0.113__9cf889f53ea9b907\LEAD.Windows.Forms.DrawingContainer.dll - ok
18:47:05.0187 3876 [ 6B224468CD4697BDB06D0B1B4D03CBDD ] C:\WINDOWS\assembly\GAC\hpqmdmr\4.0.0.0__a53cf5803f4c3827\hpqmdmr.dll
18:47:05.0203 3876 C:\WINDOWS\assembly\GAC\hpqmdmr\4.0.0.0__a53cf5803f4c3827\hpqmdmr.dll - ok
18:47:05.0203 3876 [ A4E1FCA3F158F3E030EC13A2A63A0F34 ] C:\Program Files\OpenOffice.org 3\Basis\program\fwemi.dll
18:47:05.0203 3876 C:\Program Files\OpenOffice.org 3\Basis\program\fwemi.dll - ok
18:47:05.0218 3876 [ F5A621C69B659258E5164306A15C9CAA ] C:\WINDOWS\assembly\GAC\LEAD.Drawing.Imaging.ImageProcessing\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.Imaging.ImageProcessing.dll
18:47:05.0218 3876 C:\WINDOWS\assembly\GAC\LEAD.Drawing.Imaging.ImageProcessing\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.Imaging.ImageProcessing.dll - ok
18:47:05.0234 3876 [ 622F95F6FC8EE203119004E730E7A80C ] C:\WINDOWS\assembly\GAC\hpqedit.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqedit.resources.dll
18:47:05.0234 3876 C:\WINDOWS\assembly\GAC\hpqedit.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqedit.resources.dll - ok
18:47:05.0250 3876 [ B43CFC68CEE189E96DBB1F6C9DE2A64A ] C:\WINDOWS\assembly\GAC\hpqimlib\3.0.0.0__a53cf5803f4c3827\hpqimlib.dll
18:47:05.0250 3876 C:\WINDOWS\assembly\GAC\hpqimlib\3.0.0.0__a53cf5803f4c3827\hpqimlib.dll - ok
18:47:05.0265 3876 [ 900DEDAE9A94BE7E8FF3CB58425100DF ] C:\Program Files\OpenOffice.org 3\Basis\program\fwimi.dll
18:47:05.0265 3876 C:\Program Files\OpenOffice.org 3\Basis\program\fwimi.dll - ok
18:47:05.0281 3876 [ FABA5F0BAFBA0D6268D32A9F277AC600 ] C:\WINDOWS\assembly\GAC\hpqglutl\4.0.0.0__a53cf5803f4c3827\hpqglutl.dll
18:47:05.0281 3876 C:\WINDOWS\assembly\GAC\hpqglutl\4.0.0.0__a53cf5803f4c3827\hpqglutl.dll - ok
18:47:05.0296 3876 [ 8A97A83293677604A7BF8A252E93610F ] C:\Program Files\OpenOffice.org 3\Basis\program\utlmi.dll
18:47:05.0296 3876 C:\Program Files\OpenOffice.org 3\Basis\program\utlmi.dll - ok
18:47:05.0296 3876 [ F955891FB44949D03BF487DA8A24B359 ] C:\WINDOWS\assembly\GAC\hpqcc2.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqcc2.resources.dll
18:47:05.0312 3876 C:\WINDOWS\assembly\GAC\hpqcc2.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqcc2.resources.dll - ok
18:47:05.0312 3876 [ B2036C9C0547A1CA8058AF325097A39F ] C:\Program Files\OpenOffice.org 3\Basis\program\tlmi.dll
18:47:05.0312 3876 C:\Program Files\OpenOffice.org 3\Basis\program\tlmi.dll - ok
18:47:05.0328 3876 [ 42EF9F73CC944236CBFBB5CFAD91B839 ] C:\Program Files\OpenOffice.org 3\Basis\program\basegfxmi.dll
18:47:05.0328 3876 C:\Program Files\OpenOffice.org 3\Basis\program\basegfxmi.dll - ok
18:47:05.0343 3876 [ FEA2FEC09C3731A45FCB563095F4F049 ] C:\Program Files\OpenOffice.org 3\Basis\program\vclmi.dll
18:47:05.0343 3876 C:\Program Files\OpenOffice.org 3\Basis\program\vclmi.dll - ok
18:47:05.0359 3876 [ FF230A95C30B02FA1E227F8BC81A9E9A ] C:\Program Files\HP\Digital Imaging\bin\cs\hpqvideo.resources.dll
18:47:05.0359 3876 C:\Program Files\HP\Digital Imaging\bin\cs\hpqvideo.resources.dll - ok
18:47:05.0375 3876 [ 420C6AC1DD94D27CCBA5F2F21EF4FBDF ] C:\Program Files\OpenOffice.org 3\Basis\program\icuuc36.dll
18:47:05.0375 3876 C:\Program Files\OpenOffice.org 3\Basis\program\icuuc36.dll - ok
18:47:05.0390 3876 [ 509E3E8FD5108568DFFB756AA1E142E1 ] C:\Program Files\OpenOffice.org 3\Basis\program\sotmi.dll
18:47:05.0390 3876 C:\Program Files\OpenOffice.org 3\Basis\program\sotmi.dll - ok
18:47:05.0406 3876 [ 1229C236B3856AEF4EE37CE4B0A4D67E ] C:\WINDOWS\assembly\GAC\interop.hpqvideo\4.0.0.0__a53cf5803f4c3827\Interop.hpqvideo.dll
18:47:05.0406 3876 C:\WINDOWS\assembly\GAC\interop.hpqvideo\4.0.0.0__a53cf5803f4c3827\Interop.hpqvideo.dll - ok
18:47:05.0406 3876 [ E09557E514242F06E0842B88DB18D0C6 ] C:\Program Files\OpenOffice.org 3\Basis\program\icudt36l.dll
18:47:05.0406 3876 C:\Program Files\OpenOffice.org 3\Basis\program\icudt36l.dll - ok
18:47:05.0421 3876 [ B3087EA2AAACFA5E74E128C5FF65B9AD ] C:\Program Files\HP\Digital Imaging\bin\hpqvdcom.dll
18:47:05.0421 3876 C:\Program Files\HP\Digital Imaging\bin\hpqvdcom.dll - ok
18:47:05.0437 3876 [ F26032C31F991C058B3FEAD1E5D29DBD ] C:\Program Files\OpenOffice.org 3\Basis\program\svlmi.dll
18:47:05.0437 3876 C:\Program Files\OpenOffice.org 3\Basis\program\svlmi.dll - ok
18:47:05.0453 3876 [ 9D6A6A1952D51D5B2A4F0478E479E4DA ] C:\Program Files\OpenOffice.org 3\Basis\program\svtmi.dll
18:47:05.0453 3876 C:\Program Files\OpenOffice.org 3\Basis\program\svtmi.dll - ok
18:47:05.0468 3876 [ 180268E8FDB6D8325B12A054334C3372 ] C:\Program Files\OpenOffice.org 3\Basis\program\tkmi.dll
18:47:05.0468 3876 C:\Program Files\OpenOffice.org 3\Basis\program\tkmi.dll - ok
18:47:05.0484 3876 [ D0997498C1F4C485B736CE3F1ABAE5BC ] C:\Program Files\OpenOffice.org 3\Basis\program\i18nutilMSC.dll
18:47:05.0484 3876 C:\Program Files\OpenOffice.org 3\Basis\program\i18nutilMSC.dll - ok
18:47:05.0500 3876 [ 6034C32BC4859A388318D79CE31BDB44 ] C:\Program Files\OpenOffice.org 3\program\libxml2.dll
18:47:05.0500 3876 C:\Program Files\OpenOffice.org 3\program\libxml2.dll - ok
18:47:05.0515 3876 [ 695F96FA185E14CB43797EDAC611CFA1 ] C:\Program Files\OpenOffice.org 3\URE\bin\jvmfwk3.dll
18:47:05.0515 3876 C:\Program Files\OpenOffice.org 3\URE\bin\jvmfwk3.dll - ok
18:47:05.0515 3876 [ A1B44C0A1AD71F86579A4521D5B1C024 ] C:\WINDOWS\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\Accessibility.dll
18:47:05.0515 3876 C:\WINDOWS\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\Accessibility.dll - ok
18:47:05.0531 3876 [ 7965069CB926E4B9B314381FA6B74F6F ] C:\Program Files\OpenOffice.org 3\Basis\program\sbmi.dll
18:47:05.0531 3876 C:\Program Files\OpenOffice.org 3\Basis\program\sbmi.dll - ok
18:47:05.0546 3876 [ 939B0FFFFBF710093E5CE316E7F940C3 ] C:\Program Files\OpenOffice.org 3\Basis\program\xcrmi.dll
18:47:05.0546 3876 C:\Program Files\OpenOffice.org 3\Basis\program\xcrmi.dll - ok
18:47:05.0562 3876 [ E0A9FF481221CD5A1148CD6896795778 ] C:\Program Files\OpenOffice.org 3\Basis\program\jmi_g.dll
18:47:05.0562 3876 C:\Program Files\OpenOffice.org 3\Basis\program\jmi_g.dll - ok
18:47:05.0578 3876 [ 0B9F5DF9C87D056BBB6F276453EFFFE3 ] C:\Program Files\OpenOffice.org 3\Basis\program\saxmi.dll
18:47:05.0578 3876 C:\Program Files\OpenOffice.org 3\Basis\program\saxmi.dll - ok
18:47:05.0578 3876 [ 2AD7BC6E9D4575377E626D838E03BCB9 ] C:\Program Files\OpenOffice.org 3\URE\bin\jvmaccess3MSC.dll
18:47:05.0578 3876 C:\Program Files\OpenOffice.org 3\URE\bin\jvmaccess3MSC.dll - ok
18:47:05.0593 3876 [ 7649F0178CF1762F09F803BC4565D45F ] C:\WINDOWS\assembly\GAC\hpqprrsc\4.0.0.0__a53cf5803f4c3827\hpqprrsc.dll
18:47:05.0593 3876 C:\WINDOWS\assembly\GAC\hpqprrsc\4.0.0.0__a53cf5803f4c3827\hpqprrsc.dll - ok
18:47:05.0609 3876 [ 8D8B0406BA43EDDB4687C34240407844 ] C:\Program Files\OpenOffice.org 3\URE\bin\msci_uno.dll
18:47:05.0609 3876 C:\Program Files\OpenOffice.org 3\URE\bin\msci_uno.dll - ok
18:47:05.0625 3876 [ 8AE91D0BED9A3CDD030A631715FB94F2 ] C:\WINDOWS\assembly\GAC\hpqprrsc.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqprrsc.resources.dll
18:47:05.0625 3876 C:\WINDOWS\assembly\GAC\hpqprrsc.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqprrsc.resources.dll - ok
18:47:05.0640 3876 [ 1F6C70FBC3C63A1E13298BFA5F1202C3 ] C:\Program Files\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
18:47:05.0640 3876 C:\Program Files\OpenOffice.org 3\URE\bin\bootstrap.uno.dll - ok
18:47:05.0656 3876 [ AF8BB295854B19605349E5B7EF2F0457 ] C:\WINDOWS\assembly\GAC\System.resources\1.0.5000.0_cs_b77a5c561934e089\System.resources.dll
18:47:05.0656 3876 C:\WINDOWS\assembly\GAC\System.resources\1.0.5000.0_cs_b77a5c561934e089\System.resources.dll - ok
18:47:05.0671 3876 [ 0266A1F66841EEB3F9A902B070515F8F ] C:\Program Files\OpenOffice.org 3\URE\bin\reg3.dll
18:47:05.0671 3876 C:\Program Files\OpenOffice.org 3\URE\bin\reg3.dll - ok
18:47:05.0687 3876 [ 135116C0F5A167BF757CDF70FB414A2F ] C:\Program Files\OpenOffice.org 3\URE\bin\store3.dll
18:47:05.0687 3876 C:\Program Files\OpenOffice.org 3\URE\bin\store3.dll - ok
18:47:05.0687 3876 [ F89BDD4110A8F493AB2E4637F52EB1F4 ] C:\WINDOWS\assembly\GAC\Interop.hprblog\3.0.0.0__a53cf5803f4c3827\Interop.hprblog.dll
18:47:05.0687 3876 C:\WINDOWS\assembly\GAC\Interop.hprblog\3.0.0.0__a53cf5803f4c3827\Interop.hprblog.dll - ok
18:47:05.0703 3876 [ 0FDF7FC7BF08CA9A4156B5C91F9518DB ] C:\Program Files\OpenOffice.org 3\URE\bin\unsafe_uno_uno.dll
18:47:05.0703 3876 C:\Program Files\OpenOffice.org 3\URE\bin\unsafe_uno_uno.dll - ok
18:47:05.0718 3876 [ E3A5FAE79C9ECC4C11B50701BBDDADCC ] C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
18:47:05.0718 3876 C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe - ok
18:47:05.0734 3876 [ 27E0D37C268FFA242CCDC80ADCC010CD ] C:\Program Files\OpenOffice.org 3\URE\bin\purpenvhelper3MSC.dll
18:47:05.0734 3876 C:\Program Files\OpenOffice.org 3\URE\bin\purpenvhelper3MSC.dll - ok
18:47:05.0750 3876 [ F0DCDB20896DDF6138575F20BA6BDDD6 ] C:\Program Files\OpenOffice.org 3\Basis\program\configmgr2.uno.dll
18:47:05.0750 3876 C:\Program Files\OpenOffice.org 3\Basis\program\configmgr2.uno.dll - ok
18:47:05.0765 3876 [ D8BEC5EE1CC0FF2CB31DD1700DCACD89 ] C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprbutil.dll
18:47:05.0765 3876 C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprbutil.dll - ok
18:47:05.0781 3876 [ 0F76696E3CC15C961F91B6965B843890 ] C:\WINDOWS\assembly\GAC\hpqcprsc\3.0.0.0__a53cf5803f4c3827\hpqcprsc.dll
18:47:05.0781 3876 C:\WINDOWS\assembly\GAC\hpqcprsc\3.0.0.0__a53cf5803f4c3827\hpqcprsc.dll - ok
18:47:05.0781 3876 [ 78693621A4EB598D52438688FEAC47E5 ] C:\Program Files\OpenOffice.org 3\URE\bin\stocservices.uno.dll
18:47:05.0796 3876 C:\Program Files\OpenOffice.org 3\URE\bin\stocservices.uno.dll - ok
18:47:05.0796 3876 [ 42A314198A9511993AA2C0B0C0F9F329 ] C:\WINDOWS\assembly\GAC\hpqcprsc.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqcprsc.resources.dll
18:47:05.0796 3876 C:\WINDOWS\assembly\GAC\hpqcprsc.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqcprsc.resources.dll - ok
18:47:05.0812 3876 [ 4AE2DA83A02B3E5316FB18758A093609 ] C:\Program Files\Common Files\Motive\McciUtilsX.dll
18:47:05.0812 3876 C:\Program Files\Common Files\Motive\McciUtilsX.dll - ok
18:47:05.0828 3876 [ 93E315D3AE8F7D64A33807D84E1FF477 ] C:\WINDOWS\assembly\GAC\hpqisrtb\4.0.0.0__a53cf5803f4c3827\hpqisrtb.dll
18:47:05.0828 3876 C:\WINDOWS\assembly\GAC\hpqisrtb\4.0.0.0__a53cf5803f4c3827\hpqisrtb.dll - ok
18:47:05.0843 3876 [ 67B1F8970C255B58CAD48AC1BBA5F72B ] C:\Program Files\OpenOffice.org 3\Basis\program\sysmgr1.uno.dll
18:47:05.0843 3876 C:\Program Files\OpenOffice.org 3\Basis\program\sysmgr1.uno.dll - ok
18:47:05.0843 3876 [ AF3C3F23A43E40E36DF8C772CED8C7DA ] C:\Program Files\OpenOffice.org 3\Basis\program\sax.uno.dll
18:47:05.0843 3876 C:\Program Files\OpenOffice.org 3\Basis\program\sax.uno.dll - ok
18:47:05.0859 3876 [ 543446EBAFE0FC8DA4518B64FF97B737 ] C:\WINDOWS\assembly\GAC\hpqisrtb.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqisrtb.resources.dll
18:47:05.0859 3876 C:\WINDOWS\assembly\GAC\hpqisrtb.resources\4.0.0.0_cs_a53cf5803f4c3827\hpqisrtb.resources.dll - ok
18:47:05.0875 3876 [ 94A5F38DFC111C60274622EC9EA628BD ] C:\Program Files\OpenOffice.org 3\Basis\program\localebe1.uno.dll
18:47:05.0875 3876 C:\Program Files\OpenOffice.org 3\Basis\program\localebe1.uno.dll - ok
18:47:05.0890 3876 [ E1AE7EC43811E047F90E9D032EEEF38D ] C:\Program Files\OpenOffice.org 3\Basis\program\behelper.uno.dll
18:47:05.0890 3876 C:\Program Files\OpenOffice.org 3\Basis\program\behelper.uno.dll - ok
18:47:05.0906 3876 [ 621EACDD05BEEC6A40D74B9D66E62D7C ] C:\WINDOWS\system32\faultrep.dll
18:47:05.0906 3876 C:\WINDOWS\system32\faultrep.dll - ok
18:47:05.0921 3876 [ 493C3E542983B8118727EFEE42905B34 ] C:\WINDOWS\assembly\GAC\hpqbakup\3.0.0.0__a53cf5803f4c3827\hpqbakup.dll
18:47:05.0921 3876 C:\WINDOWS\assembly\GAC\hpqbakup\3.0.0.0__a53cf5803f4c3827\hpqbakup.dll - ok
18:47:05.0937 3876 [ E4EAD56A3F3A603226B8E157EACB9924 ] C:\Program Files\OpenOffice.org 3\Basis\program\ucb1.dll
18:47:05.0937 3876 C:\Program Files\OpenOffice.org 3\Basis\program\ucb1.dll - ok
18:47:05.0953 3876 [ 226FAAA088A7C6089C0FE5D63D62F272 ] C:\Program Files\OpenOffice.org 3\Basis\program\fwlmi.dll
18:47:05.0953 3876 C:\Program Files\OpenOffice.org 3\Basis\program\fwlmi.dll - ok
18:47:05.0953 3876 [ AF2D3F9D83F04A6F444A930920429BE8 ] C:\WINDOWS\assembly\GAC\hpqbakup.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqbakup.resources.dll
18:47:05.0953 3876 C:\WINDOWS\assembly\GAC\hpqbakup.resources\3.0.0.0_cs_a53cf5803f4c3827\hpqbakup.resources.dll - ok
18:47:05.0968 3876 [ 37ADEC8E354790735AE552CD0A0429E3 ] C:\Program Files\OpenOffice.org 3\Basis\program\ucpfile1.dll
18:47:05.0968 3876 C:\Program Files\OpenOffice.org 3\Basis\program\ucpfile1.dll - ok
18:47:05.0984 3876 [ C2808D9EC312E38A30B432DAAA91EA62 ] C:\WINDOWS\assembly\GAC\LEAD.Drawing.Imaging.Codecs\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.Imaging.Codecs.dll
18:47:05.0984 3876 C:\WINDOWS\assembly\GAC\LEAD.Drawing.Imaging.Codecs\13.0.0.113__9cf889f53ea9b907\LEAD.Drawing.Imaging.Codecs.dll - ok
18:47:06.0000 3876 [ 791166F60A6DB32C079E813D7DE43F47 ] C:\Program Files\HP\Digital Imaging\bin\ltfil13n.DLL
18:47:06.0000 3876 C:\Program Files\HP\Digital Imaging\bin\ltfil13n.DLL - ok
18:47:06.0015 3876 [ 1BF6849822F0BD6655D8BA43ADDCA2AB ] C:\Program Files\OpenOffice.org 3\Basis\program\fwkmi.dll
18:47:06.0015 3876 C:\Program Files\OpenOffice.org 3\Basis\program\fwkmi.dll - ok
18:47:06.0031 3876 [ 1A05F72B74B2EB118AEA56815A5ABA15 ] C:\Program Files\Common Files\Motive\McciSysX.dll
18:47:06.0031 3876 C:\Program Files\Common Files\Motive\McciSysX.dll - ok
18:47:06.0046 3876 [ 543967E314075A8DEA8C993BCF791ECE ] C:\Program Files\OpenOffice.org 3\Basis\program\oleautobridge.uno.dll
18:47:06.0046 3876 C:\Program Files\OpenOffice.org 3\Basis\program\oleautobridge.uno.dll - ok
18:47:06.0062 3876 [ 1DC2B28439466BE31738A076AA2AD5B1 ] C:\Program Files\OpenOffice.org 3\Basis\program\emsermi.dll
18:47:06.0062 3876 C:\Program Files\OpenOffice.org 3\Basis\program\emsermi.dll - ok
18:47:06.0062 3876 [ 3172C615B91816013493169B3062E252 ] C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll
18:47:06.0062 3876 C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll - ok
18:47:06.0078 3876 [ 88029974B1C9995CFA3BD9560BBA2EEF ] C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
18:47:06.0078 3876 C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe - ok
18:47:06.0093 3876 [ DF8AFD370A9937E82109A95AE5BE5B3A ] C:\Program Files\HP\Digital Imaging\bin\hpoddcomm09.dll
18:47:06.0093 3876 C:\Program Files\HP\Digital Imaging\bin\hpoddcomm09.dll - ok
18:47:06.0109 3876 [ E866BF8B66384C65AF0C4E63DA40B386 ] C:\Program Files\HP\Digital Imaging\bin\hpodvd09.dll
18:47:06.0109 3876 C:\Program Files\HP\Digital Imaging\bin\hpodvd09.dll - ok
18:47:06.0125 3876 [ 7AED5B18F7AA64E30BDE6891FCE182B4 ] C:\WINDOWS\system32\HPZipr12.dll
18:47:06.0125 3876 C:\WINDOWS\system32\HPZipr12.dll - ok
18:47:06.0140 3876 [ 98AA5432BE43CF02E6F3332ADBDA1DCC ] C:\Program Files\HP\Digital Imaging\bin\hpqmfc09.dll
18:47:06.0140 3876 C:\Program Files\HP\Digital Imaging\bin\hpqmfc09.dll - ok
18:47:06.0156 3876 [ 9B613297C3E040ABC73314C44F8A14E2 ] C:\WINDOWS\system32\msvfw32.dll
18:47:06.0156 3876 C:\WINDOWS\system32\msvfw32.dll - ok
18:47:06.0156 3876 [ DE4517A364540AC9850C23D6D26866E3 ] C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll
18:47:06.0156 3876 C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll - ok
18:47:06.0171 3876 [ 2B979217737801C557CA0319621147DD ] C:\WINDOWS\system32\HPZidr12.dll
18:47:06.0171 3876 C:\WINDOWS\system32\HPZidr12.dll - ok
18:47:06.0187 3876 ============================================================
18:47:06.0187 3876 Scan finished
18:47:06.0187 3876 ============================================================
18:47:06.0312 3868 Detected object count: 10
18:47:06.0312 3868 Actual detected object count: 10
18:47:57.0796 3868 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0796 3868 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0796 3868 BlueSoleilCS ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0796 3868 BlueSoleilCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0796 3868 BsHelpCS ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0796 3868 BsHelpCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0812 3868 BsMobileCS ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0812 3868 BsMobileCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0812 3868 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0812 3868 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0828 3868 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0828 3868 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0828 3868 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0828 3868 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0828 3868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0828 3868 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0843 3868 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
18:47:57.0843 3868 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:47:57.0843 3868 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - skipped by user
18:47:57.0843 3868 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Skip
18:48:09.0843 1148 Deinitialize success

#43 Příspěvek od **vyosek** » 23 srp 2012 17:57

Spustte znovu TDSSKiller a u moznosti Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) dejte volbu Cure - bude nasledovat restart a vypadne log, ten rad uvidim

Max_cz · #44 Příspěvek od **Max_cz** » 23 srp 2012 18:03

18:58:47.0968 3448 TDSS rootkit removing tool 2.8.6.0 Aug 13 2012 17:24:05
18:58:49.0671 3448 ============================================================
18:58:49.0671 3448 Current date / time: 2012/08/23 18:58:49.0671
18:58:49.0671 3448 SystemInfo:
18:58:49.0671 3448
18:58:49.0671 3448 OS Version: 5.1.2600 ServicePack: 3.0
18:58:49.0671 3448 Product type: Workstation
18:58:49.0671 3448 ComputerName: ZARUBOVA_NT
18:58:49.0671 3448 UserName: Zárubová
18:58:49.0671 3448 Windows directory: C:\WINDOWS
18:58:49.0671 3448 System windows directory: C:\WINDOWS
18:58:49.0671 3448 Processor architecture: Intel x86
18:58:49.0671 3448 Number of processors: 2
18:58:49.0671 3448 Page size: 0x1000
18:58:49.0671 3448 Boot type: Normal boot
18:58:49.0671 3448 ============================================================
18:58:50.0609 3448 BG loaded
18:58:50.0937 3448 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:58:50.0937 3448 ============================================================
18:58:50.0937 3448 \Device\Harddisk0\DR0:
18:58:50.0937 3448 MBR partitions:
18:58:50.0937 3448 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1
18:58:50.0937 3448 ============================================================
18:58:50.0968 3448 C: <-> \Device\Harddisk0\DR0\Partition1
18:58:50.0968 3448 ============================================================
18:58:50.0968 3448 Initialize success
18:58:50.0968 3448 ============================================================
18:58:59.0734 3912 ============================================================
18:58:59.0734 3912 Scan started
18:58:59.0734 3912 Mode: Manual; SigCheck; TDLFS;
18:58:59.0734 3912 ============================================================
18:59:02.0703 3912 ================ Scan services =============================
18:59:02.0843 3912 Abiosdsk - ok
18:59:02.0890 3912 [ 6abb91494fe6c59089b9336452ab2ea3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
18:59:03.0375 3912 abp480n5 - ok
18:59:03.0421 3912 [ 4fe34f1f3126b61fcc6b2043aa8112c9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:59:03.0562 3912 ACPI - ok
18:59:03.0562 3912 [ afdff022a01f0b11c776f0860c3b282f ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:59:03.0687 3912 ACPIEC - ok
18:59:03.0718 3912 [ 9a11864873da202c996558b2106b0bbc ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
18:59:03.0828 3912 adpu160m - ok
18:59:03.0875 3912 [ 8bed39e3c35d6a489438b8141717a557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:59:03.0984 3912 aec - ok
18:59:04.0031 3912 [ 1e44bc1e83d8fd2305f8d452db109cf9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:59:04.0078 3912 AFD - ok
18:59:04.0109 3912 [ 03a7e0922acfe1b07d5db2eeb0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
18:59:04.0234 3912 agpCPQ - ok
18:59:04.0281 3912 [ c23ea9b5f46c7f7910db3eab648ff013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
18:59:04.0343 3912 Aha154x - ok
18:59:04.0359 3912 [ 19dd0fb48b0c18892f70e2e7d61a1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
18:59:04.0500 3912 aic78u2 - ok
18:59:04.0500 3912 [ b7fe594a7468aa0132deb03fb8e34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
18:59:04.0640 3912 aic78xx - ok
18:59:04.0703 3912 [ e0a6fa244b8624d78fe5ff6f56a33bae ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:59:04.0843 3912 Alerter - ok
18:59:04.0875 3912 [ 88842de939a827577bf24243699ac80a ] ALG C:\WINDOWS\System32\alg.exe
18:59:05.0015 3912 ALG - ok
18:59:05.0031 3912 [ 1140ab9938809700b46bb88e46d72a96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
18:59:05.0203 3912 AliIde - ok
18:59:05.0296 3912 [ cb08aed0de2dd889a8a820cd8082d83c ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
18:59:05.0421 3912 alim1541 - ok
18:59:05.0500 3912 [ 95b4fb835e28aa1336ceeb07fd5b9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
18:59:05.0656 3912 amdagp - ok
18:59:05.0671 3912 [ 3980814f8027d27ea003e2e3d9d4f604 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
18:59:05.0828 3912 AmdK7 - ok
18:59:05.0890 3912 [ 79f5add8d24bd6893f2903a3e2f3fad6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
18:59:05.0953 3912 amsint - ok
18:59:05.0984 3912 [ 6b8e7a90e576d4fe308f97c69060a171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
18:59:06.0109 3912 AppMgmt - ok
18:59:06.0171 3912 [ 9108f38c07f4953ea4ee89243e787cad ] AR5211 C:\WINDOWS\system32\DRIVERS\ar5211.sys
18:59:06.0203 3912 AR5211 - ok
18:59:06.0265 3912 [ 62d318e9a0c8fc9b780008e724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
18:59:06.0375 3912 asc - ok
18:59:06.0390 3912 [ 69eb0cc7714b32896ccbfd5edcbea447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
18:59:06.0500 3912 asc3350p - ok
18:59:06.0515 3912 [ 5d8de112aa0254b907861e9e9c31d597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
18:59:06.0656 3912 asc3550 - ok
18:59:06.0718 3912 [ e1a1206a4fb19b675e947b29ccd25fba ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
18:59:06.0734 3912 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
18:59:06.0734 3912 aspnet_state - detected UnsignedFile.Multi.Generic (1)
18:59:06.0765 3912 [ b153affac761e7f5fcfa822b9c4e97bc ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:59:06.0890 3912 AsyncMac - ok
18:59:06.0937 3912 [ 9f3a2f5aa6875c72bf062c712cfa2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:59:07.0062 3912 atapi - ok
18:59:07.0078 3912 Atdisk - ok
18:59:07.0109 3912 [ 9916c1225104ba14794209cfa8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:59:07.0218 3912 Atmarpc - ok
18:59:07.0265 3912 [ de31b88962a8645dba5a37b993e7b0f1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:59:07.0406 3912 AudioSrv - ok
18:59:07.0515 3912 [ d9f724aa26c010a217c97606b160ed68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:59:07.0656 3912 audstub - ok
18:59:07.0671 3912 [ da1f27d85e0d1525f6621372e7b685e9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:59:07.0828 3912 Beep - ok
18:59:07.0937 3912 [ 19395d092fd85ddc2d9c7729cf5a2ac8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:59:08.0125 3912 BITS - ok
18:59:08.0312 3912 [ 3c0d557d62d35d2738f7daac323e35ab ] BlueSoleilCS C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
18:59:08.0359 3912 BlueSoleilCS ( UnsignedFile.Multi.Generic ) - warning
18:59:08.0359 3912 BlueSoleilCS - detected UnsignedFile.Multi.Generic (1)
18:59:08.0421 3912 [ 89e739bba5f636297ea5b5f811189e06 ] Browser C:\WINDOWS\System32\browser.dll
18:59:08.0437 3912 Browser - ok
18:59:08.0500 3912 [ 76762d169ffc6727359fd58c8fc00487 ] BsHelpCS C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
18:59:08.0515 3912 BsHelpCS ( UnsignedFile.Multi.Generic ) - warning
18:59:08.0515 3912 BsHelpCS - detected UnsignedFile.Multi.Generic (1)
18:59:08.0562 3912 [ 9c2600c566ba40953fdf4d886d47fb94 ] BsMobileCS C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
18:59:08.0578 3912 BsMobileCS ( UnsignedFile.Multi.Generic ) - warning
18:59:08.0578 3912 BsMobileCS - detected UnsignedFile.Multi.Generic (1)
18:59:08.0625 3912 [ 32ccf60f6e491a2a931a63e928677403 ] BT C:\WINDOWS\system32\DRIVERS\btnetdrv.sys
18:59:08.0671 3912 BT - ok
18:59:08.0734 3912 [ 34031372274933839c842473623be5ee ] Btcsrusb C:\WINDOWS\system32\Drivers\btcusb.sys
18:59:08.0750 3912 Btcsrusb - ok
18:59:08.0765 3912 [ b279426e3c0c344893ed78a613a73bde ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
18:59:08.0875 3912 BthEnum - ok
18:59:08.0921 3912 [ fcf500c9e89e193e038dcfcdba6aa032 ] BtHidBus C:\WINDOWS\system32\Drivers\BtHidBus.sys
18:59:08.0921 3912 BtHidBus - ok
18:59:08.0937 3912 [ 80602b8746d3738f5886ce3d67ef06b6 ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
18:59:09.0046 3912 BthPan - ok
18:59:09.0078 3912 [ f338662a6c1fc11dd9508f6dff2c06a2 ] BTHPORT C:\WINDOWS\system32\Drivers\BTHport.sys
18:59:09.0109 3912 BTHPORT - ok
18:59:09.0156 3912 [ 70ca4b3f634c9dca200832f8da76e009 ] BthServ C:\WINDOWS\System32\bthserv.dll
18:59:09.0453 3912 BthServ - ok
18:59:09.0468 3912 [ 61364cd71ef63b0f038b7e9df00f1efa ] BTHUSB C:\WINDOWS\system32\Drivers\BTHUSB.sys
18:59:09.0578 3912 BTHUSB - ok
18:59:09.0593 3912 catchme - ok
18:59:09.0609 3912 [ 90a673fc8e12a79afbed2576f6a7aaf9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
18:59:09.0843 3912 cbidf - ok
18:59:09.0875 3912 [ 90a673fc8e12a79afbed2576f6a7aaf9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:59:10.0031 3912 cbidf2k - ok
18:59:10.0046 3912 [ f3ec03299634490e97bbce94cd2954c7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
18:59:10.0109 3912 cd20xrnt - ok
18:59:10.0140 3912 [ c1b486a7658353d33a10cc15211a873b ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:59:10.0265 3912 Cdaudio - ok
18:59:10.0312 3912 [ c885b02847f5d2fd45a24e219ed93b32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:59:10.0453 3912 Cdfs - ok
18:59:10.0468 3912 [ 1f4260cc5b42272d71f79e570a27a4fe ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:59:10.0593 3912 Cdrom - ok
18:59:10.0609 3912 Changer - ok
18:59:10.0687 3912 [ e390dc1d7c461d7d56ec53402f329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:59:10.0796 3912 CiSvc - ok
18:59:10.0812 3912 [ 064507a8dfa8c5c7e2ffddd3e6f424fa ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:59:11.0000 3912 ClipSrv - ok
18:59:11.0031 3912 [ 0f6c187d38d98f8df904589a5f94d411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:59:11.0140 3912 CmBatt - ok
18:59:11.0187 3912 [ 964d0f042aca51d5644779eb9d9ee40f ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
18:59:11.0312 3912 CmdIde - ok
18:59:11.0375 3912 [ 6e4c9f21f0fae8940661144f41b13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:59:11.0515 3912 Compbatt - ok
18:59:11.0531 3912 COMSysApp - ok
18:59:11.0562 3912 [ 3ee529119eed34cd212a215e8c40d4b6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
18:59:11.0671 3912 Cpqarray - ok
18:59:11.0703 3912 [ f3ab0933cbd166d271992f411c27ccaf ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:59:11.0828 3912 CryptSvc - ok
18:59:11.0843 3912 [ e550e7418984b65a78299d248f0a7f36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
18:59:11.0984 3912 dac2w2k - ok
18:59:12.0000 3912 [ 683789caa3864eb46125ae86ff677d34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
18:59:12.0203 3912 dac960nt - ok
18:59:12.0312 3912 [ be27674d1cbc3214aec84b4336a38bbf ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:59:12.0328 3912 DcomLaunch - ok
18:59:12.0375 3912 [ 8c9a53e285ac5e6704844d0459ec85be ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:59:12.0484 3912 Dhcp - ok
18:59:12.0562 3912 [ 044452051f3e02e7963599fc8f4f3e25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:59:12.0734 3912 Disk - ok
18:59:12.0750 3912 dmadmin - ok
18:59:12.0812 3912 [ db5fd2bf5b07dc54bfcb3664ff05bd7c ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:59:13.0031 3912 dmboot - ok
18:59:13.0078 3912 [ fff1720af51171f32f1ead5cf71f2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:59:13.0218 3912 dmio - ok
18:59:13.0265 3912 [ e9317282a63ca4d188c0df5e09c6ac5f ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:59:13.0406 3912 dmload - ok
18:59:13.0500 3912 [ 2bfefe9e865655a76982f050450b9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:59:13.0640 3912 dmserver - ok
18:59:13.0671 3912 [ 8a208dfcf89792a484e76c40e5f50b45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:59:13.0781 3912 DMusic - ok
18:59:13.0890 3912 [ dfaa406bf19f4ee806a6f8d4342137f7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:59:13.0921 3912 Dnscache - ok
18:59:13.0968 3912 [ 4a3e2bd20157a0946751229e92eb8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:59:14.0078 3912 Dot3svc - ok
18:59:14.0109 3912 [ 40f3b93b4e5b0126f2f5c0a7a5e22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
18:59:14.0218 3912 dpti2o - ok
18:59:14.0234 3912 [ 8f5fcff8e8848afac920905fbd9d33c8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:59:14.0343 3912 drmkaud - ok
18:59:14.0375 3912 [ 0887d9c2be8d940778cad1e3b85f2a41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:59:14.0609 3912 EapHost - ok
18:59:14.0656 3912 [ a2a4912798f2be706abadd3d30800d16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:59:14.0781 3912 ERSvc - ok
18:59:14.0828 3912 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] Eventlog C:\WINDOWS\system32\services.exe
18:59:14.0859 3912 Eventlog - ok
18:59:14.0921 3912 [ a371f11ef07653591c8de26afb13ce7f ] EventSystem C:\WINDOWS\system32\es.dll
18:59:14.0953 3912 EventSystem - ok
18:59:14.0984 3912 [ 38d332a6d56af32635675f132548343e ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:59:15.0156 3912 Fastfat - ok
18:59:15.0218 3912 [ ee9a2b9ea968a792a053c9d1a86bf870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:59:15.0250 3912 FastUserSwitchingCompatibility - ok
18:59:15.0265 3912 [ 92cdd60b6730b9f50f6a1a0c1f8cdc81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
18:59:15.0390 3912 Fdc - ok
18:59:15.0500 3912 [ e9648254056bce81a85380c0c3647dc4 ] FETNDIS C:\WINDOWS\system32\DRIVERS\fetnd5.sys
18:59:15.0671 3912 FETNDIS - ok
18:59:15.0703 3912 [ ac366695a0796560aa37215ad5762aaf ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:59:15.0859 3912 Fips - ok
18:59:15.0875 3912 [ 9d27e7b80bfcdf1cdd9b555862d5e7f0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
18:59:15.0984 3912 Flpydisk - ok
18:59:16.0062 3912 [ b2cf4b0786f8212cb92ed2b50c6db6b0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:59:16.0187 3912 FltMgr - ok
18:59:16.0218 3912 [ 3e1e2bd4f39b0e2b7dc4f4d2bcc2779a ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:59:16.0359 3912 Fs_Rec - ok
18:59:16.0375 3912 [ 4e664d8541db4a66b73a24257e322e1f ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:59:16.0500 3912 Ftdisk - ok
18:59:16.0593 3912 [ 0a02c63c8b144bd8c86b103dee7c86a2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:59:16.0734 3912 Gpc - ok
18:59:16.0765 3912 [ 573c7d0a32852b48f3058cfd8026f511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:59:16.0906 3912 HDAudBus - ok
18:59:17.0000 3912 [ fcfe31fb75f8a6295b6b0af87a626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:59:17.0171 3912 helpsvc - ok
18:59:17.0218 3912 [ 00e25ee90166b3e1be6e74aebf858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
18:59:17.0421 3912 HidServ - ok
18:59:17.0468 3912 [ ccf82c5ec8a7326c3066de870c06daf1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:59:17.0578 3912 HidUsb - ok
18:59:17.0687 3912 [ 7a6b320928f86bc851530d63c82965d9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:59:17.0828 3912 hkmsvc - ok
18:59:17.0875 3912 [ b028377dea0546a5fcfba928a8aefae0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
18:59:18.0000 3912 hpn - ok
18:59:18.0078 3912 [ 30ca91e657cede2f95359d6ef186f650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:59:18.0125 3912 HPZid412 - ok
18:59:18.0125 3912 [ efd31afa752aa7c7bbb57bcbe2b01c78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:59:18.0156 3912 HPZipr12 - ok
18:59:18.0187 3912 [ 7ac43c38ca8fd7ed0b0a4466f753e06e ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:59:18.0234 3912 HPZius12 - ok
18:59:18.0281 3912 [ f80a415ef82cd06ffaf0d971528ead38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:59:18.0312 3912 HTTP - ok
18:59:18.0359 3912 [ 58fe2f2da3bc5573f4a35b3760d3125f ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:59:18.0484 3912 HTTPFilter - ok
18:59:18.0593 3912 [ 9368670bd426ebea5e8b18a62416ec28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
18:59:18.0781 3912 i2omgmt - ok
18:59:18.0859 3912 [ f10863bf1ccc290babd1a09188ae49e0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
18:59:18.0984 3912 i2omp - ok
18:59:19.0000 3912 [ c528e27945367191e7bae364930b6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:59:19.0109 3912 i8042prt - ok
18:59:19.0140 3912 [ fd7f9d74c2b35dbda400804a3f5ed5d8 ] iaStor C:\WINDOWS\system32\DRIVERS\iaStor.sys
18:59:19.0156 3912 iaStor - ok
18:59:19.0171 3912 [ 083a052659f5310dd8b6a6cb05edcf8e ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:59:19.0312 3912 Imapi - ok
18:59:19.0359 3912 [ f7b93aafad33b2320954c17e26c8d361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:59:19.0515 3912 ImapiService - ok
18:59:19.0531 3912 [ 4a40e045faee58631fd8d91afc620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
18:59:19.0781 3912 ini910u - ok
18:59:19.0968 3912 [ 8f924588c272fdaa28cf31a9bbc21a72 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:59:20.0171 3912 IntcAzAudAddService - ok
18:59:20.0234 3912 [ 57d928e548b38502abba7a77a6eb7312 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
18:59:20.0343 3912 IntelIde - ok
18:59:20.0390 3912 [ 27b290d632af2cf3cf40bfddb7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:59:20.0515 3912 intelppm - ok
18:59:20.0515 3912 [ 3bb22519a194418d5fec05d800a19ad0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:59:20.0625 3912 Ip6Fw - ok
18:59:20.0656 3912 [ 731f22ba402ee4b62748adaf6363c182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:59:20.0781 3912 IpFilterDriver - ok
18:59:20.0796 3912 [ b87ab476dcf76e72010632b5550955f5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:59:20.0968 3912 IpInIp - ok
18:59:21.0000 3912 [ cc748ea12c6effde940ee98098bf96bb ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:59:21.0109 3912 IpNat - ok
18:59:21.0125 3912 [ 23c74d75e36e7158768dd63d92789a91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:59:21.0250 3912 IPSec - ok
18:59:21.0296 3912 [ c93c9ff7b04d772627a3646d89f7bf89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:59:21.0421 3912 IRENUM - ok
18:59:21.0453 3912 [ cc9f8a2d60aed1a51a3ac34c59b987ae ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:59:21.0562 3912 isapnp - ok
18:59:21.0609 3912 [ d53d7ed7d85a18b0cd4626b88b6da52a ] IvtBtBUs C:\WINDOWS\system32\Drivers\IvtBtBus.sys
18:59:21.0625 3912 IvtBtBUs - ok
18:59:21.0640 3912 [ 1b6162fe7f66b1a71a4b70f941c4aa9b ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:59:21.0750 3912 Kbdclass - ok
18:59:21.0765 3912 [ 86c8f23616c6c6e5b2776901c17b945b ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:59:21.0875 3912 kbdhid - ok
18:59:21.0921 3912 [ 692bcf44383d056aed41b045a323d378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:59:22.0046 3912 kmixer - ok
18:59:22.0078 3912 [ b467646c54cc746128904e1654c750c1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:59:22.0125 3912 KSecDD - ok
18:59:22.0171 3912 [ 3428e8f86f8add36b42fb23542c7b3e4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:59:22.0187 3912 lanmanserver - ok
18:59:22.0234 3912 [ 936c1d110232d23b621cb0196e4f80f0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:59:22.0265 3912 lanmanworkstation - ok
18:59:22.0265 3912 lbrtfdc - ok
18:59:22.0343 3912 [ 0ab159f536e3e8f7f07113702a07cca5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:59:22.0453 3912 LmHosts - ok
18:59:22.0546 3912 [ 4f74184920b2d6e33024409b4c5c57c1 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
18:59:22.0578 3912 McciCMService ( UnsignedFile.Multi.Generic ) - warning
18:59:22.0578 3912 McciCMService - detected UnsignedFile.Multi.Generic (1)
18:59:22.0609 3912 [ 221cd1c815b8a6b79389c3f5d1018de8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:59:22.0765 3912 Messenger - ok
18:59:22.0812 3912 [ 4ae068242760a1fb6e1a44bf4e16afa6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:59:22.0968 3912 mnmdd - ok
18:59:23.0015 3912 [ 9a57d046f88f4b69751b11fd40088a61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:59:23.0187 3912 mnmsrvc - ok
18:59:23.0296 3912 [ 44032b0c6d9954d3fd26438330b99ee7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:59:23.0406 3912 Modem - ok
18:59:23.0421 3912 [ 4cb582831dbde63ce43b45d771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:59:23.0546 3912 Mouclass - ok
18:59:23.0593 3912 [ bb269eba740737ab749b214d568b6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:59:23.0734 3912 mouhid - ok
18:59:23.0765 3912 [ a80b9a0bad1b73637dbcbba7df72d3fd ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:59:23.0875 3912 MountMgr - ok
18:59:23.0953 3912 [ 46297fa8e30a6007f14118fc2b942fbc ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:59:23.0953 3912 MozillaMaintenance - ok
18:59:23.0984 3912 [ d993bea500e7382dc4e760bf4f35efcb ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
18:59:24.0000 3912 MpFilter - ok
18:59:24.0015 3912 [ 3f4bb95e5a44f3be34824e8e7caf0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
18:59:24.0156 3912 mraid35x - ok
18:59:24.0203 3912 [ 9bd4dcb5412921864a7aacdedfbd1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
18:59:24.0234 3912 MREMP50 ( UnsignedFile.Multi.Generic ) - warning
18:59:24.0234 3912 MREMP50 - detected UnsignedFile.Multi.Generic (1)
18:59:24.0234 3912 MREMP50a64 - ok
18:59:24.0250 3912 MREMPR5 - ok
18:59:24.0265 3912 MRENDIS5 - ok
18:59:24.0296 3912 [ 07c02c892e8e1a72d6bf35004f0e9c5e ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
18:59:24.0328 3912 MRESP50 ( UnsignedFile.Multi.Generic ) - warning
18:59:24.0328 3912 MRESP50 - detected UnsignedFile.Multi.Generic (1)
18:59:24.0328 3912 MRESP50a64 - ok
18:59:24.0359 3912 [ 11d42bb6206f33fbb3ba0288d3ef81bd ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:59:24.0484 3912 MRxDAV - ok
18:59:24.0546 3912 [ 7d304a5eb4344ebeeab53a2fe3ffb9f0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:59:24.0578 3912 MRxSmb - ok
18:59:24.0625 3912 [ 6db4d1521caba9a5ffab54ade0ae867d ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:59:24.0765 3912 MSDTC - ok
18:59:24.0812 3912 [ c941ea2454ba8350021d774daf0f1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:59:25.0046 3912 Msfs - ok
18:59:25.0046 3912 MSIServer - ok
18:59:25.0078 3912 [ d1575e71568f4d9e14ca56b7b0453bf1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:59:25.0187 3912 MSKSSRV - ok
18:59:25.0250 3912 [ 24516bf4e12a46cb67302e2cdcb8cddf ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:59:25.0265 3912 MsMpSvc - ok
18:59:25.0296 3912 [ 325bb26842fc7ccc1fcce2c457317f3e ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:59:25.0406 3912 MSPCLOCK - ok
18:59:25.0437 3912 [ bad59648ba099da4a17680b39730cb3d ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:59:25.0562 3912 MSPQM - ok
18:59:25.0656 3912 [ af5f4f3f14a8ea2c26de30f7a1e17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:59:25.0781 3912 mssmbios - ok
18:59:25.0843 3912 [ de6a75f5c270e756c5508d94b6cf68f5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:59:25.0875 3912 Mup - ok
18:59:25.0921 3912 [ 6ea362e9db03d44f6b996f4d8be237e9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:59:26.0031 3912 napagent - ok
18:59:26.0062 3912 [ 1df7f42665c94b825322fae71721130d ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:59:26.0203 3912 NDIS - ok
18:59:26.0265 3912 [ 0109c4f3850dfbab279542515386ae22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:59:26.0296 3912 NdisTapi - ok
18:59:26.0359 3912 [ f927a4434c5028758a842943ef1a3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:59:26.0500 3912 Ndisuio - ok
18:59:26.0515 3912 [ edc1531a49c80614b2cfda43ca8659ab ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:59:26.0687 3912 NdisWan - ok
18:59:26.0781 3912 [ 9282bd12dfb069d3889eb3fcc1000a9b ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:59:26.0796 3912 NDProxy - ok
18:59:26.0843 3912 [ 5d81cf9a2f1a3a756b66cf684911cdf0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:59:26.0984 3912 NetBIOS - ok
18:59:27.0015 3912 [ 74b2b2f5bea5e9a3dc021d685551bd3d ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:59:27.0171 3912 NetBT - ok
18:59:27.0281 3912 [ 933de774986ec85e48210c44ab431de6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:59:27.0437 3912 NetDDE - ok
18:59:27.0453 3912 [ 933de774986ec85e48210c44ab431de6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:59:27.0562 3912 NetDDEdsdm - ok
18:59:27.0656 3912 [ ed0a176354487ceed65b80a7148ab739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:59:27.0765 3912 Netlogon - ok
18:59:27.0859 3912 [ 72e1e9e2977be08bdeedb6d8fd9d4d40 ] Netman C:\WINDOWS\System32\netman.dll
18:59:28.0015 3912 Netman - ok
18:59:28.0046 3912 [ 39ee7c3bfbc64ba87cc8cf67386e814c ] Nla C:\WINDOWS\System32\mswsock.dll
18:59:28.0078 3912 Nla - ok
18:59:28.0109 3912 [ 3182d64ae053d6fb034f44b6def8034a ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:59:28.0265 3912 Npfs - ok
18:59:28.0328 3912 [ 78a08dd6a8d65e697c18e1db01c5cdca ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:59:28.0453 3912 Ntfs - ok
18:59:28.0546 3912 [ ed0a176354487ceed65b80a7148ab739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:59:28.0656 3912 NtLmSsp - ok
18:59:28.0703 3912 [ 023dd70573d644f3d9c8b1258a7bfd08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:59:28.0859 3912 NtmsSvc - ok
18:59:28.0906 3912 [ 73c1e1f395918bc2c6dd67af7591a3ad ] Null C:\WINDOWS\system32\drivers\Null.sys
18:59:29.0093 3912 Null - ok
18:59:29.0125 3912 [ b305f3fad35083837ef46a0bbce2fc57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:59:29.0250 3912 NwlnkFlt - ok
18:59:29.0265 3912 [ c99b3415198d1aab7227f2c88fd664b9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:59:29.0390 3912 NwlnkFwd - ok
18:59:29.0562 3912 [ 785f487a64950f3cb8e9f16253ba3b7b ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:59:29.0578 3912 odserv - ok
18:59:29.0625 3912 [ 5a432a042dae460abe7199b758e8606c ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:59:29.0625 3912 ose - ok
18:59:29.0656 3912 [ 46f8db73b4a53e543f8e371dc7c75bae ] Parport C:\WINDOWS\system32\drivers\Parport.sys
18:59:29.0781 3912 Parport - ok
18:59:29.0828 3912 [ beb3ba25197665d82ec7065b724171c6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:59:29.0937 3912 PartMgr - ok
18:59:29.0968 3912 [ 1fae19d0457176318bba4a8795656ebc ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:59:30.0218 3912 ParVdm - ok
18:59:30.0265 3912 [ fd2041e9ba03db7764b2248f02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
18:59:30.0281 3912 pccsmcfd - ok
18:59:30.0296 3912 [ 6ce351d149cb4befc702951e471e1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:59:30.0421 3912 PCI - ok
18:59:30.0437 3912 PCIDump - ok
18:59:30.0453 3912 [ 2da4ec85e0ea7a45c6b2a05820492d5a ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:59:30.0593 3912 PCIIde - ok
18:59:30.0609 3912 [ 4fc31e6c19a5ce5198b1abff94cae758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:59:30.0765 3912 Pcmcia - ok
18:59:30.0765 3912 PDCOMP - ok
18:59:30.0781 3912 PDFRAME - ok
18:59:30.0796 3912 PDRELI - ok
18:59:30.0812 3912 PDRFRAME - ok
18:59:30.0859 3912 [ 6c14b9c19ba84f73d3a86dba11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
18:59:30.0968 3912 perc2 - ok
18:59:30.0984 3912 [ f50f7c27f131afe7beba13e14a3b9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
18:59:31.0125 3912 perc2hib - ok
18:59:31.0187 3912 [ 9ef697af07bb8dd82c3b02ca953a95b7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:59:31.0203 3912 PlugPlay - ok
18:59:31.0265 3912 [ 2d091a99624fb9e7eef0a86d872ec0c3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
18:59:31.0281 3912 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:59:31.0281 3912 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:59:31.0296 3912 [ ed0a176354487ceed65b80a7148ab739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:59:31.0390 3912 PolicyAgent - ok
18:59:31.0437 3912 [ efeec01b1d3cf84f16ddd24d9d9d8f99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:59:31.0562 3912 PptpMiniport - ok
18:59:31.0578 3912 [ ed0a176354487ceed65b80a7148ab739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:59:31.0687 3912 ProtectedStorage - ok
18:59:31.0687 3912 [ 09298ec810b07e5d582cb3a3f9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:59:31.0828 3912 PSched - ok
18:59:31.0859 3912 [ 80d317bd1c3dbc5d4fe7b1678c60cadd ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:59:32.0015 3912 Ptilink - ok
18:59:32.0046 3912 [ 0457e25bb122b854e267cf552dcdc370 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:59:32.0062 3912 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
18:59:32.0062 3912 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
18:59:32.0078 3912 [ 0a63fb54039eb5662433caba3b26dba7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
18:59:32.0234 3912 ql1080 - ok
18:59:32.0250 3912 [ 6503449e1d43a0ff0201ad5cb1b8c706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
18:59:32.0375 3912 Ql10wnt - ok
18:59:32.0390 3912 [ 156ed0ef20c15114ca097a34a30d8a01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
18:59:32.0515 3912 ql12160 - ok
18:59:32.0515 3912 [ 70f016bebde6d29e864c1230a07cc5e6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
18:59:32.0656 3912 ql1240 - ok
18:59:32.0656 3912 [ 907f0aeea6bc451011611e732bd31fcf ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
18:59:32.0796 3912 ql1280 - ok
18:59:32.0812 3912 [ fe0d99d6f31e4fad8159f690d68ded9c ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:59:32.0921 3912 RasAcd - ok
18:59:32.0953 3912 [ 2b5e44ea009f2f374b980e1e9a70635d ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:59:33.0062 3912 RasAuto - ok
18:59:33.0109 3912 [ 11b4a627bc9614b885c4969bfa5ff8a6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:59:33.0218 3912 Rasl2tp - ok
18:59:33.0281 3912 [ d57554c664b64604bd1ee13ea2c07e77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:59:33.0406 3912 RasMan - ok
18:59:33.0406 3912 [ 5bc962f2654137c9909c3d4603587dee ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:59:33.0515 3912 RasPppoe - ok
18:59:33.0546 3912 [ fdbb1d60066fcfbb7452fd8f9829b242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:59:33.0671 3912 Raspti - ok
18:59:33.0703 3912 [ 7ad224ad1a1437fe28d89cf22b17780a ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:59:33.0843 3912 Rdbss - ok
18:59:33.0875 3912 [ 4912d5b403614ce99c28420f75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:59:34.0031 3912 RDPCDD - ok
18:59:34.0078 3912 [ 15cabd0f7c00c47c70124907916af3f1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:59:34.0187 3912 rdpdr - ok
18:59:34.0265 3912 [ 43af5212bd8fb5ba6eed9754358bd8f7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:59:34.0281 3912 RDPWD - ok
18:59:34.0328 3912 [ c0d9d9711cb74ee9bc66353d8cbdab0e ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:59:34.0468 3912 RDSessMgr - ok
18:59:34.0500 3912 [ 611bfd220305be3a85ae876ea47d4aa5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:59:34.0625 3912 redbook - ok
18:59:34.0656 3912 [ 127c26b5371651043450e52542099aba ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:59:34.0796 3912 RemoteAccess - ok
18:59:34.0859 3912 [ 8f31505484a190d5b22274708799f4ec ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
18:59:34.0968 3912 RemoteRegistry - ok
18:59:35.0000 3912 [ 851c30df2807fcfa21e4c681a7d6440e ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
18:59:35.0125 3912 RFCOMM - ok
18:59:35.0171 3912 [ d8b0b4ade32574b2d9c5cc34dc0dbbe7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
18:59:35.0406 3912 ROOTMODEM - ok
18:59:35.0437 3912 [ 718b3bdc0bc3c2f7d065a53d26202af9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:59:35.0578 3912 RpcLocator - ok
18:59:35.0625 3912 [ be27674d1cbc3214aec84b4336a38bbf ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:59:35.0640 3912 RpcSs - ok
18:59:35.0671 3912 [ 09ab2e71e58b078038e3bfdba7ffc984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:59:35.0859 3912 RSVP - ok
18:59:35.0875 3912 [ 0dbcc071a268e0340a2ba6bdd98bace4 ] S3SavageNB C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
18:59:35.0984 3912 S3SavageNB - ok
18:59:36.0015 3912 [ ed0a176354487ceed65b80a7148ab739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:59:36.0125 3912 SamSs - ok
18:59:36.0156 3912 [ 410046e401eb11e1e6749e9deea41d4a ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:59:36.0265 3912 SCardSvr - ok
18:59:36.0312 3912 [ 3ff232a7731621b8902d81d42418c93c ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:59:36.0421 3912 Schedule - ok
18:59:36.0453 3912 [ 90a3935d05b494a5a39d37e71f09a677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:59:36.0578 3912 Secdrv - ok
18:59:36.0609 3912 [ 477e2c3cc5e4a0d635bcb0ea8dcac3c6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:59:36.0703 3912 seclogon - ok
18:59:36.0718 3912 [ a530b75c10c23c9ab28fdb6ce719e21f ] SENS C:\WINDOWS\system32\sens.dll
18:59:36.0843 3912 SENS - ok
18:59:36.0875 3912 [ b842729337c9b921615c40d3c1a1af96 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
18:59:36.0984 3912 Serial - ok
18:59:37.0078 3912 [ c15b813f2fdb44f87f23312472c6e790 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
18:59:37.0109 3912 ServiceLayer - ok
18:59:37.0156 3912 [ 8e6b8c671615d126fdc553d1e2de5562 ] Sfloppy C:\WINDOWS\system32\DRIVERS\sfloppy.sys
18:59:37.0265 3912 Sfloppy - ok
18:59:37.0312 3912 [ f58faca9621d2db01bd0927d9a0a208e ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:59:37.0468 3912 SharedAccess - ok
18:59:37.0500 3912 [ ee9a2b9ea968a792a053c9d1a86bf870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:59:37.0515 3912 ShellHWDetection - ok
18:59:37.0531 3912 Simbad - ok
18:59:37.0593 3912 [ 69611b2ffa1c48b7dfe86c8c12500ddb ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
18:59:37.0625 3912 SiS315 - ok
18:59:37.0671 3912 [ ded793c377fa132912b4381043a4d554 ] SiSGbeXP C:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys
18:59:37.0703 3912 SiSGbeXP - ok
18:59:37.0750 3912 [ b701c7f3c816e9d72f733e792df6bf0a ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
18:59:37.0781 3912 SiSkp - ok
18:59:37.0828 3912 [ 83c0f71f86d3bdaf915685f3d568b20e ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
18:59:37.0906 3912 Sparrow - ok
18:59:37.0953 3912 [ ab8b92451ecb048a4d1de7c3ffcb4a9f ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:59:38.0109 3912 splitter - ok
18:59:38.0156 3912 [ 60784f891563fb1b767f70117fc2428f ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:59:38.0203 3912 Spooler - ok
18:59:38.0218 3912 [ 94610c8653635e4459316a0050d55ce7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:59:38.0406 3912 sr - ok
18:59:38.0468 3912 [ 35b91147124f64ac8081a2edb9ea4dee ] srservice C:\WINDOWS\system32\srsvc.dll
18:59:38.0625 3912 srservice - ok
18:59:38.0671 3912 [ 47ddfc2f003f7f9f0592c6874962a2e7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:59:38.0718 3912 Srv - ok
18:59:38.0734 3912 [ becd5271dc4e3b7c3d035f790fcbc1e5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:59:38.0859 3912 SSDPSRV - ok
18:59:38.0906 3912 [ c1cdd9275f6a115bb0ae1d55d8d27ba6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:59:39.0031 3912 stisvc - ok
18:59:39.0078 3912 [ 3941d127aef12e93addf6fe6ee027e0f ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:59:39.0203 3912 swenum - ok
18:59:39.0234 3912 [ 8ce882bcc6cf8a62f2b2323d95cb3d01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:59:39.0359 3912 swmidi - ok
18:59:39.0359 3912 SwPrv - ok
18:59:39.0421 3912 [ 1ff3217614018630d0a6758630fc698c ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
18:59:39.0546 3912 symc810 - ok
18:59:39.0562 3912 [ 070e001d95cf725186ef8b20335f933c ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
18:59:39.0703 3912 symc8xx - ok
18:59:39.0718 3912 [ 80ac1c4abbe2df3b738bf15517a51f2c ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
18:59:39.0843 3912 sym_hi - ok
18:59:39.0859 3912 [ bf4fab949a382a8e105f46ebb4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
18:59:39.0984 3912 sym_u3 - ok
18:59:40.0015 3912 [ 76d8be42d50455c7c8446b8ff1bfb9e0 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
18:59:40.0031 3912 SynTP - ok
18:59:40.0093 3912 [ 8b83f3ed0f1688b4958f77cd6d2bf290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:59:40.0203 3912 sysaudio - ok
18:59:40.0250 3912 [ ce06f01b88ace199a1bf460cac29c110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:59:40.0359 3912 SysmonLog - ok
18:59:40.0390 3912 [ c2546cd7a398476f9df5614b2ae160e8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:59:40.0640 3912 TapiSrv - ok
18:59:40.0687 3912 [ 9aefa14bd6b182d61e3119fa5f436d3d ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:59:40.0718 3912 Tcpip - ok
18:59:40.0765 3912 [ 6471a66807f5e104e4885f5b67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:59:40.0906 3912 TDPIPE - ok
18:59:40.0937 3912 [ c56b6d0402371cf3700eb322ef3aaf61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:59:41.0062 3912 TDTCP - ok
18:59:41.0078 3912 [ 88155247177638048422893737429d9e ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:59:41.0234 3912 TermDD - ok
18:59:41.0296 3912 [ a75dd6fc3dbee4fff5ebc9f2c28bb66e ] TermService C:\WINDOWS\System32\termsrv.dll
18:59:41.0421 3912 TermService - ok
18:59:41.0453 3912 [ ee9a2b9ea968a792a053c9d1a86bf870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:59:41.0468 3912 Themes - ok
18:59:41.0515 3912 [ cd0cc7b167d78043a41c98d4921efb54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
18:59:41.0625 3912 TlntSvr - ok
18:59:41.0671 3912 [ fd4fd7d6fda5c019ed86025d7be1510f ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
18:59:41.0828 3912 TosIde - ok
18:59:41.0875 3912 [ 38853304ccb938d30e0c4cde8d2c2a8a ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:59:42.0046 3912 TrkWks - ok
18:59:42.0109 3912 [ d85938f272d1bcf3db3a31fc0a048928 ] uagp35 C:\WINDOWS\system32\DRIVERS\uagp35.sys
18:59:42.0281 3912 uagp35 - ok
18:59:42.0328 3912 [ 5787b80c2e3c5e2f56c2a233d91fa2c9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:59:42.0500 3912 Udfs - ok
18:59:42.0531 3912 [ 1b698a51cd528d8da4ffaed66dfc51b9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
18:59:42.0640 3912 ultra - ok
18:59:42.0687 3912 [ 402ddc88356b1bac0ee3dd1580c76a31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:59:42.0859 3912 Update - ok
18:59:42.0906 3912 [ 651bd90dcee5b7bdc74a2eb7c9266f9e ] upnphost C:\WINDOWS\System32\upnphost.dll
18:59:43.0125 3912 upnphost - ok
18:59:43.0156 3912 [ 20a0f6a11959e92908717d09e87d670d ] UPS C:\WINDOWS\System32\ups.exe
18:59:43.0328 3912 UPS - ok
18:59:43.0375 3912 [ 173f317ce0db8e21322e71b7e60a27e8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:59:43.0500 3912 usbccgp - ok
18:59:43.0546 3912 [ 65dcf09d0e37d4c6b11b5b0b76d470a7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:59:43.0671 3912 usbehci - ok
18:59:43.0703 3912 [ 1ab3cdde553b6e064d2e754efe20285c ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:59:43.0828 3912 usbhub - ok
18:59:43.0859 3912 [ 0daecce65366ea32b162f85f07c6753b ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:59:43.0968 3912 usbohci - ok
18:59:44.0000 3912 [ a717c8721046828520c9edf31288fc00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:59:44.0125 3912 usbprint - ok
18:59:44.0156 3912 [ a0b8cf9deb1184fbdd20784a58fa75d4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:59:44.0265 3912 usbscan - ok
18:59:44.0281 3912 [ a32426d9b14a089eaa1d922e0c5801a9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:59:44.0406 3912 USBSTOR - ok
18:59:44.0437 3912 [ 26496f9dee2d787fc3e61ad54821ffe6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:59:44.0531 3912 usbuhci - ok
18:59:44.0578 3912 [ 0955553090e0a88614e5b8a02af9324c ] VComm C:\WINDOWS\system32\DRIVERS\VComm.sys
18:59:44.0578 3912 VComm - ok
18:59:44.0640 3912 [ ebf022ec5b0e15b4c225f28031e4123a ] VcommMgr C:\WINDOWS\system32\Drivers\VcommMgr.sys
18:59:44.0640 3912 VcommMgr - ok
18:59:44.0671 3912 [ 0d3a8fafceacd8b7625cd549757a7df1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:59:44.0796 3912 VgaSave - ok
18:59:44.0828 3912 [ 754292ce5848b3738281b4f3607eaef4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
18:59:44.0953 3912 viaagp - ok
18:59:44.0984 3912 [ 3b3efcda263b8ac14fdf9cbdd0791b2e ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
18:59:45.0125 3912 ViaIde - ok
18:59:45.0140 3912 [ 28a4b296b47782173c346e376cb374d1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:59:45.0265 3912 VolSnap - ok
18:59:45.0312 3912 [ d6ba1a63d9e00933f1cd2a885573afb2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:59:45.0437 3912 VSS - ok
18:59:45.0468 3912 [ fa4e1cdba256787f2149f4aad07bc91f ] W32Time C:\WINDOWS\system32\w32time.dll
18:59:45.0578 3912 W32Time - ok
18:59:45.0609 3912 [ e20b95baedb550f32dd489265c1da1f6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:59:45.0843 3912 Wanarp - ok
18:59:45.0843 3912 WDICA - ok
18:59:45.0906 3912 [ 6768acf64b18196494413695f0c3a00f ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:59:46.0031 3912 wdmaud - ok
18:59:46.0062 3912 [ 47ae51048a82dfa1cd6b51d369f7e169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:59:46.0171 3912 WebClient - ok
18:59:46.0281 3912 [ e488332126e3b1182d2b8a0c35408ec6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:59:46.0406 3912 winmgmt - ok
18:59:46.0468 3912 [ c51b4a5c05a5475708e3c81c7765b71d ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
18:59:46.0484 3912 WmdmPmSN - ok
18:59:46.0546 3912 [ 0171cff34bba8c5977f18c48d8aef8c6 ] Wmi C:\WINDOWS\System32\advapi32.dll
18:59:46.0593 3912 Wmi - ok
18:59:46.0640 3912 [ 23f6f03272f7e5679f1f050aed5acee6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:59:46.0796 3912 WmiApSrv - ok
18:59:46.0906 3912 [ 3739866d20abd42f26a7b85f9e2560af ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
18:59:46.0968 3912 WMPNetworkSvc - ok
18:59:47.0015 3912 [ cf4def1bf66f06964dc0d91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
18:59:47.0031 3912 WpdUsb - ok
18:59:47.0078 3912 [ 6abe6e225adb5a751622a9cc3bc19ce8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:59:47.0203 3912 WS2IFSL - ok
18:59:47.0250 3912 [ 4c86d5faf78194995af9cc1075f65dd3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:59:47.0375 3912 wscsvc - ok
18:59:47.0406 3912 [ c1364564800ee9784192145324a23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:59:47.0531 3912 wuauserv - ok
18:59:47.0578 3912 [ eaa6324f51214d2f6718977ec9ce0def ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:59:47.0609 3912 WudfPf - ok
18:59:47.0625 3912 [ f91ff1e51fca30b3c3981db7d5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
18:59:47.0671 3912 WudfRd - ok
18:59:47.0687 3912 [ ddee3682fe97037c45f4d7ab467cb8b6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
18:59:47.0718 3912 WudfSvc - ok
18:59:47.0781 3912 [ a27d4ba7264c0bf52f32d10405bea1d4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:59:47.0906 3912 WZCSVC - ok
18:59:47.0953 3912 [ eaa4bb9edb3fb10cf8979fe65e63658f ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:59:48.0078 3912 xmlprov - ok
18:59:48.0140 3912 [ bdfa6a3a7ce1d083889b316a484a356a ] zntport C:\WINDOWS\system32\drivers\zntport.sys
18:59:48.0140 3912 zntport - ok
18:59:48.0187 3912 ================ Scan global ===============================
18:59:48.0234 3912 (f36278e42c8c5df03ce17dac8231c91c) C:\WINDOWS\system32\basesrv.dll
18:59:48.0296 3912 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
18:59:48.0328 3912 (f3fa14a297bc687d0b51289d034033c9) C:\WINDOWS\system32\winsrv.dll
18:59:48.0343 3912 (9ef697af07bb8dd82c3b02ca953a95b7) C:\WINDOWS\system32\services.exe
18:59:48.0343 3912 [Global] - ok
18:59:48.0343 3912 ================ Scan MBR ==================================
18:59:48.0359 3912 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
18:59:48.0390 3912 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected
18:59:48.0390 3912 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)
18:59:48.0437 3912 ================ Scan VBR ==================================
18:59:48.0437 3912 Boot (0x1200) (3bdfb410f5212329af90f6136d2cf454) \Device\Harddisk0\DR0\Partition1
18:59:48.0437 3912 \Device\Harddisk0\DR0\Partition1 - ok
18:59:48.0437 3912 ============================================================
18:59:48.0437 3912 Scan finished
18:59:48.0437 3912 ============================================================
18:59:48.0562 0772 Detected object count: 10
18:59:48.0562 0772 Actual detected object count: 10
19:00:20.0375 0772 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0375 0772 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0375 0772 BlueSoleilCS ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0390 0772 BlueSoleilCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0390 0772 BsHelpCS ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0390 0772 BsHelpCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0390 0772 BsMobileCS ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0390 0772 BsMobileCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0406 0772 McciCMService ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0406 0772 McciCMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0406 0772 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0406 0772 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0406 0772 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0406 0772 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0421 0772 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0421 0772 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:20.0421 0772 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
19:00:20.0421 0772 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:00:21.0328 0772 \Device\Harddisk0\DR0\# - copied to quarantine
19:00:21.0328 0772 \Device\Harddisk0\DR0 - copied to quarantine
19:00:21.0359 0772 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - will be cured on reboot
19:00:21.0375 0772 \Device\Harddisk0\DR0 - ok
19:00:21.0375 0772 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Cure
19:00:24.0437 1172 Deinitialize success

#45 Příspěvek od **vyosek** » 23 srp 2012 18:05

Super, nyni jeste pro sichr udelejte sken a pokud tam jiz nebude, bude to jedine dobre

A napiste co nas pacient

VIRY.CZ

Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti

Re: Prosím o kontrolu a pomoc při odstranění havěti