VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

malware - kontrola logu

https://forum.viry.cz:443/viewtopic.php?t=121794

Stránka 1 z 1

malware - kontrola logu

Napsal: 20 kvě 2012 18:28
od spike.jp
Ahoj, jsem průměrný uživatel. Před chvíli se mi do PC dostal malware Smart Fortress 2012. Ihned jsem jej odstranil podle návodu z youtube =DEv6qVTxWXI . Chtěl bych zkontrolovat log, jestli je všechno ok. Předem díky.

19:17:27.0319 5332 TDSS rootkit removing tool 2.7.35.0 May 16 2012 07:37:57
19:17:27.0794 5332 ============================================================
19:17:27.0794 5332 Current date / time: 2012/05/20 19:17:27.0794
19:17:27.0794 5332 SystemInfo:
19:17:27.0794 5332
19:17:27.0794 5332 OS Version: 6.0.6000 ServicePack: 0.0
19:17:27.0794 5332 Product type: Workstation
19:17:27.0794 5332 ComputerName: PATRIK-PC
19:17:27.0795 5332 UserName: patrik
19:17:27.0795 5332 Windows directory: C:\Windows
19:17:27.0795 5332 System windows directory: C:\Windows
19:17:27.0795 5332 Processor architecture: Intel x86
19:17:27.0795 5332 Number of processors: 1
19:17:27.0795 5332 Page size: 0x1000
19:17:27.0795 5332 Boot type: Normal boot
19:17:27.0795 5332 ============================================================
19:17:28.0943 5332 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:17:28.0945 5332 ============================================================
19:17:28.0945 5332 \Device\Harddisk0\DR0:
19:17:28.0945 5332 MBR partitions:
19:17:28.0945 5332 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1388800, BlocksNum 0x6607000
19:17:28.0946 5332 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x798F800, BlocksNum 0x6604800
19:17:28.0946 5332 ============================================================
19:17:28.0984 5332 C: <-> \Device\Harddisk0\DR0\Partition0
19:17:29.0155 5332 D: <-> \Device\Harddisk0\DR0\Partition1
19:17:29.0155 5332 ============================================================
19:17:29.0155 5332 Initialize success
19:17:29.0155 5332 ============================================================
19:17:30.0672 1448 ============================================================
19:17:30.0672 1448 Scan started
19:17:30.0672 1448 Mode: Manual;
19:17:30.0672 1448 ============================================================
19:17:31.0300 1448 ACPI (84fc6df81212d16be5c4f441682feccc) C:\Windows\system32\drivers\acpi.sys
19:17:31.0303 1448 ACPI - ok
19:17:31.0349 1448 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
19:17:31.0352 1448 adp94xx - ok
19:17:31.0385 1448 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
19:17:31.0388 1448 adpahci - ok
19:17:31.0418 1448 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
19:17:31.0419 1448 adpu160m - ok
19:17:31.0451 1448 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
19:17:31.0452 1448 adpu320 - ok
19:17:31.0500 1448 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
19:17:31.0501 1448 AeLookupSvc - ok
19:17:31.0541 1448 AFD (5d24caf8efd924a875698ff28384db8b) C:\Windows\system32\drivers\afd.sys
19:17:31.0544 1448 AFD - ok
19:17:31.0591 1448 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
19:17:31.0591 1448 agp440 - ok
19:17:31.0642 1448 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:17:31.0643 1448 aic78xx - ok
19:17:31.0693 1448 ALG (e69fb0e3112c40fdc0ef7d21a52dc951) C:\Windows\System32\alg.exe
19:17:31.0694 1448 ALG - ok
19:17:31.0732 1448 aliide (e32a92e1574a467f7c762922f6162d76) C:\Windows\system32\drivers\aliide.sys
19:17:31.0733 1448 aliide - ok
19:17:31.0763 1448 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
19:17:31.0763 1448 amdagp - ok
19:17:31.0791 1448 amdide (b52b576cb0099a62f87214f371031561) C:\Windows\system32\drivers\amdide.sys
19:17:31.0791 1448 amdide - ok
19:17:31.0839 1448 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
19:17:31.0840 1448 AmdK7 - ok
19:17:31.0870 1448 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\DRIVERS\amdk8.sys
19:17:31.0871 1448 AmdK8 - ok
19:17:31.0932 1448 Appinfo (cfa455816879f06f1c4e5bbf9e8aef7d) C:\Windows\System32\appinfo.dll
19:17:31.0933 1448 Appinfo - ok
19:17:31.0980 1448 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
19:17:31.0981 1448 arc - ok
19:17:32.0009 1448 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
19:17:32.0010 1448 arcsas - ok
19:17:32.0060 1448 AsyncMac (e86cf7ce67d5de898f27ef884dc357d8) C:\Windows\system32\DRIVERS\asyncmac.sys
19:17:32.0061 1448 AsyncMac - ok
19:17:32.0094 1448 atapi (e03e8c99d15d0381e02743c36afc7c6f) C:\Windows\system32\drivers\atapi.sys
19:17:32.0095 1448 atapi - ok
19:17:32.0153 1448 AudioEndpointBuilder (e760fc1bd68f7f6f1b17eb4e8d9480b0) C:\Windows\System32\Audiosrv.dll
19:17:32.0156 1448 AudioEndpointBuilder - ok
19:17:32.0171 1448 Audiosrv (e760fc1bd68f7f6f1b17eb4e8d9480b0) C:\Windows\System32\Audiosrv.dll
19:17:32.0174 1448 Audiosrv - ok
19:17:32.0212 1448 b57nd60x (0b92ccf7bfcbe2b33838434f2f50cb61) C:\Windows\system32\DRIVERS\b57nd60x.sys
19:17:32.0213 1448 b57nd60x - ok
19:17:32.0318 1448 BCM43XV (e22abcaa7b6ff580feb0d49545dc4263) C:\Windows\system32\DRIVERS\bcmwl6.sys
19:17:32.0326 1448 BCM43XV - ok
19:17:32.0363 1448 BCM43XX (e22abcaa7b6ff580feb0d49545dc4263) C:\Windows\system32\DRIVERS\bcmwl6.sys
19:17:32.0371 1448 BCM43XX - ok
19:17:32.0419 1448 Beep (ac3dd1708b22761ebd7cbe14dcc3b5d7) C:\Windows\system32\drivers\Beep.sys
19:17:32.0421 1448 Beep - ok
19:17:32.0484 1448 BFE (98ebdffb824a7c265337d68dd480e45c) C:\Windows\System32\bfe.dll
19:17:32.0487 1448 BFE - ok
19:17:32.0559 1448 BITS (da551697e34d2b9943c8b1c8eaffe89a) C:\Windows\System32\qmgr.dll
19:17:32.0567 1448 BITS - ok
19:17:32.0579 1448 blbdrive - ok
19:17:32.0599 1448 bowser (913cd06fbe9105ce6077e90fd4418561) C:\Windows\system32\DRIVERS\bowser.sys
19:17:32.0600 1448 bowser - ok
19:17:32.0629 1448 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:17:32.0630 1448 BrFiltLo - ok
19:17:32.0651 1448 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:17:32.0651 1448 BrFiltUp - ok
19:17:32.0707 1448 Browser (beb6470532b7461d7bb426e3facb424f) C:\Windows\System32\browser.dll
19:17:32.0709 1448 Browser - ok
19:17:32.0751 1448 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:17:32.0752 1448 Brserid - ok
19:17:32.0789 1448 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:17:32.0790 1448 BrSerWdm - ok
19:17:32.0817 1448 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:17:32.0818 1448 BrUsbMdm - ok
19:17:32.0847 1448 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:17:32.0847 1448 BrUsbSer - ok
19:17:32.0895 1448 BthEnum (cf97c2d6a011ee9403b42191b5f95ba8) C:\Windows\system32\DRIVERS\BthEnum.sys
19:17:32.0896 1448 BthEnum - ok
19:17:32.0942 1448 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
19:17:32.0942 1448 BTHMODEM - ok
19:17:32.0994 1448 BthPan (b8c3d9ddf85fd197c3e5f849fef71144) C:\Windows\system32\DRIVERS\bthpan.sys
19:17:32.0995 1448 BthPan - ok
19:17:33.0030 1448 BTHPORT (b4ce8000aab30a9ab16cd0fb3db4d7cf) C:\Windows\system32\Drivers\BTHport.sys
19:17:33.0032 1448 BTHPORT - ok
19:17:33.0075 1448 BthServ (58ee7f5e68310bc8d4e7cebd8358c12e) C:\Windows\System32\bthserv.dll
19:17:33.0076 1448 BthServ - ok
19:17:33.0111 1448 BTHUSB (9a4ddc8544c1459aa2a118a8858dade3) C:\Windows\system32\Drivers\BTHUSB.sys
19:17:33.0112 1448 BTHUSB - ok
19:17:33.0194 1448 btwaudio (c879f83c1f1fc1f8c7d568cb56cfc3ab) C:\Windows\system32\drivers\btwaudio.sys
19:17:33.0195 1448 btwaudio - ok
19:17:33.0241 1448 btwavdt (032d5459bb8af9266ce95b18f9cd59b2) C:\Windows\system32\drivers\btwavdt.sys
19:17:33.0244 1448 btwavdt - ok
19:17:33.0292 1448 btwrchid (0f3408c5934752db8316df09fccd7b33) C:\Windows\system32\DRIVERS\btwrchid.sys
19:17:33.0294 1448 btwrchid - ok
19:17:33.0335 1448 cdfs (6c3a437fc873c6f6a4fc620b6888cb86) C:\Windows\system32\DRIVERS\cdfs.sys
19:17:33.0336 1448 cdfs - ok
19:17:33.0368 1448 cdrom (8d1866e61af096ae8b582454f5e4d303) C:\Windows\system32\DRIVERS\cdrom.sys
19:17:33.0369 1448 cdrom - ok
19:17:33.0426 1448 CertPropSvc (0600e04315fe543802a379d5d23c8be0) C:\Windows\System32\certprop.dll
19:17:33.0429 1448 CertPropSvc - ok
19:17:33.0457 1448 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
19:17:33.0458 1448 circlass - ok
19:17:33.0506 1448 CLFS (1b84fd0937d3b99af9ba38ddff3daf54) C:\Windows\system32\CLFS.sys
19:17:33.0508 1448 CLFS - ok
19:17:33.0580 1448 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:17:33.0581 1448 clr_optimization_v2.0.50727_32 - ok
19:17:33.0631 1448 CmBatt (ed97ad3df1b9005989eaf149bf06c821) C:\Windows\system32\DRIVERS\CmBatt.sys
19:17:33.0631 1448 CmBatt - ok
19:17:33.0658 1448 cmdide (c177dd90b5dc1dcaa96ccece752e6f0f) C:\Windows\system32\drivers\cmdide.sys
19:17:33.0659 1448 cmdide - ok
19:17:33.0690 1448 Compbatt (722936afb75a7f509662b69b5632f48a) C:\Windows\system32\DRIVERS\compbatt.sys
19:17:33.0691 1448 Compbatt - ok
19:17:33.0706 1448 COMSysApp - ok
19:17:33.0719 1448 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
19:17:33.0720 1448 crcdisk - ok
19:17:33.0756 1448 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
19:17:33.0757 1448 Crusoe - ok
19:17:33.0818 1448 CryptSvc (1c26fb097170a2a91066d1e3a24366e3) C:\Windows\system32\cryptsvc.dll
19:17:33.0820 1448 CryptSvc - ok
19:17:33.0915 1448 DcomLaunch (7b981222a257d076885bffb66f19b7ce) C:\Windows\system32\rpcss.dll
19:17:33.0922 1448 DcomLaunch - ok
19:17:33.0965 1448 DfsC (a7179de59ae269ab70345527894ccd7c) C:\Windows\system32\Drivers\dfsc.sys
19:17:33.0966 1448 DfsC - ok
19:17:34.0128 1448 DFSR (e0d584aa76c7d845ba9f3a788260528f) C:\Windows\system32\DFSR.exe
19:17:34.0148 1448 DFSR - ok
19:17:34.0308 1448 Dhcp (dc45739bc22d528d2b3e50d3f6761750) C:\Windows\System32\dhcpcsvc.dll
19:17:34.0311 1448 Dhcp - ok
19:17:34.0363 1448 disk (841af4c4d41d3e3b2f244e976b0f7963) C:\Windows\system32\drivers\disk.sys
19:17:34.0364 1448 disk - ok
19:17:34.0426 1448 DKbFltr (73baf270d24fe726b9cd7f80bb17a23d) C:\Windows\system32\DRIVERS\DKbFltr.sys
19:17:34.0427 1448 DKbFltr - ok
19:17:34.0471 1448 Dnscache (eecba1dd142bf8693c476be8f32fe253) C:\Windows\System32\dnsrslvr.dll
19:17:34.0472 1448 Dnscache - ok
19:17:34.0513 1448 dot3svc (1f795d214820e496bf1124434a6db546) C:\Windows\System32\dot3svc.dll
19:17:34.0544 1448 dot3svc - ok
19:17:34.0702 1448 DPS (032c90ad677bf7b7a8013d6087c7a921) C:\Windows\system32\dps.dll
19:17:34.0704 1448 DPS - ok
19:17:34.0733 1448 drmkaud (ee472cd2c01f6f8e8aa1fa06ffef61b6) C:\Windows\system32\drivers\drmkaud.sys
19:17:34.0733 1448 drmkaud - ok
19:17:34.0786 1448 DXGKrnl (334988883de69adb27e2cf9f9715bbdb) C:\Windows\System32\drivers\dxgkrnl.sys
19:17:34.0791 1448 DXGKrnl - ok
19:17:34.0831 1448 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:17:34.0832 1448 E1G60 - ok
19:17:34.0872 1448 EapHost (90a0a875642e18618010645311b4e89e) C:\Windows\System32\eapsvc.dll
19:17:34.0874 1448 EapHost - ok
19:17:34.0907 1448 Ecache (0efc7531b936ee57fdb4e837664c509f) C:\Windows\system32\drivers\ecache.sys
19:17:34.0909 1448 Ecache - ok
19:17:35.0016 1448 eDataSecurity Service (f54907aa07f60aff81e1e09e97af98b0) C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
19:17:35.0022 1448 eDataSecurity Service - ok
19:17:35.0120 1448 eLockService (a7b5f3b9363f9ab1d4fe459baf3b15d6) C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
19:17:35.0121 1448 eLockService - ok
19:17:35.0182 1448 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
19:17:35.0185 1448 elxstor - ok
19:17:35.0257 1448 EMDMgmt (3226fda08988526e819e364e8cce4cee) C:\Windows\system32\emdmgmt.dll
19:17:35.0262 1448 EMDMgmt - ok
19:17:35.0338 1448 eNet Service (207e2dda01aac6ad64f0368ca59fc179) C:\Acer\Empowering Technology\eNet\eNet Service.exe
19:17:35.0339 1448 eNet Service - ok
19:17:35.0388 1448 eRecoveryService (59fccaf915ba89dd98cadf08da91afee) C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
19:17:35.0391 1448 eRecoveryService - ok
19:17:35.0452 1448 eSettingsService (24075f034a8b10718190cb39424d40df) C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
19:17:35.0453 1448 eSettingsService - ok
19:17:35.0528 1448 EventSystem (7b4971c3d43525175a4ea0d143e0412e) C:\Windows\system32\es.dll
19:17:35.0531 1448 EventSystem - ok
19:17:35.0599 1448 fastfat (84a317cb0b3954d3768cdcd018dbf670) C:\Windows\system32\drivers\fastfat.sys
19:17:35.0602 1448 fastfat - ok
19:17:35.0630 1448 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
19:17:35.0631 1448 fdc - ok
19:17:35.0668 1448 fdPHost (e43bce1a77d6fd4ed5f8e0482b9e7df1) C:\Windows\system32\fdPHost.dll
19:17:35.0670 1448 fdPHost - ok
19:17:35.0696 1448 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
19:17:35.0697 1448 FDResPub - ok
19:17:35.0713 1448 FileInfo (65773d6115c037ffd7ef8280ae85eb9d) C:\Windows\system32\drivers\fileinfo.sys
19:17:35.0714 1448 FileInfo - ok
19:17:35.0739 1448 Filetrace (c226dd0de060745f3e042f58dcf78402) C:\Windows\system32\drivers\filetrace.sys
19:17:35.0740 1448 Filetrace - ok
19:17:35.0757 1448 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
19:17:35.0758 1448 flpydisk - ok
19:17:35.0789 1448 FltMgr (a6a8da7ae4d53394ab22ac3ab6d3f5d3) C:\Windows\system32\drivers\fltmgr.sys
19:17:35.0791 1448 FltMgr - ok
19:17:35.0891 1448 FontCache3.0.0.0 (c9be08664611ddaf98e2331e9288b00b) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:17:35.0892 1448 FontCache3.0.0.0 - ok
19:17:35.0929 1448 Fs_Rec (66a078591208baa210c7634b11eb392c) C:\Windows\system32\drivers\Fs_Rec.sys
19:17:35.0930 1448 Fs_Rec - ok
19:17:35.0960 1448 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
19:17:35.0961 1448 gagp30kx - ok
19:17:36.0028 1448 gpsvc (bcf6589c42d8f6a20f33ef133ffe0524) C:\Windows\System32\gpsvc.dll
19:17:36.0034 1448 gpsvc - ok
19:17:36.0139 1448 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:17:36.0140 1448 gupdate - ok
19:17:36.0166 1448 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
19:17:36.0167 1448 gupdatem - ok
19:17:36.0241 1448 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
19:17:36.0243 1448 HdAudAddService - ok
19:17:36.0270 1448 HDAudBus (0db613a7e427b5663563677796fd5258) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:17:36.0271 1448 HDAudBus - ok
19:17:36.0299 1448 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:17:36.0300 1448 HidBth - ok
19:17:36.0324 1448 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:17:36.0325 1448 HidIr - ok
19:17:36.0369 1448 hidserv (8fa640195279ace21bea91396a0054fc) C:\Windows\system32\hidserv.dll
19:17:36.0370 1448 hidserv - ok
19:17:36.0407 1448 HidUsb (01e7971e9f4bd6ac6a08db52d0ea0418) C:\Windows\system32\DRIVERS\hidusb.sys
19:17:36.0408 1448 HidUsb - ok
19:17:36.0433 1448 hkmsvc (d40aa05e29bf6ed29b139f044b461e9b) C:\Windows\system32\kmsvc.dll
19:17:36.0436 1448 hkmsvc - ok
19:17:36.0482 1448 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
19:17:36.0482 1448 HpCISSs - ok
19:17:36.0562 1448 hpdj - ok
19:17:36.0617 1448 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:17:36.0619 1448 HSFHWAZL - ok
19:17:36.0704 1448 HSF_DPV (7bc42c65b5c6281777c1a7605b253ba8) C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:17:36.0712 1448 HSF_DPV - ok
19:17:36.0757 1448 HSXHWAZL (9ebf2d102ccbb6bcdfbf1b7922f8ba2e) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
19:17:36.0758 1448 HSXHWAZL - ok
19:17:36.0816 1448 HTTP (3c3cba3ce1a66439a960d4531a167c39) C:\Windows\system32\drivers\HTTP.sys
19:17:36.0820 1448 HTTP - ok
19:17:36.0855 1448 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
19:17:36.0855 1448 i2omp - ok
19:17:36.0906 1448 i8042prt (1c9ee072baa3abb460b91d7ee9152660) C:\Windows\system32\DRIVERS\i8042prt.sys
19:17:36.0907 1448 i8042prt - ok
19:17:37.0007 1448 IAANTMON (204a73a56751c68c6031e9d5d611ec98) C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
19:17:37.0011 1448 IAANTMON - ok
19:17:37.0093 1448 iaStor (2358c53f30cb9dcd1d3843c4e2f299b2) C:\Windows\system32\DRIVERS\iaStor.sys
19:17:37.0096 1448 iaStor - ok
19:17:37.0133 1448 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
19:17:37.0135 1448 iaStorV - ok
19:17:37.0291 1448 idsvc (7b630acaed64fef0c3e1cf255cb56686) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:17:37.0298 1448 idsvc - ok
19:17:37.0438 1448 igfx (04e385059da704ec6659ddb1526c4193) C:\Windows\system32\DRIVERS\igdkmd32.sys
19:17:37.0452 1448 igfx - ok
19:17:37.0589 1448 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:17:37.0590 1448 iirsp - ok
19:17:37.0643 1448 IKEEXT (35662fe4d8622f667aa5a5568f7f1b40) C:\Windows\System32\ikeext.dll
19:17:37.0651 1448 IKEEXT - ok
19:17:37.0689 1448 int15 (c6e5276c00ebdeb096bb5ef4b797d1b6) C:\Windows\system32\drivers\int15.sys
19:17:37.0689 1448 int15 - ok
19:17:37.0856 1448 IntcAzAudAddService (9438fe15da89c6aace8a79db2c6f60c1) C:\Windows\system32\drivers\RTKVHDA.sys
19:17:37.0873 1448 IntcAzAudAddService - ok
19:17:38.0010 1448 intelide (59b00efb24ead979becf413703bb1fac) C:\Windows\system32\drivers\intelide.sys
19:17:38.0011 1448 intelide - ok
19:17:38.0026 1448 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
19:17:38.0027 1448 intelppm - ok
19:17:38.0061 1448 IPBusEnum (88cf5281ed9880d74dc9011cf8b5262d) C:\Windows\system32\ipbusenum.dll
19:17:38.0063 1448 IPBusEnum - ok
19:17:38.0108 1448 IpFilterDriver (880c6f86cc3f551b8fea2c11141268c0) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:17:38.0109 1448 IpFilterDriver - ok
19:17:38.0161 1448 iphlpsvc (ecc9ad72cfc4ab41cf6a9bcc11f9fef6) C:\Windows\System32\iphlpsvc.dll
19:17:38.0164 1448 iphlpsvc - ok
19:17:38.0181 1448 IpInIp - ok
19:17:38.0202 1448 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
19:17:38.0203 1448 IPMIDRV - ok
19:17:38.0246 1448 IPNAT (10077c35845101548037df04fd1a420b) C:\Windows\system32\DRIVERS\ipnat.sys
19:17:38.0247 1448 IPNAT - ok
19:17:38.0283 1448 irda (f11a90fb3f44f37ad10a4893bb690065) C:\Windows\system32\DRIVERS\irda.sys
19:17:38.0284 1448 irda - ok
19:17:38.0309 1448 IRENUM (a82f328f4792304184642d6d397bb1e3) C:\Windows\system32\drivers\irenum.sys
19:17:38.0309 1448 IRENUM - ok
19:17:38.0352 1448 Irmon (cbb0d940221a281bcfeaea695bd1cda5) C:\Windows\System32\irmon.dll
19:17:38.0355 1448 Irmon - ok
19:17:38.0386 1448 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
19:17:38.0387 1448 isapnp - ok
19:17:38.0417 1448 iScsiPrt (4dca456d4d5723f8fa9c6760d240b0df) C:\Windows\system32\DRIVERS\msiscsi.sys
19:17:38.0418 1448 iScsiPrt - ok
19:17:38.0452 1448 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:17:38.0452 1448 iteatapi - ok
19:17:38.0478 1448 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:17:38.0479 1448 iteraid - ok
19:17:38.0507 1448 kbdclass (b076b2ab806b3f696dab21375389101c) C:\Windows\system32\DRIVERS\kbdclass.sys
19:17:38.0507 1448 kbdclass - ok
19:17:38.0541 1448 kbdhid (ed61dbc6603f612b7338283edbacbc4b) C:\Windows\system32\drivers\kbdhid.sys
19:17:38.0544 1448 kbdhid - ok
19:17:38.0579 1448 KeyIso (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
19:17:38.0581 1448 KeyIso - ok
19:17:38.0626 1448 KSecDD (0a829977b078dea11641fc2af87ceade) C:\Windows\system32\Drivers\ksecdd.sys
19:17:38.0629 1448 KSecDD - ok
19:17:38.0688 1448 KtmRm (45c537fe5dde9a0146aeff76e615737d) C:\Windows\system32\msdtckrm.dll
19:17:38.0692 1448 KtmRm - ok
19:17:38.0733 1448 LanmanServer (53d1482fc1aa36ac015a85e6cf2146bd) C:\Windows\system32\srvsvc.dll
19:17:38.0736 1448 LanmanServer - ok
19:17:38.0779 1448 LanmanWorkstation (435f0f6dc87a4b5da78f1fa309884189) C:\Windows\System32\wkssvc.dll
19:17:38.0783 1448 LanmanWorkstation - ok
19:17:38.0867 1448 LightScribeService (793ff718477345cd5d232c50bed1e452) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
19:17:38.0868 1448 LightScribeService - ok
19:17:38.0903 1448 lltdio (fd015b4f95daa2b712f0e372a116fbad) C:\Windows\system32\DRIVERS\lltdio.sys
19:17:38.0904 1448 lltdio - ok
19:17:38.0954 1448 lltdsvc (7450dbcf754391dd6363fffd5ef0e789) C:\Windows\System32\lltdsvc.dll
19:17:38.0959 1448 lltdsvc - ok
19:17:38.0992 1448 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
19:17:38.0994 1448 lmhosts - ok
19:17:39.0022 1448 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
19:17:39.0023 1448 LSI_FC - ok
19:17:39.0052 1448 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
19:17:39.0053 1448 LSI_SAS - ok
19:17:39.0085 1448 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
19:17:39.0086 1448 LSI_SCSI - ok
19:17:39.0116 1448 luafv (42885bb44b6e065b8575a8dd6c430c52) C:\Windows\system32\drivers\luafv.sys
19:17:39.0117 1448 luafv - ok
19:17:39.0165 1448 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
19:17:39.0166 1448 MBAMProtector - ok
19:17:39.0229 1448 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:17:39.0235 1448 MBAMService - ok
19:17:39.0279 1448 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:17:39.0280 1448 mdmxsdk - ok
19:17:39.0313 1448 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
19:17:39.0316 1448 megasas - ok
19:17:39.0412 1448 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:17:39.0414 1448 Microsoft Office Groove Audit Service - ok
19:17:39.0458 1448 MMCSS (9dfa3a459af0954aa85b4f7622ad87bb) C:\Windows\system32\mmcss.dll
19:17:39.0460 1448 MMCSS - ok
19:17:39.0502 1448 MobilityService - ok
19:17:39.0536 1448 Modem (21755967298a46fb6adfec9db6012211) C:\Windows\system32\drivers\modem.sys
19:17:39.0537 1448 Modem - ok
19:17:39.0553 1448 monitor (ec839ba91e45cce6eadafc418fff8206) C:\Windows\system32\DRIVERS\monitor.sys
19:17:39.0553 1448 monitor - ok
19:17:39.0580 1448 mouclass (5fba13c1a1841b0885d316ed3589489d) C:\Windows\system32\DRIVERS\mouclass.sys
19:17:39.0580 1448 mouclass - ok
19:17:39.0601 1448 mouhid (b569b5c5d3bde545df3a6af512cccdba) C:\Windows\system32\DRIVERS\mouhid.sys
19:17:39.0601 1448 mouhid - ok
19:17:39.0622 1448 MountMgr (01f1e5a3e4877c931cbb31613fec16a6) C:\Windows\system32\drivers\mountmgr.sys
19:17:39.0623 1448 MountMgr - ok
19:17:39.0668 1448 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:17:39.0669 1448 MozillaMaintenance - ok
19:17:39.0746 1448 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
19:17:39.0746 1448 mpio - ok
19:17:39.0774 1448 mpsdrv (6e7a7f0c1193ee5648443fe2d4b789ec) C:\Windows\system32\drivers\mpsdrv.sys
19:17:39.0775 1448 mpsdrv - ok
19:17:39.0838 1448 MpsSvc (563ed845885c6a7c09a7715d8bd0585c) C:\Windows\system32\mpssvc.dll
19:17:39.0843 1448 MpsSvc - ok
19:17:39.0879 1448 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:17:39.0880 1448 Mraid35x - ok
19:17:39.0909 1448 MRxDAV (1d8828b98ee309d65e006f0829e280e5) C:\Windows\system32\drivers\mrxdav.sys
19:17:39.0911 1448 MRxDAV - ok
19:17:39.0957 1448 mrxsmb (8af705ce1bb907932157fab821170f27) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:17:39.0958 1448 mrxsmb - ok
19:17:39.0991 1448 mrxsmb10 (47e13ab23371be3279eef22bbfa2c1be) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:17:39.0993 1448 mrxsmb10 - ok
19:17:40.0016 1448 mrxsmb20 (90b3fc7bd6b3d7ee7635debba2187f66) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:17:40.0017 1448 mrxsmb20 - ok
19:17:40.0059 1448 msahci (2681302b63b318cbea6c82902ac5428c) C:\Windows\system32\drivers\msahci.sys
19:17:40.0060 1448 msahci - ok
19:17:40.0089 1448 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
19:17:40.0090 1448 msdsm - ok
19:17:40.0138 1448 MSDTC (bc64a92d821efea8bab8e8caf1b668bc) C:\Windows\System32\msdtc.exe
19:17:40.0140 1448 MSDTC - ok
19:17:40.0178 1448 Msfs (729eafefd4e7417165f353a18dbe947d) C:\Windows\system32\drivers\Msfs.sys
19:17:40.0179 1448 Msfs - ok
19:17:40.0215 1448 msisadrv (207df26dbb2537c20276da0e15892274) C:\Windows\system32\drivers\msisadrv.sys
19:17:40.0216 1448 msisadrv - ok
19:17:40.0254 1448 MSiSCSI (8acf956d9154e893e789881430c12632) C:\Windows\system32\iscsiexe.dll
19:17:40.0257 1448 MSiSCSI - ok
19:17:40.0272 1448 msiserver - ok
19:17:40.0298 1448 MSKSSRV (892cedefa7e0ffe7be8da651b651d047) C:\Windows\system32\drivers\MSKSSRV.sys
19:17:40.0299 1448 MSKSSRV - ok
19:17:40.0326 1448 MSPCLOCK (ae2cb1da69b2676b4cee2a501af5871c) C:\Windows\system32\drivers\MSPCLOCK.sys
19:17:40.0326 1448 MSPCLOCK - ok
19:17:40.0389 1448 MSPQM (f910da84fa90c44a3addb7cd874463fd) C:\Windows\system32\drivers\MSPQM.sys
19:17:40.0389 1448 MSPQM - ok
19:17:40.0416 1448 MsRPC (84571c0ae07647ba38d493f5f0015df7) C:\Windows\system32\drivers\MsRPC.sys
19:17:40.0420 1448 MsRPC - ok
19:17:40.0446 1448 mssmbios (7dbaa028f625aa46b95dda4fbe4b602b) C:\Windows\system32\DRIVERS\mssmbios.sys
19:17:40.0446 1448 mssmbios - ok
19:17:40.0477 1448 MSTEE (c826dd1373f38afd9ca46ec3c436a14e) C:\Windows\system32\drivers\MSTEE.sys
19:17:40.0477 1448 MSTEE - ok
19:17:40.0507 1448 Mup (fa7aa70050cf5e2d15de00941e5665e5) C:\Windows\system32\Drivers\mup.sys
19:17:40.0508 1448 Mup - ok
19:17:40.0568 1448 napagent (1cdbb5d002fe2bc5300aa20550d8a52e) C:\Windows\system32\qagentRT.dll
19:17:40.0572 1448 napagent - ok
19:17:40.0617 1448 NativeWifiP (6da4a0fc7c0e83df0cb3cfd0a514c3bc) C:\Windows\system32\DRIVERS\nwifi.sys
19:17:40.0619 1448 NativeWifiP - ok
19:17:40.0687 1448 NDIS (227c11e1e7cf6ef8afb2a238d209760c) C:\Windows\system32\drivers\ndis.sys
19:17:40.0692 1448 NDIS - ok
19:17:40.0714 1448 NdisTapi (81659cdcbd0f9a9e07e6878ad8c78d3f) C:\Windows\system32\DRIVERS\ndistapi.sys
19:17:40.0715 1448 NdisTapi - ok
19:17:40.0733 1448 Ndisuio (5de5ee546bf40838ebe0e01cb629df64) C:\Windows\system32\DRIVERS\ndisuio.sys
19:17:40.0734 1448 Ndisuio - ok
19:17:40.0766 1448 NdisWan (397402adcbb8946223a1950101f6cd94) C:\Windows\system32\DRIVERS\ndiswan.sys
19:17:40.0767 1448 NdisWan - ok
19:17:40.0787 1448 NDProxy (1b24fa907af283199a81b3bb37e5e526) C:\Windows\system32\drivers\NDProxy.sys
19:17:40.0789 1448 NDProxy - ok
19:17:40.0832 1448 NetBIOS (356dbb9f98e8dc1028dd3092fceeb877) C:\Windows\system32\DRIVERS\netbios.sys
19:17:40.0832 1448 NetBIOS - ok
19:17:40.0872 1448 netbt (e3a168912e7eefc3bd3b814720d68b41) C:\Windows\system32\DRIVERS\netbt.sys
19:17:40.0873 1448 netbt - ok
19:17:40.0912 1448 Netlogon (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
19:17:40.0914 1448 Netlogon - ok
19:17:40.0967 1448 Netman (90a4dae28b94497f83bea0f2a3b77092) C:\Windows\System32\netman.dll
19:17:40.0971 1448 Netman - ok
19:17:41.0003 1448 netprofm (7c5c3d9ceee838856b828ab6f98a2857) C:\Windows\System32\netprofm.dll
19:17:41.0007 1448 netprofm - ok
19:17:41.0086 1448 NetTcpPortSharing (0ad5876ef4e9eb77c8f93eb5b2fff386) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:17:41.0087 1448 NetTcpPortSharing - ok
19:17:41.0236 1448 NETw3v32 (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
19:17:41.0249 1448 NETw3v32 - ok
19:17:41.0387 1448 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:17:41.0388 1448 nfrd960 - ok
19:17:41.0442 1448 NlaSvc (c424117a562f2de37a42266894c79aeb) C:\Windows\System32\nlasvc.dll
19:17:41.0445 1448 NlaSvc - ok
19:17:41.0492 1448 nmwcdnsu (28d40797bcb050321fa6674b08a620c0) C:\Windows\system32\drivers\nmwcdnsu.sys
19:17:41.0493 1448 nmwcdnsu - ok
19:17:41.0543 1448 nmwcdnsuc (7804e9747bc27eddc6a8382bbf35cf25) C:\Windows\system32\drivers\nmwcdnsuc.sys
19:17:41.0544 1448 nmwcdnsuc - ok
19:17:41.0575 1448 Npfs (4f9832beb9fafd8ceb0e541f1323b26e) C:\Windows\system32\drivers\Npfs.sys
19:17:41.0576 1448 Npfs - ok
19:17:41.0610 1448 NSCIRDA (c9294e01e45139fd77e16ec07fd86f61) C:\Windows\system32\DRIVERS\nscirda.sys
19:17:41.0611 1448 NSCIRDA - ok
19:17:41.0649 1448 nsi (23b8201a363de0e649fc75ee9874dee2) C:\Windows\system32\nsisvc.dll
19:17:41.0651 1448 nsi - ok
19:17:41.0683 1448 nsiproxy (b488dfec274de1fc9d653870ef2587be) C:\Windows\system32\drivers\nsiproxy.sys
19:17:41.0683 1448 nsiproxy - ok
19:17:41.0757 1448 Ntfs (2620822a21b76375f5fd6e0986407cd1) C:\Windows\system32\drivers\Ntfs.sys
19:17:41.0777 1448 Ntfs - ok
19:17:41.0817 1448 NTIDrvr (7f1c1f78d709c4a54cbb46ede7e0b48d) C:\Windows\system32\DRIVERS\NTIDrvr.sys
19:17:41.0818 1448 NTIDrvr - ok
19:17:41.0841 1448 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:17:41.0841 1448 ntrigdigi - ok
19:17:41.0857 1448 Null (ec5efb3c60f1b624648344a328bce596) C:\Windows\system32\drivers\Null.sys
19:17:41.0859 1448 Null - ok
19:17:41.0903 1448 NVENETFD (1657f3fbd9061526c14ff37e79306f98) C:\Windows\system32\DRIVERS\nvm60x32.sys
19:17:41.0907 1448 NVENETFD - ok
19:17:41.0941 1448 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
19:17:41.0942 1448 nvraid - ok
19:17:41.0969 1448 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
19:17:41.0970 1448 nvstor - ok
19:17:42.0002 1448 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
19:17:42.0003 1448 nv_agp - ok
19:17:42.0016 1448 NwlnkFlt - ok
19:17:42.0027 1448 NwlnkFwd - ok
19:17:42.0174 1448 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:17:42.0178 1448 odserv - ok
19:17:42.0229 1448 ohci1394 (953c1ba621f4da9dc7d268ae839a51fb) C:\Windows\system32\DRIVERS\ohci1394.sys
19:17:42.0230 1448 ohci1394 - ok
19:17:42.0274 1448 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:17:42.0275 1448 ose - ok
19:17:42.0362 1448 p2pimsvc (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
19:17:42.0376 1448 p2pimsvc - ok
19:17:42.0397 1448 p2psvc (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
19:17:42.0406 1448 p2psvc - ok
19:17:42.0442 1448 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
19:17:42.0443 1448 Parport - ok
19:17:42.0465 1448 partmgr (555a5b2c8022983bc7467bc925b222ee) C:\Windows\system32\drivers\partmgr.sys
19:17:42.0466 1448 partmgr - ok
19:17:42.0512 1448 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
19:17:42.0513 1448 Parvdm - ok
19:17:42.0552 1448 PcaSvc (d8c5c215c932233a4f1d7f368f4e4e65) C:\Windows\System32\pcasvc.dll
19:17:42.0555 1448 PcaSvc - ok
19:17:42.0586 1448 pccsmcfd - ok
19:17:42.0604 1448 pci (bdd96f9cf34d58958aff1be6ef4c8020) C:\Windows\system32\drivers\pci.sys
19:17:42.0606 1448 pci - ok
19:17:42.0633 1448 pciide (b2fc76090ef1003463ccb07cabb35cff) C:\Windows\system32\drivers\pciide.sys
19:17:42.0634 1448 pciide - ok
19:17:42.0683 1448 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\DRIVERS\pcmcia.sys
19:17:42.0686 1448 pcmcia - ok
19:17:42.0750 1448 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:17:42.0758 1448 PEAUTH - ok
19:17:42.0894 1448 pla (cd05a38d166beade18030bafc0c0a939) C:\Windows\system32\pla.dll
19:17:42.0921 1448 pla - ok
19:17:43.0046 1448 PlugPlay (747bb4c31f3b6e8d1b5ed0ad61518cb5) C:\Windows\system32\umpnpmgr.dll
19:17:43.0051 1448 PlugPlay - ok
19:17:43.0127 1448 PNRPAutoReg (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
19:17:43.0134 1448 PNRPAutoReg - ok
19:17:43.0149 1448 PNRPsvc (016d01d3b8fb976a193c7434bed8dccf) C:\Windows\system32\p2psvc.dll
19:17:43.0158 1448 PNRPsvc - ok
19:17:43.0216 1448 PolicyAgent (5ebdec613bd377ce9a85382be5c6b83b) C:\Windows\System32\ipsecsvc.dll
19:17:43.0224 1448 PolicyAgent - ok
19:17:43.0295 1448 PptpMiniport (c04dec5ace67c5247b150c4223970bb7) C:\Windows\system32\DRIVERS\raspptp.sys
19:17:43.0296 1448 PptpMiniport - ok
19:17:43.0325 1448 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
19:17:43.0326 1448 Processor - ok
19:17:43.0362 1448 ProfSvc (213112e152e68f0e4705e36f052a2880) C:\Windows\system32\profsvc.dll
19:17:43.0365 1448 ProfSvc - ok
19:17:43.0401 1448 ProtectedStorage (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
19:17:43.0403 1448 ProtectedStorage - ok
19:17:43.0432 1448 PSched (2c8bae55247c4e09352e870292e4d1ab) C:\Windows\system32\DRIVERS\pacer.sys
19:17:43.0433 1448 PSched - ok
19:17:43.0483 1448 PSDFilter (e801d5cc24e1cf18fa87d24d7074b876) C:\Windows\system32\DRIVERS\psdfilter.sys
19:17:43.0484 1448 PSDFilter - ok
19:17:43.0508 1448 PSDNServ (24b5e3429f7f0e779fc2e6e36a0a5f73) C:\Windows\system32\drivers\PSDNServ.sys
19:17:43.0509 1448 PSDNServ - ok
19:17:43.0538 1448 psdvdisk (01cbfd08c0e8a6106bb26fcda297154e) C:\Windows\system32\drivers\psdvdisk.sys
19:17:43.0539 1448 psdvdisk - ok
19:17:43.0617 1448 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
19:17:43.0625 1448 ql2300 - ok
19:17:43.0651 1448 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:17:43.0652 1448 ql40xx - ok
19:17:43.0717 1448 QWAVE (ca61bdfd3713a7ce75f2812afc431594) C:\Windows\system32\qwave.dll
19:17:43.0723 1448 QWAVE - ok
19:17:43.0749 1448 QWAVEdrv (d2b3e2b7426dc23e185fbc73c8936c12) C:\Windows\system32\drivers\qwavedrv.sys
19:17:43.0750 1448 QWAVEdrv - ok
19:17:43.0777 1448 RasAcd (bd7b30f55b3649506dd8b3d38f571d2a) C:\Windows\system32\DRIVERS\rasacd.sys
19:17:43.0778 1448 RasAcd - ok
19:17:43.0800 1448 RasAuto (f14f4aab9f54d099fe99192bdb100ac9) C:\Windows\System32\rasauto.dll
19:17:43.0804 1448 RasAuto - ok
19:17:43.0855 1448 Rasl2tp (68b0019fee429ec49d29017af937e482) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:17:43.0856 1448 Rasl2tp - ok
19:17:43.0889 1448 RasMan (11d65e29bc9d1e4114d18fe68194394c) C:\Windows\System32\rasmans.dll
19:17:43.0893 1448 RasMan - ok
19:17:43.0920 1448 RasPppoe (ccf4e9c6cbbac81437f88cb2ae0b6c96) C:\Windows\system32\DRIVERS\raspppoe.sys
19:17:43.0921 1448 RasPppoe - ok
19:17:43.0961 1448 rdbss (54129c5d9581bbec8bd1ebd3ba813f47) C:\Windows\system32\DRIVERS\rdbss.sys
19:17:43.0963 1448 rdbss - ok
19:17:43.0992 1448 RDPCDD (794585276b5d7fca9f3fc15543f9f0b9) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:17:43.0995 1448 RDPCDD - ok
19:17:44.0034 1448 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
19:17:44.0036 1448 rdpdr - ok
19:17:44.0050 1448 RDPENCDD (980b56e2e273e19d3a9d72d5c420f008) C:\Windows\system32\drivers\rdpencdd.sys
19:17:44.0051 1448 RDPENCDD - ok
19:17:44.0089 1448 RDPWD (8830e790a74a96605faba74f9665bb3c) C:\Windows\system32\drivers\RDPWD.sys
19:17:44.0093 1448 RDPWD - ok
19:17:44.0148 1448 RemoteAccess (6c1a43c589ee8011a1ebfd51c01b77ce) C:\Windows\System32\mprdim.dll
19:17:44.0151 1448 RemoteAccess - ok
19:17:44.0198 1448 RemoteRegistry (9a043808667c8c1893da7275af373f0e) C:\Windows\system32\regsvc.dll
19:17:44.0202 1448 RemoteRegistry - ok
19:17:44.0245 1448 RFCOMM (7ec90c316177ba3f1bce92005264b447) C:\Windows\system32\DRIVERS\rfcomm.sys
19:17:44.0246 1448 RFCOMM - ok
19:17:44.0282 1448 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
19:17:44.0284 1448 RpcLocator - ok
19:17:44.0348 1448 RpcSs (7b981222a257d076885bffb66f19b7ce) C:\Windows\system32\rpcss.dll
19:17:44.0355 1448 RpcSs - ok
19:17:44.0398 1448 rspndr (97e939d2128fec5d5a3e6e79b290a2f4) C:\Windows\system32\DRIVERS\rspndr.sys
19:17:44.0399 1448 rspndr - ok
19:17:44.0434 1448 SamSs (c731b1fe449d4e9cea358c9d55b69be9) C:\Windows\system32\lsass.exe
19:17:44.0436 1448 SamSs - ok
19:17:44.0471 1448 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
19:17:44.0472 1448 sbp2port - ok
19:17:44.0509 1448 SCardSvr (565b4b9e5ad2f2f18a4f8aafa6c06bbb) C:\Windows\System32\SCardSvr.dll
19:17:44.0513 1448 SCardSvr - ok
19:17:44.0564 1448 Schedule (886cec884b5be29ab9828b8ab46b11f7) C:\Windows\system32\schedsvc.dll
19:17:44.0571 1448 Schedule - ok
19:17:44.0604 1448 SCPolicySvc (0600e04315fe543802a379d5d23c8be0) C:\Windows\System32\certprop.dll
19:17:44.0604 1448 SCPolicySvc - ok
19:17:44.0637 1448 sdbus (7b3973cc28b8aa3e9e2e5d53e720e2c9) C:\Windows\system32\DRIVERS\sdbus.sys
19:17:44.0638 1448 sdbus - ok
19:17:44.0662 1448 SDRSVC (f7b6bf02240d0a764adf8c8966735552) C:\Windows\System32\SDRSVC.dll
19:17:44.0669 1448 SDRSVC - ok
19:17:44.0712 1448 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:17:44.0713 1448 secdrv - ok
19:17:44.0750 1448 seclogon (8388c4133ddbe62ad7bc3ec9f14271ed) C:\Windows\system32\seclogon.dll
19:17:44.0753 1448 seclogon - ok
19:17:44.0777 1448 SENS (34350ae2c1d33d21c7305f861bd8dad8) C:\Windows\System32\sens.dll
19:17:44.0780 1448 SENS - ok
19:17:44.0811 1448 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
19:17:44.0812 1448 Serenum - ok
19:17:44.0835 1448 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
19:17:44.0836 1448 Serial - ok
19:17:44.0867 1448 sermouse (450accd77ec5cea720c1cdb9e26b953b) C:\Windows\system32\drivers\sermouse.sys
19:17:44.0867 1448 sermouse - ok
19:17:44.0918 1448 SessionEnv (78878235da4df0d116e86837a0a21df8) C:\Windows\system32\sessenv.dll
19:17:44.0924 1448 SessionEnv - ok
19:17:44.0954 1448 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\DRIVERS\sffdisk.sys
19:17:44.0955 1448 sffdisk - ok
19:17:44.0997 1448 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
19:17:44.0998 1448 sffp_mmc - ok
19:17:45.0023 1448 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\DRIVERS\sffp_sd.sys
19:17:45.0024 1448 sffp_sd - ok
19:17:45.0052 1448 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
19:17:45.0053 1448 sfloppy - ok
19:17:45.0105 1448 SharedAccess (9a82bf4c90b00a63150a606a1e2fd82b) C:\Windows\System32\ipnathlp.dll
19:17:45.0108 1448 SharedAccess - ok
19:17:45.0148 1448 ShellHWDetection (b264dfa21677728613267fe63802b332) C:\Windows\System32\shsvcs.dll
19:17:45.0152 1448 ShellHWDetection - ok
19:17:45.0184 1448 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
19:17:45.0185 1448 sisagp - ok
19:17:45.0230 1448 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
19:17:45.0231 1448 SiSRaid2 - ok
19:17:45.0261 1448 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
19:17:45.0262 1448 SiSRaid4 - ok
19:17:45.0415 1448 slsvc (a1dcd30534835cb67733ad00175125a6) C:\Windows\system32\SLsvc.exe
19:17:45.0437 1448 slsvc - ok
19:17:45.0560 1448 SLUINotify (56da296e7b376a727e7bdc5ac7fbee02) C:\Windows\system32\SLUINotify.dll
19:17:45.0564 1448 SLUINotify - ok
19:17:45.0610 1448 Smb (ac0d90738adb51a6fd12ff00874a2162) C:\Windows\system32\DRIVERS\smb.sys
19:17:45.0611 1448 Smb - ok
19:17:45.0639 1448 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
19:17:45.0642 1448 SNMPTRAP - ok
19:17:45.0657 1448 spldr (426f9b029aa9162ceccf65369457d046) C:\Windows\system32\drivers\spldr.sys
19:17:45.0658 1448 spldr - ok
19:17:45.0706 1448 Spooler (da612ef2556776df2630b68bf2d48935) C:\Windows\System32\spoolsv.exe
19:17:45.0709 1448 Spooler - ok
19:17:45.0802 1448 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
19:17:45.0802 1448 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
19:17:45.0805 1448 sptd ( LockedFile.Multi.Generic ) - warning
19:17:45.0805 1448 sptd - detected LockedFile.Multi.Generic (1)
19:17:45.0886 1448 SQLWriter (9263c8898732e2b890f7e954e7729ab7) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:17:45.0898 1448 SQLWriter - ok
19:17:45.0955 1448 srv (038579c35f7cad4a4bbf735dbf83277d) C:\Windows\system32\DRIVERS\srv.sys
19:17:45.0957 1448 srv - ok
19:17:45.0986 1448 srv2 (6971a757af8cb5e2cbcbb76cc530db6c) C:\Windows\system32\DRIVERS\srv2.sys
19:17:45.0987 1448 srv2 - ok
19:17:46.0009 1448 srvnet (9e1a4603b874eebce0298113951abefb) C:\Windows\system32\DRIVERS\srvnet.sys
19:17:46.0010 1448 srvnet - ok
19:17:46.0052 1448 SSDPSRV (8d3e4baff8b3997138c38eb1b600519a) C:\Windows\System32\ssdpsrv.dll
19:17:46.0056 1448 SSDPSRV - ok
19:17:46.0116 1448 stisvc (a941e099ef46e3cc12f898cbe1c39910) C:\Windows\System32\wiaservc.dll
19:17:46.0127 1448 stisvc - ok
19:17:46.0180 1448 STV680 (f27b0952ac7b70cb706baa45962da1b1) C:\Windows\system32\drivers\STV680.sys
19:17:46.0181 1448 STV680 - ok
19:17:46.0228 1448 swenum (3b80b4383c9bce13279c8482734b32b2) C:\Windows\system32\DRIVERS\swenum.sys
19:17:46.0228 1448 swenum - ok
19:17:46.0273 1448 swprv (749ada8d6c18a08adfede69cbf5db2e0) C:\Windows\System32\swprv.dll
19:17:46.0281 1448 swprv - ok
19:17:46.0309 1448 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:17:46.0310 1448 Symc8xx - ok
19:17:46.0336 1448 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:17:46.0337 1448 Sym_hi - ok
19:17:46.0368 1448 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:17:46.0368 1448 Sym_u3 - ok
19:17:46.0410 1448 SynTP (c5f25d490d0915732508fd421bf76d93) C:\Windows\system32\DRIVERS\SynTP.sys
19:17:46.0412 1448 SynTP - ok
19:17:46.0458 1448 SysMain (8f2b5fede18bd3c4c926cbf88e6f1264) C:\Windows\system32\sysmain.dll
19:17:46.0471 1448 SysMain - ok
19:17:46.0515 1448 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
19:17:46.0519 1448 TabletInputService - ok
19:17:46.0556 1448 TapiSrv (ef3dd33c740fc2f82e7e4622f1c49289) C:\Windows\System32\tapisrv.dll
19:17:46.0560 1448 TapiSrv - ok
19:17:46.0588 1448 TBS (68fa52794ae9acc61bde16fe0956b414) C:\Windows\System32\tbssvc.dll
19:17:46.0593 1448 TBS - ok
19:17:46.0684 1448 Tcpip (4a82fa8f0df67aa354580c3faaf8bde3) C:\Windows\system32\drivers\tcpip.sys
19:17:46.0691 1448 Tcpip - ok
19:17:46.0710 1448 Tcpip6 (4a82fa8f0df67aa354580c3faaf8bde3) C:\Windows\system32\DRIVERS\tcpip.sys
19:17:46.0718 1448 Tcpip6 - ok
19:17:46.0757 1448 tcpipreg (5ce0c4a7b12d0067dad527d72b68c726) C:\Windows\system32\drivers\tcpipreg.sys
19:17:46.0758 1448 tcpipreg - ok
19:17:46.0793 1448 TDPIPE (964248aef49c31fa6a93201a73ffaf50) C:\Windows\system32\drivers\tdpipe.sys
19:17:46.0794 1448 TDPIPE - ok
19:17:46.0824 1448 TDTCP (7d2c1ae1648a60fce4aa0f7982e419d3) C:\Windows\system32\drivers\tdtcp.sys
19:17:46.0825 1448 TDTCP - ok
19:17:46.0852 1448 tdx (ab4fde8af4a0270a46a001c08cbce1c2) C:\Windows\system32\DRIVERS\tdx.sys
19:17:46.0853 1448 tdx - ok
19:17:46.0879 1448 TermDD (849ed71967d45f15c3e0abfc633fdf2a) C:\Windows\system32\DRIVERS\termdd.sys
19:17:46.0880 1448 TermDD - ok
19:17:46.0939 1448 TermService (fad71c1e8e4047b154e899ae31eb8caa) C:\Windows\System32\termsrv.dll
19:17:46.0949 1448 TermService - ok
19:17:46.0993 1448 Themes (b264dfa21677728613267fe63802b332) C:\Windows\system32\shsvcs.dll
19:17:46.0998 1448 Themes - ok
19:17:47.0035 1448 THREADORDER (9dfa3a459af0954aa85b4f7622ad87bb) C:\Windows\system32\mmcss.dll
19:17:47.0037 1448 THREADORDER - ok
19:17:47.0078 1448 tifm21 (78213f01ce781f93180bef5eb5b3ad81) C:\Windows\system32\drivers\tifm21.sys
19:17:47.0081 1448 tifm21 - ok
19:17:47.0114 1448 TrkWks (6bba0582c0025d43729a1112d3b57897) C:\Windows\System32\trkwks.dll
19:17:47.0117 1448 TrkWks - ok
19:17:47.0176 1448 TrustedInstaller (34e388a395fedba1d0511ed39bbf4074) C:\Windows\servicing\TrustedInstaller.exe
19:17:47.0176 1448 TrustedInstaller - ok
19:17:47.0213 1448 tssecsrv (29f0eca726f0d51f7e048bdb0b372f29) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:17:47.0214 1448 tssecsrv - ok
19:17:47.0252 1448 tunmp (65e953bc0084d44498b51f59784d2a82) C:\Windows\system32\DRIVERS\tunmp.sys
19:17:47.0252 1448 tunmp - ok
19:17:47.0287 1448 tunnel (4a39bda5e0fd30bdf4884f9d33ae6105) C:\Windows\system32\DRIVERS\tunnel.sys
19:17:47.0287 1448 tunnel - ok
19:17:47.0328 1448 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
19:17:47.0328 1448 uagp35 - ok
19:17:47.0362 1448 udfs (6348da98707ceda8a0dfb05820e17732) C:\Windows\system32\DRIVERS\udfs.sys
19:17:47.0365 1448 udfs - ok
19:17:47.0413 1448 UI0Detect (24a333f4f14dcfb6ff6d5a1b9e5d79dd) C:\Windows\system32\UI0Detect.exe
19:17:47.0418 1448 UI0Detect - ok
19:17:47.0449 1448 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
19:17:47.0450 1448 uliagpkx - ok
19:17:47.0486 1448 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
19:17:47.0488 1448 uliahci - ok
19:17:47.0525 1448 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:17:47.0526 1448 UlSata - ok
19:17:47.0559 1448 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:17:47.0561 1448 ulsata2 - ok
19:17:47.0599 1448 umbus (3fb78f1d1dd86d87bececd9dffa24dd9) C:\Windows\system32\DRIVERS\umbus.sys
19:17:47.0599 1448 umbus - ok
19:17:47.0628 1448 upnphost (8eb871a3deb6b3d5a85eb6ddfc390b59) C:\Windows\System32\upnphost.dll
19:17:47.0633 1448 upnphost - ok
19:17:47.0697 1448 usbccgp (03b01e8dbd2da2b49157b7e51912aaf2) C:\Windows\system32\DRIVERS\usbccgp.sys
19:17:47.0698 1448 usbccgp - ok
19:17:47.0729 1448 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:17:47.0730 1448 usbcir - ok
19:17:47.0761 1448 usbehci (2f83363f98484f8edaf49f9b41520d14) C:\Windows\system32\DRIVERS\usbehci.sys
19:17:47.0762 1448 usbehci - ok
19:17:47.0802 1448 usbhub (14d2a4dcd92c0b3368667aed6893463d) C:\Windows\system32\DRIVERS\usbhub.sys
19:17:47.0804 1448 usbhub - ok
19:17:47.0828 1448 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\DRIVERS\usbohci.sys
19:17:47.0829 1448 usbohci - ok
19:17:47.0849 1448 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\DRIVERS\usbprint.sys
19:17:47.0850 1448 usbprint - ok
19:17:47.0898 1448 usbscan (b1f95285c08ddfe00c0b955462637ec7) C:\Windows\system32\DRIVERS\usbscan.sys
19:17:47.0899 1448 usbscan - ok
19:17:47.0939 1448 USBSTOR (7887ce56934e7f104e98c975f47353c5) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:17:47.0940 1448 USBSTOR - ok
19:17:47.0970 1448 usbuhci (7747b902f6b7d0096f9c2bf55d3247f1) C:\Windows\system32\DRIVERS\usbuhci.sys
19:17:47.0970 1448 usbuhci - ok
19:17:48.0023 1448 usbvideo (0a6b81f01bc86399482e27e6fda7b33b) C:\Windows\system32\Drivers\usbvideo.sys
19:17:48.0024 1448 usbvideo - ok
19:17:48.0066 1448 UxSms (f79d0d7c9004474cb42746d9b2c30a2b) C:\Windows\System32\uxsms.dll
19:17:48.0071 1448 UxSms - ok
19:17:48.0117 1448 vds (c9d0bafee0d0a2681f048ca61bc0da96) C:\Windows\System32\vds.exe
19:17:48.0122 1448 vds - ok
19:17:48.0149 1448 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
19:17:48.0150 1448 vga - ok
19:17:48.0178 1448 VgaSave (17a8f877314e4067f8c8172cc6d9101c) C:\Windows\System32\drivers\vga.sys
19:17:48.0179 1448 VgaSave - ok
19:17:48.0238 1448 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
19:17:48.0239 1448 viaagp - ok
19:17:48.0267 1448 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
19:17:48.0268 1448 ViaC7 - ok
19:17:48.0300 1448 viaide (689547ce911998d1e0da7a5992e025fc) C:\Windows\system32\drivers\viaide.sys
19:17:48.0300 1448 viaide - ok
19:17:48.0327 1448 volmgr (fd16fac15f9f165ac19a618e7b391f5c) C:\Windows\system32\drivers\volmgr.sys
19:17:48.0328 1448 volmgr - ok
19:17:48.0382 1448 volmgrx (294da8d3f965f6a8db934a83c7b461ff) C:\Windows\system32\drivers\volmgrx.sys
19:17:48.0385 1448 volmgrx - ok
19:17:48.0425 1448 volsnap (11ef6c1caef76b685233450a126125d6) C:\Windows\system32\drivers\volsnap.sys
19:17:48.0427 1448 volsnap - ok
19:17:48.0458 1448 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
19:17:48.0459 1448 vsmraid - ok
19:17:48.0534 1448 VSS (e0e29d9ef2524abd11749c7c2fd7f607) C:\Windows\system32\vssvc.exe
19:17:48.0543 1448 VSS - ok
19:17:48.0588 1448 W32Time (62b0d0f6f5580d9d0dfa5e0b466ff2ed) C:\Windows\system32\w32time.dll
19:17:48.0595 1448 W32Time - ok
19:17:48.0636 1448 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:17:48.0637 1448 WacomPen - ok
19:17:48.0666 1448 Wanarp (6798c1209a53b5a0ded8d437c45145ff) C:\Windows\system32\DRIVERS\wanarp.sys
19:17:48.0667 1448 Wanarp - ok
19:17:48.0680 1448 Wanarpv6 (6798c1209a53b5a0ded8d437c45145ff) C:\Windows\system32\DRIVERS\wanarp.sys
19:17:48.0681 1448 Wanarpv6 - ok
19:17:48.0722 1448 wcncsvc (c1b19162e0509ceab4cdf664e139d956) C:\Windows\System32\wcncsvc.dll
19:17:48.0730 1448 wcncsvc - ok
19:17:48.0768 1448 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
19:17:48.0771 1448 WcsPlugInService - ok
19:17:48.0792 1448 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
19:17:48.0793 1448 Wd - ok
19:17:48.0842 1448 Wdf01000 (7b5f66e4a2219c7d9daf9e738480e534) C:\Windows\system32\drivers\Wdf01000.sys
19:17:48.0846 1448 Wdf01000 - ok
19:17:48.0872 1448 WdiServiceHost (2a424b89b14ef17a3d06bcb5a8f79601) C:\Windows\system32\wdi.dll
19:17:48.0877 1448 WdiServiceHost - ok
19:17:48.0887 1448 WdiSystemHost (2a424b89b14ef17a3d06bcb5a8f79601) C:\Windows\system32\wdi.dll
19:17:48.0893 1448 WdiSystemHost - ok
19:17:48.0928 1448 WebClient (01e41c264eedcb827820a1909162579f) C:\Windows\System32\webclnt.dll
19:17:48.0932 1448 WebClient - ok
19:17:48.0969 1448 Wecsvc (9cf67ff7f8d34cbf115d0c278b9f74aa) C:\Windows\system32\wecsvc.dll
19:17:48.0973 1448 Wecsvc - ok
19:17:48.0995 1448 wercplsupport (b68cab45db1dab59d92acadfad6364a8) C:\Windows\System32\wercplsupport.dll
19:17:48.0999 1448 wercplsupport - ok
19:17:49.0026 1448 WerSvc (36ba0707680ef4236fd752bee982cc25) C:\Windows\System32\WerSvc.dll
19:17:49.0030 1448 WerSvc - ok
19:17:49.0098 1448 winachsf (5a77ac34a0ffb70ce8b35b524fede9ba) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:17:49.0103 1448 winachsf - ok
19:17:49.0192 1448 WinDefend (0d5ad0e71ff5ddac5dd2f443b499abd0) C:\Program Files\Windows Defender\mpsvc.dll
19:17:49.0194 1448 WinDefend - ok
19:17:49.0212 1448 WinHttpAutoProxySvc - ok
19:17:49.0271 1448 Winmgmt (38a7b89de4e3417c122317949667fdd8) C:\Windows\system32\wbem\WMIsvc.dll
19:17:49.0272 1448 Winmgmt - ok
19:17:49.0340 1448 WinRM (3f6823040030c3e4da1cf11cd40b7534) C:\Windows\system32\WsmSvc.dll
19:17:49.0346 1448 WinRM - ok
19:17:49.0386 1448 WisINT15 - ok
19:17:49.0443 1448 Wlansvc (7640acea41348bfef34b76e245501261) C:\Windows\System32\wlansvc.dll
19:17:49.0450 1448 Wlansvc - ok
19:17:49.0496 1448 WmiAcpi (17eac0d023a65fa9b02114cc2baacad5) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:17:49.0497 1448 WmiAcpi - ok
19:17:49.0548 1448 wmiApSrv (a279323bee5fffafda222910bce92132) C:\Windows\system32\wbem\WmiApSrv.exe
19:17:49.0550 1448 wmiApSrv - ok
19:17:49.0652 1448 WMIService (f778ee748d7d88feaf528ef89c589bae) C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
19:17:49.0654 1448 WMIService - ok
19:17:49.0796 1448 WMPNetworkSvc (acb2e63d50157e3ea7140f29d9e76a48) C:\Program Files\Windows Media Player\wmpnetwk.exe
19:17:49.0803 1448 WMPNetworkSvc - ok
19:17:49.0850 1448 WPCSvc (3d3b3b80c12abe506f56930c46422c28) C:\Windows\System32\wpcsvc.dll
19:17:49.0854 1448 WPCSvc - ok
19:17:49.0886 1448 WPDBusEnum (c24844a1d0d9528b19d5bc266b8cd572) C:\Windows\system32\wpdbusenum.dll
19:17:49.0891 1448 WPDBusEnum - ok
19:17:49.0963 1448 ws2ifsl (84620aecdcfd2a7a14e6263927d8c0ed) C:\Windows\system32\drivers\ws2ifsl.sys
19:17:49.0963 1448 ws2ifsl - ok
19:17:49.0995 1448 wscsvc (f97cbb919af6d0a6643d1a59c15014d1) C:\Windows\System32\wscsvc.dll
19:17:49.0998 1448 wscsvc - ok
19:17:50.0012 1448 WSearch - ok
19:17:50.0162 1448 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
19:17:50.0198 1448 wuauserv - ok
19:17:50.0330 1448 WUDFRd (a2aafcc8a204736296d937c7c545b53f) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:17:50.0331 1448 WUDFRd - ok
19:17:50.0368 1448 wudfsvc (db5bf5aab72b1b99b5331231d09ebb26) C:\Windows\System32\WUDFSvc.dll
19:17:50.0371 1448 wudfsvc - ok
19:17:50.0404 1448 XAudio (88af537264f2b818da15479ceeaf5d7c) C:\Windows\system32\DRIVERS\xaudio.sys
19:17:50.0405 1448 XAudio - ok
19:17:50.0455 1448 XAudioService (15a317674a08df26be65164d959e9203) C:\Windows\system32\DRIVERS\xaudio.exe
19:17:50.0458 1448 XAudioService - ok
19:17:50.0510 1448 MBR (0x1B8) (6fc6f9186c07bca94e140f63bfe6e9b4) \Device\Harddisk0\DR0
19:17:53.0326 1448 \Device\Harddisk0\DR0 - ok
19:17:53.0358 1448 Boot (0x1200) (6e55aa616bfb7049c5d283e8fb32e8bd) \Device\Harddisk0\DR0\Partition0
19:17:53.0360 1448 \Device\Harddisk0\DR0\Partition0 - ok
19:17:53.0387 1448 Boot (0x1200) (3bec2a04cbd752fb4cbbb8595a795e46) \Device\Harddisk0\DR0\Partition1
19:17:53.0388 1448 \Device\Harddisk0\DR0\Partition1 - ok
19:17:53.0392 1448 ============================================================
19:17:53.0392 1448 Scan finished
19:17:53.0392 1448 ============================================================
19:17:53.0414 5952 Detected object count: 1
19:17:53.0414 5952 Actual detected object count: 1
19:18:05.0124 5952 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
19:18:05.0124 5952 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot
19:18:05.0183 5952 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot
19:18:05.0222 5952 C:\Windows\system32\Drivers\sptd.sys - will be deleted on reboot
19:18:05.0222 5952 sptd ( LockedFile.Multi.Generic ) - User select action: Delete
19:18:21.0345 5840 Deinitialize success

Re: malware - kontrola logu

Napsal: 20 kvě 2012 19:13
od Rudy
Zdravím!
Log je OK. 1 položka smazána.

Re: malware - kontrola logu

Napsal: 20 kvě 2012 19:23
od spike.jp
Stačilo to? Právě jsem si vyjel log z RSIT a přišel mi nějak obsáhlější. :D Jaký je v nich stručně rozdíl?

Re: malware - kontrola logu

Napsal: 20 kvě 2012 19:38
od Rudy
TDSSKiller je speciální utilita k odstranění TDL rootkitu. RSIT je zaákladní orientační sken PC, aby rádce věděl, jaké procesy v PC běží a mohl se rozhodnout, jakou další utilitu použije.

Re: malware - kontrola logu

Napsal: 20 kvě 2012 19:46
od spike.jp
Díky! A naučíte mě jak číst logy a třeba i něco víc? :D

Re: malware - kontrola logu

Napsal: 20 kvě 2012 20:26
od Rudy
Jedině takto: http://forum.viry.cz/viewtopic.php?f=12&t=116819 .

Re: malware - kontrola logu

Napsal: 20 kvě 2012 21:13
od spike.jp
Díky za pomoc s tím logem. Až budu mít dvacet smysluplných příspěvků tak se ozvu. :D

Re: malware - kontrola logu

Napsal: 20 kvě 2012 21:21
od Rudy
Nemáte zač! :)
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz