VIRY.CZ

Takže začnu tím, že popíšu, jak vše začalo a snad srozumitelně.

Začalo to cca o víkendu, kdy jsem při zapínání PC obrovskou dobu čekat něž mi naběhne plocha. Tak hned jsem začal řešit problém, pročistil jsem PC CCleaner, promazal registry a odstranil nepoužíváné aplikace. tím jsem myslel, že mám vyhráno, ale druhý den opět dlouhé načítání plochy. Hned sem vyvodil jednoduchá závěr Vir. Takže prozkoumám PC co tam je a nějak problém vyřeším. Jenže do cca konce prázdnin jsem používal AVG, koupené (byl jsem jím zklamán, protže hlásilo infekce/viry i tam kde nebyly a musel jsem hodně povolovat vyjímky). A nyní použávm Microsoft essential antivirus, který je zadarmo, ale co my bylo poraděno a vyčetl jse, že je poměrně dobrý. Jenže když jsem se rozhodl v něděli počítač prozkoumat, nešel mi Microsoft essential antivirus zapnout a dole na liště jsem ho neměl, proto jse se ho pokusil zapnout přes start>všechny programy> Microsoft essential antivirus. Jenže se mi tam objevuje něco červeného (tipuju nějaký eror ) a ani to nestuhnu přečíst a hned to zmizí a víc s tím nenadělám. Tedy sem si následují den stáhnul Eset nod32, alespoň na 30dní, než něco zakoupím (nejspíš ten eset). Kontroluju pořítač a hlásí mě to že byla nalezena tato infekce, a že nejde vyléčit.
Ještě jsem řešil problém že schvost.exe hlásilo vytížení 100%,ale to jsem nějak (sám envím jak asi aktualizacema)vyřešila zatím není problém.

Proto vás někoho prosím pomožte mi se toho zbavit, je to něco s čím jsem se ještě nesetkal, a jsem an to krátkej.

Log a podbné věci budu raději vkládat, až na požádání.

Zde DDS


DDS (Ver_2012-10-19.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702
Run by Doma at 19:47:01 on 2012-10-31
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3327.2587 [GMT 1:00]
.
AV: AVG Anti-Virus 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: ESET NOD32 Antivirus 5.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Opera\Opera.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie
uURLSearchHooks: QIPBHO Class: {95289393-33EA-4F8D-B952-483415B9C955} - c:\documents and settings\doma\data aplikací\microsoft\internet explorer\qipsearchbar.dll
uURLSearchHooks: <No Name>: - LocalServer32 - <no file>
dURLSearchHooks: {A3BC75A2-1F87-4686-AA43-5347D756017C} - <orphaned>
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: QIPBHO Class: {95289393-33EA-4F8D-B952-483415B9C955} - c:\documents and settings\doma\data aplikací\microsoft\internet explorer\qipsearchbar.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{407E8407-1439-4EB6-8C94-7488FC6B20D6} : DHCPNameServer = 192.168.1.254
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
.
============= SERVICES / DRIVERS ===============
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2012-3-14 120152]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2012-3-14 104160]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2012-3-7 913144]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-9-13 1258856]
R3 PSched;Plánovač paketů technologie QoS;c:\windows\system32\drivers\psched.sys [2006-3-2 69120]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys --> c:\windows\system32\drivers\avgidshx.sys [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-10-31 250808]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys --> c:\windows\system32\drivers\avgidsshimx.sys [?]
.
=============== File Associations ===============
.
FileExt: .scr: AutoCADScriptFile=c:\windows\system32\notepad.exe "%1"
.
=============== Created Last 30 ================
.
2012-10-31 18:10:31 -------- d-----w- c:\program files\trend micro
2012-10-31 17:35:12 -------- d-----w- c:\program files\ESET
2012-10-31 17:19:48 -------- d-sh--w- c:\documents and settings\doma\IETldCache
2012-10-31 17:18:13 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2012-10-31 17:17:53 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-10-31 17:17:34 -------- d-----w- c:\windows\ie8updates
2012-10-31 17:17:29 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-10-31 17:17:29 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-10-31 17:17:29 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-10-31 17:17:29 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-10-31 17:17:29 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-10-31 17:17:29 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-10-31 17:17:29 11111424 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-10-31 17:17:07 -------- dc-h--w- c:\windows\ie8
2012-10-31 16:14:34 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-31 16:14:34 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-31 15:26:19 -------- d-----w- C:\ComboFix
2012-10-31 15:24:13 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-10-31 15:23:32 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-10-31 15:22:44 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-10-31 15:22:38 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-10-31 15:22:29 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-10-31 15:20:55 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-10-31 15:20:36 474112 -c----w- c:\windows\system32\dllcache\shlwapi.dll
2012-10-31 15:20:33 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-10-31 15:20:10 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-10-31 15:20:10 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-10-31 15:20:00 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-10-31 15:20:00 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-10-31 15:20:00 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-10-31 15:20:00 111104 -c----w- c:\windows\system32\dllcache\services.exe
2012-10-31 15:19:59 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-10-31 15:19:59 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-10-31 15:19:59 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-10-31 15:19:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-10-31 15:18:26 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-10-31 15:17:23 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-10-31 15:16:47 293376 ------w- c:\windows\system32\browserchoice.exe
2012-10-31 15:16:16 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2012-10-31 15:16:05 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-10-31 15:15:30 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-10-31 15:15:30 2195072 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2012-10-31 15:15:30 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2012-10-31 15:15:30 2029568 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2012-10-31 15:15:29 2071808 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2012-10-31 15:15:24 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-10-31 15:15:23 60416 -c----w- c:\windows\system32\dllcache\packager.exe
2012-10-31 15:15:23 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-10-31 15:15:23 3072 ------w- c:\windows\system32\iacenc.dll
2012-10-31 15:15:16 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-10-31 15:15:13 -------- d-----w- c:\windows\pss
2012-10-31 15:15:12 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-10-31 15:11:58 -------- d-----w- c:\program files\RegCleaner
2012-10-31 14:31:57 -------- d-----w- c:\windows\system32\PreInstall
2012-10-31 13:32:22 -------- d-sha-r- C:\cmdcons
2012-10-31 13:31:11 98816 ----a-w- c:\windows\sed.exe
2012-10-31 13:31:11 256000 ----a-w- c:\windows\PEV.exe
2012-10-31 13:31:11 208896 ----a-w- c:\windows\MBR.exe
2012-10-31 13:14:08 974848 -c----w- c:\windows\system32\dllcache\mfc42u.dll
2012-10-31 13:14:07 978944 -c----w- c:\windows\system32\dllcache\mfc42.dll
2012-10-31 12:55:19 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-10-31 05:48:52 152576 -c----w- c:\windows\system32\dllcache\schannel.dll
2012-10-31 05:48:51 354816 -c----w- c:\windows\system32\dllcache\winhttp.dll
2012-10-31 05:39:07 132096 -c----w- c:\windows\system32\dllcache\wkssvc.dll
2012-10-31 05:38:20 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-10-31 05:25:42 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2012-10-31 05:25:25 86016 -c----w- c:\windows\system32\dllcache\cabview.dll
2012-10-31 05:24:10 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-10-31 05:22:29 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-10-31 05:22:29 214256 ----a-w- c:\windows\system32\muweb.dll
2012-10-31 05:22:29 17648 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-10-30 18:24:29 -------- d-----w- c:\windows\system32\SoftwareDistribution
2012-10-30 18:07:28 -------- d-----w- c:\documents and settings\doma\data aplikací\ElevatedDiagnostics
2012-10-30 17:46:04 80896 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2012-10-30 17:46:04 80896 ----a-w- c:\windows\system32\msxml6r.dll
2012-10-30 17:46:04 1372672 -c----w- c:\windows\system32\dllcache\msxml6.dll
2012-10-30 17:44:30 701440 ------w- c:\windows\system32\drivers\ati2mtag.sys
2012-10-30 17:43:47 19569 ----a-w- c:\windows\002830_.tmp
2012-10-30 17:42:11 -------- d-----w- c:\windows\EHome
2012-10-29 15:43:47 -------- d-----w- c:\documents and settings\doma\local settings\data aplikací\Autodesk, Inc
2012-10-28 11:42:49 102400 --sha-r- c:\windows\system32\winshfhcv.dll
2012-10-25 05:30:51 -------- d-----w- c:\documents and settings\all users\Data aplikac
2012-10-25 05:30:29 -------- d-----w- c:\program files\Pando Networks
2012-10-15 13:55:48 253952 ----a-w- c:\windows\system32\nvrsth.dll
2012-10-09 16:25:35 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-10-07 08:55:30 -------- d-----w- c:\documents and settings\doma\NabÝdka Start
2012-10-07 08:55:03 -------- d-----w- c:\documents and settings\all users\data aplikací\Ask
2012-10-05 15:26:10 -------- d-----w- c:\program files\EA GAMES
2012-10-05 15:26:09 442368 ----a-r- c:\windows\system32\vp6vfw.dll
2012-10-03 14:03:03 -------- d-----w- c:\documents and settings\doma\data aplikací\TeamViewer
.
==================== Find3M ====================
.
2012-10-30 15:37:20 139832 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-10-30 15:37:06 281768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-10-30 15:37:06 281768 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-10-30 15:01:34 281768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-10-15 13:55:07 1101436 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-10-15 13:55:07 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-10-15 13:55:04 1101436 ----a-w- c:\windows\system32\nvdrsdb1.bin
2012-09-23 14:28:00 888168 ----a-w- c:\windows\system32\nvdispgenco32.dll
2012-09-23 14:28:00 7446528 ----a-w- c:\windows\system32\nvcuda.dll
2012-09-23 14:28:00 5947392 ----a-w- c:\windows\system32\nvopencl.dll
2012-09-23 14:28:00 4494208 ----a-w- c:\windows\system32\nv4_disp.dll
2012-09-23 14:28:00 2578792 ----a-w- c:\windows\system32\nvcuvid.dll
2012-09-23 14:28:00 2376704 ----a-w- c:\windows\system32\nvapi.dll
2012-09-23 14:28:00 19103744 ----a-w- c:\windows\system32\nvoglnt.dll
2012-09-23 14:28:00 1866088 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-09-23 14:28:00 17551360 ----a-w- c:\windows\system32\nvcompiler.dll
2012-09-23 14:28:00 12557728 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-09-23 14:28:00 1009512 ----a-w- c:\windows\system32\nvdispco32.dll
2012-09-23 13:04:24 54272 ----a-w- c:\windows\system32\nvwddi.dll
2012-09-23 13:04:12 15512424 ----a-w- c:\windows\system32\nvcpl.dll
2012-09-23 13:04:11 164200 ----a-w- c:\windows\system32\nvsvc32.exe
2012-09-23 13:04:11 143720 ----a-w- c:\windows\system32\nvcolor.exe
2012-09-23 13:04:11 108392 ----a-w- c:\windows\system32\nvmctray.dll
2012-09-04 04:48:29 796672 ----a-w- c:\windows\GPInstall.exe
2012-08-31 08:35:22 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-08-31 07:24:05 22328 ----a-w- c:\documents and settings\doma\data aplikací\PnkBstrK.sys
2012-08-30 19:10:00 65536 ----a-w- c:\windows\system32\OpenCL.dll
2012-08-28 15:18:59 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18:53 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18:52 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07:32 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53:44 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27:29 2195072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-23 06:27:29 2071808 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
============= FINISH: 19:49:16,07 ===============

Jo heleď v pohodě. Já bych stejně musel pomalu jít také.

Znova jsem projel celý PC Esetem, a už nic to nenašlo, vetšinou mě to vyhodí problém cc 2-3min, po zapnutí systému. Tak to udělám znova a dám vědět co a jak.

Omlouvám se jestli jsem udělal nějakou prasečinu tím mím experimentování s ComboFix. Dělal jsem to co jsem někde vždy vyčetl. Jsem takovej co dělá vše pokus omyl a tímse učím.

Tady je ten log z Combofix

ComboFix 12-10-31.03 - Doma 31.10.2012 20:01:30.3.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.3327.2561 [GMT 1:00]
Spuštěný z: c:\documents and settings\Doma\Plocha\ComboFix.exe
AV: AVG Anti-Virus 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: ESET NOD32 Antivirus 5.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-28 do 2012-10-31 )))))))))))))))))))))))))))))))
.
.
2012-10-31 18:10 . 2012-10-31 18:34 -------- d-----w- c:\program files\trend micro
2012-10-31 18:10 . 2012-10-31 18:36 -------- d-----w- C:\rsit
2012-10-31 17:35 . 2012-10-31 17:35 -------- d-----w- c:\windows\LastGood
2012-10-31 17:35 . 2012-10-31 17:35 -------- d-----w- c:\program files\ESET
2012-10-31 17:19 . 2012-10-31 17:19 -------- d-sh--w- c:\documents and settings\Doma\IETldCache
2012-10-31 17:18 . 2012-08-28 15:18 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2012-10-31 17:17 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-10-31 17:17 . 2012-08-28 19:48 11111424 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-10-31 17:17 . 2012-08-28 15:18 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-10-31 17:17 . 2012-08-28 15:18 630272 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-10-31 17:17 . 2012-08-28 15:18 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-10-31 17:17 . 2012-08-28 15:18 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-10-31 17:17 . 2012-08-28 15:18 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-10-31 17:17 . 2012-08-28 15:18 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-10-31 17:17 . 2012-10-31 17:17 -------- dc-h--w- c:\windows\ie8
2012-10-31 16:14 . 2012-10-31 16:14 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-31 16:14 . 2012-10-31 16:14 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-31 15:24 . 2008-06-14 17:35 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-10-31 15:23 . 2010-09-18 06:53 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-10-31 15:22 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-10-31 15:22 . 2010-08-23 16:12 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-10-31 15:22 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-10-31 15:20 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-10-31 15:20 . 2009-12-08 09:25 474112 -c----w- c:\windows\system32\dllcache\shlwapi.dll
2012-10-31 15:20 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-10-31 15:20 . 2010-08-27 08:03 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-10-31 15:20 . 2009-10-15 16:32 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-10-31 15:20 . 2009-03-06 14:23 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-10-31 15:20 . 2009-02-09 11:25 111104 -c----w- c:\windows\system32\dllcache\services.exe
2012-10-31 15:20 . 2009-02-09 10:56 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-10-31 15:20 . 2009-02-06 10:10 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-10-31 15:19 . 2009-02-09 10:56 684032 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-10-31 15:19 . 2009-02-09 10:56 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-10-31 15:19 . 2009-02-09 10:56 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-10-31 15:19 . 2009-06-21 21:48 153088 -c----w- c:\windows\system32\dllcache\triedit.dll
2012-10-31 15:18 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-10-31 15:17 . 2008-05-01 14:37 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-10-31 15:16 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe
2012-10-31 15:16 . 2012-05-28 18:16 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2012-10-31 15:16 . 2010-06-18 13:36 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-10-31 15:15 . 2012-08-23 06:27 2195072 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2012-10-31 15:15 . 2012-08-23 06:27 2150912 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2012-10-31 15:15 . 2012-08-23 06:27 2029568 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2012-10-31 15:15 . 2010-12-09 15:15 713216 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-10-31 15:15 . 2012-08-23 06:27 2071808 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2012-10-31 15:15 . 2011-07-08 14:02 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-10-31 15:15 . 2012-01-11 19:07 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-10-31 15:15 . 2012-01-11 19:07 3072 ------w- c:\windows\system32\iacenc.dll
2012-10-31 15:15 . 2011-11-20 06:12 60416 -c----w- c:\windows\system32\dllcache\packager.exe
2012-10-31 15:15 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-10-31 15:15 . 2010-08-16 08:45 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-10-31 15:11 . 2012-10-31 15:14 -------- d-----w- c:\program files\RegCleaner
2012-10-31 13:14 . 2011-02-08 13:33 974848 -c----w- c:\windows\system32\dllcache\mfc42u.dll
2012-10-31 13:14 . 2011-02-08 13:33 978944 -c----w- c:\windows\system32\dllcache\mfc42.dll
2012-10-31 12:55 . 2008-05-08 14:02 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-10-31 05:48 . 2012-06-04 04:32 152576 -c----w- c:\windows\system32\dllcache\schannel.dll
2012-10-31 05:48 . 2011-11-16 14:21 354816 -c----w- c:\windows\system32\dllcache\winhttp.dll
2012-10-31 05:39 . 2009-06-10 06:16 132096 -c----w- c:\windows\system32\dllcache\wkssvc.dll
2012-10-31 05:38 . 2012-07-04 14:05 139784 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-10-31 05:25 . 2009-03-08 03:33 759296 -c--a-w- c:\windows\system32\dllcache\VGX.dll
2012-10-31 05:25 . 2010-01-13 14:02 86016 -c----w- c:\windows\system32\dllcache\cabview.dll
2012-10-31 05:24 . 2010-07-16 11:58 219136 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-10-31 05:22 . 2012-06-02 14:18 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-10-31 05:22 . 2012-06-02 14:18 214256 ----a-w- c:\windows\system32\muweb.dll
2012-10-30 18:07 . 2012-10-30 18:07 -------- d-----w- c:\documents and settings\Doma\Data aplikací\ElevatedDiagnostics
2012-10-30 17:46 . 2012-06-05 15:49 1372672 -c----w- c:\windows\system32\dllcache\msxml6.dll
2012-10-30 17:46 . 2008-04-14 07:00 80896 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2012-10-30 17:46 . 2008-04-14 07:00 80896 ----a-w- c:\windows\system32\msxml6r.dll
2012-10-30 17:44 . 2008-04-14 07:51 4255 ------w- c:\windows\system32\drivers\adv01nt5.dll
2012-10-30 17:43 . 2006-12-28 23:31 19569 ----a-w- c:\windows\002830_.tmp
2012-10-30 17:42 . 2012-10-30 17:42 -------- d-----w- c:\windows\EHome
2012-10-29 15:43 . 2012-10-29 15:43 -------- d-----w- c:\documents and settings\Doma\Local Settings\Data aplikací\Autodesk, Inc
2012-10-28 11:42 . 2012-10-28 11:42 102400 --sha-r- c:\windows\system32\winshfhcv.dll
2012-10-25 05:30 . 2012-10-25 05:30 -------- d-----w- c:\documents and settings\All Users\Data aplikac
2012-10-25 05:30 . 2012-10-31 15:04 -------- d-----w- c:\program files\Pando Networks
2012-10-17 16:03 . 2012-10-23 16:47 -------- d-----w- c:\documents and settings\Doma\Data aplikací\Skype
2012-10-15 13:55 . 2012-09-23 13:09 253952 ----a-w- c:\windows\system32\nvrsth.dll
2012-10-09 16:25 . 2012-05-31 11:25 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-10-07 08:55 . 2012-10-07 08:55 -------- d-----w- c:\documents and settings\Doma\NabÝdka Start
2012-10-05 15:26 . 2012-10-05 16:37 -------- d-----w- c:\program files\EA GAMES
2012-10-05 15:26 . 2005-02-26 05:34 442368 ----a-r- c:\windows\system32\vp6vfw.dll
2012-10-03 14:03 . 2012-10-25 08:25 -------- d-----w- c:\documents and settings\Doma\Data aplikací\TeamViewer
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-30 15:37 . 2012-08-31 07:24 139832 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2012-10-30 15:37 . 2012-08-31 08:42 281768 ----a-w- c:\windows\system32\PnkBstrB.xtr
2012-10-30 15:37 . 2012-08-31 07:23 281768 ----a-w- c:\windows\system32\PnkBstrB.exe
2012-10-30 15:01 . 2012-08-31 07:23 281768 ----a-w- c:\windows\system32\PnkBstrB.ex0
2012-09-23 14:28 . 2012-09-13 18:13 888168 ----a-w- c:\windows\system32\nvdispgenco32.dll
2012-09-23 14:28 . 2012-09-13 18:13 5947392 ----a-w- c:\windows\system32\nvopencl.dll
2012-09-23 14:28 . 2012-09-13 18:13 7446528 ----a-w- c:\windows\system32\nvcuda.dll
2012-09-23 14:28 . 2012-09-13 18:13 2578792 ----a-w- c:\windows\system32\nvcuvid.dll
2012-09-23 14:28 . 2012-09-13 18:13 1866088 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-09-23 14:28 . 2012-09-13 18:13 1009512 ----a-w- c:\windows\system32\nvdispco32.dll
2012-09-23 14:28 . 2012-09-13 18:13 17551360 ----a-w- c:\windows\system32\nvcompiler.dll
2012-09-23 14:28 . 2012-08-31 06:23 19103744 ----a-w- c:\windows\system32\nvoglnt.dll
2012-09-23 14:28 . 2012-08-31 06:23 2376704 ----a-w- c:\windows\system32\nvapi.dll
2012-09-23 14:28 . 2012-08-31 06:23 12557728 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-09-23 14:28 . 2012-08-31 06:23 4494208 ----a-w- c:\windows\system32\nv4_disp.dll
2012-09-23 13:09 . 2012-08-31 06:23 335872 ----a-w- c:\windows\system32\nvrsar.dll
2012-09-23 13:09 . 2012-08-31 06:23 282624 ----a-w- c:\windows\system32\nvrses.dll
2012-09-23 13:09 . 2012-08-31 06:23 274432 ----a-w- c:\windows\system32\nvrspt.dll
2012-09-23 13:09 . 2012-08-31 06:23 274432 ----a-w- c:\windows\system32\nvrsja.dll
2012-09-23 13:09 . 2012-08-31 06:23 270336 ----a-w- c:\windows\system32\nvrsptb.dll
2012-09-23 13:09 . 2012-08-31 06:23 286720 ----a-w- c:\windows\system32\nvrsfr.dll
2012-09-23 13:09 . 2012-08-31 06:23 258048 ----a-w- c:\windows\system32\nvrssl.dll
2012-09-23 13:09 . 2012-08-31 06:23 258048 ----a-w- c:\windows\system32\nvrssk.dll
2012-09-23 13:09 . 2012-08-31 06:23 253952 ----a-w- c:\windows\system32\nvrssv.dll
2012-09-23 13:09 . 2012-08-31 06:23 229376 ----a-w- c:\windows\system32\nvrszhc.dll
2012-09-23 13:09 . 2012-08-31 06:23 335872 ----a-w- c:\windows\system32\nvrshe.dll
2012-09-23 13:09 . 2012-08-31 06:23 258048 ----a-w- c:\windows\system32\nvrstr.dll
2012-09-23 13:09 . 2012-08-31 06:23 258048 ----a-w- c:\windows\system32\nvrspl.dll
2012-09-23 13:09 . 2012-08-31 06:23 253952 ----a-w- c:\windows\system32\nvrsno.dll
2012-09-23 13:09 . 2012-08-31 06:23 282624 ----a-w- c:\windows\system32\nvrsit.dll
2012-09-23 13:09 . 2012-08-31 06:23 282624 ----a-w- c:\windows\system32\nvrsel.dll
2012-09-23 13:09 . 2012-08-31 06:23 249856 ----a-w- c:\windows\system32\nvrseng.dll
2012-09-23 13:09 . 2012-08-31 06:23 274432 ----a-w- c:\windows\system32\nvrsesm.dll
2012-09-23 13:09 . 2012-08-31 06:23 266240 ----a-w- c:\windows\system32\nvrsko.dll
2012-09-23 13:09 . 2012-08-31 06:23 249856 ----a-w- c:\windows\system32\nvrscs.dll
2012-09-23 13:09 . 2012-08-31 06:23 270336 ----a-w- c:\windows\system32\nvrsru.dll
2012-09-23 13:09 . 2012-08-31 06:23 249856 ----a-w- c:\windows\system32\nvrsfi.dll
2012-09-23 13:09 . 2012-08-31 06:23 278528 ----a-w- c:\windows\system32\nvrsde.dll
2012-09-23 13:09 . 2012-08-31 06:23 274432 ----a-w- c:\windows\system32\nvrsnl.dll
2012-09-23 13:09 . 2012-08-31 06:23 262144 ----a-w- c:\windows\system32\nvrshu.dll
2012-09-23 13:09 . 2012-08-31 06:23 253952 ----a-w- c:\windows\system32\nvrsda.dll
2012-09-23 13:09 . 2012-08-31 06:23 126976 ----a-w- c:\windows\system32\nvrszht.dll
2012-09-23 13:04 . 2012-08-31 06:23 54272 ----a-w- c:\windows\system32\nvwddi.dll
2012-09-23 13:04 . 2012-08-31 06:23 15512424 ----a-w- c:\windows\system32\nvcpl.dll
2012-09-23 13:04 . 2012-08-31 06:23 164200 ----a-w- c:\windows\system32\nvsvc32.exe
2012-09-23 13:04 . 2012-08-31 06:23 108392 ----a-w- c:\windows\system32\nvmctray.dll
2012-09-23 13:04 . 2012-08-31 06:23 143720 ----a-w- c:\windows\system32\nvcolor.exe
2012-09-04 04:48 . 2012-09-04 04:48 796672 ----a-w- c:\windows\GPInstall.exe
2012-08-31 08:35 . 2012-08-31 07:23 76888 ----a-w- c:\windows\system32\PnkBstrA.exe
2012-08-31 07:24 . 2012-08-31 07:24 22328 ----a-w- c:\documents and settings\Doma\Data aplikací\PnkBstrK.sys
2012-08-30 19:10 . 2012-09-13 18:13 65536 ----a-w- c:\windows\system32\OpenCL.dll
2012-08-28 15:18 . 2006-03-02 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2006-03-02 12:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2006-03-02 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2006-03-02 12:00 2195072 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-23 06:27 . 2004-08-17 15:45 2071808 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2012-09-23 15512424]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2012-03-07 3117344]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
[HKLM\~\startupfolder\C:^Documents and Settings^Doma^Nabídka Start^Programy^Po spuštění^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
path=c:\documents and settings\Doma\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-27 20:51 919008 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Autodesk Sync]
2012-02-05 21:01 383424 ----a-w- c:\program files\Autodesk\Autodesk Sync\AdSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-14 07:52 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2012-09-23 13:04 15512424 ----a-w- c:\windows\system32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2012-09-23 13:04 108392 ----a-w- c:\windows\system32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
2012-09-23 14:28 1634112 ----a-w- c:\program files\NVIDIA Corporation\nview\nwiz.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2006-06-28 06:54 16248320 ------r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyTel]
2006-05-16 10:04 2879488 ------r- c:\windows\SkyTel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Opera\\opera.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\4GF.CZ\\4GF Game Client\\client.exe"=
"c:\\4GF.CZ\\4GF Game Client\\core.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\Counter-Strike Global Offensive\\bin\\SDKLauncher.exe"=
"c:\\Program Files\\NVIDIA Corporation\\NVIDIA Update Core\\daemonu.exe"=
"c:\\Program Files\\Steam\\steamapps\\common\\Counter-Strike Global Offensive\\csgo.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\QIP 2012\\qip.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"50088:TCP"= 50088:TCP:4GF Client
"58151:TCP"= 58151:TCP:Pando Media Booster
"58151:UDP"= 58151:UDP:Pando Media Booster
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [14.3.2012 8:40 120152]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [14.3.2012 8:40 104160]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [7.3.2012 15:40 913144]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [13.9.2012 19:14 1258856]
S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys --> c:\windows\system32\DRIVERS\avgidshx.sys [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [31.10.2012 17:14 250808]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
S4 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys --> c:\windows\system32\DRIVERS\avgidsshimx.sys [?]
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - EKRN
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-31 16:14]
.
2012-10-31 c:\windows\Tasks\Ovhh.job
- c:\windows\system32\winshfhcv.dll [2012-10-28 11:42]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearchAssistant = hxxp://search.qip.ru/ie
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254
.
.
------- Asociace souborů -------
.
.scr=AutoCADScriptFile
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-31 20:07
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
Celkový čas: 2012-10-31 20:08:19
ComboFix-quarantined-files.txt 2012-10-31 19:08
.
Před spuštěním: Volných bajtů: 404 801 482 752
Po spuštění: Volných bajtů: 405 010 178 048
.
- - End Of File - - 5C93851FD6F81EB427D2D1B7D885651F

Tady to je o čem jsem mluvil, a proto tvrdím že tam nějaká infekce je. Jinak bych to asi neřešil. Požná ještě dodám,že do této doby mi běží svchost.exe(ve správci úloh) na 100%, potom naběhna tenhle rámeček a nabídne mi to aktualizaci. A to vždy po restatru Win xp.
Dnes už se na to vyprdnu, nebo udělám z komára velblouda a budu vymejšlet blbosti.



Uploaded with ImageShack.us

Heleď prosimtě zasekl jsem se u prvního bodu, stáhnul jsem ten MbrScan nastavil jsem v options co jsi řekl, ale jakmile dám report, počítač jaksi zamrzne, nereaguje vůbec na nic zkoušel jsem ctl+alt+del, myš nic, prostě se sekne a je konec. Měl jsem u toho puětěnou hudbu a ta běžela dál. Čekal jsem cca 5 min a nic. Je to obvyklý jev a mám počkat trochu déle?

Na VT jsem měl otestovat: winshfhcv.dll ?? a ještě ty soubory co si vytvoří MbrScan?

https://www.virustotal.com/file/c1cc79a ... 351786577/

Omlouvám se nevím, jak se zde přikláda soubor jako příloha, tak se snad nebudeš zlobit, když sem to upnul na google disk

https://docs.google.com/open?id=0B8o0NA ... lFuVDluUzg

Co se týká toho svchost.exe, nemám tam na výběr možnost zobrazit moduly. (viz. screen) Ale ten svchost.exe mi to vytěžuje, většinou při startu, pak mi to nabídne aktualizaci, ale už jsem jich udělal možná 200, ale při každém rstartu win mi to nabízí znovu, potom už svchost.exe cpu nezatěžuje.

Editace: snad ti aspoň to málo cojsem udělal pomůže

mám, sice bych musel stáhnout ashampoo, nebo nero, ale můžu

žádná tabulka mě po dokončení skenování nenaskočila
Screen je zde:


Log z TDDSK:

18:22:57.0250 3808 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:22:57.0718 3808 ============================================================
18:22:57.0718 3808 Current date / time: 2012/11/01 18:22:57.0718
18:22:57.0718 3808 SystemInfo:
18:22:57.0718 3808
18:22:57.0718 3808 OS Version: 5.1.2600 ServicePack: 3.0
18:22:57.0718 3808 Product type: Workstation
18:22:57.0718 3808 ComputerName: PC
18:22:57.0734 3808 UserName: Doma
18:22:57.0734 3808 Windows directory: C:\WINDOWS
18:22:57.0734 3808 System windows directory: C:\WINDOWS
18:22:57.0734 3808 Processor architecture: Intel x86
18:22:57.0734 3808 Number of processors: 1
18:22:57.0734 3808 Page size: 0x1000
18:22:57.0750 3808 Boot type: Normal boot
18:22:57.0750 3808 ============================================================
18:22:58.0875 3808 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:22:58.0875 3808 Drive \Device\Harddisk1\DR2 - Size: 0xF2300000 (3.78 Gb), SectorSize: 0x200, Cylinders: 0x1ED, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:22:58.0890 3808 ============================================================
18:22:58.0890 3808 \Device\Harddisk0\DR0:
18:22:58.0890 3808 MBR partitions:
18:22:58.0890 3808 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
18:22:58.0890 3808 \Device\Harddisk1\DR2:
18:22:58.0890 3808 MBR partitions:
18:22:58.0890 3808 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x1F80, BlocksNum 0x78F880
18:22:58.0890 3808 ============================================================
18:22:58.0921 3808 C: <-> \Device\Harddisk0\DR0\Partition1
18:22:58.0921 3808 ============================================================
18:22:58.0921 3808 Initialize success
18:22:58.0921 3808 ============================================================
18:23:37.0812 3548 ============================================================
18:23:37.0812 3548 Scan started
18:23:37.0812 3548 Mode: Manual; SigCheck; TDLFS;
18:23:37.0812 3548 ============================================================
18:23:38.0015 3548 ================ Scan system memory ========================
18:23:38.0015 3548 System memory - ok
18:23:38.0015 3548 ================ Scan services =============================
18:23:38.0390 3548 Abiosdsk - ok
18:23:38.0390 3548 abp480n5 - ok
18:23:38.0453 3548 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:23:39.0515 3548 ACPI - ok
18:23:39.0546 3548 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
18:23:39.0750 3548 ACPIEC - ok
18:23:39.0812 3548 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:23:39.0843 3548 AdobeFlashPlayerUpdateSvc - ok
18:23:39.0843 3548 adpu160m - ok
18:23:39.0890 3548 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:23:40.0109 3548 aec - ok
18:23:40.0156 3548 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:23:40.0203 3548 AFD - ok
18:23:40.0218 3548 Aha154x - ok
18:23:40.0218 3548 aic78u2 - ok
18:23:40.0234 3548 aic78xx - ok
18:23:40.0265 3548 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:23:40.0453 3548 Alerter - ok
18:23:40.0468 3548 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
18:23:40.0656 3548 ALG - ok
18:23:40.0671 3548 AliIde - ok
18:23:40.0687 3548 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
18:23:40.0734 3548 AmdK8 - ok
18:23:40.0734 3548 amsint - ok
18:23:40.0750 3548 AppMgmt - ok
18:23:40.0750 3548 asc - ok
18:23:40.0750 3548 asc3350p - ok
18:23:40.0765 3548 asc3550 - ok
18:23:40.0890 3548 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:23:40.0937 3548 aspnet_state - ok
18:23:40.0953 3548 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:23:41.0171 3548 AsyncMac - ok
18:23:41.0203 3548 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:23:41.0375 3548 atapi - ok
18:23:41.0375 3548 Atdisk - ok
18:23:41.0406 3548 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:23:41.0609 3548 Atmarpc - ok
18:23:41.0640 3548 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:23:41.0796 3548 AudioSrv - ok
18:23:41.0828 3548 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:23:42.0000 3548 audstub - ok
18:23:42.0015 3548 AVGIDSHX - ok
18:23:42.0015 3548 AVGIDSShim - ok
18:23:42.0062 3548 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:23:42.0281 3548 Beep - ok
18:23:42.0328 3548 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:23:42.0546 3548 BITS - ok
18:23:42.0578 3548 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
18:23:42.0640 3548 Browser - ok
18:23:42.0718 3548 catchme - ok
18:23:42.0750 3548 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:23:42.0953 3548 cbidf2k - ok
18:23:42.0968 3548 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:23:43.0171 3548 CCDECODE - ok
18:23:43.0171 3548 cd20xrnt - ok
18:23:43.0187 3548 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:23:43.0375 3548 Cdaudio - ok
18:23:43.0421 3548 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:23:43.0625 3548 Cdfs - ok
18:23:43.0656 3548 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:23:43.0843 3548 Cdrom - ok
18:23:43.0859 3548 Changer - ok
18:23:43.0890 3548 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:23:44.0062 3548 CiSvc - ok
18:23:44.0093 3548 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:23:44.0265 3548 ClipSrv - ok
18:23:44.0312 3548 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:23:44.0343 3548 clr_optimization_v2.0.50727_32 - ok
18:23:44.0375 3548 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:23:44.0437 3548 clr_optimization_v4.0.30319_32 - ok
18:23:44.0437 3548 CmdIde - ok
18:23:44.0453 3548 COMSysApp - ok
18:23:44.0468 3548 Cpqarray - ok
18:23:44.0500 3548 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:23:44.0687 3548 CryptSvc - ok
18:23:44.0687 3548 dac2w2k - ok
18:23:44.0703 3548 dac960nt - ok
18:23:44.0734 3548 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:23:44.0828 3548 DcomLaunch - ok
18:23:44.0875 3548 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:23:45.0062 3548 Dhcp - ok
18:23:45.0078 3548 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:23:45.0265 3548 Disk - ok
18:23:45.0281 3548 dmadmin - ok
18:23:45.0343 3548 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:23:45.0625 3548 dmboot - ok
18:23:45.0671 3548 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:23:45.0890 3548 dmio - ok
18:23:45.0921 3548 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:23:46.0140 3548 dmload - ok
18:23:46.0187 3548 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:23:46.0359 3548 dmserver - ok
18:23:46.0390 3548 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:23:46.0593 3548 DMusic - ok
18:23:46.0609 3548 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:23:46.0687 3548 Dnscache - ok
18:23:46.0750 3548 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:23:46.0921 3548 Dot3svc - ok
18:23:46.0921 3548 dpti2o - ok
18:23:46.0953 3548 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:23:47.0171 3548 drmkaud - ok
18:23:47.0187 3548 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
18:23:47.0281 3548 eamon - ok
18:23:47.0312 3548 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:23:47.0546 3548 EapHost - ok
18:23:47.0609 3548 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:23:47.0718 3548 ehdrv - ok
18:23:47.0937 3548 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
18:23:48.0062 3548 ekrn - ok
18:23:48.0078 3548 [ CF1108161DFEDD82AE811307A3763E1C ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
18:23:48.0109 3548 epfwtdir - ok
18:23:48.0125 3548 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:23:48.0343 3548 ERSvc - ok
18:23:48.0375 3548 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
18:23:48.0421 3548 Eventlog - ok
18:23:48.0453 3548 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
18:23:48.0500 3548 EventSystem - ok
18:23:48.0546 3548 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:23:48.0750 3548 Fastfat - ok
18:23:48.0781 3548 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:23:48.0843 3548 FastUserSwitchingCompatibility - ok
18:23:48.0859 3548 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
18:23:49.0015 3548 Fdc - ok
18:23:49.0031 3548 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:23:49.0218 3548 Fips - ok
18:23:49.0296 3548 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:23:49.0359 3548 FLEXnet Licensing Service - ok
18:23:49.0375 3548 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:23:49.0578 3548 Flpydisk - ok
18:23:49.0609 3548 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:23:49.0765 3548 FltMgr - ok
18:23:49.0796 3548 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:23:49.0812 3548 FontCache3.0.0.0 - ok
18:23:49.0843 3548 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:23:50.0031 3548 Fs_Rec - ok
18:23:50.0046 3548 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:23:50.0250 3548 Ftdisk - ok
18:23:50.0265 3548 GMSIPCI - ok
18:23:50.0312 3548 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:23:50.0562 3548 Gpc - ok
18:23:50.0609 3548 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:23:50.0906 3548 HDAudBus - ok
18:23:50.0953 3548 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:23:51.0125 3548 helpsvc - ok
18:23:51.0140 3548 HidServ - ok
18:23:51.0187 3548 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:23:51.0343 3548 hkmsvc - ok
18:23:51.0359 3548 hpn - ok
18:23:51.0421 3548 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:23:51.0484 3548 HTTP - ok
18:23:51.0500 3548 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:23:51.0656 3548 HTTPFilter - ok
18:23:51.0656 3548 i2omgmt - ok
18:23:51.0671 3548 i2omp - ok
18:23:51.0703 3548 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:23:51.0890 3548 i8042prt - ok
18:23:51.0953 3548 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:23:52.0015 3548 idsvc - ok
18:23:52.0031 3548 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:23:52.0203 3548 Imapi - ok
18:23:52.0250 3548 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:23:52.0421 3548 ImapiService - ok
18:23:52.0421 3548 ini910u - ok
18:23:52.0562 3548 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:23:52.0750 3548 IntcAzAudAddService - ok
18:23:52.0750 3548 IntelIde - ok
18:23:52.0781 3548 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:23:53.0000 3548 Ip6Fw - ok
18:23:53.0031 3548 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:23:53.0250 3548 IpFilterDriver - ok
18:23:53.0281 3548 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:23:53.0468 3548 IpInIp - ok
18:23:53.0515 3548 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:23:53.0703 3548 IpNat - ok
18:23:53.0718 3548 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:23:53.0859 3548 IPSec - ok
18:23:53.0906 3548 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
18:23:54.0046 3548 irda - ok
18:23:54.0062 3548 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:23:54.0234 3548 IRENUM - ok
18:23:54.0265 3548 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
18:23:54.0453 3548 Irmon - ok
18:23:54.0484 3548 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
18:23:54.0562 3548 irsir - ok
18:23:54.0593 3548 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:23:54.0765 3548 isapnp - ok
18:23:54.0781 3548 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:23:54.0937 3548 Kbdclass - ok
18:23:54.0984 3548 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:23:55.0140 3548 kmixer - ok
18:23:55.0156 3548 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:23:55.0234 3548 KSecDD - ok
18:23:55.0265 3548 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:23:55.0312 3548 lanmanserver - ok
18:23:55.0328 3548 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:23:55.0375 3548 lanmanworkstation - ok
18:23:55.0375 3548 lbrtfdc - ok
18:23:55.0421 3548 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:23:55.0578 3548 LmHosts - ok
18:23:55.0593 3548 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:23:55.0750 3548 Messenger - ok
18:23:55.0812 3548 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:23:55.0859 3548 Microsoft Office Groove Audit Service - ok
18:23:55.0890 3548 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:23:56.0078 3548 mnmdd - ok
18:23:56.0109 3548 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:23:56.0296 3548 mnmsrvc - ok
18:23:56.0328 3548 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:23:56.0515 3548 Modem - ok
18:23:56.0546 3548 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:23:56.0718 3548 Mouclass - ok
18:23:56.0765 3548 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:23:56.0937 3548 MountMgr - ok
18:23:56.0937 3548 mraid35x - ok
18:23:56.0984 3548 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:23:57.0140 3548 MRxDAV - ok
18:23:57.0171 3548 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:23:57.0218 3548 MRxSmb - ok
18:23:57.0234 3548 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:23:57.0421 3548 MSDTC - ok
18:23:57.0453 3548 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:23:57.0656 3548 Msfs - ok
18:23:57.0656 3548 MSIServer - ok
18:23:57.0671 3548 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:23:57.0875 3548 MSKSSRV - ok
18:23:57.0890 3548 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:23:58.0078 3548 MSPCLOCK - ok
18:23:58.0078 3548 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:23:58.0265 3548 MSPQM - ok
18:23:58.0312 3548 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:23:58.0484 3548 mssmbios - ok
18:23:58.0515 3548 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:23:58.0703 3548 MSTEE - ok
18:23:58.0734 3548 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:23:58.0750 3548 Mup - ok
18:23:58.0781 3548 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:23:58.0984 3548 NABTSFEC - ok
18:23:59.0062 3548 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:23:59.0250 3548 napagent - ok
18:23:59.0296 3548 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:23:59.0484 3548 NDIS - ok
18:23:59.0500 3548 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:23:59.0687 3548 NdisIP - ok
18:23:59.0703 3548 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:23:59.0718 3548 NdisTapi - ok
18:23:59.0734 3548 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:23:59.0906 3548 Ndisuio - ok
18:23:59.0953 3548 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:24:00.0109 3548 NdisWan - ok
18:24:00.0140 3548 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:24:00.0171 3548 NDProxy - ok
18:24:00.0203 3548 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:24:00.0375 3548 NetBIOS - ok
18:24:00.0406 3548 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:24:00.0609 3548 NetBT - ok
18:24:00.0640 3548 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:24:00.0812 3548 NetDDE - ok
18:24:00.0828 3548 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:24:01.0000 3548 NetDDEdsdm - ok
18:24:01.0031 3548 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:24:01.0187 3548 Netlogon - ok
18:24:01.0203 3548 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
18:24:01.0406 3548 Netman - ok
18:24:01.0421 3548 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:24:01.0453 3548 NetTcpPortSharing - ok
18:24:01.0484 3548 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
18:24:01.0515 3548 Nla - ok
18:24:01.0531 3548 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:24:01.0703 3548 Npfs - ok
18:24:01.0703 3548 NTACCESS - ok
18:24:01.0765 3548 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:24:01.0953 3548 Ntfs - ok
18:24:01.0953 3548 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:24:02.0109 3548 NtLmSsp - ok
18:24:02.0156 3548 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:24:02.0359 3548 NtmsSvc - ok
18:24:02.0375 3548 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:24:02.0562 3548 Null - ok
18:24:02.0828 3548 [ 68B8C35782FFD20973524F748234B5A9 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:24:03.0406 3548 nv - ok
18:24:03.0437 3548 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
18:24:03.0484 3548 nvata - ok
18:24:03.0515 3548 [ CC34564BCA235EBAD8B308D871EFA2DF ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
18:24:03.0593 3548 NVENETFD - ok
18:24:03.0609 3548 [ 46FDB8D07DD4FC81093B0ACB243A525D ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
18:24:03.0656 3548 nvnetbus - ok
18:24:03.0687 3548 [ FFD30DAAF62D605069F6EB42D2E807C3 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:24:03.0718 3548 NVSvc - ok
18:24:03.0812 3548 [ 210EE09CB9C2655E55BD48D851369DC1 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:24:03.0875 3548 nvUpdatusService - ok
18:24:03.0906 3548 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:24:04.0140 3548 NwlnkFlt - ok
18:24:04.0171 3548 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:24:04.0421 3548 NwlnkFwd - ok
18:24:04.0531 3548 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:24:04.0578 3548 odserv - ok
18:24:04.0625 3548 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:24:04.0640 3548 ose - ok
18:24:04.0687 3548 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
18:24:04.0890 3548 Parport - ok
18:24:04.0906 3548 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:24:05.0062 3548 PartMgr - ok
18:24:05.0093 3548 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:24:05.0296 3548 ParVdm - ok
18:24:05.0328 3548 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:24:05.0484 3548 PCI - ok
18:24:05.0500 3548 PCIDump - ok
18:24:05.0531 3548 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:24:05.0718 3548 PCIIde - ok
18:24:05.0765 3548 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:24:05.0968 3548 Pcmcia - ok
18:24:05.0968 3548 PDCOMP - ok
18:24:05.0968 3548 PDFRAME - ok
18:24:05.0984 3548 PDRELI - ok
18:24:06.0000 3548 PDRFRAME - ok
18:24:06.0000 3548 perc2 - ok
18:24:06.0000 3548 perc2hib - ok
18:24:06.0046 3548 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:24:06.0062 3548 PlugPlay - ok
18:24:06.0093 3548 [ 205E1B699FD3F2F9B036EEA2EC30C620 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
18:24:06.0125 3548 PnkBstrA - ok
18:24:06.0140 3548 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:24:06.0312 3548 PolicyAgent - ok
18:24:06.0343 3548 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:24:06.0500 3548 PptpMiniport - ok
18:24:06.0531 3548 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
18:24:06.0734 3548 Processor - ok
18:24:06.0734 3548 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:24:06.0906 3548 ProtectedStorage - ok
18:24:06.0921 3548 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:24:07.0125 3548 PSched - ok
18:24:07.0140 3548 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:24:07.0343 3548 Ptilink - ok
18:24:07.0359 3548 ql1080 - ok
18:24:07.0359 3548 Ql10wnt - ok
18:24:07.0375 3548 ql12160 - ok
18:24:07.0390 3548 ql1240 - ok
18:24:07.0390 3548 ql1280 - ok
18:24:07.0406 3548 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:24:07.0609 3548 RasAcd - ok
18:24:07.0656 3548 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:24:07.0812 3548 RasAuto - ok
18:24:07.0843 3548 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:24:07.0937 3548 Rasirda - ok
18:24:07.0968 3548 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:24:08.0125 3548 Rasl2tp - ok
18:24:08.0171 3548 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:24:08.0343 3548 RasMan - ok
18:24:08.0343 3548 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:24:08.0531 3548 RasPppoe - ok
18:24:08.0531 3548 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:24:08.0734 3548 Raspti - ok
18:24:08.0781 3548 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:24:08.0921 3548 Rdbss - ok
18:24:08.0937 3548 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:24:09.0156 3548 RDPCDD - ok
18:24:09.0203 3548 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:24:09.0265 3548 RDPWD - ok
18:24:09.0312 3548 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:24:09.0468 3548 RDSessMgr - ok
18:24:09.0500 3548 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:24:09.0718 3548 redbook - ok
18:24:09.0750 3548 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:24:09.0906 3548 RemoteAccess - ok
18:24:09.0937 3548 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:24:10.0140 3548 RpcLocator - ok
18:24:10.0187 3548 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:24:10.0234 3548 RpcSs - ok
18:24:10.0281 3548 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:24:10.0515 3548 RSVP - ok
18:24:10.0531 3548 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:24:10.0703 3548 SamSs - ok
18:24:10.0718 3548 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:24:10.0875 3548 SCardSvr - ok
18:24:10.0921 3548 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:24:11.0093 3548 Schedule - ok
18:24:11.0109 3548 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:24:11.0312 3548 Secdrv - ok
18:24:11.0328 3548 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:24:11.0484 3548 seclogon - ok
18:24:11.0500 3548 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
18:24:11.0656 3548 SENS - ok
18:24:11.0671 3548 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
18:24:11.0828 3548 serenum - ok
18:24:11.0859 3548 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
18:24:12.0000 3548 Serial - ok
18:24:12.0031 3548 SetupNTGLM7X - ok
18:24:12.0046 3548 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:24:12.0203 3548 Sfloppy - ok
18:24:12.0250 3548 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:24:12.0421 3548 SharedAccess - ok
18:24:12.0437 3548 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:24:12.0484 3548 ShellHWDetection - ok
18:24:12.0484 3548 Simbad - ok
18:24:12.0515 3548 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:24:12.0703 3548 SLIP - ok
18:24:12.0718 3548 Sparrow - ok
18:24:12.0734 3548 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:24:12.0890 3548 splitter - ok
18:24:12.0906 3548 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:24:12.0968 3548 Spooler - ok
18:24:13.0000 3548 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:24:13.0156 3548 sr - ok
18:24:13.0203 3548 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
18:24:13.0359 3548 srservice - ok
18:24:13.0390 3548 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:24:13.0453 3548 Srv - ok
18:24:13.0468 3548 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:24:13.0640 3548 SSDPSRV - ok
18:24:13.0671 3548 Steam Client Service - ok
18:24:13.0734 3548 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:24:13.0937 3548 stisvc - ok
18:24:13.0953 3548 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:24:14.0140 3548 streamip - ok
18:24:14.0156 3548 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:24:14.0312 3548 swenum - ok
18:24:14.0343 3548 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:24:14.0578 3548 swmidi - ok
18:24:14.0578 3548 SwPrv - ok
18:24:14.0593 3548 symc810 - ok
18:24:14.0609 3548 symc8xx - ok
18:24:14.0609 3548 sym_hi - ok
18:24:14.0609 3548 sym_u3 - ok
18:24:14.0640 3548 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:24:14.0812 3548 sysaudio - ok
18:24:14.0843 3548 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:24:15.0000 3548 SysmonLog - ok
18:24:15.0046 3548 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:24:15.0234 3548 TapiSrv - ok
18:24:15.0281 3548 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:24:15.0296 3548 Tcpip - ok
18:24:15.0343 3548 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:24:15.0500 3548 TDPIPE - ok
18:24:15.0531 3548 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:24:15.0687 3548 TDTCP - ok
18:24:15.0718 3548 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:24:15.0890 3548 TermDD - ok
18:24:15.0953 3548 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
18:24:16.0109 3548 TermService - ok
18:24:16.0140 3548 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:24:16.0156 3548 Themes - ok
18:24:16.0171 3548 TosIde - ok
18:24:16.0203 3548 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:24:16.0359 3548 TrkWks - ok
18:24:16.0390 3548 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:24:16.0578 3548 Udfs - ok
18:24:16.0578 3548 ultra - ok
18:24:16.0640 3548 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:24:16.0812 3548 Update - ok
18:24:16.0859 3548 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
18:24:17.0015 3548 upnphost - ok
18:24:17.0031 3548 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
18:24:17.0218 3548 UPS - ok
18:24:17.0234 3548 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:24:17.0406 3548 usbccgp - ok
18:24:17.0421 3548 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:24:17.0609 3548 usbehci - ok
18:24:17.0625 3548 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:24:17.0796 3548 usbhub - ok
18:24:17.0843 3548 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:24:18.0000 3548 usbohci - ok
18:24:18.0015 3548 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:24:18.0187 3548 USBSTOR - ok
18:24:18.0234 3548 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
18:24:18.0390 3548 usbvideo - ok
18:24:18.0421 3548 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:24:18.0578 3548 VgaSave - ok
18:24:18.0578 3548 ViaIde - ok
18:24:18.0609 3548 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:24:18.0781 3548 VolSnap - ok
18:24:18.0828 3548 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:24:19.0000 3548 VSS - ok
18:24:19.0031 3548 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
18:24:19.0187 3548 W32Time - ok
18:24:19.0203 3548 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:24:19.0359 3548 Wanarp - ok
18:24:19.0375 3548 WDICA - ok
18:24:19.0406 3548 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:24:19.0562 3548 wdmaud - ok
18:24:19.0593 3548 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:24:19.0750 3548 WebClient - ok
18:24:19.0859 3548 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:24:20.0000 3548 winmgmt - ok
18:24:20.0062 3548 [ 6199B2AE3F9DB9CB6DB230471A1DC601 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
18:24:20.0218 3548 WmdmPmSN - ok
18:24:20.0281 3548 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:24:20.0421 3548 WmiApSrv - ok
18:24:20.0515 3548 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:24:20.0562 3548 WPFFontCache_v0400 - ok
18:24:20.0593 3548 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:24:20.0843 3548 WS2IFSL - ok
18:24:20.0890 3548 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:24:21.0031 3548 wscsvc - ok
18:24:21.0078 3548 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:24:21.0265 3548 WSTCODEC - ok
18:24:21.0296 3548 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:24:21.0453 3548 wuauserv - ok
18:24:21.0500 3548 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:24:21.0687 3548 WZCSVC - ok
18:24:21.0734 3548 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:24:21.0890 3548 xmlprov - ok
18:24:21.0906 3548 ================ Scan global ===============================
18:24:21.0953 3548 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
18:24:21.0984 3548 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:24:22.0000 3548 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:24:22.0031 3548 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
18:24:22.0031 3548 [Global] - ok
18:24:22.0031 3548 ================ Scan MBR ==================================
18:24:22.0046 3548 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
18:24:22.0203 3548 \Device\Harddisk0\DR0 - ok
18:24:22.0203 3548 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR2
18:24:23.0375 3548 \Device\Harddisk1\DR2 - ok
18:24:23.0375 3548 ================ Scan VBR ==================================
18:24:23.0390 3548 [ CD877983101404708A4B98B7A696F591 ] \Device\Harddisk0\DR0\Partition1
18:24:23.0390 3548 \Device\Harddisk0\DR0\Partition1 - ok
18:24:23.0390 3548 [ D3D94B2B7C9EA181E6AFFD53062A1D37 ] \Device\Harddisk1\DR2\Partition1
18:24:23.0406 3548 \Device\Harddisk1\DR2\Partition1 - ok
18:24:23.0406 3548 ============================================================
18:24:23.0406 3548 Scan finished
18:24:23.0406 3548 ============================================================
18:24:23.0515 1104 Detected object count: 0
18:24:23.0515 1104 Actual detected object count: 0
18:25:13.0218 1920 ============================================================
18:25:13.0218 1920 Scan started
18:25:13.0218 1920 Mode: Manual; SigCheck; TDLFS;
18:25:13.0218 1920 ============================================================
18:25:13.0421 1920 ================ Scan system memory ========================
18:25:13.0421 1920 System memory - ok
18:25:13.0421 1920 ================ Scan services =============================
18:25:13.0765 1920 Abiosdsk - ok
18:25:13.0781 1920 abp480n5 - ok
18:25:13.0843 1920 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:25:14.0015 1920 ACPI - ok
18:25:14.0046 1920 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
18:25:14.0234 1920 ACPIEC - ok
18:25:14.0296 1920 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:25:14.0328 1920 AdobeFlashPlayerUpdateSvc - ok
18:25:14.0328 1920 adpu160m - ok
18:25:14.0375 1920 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:25:14.0515 1920 aec - ok
18:25:14.0546 1920 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:25:14.0578 1920 AFD - ok
18:25:14.0593 1920 Aha154x - ok
18:25:14.0593 1920 aic78u2 - ok
18:25:14.0593 1920 aic78xx - ok
18:25:14.0625 1920 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:25:14.0796 1920 Alerter - ok
18:25:14.0828 1920 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
18:25:14.0968 1920 ALG - ok
18:25:14.0984 1920 AliIde - ok
18:25:15.0015 1920 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
18:25:15.0046 1920 AmdK8 - ok
18:25:15.0046 1920 amsint - ok
18:25:15.0062 1920 AppMgmt - ok
18:25:15.0078 1920 asc - ok
18:25:15.0078 1920 asc3350p - ok
18:25:15.0093 1920 asc3550 - ok
18:25:15.0218 1920 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:25:15.0250 1920 aspnet_state - ok
18:25:15.0265 1920 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:25:15.0437 1920 AsyncMac - ok
18:25:15.0468 1920 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:25:15.0609 1920 atapi - ok
18:25:15.0609 1920 Atdisk - ok
18:25:15.0640 1920 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:25:15.0796 1920 Atmarpc - ok
18:25:15.0843 1920 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:25:15.0984 1920 AudioSrv - ok
18:25:16.0015 1920 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:25:16.0203 1920 audstub - ok
18:25:16.0218 1920 AVGIDSHX - ok
18:25:16.0218 1920 AVGIDSShim - ok
18:25:16.0265 1920 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:25:16.0468 1920 Beep - ok
18:25:16.0515 1920 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:25:16.0703 1920 BITS - ok
18:25:16.0734 1920 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
18:25:16.0765 1920 Browser - ok
18:25:16.0890 1920 catchme - ok
18:25:16.0921 1920 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:25:17.0109 1920 cbidf2k - ok
18:25:17.0125 1920 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:25:17.0281 1920 CCDECODE - ok
18:25:17.0281 1920 cd20xrnt - ok
18:25:17.0296 1920 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:25:17.0468 1920 Cdaudio - ok
18:25:17.0515 1920 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:25:17.0671 1920 Cdfs - ok
18:25:17.0703 1920 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:25:17.0843 1920 Cdrom - ok
18:25:17.0859 1920 Changer - ok
18:25:17.0890 1920 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:25:18.0046 1920 CiSvc - ok
18:25:18.0062 1920 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:25:18.0203 1920 ClipSrv - ok
18:25:18.0250 1920 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:25:18.0281 1920 clr_optimization_v2.0.50727_32 - ok
18:25:18.0312 1920 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:25:18.0328 1920 clr_optimization_v4.0.30319_32 - ok
18:25:18.0343 1920 CmdIde - ok
18:25:18.0343 1920 COMSysApp - ok
18:25:18.0359 1920 Cpqarray - ok
18:25:18.0406 1920 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:25:18.0562 1920 CryptSvc - ok
18:25:18.0562 1920 dac2w2k - ok
18:25:18.0578 1920 dac960nt - ok
18:25:18.0656 1920 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:25:18.0687 1920 DcomLaunch - ok
18:25:18.0750 1920 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:25:18.0906 1920 Dhcp - ok
18:25:18.0937 1920 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:25:19.0109 1920 Disk - ok
18:25:19.0109 1920 dmadmin - ok
18:25:19.0187 1920 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:25:19.0359 1920 dmboot - ok
18:25:19.0406 1920 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:25:19.0562 1920 dmio - ok
18:25:19.0593 1920 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:25:19.0796 1920 dmload - ok
18:25:19.0828 1920 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:25:20.0000 1920 dmserver - ok
18:25:20.0031 1920 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:25:20.0187 1920 DMusic - ok
18:25:20.0218 1920 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:25:20.0250 1920 Dnscache - ok
18:25:20.0312 1920 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:25:20.0453 1920 Dot3svc - ok
18:25:20.0468 1920 dpti2o - ok
18:25:20.0500 1920 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:25:20.0656 1920 drmkaud - ok
18:25:20.0687 1920 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
18:25:20.0718 1920 eamon - ok
18:25:20.0734 1920 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:25:20.0890 1920 EapHost - ok
18:25:20.0906 1920 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:25:20.0937 1920 ehdrv - ok
18:25:21.0062 1920 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
18:25:21.0125 1920 ekrn - ok
18:25:21.0156 1920 [ CF1108161DFEDD82AE811307A3763E1C ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
18:25:21.0171 1920 epfwtdir - ok
18:25:21.0187 1920 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:25:21.0343 1920 ERSvc - ok
18:25:21.0359 1920 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
18:25:21.0390 1920 Eventlog - ok
18:25:21.0421 1920 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
18:25:21.0453 1920 EventSystem - ok
18:25:21.0484 1920 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:25:21.0656 1920 Fastfat - ok
18:25:21.0687 1920 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:25:21.0718 1920 FastUserSwitchingCompatibility - ok
18:25:21.0734 1920 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
18:25:21.0890 1920 Fdc - ok
18:25:21.0921 1920 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:25:22.0078 1920 Fips - ok
18:25:22.0156 1920 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:25:22.0203 1920 FLEXnet Licensing Service - ok
18:25:22.0218 1920 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:25:22.0375 1920 Flpydisk - ok
18:25:22.0421 1920 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:25:22.0578 1920 FltMgr - ok
18:25:22.0625 1920 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:25:22.0640 1920 FontCache3.0.0.0 - ok
18:25:22.0656 1920 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:25:22.0859 1920 Fs_Rec - ok
18:25:22.0875 1920 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:25:23.0062 1920 Ftdisk - ok
18:25:23.0062 1920 GMSIPCI - ok
18:25:23.0093 1920 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:25:23.0250 1920 Gpc - ok
18:25:23.0296 1920 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:25:23.0468 1920 HDAudBus - ok
18:25:23.0531 1920 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:25:23.0687 1920 helpsvc - ok
18:25:23.0687 1920 HidServ - ok
18:25:23.0718 1920 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:25:23.0859 1920 hkmsvc - ok
18:25:23.0875 1920 hpn - ok
18:25:23.0906 1920 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:25:23.0921 1920 HTTP - ok
18:25:23.0953 1920 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:25:24.0093 1920 HTTPFilter - ok
18:25:24.0093 1920 i2omgmt - ok
18:25:24.0109 1920 i2omp - ok
18:25:24.0140 1920 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:25:24.0296 1920 i8042prt - ok
18:25:24.0359 1920 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:25:24.0406 1920 idsvc - ok
18:25:24.0421 1920 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:25:24.0578 1920 Imapi - ok
18:25:24.0609 1920 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:25:24.0765 1920 ImapiService - ok
18:25:24.0765 1920 ini910u - ok
18:25:24.0875 1920 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:25:25.0015 1920 IntcAzAudAddService - ok
18:25:25.0015 1920 IntelIde - ok
18:25:25.0046 1920 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:25:25.0187 1920 Ip6Fw - ok
18:25:25.0218 1920 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:25:25.0421 1920 IpFilterDriver - ok
18:25:25.0453 1920 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:25:25.0609 1920 IpInIp - ok
18:25:25.0640 1920 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:25:25.0796 1920 IpNat - ok
18:25:25.0828 1920 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:25:25.0968 1920 IPSec - ok
18:25:26.0000 1920 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
18:25:26.0140 1920 irda - ok
18:25:26.0156 1920 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:25:26.0312 1920 IRENUM - ok
18:25:26.0343 1920 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
18:25:26.0515 1920 Irmon - ok
18:25:26.0546 1920 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
18:25:26.0625 1920 irsir - ok
18:25:26.0656 1920 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:25:26.0796 1920 isapnp - ok
18:25:26.0828 1920 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:25:26.0968 1920 Kbdclass - ok
18:25:27.0000 1920 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:25:27.0140 1920 kmixer - ok
18:25:27.0171 1920 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:25:27.0203 1920 KSecDD - ok
18:25:27.0250 1920 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:25:27.0265 1920 lanmanserver - ok
18:25:27.0296 1920 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:25:27.0328 1920 lanmanworkstation - ok
18:25:27.0328 1920 lbrtfdc - ok
18:25:27.0359 1920 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:25:27.0500 1920 LmHosts - ok
18:25:27.0515 1920 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:25:27.0656 1920 Messenger - ok
18:25:27.0718 1920 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:25:27.0750 1920 Microsoft Office Groove Audit Service - ok
18:25:27.0781 1920 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:25:27.0968 1920 mnmdd - ok
18:25:27.0984 1920 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:25:28.0140 1920 mnmsrvc - ok
18:25:28.0156 1920 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:25:28.0296 1920 Modem - ok
18:25:28.0312 1920 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:25:28.0453 1920 Mouclass - ok
18:25:28.0468 1920 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:25:28.0640 1920 MountMgr - ok
18:25:28.0656 1920 mraid35x - ok
18:25:28.0687 1920 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:25:28.0843 1920 MRxDAV - ok
18:25:28.0875 1920 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:25:28.0921 1920 MRxSmb - ok
18:25:28.0937 1920 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:25:29.0109 1920 MSDTC - ok
18:25:29.0125 1920 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:25:29.0281 1920 Msfs - ok
18:25:29.0296 1920 MSIServer - ok
18:25:29.0312 1920 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:25:29.0484 1920 MSKSSRV - ok
18:25:29.0515 1920 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:25:29.0656 1920 MSPCLOCK - ok
18:25:29.0656 1920 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:25:29.0812 1920 MSPQM - ok
18:25:29.0843 1920 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:25:30.0000 1920 mssmbios - ok
18:25:30.0015 1920 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:25:30.0156 1920 MSTEE - ok
18:25:30.0187 1920 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:25:30.0203 1920 Mup - ok
18:25:30.0234 1920 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:25:30.0390 1920 NABTSFEC - ok
18:25:30.0453 1920 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:25:30.0593 1920 napagent - ok
18:25:30.0640 1920 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:25:30.0796 1920 NDIS - ok
18:25:30.0812 1920 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:25:30.0953 1920 NdisIP - ok
18:25:30.0984 1920 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:25:31.0000 1920 NdisTapi - ok
18:25:31.0015 1920 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:25:31.0156 1920 Ndisuio - ok
18:25:31.0187 1920 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:25:31.0343 1920 NdisWan - ok
18:25:31.0390 1920 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:25:31.0421 1920 NDProxy - ok
18:25:31.0453 1920 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:25:31.0609 1920 NetBIOS - ok
18:25:31.0640 1920 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:25:31.0796 1920 NetBT - ok
18:25:31.0843 1920 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:25:31.0984 1920 NetDDE - ok
18:25:31.0984 1920 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:25:32.0140 1920 NetDDEdsdm - ok
18:25:32.0171 1920 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:25:32.0312 1920 Netlogon - ok
18:25:32.0343 1920 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
18:25:32.0500 1920 Netman - ok
18:25:32.0531 1920 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:25:32.0546 1920 NetTcpPortSharing - ok
18:25:32.0578 1920 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
18:25:32.0609 1920 Nla - ok
18:25:32.0625 1920 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:25:32.0765 1920 Npfs - ok
18:25:32.0781 1920 NTACCESS - ok
18:25:32.0828 1920 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:25:33.0000 1920 Ntfs - ok
18:25:33.0015 1920 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:25:33.0156 1920 NtLmSsp - ok
18:25:33.0218 1920 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:25:33.0390 1920 NtmsSvc - ok
18:25:33.0406 1920 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:25:33.0609 1920 Null - ok
18:25:33.0875 1920 [ 68B8C35782FFD20973524F748234B5A9 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:25:34.0265 1920 nv - ok
18:25:34.0312 1920 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
18:25:34.0328 1920 nvata - ok
18:25:34.0343 1920 [ CC34564BCA235EBAD8B308D871EFA2DF ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
18:25:34.0359 1920 NVENETFD - ok
18:25:34.0359 1920 [ 46FDB8D07DD4FC81093B0ACB243A525D ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
18:25:34.0390 1920 nvnetbus - ok
18:25:34.0421 1920 [ FFD30DAAF62D605069F6EB42D2E807C3 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:25:34.0453 1920 NVSvc - ok
18:25:34.0546 1920 [ 210EE09CB9C2655E55BD48D851369DC1 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:25:34.0609 1920 nvUpdatusService - ok
18:25:34.0640 1920 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:25:34.0843 1920 NwlnkFlt - ok
18:25:34.0875 1920 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:25:35.0046 1920 NwlnkFwd - ok
18:25:35.0140 1920 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:25:35.0171 1920 odserv - ok
18:25:35.0234 1920 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:25:35.0250 1920 ose - ok
18:25:35.0296 1920 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
18:25:35.0453 1920 Parport - ok
18:25:35.0468 1920 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:25:35.0609 1920 PartMgr - ok
18:25:35.0640 1920 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:25:35.0828 1920 ParVdm - ok
18:25:35.0859 1920 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:25:36.0000 1920 PCI - ok
18:25:36.0000 1920 PCIDump - ok
18:25:36.0015 1920 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:25:36.0203 1920 PCIIde - ok
18:25:36.0234 1920 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:25:36.0390 1920 Pcmcia - ok
18:25:36.0390 1920 PDCOMP - ok
18:25:36.0406 1920 PDFRAME - ok
18:25:36.0421 1920 PDRELI - ok
18:25:36.0421 1920 PDRFRAME - ok
18:25:36.0437 1920 perc2 - ok
18:25:36.0437 1920 perc2hib - ok
18:25:36.0468 1920 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:25:36.0500 1920 PlugPlay - ok
18:25:36.0546 1920 [ 205E1B699FD3F2F9B036EEA2EC30C620 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
18:25:36.0562 1920 PnkBstrA - ok
18:25:36.0593 1920 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:25:36.0734 1920 PolicyAgent - ok
18:25:36.0765 1920 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:25:36.0921 1920 PptpMiniport - ok
18:25:36.0953 1920 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
18:25:37.0109 1920 Processor - ok
18:25:37.0109 1920 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:25:37.0359 1920 ProtectedStorage - ok
18:25:37.0375 1920 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:25:37.0796 1920 PSched - ok
18:25:37.0812 1920 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:25:38.0187 1920 Ptilink - ok
18:25:38.0203 1920 ql1080 - ok
18:25:38.0203 1920 Ql10wnt - ok
18:25:38.0218 1920 ql12160 - ok
18:25:38.0218 1920 ql1240 - ok
18:25:38.0234 1920 ql1280 - ok
18:25:38.0250 1920 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:25:38.0515 1920 RasAcd - ok
18:25:38.0546 1920 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:25:38.0796 1920 RasAuto - ok
18:25:38.0843 1920 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:25:38.0953 1920 Rasirda - ok
18:25:38.0984 1920 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:25:39.0171 1920 Rasl2tp - ok
18:25:39.0218 1920 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:25:39.0437 1920 RasMan - ok
18:25:39.0453 1920 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:25:39.0640 1920 RasPppoe - ok
18:25:39.0656 1920 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:25:39.0906 1920 Raspti - ok
18:25:39.0968 1920 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:25:40.0187 1920 Rdbss - ok
18:25:40.0203 1920 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:25:40.0484 1920 RDPCDD - ok
18:25:40.0546 1920 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:25:40.0578 1920 RDPWD - ok
18:25:40.0609 1920 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:25:40.0828 1920 RDSessMgr - ok
18:25:40.0875 1920 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:25:41.0109 1920 redbook - ok
18:25:41.0171 1920 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:25:41.0390 1920 RemoteAccess - ok
18:25:41.0468 1920 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:25:41.0703 1920 RpcLocator - ok
18:25:41.0718 1920 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:25:41.0781 1920 RpcSs - ok
18:25:41.0828 1920 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:25:42.0093 1920 RSVP - ok
18:25:42.0109 1920 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:25:42.0296 1920 SamSs - ok
18:25:42.0343 1920 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:25:42.0546 1920 SCardSvr - ok
18:25:42.0609 1920 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:25:42.0812 1920 Schedule - ok
18:25:42.0843 1920 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:25:43.0046 1920 Secdrv - ok
18:25:43.0078 1920 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:25:43.0265 1920 seclogon - ok
18:25:43.0296 1920 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
18:25:43.0515 1920 SENS - ok
18:25:43.0531 1920 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
18:25:43.0734 1920 serenum - ok
18:25:43.0781 1920 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
18:25:44.0000 1920 Serial - ok
18:25:44.0046 1920 SetupNTGLM7X - ok
18:25:44.0078 1920 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:25:44.0281 1920 Sfloppy - ok
18:25:44.0359 1920 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:25:44.0640 1920 SharedAccess - ok
18:25:44.0703 1920 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:25:44.0750 1920 ShellHWDetection - ok
18:25:44.0765 1920 Simbad - ok
18:25:44.0781 1920 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:25:44.0937 1920 SLIP - ok
18:25:44.0953 1920 Sparrow - ok
18:25:44.0984 1920 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:25:45.0156 1920 splitter - ok
18:25:45.0187 1920 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:25:45.0218 1920 Spooler - ok
18:25:45.0250 1920 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:25:45.0437 1920 sr - ok
18:25:45.0484 1920 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
18:25:45.0656 1920 srservice - ok
18:25:45.0687 1920 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:25:45.0718 1920 Srv - ok
18:25:45.0750 1920 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:25:45.0906 1920 SSDPSRV - ok
18:25:45.0921 1920 Steam Client Service - ok
18:25:45.0984 1920 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:25:46.0171 1920 stisvc - ok
18:25:46.0187 1920 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:25:46.0343 1920 streamip - ok
18:25:46.0359 1920 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:25:46.0515 1920 swenum - ok
18:25:46.0546 1920 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:25:46.0718 1920 swmidi - ok
18:25:46.0718 1920 SwPrv - ok
18:25:46.0734 1920 symc810 - ok
18:25:46.0750 1920 symc8xx - ok
18:25:46.0750 1920 sym_hi - ok
18:25:46.0765 1920 sym_u3 - ok
18:25:46.0796 1920 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:25:46.0937 1920 sysaudio - ok
18:25:46.0984 1920 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:25:47.0125 1920 SysmonLog - ok
18:25:47.0171 1920 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:25:47.0328 1920 TapiSrv - ok
18:25:47.0359 1920 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:25:47.0390 1920 Tcpip - ok
18:25:47.0421 1920 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:25:47.0562 1920 TDPIPE - ok
18:25:47.0578 1920 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:25:47.0734 1920 TDTCP - ok
18:25:47.0750 1920 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:25:47.0906 1920 TermDD - ok
18:25:47.0953 1920 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
18:25:48.0109 1920 TermService - ok
18:25:48.0125 1920 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:25:48.0156 1920 Themes - ok
18:25:48.0156 1920 TosIde - ok
18:25:48.0203 1920 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:25:48.0359 1920 TrkWks - ok
18:25:48.0390 1920 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:25:48.0546 1920 Udfs - ok
18:25:48.0546 1920 ultra - ok
18:25:48.0625 1920 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:25:48.0765 1920 Update - ok
18:25:48.0796 1920 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
18:25:48.0953 1920 upnphost - ok
18:25:48.0968 1920 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
18:25:49.0109 1920 UPS - ok
18:25:49.0125 1920 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:25:49.0265 1920 usbccgp - ok
18:25:49.0296 1920 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:25:49.0453 1920 usbehci - ok
18:25:49.0468 1920 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:25:49.0640 1920 usbhub - ok
18:25:49.0656 1920 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:25:49.0796 1920 usbohci - ok
18:25:49.0812 1920 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:25:49.0968 1920 USBSTOR - ok
18:25:49.0984 1920 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
18:25:50.0125 1920 usbvideo - ok
18:25:50.0140 1920 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:25:50.0281 1920 VgaSave - ok
18:25:50.0296 1920 ViaIde - ok
18:25:50.0328 1920 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:25:50.0468 1920 VolSnap - ok
18:25:50.0515 1920 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:25:50.0671 1920 VSS - ok
18:25:50.0703 1920 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
18:25:50.0843 1920 W32Time - ok
18:25:50.0890 1920 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:25:51.0031 1920 Wanarp - ok
18:25:51.0046 1920 WDICA - ok
18:25:51.0078 1920 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:25:51.0218 1920 wdmaud - ok
18:25:51.0250 1920 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:25:51.0406 1920 WebClient - ok
18:25:51.0500 1920 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:25:51.0640 1920 winmgmt - ok
18:25:51.0703 1920 [ 6199B2AE3F9DB9CB6DB230471A1DC601 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
18:25:51.0875 1920 WmdmPmSN - ok
18:25:51.0921 1920 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:25:52.0062 1920 WmiApSrv - ok
18:25:52.0125 1920 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:25:52.0171 1920 WPFFontCache_v0400 - ok
18:25:52.0187 1920 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:25:52.0390 1920 WS2IFSL - ok
18:25:52.0437 1920 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:25:52.0578 1920 wscsvc - ok
18:25:52.0609 1920 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:25:52.0750 1920 WSTCODEC - ok
18:25:52.0765 1920 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:25:52.0921 1920 wuauserv - ok
18:25:52.0984 1920 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:25:53.0140 1920 WZCSVC - ok
18:25:53.0171 1920 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:25:53.0328 1920 xmlprov - ok
18:25:53.0343 1920 ================ Scan global ===============================
18:25:53.0375 1920 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
18:25:53.0421 1920 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:25:53.0421 1920 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:25:53.0453 1920 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
18:25:53.0453 1920 [Global] - ok

žádná tabulka mě po dokončení skenování nenaskočila
Screen je zde:


Log z TDDSK:

18:22:57.0250 3808 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:22:57.0718 3808 ============================================================
18:22:57.0718 3808 Current date / time: 2012/11/01 18:22:57.0718
18:22:57.0718 3808 SystemInfo:
18:22:57.0718 3808
18:22:57.0718 3808 OS Version: 5.1.2600 ServicePack: 3.0
18:22:57.0718 3808 Product type: Workstation
18:22:57.0718 3808 ComputerName: PC
18:22:57.0734 3808 UserName: Doma
18:22:57.0734 3808 Windows directory: C:\WINDOWS
18:22:57.0734 3808 System windows directory: C:\WINDOWS
18:22:57.0734 3808 Processor architecture: Intel x86
18:22:57.0734 3808 Number of processors: 1
18:22:57.0734 3808 Page size: 0x1000
18:22:57.0750 3808 Boot type: Normal boot
18:22:57.0750 3808 ============================================================
18:22:58.0875 3808 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:22:58.0875 3808 Drive \Device\Harddisk1\DR2 - Size: 0xF2300000 (3.78 Gb), SectorSize: 0x200, Cylinders: 0x1ED, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:22:58.0890 3808 ============================================================
18:22:58.0890 3808 \Device\Harddisk0\DR0:
18:22:58.0890 3808 MBR partitions:
18:22:58.0890 3808 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
18:22:58.0890 3808 \Device\Harddisk1\DR2:
18:22:58.0890 3808 MBR partitions:
18:22:58.0890 3808 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x1F80, BlocksNum 0x78F880
18:22:58.0890 3808 ============================================================
18:22:58.0921 3808 C: <-> \Device\Harddisk0\DR0\Partition1
18:22:58.0921 3808 ============================================================
18:22:58.0921 3808 Initialize success
18:22:58.0921 3808 ============================================================
18:23:37.0812 3548 ============================================================
18:23:37.0812 3548 Scan started
18:23:37.0812 3548 Mode: Manual; SigCheck; TDLFS;
18:23:37.0812 3548 ============================================================
18:23:38.0015 3548 ================ Scan system memory ========================
18:23:38.0015 3548 System memory - ok
18:23:38.0015 3548 ================ Scan services =============================
18:23:38.0390 3548 Abiosdsk - ok
18:23:38.0390 3548 abp480n5 - ok
18:23:38.0453 3548 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:23:39.0515 3548 ACPI - ok
18:23:39.0546 3548 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
18:23:39.0750 3548 ACPIEC - ok
18:23:39.0812 3548 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:23:39.0843 3548 AdobeFlashPlayerUpdateSvc - ok
18:23:39.0843 3548 adpu160m - ok
18:23:39.0890 3548 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:23:40.0109 3548 aec - ok
18:23:40.0156 3548 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:23:40.0203 3548 AFD - ok
18:23:40.0218 3548 Aha154x - ok
18:23:40.0218 3548 aic78u2 - ok
18:23:40.0234 3548 aic78xx - ok
18:23:40.0265 3548 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:23:40.0453 3548 Alerter - ok
18:23:40.0468 3548 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
18:23:40.0656 3548 ALG - ok
18:23:40.0671 3548 AliIde - ok
18:23:40.0687 3548 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
18:23:40.0734 3548 AmdK8 - ok
18:23:40.0734 3548 amsint - ok
18:23:40.0750 3548 AppMgmt - ok
18:23:40.0750 3548 asc - ok
18:23:40.0750 3548 asc3350p - ok
18:23:40.0765 3548 asc3550 - ok
18:23:40.0890 3548 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:23:40.0937 3548 aspnet_state - ok
18:23:40.0953 3548 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:23:41.0171 3548 AsyncMac - ok
18:23:41.0203 3548 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:23:41.0375 3548 atapi - ok
18:23:41.0375 3548 Atdisk - ok
18:23:41.0406 3548 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:23:41.0609 3548 Atmarpc - ok
18:23:41.0640 3548 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:23:41.0796 3548 AudioSrv - ok
18:23:41.0828 3548 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:23:42.0000 3548 audstub - ok
18:23:42.0015 3548 AVGIDSHX - ok
18:23:42.0015 3548 AVGIDSShim - ok
18:23:42.0062 3548 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:23:42.0281 3548 Beep - ok
18:23:42.0328 3548 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:23:42.0546 3548 BITS - ok
18:23:42.0578 3548 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
18:23:42.0640 3548 Browser - ok
18:23:42.0718 3548 catchme - ok
18:23:42.0750 3548 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:23:42.0953 3548 cbidf2k - ok
18:23:42.0968 3548 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:23:43.0171 3548 CCDECODE - ok
18:23:43.0171 3548 cd20xrnt - ok
18:23:43.0187 3548 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:23:43.0375 3548 Cdaudio - ok
18:23:43.0421 3548 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:23:43.0625 3548 Cdfs - ok
18:23:43.0656 3548 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:23:43.0843 3548 Cdrom - ok
18:23:43.0859 3548 Changer - ok
18:23:43.0890 3548 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:23:44.0062 3548 CiSvc - ok
18:23:44.0093 3548 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:23:44.0265 3548 ClipSrv - ok
18:23:44.0312 3548 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:23:44.0343 3548 clr_optimization_v2.0.50727_32 - ok
18:23:44.0375 3548 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:23:44.0437 3548 clr_optimization_v4.0.30319_32 - ok
18:23:44.0437 3548 CmdIde - ok
18:23:44.0453 3548 COMSysApp - ok
18:23:44.0468 3548 Cpqarray - ok
18:23:44.0500 3548 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:23:44.0687 3548 CryptSvc - ok
18:23:44.0687 3548 dac2w2k - ok
18:23:44.0703 3548 dac960nt - ok
18:23:44.0734 3548 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:23:44.0828 3548 DcomLaunch - ok
18:23:44.0875 3548 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:23:45.0062 3548 Dhcp - ok
18:23:45.0078 3548 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:23:45.0265 3548 Disk - ok
18:23:45.0281 3548 dmadmin - ok
18:23:45.0343 3548 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:23:45.0625 3548 dmboot - ok
18:23:45.0671 3548 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:23:45.0890 3548 dmio - ok
18:23:45.0921 3548 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:23:46.0140 3548 dmload - ok
18:23:46.0187 3548 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:23:46.0359 3548 dmserver - ok
18:23:46.0390 3548 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:23:46.0593 3548 DMusic - ok
18:23:46.0609 3548 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:23:46.0687 3548 Dnscache - ok
18:23:46.0750 3548 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:23:46.0921 3548 Dot3svc - ok
18:23:46.0921 3548 dpti2o - ok
18:23:46.0953 3548 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:23:47.0171 3548 drmkaud - ok
18:23:47.0187 3548 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
18:23:47.0281 3548 eamon - ok
18:23:47.0312 3548 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:23:47.0546 3548 EapHost - ok
18:23:47.0609 3548 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:23:47.0718 3548 ehdrv - ok
18:23:47.0937 3548 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
18:23:48.0062 3548 ekrn - ok
18:23:48.0078 3548 [ CF1108161DFEDD82AE811307A3763E1C ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
18:23:48.0109 3548 epfwtdir - ok
18:23:48.0125 3548 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:23:48.0343 3548 ERSvc - ok
18:23:48.0375 3548 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
18:23:48.0421 3548 Eventlog - ok
18:23:48.0453 3548 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
18:23:48.0500 3548 EventSystem - ok
18:23:48.0546 3548 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:23:48.0750 3548 Fastfat - ok
18:23:48.0781 3548 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:23:48.0843 3548 FastUserSwitchingCompatibility - ok
18:23:48.0859 3548 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
18:23:49.0015 3548 Fdc - ok
18:23:49.0031 3548 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:23:49.0218 3548 Fips - ok
18:23:49.0296 3548 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:23:49.0359 3548 FLEXnet Licensing Service - ok
18:23:49.0375 3548 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:23:49.0578 3548 Flpydisk - ok
18:23:49.0609 3548 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:23:49.0765 3548 FltMgr - ok
18:23:49.0796 3548 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:23:49.0812 3548 FontCache3.0.0.0 - ok
18:23:49.0843 3548 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:23:50.0031 3548 Fs_Rec - ok
18:23:50.0046 3548 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:23:50.0250 3548 Ftdisk - ok
18:23:50.0265 3548 GMSIPCI - ok
18:23:50.0312 3548 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:23:50.0562 3548 Gpc - ok
18:23:50.0609 3548 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:23:50.0906 3548 HDAudBus - ok
18:23:50.0953 3548 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:23:51.0125 3548 helpsvc - ok
18:23:51.0140 3548 HidServ - ok
18:23:51.0187 3548 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:23:51.0343 3548 hkmsvc - ok
18:23:51.0359 3548 hpn - ok
18:23:51.0421 3548 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:23:51.0484 3548 HTTP - ok
18:23:51.0500 3548 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:23:51.0656 3548 HTTPFilter - ok
18:23:51.0656 3548 i2omgmt - ok
18:23:51.0671 3548 i2omp - ok
18:23:51.0703 3548 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:23:51.0890 3548 i8042prt - ok
18:23:51.0953 3548 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:23:52.0015 3548 idsvc - ok
18:23:52.0031 3548 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:23:52.0203 3548 Imapi - ok
18:23:52.0250 3548 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:23:52.0421 3548 ImapiService - ok
18:23:52.0421 3548 ini910u - ok
18:23:52.0562 3548 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:23:52.0750 3548 IntcAzAudAddService - ok
18:23:52.0750 3548 IntelIde - ok
18:23:52.0781 3548 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:23:53.0000 3548 Ip6Fw - ok
18:23:53.0031 3548 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:23:53.0250 3548 IpFilterDriver - ok
18:23:53.0281 3548 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:23:53.0468 3548 IpInIp - ok
18:23:53.0515 3548 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:23:53.0703 3548 IpNat - ok
18:23:53.0718 3548 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:23:53.0859 3548 IPSec - ok
18:23:53.0906 3548 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
18:23:54.0046 3548 irda - ok
18:23:54.0062 3548 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:23:54.0234 3548 IRENUM - ok
18:23:54.0265 3548 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
18:23:54.0453 3548 Irmon - ok
18:23:54.0484 3548 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
18:23:54.0562 3548 irsir - ok
18:23:54.0593 3548 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:23:54.0765 3548 isapnp - ok
18:23:54.0781 3548 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:23:54.0937 3548 Kbdclass - ok
18:23:54.0984 3548 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:23:55.0140 3548 kmixer - ok
18:23:55.0156 3548 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:23:55.0234 3548 KSecDD - ok
18:23:55.0265 3548 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:23:55.0312 3548 lanmanserver - ok
18:23:55.0328 3548 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:23:55.0375 3548 lanmanworkstation - ok
18:23:55.0375 3548 lbrtfdc - ok
18:23:55.0421 3548 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:23:55.0578 3548 LmHosts - ok
18:23:55.0593 3548 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:23:55.0750 3548 Messenger - ok
18:23:55.0812 3548 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:23:55.0859 3548 Microsoft Office Groove Audit Service - ok
18:23:55.0890 3548 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:23:56.0078 3548 mnmdd - ok
18:23:56.0109 3548 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:23:56.0296 3548 mnmsrvc - ok
18:23:56.0328 3548 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:23:56.0515 3548 Modem - ok
18:23:56.0546 3548 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:23:56.0718 3548 Mouclass - ok
18:23:56.0765 3548 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:23:56.0937 3548 MountMgr - ok
18:23:56.0937 3548 mraid35x - ok
18:23:56.0984 3548 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:23:57.0140 3548 MRxDAV - ok
18:23:57.0171 3548 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:23:57.0218 3548 MRxSmb - ok
18:23:57.0234 3548 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:23:57.0421 3548 MSDTC - ok
18:23:57.0453 3548 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:23:57.0656 3548 Msfs - ok
18:23:57.0656 3548 MSIServer - ok
18:23:57.0671 3548 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:23:57.0875 3548 MSKSSRV - ok
18:23:57.0890 3548 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:23:58.0078 3548 MSPCLOCK - ok
18:23:58.0078 3548 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:23:58.0265 3548 MSPQM - ok
18:23:58.0312 3548 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:23:58.0484 3548 mssmbios - ok
18:23:58.0515 3548 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:23:58.0703 3548 MSTEE - ok
18:23:58.0734 3548 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:23:58.0750 3548 Mup - ok
18:23:58.0781 3548 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:23:58.0984 3548 NABTSFEC - ok
18:23:59.0062 3548 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:23:59.0250 3548 napagent - ok
18:23:59.0296 3548 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:23:59.0484 3548 NDIS - ok
18:23:59.0500 3548 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:23:59.0687 3548 NdisIP - ok
18:23:59.0703 3548 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:23:59.0718 3548 NdisTapi - ok
18:23:59.0734 3548 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:23:59.0906 3548 Ndisuio - ok
18:23:59.0953 3548 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:24:00.0109 3548 NdisWan - ok
18:24:00.0140 3548 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:24:00.0171 3548 NDProxy - ok
18:24:00.0203 3548 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:24:00.0375 3548 NetBIOS - ok
18:24:00.0406 3548 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:24:00.0609 3548 NetBT - ok
18:24:00.0640 3548 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:24:00.0812 3548 NetDDE - ok
18:24:00.0828 3548 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:24:01.0000 3548 NetDDEdsdm - ok
18:24:01.0031 3548 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:24:01.0187 3548 Netlogon - ok
18:24:01.0203 3548 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
18:24:01.0406 3548 Netman - ok
18:24:01.0421 3548 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:24:01.0453 3548 NetTcpPortSharing - ok
18:24:01.0484 3548 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
18:24:01.0515 3548 Nla - ok
18:24:01.0531 3548 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:24:01.0703 3548 Npfs - ok
18:24:01.0703 3548 NTACCESS - ok
18:24:01.0765 3548 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:24:01.0953 3548 Ntfs - ok
18:24:01.0953 3548 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:24:02.0109 3548 NtLmSsp - ok
18:24:02.0156 3548 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:24:02.0359 3548 NtmsSvc - ok
18:24:02.0375 3548 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:24:02.0562 3548 Null - ok
18:24:02.0828 3548 [ 68B8C35782FFD20973524F748234B5A9 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:24:03.0406 3548 nv - ok
18:24:03.0437 3548 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
18:24:03.0484 3548 nvata - ok
18:24:03.0515 3548 [ CC34564BCA235EBAD8B308D871EFA2DF ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
18:24:03.0593 3548 NVENETFD - ok
18:24:03.0609 3548 [ 46FDB8D07DD4FC81093B0ACB243A525D ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
18:24:03.0656 3548 nvnetbus - ok
18:24:03.0687 3548 [ FFD30DAAF62D605069F6EB42D2E807C3 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:24:03.0718 3548 NVSvc - ok
18:24:03.0812 3548 [ 210EE09CB9C2655E55BD48D851369DC1 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:24:03.0875 3548 nvUpdatusService - ok
18:24:03.0906 3548 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:24:04.0140 3548 NwlnkFlt - ok
18:24:04.0171 3548 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:24:04.0421 3548 NwlnkFwd - ok
18:24:04.0531 3548 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:24:04.0578 3548 odserv - ok
18:24:04.0625 3548 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:24:04.0640 3548 ose - ok
18:24:04.0687 3548 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
18:24:04.0890 3548 Parport - ok
18:24:04.0906 3548 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:24:05.0062 3548 PartMgr - ok
18:24:05.0093 3548 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:24:05.0296 3548 ParVdm - ok
18:24:05.0328 3548 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:24:05.0484 3548 PCI - ok
18:24:05.0500 3548 PCIDump - ok
18:24:05.0531 3548 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:24:05.0718 3548 PCIIde - ok
18:24:05.0765 3548 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:24:05.0968 3548 Pcmcia - ok
18:24:05.0968 3548 PDCOMP - ok
18:24:05.0968 3548 PDFRAME - ok
18:24:05.0984 3548 PDRELI - ok
18:24:06.0000 3548 PDRFRAME - ok
18:24:06.0000 3548 perc2 - ok
18:24:06.0000 3548 perc2hib - ok
18:24:06.0046 3548 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:24:06.0062 3548 PlugPlay - ok
18:24:06.0093 3548 [ 205E1B699FD3F2F9B036EEA2EC30C620 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
18:24:06.0125 3548 PnkBstrA - ok
18:24:06.0140 3548 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:24:06.0312 3548 PolicyAgent - ok
18:24:06.0343 3548 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:24:06.0500 3548 PptpMiniport - ok
18:24:06.0531 3548 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
18:24:06.0734 3548 Processor - ok
18:24:06.0734 3548 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:24:06.0906 3548 ProtectedStorage - ok
18:24:06.0921 3548 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:24:07.0125 3548 PSched - ok
18:24:07.0140 3548 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:24:07.0343 3548 Ptilink - ok
18:24:07.0359 3548 ql1080 - ok
18:24:07.0359 3548 Ql10wnt - ok
18:24:07.0375 3548 ql12160 - ok
18:24:07.0390 3548 ql1240 - ok
18:24:07.0390 3548 ql1280 - ok
18:24:07.0406 3548 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:24:07.0609 3548 RasAcd - ok
18:24:07.0656 3548 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:24:07.0812 3548 RasAuto - ok
18:24:07.0843 3548 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:24:07.0937 3548 Rasirda - ok
18:24:07.0968 3548 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:24:08.0125 3548 Rasl2tp - ok
18:24:08.0171 3548 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:24:08.0343 3548 RasMan - ok
18:24:08.0343 3548 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:24:08.0531 3548 RasPppoe - ok
18:24:08.0531 3548 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:24:08.0734 3548 Raspti - ok
18:24:08.0781 3548 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:24:08.0921 3548 Rdbss - ok
18:24:08.0937 3548 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:24:09.0156 3548 RDPCDD - ok
18:24:09.0203 3548 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:24:09.0265 3548 RDPWD - ok
18:24:09.0312 3548 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:24:09.0468 3548 RDSessMgr - ok
18:24:09.0500 3548 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:24:09.0718 3548 redbook - ok
18:24:09.0750 3548 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:24:09.0906 3548 RemoteAccess - ok
18:24:09.0937 3548 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:24:10.0140 3548 RpcLocator - ok
18:24:10.0187 3548 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:24:10.0234 3548 RpcSs - ok
18:24:10.0281 3548 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:24:10.0515 3548 RSVP - ok
18:24:10.0531 3548 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:24:10.0703 3548 SamSs - ok
18:24:10.0718 3548 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:24:10.0875 3548 SCardSvr - ok
18:24:10.0921 3548 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:24:11.0093 3548 Schedule - ok
18:24:11.0109 3548 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:24:11.0312 3548 Secdrv - ok
18:24:11.0328 3548 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:24:11.0484 3548 seclogon - ok
18:24:11.0500 3548 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
18:24:11.0656 3548 SENS - ok
18:24:11.0671 3548 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
18:24:11.0828 3548 serenum - ok
18:24:11.0859 3548 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
18:24:12.0000 3548 Serial - ok
18:24:12.0031 3548 SetupNTGLM7X - ok
18:24:12.0046 3548 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:24:12.0203 3548 Sfloppy - ok
18:24:12.0250 3548 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:24:12.0421 3548 SharedAccess - ok
18:24:12.0437 3548 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:24:12.0484 3548 ShellHWDetection - ok
18:24:12.0484 3548 Simbad - ok
18:24:12.0515 3548 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:24:12.0703 3548 SLIP - ok
18:24:12.0718 3548 Sparrow - ok
18:24:12.0734 3548 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:24:12.0890 3548 splitter - ok
18:24:12.0906 3548 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:24:12.0968 3548 Spooler - ok
18:24:13.0000 3548 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:24:13.0156 3548 sr - ok
18:24:13.0203 3548 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
18:24:13.0359 3548 srservice - ok
18:24:13.0390 3548 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:24:13.0453 3548 Srv - ok
18:24:13.0468 3548 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:24:13.0640 3548 SSDPSRV - ok
18:24:13.0671 3548 Steam Client Service - ok
18:24:13.0734 3548 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:24:13.0937 3548 stisvc - ok
18:24:13.0953 3548 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:24:14.0140 3548 streamip - ok
18:24:14.0156 3548 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:24:14.0312 3548 swenum - ok
18:24:14.0343 3548 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:24:14.0578 3548 swmidi - ok
18:24:14.0578 3548 SwPrv - ok
18:24:14.0593 3548 symc810 - ok
18:24:14.0609 3548 symc8xx - ok
18:24:14.0609 3548 sym_hi - ok
18:24:14.0609 3548 sym_u3 - ok
18:24:14.0640 3548 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:24:14.0812 3548 sysaudio - ok
18:24:14.0843 3548 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:24:15.0000 3548 SysmonLog - ok
18:24:15.0046 3548 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:24:15.0234 3548 TapiSrv - ok
18:24:15.0281 3548 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:24:15.0296 3548 Tcpip - ok
18:24:15.0343 3548 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:24:15.0500 3548 TDPIPE - ok
18:24:15.0531 3548 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:24:15.0687 3548 TDTCP - ok
18:24:15.0718 3548 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:24:15.0890 3548 TermDD - ok
18:24:15.0953 3548 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
18:24:16.0109 3548 TermService - ok
18:24:16.0140 3548 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:24:16.0156 3548 Themes - ok
18:24:16.0171 3548 TosIde - ok
18:24:16.0203 3548 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:24:16.0359 3548 TrkWks - ok
18:24:16.0390 3548 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:24:16.0578 3548 Udfs - ok
18:24:16.0578 3548 ultra - ok
18:24:16.0640 3548 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:24:16.0812 3548 Update - ok
18:24:16.0859 3548 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
18:24:17.0015 3548 upnphost - ok
18:24:17.0031 3548 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
18:24:17.0218 3548 UPS - ok
18:24:17.0234 3548 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:24:17.0406 3548 usbccgp - ok
18:24:17.0421 3548 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:24:17.0609 3548 usbehci - ok
18:24:17.0625 3548 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:24:17.0796 3548 usbhub - ok
18:24:17.0843 3548 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:24:18.0000 3548 usbohci - ok
18:24:18.0015 3548 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:24:18.0187 3548 USBSTOR - ok
18:24:18.0234 3548 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
18:24:18.0390 3548 usbvideo - ok
18:24:18.0421 3548 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:24:18.0578 3548 VgaSave - ok
18:24:18.0578 3548 ViaIde - ok
18:24:18.0609 3548 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:24:18.0781 3548 VolSnap - ok
18:24:18.0828 3548 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:24:19.0000 3548 VSS - ok
18:24:19.0031 3548 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
18:24:19.0187 3548 W32Time - ok
18:24:19.0203 3548 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:24:19.0359 3548 Wanarp - ok
18:24:19.0375 3548 WDICA - ok
18:24:19.0406 3548 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:24:19.0562 3548 wdmaud - ok
18:24:19.0593 3548 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:24:19.0750 3548 WebClient - ok
18:24:19.0859 3548 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:24:20.0000 3548 winmgmt - ok
18:24:20.0062 3548 [ 6199B2AE3F9DB9CB6DB230471A1DC601 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
18:24:20.0218 3548 WmdmPmSN - ok
18:24:20.0281 3548 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:24:20.0421 3548 WmiApSrv - ok
18:24:20.0515 3548 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:24:20.0562 3548 WPFFontCache_v0400 - ok
18:24:20.0593 3548 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:24:20.0843 3548 WS2IFSL - ok
18:24:20.0890 3548 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:24:21.0031 3548 wscsvc - ok
18:24:21.0078 3548 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:24:21.0265 3548 WSTCODEC - ok
18:24:21.0296 3548 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:24:21.0453 3548 wuauserv - ok
18:24:21.0500 3548 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:24:21.0687 3548 WZCSVC - ok
18:24:21.0734 3548 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:24:21.0890 3548 xmlprov - ok
18:24:21.0906 3548 ================ Scan global ===============================
18:24:21.0953 3548 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
18:24:21.0984 3548 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:24:22.0000 3548 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:24:22.0031 3548 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
18:24:22.0031 3548 [Global] - ok
18:24:22.0031 3548 ================ Scan MBR ==================================
18:24:22.0046 3548 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
18:24:22.0203 3548 \Device\Harddisk0\DR0 - ok
18:24:22.0203 3548 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR2
18:24:23.0375 3548 \Device\Harddisk1\DR2 - ok
18:24:23.0375 3548 ================ Scan VBR ==================================
18:24:23.0390 3548 [ CD877983101404708A4B98B7A696F591 ] \Device\Harddisk0\DR0\Partition1
18:24:23.0390 3548 \Device\Harddisk0\DR0\Partition1 - ok
18:24:23.0390 3548 [ D3D94B2B7C9EA181E6AFFD53062A1D37 ] \Device\Harddisk1\DR2\Partition1
18:24:23.0406 3548 \Device\Harddisk1\DR2\Partition1 - ok
18:24:23.0406 3548 ============================================================
18:24:23.0406 3548 Scan finished
18:24:23.0406 3548 ============================================================
18:24:23.0515 1104 Detected object count: 0
18:24:23.0515 1104 Actual detected object count: 0
18:25:13.0218 1920 ============================================================
18:25:13.0218 1920 Scan started
18:25:13.0218 1920 Mode: Manual; SigCheck; TDLFS;
18:25:13.0218 1920 ============================================================
18:25:13.0421 1920 ================ Scan system memory ========================
18:25:13.0421 1920 System memory - ok
18:25:13.0421 1920 ================ Scan services =============================
18:25:13.0765 1920 Abiosdsk - ok
18:25:13.0781 1920 abp480n5 - ok
18:25:13.0843 1920 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:25:14.0015 1920 ACPI - ok
18:25:14.0046 1920 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
18:25:14.0234 1920 ACPIEC - ok
18:25:14.0296 1920 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:25:14.0328 1920 AdobeFlashPlayerUpdateSvc - ok
18:25:14.0328 1920 adpu160m - ok
18:25:14.0375 1920 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:25:14.0515 1920 aec - ok
18:25:14.0546 1920 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:25:14.0578 1920 AFD - ok
18:25:14.0593 1920 Aha154x - ok
18:25:14.0593 1920 aic78u2 - ok
18:25:14.0593 1920 aic78xx - ok
18:25:14.0625 1920 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:25:14.0796 1920 Alerter - ok
18:25:14.0828 1920 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
18:25:14.0968 1920 ALG - ok
18:25:14.0984 1920 AliIde - ok
18:25:15.0015 1920 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
18:25:15.0046 1920 AmdK8 - ok
18:25:15.0046 1920 amsint - ok
18:25:15.0062 1920 AppMgmt - ok
18:25:15.0078 1920 asc - ok
18:25:15.0078 1920 asc3350p - ok
18:25:15.0093 1920 asc3550 - ok
18:25:15.0218 1920 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:25:15.0250 1920 aspnet_state - ok
18:25:15.0265 1920 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:25:15.0437 1920 AsyncMac - ok
18:25:15.0468 1920 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:25:15.0609 1920 atapi - ok
18:25:15.0609 1920 Atdisk - ok
18:25:15.0640 1920 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:25:15.0796 1920 Atmarpc - ok
18:25:15.0843 1920 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:25:15.0984 1920 AudioSrv - ok
18:25:16.0015 1920 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:25:16.0203 1920 audstub - ok
18:25:16.0218 1920 AVGIDSHX - ok
18:25:16.0218 1920 AVGIDSShim - ok
18:25:16.0265 1920 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:25:16.0468 1920 Beep - ok
18:25:16.0515 1920 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:25:16.0703 1920 BITS - ok
18:25:16.0734 1920 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
18:25:16.0765 1920 Browser - ok
18:25:16.0890 1920 catchme - ok
18:25:16.0921 1920 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:25:17.0109 1920 cbidf2k - ok
18:25:17.0125 1920 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:25:17.0281 1920 CCDECODE - ok
18:25:17.0281 1920 cd20xrnt - ok
18:25:17.0296 1920 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:25:17.0468 1920 Cdaudio - ok
18:25:17.0515 1920 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:25:17.0671 1920 Cdfs - ok
18:25:17.0703 1920 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:25:17.0843 1920 Cdrom - ok
18:25:17.0859 1920 Changer - ok
18:25:17.0890 1920 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:25:18.0046 1920 CiSvc - ok
18:25:18.0062 1920 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:25:18.0203 1920 ClipSrv - ok
18:25:18.0250 1920 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:25:18.0281 1920 clr_optimization_v2.0.50727_32 - ok
18:25:18.0312 1920 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:25:18.0328 1920 clr_optimization_v4.0.30319_32 - ok
18:25:18.0343 1920 CmdIde - ok
18:25:18.0343 1920 COMSysApp - ok
18:25:18.0359 1920 Cpqarray - ok
18:25:18.0406 1920 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:25:18.0562 1920 CryptSvc - ok
18:25:18.0562 1920 dac2w2k - ok
18:25:18.0578 1920 dac960nt - ok
18:25:18.0656 1920 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:25:18.0687 1920 DcomLaunch - ok
18:25:18.0750 1920 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:25:18.0906 1920 Dhcp - ok
18:25:18.0937 1920 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:25:19.0109 1920 Disk - ok
18:25:19.0109 1920 dmadmin - ok
18:25:19.0187 1920 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:25:19.0359 1920 dmboot - ok
18:25:19.0406 1920 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:25:19.0562 1920 dmio - ok
18:25:19.0593 1920 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:25:19.0796 1920 dmload - ok
18:25:19.0828 1920 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:25:20.0000 1920 dmserver - ok
18:25:20.0031 1920 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:25:20.0187 1920 DMusic - ok
18:25:20.0218 1920 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:25:20.0250 1920 Dnscache - ok
18:25:20.0312 1920 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:25:20.0453 1920 Dot3svc - ok
18:25:20.0468 1920 dpti2o - ok
18:25:20.0500 1920 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:25:20.0656 1920 drmkaud - ok
18:25:20.0687 1920 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
18:25:20.0718 1920 eamon - ok
18:25:20.0734 1920 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:25:20.0890 1920 EapHost - ok
18:25:20.0906 1920 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:25:20.0937 1920 ehdrv - ok
18:25:21.0062 1920 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
18:25:21.0125 1920 ekrn - ok
18:25:21.0156 1920 [ CF1108161DFEDD82AE811307A3763E1C ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
18:25:21.0171 1920 epfwtdir - ok
18:25:21.0187 1920 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:25:21.0343 1920 ERSvc - ok
18:25:21.0359 1920 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
18:25:21.0390 1920 Eventlog - ok
18:25:21.0421 1920 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
18:25:21.0453 1920 EventSystem - ok
18:25:21.0484 1920 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:25:21.0656 1920 Fastfat - ok
18:25:21.0687 1920 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:25:21.0718 1920 FastUserSwitchingCompatibility - ok
18:25:21.0734 1920 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
18:25:21.0890 1920 Fdc - ok
18:25:21.0921 1920 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:25:22.0078 1920 Fips - ok
18:25:22.0156 1920 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:25:22.0203 1920 FLEXnet Licensing Service - ok
18:25:22.0218 1920 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:25:22.0375 1920 Flpydisk - ok
18:25:22.0421 1920 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:25:22.0578 1920 FltMgr - ok
18:25:22.0625 1920 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:25:22.0640 1920 FontCache3.0.0.0 - ok
18:25:22.0656 1920 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:25:22.0859 1920 Fs_Rec - ok
18:25:22.0875 1920 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:25:23.0062 1920 Ftdisk - ok
18:25:23.0062 1920 GMSIPCI - ok
18:25:23.0093 1920 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:25:23.0250 1920 Gpc - ok
18:25:23.0296 1920 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:25:23.0468 1920 HDAudBus - ok
18:25:23.0531 1920 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:25:23.0687 1920 helpsvc - ok
18:25:23.0687 1920 HidServ - ok
18:25:23.0718 1920 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:25:23.0859 1920 hkmsvc - ok
18:25:23.0875 1920 hpn - ok
18:25:23.0906 1920 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:25:23.0921 1920 HTTP - ok
18:25:23.0953 1920 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:25:24.0093 1920 HTTPFilter - ok
18:25:24.0093 1920 i2omgmt - ok
18:25:24.0109 1920 i2omp - ok
18:25:24.0140 1920 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:25:24.0296 1920 i8042prt - ok
18:25:24.0359 1920 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:25:24.0406 1920 idsvc - ok
18:25:24.0421 1920 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:25:24.0578 1920 Imapi - ok
18:25:24.0609 1920 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:25:24.0765 1920 ImapiService - ok
18:25:24.0765 1920 ini910u - ok
18:25:24.0875 1920 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:25:25.0015 1920 IntcAzAudAddService - ok
18:25:25.0015 1920 IntelIde - ok
18:25:25.0046 1920 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:25:25.0187 1920 Ip6Fw - ok
18:25:25.0218 1920 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:25:25.0421 1920 IpFilterDriver - ok
18:25:25.0453 1920 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:25:25.0609 1920 IpInIp - ok
18:25:25.0640 1920 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:25:25.0796 1920 IpNat - ok
18:25:25.0828 1920 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:25:25.0968 1920 IPSec - ok
18:25:26.0000 1920 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
18:25:26.0140 1920 irda - ok
18:25:26.0156 1920 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:25:26.0312 1920 IRENUM - ok
18:25:26.0343 1920 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
18:25:26.0515 1920 Irmon - ok
18:25:26.0546 1920 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
18:25:26.0625 1920 irsir - ok
18:25:26.0656 1920 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:25:26.0796 1920 isapnp - ok
18:25:26.0828 1920 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:25:26.0968 1920 Kbdclass - ok
18:25:27.0000 1920 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:25:27.0140 1920 kmixer - ok
18:25:27.0171 1920 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:25:27.0203 1920 KSecDD - ok
18:25:27.0250 1920 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:25:27.0265 1920 lanmanserver - ok
18:25:27.0296 1920 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:25:27.0328 1920 lanmanworkstation - ok
18:25:27.0328 1920 lbrtfdc - ok
18:25:27.0359 1920 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:25:27.0500 1920 LmHosts - ok
18:25:27.0515 1920 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:25:27.0656 1920 Messenger - ok
18:25:27.0718 1920 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:25:27.0750 1920 Microsoft Office Groove Audit Service - ok
18:25:27.0781 1920 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:25:27.0968 1920 mnmdd - ok
18:25:27.0984 1920 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:25:28.0140 1920 mnmsrvc - ok
18:25:28.0156 1920 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:25:28.0296 1920 Modem - ok
18:25:28.0312 1920 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:25:28.0453 1920 Mouclass - ok
18:25:28.0468 1920 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:25:28.0640 1920 MountMgr - ok
18:25:28.0656 1920 mraid35x - ok
18:25:28.0687 1920 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:25:28.0843 1920 MRxDAV - ok
18:25:28.0875 1920 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:25:28.0921 1920 MRxSmb - ok
18:25:28.0937 1920 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:25:29.0109 1920 MSDTC - ok
18:25:29.0125 1920 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:25:29.0281 1920 Msfs - ok
18:25:29.0296 1920 MSIServer - ok
18:25:29.0312 1920 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:25:29.0484 1920 MSKSSRV - ok
18:25:29.0515 1920 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:25:29.0656 1920 MSPCLOCK - ok
18:25:29.0656 1920 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:25:29.0812 1920 MSPQM - ok
18:25:29.0843 1920 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:25:30.0000 1920 mssmbios - ok
18:25:30.0015 1920 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:25:30.0156 1920 MSTEE - ok
18:25:30.0187 1920 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:25:30.0203 1920 Mup - ok
18:25:30.0234 1920 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:25:30.0390 1920 NABTSFEC - ok
18:25:30.0453 1920 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:25:30.0593 1920 napagent - ok
18:25:30.0640 1920 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:25:30.0796 1920 NDIS - ok
18:25:30.0812 1920 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:25:30.0953 1920 NdisIP - ok
18:25:30.0984 1920 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:25:31.0000 1920 NdisTapi - ok
18:25:31.0015 1920 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:25:31.0156 1920 Ndisuio - ok
18:25:31.0187 1920 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:25:31.0343 1920 NdisWan - ok
18:25:31.0390 1920 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:25:31.0421 1920 NDProxy - ok
18:25:31.0453 1920 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:25:31.0609 1920 NetBIOS - ok
18:25:31.0640 1920 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:25:31.0796 1920 NetBT - ok
18:25:31.0843 1920 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:25:31.0984 1920 NetDDE - ok
18:25:31.0984 1920 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:25:32.0140 1920 NetDDEdsdm - ok
18:25:32.0171 1920 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:25:32.0312 1920 Netlogon - ok
18:25:32.0343 1920 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
18:25:32.0500 1920 Netman - ok
18:25:32.0531 1920 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:25:32.0546 1920 NetTcpPortSharing - ok
18:25:32.0578 1920 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
18:25:32.0609 1920 Nla - ok
18:25:32.0625 1920 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:25:32.0765 1920 Npfs - ok
18:25:32.0781 1920 NTACCESS - ok
18:25:32.0828 1920 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:25:33.0000 1920 Ntfs - ok
18:25:33.0015 1920 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:25:33.0156 1920 NtLmSsp - ok
18:25:33.0218 1920 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:25:33.0390 1920 NtmsSvc - ok
18:25:33.0406 1920 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:25:33.0609 1920 Null - ok
18:25:33.0875 1920 [ 68B8C35782FFD20973524F748234B5A9 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:25:34.0265 1920 nv - ok
18:25:34.0312 1920 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
18:25:34.0328 1920 nvata - ok
18:25:34.0343 1920 [ CC34564BCA235EBAD8B308D871EFA2DF ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
18:25:34.0359 1920 NVENETFD - ok
18:25:34.0359 1920 [ 46FDB8D07DD4FC81093B0ACB243A525D ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
18:25:34.0390 1920 nvnetbus - ok
18:25:34.0421 1920 [ FFD30DAAF62D605069F6EB42D2E807C3 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:25:34.0453 1920 NVSvc - ok
18:25:34.0546 1920 [ 210EE09CB9C2655E55BD48D851369DC1 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:25:34.0609 1920 nvUpdatusService - ok
18:25:34.0640 1920 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:25:34.0843 1920 NwlnkFlt - ok
18:25:34.0875 1920 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:25:35.0046 1920 NwlnkFwd - ok
18:25:35.0140 1920 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:25:35.0171 1920 odserv - ok
18:25:35.0234 1920 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:25:35.0250 1920 ose - ok
18:25:35.0296 1920 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
18:25:35.0453 1920 Parport - ok
18:25:35.0468 1920 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:25:35.0609 1920 PartMgr - ok
18:25:35.0640 1920 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:25:35.0828 1920 ParVdm - ok
18:25:35.0859 1920 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:25:36.0000 1920 PCI - ok
18:25:36.0000 1920 PCIDump - ok
18:25:36.0015 1920 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:25:36.0203 1920 PCIIde - ok
18:25:36.0234 1920 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:25:36.0390 1920 Pcmcia - ok
18:25:36.0390 1920 PDCOMP - ok
18:25:36.0406 1920 PDFRAME - ok
18:25:36.0421 1920 PDRELI - ok
18:25:36.0421 1920 PDRFRAME - ok
18:25:36.0437 1920 perc2 - ok
18:25:36.0437 1920 perc2hib - ok
18:25:36.0468 1920 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:25:36.0500 1920 PlugPlay - ok
18:25:36.0546 1920 [ 205E1B699FD3F2F9B036EEA2EC30C620 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
18:25:36.0562 1920 PnkBstrA - ok
18:25:36.0593 1920 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:25:36.0734 1920 PolicyAgent - ok
18:25:36.0765 1920 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:25:36.0921 1920 PptpMiniport - ok
18:25:36.0953 1920 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
18:25:37.0109 1920 Processor - ok
18:25:37.0109 1920 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:25:37.0359 1920 ProtectedStorage - ok
18:25:37.0375 1920 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:25:37.0796 1920 PSched - ok
18:25:37.0812 1920 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:25:38.0187 1920 Ptilink - ok
18:25:38.0203 1920 ql1080 - ok
18:25:38.0203 1920 Ql10wnt - ok
18:25:38.0218 1920 ql12160 - ok
18:25:38.0218 1920 ql1240 - ok
18:25:38.0234 1920 ql1280 - ok
18:25:38.0250 1920 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:25:38.0515 1920 RasAcd - ok
18:25:38.0546 1920 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:25:38.0796 1920 RasAuto - ok
18:25:38.0843 1920 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:25:38.0953 1920 Rasirda - ok
18:25:38.0984 1920 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:25:39.0171 1920 Rasl2tp - ok
18:25:39.0218 1920 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:25:39.0437 1920 RasMan - ok
18:25:39.0453 1920 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:25:39.0640 1920 RasPppoe - ok
18:25:39.0656 1920 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:25:39.0906 1920 Raspti - ok
18:25:39.0968 1920 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:25:40.0187 1920 Rdbss - ok
18:25:40.0203 1920 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:25:40.0484 1920 RDPCDD - ok
18:25:40.0546 1920 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:25:40.0578 1920 RDPWD - ok
18:25:40.0609 1920 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:25:40.0828 1920 RDSessMgr - ok
18:25:40.0875 1920 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:25:41.0109 1920 redbook - ok
18:25:41.0171 1920 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:25:41.0390 1920 RemoteAccess - ok
18:25:41.0468 1920 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:25:41.0703 1920 RpcLocator - ok
18:25:41.0718 1920 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:25:41.0781 1920 RpcSs - ok
18:25:41.0828 1920 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:25:42.0093 1920 RSVP - ok
18:25:42.0109 1920 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:25:42.0296 1920 SamSs - ok
18:25:42.0343 1920 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:25:42.0546 1920 SCardSvr - ok
18:25:42.0609 1920 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:25:42.0812 1920 Schedule - ok
18:25:42.0843 1920 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:25:43.0046 1920 Secdrv - ok
18:25:43.0078 1920 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:25:43.0265 1920 seclogon - ok
18:25:43.0296 1920 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
18:25:43.0515 1920 SENS - ok
18:25:43.0531 1920 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
18:25:43.0734 1920 serenum - ok
18:25:43.0781 1920 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
18:25:44.0000 1920 Serial - ok
18:25:44.0046 1920 SetupNTGLM7X - ok
18:25:44.0078 1920 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:25:44.0281 1920 Sfloppy - ok
18:25:44.0359 1920 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:25:44.0640 1920 SharedAccess - ok
18:25:44.0703 1920 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:25:44.0750 1920 ShellHWDetection - ok
18:25:44.0765 1920 Simbad - ok
18:25:44.0781 1920 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:25:44.0937 1920 SLIP - ok
18:25:44.0953 1920 Sparrow - ok
18:25:44.0984 1920 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:25:45.0156 1920 splitter - ok
18:25:45.0187 1920 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:25:45.0218 1920 Spooler - ok
18:25:45.0250 1920 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:25:45.0437 1920 sr - ok
18:25:45.0484 1920 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
18:25:45.0656 1920 srservice - ok
18:25:45.0687 1920 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:25:45.0718 1920 Srv - ok
18:25:45.0750 1920 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:25:45.0906 1920 SSDPSRV - ok
18:25:45.0921 1920 Steam Client Service - ok
18:25:45.0984 1920 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:25:46.0171 1920 stisvc - ok
18:25:46.0187 1920 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:25:46.0343 1920 streamip - ok
18:25:46.0359 1920 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:25:46.0515 1920 swenum - ok
18:25:46.0546 1920 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:25:46.0718 1920 swmidi - ok
18:25:46.0718 1920 SwPrv - ok
18:25:46.0734 1920 symc810 - ok
18:25:46.0750 1920 symc8xx - ok
18:25:46.0750 1920 sym_hi - ok
18:25:46.0765 1920 sym_u3 - ok
18:25:46.0796 1920 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:25:46.0937 1920 sysaudio - ok
18:25:46.0984 1920 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:25:47.0125 1920 SysmonLog - ok
18:25:47.0171 1920 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:25:47.0328 1920 TapiSrv - ok
18:25:47.0359 1920 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:25:47.0390 1920 Tcpip - ok
18:25:47.0421 1920 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:25:47.0562 1920 TDPIPE - ok
18:25:47.0578 1920 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:25:47.0734 1920 TDTCP - ok
18:25:47.0750 1920 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:25:47.0906 1920 TermDD - ok
18:25:47.0953 1920 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
18:25:48.0109 1920 TermService - ok
18:25:48.0125 1920 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:25:48.0156 1920 Themes - ok
18:25:48.0156 1920 TosIde - ok
18:25:48.0203 1920 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:25:48.0359 1920 TrkWks - ok
18:25:48.0390 1920 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:25:48.0546 1920 Udfs - ok
18:25:48.0546 1920 ultra - ok
18:25:48.0625 1920 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:25:48.0765 1920 Update - ok
18:25:48.0796 1920 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
18:25:48.0953 1920 upnphost - ok
18:25:48.0968 1920 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
18:25:49.0109 1920 UPS - ok
18:25:49.0125 1920 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:25:49.0265 1920 usbccgp - ok
18:25:49.0296 1920 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:25:49.0453 1920 usbehci - ok
18:25:49.0468 1920 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:25:49.0640 1920 usbhub - ok
18:25:49.0656 1920 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:25:49.0796 1920 usbohci - ok
18:25:49.0812 1920 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:25:49.0968 1920 USBSTOR - ok
18:25:49.0984 1920 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
18:25:50.0125 1920 usbvideo - ok
18:25:50.0140 1920 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:25:50.0281 1920 VgaSave - ok
18:25:50.0296 1920 ViaIde - ok
18:25:50.0328 1920 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:25:50.0468 1920 VolSnap - ok
18:25:50.0515 1920 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:25:50.0671 1920 VSS - ok
18:25:50.0703 1920 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
18:25:50.0843 1920 W32Time - ok
18:25:50.0890 1920 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:25:51.0031 1920 Wanarp - ok
18:25:51.0046 1920 WDICA - ok
18:25:51.0078 1920 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:25:51.0218 1920 wdmaud - ok
18:25:51.0250 1920 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:25:51.0406 1920 WebClient - ok
18:25:51.0500 1920 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:25:51.0640 1920 winmgmt - ok
18:25:51.0703 1920 [ 6199B2AE3F9DB9CB6DB230471A1DC601 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
18:25:51.0875 1920 WmdmPmSN - ok
18:25:51.0921 1920 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:25:52.0062 1920 WmiApSrv - ok
18:25:52.0125 1920 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:25:52.0171 1920 WPFFontCache_v0400 - ok
18:25:52.0187 1920 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:25:52.0390 1920 WS2IFSL - ok
18:25:52.0437 1920 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:25:52.0578 1920 wscsvc - ok
18:25:52.0609 1920 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:25:52.0750 1920 WSTCODEC - ok
18:25:52.0765 1920 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:25:52.0921 1920 wuauserv - ok
18:25:52.0984 1920 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:25:53.0140 1920 WZCSVC - ok
18:25:53.0171 1920 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:25:53.0328 1920 xmlprov - ok
18:25:53.0343 1920 ================ Scan global ===============================
18:25:53.0375 1920 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
18:25:53.0421 1920 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:25:53.0421 1920 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:25:53.0453 1920 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
18:25:53.0453 1920 [Global] - ok

pokračování:
18:25:53.0453 1920 ================ Scan MBR ==================================
18:25:53.0468 1920 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
18:25:53.0625 1920 \Device\Harddisk0\DR0 - ok
18:25:53.0640 1920 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR2
18:25:54.0781 1920 \Device\Harddisk1\DR2 - ok
18:25:54.0781 1920 ================ Scan VBR ==================================
18:25:54.0781 1920 [ CD877983101404708A4B98B7A696F591 ] \Device\Harddisk0\DR0\Partition1
18:25:54.0781 1920 \Device\Harddisk0\DR0\Partition1 - ok
18:25:54.0796 1920 [ D3D94B2B7C9EA181E6AFFD53062A1D37 ] \Device\Harddisk1\DR2\Partition1
18:25:54.0796 1920 \Device\Harddisk1\DR2\Partition1 - ok
18:25:54.0796 1920 ============================================================
18:25:54.0796 1920 Scan finished
18:25:54.0796 1920 ============================================================
18:25:54.0812 3628 Detected object count: 0
18:25:54.0812 3628 Actual detected object count: 0
18:26:32.0515 0364 ============================================================
18:26:32.0515 0364 Scan started
18:26:32.0515 0364 Mode: Manual; SigCheck; TDLFS;
18:26:32.0515 0364 ============================================================
18:26:32.0703 0364 ================ Scan system memory ========================
18:26:32.0703 0364 System memory - ok
18:26:32.0703 0364 ================ Scan services =============================
18:26:33.0046 0364 Abiosdsk - ok
18:26:33.0062 0364 abp480n5 - ok
18:26:33.0109 0364 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:26:33.0265 0364 ACPI - ok
18:26:33.0296 0364 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
18:26:33.0515 0364 ACPIEC - ok
18:26:33.0578 0364 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:26:33.0625 0364 AdobeFlashPlayerUpdateSvc - ok
18:26:33.0640 0364 adpu160m - ok
18:26:33.0656 0364 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
18:26:33.0875 0364 aec - ok
18:26:33.0906 0364 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
18:26:33.0921 0364 AFD - ok
18:26:33.0921 0364 Aha154x - ok
18:26:33.0937 0364 aic78u2 - ok
18:26:33.0968 0364 aic78xx - ok
18:26:33.0984 0364 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
18:26:34.0171 0364 Alerter - ok
18:26:34.0187 0364 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
18:26:34.0359 0364 ALG - ok
18:26:34.0359 0364 AliIde - ok
18:26:34.0390 0364 [ 59301936898AE62245A6F09C0ABA9475 ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
18:26:34.0406 0364 AmdK8 - ok
18:26:34.0421 0364 amsint - ok
18:26:34.0437 0364 AppMgmt - ok
18:26:34.0453 0364 asc - ok
18:26:34.0453 0364 asc3350p - ok
18:26:34.0546 0364 asc3550 - ok
18:26:34.0703 0364 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:26:34.0734 0364 aspnet_state - ok
18:26:34.0750 0364 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:26:34.0921 0364 AsyncMac - ok
18:26:34.0937 0364 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
18:26:35.0093 0364 atapi - ok
18:26:35.0093 0364 Atdisk - ok
18:26:35.0109 0364 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:26:35.0296 0364 Atmarpc - ok
18:26:35.0328 0364 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
18:26:35.0703 0364 AudioSrv - ok
18:26:35.0796 0364 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
18:26:36.0046 0364 audstub - ok
18:26:36.0046 0364 AVGIDSHX - ok
18:26:36.0062 0364 AVGIDSShim - ok
18:26:36.0093 0364 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
18:26:36.0328 0364 Beep - ok
18:26:36.0375 0364 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
18:26:36.0531 0364 BITS - ok
18:26:36.0546 0364 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
18:26:36.0562 0364 Browser - ok
18:26:36.0656 0364 catchme - ok
18:26:36.0687 0364 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
18:26:36.0921 0364 cbidf2k - ok
18:26:36.0937 0364 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:26:37.0171 0364 CCDECODE - ok
18:26:37.0187 0364 cd20xrnt - ok
18:26:37.0203 0364 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
18:26:37.0531 0364 Cdaudio - ok
18:26:37.0578 0364 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
18:26:37.0812 0364 Cdfs - ok
18:26:37.0843 0364 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:26:38.0046 0364 Cdrom - ok
18:26:38.0046 0364 Changer - ok
18:26:38.0078 0364 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
18:26:38.0281 0364 CiSvc - ok
18:26:38.0296 0364 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
18:26:38.0500 0364 ClipSrv - ok
18:26:38.0546 0364 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:26:38.0578 0364 clr_optimization_v2.0.50727_32 - ok
18:26:38.0609 0364 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:26:38.0640 0364 clr_optimization_v4.0.30319_32 - ok
18:26:38.0640 0364 CmdIde - ok
18:26:38.0640 0364 COMSysApp - ok
18:26:38.0656 0364 Cpqarray - ok
18:26:38.0687 0364 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
18:26:38.0859 0364 CryptSvc - ok
18:26:38.0859 0364 dac2w2k - ok
18:26:38.0875 0364 dac960nt - ok
18:26:38.0906 0364 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
18:26:38.0937 0364 DcomLaunch - ok
18:26:38.0984 0364 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
18:26:39.0125 0364 Dhcp - ok
18:26:39.0140 0364 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
18:26:39.0296 0364 Disk - ok
18:26:39.0296 0364 dmadmin - ok
18:26:39.0375 0364 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
18:26:39.0546 0364 dmboot - ok
18:26:39.0593 0364 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
18:26:39.0734 0364 dmio - ok
18:26:39.0781 0364 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
18:26:40.0031 0364 dmload - ok
18:26:40.0078 0364 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
18:26:40.0265 0364 dmserver - ok
18:26:40.0296 0364 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
18:26:40.0500 0364 DMusic - ok
18:26:40.0531 0364 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
18:26:40.0546 0364 Dnscache - ok
18:26:40.0593 0364 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
18:26:40.0781 0364 Dot3svc - ok
18:26:40.0781 0364 dpti2o - ok
18:26:40.0812 0364 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
18:26:40.0953 0364 drmkaud - ok
18:26:40.0984 0364 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
18:26:41.0000 0364 eamon - ok
18:26:41.0015 0364 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
18:26:41.0171 0364 EapHost - ok
18:26:41.0171 0364 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
18:26:41.0218 0364 ehdrv - ok
18:26:41.0359 0364 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
18:26:41.0421 0364 ekrn - ok
18:26:41.0437 0364 [ CF1108161DFEDD82AE811307A3763E1C ] epfwtdir C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
18:26:41.0562 0364 epfwtdir - ok
18:26:41.0593 0364 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
18:26:41.0812 0364 ERSvc - ok
18:26:41.0843 0364 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
18:26:41.0890 0364 Eventlog - ok
18:26:41.0921 0364 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
18:26:41.0937 0364 EventSystem - ok
18:26:42.0000 0364 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
18:26:42.0265 0364 Fastfat - ok
18:26:42.0281 0364 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
18:26:42.0296 0364 FastUserSwitchingCompatibility - ok
18:26:42.0328 0364 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
18:26:42.0468 0364 Fdc - ok
18:26:42.0484 0364 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
18:26:42.0656 0364 Fips - ok
18:26:42.0734 0364 [ ACEFEEA621DCA62EFB7A7EEA59F5E91B ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:26:43.0203 0364 FLEXnet Licensing Service - ok
18:26:43.0265 0364 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:26:43.0468 0364 Flpydisk - ok
18:26:43.0515 0364 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
18:26:43.0671 0364 FltMgr - ok
18:26:43.0718 0364 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:26:43.0734 0364 FontCache3.0.0.0 - ok
18:26:43.0765 0364 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:26:43.0968 0364 Fs_Rec - ok
18:26:43.0984 0364 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:26:44.0171 0364 Ftdisk - ok
18:26:44.0171 0364 GMSIPCI - ok
18:26:44.0203 0364 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:26:44.0343 0364 Gpc - ok
18:26:44.0390 0364 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:26:44.0531 0364 HDAudBus - ok
18:26:44.0593 0364 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:26:44.0750 0364 helpsvc - ok
18:26:44.0750 0364 HidServ - ok
18:26:44.0781 0364 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
18:26:44.0937 0364 hkmsvc - ok
18:26:44.0937 0364 hpn - ok
18:26:44.0984 0364 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
18:26:45.0000 0364 HTTP - ok
18:26:45.0015 0364 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
18:26:45.0156 0364 HTTPFilter - ok
18:26:45.0171 0364 i2omgmt - ok
18:26:45.0171 0364 i2omp - ok
18:26:45.0203 0364 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:26:45.0359 0364 i8042prt - ok
18:26:45.0421 0364 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:26:45.0468 0364 idsvc - ok
18:26:45.0500 0364 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
18:26:45.0703 0364 Imapi - ok
18:26:45.0781 0364 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
18:26:46.0031 0364 ImapiService - ok
18:26:46.0046 0364 ini910u - ok
18:26:46.0156 0364 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
18:26:46.0390 0364 IntcAzAudAddService - ok
18:26:46.0390 0364 IntelIde - ok
18:26:46.0421 0364 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
18:26:46.0593 0364 Ip6Fw - ok
18:26:46.0640 0364 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:26:46.0890 0364 IpFilterDriver - ok
18:26:46.0937 0364 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:26:47.0140 0364 IpInIp - ok
18:26:47.0171 0364 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:26:47.0375 0364 IpNat - ok
18:26:47.0390 0364 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:26:47.0671 0364 IPSec - ok
18:26:47.0718 0364 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
18:26:48.0078 0364 irda - ok
18:26:48.0093 0364 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
18:26:48.0281 0364 IRENUM - ok
18:26:48.0312 0364 [ 8024EA8C5B2D2A4D201F418B0AADB804 ] Irmon C:\WINDOWS\System32\irmon.dll
18:26:48.0484 0364 Irmon - ok
18:26:48.0515 0364 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
18:26:48.0609 0364 irsir - ok
18:26:48.0640 0364 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:26:48.0859 0364 isapnp - ok
18:26:48.0875 0364 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:26:49.0093 0364 Kbdclass - ok
18:26:49.0140 0364 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
18:26:49.0390 0364 kmixer - ok
18:26:49.0437 0364 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
18:26:49.0484 0364 KSecDD - ok
18:26:49.0531 0364 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
18:26:49.0578 0364 lanmanserver - ok
18:26:49.0609 0364 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
18:26:49.0640 0364 lanmanworkstation - ok
18:26:49.0640 0364 lbrtfdc - ok
18:26:49.0687 0364 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
18:26:49.0906 0364 LmHosts - ok
18:26:49.0921 0364 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
18:26:50.0140 0364 Messenger - ok
18:26:50.0203 0364 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:26:50.0218 0364 Microsoft Office Groove Audit Service - ok
18:26:50.0281 0364 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
18:26:50.0703 0364 mnmdd - ok
18:26:50.0781 0364 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
18:26:51.0312 0364 mnmsrvc - ok
18:26:51.0328 0364 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
18:26:51.0921 0364 Modem - ok
18:26:51.0953 0364 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:26:52.0234 0364 Mouclass - ok
18:26:52.0265 0364 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
18:26:52.0500 0364 MountMgr - ok
18:26:52.0500 0364 mraid35x - ok
18:26:52.0531 0364 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:26:52.0781 0364 MRxDAV - ok
18:26:52.0828 0364 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:26:52.0859 0364 MRxSmb - ok
18:26:52.0875 0364 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
18:26:53.0093 0364 MSDTC - ok
18:26:53.0125 0364 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
18:26:53.0468 0364 Msfs - ok
18:26:53.0546 0364 MSIServer - ok
18:26:53.0578 0364 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:26:54.0109 0364 MSKSSRV - ok
18:26:54.0140 0364 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:26:54.0562 0364 MSPCLOCK - ok
18:26:54.0593 0364 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
18:26:55.0125 0364 MSPQM - ok
18:26:55.0140 0364 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:26:55.0890 0364 mssmbios - ok
18:26:55.0906 0364 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
18:26:56.0375 0364 MSTEE - ok
18:26:56.0437 0364 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
18:26:56.0468 0364 Mup - ok
18:26:56.0500 0364 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:26:56.0968 0364 NABTSFEC - ok
18:26:57.0109 0364 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
18:26:57.0656 0364 napagent - ok
18:26:57.0781 0364 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
18:26:58.0218 0364 NDIS - ok
18:26:58.0250 0364 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:26:58.0562 0364 NdisIP - ok
18:26:58.0593 0364 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:26:58.0609 0364 NdisTapi - ok
18:26:58.0656 0364 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:26:59.0078 0364 Ndisuio - ok
18:26:59.0125 0364 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:26:59.0671 0364 NdisWan - ok
18:26:59.0750 0364 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
18:26:59.0890 0364 NDProxy - ok
18:26:59.0921 0364 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
18:27:00.0750 0364 NetBIOS - ok
18:27:00.0796 0364 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
18:27:01.0000 0364 NetBT - ok
18:27:01.0046 0364 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
18:27:01.0328 0364 NetDDE - ok
18:27:01.0359 0364 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
18:27:01.0734 0364 NetDDEdsdm - ok
18:27:01.0765 0364 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
18:27:01.0937 0364 Netlogon - ok
18:27:01.0968 0364 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
18:27:02.0187 0364 Netman - ok
18:27:02.0218 0364 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:27:02.0250 0364 NetTcpPortSharing - ok
18:27:02.0281 0364 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
18:27:02.0312 0364 Nla - ok
18:27:02.0328 0364 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
18:27:02.0484 0364 Npfs - ok
18:27:02.0484 0364 NTACCESS - ok
18:27:02.0546 0364 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
18:27:02.0828 0364 Ntfs - ok
18:27:02.0843 0364 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
18:27:03.0109 0364 NtLmSsp - ok
18:27:03.0171 0364 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
18:27:03.0375 0364 NtmsSvc - ok
18:27:03.0406 0364 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
18:27:03.0796 0364 Null - ok
18:27:04.0531 0364 [ 68B8C35782FFD20973524F748234B5A9 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:27:05.0171 0364 nv - ok
18:27:05.0203 0364 [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvata C:\WINDOWS\system32\DRIVERS\nvata.sys
18:27:05.0218 0364 nvata - ok
18:27:05.0234 0364 [ CC34564BCA235EBAD8B308D871EFA2DF ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
18:27:05.0265 0364 NVENETFD - ok
18:27:05.0343 0364 [ 46FDB8D07DD4FC81093B0ACB243A525D ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
18:27:05.0390 0364 nvnetbus - ok
18:27:05.0437 0364 [ FFD30DAAF62D605069F6EB42D2E807C3 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
18:27:05.0625 0364 NVSvc - ok
18:27:05.0812 0364 [ 210EE09CB9C2655E55BD48D851369DC1 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
18:27:05.0953 0364 nvUpdatusService - ok
18:27:06.0031 0364 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:27:06.0359 0364 NwlnkFlt - ok
18:27:06.0375 0364 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:27:06.0921 0364 NwlnkFwd - ok
18:27:07.0265 0364 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:27:07.0484 0364 odserv - ok
18:27:07.0578 0364 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:27:07.0765 0364 ose - ok
18:27:07.0984 0364 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
18:27:08.0421 0364 Parport - ok
18:27:08.0421 0364 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
18:27:09.0000 0364 PartMgr - ok
18:27:09.0093 0364 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
18:27:10.0125 0364 ParVdm - ok
18:27:10.0281 0364 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
18:27:11.0296 0364 PCI - ok
18:27:11.0375 0364 PCIDump - ok
18:27:11.0531 0364 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
18:27:12.0000 0364 PCIIde - ok
18:27:12.0046 0364 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
18:27:12.0328 0364 Pcmcia - ok
18:27:12.0343 0364 PDCOMP - ok
18:27:12.0359 0364 PDFRAME - ok
18:27:12.0421 0364 PDRELI - ok
18:27:12.0421 0364 PDRFRAME - ok
18:27:12.0437 0364 perc2 - ok
18:27:12.0515 0364 perc2hib - ok
18:27:12.0593 0364 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
18:27:12.0718 0364 PlugPlay - ok
18:27:12.0734 0364 [ 205E1B699FD3F2F9B036EEA2EC30C620 ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
18:27:12.0765 0364 PnkBstrA - ok
18:27:12.0796 0364 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
18:27:13.0015 0364 PolicyAgent - ok
18:27:13.0062 0364 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:27:13.0453 0364 PptpMiniport - ok
18:27:13.0484 0364 [ 7EB15DCE4EC3A0220BD796A15C18186E ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
18:27:13.0734 0364 Processor - ok
18:27:13.0750 0364 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
18:27:14.0171 0364 ProtectedStorage - ok
18:27:14.0203 0364 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
18:27:14.0625 0364 PSched - ok
18:27:14.0656 0364 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:27:15.0140 0364 Ptilink - ok
18:27:15.0171 0364 ql1080 - ok
18:27:15.0187 0364 Ql10wnt - ok
18:27:15.0203 0364 ql12160 - ok
18:27:15.0218 0364 ql1240 - ok
18:27:15.0250 0364 ql1280 - ok
18:27:15.0296 0364 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:27:15.0718 0364 RasAcd - ok
18:27:15.0781 0364 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
18:27:16.0000 0364 RasAuto - ok
18:27:16.0031 0364 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
18:27:16.0156 0364 Rasirda - ok
18:27:16.0203 0364 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:27:16.0390 0364 Rasl2tp - ok
18:27:16.0437 0364 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
18:27:16.0687 0364 RasMan - ok
18:27:16.0703 0364 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:27:16.0921 0364 RasPppoe - ok
18:27:16.0937 0364 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
18:27:17.0156 0364 Raspti - ok
18:27:17.0203 0364 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:27:17.0406 0364 Rdbss - ok
18:27:17.0421 0364 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:27:17.0656 0364 RDPCDD - ok
18:27:17.0687 0364 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
18:27:17.0703 0364 RDPWD - ok
18:27:17.0750 0364 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
18:27:17.0953 0364 RDSessMgr - ok
18:27:17.0968 0364 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
18:27:18.0171 0364 redbook - ok
18:27:18.0218 0364 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
18:27:18.0421 0364 RemoteAccess - ok
18:27:18.0453 0364 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
18:27:18.0671 0364 RpcLocator - ok
18:27:18.0687 0364 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
18:27:18.0734 0364 RpcSs - ok
18:27:18.0781 0364 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
18:27:19.0015 0364 RSVP - ok
18:27:19.0046 0364 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
18:27:19.0218 0364 SamSs - ok
18:27:19.0234 0364 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
18:27:19.0406 0364 SCardSvr - ok
18:27:19.0437 0364 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
18:27:19.0718 0364 Schedule - ok
18:27:19.0750 0364 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:27:19.0984 0364 Secdrv - ok
18:27:20.0015 0364 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
18:27:20.0296 0364 seclogon - ok
18:27:20.0312 0364 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
18:27:20.0531 0364 SENS - ok
18:27:20.0562 0364 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
18:27:20.0734 0364 serenum - ok
18:27:20.0750 0364 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
18:27:20.0953 0364 Serial - ok
18:27:20.0984 0364 SetupNTGLM7X - ok
18:27:21.0000 0364 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
18:27:21.0421 0364 Sfloppy - ok
18:27:21.0515 0364 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
18:27:21.0953 0364 SharedAccess - ok
18:27:21.0984 0364 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
18:27:22.0031 0364 ShellHWDetection - ok
18:27:22.0031 0364 Simbad - ok
18:27:22.0062 0364 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:27:22.0531 0364 SLIP - ok
18:27:22.0625 0364 Sparrow - ok
18:27:22.0656 0364 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
18:27:22.0921 0364 splitter - ok
18:27:22.0953 0364 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
18:27:22.0968 0364 Spooler - ok
18:27:23.0000 0364 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
18:27:23.0187 0364 sr - ok
18:27:23.0234 0364 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
18:27:23.0421 0364 srservice - ok
18:27:23.0453 0364 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
18:27:23.0484 0364 Srv - ok
18:27:23.0515 0364 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
18:27:23.0687 0364 SSDPSRV - ok
18:27:23.0703 0364 Steam Client Service - ok
18:27:23.0765 0364 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
18:27:23.0968 0364 stisvc - ok
18:27:23.0968 0364 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:27:24.0171 0364 streamip - ok
18:27:24.0187 0364 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
18:27:24.0437 0364 swenum - ok
18:27:24.0468 0364 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
18:27:24.0687 0364 swmidi - ok
18:27:24.0687 0364 SwPrv - ok
18:27:24.0703 0364 symc810 - ok
18:27:24.0718 0364 symc8xx - ok
18:27:24.0718 0364 sym_hi - ok
18:27:24.0750 0364 sym_u3 - ok
18:27:24.0781 0364 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
18:27:25.0000 0364 sysaudio - ok
18:27:25.0015 0364 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
18:27:25.0234 0364 SysmonLog - ok
18:27:25.0296 0364 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
18:27:25.0515 0364 TapiSrv - ok
18:27:25.0546 0364 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:27:25.0593 0364 Tcpip - ok
18:27:25.0625 0364 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
18:27:25.0968 0364 TDPIPE - ok
18:27:26.0031 0364 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
18:27:26.0609 0364 TDTCP - ok
18:27:26.0671 0364 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
18:27:27.0203 0364 TermDD - ok
18:27:27.0343 0364 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
18:27:27.0640 0364 TermService - ok
18:27:27.0656 0364 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
18:27:27.0671 0364 Themes - ok
18:27:27.0687 0364 TosIde - ok
18:27:27.0718 0364 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
18:27:27.0921 0364 TrkWks - ok
18:27:27.0968 0364 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
18:27:28.0171 0364 Udfs - ok
18:27:28.0187 0364 ultra - ok
18:27:28.0250 0364 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
18:27:28.0484 0364 Update - ok
18:27:28.0546 0364 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
18:27:28.0828 0364 upnphost - ok
18:27:28.0875 0364 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
18:27:29.0093 0364 UPS - ok
18:27:29.0109 0364 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:27:29.0390 0364 usbccgp - ok
18:27:29.0437 0364 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:27:29.0671 0364 usbehci - ok
18:27:29.0687 0364 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:27:29.0953 0364 usbhub - ok
18:27:29.0968 0364 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
18:27:30.0359 0364 usbohci - ok
18:27:30.0375 0364 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:27:30.0875 0364 USBSTOR - ok
18:27:30.0906 0364 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
18:27:31.0562 0364 usbvideo - ok
18:27:31.0593 0364 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
18:27:31.0859 0364 VgaSave - ok
18:27:31.0859 0364 ViaIde - ok
18:27:31.0890 0364 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
18:27:32.0218 0364 VolSnap - ok
18:27:32.0281 0364 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
18:27:32.0859 0364 VSS - ok
18:27:32.0890 0364 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
18:27:33.0625 0364 W32Time - ok
18:27:33.0656 0364 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:27:34.0203 0364 Wanarp - ok
18:27:34.0218 0364 WDICA - ok
18:27:34.0265 0364 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
18:27:34.0515 0364 wdmaud - ok
18:27:34.0546 0364 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
18:27:35.0000 0364 WebClient - ok
18:27:35.0125 0364 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
18:27:35.0375 0364 winmgmt - ok
18:27:35.0437 0364 [ 6199B2AE3F9DB9CB6DB230471A1DC601 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
18:27:35.0671 0364 WmdmPmSN - ok
18:27:35.0718 0364 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
18:27:35.0953 0364 WmiApSrv - ok
18:27:36.0015 0364 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:27:36.0078 0364 WPFFontCache_v0400 - ok
18:27:36.0125 0364 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
18:27:36.0515 0364 WS2IFSL - ok
18:27:36.0546 0364 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
18:27:36.0796 0364 wscsvc - ok
18:27:36.0828 0364 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:27:37.0062 0364 WSTCODEC - ok
18:27:37.0093 0364 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
18:27:37.0312 0364 wuauserv - ok
18:27:37.0375 0364 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
18:27:37.0640 0364 WZCSVC - ok
18:27:37.0687 0364 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
18:27:37.0968 0364 xmlprov - ok
18:27:38.0000 0364 ================ Scan global ===============================
18:27:38.0031 0364 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
18:27:38.0062 0364 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:27:38.0093 0364 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
18:27:38.0125 0364 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
18:27:38.0125 0364 [Global] - ok
18:27:38.0125 0364 ================ Scan MBR ==================================
18:27:38.0140 0364 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
18:27:38.0328 0364 \Device\Harddisk0\DR0 - ok
18:27:38.0328 0364 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk1\DR2
18:27:40.0265 0364 \Device\Harddisk1\DR2 - ok
18:27:40.0265 0364 ================ Scan VBR ==================================
18:27:40.0265 0364 [ CD877983101404708A4B98B7A696F591 ] \Device\Harddisk0\DR0\Partition1
18:27:40.0265 0364 \Device\Harddisk0\DR0\Partition1 - ok
18:27:40.0281 0364 [ D3D94B2B7C9EA181E6AFFD53062A1D37 ] \Device\Harddisk1\DR2\Partition1
18:27:40.0281 0364 \Device\Harddisk1\DR2\Partition1 - ok
18:27:40.0281 0364 ============================================================
18:27:40.0281 0364 Scan finished
18:27:40.0281 0364 ============================================================
18:27:40.0312 4008 Detected object count: 0
18:27:40.0312 4008 Actual detected object count: 0

Promiň, že je to tam dvakrát.

Budu mít přístup k Opeře (prohlížeč). Abych si mohl furt pročítat a udělal to správně. V životě jsem tohle nedělal, tak s tím nemám zkušenost

No zatím to stahuju, mám z toho docela bobky, ale uvidíme jak to dopadne, to nějak půjde. Musím se naučit něco novýho.

jj dořešíme to zítra. Jestli tě něco napadane, já si zatím si vytisknu tamto, a kdyby nebal jiná možnost, pustil bych se do toho. Jsem vděnej za každnou radu.