PC jsem na noc dal do úsporného režimu, takže jsem ho zatím nerestartoval.
(Zřejmě neaktivní) ComboFix v DOS-oknu jsem ukončil přes Procesy.
Situace je v podstatě stejná jako předtím, deaktivace okna je zhruba stejně častá, stejně se 100 % zatížením, viz screen.
Tady je log z Rkilll:
Rkill 2.6.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 08/18/2013 09:51:11 PM in x86 mode.
Windows Version: Windows 7 Professional Service Pack 1
Checking for Windows services to stop:
* No malware services found to stop.
Checking for processes to terminate:
* No malware processes found to kill.
Checking Registry for malware related settings:
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\.exe\shell found and deleted!
Performing miscellaneous checks:
* No issues found.
Checking Windows Service Integrity:
* No issues found.
Searching for Missing Digital Signatures:
* No issues found.
Checking HOSTS File:
* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.
* HOSTS file entries found:
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
20 out of 15495 HOSTS entries shown.
Please review HOSTS file for further entries.
Program finished at: 08/18/2013 09:53:06 PM
Execution time: 0 hours(s), 1 minute(s), and 55 seconds(s)
----------------------------------------------------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Samovolná deaktivace aktivního okna ve Win7
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Samovolná deaktivace aktivního okna ve Win7
stáhni a spusť http://www.sur-la-toile.com/RogueKiller/RogueKiller.exeněkteré Antiviry jej mohou blokovat, proto je budeš muset na tu chvíli odstavit
- Zvol možnost Prohledat a poté Smazat a následně Zpráva - otevře se log, ten sem vlož
- Pak klikni na Oprava host a Zpráva - otevře se log, ten sem vlož
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Samovolná deaktivace aktivního okna ve Win7
Bohužel píšu z jiného PC, protože zatížení CPU se drželo na 100 % (mezi vpnagent.exe a svchost.exe - screen nebo kolísá okolo 50 %) a nefunguje připojení k internetu - sice vše vypadá v pořádku, ale Firefox se nepřipojí a příkaz ping v CMD je také nefunkční.
Podařilo se mi alespoň zkopírovat logy na flashdisk.
Log z RogueKiller.exe H:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukas [Práva správce]
Mód : Oprava HOSTS -- Datum : 08/19/2013 11:34:31
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_08192013_113431.txt >>
RKreport[0]_D_08192013_113352.txt;RKreport[0]_S_08192013_113337.txt
Log z RogueKiller.exe D:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukas [Práva správce]
Mód : Odebrat -- Datum : 08/19/2013 11:33:52
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NAHRAZENO (1)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 2 ¤¤¤
[V2][SUSP PATH] {0CB60760-8DBB-4C8D-8A42-8364B7301CD3} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> VYMAZÁNO
[V2][SUSP PATH] {4FD09ED8-A6A1-4166-8A5F-986DABB859B8} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> VYMAZÁNO
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] IRP[IRP_MJ_CREATE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_CLOSE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_POWER] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_SYSTEM_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_PNP] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22ZCT0 ATA Device +++++
--- User ---
[MBR] 6fdf244e36368fdaea01bc374641d419
[BSP] 7f284ecc6b033bef003b3acaf5b7f3cf : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 69900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 143362048 | Size: 235243 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_08192013_113352.txt >>
RKreport[0]_S_08192013_113337.txt
Log z RogueKiller.exe S:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukas [Práva správce]
Mód : Kontrola -- Datum : 08/19/2013 11:33:37
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 2 ¤¤¤
[V2][SUSP PATH] {0CB60760-8DBB-4C8D-8A42-8364B7301CD3} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> NALEZENO
[V2][SUSP PATH] {4FD09ED8-A6A1-4166-8A5F-986DABB859B8} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> NALEZENO
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] IRP[IRP_MJ_CREATE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_CLOSE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_POWER] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_SYSTEM_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_PNP] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22ZCT0 ATA Device +++++
--- User ---
[MBR] 6fdf244e36368fdaea01bc374641d419
[BSP] 7f284ecc6b033bef003b3acaf5b7f3cf : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 69900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 143362048 | Size: 235243 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_08192013_113337.txt >>
------------------------------------------------------------------------------------------------
Podařilo se mi alespoň zkopírovat logy na flashdisk.
Log z RogueKiller.exe H:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukas [Práva správce]
Mód : Oprava HOSTS -- Datum : 08/19/2013 11:34:31
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 0 ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]
¤¤¤ Resetovaný HOSTS: ¤¤¤
127.0.0.1 localhost
Dokončeno : << RKreport[0]_H_08192013_113431.txt >>
RKreport[0]_D_08192013_113352.txt;RKreport[0]_S_08192013_113337.txt
Log z RogueKiller.exe D:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukas [Práva správce]
Mód : Odebrat -- Datum : 08/19/2013 11:33:52
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NAHRAZENO (1)
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 2 ¤¤¤
[V2][SUSP PATH] {0CB60760-8DBB-4C8D-8A42-8364B7301CD3} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> VYMAZÁNO
[V2][SUSP PATH] {4FD09ED8-A6A1-4166-8A5F-986DABB859B8} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> VYMAZÁNO
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] IRP[IRP_MJ_CREATE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_CLOSE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_POWER] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_SYSTEM_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_PNP] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22ZCT0 ATA Device +++++
--- User ---
[MBR] 6fdf244e36368fdaea01bc374641d419
[BSP] 7f284ecc6b033bef003b3acaf5b7f3cf : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 69900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 143362048 | Size: 235243 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_08192013_113352.txt >>
RKreport[0]_S_08192013_113337.txt
Log z RogueKiller.exe S:
RogueKiller V8.6.5 [Aug 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : Lukas [Práva správce]
Mód : Kontrola -- Datum : 08/19/2013 11:33:37
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 5 ¤¤¤
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 2 ¤¤¤
[V2][SUSP PATH] {0CB60760-8DBB-4C8D-8A42-8364B7301CD3} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> NALEZENO
[V2][SUSP PATH] {4FD09ED8-A6A1-4166-8A5F-986DABB859B8} : C:\Users\Lukas\Desktop\bin2hex.exe [x] -> NALEZENO
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] IRP[IRP_MJ_CREATE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_CLOSE] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_POWER] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_SYSTEM_CONTROL] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
[Address] IRP[IRP_MJ_PNP] : C:\Windows\system32\drivers\winhv.sys -> HOOKED ([Address] Unknown @ 0x854811E8)
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 http://www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 http://www.008k.com
127.0.0.1 008k.com
127.0.0.1 http://www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 http://www.032439.com
127.0.0.1 032439.com
127.0.0.1 http://www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 http://www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 http://www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 http://www.100888290cs.com
127.0.0.1 http://www.100sexlinks.com
127.0.0.1 100sexlinks.com
[...]
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: WDC WD3200BEVT-22ZCT0 ATA Device +++++
--- User ---
[MBR] 6fdf244e36368fdaea01bc374641d419
[BSP] 7f284ecc6b033bef003b3acaf5b7f3cf : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 69900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 143362048 | Size: 235243 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_08192013_113337.txt >>
------------------------------------------------------------------------------------------------
Re: Samovolná deaktivace aktivního okna ve Win7
pridaj kolegovi logy z TDSSKiller + ASWmbr
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Samovolná deaktivace aktivního okna ve Win7
Chápu to dobře tak, že mám stáhnout a hodit sem log z:
http://support.kaspersky.com/downloads/ ... killer.exe
a
http://www.bleepingcomputer.com/download/aswmbr/ ?
http://support.kaspersky.com/downloads/ ... killer.exe
a
http://www.bleepingcomputer.com/download/aswmbr/ ?
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Samovolná deaktivace aktivního okna ve Win7
Ano, kolega je strohý, protože rozpoznal tvoje schopnosti 
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Samovolná deaktivace aktivního okna ve Win7
Log z TDSSKiller:
19:52:21.0565 7588 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:52:23.0575 7588 ============================================================
19:52:23.0575 7588 Current date / time: 2013/08/19 19:52:23.0575
19:52:23.0575 7588 SystemInfo:
19:52:23.0575 7588
19:52:23.0575 7588 OS Version: 6.1.7601 ServicePack: 1.0
19:52:23.0575 7588 Product type: Workstation
19:52:23.0575 7588 ComputerName: LUKAS-PC
19:52:23.0575 7588 UserName: Lukas
19:52:23.0575 7588 Windows directory: C:\Windows
19:52:23.0575 7588 System windows directory: C:\Windows
19:52:23.0575 7588 Processor architecture: Intel x86
19:52:23.0575 7588 Number of processors: 2
19:52:23.0575 7588 Page size: 0x1000
19:52:23.0575 7588 Boot type: Normal boot
19:52:23.0575 7588 ============================================================
19:52:25.0545 7588 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:52:26.0395 7588 Drive \Device\Harddisk1\DR3 - Size: 0xF1800000 (3.77 Gb), SectorSize: 0x200, Cylinders: 0x1EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:52:26.0395 7588 ============================================================
19:52:26.0395 7588 \Device\Harddisk0\DR0:
19:52:26.0425 7588 MBR partitions:
19:52:26.0425 7588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:52:26.0425 7588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x8886000
19:52:26.0425 7588 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88B8800, BlocksNum 0x1CB75800
19:52:26.0425 7588 \Device\Harddisk1\DR3:
19:52:26.0425 7588 MBR partitions:
19:52:26.0425 7588 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x78BFC1
19:52:26.0425 7588 ============================================================
19:52:26.0525 7588 C: <-> \Device\Harddisk0\DR0\Partition2
19:52:26.0575 7588 D: <-> \Device\Harddisk0\DR0\Partition3
19:52:26.0575 7588 ============================================================
19:52:26.0575 7588 Initialize success
19:52:26.0575 7588 ============================================================
19:52:40.0445 4632 ============================================================
19:52:40.0445 4632 Scan started
19:52:40.0445 4632 Mode: Manual;
19:52:40.0445 4632 ============================================================
19:52:42.0245 4632 ================ Scan system memory ========================
19:52:42.0245 4632 System memory - ok
19:52:42.0245 4632 ================ Scan services =============================
19:52:42.0365 4632 [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:52:42.0365 4632 !SASCORE - ok
19:52:42.0545 4632 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:52:42.0545 4632 1394ohci - ok
19:52:42.0585 4632 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:52:42.0585 4632 ACPI - ok
19:52:42.0615 4632 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:52:42.0615 4632 AcpiPmi - ok
19:52:42.0665 4632 [ 9BC0D1B4D9CCEC2DC9F010E466738A38 ] acsock C:\Windows\system32\DRIVERS\acsock.sys
19:52:42.0665 4632 acsock - ok
19:52:42.0765 4632 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:52:42.0765 4632 AdobeARMservice - ok
19:52:42.0865 4632 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:52:42.0865 4632 AdobeFlashPlayerUpdateSvc - ok
19:52:42.0915 4632 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:52:42.0915 4632 adp94xx - ok
19:52:42.0935 4632 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:52:42.0935 4632 adpahci - ok
19:52:42.0945 4632 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:52:42.0955 4632 adpu320 - ok
19:52:42.0975 4632 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:52:42.0975 4632 AeLookupSvc - ok
19:52:43.0005 4632 [ FE3EA6E9AFC1A78E6EDCA121E006AFB7 ] Afc C:\Windows\system32\drivers\Afc.sys
19:52:43.0005 4632 Afc - ok
19:52:43.0065 4632 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
19:52:43.0065 4632 AFD - ok
19:52:43.0105 4632 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
19:52:43.0105 4632 agp440 - ok
19:52:43.0125 4632 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
19:52:43.0125 4632 aic78xx - ok
19:52:43.0155 4632 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
19:52:43.0155 4632 ALG - ok
19:52:43.0175 4632 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
19:52:43.0175 4632 aliide - ok
19:52:43.0215 4632 [ ABCB0BF67188CB26702BDAD21E54FF00 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:52:43.0215 4632 AMD External Events Utility - ok
19:52:43.0235 4632 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:52:43.0245 4632 amdagp - ok
19:52:43.0265 4632 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
19:52:43.0265 4632 amdide - ok
19:52:43.0295 4632 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:52:43.0295 4632 AmdK8 - ok
19:52:43.0545 4632 [ AD77D5D46857CE0D9469E7E670EC4D34 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:52:43.0725 4632 amdkmdag - ok
19:52:43.0755 4632 [ 655053F7C0A3B551DA84DB7417A10E15 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
19:52:43.0755 4632 amdkmdap - ok
19:52:43.0785 4632 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:52:43.0795 4632 AmdPPM - ok
19:52:43.0825 4632 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:52:43.0825 4632 amdsata - ok
19:52:43.0845 4632 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:52:43.0855 4632 amdsbs - ok
19:52:43.0865 4632 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:52:43.0865 4632 amdxata - ok
19:52:43.0895 4632 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
19:52:43.0895 4632 AppID - ok
19:52:43.0935 4632 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:52:43.0935 4632 AppIDSvc - ok
19:52:43.0975 4632 [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo C:\Windows\System32\appinfo.dll
19:52:43.0975 4632 Appinfo - ok
19:52:44.0005 4632 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
19:52:44.0015 4632 AppMgmt - ok
19:52:44.0035 4632 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
19:52:44.0035 4632 arc - ok
19:52:44.0045 4632 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:52:44.0045 4632 arcsas - ok
19:52:44.0155 4632 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:52:44.0315 4632 aspnet_state - ok
19:52:44.0345 4632 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:52:44.0345 4632 AsyncMac - ok
19:52:44.0385 4632 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
19:52:44.0385 4632 atapi - ok
19:52:44.0595 4632 [ AD77D5D46857CE0D9469E7E670EC4D34 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:52:44.0645 4632 atikmdag - ok
19:52:44.0705 4632 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:52:44.0715 4632 AudioEndpointBuilder - ok
19:52:44.0725 4632 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:52:44.0735 4632 Audiosrv - ok
19:52:44.0795 4632 [ 7692F4B242E45870873CAF4CB85CF769 ] AxAutoMntSrv C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
19:52:44.0805 4632 AxAutoMntSrv - ok
19:52:44.0835 4632 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:52:44.0835 4632 AxInstSV - ok
19:52:44.0885 4632 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
19:52:44.0885 4632 b06bdrv - ok
19:52:44.0925 4632 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
19:52:44.0925 4632 b57nd60x - ok
19:52:44.0975 4632 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
19:52:44.0975 4632 BDESVC - ok
19:52:44.0985 4632 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
19:52:44.0985 4632 Beep - ok
19:52:45.0035 4632 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
19:52:45.0045 4632 BFE - ok
19:52:45.0085 4632 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
19:52:45.0105 4632 BITS - ok
19:52:45.0135 4632 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:52:45.0135 4632 blbdrive - ok
19:52:45.0175 4632 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:52:45.0175 4632 bowser - ok
19:52:45.0185 4632 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:52:45.0195 4632 BrFiltLo - ok
19:52:45.0215 4632 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:52:45.0215 4632 BrFiltUp - ok
19:52:45.0255 4632 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
19:52:45.0255 4632 Browser - ok
19:52:45.0275 4632 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:52:45.0285 4632 Brserid - ok
19:52:45.0295 4632 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:52:45.0295 4632 BrSerWdm - ok
19:52:45.0315 4632 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:52:45.0315 4632 BrUsbMdm - ok
19:52:45.0335 4632 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:52:45.0335 4632 BrUsbSer - ok
19:52:45.0395 4632 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:52:45.0395 4632 BthEnum - ok
19:52:45.0405 4632 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:52:45.0405 4632 BTHMODEM - ok
19:52:45.0445 4632 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:52:45.0445 4632 BthPan - ok
19:52:45.0475 4632 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:52:45.0485 4632 BTHPORT - ok
19:52:45.0525 4632 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
19:52:45.0525 4632 bthserv - ok
19:52:45.0545 4632 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:52:45.0555 4632 BTHUSB - ok
19:52:45.0595 4632 [ 7E826BE3B3558208D5C9B00034E51BE5 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:52:45.0595 4632 btwaudio - ok
19:52:45.0615 4632 [ AF9148C3E844131AC954CB53FF43D971 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
19:52:45.0625 4632 btwavdt - ok
19:52:45.0685 4632 [ 0E3EE2BC0EC56BFE869FCDE3E5806684 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
19:52:45.0705 4632 btwdins - ok
19:52:45.0735 4632 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
19:52:45.0735 4632 btwl2cap - ok
19:52:45.0755 4632 [ 480B3D195854B2E55299CDDDDC50BCF9 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:52:45.0755 4632 btwrchid - ok
19:52:45.0785 4632 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:52:45.0785 4632 cdfs - ok
19:52:45.0845 4632 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:52:45.0845 4632 cdrom - ok
19:52:45.0895 4632 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
19:52:45.0905 4632 CertPropSvc - ok
19:52:45.0935 4632 [ 34B4DB818E86C2822C2AF43108D660F1 ] CFRMD C:\Windows\system32\DRIVERS\CFRMD.sys
19:52:45.0935 4632 CFRMD - ok
19:52:45.0955 4632 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:52:45.0955 4632 circlass - ok
19:52:45.0985 4632 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
19:52:45.0995 4632 CLFS - ok
19:52:46.0065 4632 [ 702FDEA429C9418E82DA17176D71A257 ] CLPSLauncher C:\Program Files\Common Files\COMODO\launcher_service.exe
19:52:46.0065 4632 CLPSLauncher - ok
19:52:46.0155 4632 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:52:46.0355 4632 clr_optimization_v2.0.50727_32 - ok
19:52:46.0425 4632 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:52:46.0475 4632 clr_optimization_v4.0.30319_32 - ok
19:52:46.0495 4632 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:52:46.0495 4632 CmBatt - ok
19:52:46.0705 4632 [ 3B854A0EEAFBFDF2C6430A43C360B91E ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
19:52:46.0815 4632 cmdAgent - ok
19:52:46.0855 4632 [ 35EB5029A0E17A24335E8488D628693F ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
19:52:46.0855 4632 cmderd - ok
19:52:46.0915 4632 [ 71C6B44C051F38B5CA28AA500DBEC516 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
19:52:46.0935 4632 cmdGuard - ok
19:52:46.0955 4632 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:52:46.0955 4632 cmdide - ok
19:52:47.0005 4632 [ 5FABA52953E40BDE1F2DBC35E549B63E ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
19:52:47.0005 4632 cmdvirth - ok
19:52:47.0145 4632 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
19:52:47.0155 4632 CNG - ok
19:52:47.0415 4632 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:52:47.0475 4632 Compbatt - ok
19:52:47.0515 4632 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:52:47.0515 4632 CompositeBus - ok
19:52:47.0525 4632 COMSysApp - ok
19:52:47.0545 4632 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:52:47.0545 4632 crcdisk - ok
19:52:47.0585 4632 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:52:47.0595 4632 CryptSvc - ok
19:52:47.0625 4632 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
19:52:47.0625 4632 CSC - ok
19:52:47.0665 4632 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
19:52:47.0685 4632 CscService - ok
19:52:47.0755 4632 [ CAB213D4681FCFAC9BF4E6D3B1EE4BFC ] cvintdrv C:\Windows\system32\drivers\cvintdrv.sys
19:52:47.0755 4632 cvintdrv - ok
19:52:47.0785 4632 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
19:52:47.0805 4632 DcomLaunch - ok
19:52:47.0835 4632 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
19:52:47.0845 4632 defragsvc - ok
19:52:47.0875 4632 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:52:47.0875 4632 DfsC - ok
19:52:47.0915 4632 [ 0819D9AF77D51B1C397D1097AA5BFDDC ] DfuUsb C:\Windows\system32\DRIVERS\DFUUsb.sys
19:52:47.0915 4632 DfuUsb - ok
19:52:47.0965 4632 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:52:47.0975 4632 Dhcp - ok
19:52:47.0985 4632 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
19:52:47.0985 4632 discache - ok
19:52:48.0025 4632 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:52:48.0035 4632 Disk - ok
19:52:48.0055 4632 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:52:48.0455 4632 Dnscache - ok
19:52:48.0555 4632 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
19:52:48.0565 4632 dot3svc - ok
19:52:48.0595 4632 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
19:52:48.0605 4632 DPS - ok
19:52:48.0865 4632 [ 308195495181C8F3D51E6ED5B58D54AC ] DragonUpdater C:\Program Files\Comodo\Dragon\dragon_updater.exe
19:52:48.0905 4632 DragonUpdater - ok
19:52:48.0935 4632 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:52:48.0945 4632 drmkaud - ok
19:52:48.0995 4632 [ 555E54AC2F601A8821CEF58961653991 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:52:48.0995 4632 dtsoftbus01 - ok
19:52:49.0045 4632 [ 16498EBC04AE9DD07049A8884B205C05 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:52:49.0055 4632 DXGKrnl - ok
19:52:49.0095 4632 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
19:52:49.0095 4632 EapHost - ok
19:52:49.0205 4632 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
19:52:49.0325 4632 ebdrv - ok
19:52:49.0345 4632 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
19:52:49.0345 4632 EFS - ok
19:52:49.0405 4632 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:52:49.0415 4632 ehRecvr - ok
19:52:49.0445 4632 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
19:52:49.0445 4632 ehSched - ok
19:52:49.0485 4632 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:52:49.0485 4632 elxstor - ok
19:52:49.0515 4632 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:52:49.0515 4632 ErrDev - ok
19:52:49.0575 4632 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
19:52:49.0585 4632 EventSystem - ok
19:52:49.0595 4632 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
19:52:49.0595 4632 exfat - ok
19:52:49.0615 4632 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:52:49.0625 4632 fastfat - ok
19:52:49.0655 4632 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
19:52:50.0695 4632 Fax - ok
19:52:50.0725 4632 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:52:50.0725 4632 fdc - ok
19:52:50.0745 4632 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
19:52:50.0745 4632 fdPHost - ok
19:52:50.0775 4632 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
19:52:50.0775 4632 FDResPub - ok
19:52:50.0785 4632 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:52:50.0785 4632 FileInfo - ok
19:52:50.0805 4632 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:52:50.0805 4632 Filetrace - ok
19:52:50.0815 4632 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:52:50.0825 4632 flpydisk - ok
19:52:50.0855 4632 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:52:50.0855 4632 FltMgr - ok
19:52:50.0915 4632 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll
19:52:50.0945 4632 FontCache - ok
19:52:51.0005 4632 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:52:51.0005 4632 FontCache3.0.0.0 - ok
19:52:51.0035 4632 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:52:51.0035 4632 FsDepends - ok
19:52:51.0075 4632 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:52:51.0075 4632 Fs_Rec - ok
19:52:51.0105 4632 [ 8C89DAB1061E3D04E902404754D3FA29 ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
19:52:51.0105 4632 FTDIBUS - ok
19:52:51.0135 4632 [ B14C967A0ADF2348258DD8312B6C0C58 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
19:52:51.0135 4632 FTSER2K - ok
19:52:51.0175 4632 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:52:51.0185 4632 fvevol - ok
19:52:51.0195 4632 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:52:51.0205 4632 gagp30kx - ok
19:52:51.0295 4632 [ AE63D0DB96C07CAE5DC4CDB2B2A719A0 ] GeekBuddyRSP C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
19:52:51.0345 4632 GeekBuddyRSP - ok
19:52:51.0395 4632 [ 483924F92E55A5F9423201EC635E2CED ] gfibto C:\Windows\system32\drivers\gfibto.sys
19:52:51.0395 4632 gfibto - ok
19:52:51.0445 4632 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
19:52:51.0465 4632 gpsvc - ok
19:52:51.0545 4632 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:52:51.0545 4632 gupdate - ok
19:52:51.0575 4632 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:52:51.0575 4632 gupdatem - ok
19:52:51.0615 4632 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:52:51.0615 4632 hcw85cir - ok
19:52:51.0675 4632 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:52:51.0685 4632 HdAudAddService - ok
19:52:51.0715 4632 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:52:51.0715 4632 HDAudBus - ok
19:52:51.0735 4632 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:52:51.0735 4632 HidBatt - ok
19:52:51.0765 4632 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:52:51.0775 4632 HidBth - ok
19:52:51.0795 4632 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:52:51.0795 4632 HidIr - ok
19:52:51.0825 4632 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
19:52:51.0825 4632 hidserv - ok
19:52:51.0875 4632 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:52:51.0875 4632 HidUsb - ok
19:52:51.0915 4632 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:52:51.0915 4632 hkmsvc - ok
19:52:51.0935 4632 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:52:51.0935 4632 HomeGroupListener - ok
19:52:51.0985 4632 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:52:51.0985 4632 HomeGroupProvider - ok
19:52:52.0015 4632 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:52:52.0015 4632 HpSAMD - ok
19:52:52.0055 4632 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:52:52.0075 4632 HTTP - ok
19:52:52.0095 4632 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:52:52.0095 4632 hwpolicy - ok
19:52:52.0125 4632 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:52:52.0125 4632 i8042prt - ok
19:52:52.0165 4632 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:52:52.0175 4632 iaStorV - ok
19:52:52.0235 4632 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:52:53.0565 4632 idsvc - ok
19:52:53.0605 4632 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:52:53.0605 4632 iirsp - ok
19:52:53.0645 4632 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
19:52:53.0665 4632 IKEEXT - ok
19:52:53.0695 4632 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
19:52:53.0695 4632 intelide - ok
19:52:53.0725 4632 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:52:53.0725 4632 intelppm - ok
19:52:53.0745 4632 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:52:53.0755 4632 IPBusEnum - ok
19:52:53.0765 4632 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:52:53.0765 4632 IpFilterDriver - ok
19:52:53.0815 4632 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:52:53.0825 4632 iphlpsvc - ok
19:52:53.0855 4632 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:52:53.0855 4632 IPMIDRV - ok
19:52:53.0875 4632 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:52:53.0885 4632 IPNAT - ok
19:52:53.0915 4632 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:52:53.0915 4632 IRENUM - ok
19:52:53.0955 4632 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:52:53.0955 4632 isapnp - ok
19:52:53.0975 4632 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:52:53.0975 4632 iScsiPrt - ok
19:52:54.0025 4632 [ 5C7C9EA45700F5187F71EB7B0DAB18C5 ] ISWKL C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
19:52:54.0025 4632 ISWKL - ok
19:52:54.0055 4632 [ 82D57415B28E1F374DF9EBA6D16A1B46 ] IswSvc C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
19:52:54.0065 4632 IswSvc - ok
19:52:54.0105 4632 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:52:54.0105 4632 kbdclass - ok
19:52:54.0135 4632 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:52:54.0135 4632 kbdhid - ok
19:52:54.0145 4632 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
19:52:54.0155 4632 KeyIso - ok
19:52:54.0175 4632 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:52:54.0185 4632 KSecDD - ok
19:52:54.0215 4632 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:52:54.0225 4632 KSecPkg - ok
19:52:54.0255 4632 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
19:52:54.0365 4632 KtmRm - ok
19:52:54.0405 4632 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
19:52:54.0405 4632 LanmanServer - ok
19:52:54.0445 4632 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:52:54.0445 4632 LanmanWorkstation - ok
19:52:54.0495 4632 [ 20CDB07017497C94A0BAD253C4BAFCBC ] LkCitadelServer C:\Windows\system32\lkcitdl.exe
19:52:54.0515 4632 LkCitadelServer - ok
19:52:54.0565 4632 [ B07D786736E7B1719A90365911BC2D0A ] lkClassAds C:\Windows\system32\lkads.exe
19:52:54.0575 4632 lkClassAds - ok
19:52:54.0585 4632 [ AB1FAA47332EC2EE43BBFED7A6F0EA09 ] lkTimeSync C:\Windows\system32\lktsrv.exe
19:52:54.0595 4632 lkTimeSync - ok
19:52:54.0635 4632 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:52:54.0635 4632 lltdio - ok
19:52:54.0665 4632 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:52:54.0775 4632 lltdsvc - ok
19:52:54.0795 4632 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
19:52:54.0795 4632 lmhosts - ok
19:52:54.0835 4632 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:52:54.0835 4632 LSI_FC - ok
19:52:54.0855 4632 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:52:54.0855 4632 LSI_SAS - ok
19:52:54.0885 4632 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:52:54.0885 4632 LSI_SAS2 - ok
19:52:54.0905 4632 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:52:54.0905 4632 LSI_SCSI - ok
19:52:54.0925 4632 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
19:52:54.0935 4632 luafv - ok
19:52:54.0965 4632 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:52:54.0965 4632 MBAMProtector - ok
19:52:55.0055 4632 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:52:55.0055 4632 MBAMScheduler - ok
19:52:55.0125 4632 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:52:55.0145 4632 MBAMService - ok
19:52:55.0165 4632 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:52:55.0435 4632 Mcx2Svc - ok
19:52:55.0465 4632 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:52:55.0475 4632 megasas - ok
19:52:55.0505 4632 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:52:55.0515 4632 MegaSR - ok
19:52:55.0595 4632 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:52:55.0765 4632 Microsoft Office Groove Audit Service - ok
19:52:55.0795 4632 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
19:52:55.0805 4632 MMCSS - ok
19:52:55.0815 4632 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
19:52:55.0815 4632 Modem - ok
19:52:55.0845 4632 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:52:55.0845 4632 monitor - ok
19:52:55.0875 4632 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:52:55.0875 4632 mouclass - ok
19:52:55.0925 4632 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:52:55.0925 4632 mouhid - ok
19:52:55.0945 4632 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:52:55.0955 4632 mountmgr - ok
19:52:56.0035 4632 [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:52:56.0275 4632 MozillaMaintenance - ok
19:52:56.0305 4632 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
19:52:56.0315 4632 mpio - ok
19:52:56.0335 4632 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:52:56.0345 4632 mpsdrv - ok
19:52:56.0385 4632 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:52:56.0405 4632 MpsSvc - ok
19:52:56.0455 4632 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:52:56.0455 4632 MRxDAV - ok
19:52:56.0485 4632 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:52:56.0485 4632 mrxsmb - ok
19:52:56.0515 4632 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:52:56.0515 4632 mrxsmb10 - ok
19:52:56.0525 4632 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:52:56.0535 4632 mrxsmb20 - ok
19:52:56.0565 4632 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
19:52:56.0565 4632 msahci - ok
19:52:56.0585 4632 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:52:56.0585 4632 msdsm - ok
19:52:56.0615 4632 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
19:52:56.0915 4632 MSDTC - ok
19:52:56.0965 4632 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:52:56.0965 4632 Msfs - ok
19:52:56.0985 4632 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:52:56.0985 4632 mshidkmdf - ok
19:52:57.0005 4632 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:52:57.0005 4632 msisadrv - ok
19:52:57.0055 4632 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:52:57.0155 4632 MSiSCSI - ok
19:52:57.0165 4632 msiserver - ok
19:52:57.0185 4632 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:52:57.0195 4632 MSKSSRV - ok
19:52:57.0215 4632 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:52:57.0215 4632 MSPCLOCK - ok
19:52:57.0225 4632 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:52:57.0225 4632 MSPQM - ok
19:52:57.0245 4632 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:52:57.0245 4632 MsRPC - ok
19:52:57.0275 4632 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:52:57.0275 4632 mssmbios - ok
19:52:57.0345 4632 MSSQL$SQLEXPRESS - ok
19:52:57.0375 4632 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
19:52:57.0495 4632 MSSQLServerADHelper - ok
19:52:57.0525 4632 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:52:57.0525 4632 MSTEE - ok
19:52:57.0825 4632 [ E514D0493C272AECBAC7C6C1DAC635D1 ] msvsmon90 C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe
19:52:58.0685 4632 msvsmon90 - ok
19:52:58.0765 4632 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:52:58.0765 4632 MTConfig - ok
19:52:58.0785 4632 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
19:52:58.0785 4632 Mup - ok
19:52:58.0875 4632 [ A3BA8A14490FDBF106939C37A125E82C ] mxssvr C:\Program Files\National Instruments\MAX\nimxs.exe
19:52:58.0875 4632 mxssvr - ok
19:52:58.0915 4632 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
19:52:58.0925 4632 napagent - ok
19:52:58.0965 4632 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:52:58.0975 4632 NativeWifiP - ok
19:52:59.0045 4632 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files\Nero\Update\NASvc.exe
19:52:59.0045 4632 NAUpdate - ok
19:52:59.0195 4632 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:52:59.0205 4632 NDIS - ok
19:52:59.0215 4632 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:52:59.0215 4632 NdisCap - ok
19:52:59.0245 4632 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:52:59.0245 4632 NdisTapi - ok
19:52:59.0275 4632 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:52:59.0285 4632 Ndisuio - ok
19:52:59.0315 4632 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:52:59.0315 4632 NdisWan - ok
19:52:59.0375 4632 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:52:59.0375 4632 NDProxy - ok
19:52:59.0405 4632 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:52:59.0405 4632 NetBIOS - ok
19:52:59.0435 4632 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:52:59.0435 4632 NetBT - ok
19:52:59.0455 4632 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
19:52:59.0455 4632 Netlogon - ok
19:52:59.0495 4632 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
19:52:59.0505 4632 Netman - ok
19:52:59.0545 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0785 4632 NetMsmqActivator - ok
19:52:59.0795 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0795 4632 NetPipeActivator - ok
19:52:59.0825 4632 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
19:52:59.0835 4632 netprofm - ok
19:52:59.0865 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0865 4632 NetTcpActivator - ok
19:52:59.0875 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0875 4632 NetTcpPortSharing - ok
19:53:00.0075 4632 [ EF51B405AD8ACAAE6F0231290D20F516 ] NETw5s32 C:\Windows\system32\DRIVERS\NETw5s32.sys
19:53:00.0225 4632 NETw5s32 - ok
19:53:00.0335 4632 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
19:53:00.0485 4632 netw5v32 - ok
19:53:00.0525 4632 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:53:00.0525 4632 nfrd960 - ok
19:53:00.0595 4632 [ A5B4CAF41F772267DB2C16616DFAD114 ] NIApplicationWebServer C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
19:53:00.0595 4632 NIApplicationWebServer - ok
19:53:00.0635 4632 [ 908B9667F2FD7453CBCF3A2A0444DCC1 ] NIDomainService C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
19:53:00.0645 4632 NIDomainService - ok
19:53:00.0735 4632 [ AA8896BCD689851665EFC02DC41181AC ] NILM License Manager C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
19:53:02.0575 4632 NILM License Manager - ok
19:53:02.0615 4632 [ 8FED4893CB017F81CD1769448AD567E5 ] nimDNSResponder C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
19:53:02.0615 4632 nimDNSResponder - ok
19:53:02.0655 4632 [ 5BDF6F2C61274D29418D9EE4BC870039 ] NINetworkDiscovery C:\Program Files\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
19:53:02.0655 4632 NINetworkDiscovery - ok
19:53:02.0685 4632 [ 5C9EBE16E32D39458458B6830D28DE3E ] niSvcLoc C:\Program Files\National Instruments\Shared\NI WebServer\SystemWebServer.exe
19:53:02.0685 4632 niSvcLoc - ok
19:53:02.0735 4632 [ 19D51EE6C8700AF603E937C1F4CF412E ] NITaggerService C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
19:53:02.0755 4632 NITaggerService - ok
19:53:02.0795 4632 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
19:53:02.0805 4632 NlaSvc - ok
19:53:02.0815 4632 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:53:02.0815 4632 Npfs - ok
19:53:02.0855 4632 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
19:53:02.0855 4632 nsi - ok
19:53:02.0885 4632 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:53:02.0885 4632 nsiproxy - ok
19:53:02.0945 4632 [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:53:02.0975 4632 Ntfs - ok
19:53:02.0995 4632 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
19:53:03.0005 4632 Null - ok
19:53:03.0035 4632 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:53:03.0035 4632 nvraid - ok
19:53:03.0045 4632 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:53:03.0055 4632 nvstor - ok
19:53:03.0075 4632 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:53:03.0085 4632 nv_agp - ok
19:53:03.0105 4632 [ 634FF60F418792906887B3D6CEECB431 ] O2MDRDR C:\Windows\system32\DRIVERS\o2media.sys
19:53:03.0105 4632 O2MDRDR - ok
19:53:03.0185 4632 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:53:03.0655 4632 odserv - ok
19:53:03.0685 4632 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:53:03.0685 4632 ohci1394 - ok
19:53:03.0745 4632 [ EAE6208900E2986F66F68B30AEF86E4D ] OpcEnum C:\Windows\system32\OpcEnum.exe
19:53:03.0905 4632 OpcEnum - ok
19:53:03.0975 4632 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:53:04.0255 4632 ose - ok
19:53:04.0295 4632 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:53:04.0305 4632 p2pimsvc - ok
19:53:04.0325 4632 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
19:53:04.0335 4632 p2psvc - ok
19:53:04.0365 4632 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:53:04.0365 4632 Parport - ok
19:53:04.0395 4632 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:53:04.0395 4632 partmgr - ok
19:53:04.0415 4632 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
19:53:04.0415 4632 Parvdm - ok
19:53:04.0435 4632 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:53:04.0445 4632 PcaSvc - ok
19:53:04.0455 4632 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
19:53:04.0455 4632 pci - ok
19:53:04.0485 4632 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
19:53:04.0495 4632 pciide - ok
19:53:04.0505 4632 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:53:04.0515 4632 pcmcia - ok
19:53:04.0535 4632 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
19:53:04.0535 4632 pcw - ok
19:53:04.0565 4632 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:53:04.0575 4632 PEAUTH - ok
19:53:04.0645 4632 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:53:04.0685 4632 PeerDistSvc - ok
19:53:04.0755 4632 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
19:53:04.0805 4632 pla - ok
19:53:04.0835 4632 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:53:04.0845 4632 PlugPlay - ok
19:53:04.0875 4632 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:53:04.0875 4632 PNRPAutoReg - ok
19:53:04.0895 4632 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:53:04.0905 4632 PNRPsvc - ok
19:53:04.0935 4632 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:53:05.0325 4632 PolicyAgent - ok
19:53:05.0365 4632 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
19:53:05.0375 4632 Power - ok
19:53:05.0385 4632 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:53:05.0395 4632 PptpMiniport - ok
19:53:05.0425 4632 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:53:05.0435 4632 Processor - ok
19:53:05.0475 4632 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
19:53:05.0475 4632 ProfSvc - ok
19:53:05.0485 4632 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:53:05.0495 4632 ProtectedStorage - ok
19:53:05.0525 4632 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:53:05.0535 4632 Psched - ok
19:53:05.0615 4632 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:53:05.0675 4632 ql2300 - ok
19:53:05.0695 4632 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:53:05.0695 4632 ql40xx - ok
19:53:05.0735 4632 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
19:53:05.0745 4632 QWAVE - ok
19:53:05.0765 4632 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:53:05.0765 4632 QWAVEdrv - ok
19:53:05.0785 4632 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:53:05.0785 4632 RasAcd - ok
19:53:05.0825 4632 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:53:05.0825 4632 RasAgileVpn - ok
19:53:05.0845 4632 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
19:53:05.0855 4632 RasAuto - ok
19:53:05.0875 4632 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:53:05.0885 4632 Rasl2tp - ok
19:53:05.0925 4632 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
19:53:05.0935 4632 RasMan - ok
19:53:05.0955 4632 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:53:05.0955 4632 RasPppoe - ok
19:53:05.0965 4632 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:53:05.0965 4632 RasSstp - ok
19:53:05.0995 4632 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:53:06.0005 4632 rdbss - ok
19:53:06.0035 4632 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:53:06.0035 4632 rdpbus - ok
19:53:06.0065 4632 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:53:06.0075 4632 RDPCDD - ok
19:53:06.0125 4632 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:53:06.0125 4632 RDPDR - ok
19:53:06.0145 4632 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:53:06.0155 4632 RDPENCDD - ok
19:53:06.0165 4632 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:53:06.0165 4632 RDPREFMP - ok
19:53:06.0205 4632 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:53:06.0205 4632 RDPWD - ok
19:53:06.0245 4632 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:53:06.0245 4632 rdyboost - ok
19:53:06.0265 4632 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
19:53:06.0275 4632 RemoteAccess - ok
19:53:06.0305 4632 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:53:06.0315 4632 RemoteRegistry - ok
19:53:06.0355 4632 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:53:06.0365 4632 RFCOMM - ok
19:53:06.0395 4632 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:53:06.0395 4632 RpcEptMapper - ok
19:53:06.0425 4632 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
19:53:06.0425 4632 RpcLocator - ok
19:53:06.0465 4632 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
19:53:06.0475 4632 RpcSs - ok
19:53:06.0515 4632 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:53:06.0515 4632 rspndr - ok
19:53:06.0535 4632 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:53:06.0545 4632 s3cap - ok
19:53:06.0555 4632 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
19:53:06.0555 4632 SamSs - ok
19:53:06.0595 4632 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:53:06.0595 4632 SASDIFSV - ok
19:53:06.0615 4632 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:53:06.0615 4632 SASKUTIL - ok
19:53:06.0655 4632 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:53:06.0655 4632 sbp2port - ok
19:53:06.0705 4632 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:53:06.0705 4632 SCardSvr - ok
19:53:06.0725 4632 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:53:06.0735 4632 scfilter - ok
19:53:06.0785 4632 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
19:53:06.0815 4632 Schedule - ok
19:53:06.0845 4632 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:53:06.0845 4632 SCPolicySvc - ok
19:53:06.0885 4632 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
19:53:06.0885 4632 sdbus - ok
19:53:06.0915 4632 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:53:06.0925 4632 SDRSVC - ok
19:53:06.0955 4632 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:53:06.0955 4632 secdrv - ok
19:53:06.0985 4632 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
19:53:06.0985 4632 seclogon - ok
19:53:07.0015 4632 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
19:53:07.0015 4632 SENS - ok
19:53:07.0055 4632 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:53:07.0065 4632 SensrSvc - ok
19:53:07.0075 4632 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:53:07.0075 4632 Serenum - ok
19:53:07.0085 4632 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:53:07.0095 4632 Serial - ok
19:53:07.0115 4632 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:53:07.0115 4632 sermouse - ok
19:53:07.0165 4632 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
19:53:07.0175 4632 SessionEnv - ok
19:53:07.0195 4632 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
19:53:07.0195 4632 sffdisk - ok
19:53:07.0205 4632 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:53:07.0205 4632 sffp_mmc - ok
19:53:07.0235 4632 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
19:53:07.0235 4632 sffp_sd - ok
19:53:07.0245 4632 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:53:07.0255 4632 sfloppy - ok
19:53:07.0285 4632 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:53:07.0295 4632 SharedAccess - ok
19:53:07.0325 4632 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:53:07.0345 4632 ShellHWDetection - ok
19:53:07.0385 4632 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:53:07.0385 4632 sisagp - ok
19:53:07.0415 4632 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:53:07.0415 4632 SiSRaid2 - ok
19:53:07.0425 4632 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:53:07.0425 4632 SiSRaid4 - ok
19:53:07.0435 4632 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:53:07.0445 4632 Smb - ok
19:53:07.0475 4632 [ B6EC7845E26CF7A158A79D01DF086DE1 ] smsbda C:\Windows\system32\drivers\smsbda.sys
19:53:07.0485 4632 smsbda - ok
19:53:07.0525 4632 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:53:07.0535 4632 SNMPTRAP - ok
19:53:07.0555 4632 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
19:53:07.0555 4632 spldr - ok
19:53:07.0585 4632 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
19:53:07.0595 4632 Spooler - ok
19:53:07.0765 4632 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
19:53:07.0855 4632 sppsvc - ok
19:53:07.0875 4632 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:53:07.0885 4632 sppuinotify - ok
19:53:07.0965 4632 [ 0022CFFF1A41E5CE3A764050A7DDF22A ] sptd C:\Windows\System32\Drivers\sptd.sys
19:53:07.0965 4632 sptd - ok
19:53:08.0005 4632 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:53:08.0005 4632 SQLBrowser - ok
19:53:08.0045 4632 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:53:08.0045 4632 SQLWriter - ok
19:53:08.0085 4632 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:53:08.0085 4632 srv - ok
19:53:08.0105 4632 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:53:08.0115 4632 srv2 - ok
19:53:08.0145 4632 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:53:08.0145 4632 SrvHsfHDA - ok
19:53:08.0195 4632 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
19:53:08.0235 4632 SrvHsfV92 - ok
19:53:08.0265 4632 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
19:53:08.0275 4632 SrvHsfWinac - ok
19:53:08.0295 4632 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:53:08.0295 4632 srvnet - ok
19:53:08.0335 4632 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:53:08.0335 4632 SSDPSRV - ok
19:53:08.0365 4632 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:53:08.0375 4632 SstpSvc - ok
19:53:08.0445 4632 [ E5C796B621F6FBA8616511063D7F0FFE ] StarWindServiceAE C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
19:53:08.0445 4632 StarWindServiceAE - ok
19:53:08.0475 4632 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:53:08.0475 4632 stexstor - ok
19:53:08.0515 4632 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
19:53:08.0535 4632 StiSvc - ok
19:53:08.0575 4632 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:53:08.0575 4632 storflt - ok
19:53:08.0625 4632 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
19:53:08.0645 4632 StorSvc - ok
19:53:08.0665 4632 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:53:08.0675 4632 storvsc - ok
19:53:08.0685 4632 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
19:53:08.0695 4632 swenum - ok
19:53:08.0825 4632 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
19:53:08.0835 4632 swprv - ok
19:53:08.0865 4632 SynasUSB - ok
19:53:09.0065 4632 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
19:53:09.0095 4632 SysMain - ok
19:53:09.0205 4632 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:53:09.0205 4632 TabletInputService - ok
19:53:09.0305 4632 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
19:53:09.0325 4632 TapiSrv - ok
19:53:09.0665 4632 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
19:53:09.0705 4632 TBS - ok
19:53:09.0765 4632 [ 4E8B9BE71B807B3BAEDB7F4243F85E3C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:53:09.0815 4632 Tcpip - ok
19:53:09.0875 4632 [ 4E8B9BE71B807B3BAEDB7F4243F85E3C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:53:09.0885 4632 TCPIP6 - ok
19:53:09.0915 4632 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:53:09.0925 4632 tcpipreg - ok
19:53:09.0965 4632 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:53:09.0965 4632 TDPIPE - ok
19:53:09.0995 4632 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:53:09.0995 4632 TDTCP - ok
19:53:10.0015 4632 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:53:10.0015 4632 tdx - ok
19:53:10.0045 4632 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:53:10.0045 4632 TermDD - ok
19:53:10.0085 4632 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
19:53:10.0105 4632 TermService - ok
19:53:10.0125 4632 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
19:53:10.0135 4632 Themes - ok
19:53:10.0155 4632 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
19:53:10.0155 4632 THREADORDER - ok
19:53:10.0195 4632 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
19:53:10.0195 4632 TrkWks - ok
19:53:10.0245 4632 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:53:10.0255 4632 TrustedInstaller - ok
19:53:10.0285 4632 [ B37B08F2E5EEB1A37E448E09BACE1101 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:53:10.0295 4632 tssecsrv - ok
19:53:10.0335 4632 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:53:10.0335 4632 TsUsbFlt - ok
19:53:10.0385 4632 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:53:10.0395 4632 tunnel - ok
19:53:10.0415 4632 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:53:10.0415 4632 uagp35 - ok
19:53:10.0435 4632 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:53:10.0445 4632 udfs - ok
19:53:10.0475 4632 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:53:10.0485 4632 UI0Detect - ok
19:53:10.0505 4632 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:53:10.0515 4632 uliagpkx - ok
19:53:10.0545 4632 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
19:53:10.0555 4632 umbus - ok
19:53:10.0565 4632 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:53:10.0565 4632 UmPass - ok
19:53:10.0595 4632 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
19:53:10.0605 4632 UmRdpService - ok
19:53:10.0635 4632 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
19:53:10.0645 4632 upnphost - ok
19:53:10.0665 4632 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:53:10.0675 4632 usbaudio - ok
19:53:10.0695 4632 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:53:10.0695 4632 usbccgp - ok
19:53:10.0715 4632 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:53:10.0715 4632 usbcir - ok
19:53:10.0745 4632 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:53:10.0745 4632 usbehci - ok
19:53:10.0785 4632 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:53:10.0795 4632 usbhub - ok
19:53:10.0815 4632 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:53:10.0815 4632 usbohci - ok
19:53:10.0835 4632 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:53:10.0835 4632 usbprint - ok
19:53:10.0865 4632 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:53:10.0865 4632 usbscan - ok
19:53:10.0915 4632 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:53:10.0915 4632 USBSTOR - ok
19:53:10.0945 4632 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:53:10.0945 4632 usbuhci - ok
19:53:10.0985 4632 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:53:10.0995 4632 usbvideo - ok
19:53:11.0035 4632 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
19:53:11.0155 4632 UxSms - ok
19:53:11.0185 4632 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
19:53:11.0185 4632 VaultSvc - ok
19:53:11.0205 4632 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:53:11.0205 4632 vdrvroot - ok
19:53:11.0245 4632 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
19:53:11.0265 4632 vds - ok
19:53:11.0295 4632 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:53:11.0295 4632 vga - ok
19:53:11.0315 4632 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:53:11.0315 4632 VgaSave - ok
19:53:11.0355 4632 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:53:11.0365 4632 vhdmp - ok
19:53:11.0395 4632 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:53:11.0395 4632 viaagp - ok
19:53:11.0415 4632 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
19:53:11.0425 4632 ViaC7 - ok
19:53:11.0435 4632 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
19:53:11.0435 4632 viaide - ok
19:53:11.0455 4632 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:53:11.0465 4632 vmbus - ok
19:53:11.0475 4632 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:53:11.0485 4632 VMBusHID - ok
19:53:11.0505 4632 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:53:11.0505 4632 volmgr - ok
19:53:11.0525 4632 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:53:11.0535 4632 volmgrx - ok
19:53:11.0575 4632 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:53:11.0575 4632 volsnap - ok
19:53:11.0675 4632 [ 4D8FC912E146DE0115392381C7114588 ] vpnagent C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
19:53:11.0685 4632 vpnagent - ok
19:53:11.0725 4632 [ EA39F36302DACBCDCDB113313718E768 ] vpnva C:\Windows\system32\DRIVERS\vpnva.sys
19:53:11.0725 4632 vpnva - ok
19:53:11.0755 4632 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:53:11.0765 4632 vsmraid - ok
19:53:11.0815 4632 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
19:53:11.0885 4632 VSS - ok
19:53:11.0915 4632 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:53:11.0915 4632 vwifibus - ok
19:53:11.0955 4632 [ 7090D3436EEB4E7DA3373090A23448F7 ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:53:11.0955 4632 VWiFiFlt - ok
19:53:11.0965 4632 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:53:11.0975 4632 vwifimp - ok
19:53:12.0005 4632 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
19:53:12.0015 4632 W32Time - ok
19:53:12.0045 4632 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:53:12.0045 4632 WacomPen - ok
19:53:12.0075 4632 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:53:12.0075 4632 WANARP - ok
19:53:12.0085 4632 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:53:12.0085 4632 Wanarpv6 - ok
19:53:12.0145 4632 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:53:14.0435 4632 WatAdminSvc - ok
19:53:14.0495 4632 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
19:53:14.0535 4632 wbengine - ok
19:53:14.0565 4632 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:53:14.0565 4632 WbioSrvc - ok
19:53:14.0615 4632 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:53:14.0615 4632 wcncsvc - ok
19:53:14.0625 4632 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:53:14.0635 4632 WcsPlugInService - ok
19:53:14.0665 4632 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:53:14.0665 4632 Wd - ok
19:53:14.0705 4632 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:53:14.0755 4632 Wdf01000 - ok
19:53:14.0785 4632 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:53:14.0795 4632 WdiServiceHost - ok
19:53:14.0815 4632 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:53:14.0825 4632 WdiSystemHost - ok
19:53:14.0885 4632 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
19:53:14.0895 4632 WebClient - ok
19:53:14.0905 4632 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:53:14.0905 4632 Wecsvc - ok
19:53:14.0925 4632 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:53:14.0935 4632 wercplsupport - ok
19:53:14.0965 4632 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
19:53:14.0975 4632 WerSvc - ok
19:53:15.0015 4632 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:53:15.0015 4632 WfpLwf - ok
19:53:15.0045 4632 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:53:15.0045 4632 WIMMount - ok
19:53:15.0115 4632 [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:53:15.0125 4632 WinDefend - ok
19:53:15.0195 4632 [ 30A28BD515A9888ACA7CBF446C3735D8 ] WinDriver6 C:\Windows\system32\drivers\windrvr6.sys
19:53:15.0205 4632 WinDriver6 - ok
19:53:15.0225 4632 WinHttpAutoProxySvc - ok
19:53:15.0295 4632 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:53:15.0295 4632 Winmgmt - ok
19:53:15.0355 4632 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
19:53:15.0405 4632 WinRM - ok
19:53:15.0475 4632 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:53:15.0475 4632 WinUsb - ok
19:53:15.0525 4632 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:53:15.0555 4632 Wlansvc - ok
19:53:15.0615 4632 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:53:15.0615 4632 WmiAcpi - ok
19:53:15.0655 4632 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:53:15.0655 4632 wmiApSrv - ok
19:53:15.0735 4632 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:53:15.0775 4632 WMPNetworkSvc - ok
19:53:15.0805 4632 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:53:15.0805 4632 WPCSvc - ok
19:53:15.0845 4632 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:53:15.0845 4632 WPDBusEnum - ok
19:53:15.0875 4632 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:53:15.0875 4632 ws2ifsl - ok
19:53:15.0935 4632 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
19:53:15.0935 4632 wscsvc - ok
19:53:15.0955 4632 WSearch - ok
19:53:16.0025 4632 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
19:53:16.0085 4632 wuauserv - ok
19:53:16.0115 4632 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:53:16.0115 4632 WudfPf - ok
19:53:16.0145 4632 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:53:16.0145 4632 WUDFRd - ok
19:53:16.0195 4632 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:53:16.0195 4632 wudfsvc - ok
19:53:16.0235 4632 [ 3C5E51C05BE9B56EAFF4E388C3AB25E4 ] WwanSvc C:\Windows\System32\wwansvc.dll
19:53:16.0245 4632 WwanSvc - ok
19:53:16.0315 4632 ================ Scan global ===============================
19:53:16.0345 4632 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
19:53:16.0695 4632 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
19:53:17.0035 4632 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
19:53:17.0065 4632 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
19:53:17.0185 4632 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
19:53:17.0195 4632 [Global] - ok
19:53:17.0195 4632 ================ Scan MBR ==================================
19:53:17.0205 4632 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:53:17.0435 4632 \Device\Harddisk0\DR0 - ok
19:53:17.0445 4632 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR3
19:53:21.0235 4632 \Device\Harddisk1\DR3 - ok
19:53:21.0235 4632 ================ Scan VBR ==================================
19:53:21.0245 4632 [ C27E555F2F17C55FC4F0A854FBB2FE20 ] \Device\Harddisk0\DR0\Partition1
19:53:21.0245 4632 \Device\Harddisk0\DR0\Partition1 - ok
19:53:21.0295 4632 [ C8C752CA098F945301F997D7A2C858E9 ] \Device\Harddisk0\DR0\Partition2
19:53:21.0295 4632 \Device\Harddisk0\DR0\Partition2 - ok
19:53:21.0315 4632 [ 70E6CEA448C564E97E70B598D3B71432 ] \Device\Harddisk0\DR0\Partition3
19:53:21.0315 4632 \Device\Harddisk0\DR0\Partition3 - ok
19:53:21.0325 4632 [ BA5CE6609DC8A252382911C5ACD4FCED ] \Device\Harddisk1\DR3\Partition1
19:53:21.0325 4632 \Device\Harddisk1\DR3\Partition1 - ok
19:53:21.0325 4632 ============================================================
19:53:21.0325 4632 Scan finished
19:53:21.0325 4632 ============================================================
19:53:21.0335 6320 Detected object count: 0
19:53:21.0335 6320 Actual detected object count: 0
19:52:21.0565 7588 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:52:23.0575 7588 ============================================================
19:52:23.0575 7588 Current date / time: 2013/08/19 19:52:23.0575
19:52:23.0575 7588 SystemInfo:
19:52:23.0575 7588
19:52:23.0575 7588 OS Version: 6.1.7601 ServicePack: 1.0
19:52:23.0575 7588 Product type: Workstation
19:52:23.0575 7588 ComputerName: LUKAS-PC
19:52:23.0575 7588 UserName: Lukas
19:52:23.0575 7588 Windows directory: C:\Windows
19:52:23.0575 7588 System windows directory: C:\Windows
19:52:23.0575 7588 Processor architecture: Intel x86
19:52:23.0575 7588 Number of processors: 2
19:52:23.0575 7588 Page size: 0x1000
19:52:23.0575 7588 Boot type: Normal boot
19:52:23.0575 7588 ============================================================
19:52:25.0545 7588 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:52:26.0395 7588 Drive \Device\Harddisk1\DR3 - Size: 0xF1800000 (3.77 Gb), SectorSize: 0x200, Cylinders: 0x1EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:52:26.0395 7588 ============================================================
19:52:26.0395 7588 \Device\Harddisk0\DR0:
19:52:26.0425 7588 MBR partitions:
19:52:26.0425 7588 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:52:26.0425 7588 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x8886000
19:52:26.0425 7588 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88B8800, BlocksNum 0x1CB75800
19:52:26.0425 7588 \Device\Harddisk1\DR3:
19:52:26.0425 7588 MBR partitions:
19:52:26.0425 7588 \Device\Harddisk1\DR3\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x78BFC1
19:52:26.0425 7588 ============================================================
19:52:26.0525 7588 C: <-> \Device\Harddisk0\DR0\Partition2
19:52:26.0575 7588 D: <-> \Device\Harddisk0\DR0\Partition3
19:52:26.0575 7588 ============================================================
19:52:26.0575 7588 Initialize success
19:52:26.0575 7588 ============================================================
19:52:40.0445 4632 ============================================================
19:52:40.0445 4632 Scan started
19:52:40.0445 4632 Mode: Manual;
19:52:40.0445 4632 ============================================================
19:52:42.0245 4632 ================ Scan system memory ========================
19:52:42.0245 4632 System memory - ok
19:52:42.0245 4632 ================ Scan services =============================
19:52:42.0365 4632 [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:52:42.0365 4632 !SASCORE - ok
19:52:42.0545 4632 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:52:42.0545 4632 1394ohci - ok
19:52:42.0585 4632 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:52:42.0585 4632 ACPI - ok
19:52:42.0615 4632 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:52:42.0615 4632 AcpiPmi - ok
19:52:42.0665 4632 [ 9BC0D1B4D9CCEC2DC9F010E466738A38 ] acsock C:\Windows\system32\DRIVERS\acsock.sys
19:52:42.0665 4632 acsock - ok
19:52:42.0765 4632 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:52:42.0765 4632 AdobeARMservice - ok
19:52:42.0865 4632 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:52:42.0865 4632 AdobeFlashPlayerUpdateSvc - ok
19:52:42.0915 4632 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:52:42.0915 4632 adp94xx - ok
19:52:42.0935 4632 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:52:42.0935 4632 adpahci - ok
19:52:42.0945 4632 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:52:42.0955 4632 adpu320 - ok
19:52:42.0975 4632 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:52:42.0975 4632 AeLookupSvc - ok
19:52:43.0005 4632 [ FE3EA6E9AFC1A78E6EDCA121E006AFB7 ] Afc C:\Windows\system32\drivers\Afc.sys
19:52:43.0005 4632 Afc - ok
19:52:43.0065 4632 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
19:52:43.0065 4632 AFD - ok
19:52:43.0105 4632 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
19:52:43.0105 4632 agp440 - ok
19:52:43.0125 4632 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
19:52:43.0125 4632 aic78xx - ok
19:52:43.0155 4632 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
19:52:43.0155 4632 ALG - ok
19:52:43.0175 4632 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
19:52:43.0175 4632 aliide - ok
19:52:43.0215 4632 [ ABCB0BF67188CB26702BDAD21E54FF00 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
19:52:43.0215 4632 AMD External Events Utility - ok
19:52:43.0235 4632 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:52:43.0245 4632 amdagp - ok
19:52:43.0265 4632 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
19:52:43.0265 4632 amdide - ok
19:52:43.0295 4632 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:52:43.0295 4632 AmdK8 - ok
19:52:43.0545 4632 [ AD77D5D46857CE0D9469E7E670EC4D34 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:52:43.0725 4632 amdkmdag - ok
19:52:43.0755 4632 [ 655053F7C0A3B551DA84DB7417A10E15 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
19:52:43.0755 4632 amdkmdap - ok
19:52:43.0785 4632 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:52:43.0795 4632 AmdPPM - ok
19:52:43.0825 4632 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:52:43.0825 4632 amdsata - ok
19:52:43.0845 4632 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:52:43.0855 4632 amdsbs - ok
19:52:43.0865 4632 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:52:43.0865 4632 amdxata - ok
19:52:43.0895 4632 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
19:52:43.0895 4632 AppID - ok
19:52:43.0935 4632 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:52:43.0935 4632 AppIDSvc - ok
19:52:43.0975 4632 [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo C:\Windows\System32\appinfo.dll
19:52:43.0975 4632 Appinfo - ok
19:52:44.0005 4632 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
19:52:44.0015 4632 AppMgmt - ok
19:52:44.0035 4632 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
19:52:44.0035 4632 arc - ok
19:52:44.0045 4632 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:52:44.0045 4632 arcsas - ok
19:52:44.0155 4632 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:52:44.0315 4632 aspnet_state - ok
19:52:44.0345 4632 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:52:44.0345 4632 AsyncMac - ok
19:52:44.0385 4632 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
19:52:44.0385 4632 atapi - ok
19:52:44.0595 4632 [ AD77D5D46857CE0D9469E7E670EC4D34 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:52:44.0645 4632 atikmdag - ok
19:52:44.0705 4632 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:52:44.0715 4632 AudioEndpointBuilder - ok
19:52:44.0725 4632 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:52:44.0735 4632 Audiosrv - ok
19:52:44.0795 4632 [ 7692F4B242E45870873CAF4CB85CF769 ] AxAutoMntSrv C:\Program Files\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
19:52:44.0805 4632 AxAutoMntSrv - ok
19:52:44.0835 4632 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:52:44.0835 4632 AxInstSV - ok
19:52:44.0885 4632 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
19:52:44.0885 4632 b06bdrv - ok
19:52:44.0925 4632 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
19:52:44.0925 4632 b57nd60x - ok
19:52:44.0975 4632 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
19:52:44.0975 4632 BDESVC - ok
19:52:44.0985 4632 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
19:52:44.0985 4632 Beep - ok
19:52:45.0035 4632 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
19:52:45.0045 4632 BFE - ok
19:52:45.0085 4632 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
19:52:45.0105 4632 BITS - ok
19:52:45.0135 4632 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:52:45.0135 4632 blbdrive - ok
19:52:45.0175 4632 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:52:45.0175 4632 bowser - ok
19:52:45.0185 4632 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:52:45.0195 4632 BrFiltLo - ok
19:52:45.0215 4632 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:52:45.0215 4632 BrFiltUp - ok
19:52:45.0255 4632 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
19:52:45.0255 4632 Browser - ok
19:52:45.0275 4632 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:52:45.0285 4632 Brserid - ok
19:52:45.0295 4632 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:52:45.0295 4632 BrSerWdm - ok
19:52:45.0315 4632 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:52:45.0315 4632 BrUsbMdm - ok
19:52:45.0335 4632 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:52:45.0335 4632 BrUsbSer - ok
19:52:45.0395 4632 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:52:45.0395 4632 BthEnum - ok
19:52:45.0405 4632 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:52:45.0405 4632 BTHMODEM - ok
19:52:45.0445 4632 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:52:45.0445 4632 BthPan - ok
19:52:45.0475 4632 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:52:45.0485 4632 BTHPORT - ok
19:52:45.0525 4632 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
19:52:45.0525 4632 bthserv - ok
19:52:45.0545 4632 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:52:45.0555 4632 BTHUSB - ok
19:52:45.0595 4632 [ 7E826BE3B3558208D5C9B00034E51BE5 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:52:45.0595 4632 btwaudio - ok
19:52:45.0615 4632 [ AF9148C3E844131AC954CB53FF43D971 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
19:52:45.0625 4632 btwavdt - ok
19:52:45.0685 4632 [ 0E3EE2BC0EC56BFE869FCDE3E5806684 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
19:52:45.0705 4632 btwdins - ok
19:52:45.0735 4632 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
19:52:45.0735 4632 btwl2cap - ok
19:52:45.0755 4632 [ 480B3D195854B2E55299CDDDDC50BCF9 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:52:45.0755 4632 btwrchid - ok
19:52:45.0785 4632 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:52:45.0785 4632 cdfs - ok
19:52:45.0845 4632 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:52:45.0845 4632 cdrom - ok
19:52:45.0895 4632 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
19:52:45.0905 4632 CertPropSvc - ok
19:52:45.0935 4632 [ 34B4DB818E86C2822C2AF43108D660F1 ] CFRMD C:\Windows\system32\DRIVERS\CFRMD.sys
19:52:45.0935 4632 CFRMD - ok
19:52:45.0955 4632 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:52:45.0955 4632 circlass - ok
19:52:45.0985 4632 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
19:52:45.0995 4632 CLFS - ok
19:52:46.0065 4632 [ 702FDEA429C9418E82DA17176D71A257 ] CLPSLauncher C:\Program Files\Common Files\COMODO\launcher_service.exe
19:52:46.0065 4632 CLPSLauncher - ok
19:52:46.0155 4632 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:52:46.0355 4632 clr_optimization_v2.0.50727_32 - ok
19:52:46.0425 4632 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:52:46.0475 4632 clr_optimization_v4.0.30319_32 - ok
19:52:46.0495 4632 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:52:46.0495 4632 CmBatt - ok
19:52:46.0705 4632 [ 3B854A0EEAFBFDF2C6430A43C360B91E ] cmdAgent C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
19:52:46.0815 4632 cmdAgent - ok
19:52:46.0855 4632 [ 35EB5029A0E17A24335E8488D628693F ] cmderd C:\Windows\system32\DRIVERS\cmderd.sys
19:52:46.0855 4632 cmderd - ok
19:52:46.0915 4632 [ 71C6B44C051F38B5CA28AA500DBEC516 ] cmdGuard C:\Windows\system32\DRIVERS\cmdguard.sys
19:52:46.0935 4632 cmdGuard - ok
19:52:46.0955 4632 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:52:46.0955 4632 cmdide - ok
19:52:47.0005 4632 [ 5FABA52953E40BDE1F2DBC35E549B63E ] cmdvirth C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
19:52:47.0005 4632 cmdvirth - ok
19:52:47.0145 4632 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
19:52:47.0155 4632 CNG - ok
19:52:47.0415 4632 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:52:47.0475 4632 Compbatt - ok
19:52:47.0515 4632 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:52:47.0515 4632 CompositeBus - ok
19:52:47.0525 4632 COMSysApp - ok
19:52:47.0545 4632 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:52:47.0545 4632 crcdisk - ok
19:52:47.0585 4632 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:52:47.0595 4632 CryptSvc - ok
19:52:47.0625 4632 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
19:52:47.0625 4632 CSC - ok
19:52:47.0665 4632 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
19:52:47.0685 4632 CscService - ok
19:52:47.0755 4632 [ CAB213D4681FCFAC9BF4E6D3B1EE4BFC ] cvintdrv C:\Windows\system32\drivers\cvintdrv.sys
19:52:47.0755 4632 cvintdrv - ok
19:52:47.0785 4632 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
19:52:47.0805 4632 DcomLaunch - ok
19:52:47.0835 4632 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
19:52:47.0845 4632 defragsvc - ok
19:52:47.0875 4632 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:52:47.0875 4632 DfsC - ok
19:52:47.0915 4632 [ 0819D9AF77D51B1C397D1097AA5BFDDC ] DfuUsb C:\Windows\system32\DRIVERS\DFUUsb.sys
19:52:47.0915 4632 DfuUsb - ok
19:52:47.0965 4632 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:52:47.0975 4632 Dhcp - ok
19:52:47.0985 4632 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
19:52:47.0985 4632 discache - ok
19:52:48.0025 4632 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:52:48.0035 4632 Disk - ok
19:52:48.0055 4632 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:52:48.0455 4632 Dnscache - ok
19:52:48.0555 4632 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
19:52:48.0565 4632 dot3svc - ok
19:52:48.0595 4632 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
19:52:48.0605 4632 DPS - ok
19:52:48.0865 4632 [ 308195495181C8F3D51E6ED5B58D54AC ] DragonUpdater C:\Program Files\Comodo\Dragon\dragon_updater.exe
19:52:48.0905 4632 DragonUpdater - ok
19:52:48.0935 4632 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:52:48.0945 4632 drmkaud - ok
19:52:48.0995 4632 [ 555E54AC2F601A8821CEF58961653991 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:52:48.0995 4632 dtsoftbus01 - ok
19:52:49.0045 4632 [ 16498EBC04AE9DD07049A8884B205C05 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:52:49.0055 4632 DXGKrnl - ok
19:52:49.0095 4632 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
19:52:49.0095 4632 EapHost - ok
19:52:49.0205 4632 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
19:52:49.0325 4632 ebdrv - ok
19:52:49.0345 4632 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
19:52:49.0345 4632 EFS - ok
19:52:49.0405 4632 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:52:49.0415 4632 ehRecvr - ok
19:52:49.0445 4632 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
19:52:49.0445 4632 ehSched - ok
19:52:49.0485 4632 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:52:49.0485 4632 elxstor - ok
19:52:49.0515 4632 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:52:49.0515 4632 ErrDev - ok
19:52:49.0575 4632 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
19:52:49.0585 4632 EventSystem - ok
19:52:49.0595 4632 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
19:52:49.0595 4632 exfat - ok
19:52:49.0615 4632 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:52:49.0625 4632 fastfat - ok
19:52:49.0655 4632 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
19:52:50.0695 4632 Fax - ok
19:52:50.0725 4632 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:52:50.0725 4632 fdc - ok
19:52:50.0745 4632 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
19:52:50.0745 4632 fdPHost - ok
19:52:50.0775 4632 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
19:52:50.0775 4632 FDResPub - ok
19:52:50.0785 4632 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:52:50.0785 4632 FileInfo - ok
19:52:50.0805 4632 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:52:50.0805 4632 Filetrace - ok
19:52:50.0815 4632 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:52:50.0825 4632 flpydisk - ok
19:52:50.0855 4632 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:52:50.0855 4632 FltMgr - ok
19:52:50.0915 4632 [ E12C4928B32ACE04610259647F072635 ] FontCache C:\Windows\system32\FntCache.dll
19:52:50.0945 4632 FontCache - ok
19:52:51.0005 4632 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:52:51.0005 4632 FontCache3.0.0.0 - ok
19:52:51.0035 4632 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:52:51.0035 4632 FsDepends - ok
19:52:51.0075 4632 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:52:51.0075 4632 Fs_Rec - ok
19:52:51.0105 4632 [ 8C89DAB1061E3D04E902404754D3FA29 ] FTDIBUS C:\Windows\system32\drivers\ftdibus.sys
19:52:51.0105 4632 FTDIBUS - ok
19:52:51.0135 4632 [ B14C967A0ADF2348258DD8312B6C0C58 ] FTSER2K C:\Windows\system32\drivers\ftser2k.sys
19:52:51.0135 4632 FTSER2K - ok
19:52:51.0175 4632 [ E306A24D9694C724FA2491278BF50FDB ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:52:51.0185 4632 fvevol - ok
19:52:51.0195 4632 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:52:51.0205 4632 gagp30kx - ok
19:52:51.0295 4632 [ AE63D0DB96C07CAE5DC4CDB2B2A719A0 ] GeekBuddyRSP C:\Program Files\Common Files\COMODO\GeekBuddyRSP.exe
19:52:51.0345 4632 GeekBuddyRSP - ok
19:52:51.0395 4632 [ 483924F92E55A5F9423201EC635E2CED ] gfibto C:\Windows\system32\drivers\gfibto.sys
19:52:51.0395 4632 gfibto - ok
19:52:51.0445 4632 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
19:52:51.0465 4632 gpsvc - ok
19:52:51.0545 4632 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:52:51.0545 4632 gupdate - ok
19:52:51.0575 4632 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:52:51.0575 4632 gupdatem - ok
19:52:51.0615 4632 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:52:51.0615 4632 hcw85cir - ok
19:52:51.0675 4632 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:52:51.0685 4632 HdAudAddService - ok
19:52:51.0715 4632 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:52:51.0715 4632 HDAudBus - ok
19:52:51.0735 4632 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:52:51.0735 4632 HidBatt - ok
19:52:51.0765 4632 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:52:51.0775 4632 HidBth - ok
19:52:51.0795 4632 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:52:51.0795 4632 HidIr - ok
19:52:51.0825 4632 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
19:52:51.0825 4632 hidserv - ok
19:52:51.0875 4632 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:52:51.0875 4632 HidUsb - ok
19:52:51.0915 4632 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:52:51.0915 4632 hkmsvc - ok
19:52:51.0935 4632 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:52:51.0935 4632 HomeGroupListener - ok
19:52:51.0985 4632 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:52:51.0985 4632 HomeGroupProvider - ok
19:52:52.0015 4632 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:52:52.0015 4632 HpSAMD - ok
19:52:52.0055 4632 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:52:52.0075 4632 HTTP - ok
19:52:52.0095 4632 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:52:52.0095 4632 hwpolicy - ok
19:52:52.0125 4632 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:52:52.0125 4632 i8042prt - ok
19:52:52.0165 4632 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:52:52.0175 4632 iaStorV - ok
19:52:52.0235 4632 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:52:53.0565 4632 idsvc - ok
19:52:53.0605 4632 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:52:53.0605 4632 iirsp - ok
19:52:53.0645 4632 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
19:52:53.0665 4632 IKEEXT - ok
19:52:53.0695 4632 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
19:52:53.0695 4632 intelide - ok
19:52:53.0725 4632 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:52:53.0725 4632 intelppm - ok
19:52:53.0745 4632 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:52:53.0755 4632 IPBusEnum - ok
19:52:53.0765 4632 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:52:53.0765 4632 IpFilterDriver - ok
19:52:53.0815 4632 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:52:53.0825 4632 iphlpsvc - ok
19:52:53.0855 4632 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:52:53.0855 4632 IPMIDRV - ok
19:52:53.0875 4632 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:52:53.0885 4632 IPNAT - ok
19:52:53.0915 4632 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:52:53.0915 4632 IRENUM - ok
19:52:53.0955 4632 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:52:53.0955 4632 isapnp - ok
19:52:53.0975 4632 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:52:53.0975 4632 iScsiPrt - ok
19:52:54.0025 4632 [ 5C7C9EA45700F5187F71EB7B0DAB18C5 ] ISWKL C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
19:52:54.0025 4632 ISWKL - ok
19:52:54.0055 4632 [ 82D57415B28E1F374DF9EBA6D16A1B46 ] IswSvc C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
19:52:54.0065 4632 IswSvc - ok
19:52:54.0105 4632 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:52:54.0105 4632 kbdclass - ok
19:52:54.0135 4632 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:52:54.0135 4632 kbdhid - ok
19:52:54.0145 4632 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
19:52:54.0155 4632 KeyIso - ok
19:52:54.0175 4632 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:52:54.0185 4632 KSecDD - ok
19:52:54.0215 4632 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:52:54.0225 4632 KSecPkg - ok
19:52:54.0255 4632 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
19:52:54.0365 4632 KtmRm - ok
19:52:54.0405 4632 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
19:52:54.0405 4632 LanmanServer - ok
19:52:54.0445 4632 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:52:54.0445 4632 LanmanWorkstation - ok
19:52:54.0495 4632 [ 20CDB07017497C94A0BAD253C4BAFCBC ] LkCitadelServer C:\Windows\system32\lkcitdl.exe
19:52:54.0515 4632 LkCitadelServer - ok
19:52:54.0565 4632 [ B07D786736E7B1719A90365911BC2D0A ] lkClassAds C:\Windows\system32\lkads.exe
19:52:54.0575 4632 lkClassAds - ok
19:52:54.0585 4632 [ AB1FAA47332EC2EE43BBFED7A6F0EA09 ] lkTimeSync C:\Windows\system32\lktsrv.exe
19:52:54.0595 4632 lkTimeSync - ok
19:52:54.0635 4632 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:52:54.0635 4632 lltdio - ok
19:52:54.0665 4632 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:52:54.0775 4632 lltdsvc - ok
19:52:54.0795 4632 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
19:52:54.0795 4632 lmhosts - ok
19:52:54.0835 4632 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:52:54.0835 4632 LSI_FC - ok
19:52:54.0855 4632 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:52:54.0855 4632 LSI_SAS - ok
19:52:54.0885 4632 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:52:54.0885 4632 LSI_SAS2 - ok
19:52:54.0905 4632 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:52:54.0905 4632 LSI_SCSI - ok
19:52:54.0925 4632 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
19:52:54.0935 4632 luafv - ok
19:52:54.0965 4632 [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:52:54.0965 4632 MBAMProtector - ok
19:52:55.0055 4632 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:52:55.0055 4632 MBAMScheduler - ok
19:52:55.0125 4632 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:52:55.0145 4632 MBAMService - ok
19:52:55.0165 4632 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:52:55.0435 4632 Mcx2Svc - ok
19:52:55.0465 4632 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:52:55.0475 4632 megasas - ok
19:52:55.0505 4632 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:52:55.0515 4632 MegaSR - ok
19:52:55.0595 4632 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
19:52:55.0765 4632 Microsoft Office Groove Audit Service - ok
19:52:55.0795 4632 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
19:52:55.0805 4632 MMCSS - ok
19:52:55.0815 4632 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
19:52:55.0815 4632 Modem - ok
19:52:55.0845 4632 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:52:55.0845 4632 monitor - ok
19:52:55.0875 4632 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:52:55.0875 4632 mouclass - ok
19:52:55.0925 4632 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:52:55.0925 4632 mouhid - ok
19:52:55.0945 4632 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:52:55.0955 4632 mountmgr - ok
19:52:56.0035 4632 [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:52:56.0275 4632 MozillaMaintenance - ok
19:52:56.0305 4632 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
19:52:56.0315 4632 mpio - ok
19:52:56.0335 4632 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:52:56.0345 4632 mpsdrv - ok
19:52:56.0385 4632 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:52:56.0405 4632 MpsSvc - ok
19:52:56.0455 4632 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:52:56.0455 4632 MRxDAV - ok
19:52:56.0485 4632 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:52:56.0485 4632 mrxsmb - ok
19:52:56.0515 4632 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:52:56.0515 4632 mrxsmb10 - ok
19:52:56.0525 4632 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:52:56.0535 4632 mrxsmb20 - ok
19:52:56.0565 4632 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
19:52:56.0565 4632 msahci - ok
19:52:56.0585 4632 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:52:56.0585 4632 msdsm - ok
19:52:56.0615 4632 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
19:52:56.0915 4632 MSDTC - ok
19:52:56.0965 4632 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:52:56.0965 4632 Msfs - ok
19:52:56.0985 4632 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:52:56.0985 4632 mshidkmdf - ok
19:52:57.0005 4632 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:52:57.0005 4632 msisadrv - ok
19:52:57.0055 4632 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:52:57.0155 4632 MSiSCSI - ok
19:52:57.0165 4632 msiserver - ok
19:52:57.0185 4632 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:52:57.0195 4632 MSKSSRV - ok
19:52:57.0215 4632 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:52:57.0215 4632 MSPCLOCK - ok
19:52:57.0225 4632 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:52:57.0225 4632 MSPQM - ok
19:52:57.0245 4632 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:52:57.0245 4632 MsRPC - ok
19:52:57.0275 4632 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:52:57.0275 4632 mssmbios - ok
19:52:57.0345 4632 MSSQL$SQLEXPRESS - ok
19:52:57.0375 4632 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
19:52:57.0495 4632 MSSQLServerADHelper - ok
19:52:57.0525 4632 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:52:57.0525 4632 MSTEE - ok
19:52:57.0825 4632 [ E514D0493C272AECBAC7C6C1DAC635D1 ] msvsmon90 C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe
19:52:58.0685 4632 msvsmon90 - ok
19:52:58.0765 4632 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:52:58.0765 4632 MTConfig - ok
19:52:58.0785 4632 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
19:52:58.0785 4632 Mup - ok
19:52:58.0875 4632 [ A3BA8A14490FDBF106939C37A125E82C ] mxssvr C:\Program Files\National Instruments\MAX\nimxs.exe
19:52:58.0875 4632 mxssvr - ok
19:52:58.0915 4632 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
19:52:58.0925 4632 napagent - ok
19:52:58.0965 4632 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:52:58.0975 4632 NativeWifiP - ok
19:52:59.0045 4632 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files\Nero\Update\NASvc.exe
19:52:59.0045 4632 NAUpdate - ok
19:52:59.0195 4632 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:52:59.0205 4632 NDIS - ok
19:52:59.0215 4632 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:52:59.0215 4632 NdisCap - ok
19:52:59.0245 4632 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:52:59.0245 4632 NdisTapi - ok
19:52:59.0275 4632 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:52:59.0285 4632 Ndisuio - ok
19:52:59.0315 4632 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:52:59.0315 4632 NdisWan - ok
19:52:59.0375 4632 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:52:59.0375 4632 NDProxy - ok
19:52:59.0405 4632 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:52:59.0405 4632 NetBIOS - ok
19:52:59.0435 4632 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:52:59.0435 4632 NetBT - ok
19:52:59.0455 4632 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
19:52:59.0455 4632 Netlogon - ok
19:52:59.0495 4632 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
19:52:59.0505 4632 Netman - ok
19:52:59.0545 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0785 4632 NetMsmqActivator - ok
19:52:59.0795 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0795 4632 NetPipeActivator - ok
19:52:59.0825 4632 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
19:52:59.0835 4632 netprofm - ok
19:52:59.0865 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0865 4632 NetTcpActivator - ok
19:52:59.0875 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:52:59.0875 4632 NetTcpPortSharing - ok
19:53:00.0075 4632 [ EF51B405AD8ACAAE6F0231290D20F516 ] NETw5s32 C:\Windows\system32\DRIVERS\NETw5s32.sys
19:53:00.0225 4632 NETw5s32 - ok
19:53:00.0335 4632 [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32 C:\Windows\system32\DRIVERS\netw5v32.sys
19:53:00.0485 4632 netw5v32 - ok
19:53:00.0525 4632 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:53:00.0525 4632 nfrd960 - ok
19:53:00.0595 4632 [ A5B4CAF41F772267DB2C16616DFAD114 ] NIApplicationWebServer C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
19:53:00.0595 4632 NIApplicationWebServer - ok
19:53:00.0635 4632 [ 908B9667F2FD7453CBCF3A2A0444DCC1 ] NIDomainService C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
19:53:00.0645 4632 NIDomainService - ok
19:53:00.0735 4632 [ AA8896BCD689851665EFC02DC41181AC ] NILM License Manager C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
19:53:02.0575 4632 NILM License Manager - ok
19:53:02.0615 4632 [ 8FED4893CB017F81CD1769448AD567E5 ] nimDNSResponder C:\Program Files\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
19:53:02.0615 4632 nimDNSResponder - ok
19:53:02.0655 4632 [ 5BDF6F2C61274D29418D9EE4BC870039 ] NINetworkDiscovery C:\Program Files\National Instruments\Shared\NI Network Discovery\niDiscSvc.exe
19:53:02.0655 4632 NINetworkDiscovery - ok
19:53:02.0685 4632 [ 5C9EBE16E32D39458458B6830D28DE3E ] niSvcLoc C:\Program Files\National Instruments\Shared\NI WebServer\SystemWebServer.exe
19:53:02.0685 4632 niSvcLoc - ok
19:53:02.0735 4632 [ 19D51EE6C8700AF603E937C1F4CF412E ] NITaggerService C:\Program Files\National Instruments\Shared\Tagger\tagsrv.exe
19:53:02.0755 4632 NITaggerService - ok
19:53:02.0795 4632 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
19:53:02.0805 4632 NlaSvc - ok
19:53:02.0815 4632 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:53:02.0815 4632 Npfs - ok
19:53:02.0855 4632 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
19:53:02.0855 4632 nsi - ok
19:53:02.0885 4632 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:53:02.0885 4632 nsiproxy - ok
19:53:02.0945 4632 [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:53:02.0975 4632 Ntfs - ok
19:53:02.0995 4632 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
19:53:03.0005 4632 Null - ok
19:53:03.0035 4632 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:53:03.0035 4632 nvraid - ok
19:53:03.0045 4632 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:53:03.0055 4632 nvstor - ok
19:53:03.0075 4632 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:53:03.0085 4632 nv_agp - ok
19:53:03.0105 4632 [ 634FF60F418792906887B3D6CEECB431 ] O2MDRDR C:\Windows\system32\DRIVERS\o2media.sys
19:53:03.0105 4632 O2MDRDR - ok
19:53:03.0185 4632 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:53:03.0655 4632 odserv - ok
19:53:03.0685 4632 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:53:03.0685 4632 ohci1394 - ok
19:53:03.0745 4632 [ EAE6208900E2986F66F68B30AEF86E4D ] OpcEnum C:\Windows\system32\OpcEnum.exe
19:53:03.0905 4632 OpcEnum - ok
19:53:03.0975 4632 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:53:04.0255 4632 ose - ok
19:53:04.0295 4632 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:53:04.0305 4632 p2pimsvc - ok
19:53:04.0325 4632 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
19:53:04.0335 4632 p2psvc - ok
19:53:04.0365 4632 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:53:04.0365 4632 Parport - ok
19:53:04.0395 4632 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:53:04.0395 4632 partmgr - ok
19:53:04.0415 4632 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
19:53:04.0415 4632 Parvdm - ok
19:53:04.0435 4632 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:53:04.0445 4632 PcaSvc - ok
19:53:04.0455 4632 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
19:53:04.0455 4632 pci - ok
19:53:04.0485 4632 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
19:53:04.0495 4632 pciide - ok
19:53:04.0505 4632 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:53:04.0515 4632 pcmcia - ok
19:53:04.0535 4632 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
19:53:04.0535 4632 pcw - ok
19:53:04.0565 4632 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:53:04.0575 4632 PEAUTH - ok
19:53:04.0645 4632 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:53:04.0685 4632 PeerDistSvc - ok
19:53:04.0755 4632 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
19:53:04.0805 4632 pla - ok
19:53:04.0835 4632 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:53:04.0845 4632 PlugPlay - ok
19:53:04.0875 4632 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:53:04.0875 4632 PNRPAutoReg - ok
19:53:04.0895 4632 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:53:04.0905 4632 PNRPsvc - ok
19:53:04.0935 4632 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:53:05.0325 4632 PolicyAgent - ok
19:53:05.0365 4632 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
19:53:05.0375 4632 Power - ok
19:53:05.0385 4632 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:53:05.0395 4632 PptpMiniport - ok
19:53:05.0425 4632 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:53:05.0435 4632 Processor - ok
19:53:05.0475 4632 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
19:53:05.0475 4632 ProfSvc - ok
19:53:05.0485 4632 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:53:05.0495 4632 ProtectedStorage - ok
19:53:05.0525 4632 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:53:05.0535 4632 Psched - ok
19:53:05.0615 4632 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:53:05.0675 4632 ql2300 - ok
19:53:05.0695 4632 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:53:05.0695 4632 ql40xx - ok
19:53:05.0735 4632 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
19:53:05.0745 4632 QWAVE - ok
19:53:05.0765 4632 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:53:05.0765 4632 QWAVEdrv - ok
19:53:05.0785 4632 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:53:05.0785 4632 RasAcd - ok
19:53:05.0825 4632 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:53:05.0825 4632 RasAgileVpn - ok
19:53:05.0845 4632 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
19:53:05.0855 4632 RasAuto - ok
19:53:05.0875 4632 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:53:05.0885 4632 Rasl2tp - ok
19:53:05.0925 4632 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
19:53:05.0935 4632 RasMan - ok
19:53:05.0955 4632 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:53:05.0955 4632 RasPppoe - ok
19:53:05.0965 4632 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:53:05.0965 4632 RasSstp - ok
19:53:05.0995 4632 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:53:06.0005 4632 rdbss - ok
19:53:06.0035 4632 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:53:06.0035 4632 rdpbus - ok
19:53:06.0065 4632 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:53:06.0075 4632 RDPCDD - ok
19:53:06.0125 4632 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:53:06.0125 4632 RDPDR - ok
19:53:06.0145 4632 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:53:06.0155 4632 RDPENCDD - ok
19:53:06.0165 4632 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:53:06.0165 4632 RDPREFMP - ok
19:53:06.0205 4632 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:53:06.0205 4632 RDPWD - ok
19:53:06.0245 4632 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:53:06.0245 4632 rdyboost - ok
19:53:06.0265 4632 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
19:53:06.0275 4632 RemoteAccess - ok
19:53:06.0305 4632 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:53:06.0315 4632 RemoteRegistry - ok
19:53:06.0355 4632 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:53:06.0365 4632 RFCOMM - ok
19:53:06.0395 4632 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:53:06.0395 4632 RpcEptMapper - ok
19:53:06.0425 4632 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
19:53:06.0425 4632 RpcLocator - ok
19:53:06.0465 4632 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
19:53:06.0475 4632 RpcSs - ok
19:53:06.0515 4632 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:53:06.0515 4632 rspndr - ok
19:53:06.0535 4632 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
19:53:06.0545 4632 s3cap - ok
19:53:06.0555 4632 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
19:53:06.0555 4632 SamSs - ok
19:53:06.0595 4632 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:53:06.0595 4632 SASDIFSV - ok
19:53:06.0615 4632 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:53:06.0615 4632 SASKUTIL - ok
19:53:06.0655 4632 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:53:06.0655 4632 sbp2port - ok
19:53:06.0705 4632 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:53:06.0705 4632 SCardSvr - ok
19:53:06.0725 4632 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:53:06.0735 4632 scfilter - ok
19:53:06.0785 4632 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
19:53:06.0815 4632 Schedule - ok
19:53:06.0845 4632 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:53:06.0845 4632 SCPolicySvc - ok
19:53:06.0885 4632 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
19:53:06.0885 4632 sdbus - ok
19:53:06.0915 4632 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:53:06.0925 4632 SDRSVC - ok
19:53:06.0955 4632 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:53:06.0955 4632 secdrv - ok
19:53:06.0985 4632 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
19:53:06.0985 4632 seclogon - ok
19:53:07.0015 4632 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
19:53:07.0015 4632 SENS - ok
19:53:07.0055 4632 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:53:07.0065 4632 SensrSvc - ok
19:53:07.0075 4632 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:53:07.0075 4632 Serenum - ok
19:53:07.0085 4632 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:53:07.0095 4632 Serial - ok
19:53:07.0115 4632 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:53:07.0115 4632 sermouse - ok
19:53:07.0165 4632 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
19:53:07.0175 4632 SessionEnv - ok
19:53:07.0195 4632 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
19:53:07.0195 4632 sffdisk - ok
19:53:07.0205 4632 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:53:07.0205 4632 sffp_mmc - ok
19:53:07.0235 4632 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
19:53:07.0235 4632 sffp_sd - ok
19:53:07.0245 4632 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:53:07.0255 4632 sfloppy - ok
19:53:07.0285 4632 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:53:07.0295 4632 SharedAccess - ok
19:53:07.0325 4632 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:53:07.0345 4632 ShellHWDetection - ok
19:53:07.0385 4632 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:53:07.0385 4632 sisagp - ok
19:53:07.0415 4632 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:53:07.0415 4632 SiSRaid2 - ok
19:53:07.0425 4632 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:53:07.0425 4632 SiSRaid4 - ok
19:53:07.0435 4632 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:53:07.0445 4632 Smb - ok
19:53:07.0475 4632 [ B6EC7845E26CF7A158A79D01DF086DE1 ] smsbda C:\Windows\system32\drivers\smsbda.sys
19:53:07.0485 4632 smsbda - ok
19:53:07.0525 4632 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:53:07.0535 4632 SNMPTRAP - ok
19:53:07.0555 4632 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
19:53:07.0555 4632 spldr - ok
19:53:07.0585 4632 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
19:53:07.0595 4632 Spooler - ok
19:53:07.0765 4632 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
19:53:07.0855 4632 sppsvc - ok
19:53:07.0875 4632 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:53:07.0885 4632 sppuinotify - ok
19:53:07.0965 4632 [ 0022CFFF1A41E5CE3A764050A7DDF22A ] sptd C:\Windows\System32\Drivers\sptd.sys
19:53:07.0965 4632 sptd - ok
19:53:08.0005 4632 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
19:53:08.0005 4632 SQLBrowser - ok
19:53:08.0045 4632 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
19:53:08.0045 4632 SQLWriter - ok
19:53:08.0085 4632 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:53:08.0085 4632 srv - ok
19:53:08.0105 4632 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:53:08.0115 4632 srv2 - ok
19:53:08.0145 4632 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:53:08.0145 4632 SrvHsfHDA - ok
19:53:08.0195 4632 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
19:53:08.0235 4632 SrvHsfV92 - ok
19:53:08.0265 4632 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
19:53:08.0275 4632 SrvHsfWinac - ok
19:53:08.0295 4632 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:53:08.0295 4632 srvnet - ok
19:53:08.0335 4632 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:53:08.0335 4632 SSDPSRV - ok
19:53:08.0365 4632 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:53:08.0375 4632 SstpSvc - ok
19:53:08.0445 4632 [ E5C796B621F6FBA8616511063D7F0FFE ] StarWindServiceAE C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
19:53:08.0445 4632 StarWindServiceAE - ok
19:53:08.0475 4632 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:53:08.0475 4632 stexstor - ok
19:53:08.0515 4632 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
19:53:08.0535 4632 StiSvc - ok
19:53:08.0575 4632 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
19:53:08.0575 4632 storflt - ok
19:53:08.0625 4632 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
19:53:08.0645 4632 StorSvc - ok
19:53:08.0665 4632 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
19:53:08.0675 4632 storvsc - ok
19:53:08.0685 4632 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
19:53:08.0695 4632 swenum - ok
19:53:08.0825 4632 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
19:53:08.0835 4632 swprv - ok
19:53:08.0865 4632 SynasUSB - ok
19:53:09.0065 4632 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
19:53:09.0095 4632 SysMain - ok
19:53:09.0205 4632 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:53:09.0205 4632 TabletInputService - ok
19:53:09.0305 4632 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
19:53:09.0325 4632 TapiSrv - ok
19:53:09.0665 4632 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
19:53:09.0705 4632 TBS - ok
19:53:09.0765 4632 [ 4E8B9BE71B807B3BAEDB7F4243F85E3C ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:53:09.0815 4632 Tcpip - ok
19:53:09.0875 4632 [ 4E8B9BE71B807B3BAEDB7F4243F85E3C ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:53:09.0885 4632 TCPIP6 - ok
19:53:09.0915 4632 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:53:09.0925 4632 tcpipreg - ok
19:53:09.0965 4632 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:53:09.0965 4632 TDPIPE - ok
19:53:09.0995 4632 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:53:09.0995 4632 TDTCP - ok
19:53:10.0015 4632 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:53:10.0015 4632 tdx - ok
19:53:10.0045 4632 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:53:10.0045 4632 TermDD - ok
19:53:10.0085 4632 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
19:53:10.0105 4632 TermService - ok
19:53:10.0125 4632 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
19:53:10.0135 4632 Themes - ok
19:53:10.0155 4632 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
19:53:10.0155 4632 THREADORDER - ok
19:53:10.0195 4632 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
19:53:10.0195 4632 TrkWks - ok
19:53:10.0245 4632 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:53:10.0255 4632 TrustedInstaller - ok
19:53:10.0285 4632 [ B37B08F2E5EEB1A37E448E09BACE1101 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:53:10.0295 4632 tssecsrv - ok
19:53:10.0335 4632 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:53:10.0335 4632 TsUsbFlt - ok
19:53:10.0385 4632 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:53:10.0395 4632 tunnel - ok
19:53:10.0415 4632 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:53:10.0415 4632 uagp35 - ok
19:53:10.0435 4632 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:53:10.0445 4632 udfs - ok
19:53:10.0475 4632 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:53:10.0485 4632 UI0Detect - ok
19:53:10.0505 4632 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:53:10.0515 4632 uliagpkx - ok
19:53:10.0545 4632 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
19:53:10.0555 4632 umbus - ok
19:53:10.0565 4632 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:53:10.0565 4632 UmPass - ok
19:53:10.0595 4632 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
19:53:10.0605 4632 UmRdpService - ok
19:53:10.0635 4632 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
19:53:10.0645 4632 upnphost - ok
19:53:10.0665 4632 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:53:10.0675 4632 usbaudio - ok
19:53:10.0695 4632 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:53:10.0695 4632 usbccgp - ok
19:53:10.0715 4632 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:53:10.0715 4632 usbcir - ok
19:53:10.0745 4632 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:53:10.0745 4632 usbehci - ok
19:53:10.0785 4632 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:53:10.0795 4632 usbhub - ok
19:53:10.0815 4632 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:53:10.0815 4632 usbohci - ok
19:53:10.0835 4632 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:53:10.0835 4632 usbprint - ok
19:53:10.0865 4632 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:53:10.0865 4632 usbscan - ok
19:53:10.0915 4632 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:53:10.0915 4632 USBSTOR - ok
19:53:10.0945 4632 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:53:10.0945 4632 usbuhci - ok
19:53:10.0985 4632 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
19:53:10.0995 4632 usbvideo - ok
19:53:11.0035 4632 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
19:53:11.0155 4632 UxSms - ok
19:53:11.0185 4632 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
19:53:11.0185 4632 VaultSvc - ok
19:53:11.0205 4632 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:53:11.0205 4632 vdrvroot - ok
19:53:11.0245 4632 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
19:53:11.0265 4632 vds - ok
19:53:11.0295 4632 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:53:11.0295 4632 vga - ok
19:53:11.0315 4632 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
19:53:11.0315 4632 VgaSave - ok
19:53:11.0355 4632 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:53:11.0365 4632 vhdmp - ok
19:53:11.0395 4632 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:53:11.0395 4632 viaagp - ok
19:53:11.0415 4632 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
19:53:11.0425 4632 ViaC7 - ok
19:53:11.0435 4632 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
19:53:11.0435 4632 viaide - ok
19:53:11.0455 4632 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
19:53:11.0465 4632 vmbus - ok
19:53:11.0475 4632 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
19:53:11.0485 4632 VMBusHID - ok
19:53:11.0505 4632 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:53:11.0505 4632 volmgr - ok
19:53:11.0525 4632 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:53:11.0535 4632 volmgrx - ok
19:53:11.0575 4632 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:53:11.0575 4632 volsnap - ok
19:53:11.0675 4632 [ 4D8FC912E146DE0115392381C7114588 ] vpnagent C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
19:53:11.0685 4632 vpnagent - ok
19:53:11.0725 4632 [ EA39F36302DACBCDCDB113313718E768 ] vpnva C:\Windows\system32\DRIVERS\vpnva.sys
19:53:11.0725 4632 vpnva - ok
19:53:11.0755 4632 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:53:11.0765 4632 vsmraid - ok
19:53:11.0815 4632 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
19:53:11.0885 4632 VSS - ok
19:53:11.0915 4632 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:53:11.0915 4632 vwifibus - ok
19:53:11.0955 4632 [ 7090D3436EEB4E7DA3373090A23448F7 ] VWiFiFlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:53:11.0955 4632 VWiFiFlt - ok
19:53:11.0965 4632 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:53:11.0975 4632 vwifimp - ok
19:53:12.0005 4632 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
19:53:12.0015 4632 W32Time - ok
19:53:12.0045 4632 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:53:12.0045 4632 WacomPen - ok
19:53:12.0075 4632 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:53:12.0075 4632 WANARP - ok
19:53:12.0085 4632 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:53:12.0085 4632 Wanarpv6 - ok
19:53:12.0145 4632 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:53:14.0435 4632 WatAdminSvc - ok
19:53:14.0495 4632 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
19:53:14.0535 4632 wbengine - ok
19:53:14.0565 4632 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:53:14.0565 4632 WbioSrvc - ok
19:53:14.0615 4632 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:53:14.0615 4632 wcncsvc - ok
19:53:14.0625 4632 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:53:14.0635 4632 WcsPlugInService - ok
19:53:14.0665 4632 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:53:14.0665 4632 Wd - ok
19:53:14.0705 4632 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:53:14.0755 4632 Wdf01000 - ok
19:53:14.0785 4632 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:53:14.0795 4632 WdiServiceHost - ok
19:53:14.0815 4632 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:53:14.0825 4632 WdiSystemHost - ok
19:53:14.0885 4632 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
19:53:14.0895 4632 WebClient - ok
19:53:14.0905 4632 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:53:14.0905 4632 Wecsvc - ok
19:53:14.0925 4632 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:53:14.0935 4632 wercplsupport - ok
19:53:14.0965 4632 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
19:53:14.0975 4632 WerSvc - ok
19:53:15.0015 4632 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:53:15.0015 4632 WfpLwf - ok
19:53:15.0045 4632 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:53:15.0045 4632 WIMMount - ok
19:53:15.0115 4632 [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:53:15.0125 4632 WinDefend - ok
19:53:15.0195 4632 [ 30A28BD515A9888ACA7CBF446C3735D8 ] WinDriver6 C:\Windows\system32\drivers\windrvr6.sys
19:53:15.0205 4632 WinDriver6 - ok
19:53:15.0225 4632 WinHttpAutoProxySvc - ok
19:53:15.0295 4632 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:53:15.0295 4632 Winmgmt - ok
19:53:15.0355 4632 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
19:53:15.0405 4632 WinRM - ok
19:53:15.0475 4632 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:53:15.0475 4632 WinUsb - ok
19:53:15.0525 4632 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:53:15.0555 4632 Wlansvc - ok
19:53:15.0615 4632 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:53:15.0615 4632 WmiAcpi - ok
19:53:15.0655 4632 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:53:15.0655 4632 wmiApSrv - ok
19:53:15.0735 4632 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:53:15.0775 4632 WMPNetworkSvc - ok
19:53:15.0805 4632 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:53:15.0805 4632 WPCSvc - ok
19:53:15.0845 4632 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:53:15.0845 4632 WPDBusEnum - ok
19:53:15.0875 4632 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:53:15.0875 4632 ws2ifsl - ok
19:53:15.0935 4632 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
19:53:15.0935 4632 wscsvc - ok
19:53:15.0955 4632 WSearch - ok
19:53:16.0025 4632 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
19:53:16.0085 4632 wuauserv - ok
19:53:16.0115 4632 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:53:16.0115 4632 WudfPf - ok
19:53:16.0145 4632 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:53:16.0145 4632 WUDFRd - ok
19:53:16.0195 4632 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:53:16.0195 4632 wudfsvc - ok
19:53:16.0235 4632 [ 3C5E51C05BE9B56EAFF4E388C3AB25E4 ] WwanSvc C:\Windows\System32\wwansvc.dll
19:53:16.0245 4632 WwanSvc - ok
19:53:16.0315 4632 ================ Scan global ===============================
19:53:16.0345 4632 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
19:53:16.0695 4632 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
19:53:17.0035 4632 [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
19:53:17.0065 4632 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
19:53:17.0185 4632 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
19:53:17.0195 4632 [Global] - ok
19:53:17.0195 4632 ================ Scan MBR ==================================
19:53:17.0205 4632 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:53:17.0435 4632 \Device\Harddisk0\DR0 - ok
19:53:17.0445 4632 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR3
19:53:21.0235 4632 \Device\Harddisk1\DR3 - ok
19:53:21.0235 4632 ================ Scan VBR ==================================
19:53:21.0245 4632 [ C27E555F2F17C55FC4F0A854FBB2FE20 ] \Device\Harddisk0\DR0\Partition1
19:53:21.0245 4632 \Device\Harddisk0\DR0\Partition1 - ok
19:53:21.0295 4632 [ C8C752CA098F945301F997D7A2C858E9 ] \Device\Harddisk0\DR0\Partition2
19:53:21.0295 4632 \Device\Harddisk0\DR0\Partition2 - ok
19:53:21.0315 4632 [ 70E6CEA448C564E97E70B598D3B71432 ] \Device\Harddisk0\DR0\Partition3
19:53:21.0315 4632 \Device\Harddisk0\DR0\Partition3 - ok
19:53:21.0325 4632 [ BA5CE6609DC8A252382911C5ACD4FCED ] \Device\Harddisk1\DR3\Partition1
19:53:21.0325 4632 \Device\Harddisk1\DR3\Partition1 - ok
19:53:21.0325 4632 ============================================================
19:53:21.0325 4632 Scan finished
19:53:21.0325 4632 ============================================================
19:53:21.0335 6320 Detected object count: 0
19:53:21.0335 6320 Actual detected object count: 0
Re: Samovolná deaktivace aktivního okna ve Win7
ASWmbr se mi bohužel zasekl při testování souboru ntdll.dll viz screen.
Jinak 100 % zatížení nastává cca. každých 15 minut a také když jsem se snažil připojit k síti zapnutím wi-fi (poté vypadá, že je ntb správně připojený, ale síť není dostupná - aktualizace ASWmbr, ping přes CMD atd.) Ta deaktivace oken se při tom někdy děje, někdy ne.
Log z ASWmbr:
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-08-19 20:25:54
-----------------------------
20:25:54.036 OS Version: Windows 6.1.7601 Service Pack 1
20:25:54.036 Number of processors: 2 586 0xF0D
20:25:54.036 ComputerName: LUKAS-PC UserName: Lukas
20:26:03.096 Initialize success
20:36:25.588 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-1
20:36:31.558 Disk 0 Vendor: WDC_WD3200BEVT-22ZCT0 11.01A11 Size: 305245MB BusType: 11
20:36:38.538 Disk 0 MBR read successfully
20:36:38.538 Disk 0 MBR scan
20:36:38.548 Disk 0 Windows 7 default MBR code
20:36:38.548 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
20:36:38.558 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 69900 MB offset 206848
20:36:38.598 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 235243 MB offset 143362048
20:36:38.598 Disk 0 scanning sectors +625139712
20:36:38.698 Disk 0 scanning C:\Windows\system32\drivers
20:38:14.009 Service scanning
20:39:56.649 Modules scanning
21:54:16.270 Disk 0 MBR has been saved successfully to "C:\Users\Lukas\Desktop\MBR.dat"
21:54:16.270 The log file has been saved successfully to "C:\Users\Lukas\Desktop\aswMBR.txt"
Jinak 100 % zatížení nastává cca. každých 15 minut a také když jsem se snažil připojit k síti zapnutím wi-fi (poté vypadá, že je ntb správně připojený, ale síť není dostupná - aktualizace ASWmbr, ping přes CMD atd.) Ta deaktivace oken se při tom někdy děje, někdy ne.
Log z ASWmbr:
aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-08-19 20:25:54
-----------------------------
20:25:54.036 OS Version: Windows 6.1.7601 Service Pack 1
20:25:54.036 Number of processors: 2 586 0xF0D
20:25:54.036 ComputerName: LUKAS-PC UserName: Lukas
20:26:03.096 Initialize success
20:36:25.588 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-1
20:36:31.558 Disk 0 Vendor: WDC_WD3200BEVT-22ZCT0 11.01A11 Size: 305245MB BusType: 11
20:36:38.538 Disk 0 MBR read successfully
20:36:38.538 Disk 0 MBR scan
20:36:38.548 Disk 0 Windows 7 default MBR code
20:36:38.548 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
20:36:38.558 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 69900 MB offset 206848
20:36:38.598 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 235243 MB offset 143362048
20:36:38.598 Disk 0 scanning sectors +625139712
20:36:38.698 Disk 0 scanning C:\Windows\system32\drivers
20:38:14.009 Service scanning
20:39:56.649 Modules scanning
21:54:16.270 Disk 0 MBR has been saved successfully to "C:\Users\Lukas\Desktop\MBR.dat"
21:54:16.270 The log file has been saved successfully to "C:\Users\Lukas\Desktop\aswMBR.txt"
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Samovolná deaktivace aktivního okna ve Win7
Tady to taky vypadá neškodné, ale pro jistotu
Mám podezření na nějakou SW kolizi - udělej nový RSITKlikni na https://www.virustotal.com
po kliknutí na "Choose File" jen zkopíruj do řádku "Název souboru":
C:\Users\Lukas\Desktop\MBR.dat
"Scan It" (pokud byl již testován, nech testovat znovu - Reanalyse)
Trpělivě vyčkej dokončení scanu dokud se neobjeví konečný výsledek např.0/41
Do fóra zkopíruj výsledný log. nebo odkaz z adresního řádku na stránku.
Pokud nebude nález stačí jen oznámit
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Re: Samovolná deaktivace aktivního okna ve Win7
Soubor MBR.dat je čistý.
Zkusil jsem spustit RSIT, jak při 100 % zatížení, tak při 50 % (obvyklém) zatížení, ale bez úspěchu. Zasekne se na začátku při zápisu hlavičky souboru (už v začátku v konzoli program neodpovídá) - do logu to sice zapíše: "Logfile of random's system information tool 1.09 (written by random/random) Run by Lukas at 2013-08-20 12:15:36", ale to je všechno. Zkusil jsem tedy tomu procesu nastavit vyšší prioritu, ale bez rozdílu. Nemám to ještě párkrát zkusit?
Nemám potom ještě zkusit znovu spustit ASWmbr a počkat, dokud to někam dojede a dát fix?
Tady je aspoň screen při obvyklém zatížení. Při 100 % to odpovídalo předešlým screenshotům (vpnagent + svchost), ale vzhledem ke zpomalení bylo obtížné cokoliv spouštět.
Ještě mě napadlo, jestli nemám dát PC restartovat (zatím jsem to od počátku problém nedělal).
Zkusil jsem spustit RSIT, jak při 100 % zatížení, tak při 50 % (obvyklém) zatížení, ale bez úspěchu. Zasekne se na začátku při zápisu hlavičky souboru (už v začátku v konzoli program neodpovídá) - do logu to sice zapíše: "Logfile of random's system information tool 1.09 (written by random/random) Run by Lukas at 2013-08-20 12:15:36", ale to je všechno. Zkusil jsem tedy tomu procesu nastavit vyšší prioritu, ale bez rozdílu. Nemám to ještě párkrát zkusit?
Nemám potom ještě zkusit znovu spustit ASWmbr a počkat, dokud to někam dojede a dát fix?
Tady je aspoň screen při obvyklém zatížení. Při 100 % to odpovídalo předešlým screenshotům (vpnagent + svchost), ale vzhledem ke zpomalení bylo obtížné cokoliv spouštět.
Ještě mě napadlo, jestli nemám dát PC restartovat (zatím jsem to od počátku problém nedělal).
Re: Samovolná deaktivace aktivního okna ve Win7
restartni PC a vytvor log FRST http://forum.viry.cz/viewtopic.php?f=13&t=130781
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Samovolná deaktivace aktivního okna ve Win7
FRST se mi podařilo spustit, ale při "Getting Hosts Content" to vyhodilo hlášku "AutoIT: Error allocating memory" a po OK se program ukončil. Na flashdisku log chybí.
Po restartu mi ntb naběhl klasicky do win7, ale vše je dost zpomalené.
Po restartu mi ntb naběhl klasicky do win7, ale vše je dost zpomalené.
Re: Samovolná deaktivace aktivního okna ve Win7
nejde vytvorit ani RSIT log ?
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Samovolná deaktivace aktivního okna ve Win7
Bohužel se zasekne hned na začátku při zápisu inf. hlavičky.
Mám ho zkusit pustit z flashdisku v nouzovém režimu, jestli je to možné?
Mám ho zkusit pustit z flashdisku v nouzovém režimu, jestli je to možné?
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Samovolná deaktivace aktivního okna ve Win7
Pokusem nic nezkazíš - je to jen scaner 
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Přispějete na provoz fóra?
