Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Podezření na Virus

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
siOnzee
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 26 kvě 2012 13:56

Podezření na Virus

#1 Příspěvek od siOnzee »

Dobrý den, poslední dobou začínám mít zasekaný počítač, HW mam dost dobrý aby běžel plynule jako dřív.
Projel jsem Windows Defender,Avast Free (Plná kontrola systému), CCleaner Free.
Podezření mam na svchost.exe (170 MB paměti) Když ho vypnu, ukončí se i dwm.exe
ale systém najednou běží jak po nainstalaci,pomůžete mi vyřešit tento problém ? Děkuji vám.
Používám Windows 7 Ultimate 64-Bit
mam 8 GB paměti

VirusTotaly
https://www.virustotal.com/file/121118a ... /analysis/

tasklist /svc

Kód: Vybrat vše

Microsoft Windows [Verze 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. Všechna práva vyhrazena.

C:\Users\siOnzee>tasklist /svc

Název procesu                  PID Služby
========================= ======== ============================================
System Idle Process              0 Není k dispozici
System                           4 Není k dispozici
smss.exe                       344 Není k dispozici
csrss.exe                      580 Není k dispozici
wininit.exe                    648 Není k dispozici
csrss.exe                      672 Není k dispozici
services.exe                   736 Není k dispozici
winlogon.exe                   744 Není k dispozici
lsass.exe                      772 EFS, SamSs
lsm.exe                        784 Není k dispozici
svchost.exe                    900 DcomLaunch, PlugPlay, Power
svchost.exe                   1000 RpcEptMapper, RpcSs
svchost.exe                    600 AudioSrv, Dhcp, eventlog,
                                   HomeGroupProvider, lmhosts, wscsvc
svchost.exe                    800 AudioEndpointBuilder, hidserv, Netman,
                                   PcaSvc, SysMain, TrkWks, UxSms,
                                   WdiSystemHost, wudfsvc
svchost.exe                    856 AeLookupSvc, Browser, gpsvc, LanmanServer,
                                   ProfSvc, Schedule, SENS, ShellHWDetection,
                                   Themes, Winmgmt, wuauserv
svchost.exe                   1144 EventSystem, fdPHost, netprofm, nsi,
                                   WdiServiceHost, WinHttpAutoProxySvc
svchost.exe                   1248 CryptSvc, Dnscache, LanmanWorkstation,
                                   NlaSvc
AvastSvc.exe                  1308 avast! Antivirus
dwm.exe                       1444 Není k dispozici
explorer.exe                  1468 Není k dispozici
spoolsv.exe                   1540 Spooler
svchost.exe                   1704 BFE, DPS, MpsSvc
svchost.exe                   1824 FDResPub, FontCache, SSDPSRV, wcncsvc
HiPatchService.exe            1864 HiPatchService
PnkBstrA.exe                  2032 PnkBstrA
RocketDock.exe                2452 Není k dispozici
AvastUI.exe                   2488 Není k dispozici
TSVNCache.exe                 2760 Není k dispozici
SearchIndexer.exe             2828 WSearch
svchost.exe                   2996 PolicyAgent
svchost.exe                   3916 WinDefend
taskmgr.exe                   1224 Není k dispozici
chrome.exe                    2376 Není k dispozici
chrome.exe                    2692 Není k dispozici
chrome.exe                    3724 Není k dispozici
chrome.exe                    2528 Není k dispozici
chrome.exe                    3124 Není k dispozici
rundll32.exe                  1680 Není k dispozici
chrome.exe                    1960 Není k dispozici
audiodg.exe                   1520 Není k dispozici
chrome.exe                    3500 Není k dispozici
msiexec.exe                   3440 msiserver
svchost.exe                   2652 swprv
HiJackThis.exe                3804 Není k dispozici
WmiPrvSE.exe                  2664 Není k dispozici
notepad.exe                   4048 Není k dispozici
chrome.exe                    3404 Není k dispozici
SearchProtocolHost.exe        1020 Není k dispozici
SearchFilterHost.exe          1840 Není k dispozici
cmd.exe                       3740 Není k dispozici
conhost.exe                   3700 Není k dispozici
tasklist.exe                  1796 Není k dispozici
HijakThis

Kód: Vybrat vše

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:58:07, on 26.5.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?babsrc=HP_ss&affID=100489&mntrId=e029a86e00000000000050e54955233f
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: Copypasta from: http://forum.cgpersia.com/f13/cs6-activation-full-53040/#ixzz1uqq7Bc00
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\RunOnce: [EasyTuneVI] C:\Program Files (x86)\GIGABYTE\ET6\ETCall.exe
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files (x86)\ICQ7M\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

--
End of file - 8522 bytes
Nahoru
siOnzee
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 26 kvě 2012 13:56

Re: Podezření na Virus

#2 Příspěvek od siOnzee »

Soubor C:\PhysicalMBR.bin
https://www.virustotal.com/file/b141db0 ... 338039275/
Udělal jsem ten OTL,ty 2 soubory co si chtěl jsou v přiloze,děkuju za tvůj čas a vůbec za tohle forum :) sám nevim jak se vám mám odvděčit :)
Přílohy
OTL.rar
(122.56 KiB) Staženo 44 x
Nahoru
siOnzee
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 26 kvě 2012 13:56

Re: Podezření na Virus

#3 Příspěvek od siOnzee »

Kód: Vybrat vše

15:54:05.0403 5424	TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
15:54:05.0503 5424	============================================================
15:54:05.0503 5424	Current date / time: 2012/05/26 15:54:05.0503
15:54:05.0503 5424	SystemInfo:
15:54:05.0503 5424	
15:54:05.0503 5424	OS Version: 6.1.7601 ServicePack: 1.0
15:54:05.0503 5424	Product type: Workstation
15:54:05.0503 5424	ComputerName: SIONZEE
15:54:05.0503 5424	UserName: siOnzee
15:54:05.0503 5424	Windows directory: C:\Windows
15:54:05.0503 5424	System windows directory: C:\Windows
15:54:05.0503 5424	Running under WOW64
15:54:05.0503 5424	Processor architecture: Intel x64
15:54:05.0503 5424	Number of processors: 6
15:54:05.0503 5424	Page size: 0x1000
15:54:05.0503 5424	Boot type: Normal boot
15:54:05.0503 5424	============================================================
15:54:06.0609 5424	Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:54:06.0631 5424	Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
15:54:06.0648 5424	Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
15:54:06.0653 5424	============================================================
15:54:06.0653 5424	\Device\Harddisk0\DR0:
15:54:06.0659 5424	MBR partitions:
15:54:06.0659 5424	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
15:54:06.0659 5424	\Device\Harddisk1\DR1:
15:54:06.0672 5424	MBR partitions:
15:54:06.0675 5424	\Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0xFFF6D44
15:54:06.0675 5424	\Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0xFFFAC44, BlocksNum 0x2A1DE7D
15:54:06.0675 5424	\Device\Harddisk2\DR2:
15:54:06.0676 5424	MBR partitions:
15:54:06.0676 5424	\Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A388302
15:54:06.0676 5424	============================================================
15:54:06.0686 5424	C: <-> \Device\Harddisk0\DR0\Partition0
15:54:06.0741 5424	E: <-> \Device\Harddisk1\DR1\Partition1
15:54:06.0761 5424	F: <-> \Device\Harddisk2\DR2\Partition0
15:54:06.0791 5424	G: <-> \Device\Harddisk1\DR1\Partition0
15:54:06.0791 5424	============================================================
15:54:06.0791 5424	Initialize success
15:54:06.0791 5424	============================================================
15:54:25.0095 4424	============================================================
15:54:25.0095 4424	Scan started
15:54:25.0095 4424	Mode: Manual; SigCheck; TDLFS; 
15:54:25.0095 4424	============================================================
15:54:26.0077 4424	1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:54:26.0161 4424	1394ohci - ok
15:54:26.0254 4424	ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:54:26.0277 4424	ACPI - ok
15:54:26.0316 4424	AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:54:26.0371 4424	AcpiPmi - ok
15:54:26.0441 4424	AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:54:26.0461 4424	AdobeFlashPlayerUpdateSvc - ok
15:54:26.0516 4424	adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:54:26.0539 4424	adp94xx - ok
15:54:26.0585 4424	adpahci         (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:54:26.0605 4424	adpahci - ok
15:54:26.0647 4424	adpu320         (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:54:26.0669 4424	adpu320 - ok
15:54:26.0711 4424	AeLookupSvc     (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
15:54:26.0831 4424	AeLookupSvc - ok
15:54:26.0920 4424	AFD             (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
15:54:26.0957 4424	AFD - ok
15:54:27.0021 4424	AfterFLICS v3 - ok
15:54:27.0057 4424	agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:54:27.0067 4424	agp440 - ok
15:54:27.0093 4424	ALG             (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
15:54:27.0135 4424	ALG - ok
15:54:27.0175 4424	aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:54:27.0184 4424	aliide - ok
15:54:27.0201 4424	amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:54:27.0210 4424	amdide - ok
15:54:27.0224 4424	AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:54:27.0271 4424	AmdK8 - ok
15:54:27.0285 4424	AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:54:27.0310 4424	AmdPPM - ok
15:54:27.0353 4424	amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:54:27.0368 4424	amdsata - ok
15:54:27.0384 4424	amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:54:27.0400 4424	amdsbs - ok
15:54:27.0453 4424	amdxata         (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:54:27.0462 4424	amdxata - ok
15:54:27.0480 4424	Andbus - ok
15:54:27.0483 4424	AndDiag - ok
15:54:27.0493 4424	AndGps - ok
15:54:27.0497 4424	ANDModem - ok
15:54:27.0541 4424	androidusb      (363571bc0c79e394e69300d1f2e3ddae) C:\Windows\system32\Drivers\androidusb.sys
15:54:27.0580 4424	androidusb - ok
15:54:27.0620 4424	AppID           (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:54:27.0777 4424	AppID - ok
15:54:27.0795 4424	AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
15:54:27.0836 4424	AppIDSvc - ok
15:54:27.0886 4424	Appinfo         (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
15:54:27.0925 4424	Appinfo - ok
15:54:27.0953 4424	AppMgmt         (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
15:54:27.0975 4424	AppMgmt - ok
15:54:27.0996 4424	arc             (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:54:28.0012 4424	arc - ok
15:54:28.0039 4424	arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:54:28.0054 4424	arcsas - ok
15:54:28.0144 4424	aspnet_state    (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:54:28.0153 4424	aspnet_state - ok
15:54:28.0159 4424	aswFsBlk        (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys
15:54:28.0176 4424	aswFsBlk - ok
15:54:28.0202 4424	aswMonFlt       (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys
15:54:28.0212 4424	aswMonFlt - ok
15:54:28.0231 4424	aswRdr          (1b96a5867abd4fa6135d8298fcccf9c6) C:\Windows\System32\Drivers\aswrdr2.sys
15:54:28.0241 4424	aswRdr - ok
15:54:28.0282 4424	aswSnx          (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys
15:54:28.0320 4424	aswSnx - ok
15:54:28.0379 4424	aswSP           (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys
15:54:28.0398 4424	aswSP - ok
15:54:28.0434 4424	aswTdi          (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys
15:54:28.0443 4424	aswTdi - ok
15:54:28.0468 4424	AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:54:28.0508 4424	AsyncMac - ok
15:54:28.0546 4424	atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:54:28.0554 4424	atapi - ok
15:54:28.0616 4424	AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
15:54:28.0668 4424	AudioEndpointBuilder - ok
15:54:28.0673 4424	AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
15:54:28.0701 4424	AudioSrv - ok
15:54:28.0765 4424	avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:54:28.0773 4424	avast! Antivirus - ok
15:54:28.0822 4424	AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
15:54:28.0909 4424	AxInstSV - ok
15:54:28.0971 4424	b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:54:29.0026 4424	b06bdrv - ok
15:54:29.0048 4424	b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:54:29.0086 4424	b57nd60a - ok
15:54:29.0114 4424	BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
15:54:29.0160 4424	BDESVC - ok
15:54:29.0164 4424	Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:54:29.0200 4424	Beep - ok
15:54:29.0264 4424	BFE             (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
15:54:29.0323 4424	BFE - ok
15:54:29.0385 4424	BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
15:54:29.0474 4424	BITS - ok
15:54:29.0584 4424	blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:54:29.0603 4424	blbdrive - ok
15:54:29.0709 4424	bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:54:29.0913 4424	bowser - ok
15:54:29.0937 4424	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:54:29.0979 4424	BrFiltLo - ok
15:54:29.0982 4424	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:54:29.0993 4424	BrFiltUp - ok
15:54:30.0039 4424	Browser         (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
15:54:30.0090 4424	Browser - ok
15:54:30.0116 4424	Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:54:30.0169 4424	Brserid - ok
15:54:30.0173 4424	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:54:30.0196 4424	BrSerWdm - ok
15:54:30.0199 4424	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:54:30.0213 4424	BrUsbMdm - ok
15:54:30.0216 4424	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:54:30.0228 4424	BrUsbSer - ok
15:54:30.0234 4424	BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:54:30.0247 4424	BTHMODEM - ok
15:54:30.0271 4424	bthserv         (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
15:54:30.0311 4424	bthserv - ok
15:54:30.0326 4424	cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:54:30.0371 4424	cdfs - ok
15:54:30.0412 4424	cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:54:30.0438 4424	cdrom - ok
15:54:30.0477 4424	CertPropSvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
15:54:30.0503 4424	CertPropSvc - ok
15:54:30.0527 4424	circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:54:30.0551 4424	circlass - ok
15:54:30.0578 4424	CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:54:30.0599 4424	CLFS - ok
15:54:30.0656 4424	clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:54:30.0666 4424	clr_optimization_v2.0.50727_32 - ok
15:54:30.0702 4424	clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:54:30.0717 4424	clr_optimization_v2.0.50727_64 - ok
15:54:30.0760 4424	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:54:30.0774 4424	clr_optimization_v4.0.30319_32 - ok
15:54:30.0795 4424	clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:54:30.0809 4424	clr_optimization_v4.0.30319_64 - ok
15:54:30.0820 4424	CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:54:30.0841 4424	CmBatt - ok
15:54:30.0880 4424	cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:54:30.0889 4424	cmdide - ok
15:54:30.0945 4424	CNG             (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
15:54:30.0969 4424	CNG - ok
15:54:30.0981 4424	Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:54:30.0990 4424	Compbatt - ok
15:54:31.0024 4424	CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:54:31.0047 4424	CompositeBus - ok
15:54:31.0049 4424	COMSysApp - ok
15:54:31.0072 4424	crcdisk         (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:54:31.0081 4424	crcdisk - ok
15:54:31.0123 4424	CryptSvc        (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
15:54:31.0167 4424	CryptSvc - ok
15:54:31.0219 4424	CSC             (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
15:54:31.0330 4424	CSC - ok
15:54:31.0428 4424	CscService      (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
15:54:31.0469 4424	CscService - ok
15:54:31.0524 4424	DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
15:54:31.0578 4424	DcomLaunch - ok
15:54:31.0610 4424	defragsvc       (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
15:54:31.0662 4424	defragsvc - ok
15:54:31.0728 4424	DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:54:31.0773 4424	DfsC - ok
15:54:31.0816 4424	Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
15:54:31.0853 4424	Dhcp - ok
15:54:31.0864 4424	discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:54:31.0906 4424	discache - ok
15:54:31.0930 4424	Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:54:31.0940 4424	Disk - ok
15:54:31.0984 4424	Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
15:54:32.0024 4424	Dnscache - ok
15:54:32.0072 4424	dot3svc         (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
15:54:32.0119 4424	dot3svc - ok
15:54:32.0166 4424	DPS             (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
15:54:32.0203 4424	DPS - ok
15:54:32.0235 4424	drmkaud         (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:54:32.0256 4424	drmkaud - ok
15:54:32.0328 4424	DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:54:32.0368 4424	DXGKrnl - ok
15:54:32.0403 4424	EapHost         (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
15:54:32.0447 4424	EapHost - ok
15:54:32.0585 4424	ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:54:32.0729 4424	ebdrv - ok
15:54:32.0811 4424	EFS             (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
15:54:32.0841 4424	EFS - ok
15:54:32.0912 4424	ehRecvr         (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
15:54:32.0964 4424	ehRecvr - ok
15:54:32.0980 4424	ehSched         (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
15:54:33.0004 4424	ehSched - ok
15:54:33.0042 4424	ElbyCDIO        (a05fc7eca0966ebb70e4d17b855a853b) C:\Windows\system32\Drivers\ElbyCDIO.sys
15:54:33.0052 4424	ElbyCDIO - ok
15:54:33.0092 4424	elxstor         (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:54:33.0122 4424	elxstor - ok
15:54:33.0154 4424	ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:54:33.0180 4424	ErrDev - ok
15:54:33.0209 4424	etdrv           (84486624268e078255bc7aa47f0960bc) C:\Windows\etdrv.sys
15:54:33.0217 4424	etdrv - ok
15:54:33.0244 4424	EtronHub3       (3663291d0d26001a2bb67678ab61d14c) C:\Windows\system32\Drivers\EtronHub3.sys
15:54:33.0270 4424	EtronHub3 - ok
15:54:33.0284 4424	EtronXHCI       (744420d6c062c38f7361870f010d6d4b) C:\Windows\system32\Drivers\EtronXHCI.sys
15:54:33.0304 4424	EtronXHCI - ok
15:54:33.0340 4424	EventSystem     (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
15:54:33.0390 4424	EventSystem - ok
15:54:33.0417 4424	exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:54:33.0458 4424	exfat - ok
15:54:33.0477 4424	fastfat         (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:54:33.0519 4424	fastfat - ok
15:54:33.0572 4424	Fax             (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
15:54:33.0623 4424	Fax - ok
15:54:33.0634 4424	fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:54:33.0644 4424	fdc - ok
15:54:33.0667 4424	fdPHost         (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
15:54:33.0714 4424	fdPHost - ok
15:54:33.0725 4424	FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
15:54:33.0764 4424	FDResPub - ok
15:54:33.0782 4424	FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:54:33.0792 4424	FileInfo - ok
15:54:33.0803 4424	Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:54:33.0837 4424	Filetrace - ok
15:54:33.0941 4424	FLEXnet Licensing Service 64 (64ab6f28047744b9b19c97459c2ab31b) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
15:54:33.0986 4424	FLEXnet Licensing Service 64 - ok
15:54:34.0069 4424	flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:54:34.0080 4424	flpydisk - ok
15:54:34.0130 4424	FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:54:34.0152 4424	FltMgr - ok
15:54:34.0229 4424	FontCache       (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
15:54:34.0297 4424	FontCache - ok
15:54:34.0377 4424	FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:54:34.0385 4424	FontCache3.0.0.0 - ok
15:54:34.0426 4424	FsDepends       (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:54:34.0435 4424	FsDepends - ok
15:54:34.0459 4424	Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
15:54:34.0468 4424	Fs_Rec - ok
15:54:34.0513 4424	fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:54:34.0538 4424	fvevol - ok
15:54:34.0552 4424	gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:54:34.0562 4424	gagp30kx - ok
15:54:34.0609 4424	gdrv            (7907e14f9bcf3a4689c9a74a1a873cb6) C:\Windows\gdrv.sys
15:54:34.0617 4424	gdrv - ok
15:54:34.0684 4424	gpsvc           (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
15:54:34.0739 4424	gpsvc - ok
15:54:34.0805 4424	gupdate         (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:54:34.0820 4424	gupdate - ok
15:54:34.0822 4424	gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:54:34.0830 4424	gupdatem - ok
15:54:34.0850 4424	GVTDrv64        (8126331fbd4ed29eb3b356f9c905064d) C:\Windows\GVTDrv64.sys
15:54:34.0859 4424	GVTDrv64 - ok
15:54:34.0885 4424	hamachi         (f8f0851d336c3b88dbd7232b6348e09a) C:\Windows\system32\DRIVERS\hamachi.sys
15:54:34.0893 4424	hamachi - ok
15:54:34.0918 4424	hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:54:34.0936 4424	hcw85cir - ok
15:54:34.0982 4424	HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
15:54:35.0015 4424	HdAudAddService - ok
15:54:35.0033 4424	HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:54:35.0068 4424	HDAudBus - ok
15:54:35.0087 4424	HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:54:35.0110 4424	HidBatt - ok
15:54:35.0116 4424	HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:54:35.0148 4424	HidBth - ok
15:54:35.0168 4424	HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:54:35.0180 4424	HidIr - ok
15:54:35.0210 4424	hidserv         (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
15:54:35.0247 4424	hidserv - ok
15:54:35.0280 4424	HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
15:54:35.0291 4424	HidUsb - ok
15:54:35.0329 4424	HiPatchService  (0d21e751c643306d2b83c982a013b891) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
15:54:35.0343 4424	HiPatchService ( UnsignedFile.Multi.Generic ) - warning
15:54:35.0343 4424	HiPatchService - detected UnsignedFile.Multi.Generic (1)
15:54:35.0381 4424	hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
15:54:35.0425 4424	hkmsvc - ok
15:54:35.0469 4424	HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
15:54:35.0516 4424	HomeGroupListener - ok
15:54:35.0563 4424	HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
15:54:35.0598 4424	HomeGroupProvider - ok
15:54:35.0640 4424	HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:54:35.0651 4424	HpSAMD - ok
15:54:35.0718 4424	HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:54:35.0779 4424	HTTP - ok
15:54:35.0812 4424	hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:54:35.0820 4424	hwpolicy - ok
15:54:35.0856 4424	i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
15:54:35.0872 4424	i8042prt - ok
15:54:35.0919 4424	iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:54:35.0940 4424	iaStorV - ok
15:54:35.0987 4424	IDriverT        (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:54:35.0991 4424	IDriverT ( UnsignedFile.Multi.Generic ) - warning
15:54:35.0991 4424	IDriverT - detected UnsignedFile.Multi.Generic (1)
15:54:36.0092 4424	idsvc           (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:54:36.0132 4424	idsvc - ok
15:54:36.0197 4424	iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:54:36.0207 4424	iirsp - ok
15:54:36.0269 4424	IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
15:54:36.0331 4424	IKEEXT - ok
15:54:36.0454 4424	IntcAzAudAddService (9297bc7fb61f58670ee176dd18f4dd92) C:\Windows\system32\drivers\RTKVHD64.sys
15:54:36.0568 4424	IntcAzAudAddService - ok
15:54:36.0685 4424	intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:54:36.0694 4424	intelide - ok
15:54:36.0714 4424	intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:54:36.0739 4424	intelppm - ok
15:54:36.0765 4424	IPBusEnum       (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
15:54:36.0809 4424	IPBusEnum - ok
15:54:36.0846 4424	IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:54:36.0891 4424	IpFilterDriver - ok
15:54:36.0953 4424	iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
15:54:36.0990 4424	iphlpsvc - ok
15:54:37.0094 4424	IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:54:37.0198 4424	IPMIDRV - ok
15:54:37.0242 4424	IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:54:37.0282 4424	IPNAT - ok
15:54:37.0293 4424	IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:54:37.0366 4424	IRENUM - ok
15:54:37.0408 4424	isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:54:37.0417 4424	isapnp - ok
15:54:37.0463 4424	iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:54:37.0485 4424	iScsiPrt - ok
15:54:37.0511 4424	iteraid         (149965167ed18c14f6e080a781684e13) C:\Windows\system32\DRIVERS\iteraid.sys
15:54:37.0545 4424	iteraid - ok
15:54:37.0551 4424	kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
15:54:37.0561 4424	kbdclass - ok
15:54:37.0600 4424	kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
15:54:37.0619 4424	kbdhid - ok
15:54:37.0659 4424	KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
15:54:37.0668 4424	KeyIso - ok
15:54:37.0711 4424	KSecDD          (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
15:54:37.0727 4424	KSecDD - ok
15:54:37.0737 4424	KSecPkg         (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
15:54:37.0752 4424	KSecPkg - ok
15:54:37.0772 4424	ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:54:37.0810 4424	ksthunk - ok
15:54:37.0851 4424	KtmRm           (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
15:54:37.0891 4424	KtmRm - ok
15:54:37.0941 4424	LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
15:54:37.0988 4424	LanmanServer - ok
15:54:38.0029 4424	LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
15:54:38.0059 4424	LanmanWorkstation - ok
15:54:38.0073 4424	lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:54:38.0114 4424	lltdio - ok
15:54:38.0155 4424	lltdsvc         (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
15:54:38.0201 4424	lltdsvc - ok
15:54:38.0215 4424	lmhosts         (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
15:54:38.0241 4424	lmhosts - ok
15:54:38.0270 4424	LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:54:38.0286 4424	LSI_FC - ok
15:54:38.0296 4424	LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:54:38.0311 4424	LSI_SAS - ok
15:54:38.0321 4424	LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:54:38.0330 4424	LSI_SAS2 - ok
15:54:38.0345 4424	LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:54:38.0360 4424	LSI_SCSI - ok
15:54:38.0370 4424	luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:54:38.0413 4424	luafv - ok
15:54:38.0452 4424	Mcx2Svc         (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
15:54:38.0476 4424	Mcx2Svc - ok
15:54:38.0498 4424	megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:54:38.0507 4424	megasas - ok
15:54:38.0531 4424	MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:54:38.0549 4424	MegaSR - ok
15:54:38.0723 4424	mi-raysat_3dsmax2013_64 (0af89452a8ce3928168f4e5b2208c68b) C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe
15:54:38.0753 4424	mi-raysat_3dsmax2013_64 ( UnsignedFile.Multi.Generic ) - warning
15:54:38.0753 4424	mi-raysat_3dsmax2013_64 - detected UnsignedFile.Multi.Generic (1)
15:54:38.0772 4424	MMCSS           (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
15:54:38.0812 4424	MMCSS - ok
15:54:38.0829 4424	Modem           (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:54:38.0868 4424	Modem - ok
15:54:38.0886 4424	monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:54:38.0909 4424	monitor - ok
15:54:38.0951 4424	mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
15:54:38.0961 4424	mouclass - ok
15:54:38.0984 4424	mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:54:39.0004 4424	mouhid - ok
15:54:39.0053 4424	mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:54:39.0069 4424	mountmgr - ok
15:54:39.0126 4424	mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:54:39.0140 4424	mpio - ok
15:54:39.0155 4424	mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:54:39.0180 4424	mpsdrv - ok
15:54:39.0245 4424	MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
15:54:39.0304 4424	MpsSvc - ok
15:54:39.0342 4424	MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:54:39.0375 4424	MRxDAV - ok
15:54:39.0415 4424	mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:54:39.0452 4424	mrxsmb - ok
15:54:39.0471 4424	mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:54:39.0492 4424	mrxsmb10 - ok
15:54:39.0505 4424	mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:54:39.0521 4424	mrxsmb20 - ok
15:54:39.0569 4424	msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:54:39.0578 4424	msahci - ok
15:54:39.0773 4424	msdsm           (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:54:39.0784 4424	msdsm - ok
15:54:39.0801 4424	MSDTC           (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
15:54:39.0825 4424	MSDTC - ok
15:54:39.0860 4424	Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:54:39.0885 4424	Msfs - ok
15:54:39.0973 4424	mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:54:40.0012 4424	mshidkmdf - ok
15:54:40.0046 4424	msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:54:40.0056 4424	msisadrv - ok
15:54:40.0090 4424	MSiSCSI         (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
15:54:40.0122 4424	MSiSCSI - ok
15:54:40.0124 4424	msiserver - ok
15:54:40.0135 4424	MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:54:40.0170 4424	MSKSSRV - ok
15:54:40.0183 4424	MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:54:40.0217 4424	MSPCLOCK - ok
15:54:40.0236 4424	MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:54:40.0273 4424	MSPQM - ok
15:54:40.0335 4424	MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:54:40.0355 4424	MsRPC - ok
15:54:40.0379 4424	mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:54:40.0388 4424	mssmbios - ok
15:54:40.0426 4424	MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:54:40.0462 4424	MSTEE - ok
15:54:40.0464 4424	MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:54:40.0474 4424	MTConfig - ok
15:54:40.0501 4424	Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:54:40.0510 4424	Mup - ok
15:54:40.0560 4424	napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
15:54:40.0615 4424	napagent - ok
15:54:40.0638 4424	NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:54:40.0699 4424	NativeWifiP - ok
15:54:40.0946 4424	NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
15:54:40.0986 4424	NDIS - ok
15:54:41.0004 4424	NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:54:41.0039 4424	NdisCap - ok
15:54:41.0054 4424	NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:54:41.0087 4424	NdisTapi - ok
15:54:41.0120 4424	Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:54:41.0145 4424	Ndisuio - ok
15:54:41.0192 4424	NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:54:41.0229 4424	NdisWan - ok
15:54:41.0266 4424	NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:54:41.0289 4424	NDProxy - ok
15:54:41.0453 4424	Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
15:54:41.0493 4424	Nero BackItUp Scheduler 4.0 - ok
15:54:41.0514 4424	NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:54:41.0548 4424	NetBIOS - ok
15:54:41.0600 4424	NetBT           (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:54:41.0646 4424	NetBT - ok
15:54:41.0682 4424	Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
15:54:41.0691 4424	Netlogon - ok
15:54:41.0719 4424	Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
15:54:41.0769 4424	Netman - ok
15:54:41.0840 4424	NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:54:41.0854 4424	NetMsmqActivator - ok
15:54:41.0857 4424	NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:54:41.0865 4424	NetPipeActivator - ok
15:54:41.0901 4424	netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
15:54:41.0943 4424	netprofm - ok
15:54:41.0946 4424	NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:54:41.0954 4424	NetTcpActivator - ok
15:54:41.0957 4424	NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:54:41.0965 4424	NetTcpPortSharing - ok
15:54:41.0998 4424	nfrd960         (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:54:42.0008 4424	nfrd960 - ok
15:54:42.0050 4424	NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
15:54:42.0100 4424	NlaSvc - ok
15:54:42.0121 4424	npf             (351533acc2a069b94e80bbfc177e8fdf) C:\Windows\system32\drivers\npf.sys
15:54:42.0129 4424	npf - ok
15:54:42.0147 4424	Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:54:42.0172 4424	Npfs - ok
15:54:42.0192 4424	nsi             (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
15:54:42.0217 4424	nsi - ok
15:54:42.0228 4424	nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:54:42.0252 4424	nsiproxy - ok
15:54:42.0340 4424	Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:54:42.0390 4424	Ntfs - ok
15:54:42.0470 4424	Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:54:42.0503 4424	Null - ok
15:54:42.0530 4424	NVHDA           (102806b360d0e6bc6e55bf47ef655d43) C:\Windows\system32\drivers\nvhda64v.sys
15:54:42.0544 4424	NVHDA - ok
15:54:42.0958 4424	nvlddmkm        (ba0b4889c40380a01ecdf84c227a89c9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:54:43.0291 4424	nvlddmkm - ok
15:54:43.0404 4424	nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:54:43.0418 4424	nvraid - ok
15:54:43.0439 4424	nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
15:54:43.0455 4424	nvstor - ok
15:54:43.0503 4424	nvsvc           (06633cf95bea62164c3bfca24bce6b11) C:\Windows\system32\nvvsvc.exe
15:54:43.0543 4424	nvsvc - ok
15:54:43.0643 4424	nvUpdatusService (53b629ce436b110c5689c2f6439e567b) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:54:43.0702 4424	nvUpdatusService - ok
15:54:43.0804 4424	nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
15:54:43.0820 4424	nv_agp - ok
15:54:43.0853 4424	ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
15:54:43.0873 4424	ohci1394 - ok
15:54:43.0939 4424	ose             (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:54:43.0953 4424	ose - ok
15:54:44.0144 4424	osppsvc         (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:54:44.0297 4424	osppsvc - ok
15:54:44.0371 4424	p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
15:54:44.0402 4424	p2pimsvc - ok
15:54:44.0427 4424	p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
15:54:44.0461 4424	p2psvc - ok
15:54:44.0502 4424	Parport         (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:54:44.0517 4424	Parport - ok
15:54:44.0561 4424	partmgr         (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
15:54:44.0571 4424	partmgr - ok
15:54:44.0594 4424	PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
15:54:44.0636 4424	PcaSvc - ok
15:54:44.0685 4424	pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
15:54:44.0700 4424	pci - ok
15:54:44.0736 4424	pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
15:54:44.0744 4424	pciide - ok
15:54:44.0772 4424	pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:54:44.0787 4424	pcmcia - ok
15:54:44.0800 4424	pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:54:44.0829 4424	pcw - ok
15:54:44.0940 4424	PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:54:45.0006 4424	PEAUTH - ok
15:54:45.0068 4424	PeerDistSvc     (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
15:54:45.0147 4424	PeerDistSvc - ok
15:54:45.0198 4424	PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
15:54:45.0223 4424	PerfHost - ok
15:54:45.0343 4424	pla             (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
15:54:45.0420 4424	pla - ok
15:54:45.0474 4424	PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
15:54:45.0510 4424	PlugPlay - ok
15:54:45.0512 4424	PnkBstrA - ok
15:54:45.0535 4424	PNRPAutoReg     (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
15:54:45.0559 4424	PNRPAutoReg - ok
15:54:45.0580 4424	PNRPsvc         (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
15:54:45.0592 4424	PNRPsvc - ok
15:54:45.0646 4424	PolicyAgent     (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
15:54:45.0694 4424	PolicyAgent - ok
15:54:45.0722 4424	Power           (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
15:54:45.0776 4424	Power - ok
15:54:45.0833 4424	PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
15:54:45.0876 4424	PptpMiniport - ok
15:54:45.0893 4424	Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:54:45.0903 4424	Processor - ok
15:54:45.0953 4424	ProfSvc         (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
15:54:45.0982 4424	ProfSvc - ok
15:54:46.0021 4424	ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
15:54:46.0031 4424	ProtectedStorage - ok
15:54:46.0082 4424	Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
15:54:46.0121 4424	Psched - ok
15:54:46.0140 4424	PxHlpa64        (bc08f7f3c53cbee68670ed1314e290fd) C:\Windows\system32\Drivers\PxHlpa64.sys
15:54:46.0148 4424	PxHlpa64 - ok
15:54:46.0215 4424	ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:54:46.0273 4424	ql2300 - ok
15:54:46.0348 4424	ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:54:46.0363 4424	ql40xx - ok
15:54:46.0392 4424	QWAVE           (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
15:54:46.0417 4424	QWAVE - ok
15:54:46.0427 4424	QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:54:46.0451 4424	QWAVEdrv - ok
15:54:46.0473 4424	RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:54:46.0496 4424	RasAcd - ok
15:54:46.0521 4424	RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:54:46.0546 4424	RasAgileVpn - ok
15:54:46.0572 4424	RasAuto         (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
15:54:46.0613 4424	RasAuto - ok
15:54:46.0657 4424	Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:54:46.0688 4424	Rasl2tp - ok
15:54:46.0742 4424	RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
15:54:46.0782 4424	RasMan - ok
15:54:46.0804 4424	RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:54:46.0843 4424	RasPppoe - ok
15:54:46.0859 4424	RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:54:46.0899 4424	RasSstp - ok
15:54:46.0955 4424	rdbss           (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
15:54:47.0000 4424	rdbss - ok
15:54:47.0020 4424	rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:54:47.0032 4424	rdpbus - ok
15:54:47.0044 4424	RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:54:47.0081 4424	RDPCDD - ok
15:54:47.0125 4424	RDPDR           (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
15:54:47.0163 4424	RDPDR - ok
15:54:47.0169 4424	RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:54:47.0193 4424	RDPENCDD - ok
15:54:47.0206 4424	RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:54:47.0230 4424	RDPREFMP - ok
15:54:47.0257 4424	RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
15:54:47.0293 4424	RdpVideoMiniport - ok
15:54:47.0308 4424	RDPWD           (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
15:54:47.0349 4424	RDPWD - ok
15:54:47.0393 4424	rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
15:54:47.0415 4424	rdyboost - ok
15:54:47.0442 4424	RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
15:54:47.0488 4424	RemoteAccess - ok
15:54:47.0514 4424	RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
15:54:47.0556 4424	RemoteRegistry - ok
15:54:47.0571 4424	RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
15:54:47.0606 4424	RpcEptMapper - ok
15:54:47.0627 4424	RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
15:54:47.0648 4424	RpcLocator - ok
15:54:47.0700 4424	RpcSs           (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
15:54:47.0727 4424	RpcSs - ok
15:54:47.0743 4424	rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:54:47.0781 4424	rspndr - ok
15:54:47.0812 4424	RTL8167         (6d3c7e7d82d3dc92dc2a8b0df9f20f8a) C:\Windows\system32\DRIVERS\Rt64win7.sys
15:54:47.0831 4424	RTL8167 - ok
15:54:47.0867 4424	s3cap           (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
15:54:47.0890 4424	s3cap - ok
15:54:47.0929 4424	SamSs           (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
15:54:47.0939 4424	SamSs - ok
15:54:47.0978 4424	sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
15:54:47.0993 4424	sbp2port - ok
15:54:48.0013 4424	SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
15:54:48.0063 4424	SCardSvr - ok
15:54:48.0102 4424	scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
15:54:48.0126 4424	scfilter - ok
15:54:48.0198 4424	Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
15:54:48.0259 4424	Schedule - ok
15:54:48.0303 4424	SCPolicySvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
15:54:48.0327 4424	SCPolicySvc - ok
15:54:48.0365 4424	SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
15:54:48.0415 4424	SDRSVC - ok
15:54:48.0450 4424	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:54:48.0486 4424	secdrv - ok
15:54:48.0527 4424	seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
15:54:48.0552 4424	seclogon - ok
15:54:48.0572 4424	SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
15:54:48.0610 4424	SENS - ok
15:54:48.0625 4424	SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
15:54:48.0662 4424	SensrSvc - ok
15:54:48.0678 4424	Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:54:48.0688 4424	Serenum - ok
15:54:48.0699 4424	Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:54:48.0725 4424	Serial - ok
15:54:48.0769 4424	sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:54:48.0790 4424	sermouse - ok
15:54:48.0852 4424	SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
15:54:48.0893 4424	SessionEnv - ok
15:54:48.0931 4424	sffdisk         (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
15:54:48.0962 4424	sffdisk - ok
15:54:48.0978 4424	sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
15:54:49.0002 4424	sffp_mmc - ok
15:54:49.0012 4424	sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
15:54:49.0037 4424	sffp_sd - ok
15:54:49.0063 4424	sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:54:49.0072 4424	sfloppy - ok
15:54:49.0108 4424	SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
15:54:49.0154 4424	SharedAccess - ok
15:54:49.0209 4424	ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
15:54:49.0258 4424	ShellHWDetection - ok
15:54:49.0270 4424	SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:54:49.0279 4424	SiSRaid2 - ok
15:54:49.0294 4424	SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:54:49.0304 4424	SiSRaid4 - ok
15:54:49.0359 4424	SkypeUpdate     (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
15:54:49.0372 4424	SkypeUpdate - ok
15:54:49.0393 4424	Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:54:49.0432 4424	Smb - ok
15:54:49.0469 4424	SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
15:54:49.0489 4424	SNMPTRAP - ok
15:54:49.0514 4424	spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:54:49.0523 4424	spldr - ok
15:54:49.0580 4424	Spooler         (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
15:54:49.0621 4424	Spooler - ok
15:54:49.0756 4424	sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
15:54:49.0898 4424	sppsvc - ok
15:54:49.0995 4424	sppuinotify     (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
15:54:50.0029 4424	sppuinotify - ok
15:54:50.0108 4424	srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
15:54:50.0156 4424	srv - ok
15:54:50.0176 4424	srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
15:54:50.0203 4424	srv2 - ok
15:54:50.0262 4424	srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
15:54:50.0292 4424	srvnet - ok
15:54:50.0316 4424	SSDPSRV         (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
15:54:50.0363 4424	SSDPSRV - ok
15:54:50.0375 4424	SstpSvc         (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
15:54:50.0402 4424	SstpSvc - ok
15:54:50.0437 4424	Steam Client Service - ok
15:54:50.0507 4424	Stereo Service  (c354621b6b94e10ae7f5cdbe745feb86) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:54:50.0527 4424	Stereo Service - ok
15:54:50.0564 4424	stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:54:50.0574 4424	stexstor - ok
15:54:50.0642 4424	stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
15:54:50.0739 4424	stisvc - ok
15:54:50.0776 4424	storflt         (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
15:54:50.0786 4424	storflt - ok
15:54:50.0825 4424	storvsc         (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
15:54:50.0834 4424	storvsc - ok
15:54:50.0876 4424	swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
15:54:50.0885 4424	swenum - ok
15:54:50.0971 4424	SwitchBoard     (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:54:50.0996 4424	SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
15:54:50.0996 4424	SwitchBoard - detected UnsignedFile.Multi.Generic (1)
15:54:51.0031 4424	swprv           (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
15:54:51.0092 4424	swprv - ok
15:54:51.0109 4424	Synth3dVsc - ok
15:54:51.0198 4424	SysMain         (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
15:54:51.0281 4424	SysMain - ok
15:54:51.0360 4424	TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
15:54:51.0394 4424	TabletInputService - ok
15:54:51.0444 4424	TapiSrv         (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
15:54:51.0490 4424	TapiSrv - ok
15:54:51.0510 4424	TBS             (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
15:54:51.0536 4424	TBS - ok
15:54:51.0653 4424	Tcpip           (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
15:54:51.0720 4424	Tcpip - ok
15:54:51.0841 4424	TCPIP6          (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
15:54:51.0868 4424	TCPIP6 - ok
15:54:51.0967 4424	tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
15:54:51.0991 4424	tcpipreg - ok
15:54:52.0013 4424	TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:54:52.0023 4424	TDPIPE - ok
15:54:52.0045 4424	TDTCP           (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
15:54:52.0067 4424	TDTCP - ok
15:54:52.0116 4424	tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
15:54:52.0145 4424	tdx - ok
15:54:52.0188 4424	TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
15:54:52.0197 4424	TermDD - ok
15:54:52.0255 4424	TermService     (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
15:54:52.0308 4424	TermService - ok
15:54:52.0329 4424	Themes          (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
15:54:52.0357 4424	Themes - ok
15:54:52.0375 4424	THREADORDER     (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
15:54:52.0400 4424	THREADORDER - ok
15:54:52.0413 4424	TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
15:54:52.0454 4424	TrkWks - ok
15:54:52.0515 4424	TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
15:54:52.0555 4424	TrustedInstaller - ok
15:54:52.0600 4424	tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:54:52.0633 4424	tssecsrv - ok
15:54:52.0676 4424	TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
15:54:52.0706 4424	TsUsbFlt - ok
15:54:52.0708 4424	tsusbhub - ok
15:54:52.0749 4424	tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
15:54:52.0793 4424	tunnel - ok
15:54:52.0821 4424	uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:54:52.0831 4424	uagp35 - ok
15:54:52.0882 4424	udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
15:54:52.0926 4424	udfs - ok
15:54:52.0951 4424	UI0Detect       (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
15:54:52.0964 4424	UI0Detect - ok
15:54:53.0012 4424	uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
15:54:53.0022 4424	uliagpkx - ok
15:54:53.0062 4424	umbus           (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
15:54:53.0081 4424	umbus - ok
15:54:53.0103 4424	UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:54:53.0113 4424	UmPass - ok
15:54:53.0158 4424	UmRdpService    (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
15:54:53.0182 4424	UmRdpService - ok
15:54:53.0210 4424	upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
15:54:53.0259 4424	upnphost - ok
15:54:53.0314 4424	usbaudio        (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
15:54:53.0332 4424	usbaudio - ok
15:54:53.0347 4424	usbbus - ok
15:54:53.0388 4424	usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
15:54:53.0415 4424	usbccgp - ok
15:54:53.0453 4424	usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
15:54:53.0482 4424	usbcir - ok
15:54:53.0484 4424	UsbDiag - ok
15:54:53.0498 4424	usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
15:54:53.0519 4424	usbehci - ok
15:54:53.0551 4424	usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
15:54:53.0580 4424	usbhub - ok
15:54:53.0583 4424	USBModem - ok
15:54:53.0597 4424	usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
15:54:53.0618 4424	usbohci - ok
15:54:53.0647 4424	usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:54:53.0670 4424	usbprint - ok
15:54:53.0706 4424	USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:54:53.0731 4424	USBSTOR - ok
15:54:53.0765 4424	usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
15:54:53.0787 4424	usbuhci - ok
15:54:53.0820 4424	usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
15:54:53.0850 4424	usbvideo - ok
15:54:53.0868 4424	UxSms           (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
15:54:53.0905 4424	UxSms - ok
15:54:53.0944 4424	VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
15:54:53.0953 4424	VaultSvc - ok
15:54:53.0970 4424	VClone          (fd911873c0bb6945fa38c16e9a2b58f9) C:\Windows\system32\DRIVERS\VClone.sys
15:54:54.0003 4424	VClone - ok
15:54:54.0046 4424	vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
15:54:54.0055 4424	vdrvroot - ok
15:54:54.0110 4424	vds             (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
15:54:54.0138 4424	vds - ok
15:54:54.0159 4424	vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:54:54.0171 4424	vga - ok
15:54:54.0187 4424	VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:54:54.0224 4424	VgaSave - ok
15:54:54.0226 4424	VGPU - ok
15:54:54.0273 4424	vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
15:54:54.0288 4424	vhdmp - ok
15:54:54.0325 4424	viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
15:54:54.0334 4424	viaide - ok
15:54:54.0381 4424	vmbus           (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
15:54:54.0396 4424	vmbus - ok
15:54:54.0408 4424	VMBusHID        (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
15:54:54.0428 4424	VMBusHID - ok
15:54:54.0442 4424	volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
15:54:54.0452 4424	volmgr - ok
15:54:54.0505 4424	volmgrx         (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
15:54:54.0524 4424	volmgrx - ok
15:54:54.0574 4424	volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
15:54:54.0595 4424	volsnap - ok
15:54:54.0619 4424	vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:54:54.0634 4424	vsmraid - ok
15:54:54.0721 4424	VSS             (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
15:54:54.0804 4424	VSS - ok
15:54:54.0869 4424	vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
15:54:54.0894 4424	vwifibus - ok
15:54:54.0927 4424	W32Time         (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
15:54:54.0963 4424	W32Time - ok
15:54:54.0984 4424	WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:54:55.0006 4424	WacomPen - ok
15:54:55.0147 4424	WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:54:55.0195 4424	WANARP - ok
15:54:55.0197 4424	Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:54:55.0220 4424	Wanarpv6 - ok
15:54:55.0304 4424	WatAdminSvc     (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
15:54:55.0358 4424	WatAdminSvc - ok
15:54:55.0440 4424	wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
15:54:55.0514 4424	wbengine - ok
15:54:55.0572 4424	WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
15:54:55.0598 4424	WbioSrvc - ok
15:54:55.0655 4424	wcncsvc         (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
15:54:55.0680 4424	wcncsvc - ok
15:54:55.0693 4424	WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
15:54:55.0722 4424	WcsPlugInService - ok
15:54:55.0763 4424	Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:54:55.0772 4424	Wd - ok
15:54:55.0800 4424	Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:54:55.0834 4424	Wdf01000 - ok
15:54:55.0850 4424	WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
15:54:55.0953 4424	WdiServiceHost - ok
15:54:55.0955 4424	WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
15:54:55.0970 4424	WdiSystemHost - ok
15:54:56.0027 4424	WebClient       (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
15:54:56.0065 4424	WebClient - ok
15:54:56.0096 4424	Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
15:54:56.0143 4424	Wecsvc - ok
15:54:56.0159 4424	wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
15:54:56.0199 4424	wercplsupport - ok
15:54:56.0218 4424	WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
15:54:56.0257 4424	WerSvc - ok
15:54:56.0303 4424	WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:54:56.0327 4424	WfpLwf - ok
15:54:56.0343 4424	WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:54:56.0352 4424	WIMMount - ok
15:54:56.0378 4424	WinDefend - ok
15:54:56.0384 4424	WinHttpAutoProxySvc - ok
15:54:56.0420 4424	Winmgmt         (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
15:54:56.0457 4424	Winmgmt - ok
15:54:56.0547 4424	WinRM           (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
15:54:56.0645 4424	WinRM - ok
15:54:56.0753 4424	WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
15:54:56.0765 4424	WinUsb - ok
15:54:56.0814 4424	Wlansvc         (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
15:54:56.0866 4424	Wlansvc - ok
15:54:56.0904 4424	WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
15:54:56.0937 4424	WmiAcpi - ok
15:54:56.0984 4424	wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
15:54:57.0012 4424	wmiApSrv - ok
15:54:57.0045 4424	WMPNetworkSvc - ok
15:54:57.0064 4424	WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
15:54:57.0082 4424	WPCSvc - ok
15:54:57.0125 4424	WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
15:54:57.0142 4424	WPDBusEnum - ok
15:54:57.0162 4424	ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:54:57.0199 4424	ws2ifsl - ok
15:54:57.0219 4424	wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
15:54:57.0251 4424	wscsvc - ok
15:54:57.0253 4424	WSearch - ok
15:54:57.0364 4424	wuauserv        (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
15:54:57.0468 4424	wuauserv - ok
15:54:57.0578 4424	WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
15:54:57.0607 4424	WudfPf - ok
15:54:57.0617 4424	WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:54:57.0646 4424	WUDFRd - ok
15:54:57.0691 4424	wudfsvc         (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
15:54:57.0717 4424	wudfsvc - ok
15:54:57.0749 4424	WwanSvc         (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
15:54:57.0782 4424	WwanSvc - ok
15:54:57.0798 4424	MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:54:58.0084 4424	\Device\Harddisk0\DR0 - ok
15:54:58.0090 4424	MBR (0x1B8)     (413fc2a0c716421b3158746d63736515) \Device\Harddisk1\DR1
15:54:58.0234 4424	\Device\Harddisk1\DR1 - ok
15:54:58.0237 4424	MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk2\DR2
15:54:58.0349 4424	\Device\Harddisk2\DR2 - ok
15:54:58.0351 4424	Boot (0x1200)   (572c8525d5695cccf79d8d2685b42e8b) \Device\Harddisk0\DR0\Partition0
15:54:58.0352 4424	\Device\Harddisk0\DR0\Partition0 - ok
15:54:58.0384 4424	Boot (0x1200)   (9bfe57085a9538afe0935a3d929f5b2c) \Device\Harddisk1\DR1\Partition0
15:54:58.0385 4424	\Device\Harddisk1\DR1\Partition0 - ok
15:54:58.0413 4424	Boot (0x1200)   (9b8fb702571ff09455ce38ad68e7a4aa) \Device\Harddisk1\DR1\Partition1
15:54:58.0414 4424	\Device\Harddisk1\DR1\Partition1 - ok
15:54:58.0416 4424	Boot (0x1200)   (a39598340baf4dae3ac1ee653b1a0620) \Device\Harddisk2\DR2\Partition0
15:54:58.0418 4424	\Device\Harddisk2\DR2\Partition0 - ok
15:54:58.0418 4424	============================================================
15:54:58.0418 4424	Scan finished
15:54:58.0418 4424	============================================================
15:54:58.0424 5240	Detected object count: 4
15:54:58.0424 5240	Actual detected object count: 4
15:55:11.0058 5240	HiPatchService ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:11.0058 5240	HiPatchService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:55:11.0058 5240	IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:11.0058 5240	IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:55:11.0059 5240	mi-raysat_3dsmax2013_64 ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:11.0059 5240	mi-raysat_3dsmax2013_64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:55:11.0060 5240	SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
15:55:11.0061 5240	SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
PS: ten ComboFix hned dodám :)
Nahoru
siOnzee
Návštěvník
Návštěvník
Příspěvky: 8
Registrován: 26 kvě 2012 13:56

Re: Podezření na Virus

#4 Příspěvek od siOnzee »

ok,omlouvám se, znovu jsem je dal do přílohy v raru ;)
Přílohy
ComboFix.rar
(29.56 KiB) Staženo 43 x
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“