Avira hlásí virus - nedaří se ho zlikvidovat Vyřešeno

[Paulek155]

Dneska když jsem spustil KM Player, tak mi to nabídlo aktualizaci. Stáhl jsem jí a potom mi antivir (Avira) začal detekovat virus možná je jich více, ale když kliknu na remove, tak se to snaží opravit, ale neopraví to a hned mi vyskočí další varování. Jak to mám odstranit.

[Reklama]

[Paulek155]

Prosím poraďte dal jsem i úplný scan a nic.

[Těsňa]

Musíš počkat, ještě je všední den, lidi před chvílý prišli z práce, tak chtěji mít chvilku klidu.

[Petison]

Nainstaluj malwarebytes anti-malware ,aktualizuj a nech prohledat a odstranit.Až tu bude někdo z kompetentních ,tak sem vložíš log z HiJackThis.

[Paulek155]

Před chvílí jsem si nainstaloval 30 dení trial verzi ESET NOD32 Antivirus 5.0.95, který mi zrovna teď našel jednu infiltraci. Uvidím jak to dopadne a potom zase napíšu, ale pro jistotu bych chtěl vědět jak mám ten log zjistit.

[Orcus]

V FAQ je návod. Podle něj vytvoříš log z HJT. Založíš nové téma v HJT sekci a tam ho vložíš. Btw. kolik máš nyní antivirů? Víc jak 1 se může mlátit s jinejm a hlásit pak tyhle infekce.

[Paulek155]

Vždy mám jenom jeden.

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[Paulek155]

Tady je ten log:


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Verze databáze: v2012.08.10.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Pavel :: PAVEL-A5C71F66F [administrátor]

10.8.2012 21:27:08
mbam-log-2012-08-10 (21-30-47).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 219603
Uplynulý čas: 2 minut, 58 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 9
HKCR\CLSID\{C1C92372-4705-4020-998B-D1E5E95716C3} (Adware.KorAd) -> Žádná instrukce nebyla provedena.
HKCR\TypeLib\{0BE71171-2362-4878-AFA5-E1BA6FC69230} (Adware.KorAd) -> Žádná instrukce nebyla provedena.
HKCR\Interface\{BAA2764B-4634-4039-B17C-BDBBE74C222F} (Adware.KorAd) -> Žádná instrukce nebyla provedena.
HKCR\AppIsBHO.Bar (Adware.KorAd) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1C92372-4705-4020-998B-D1E5E95716C3} (Adware.KorAd) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{68C04328-167E-446A-AC57-4A04DAD74BDC} (Adware.WebCompass) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{A005B05D-B3BD-49DB-B0A8-1D4F0CF53CFB} (Adware.WebCompass) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E5990159-7CB9-4E2C-A27E-4C23E2FA70E6} (Adware.WebCompass) -> Žádná instrukce nebyla provedena.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AppIs(ľŰŔĚÁî)_is1 (Adware.KorAd) -> Žádná instrukce nebyla provedena.

Nalezené hodnoty v registru: 6
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{68C04328-167E-446A-AC57-4A04DAD74BDC} (Adware.WebCompass) -> Data: 8204 -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{A005B05D-B3BD-49DB-B0A8-1D4F0CF53CFB} (Adware.WebCompass) -> Data: 8205 -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{E5990159-7CB9-4E2C-A27E-4C23E2FA70E6} (Adware.WebCompass) -> Data: 8206 -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{68C04328-167E-446A-AC57-4A04DAD74BDC} (Adware.WebCompass) -> Data: -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{A005B05D-B3BD-49DB-B0A8-1D4F0CF53CFB} (Adware.WebCompass) -> Data: -> Žádná instrukce nebyla provedena.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{E5990159-7CB9-4E2C-A27E-4C23E2FA70E6} (Adware.WebCompass) -> Data: -> Žádná instrukce nebyla provedena.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 1
C:\Documents and Settings\All Users\Data aplikací\TheBflix (PUP.BFlix) -> Žádná instrukce nebyla provedena.

Nalezené soubory: 7
C:\Documents and Settings\Pavel\Local Settings\Data aplikací\AppIs\appis.dll (Adware.KorAd) -> Žádná instrukce nebyla provedena.
C:\WINDOWS\system32\h4x0r.dll (HackTool.GamesCheat) -> Žádná instrukce nebyla provedena.
C:\WINDOWS\Tasks\AppIsUpdate.job (Adware.KorAd) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\background.html (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\ajhcekcffkpnaednoeoegnmnjdlnjjmg.crx (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\content.js (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\settings.ini (PUP.BFlix) -> Žádná instrukce nebyla provedena.

(konec)

[jaro3]

. Takže spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Vlož log z HJT:
viewtopic.php?f=70&t=5119

[Paulek155]

Tady je ten log z MbAM:


Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Verze databáze: v2012.08.10.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
Pavel :: PAVEL-A5C71F66F [administrátor]

11.8.2012 7:08:48
mbam-log-2012-08-11 (07-08-48).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 219408
Uplynulý čas: 3 minut, 33 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 9
HKCR\CLSID\{C1C92372-4705-4020-998B-D1E5E95716C3} (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.
HKCR\TypeLib\{0BE71171-2362-4878-AFA5-E1BA6FC69230} (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.
HKCR\Interface\{BAA2764B-4634-4039-B17C-BDBBE74C222F} (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.
HKCR\AppIsBHO.Bar (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1C92372-4705-4020-998B-D1E5E95716C3} (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{68C04328-167E-446A-AC57-4A04DAD74BDC} (Adware.WebCompass) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{A005B05D-B3BD-49DB-B0A8-1D4F0CF53CFB} (Adware.WebCompass) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{E5990159-7CB9-4E2C-A27E-4C23E2FA70E6} (Adware.WebCompass) -> Umístnění do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AppIs(ľŰŔĚÁî)_is1 (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 7
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{68C04328-167E-446A-AC57-4A04DAD74BDC} (Adware.WebCompass) -> Data: 8204 -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{A005B05D-B3BD-49DB-B0A8-1D4F0CF53CFB} (Adware.WebCompass) -> Data: 8205 -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping|{E5990159-7CB9-4E2C-A27E-4C23E2FA70E6} (Adware.WebCompass) -> Data: 8206 -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{68C04328-167E-446A-AC57-4A04DAD74BDC} (Adware.WebCompass) -> Data: -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{A005B05D-B3BD-49DB-B0A8-1D4F0CF53CFB} (Adware.WebCompass) -> Data: -> Umístnění do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Extensions\CmdMapping\{E5990159-7CB9-4E2C-A27E-4C23E2FA70E6} (Adware.WebCompass) -> Data: -> Umístnění do karantény a smazání se zdařilo.
HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow|*.goodcomms.co.kr (Adware.KorAd) -> Data: -> Umístnění do karantény a smazání se zdařilo.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 1
C:\Documents and Settings\All Users\Data aplikací\TheBflix (PUP.BFlix) -> Žádná instrukce nebyla provedena.

Nalezené soubory: 7
C:\Documents and Settings\All Users\Data aplikací\TheBflix\background.html (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\ajhcekcffkpnaednoeoegnmnjdlnjjmg.crx (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\content.js (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\All Users\Data aplikací\TheBflix\settings.ini (PUP.BFlix) -> Žádná instrukce nebyla provedena.
C:\Documents and Settings\Pavel\Local Settings\Data aplikací\AppIs\appis.dll (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.
C:\WINDOWS\system32\h4x0r.dll (HackTool.GamesCheat) -> Umístnění do karantény a smazání se zdařilo.
C:\WINDOWS\Tasks\AppIsUpdate.job (Adware.KorAd) -> Umístnění do karantény a smazání se zdařilo.

(konec)

[Paulek155]

Tady je log z TDSSKiller:
(Jinak se omlouvám že je to tak pozdě večer už jsem na PC nebyl)

07:20:24.0437 3988 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
07:20:24.0640 3988 ============================================================
07:20:24.0640 3988 Current date / time: 2012/08/11 07:20:24.0640
07:20:24.0640 3988 SystemInfo:
07:20:24.0640 3988
07:20:24.0640 3988 OS Version: 5.1.2600 ServicePack: 3.0
07:20:24.0640 3988 Product type: Workstation
07:20:24.0640 3988 ComputerName: PAVEL-A5C71F66F
07:20:24.0640 3988 UserName: Pavel
07:20:24.0640 3988 Windows directory: C:\WINDOWS
07:20:24.0640 3988 System windows directory: C:\WINDOWS
07:20:24.0640 3988 Processor architecture: Intel x86
07:20:24.0640 3988 Number of processors: 2
07:20:24.0640 3988 Page size: 0x1000
07:20:24.0640 3988 Boot type: Normal boot
07:20:24.0640 3988 ============================================================
07:20:25.0687 3988 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
07:20:25.0687 3988 ============================================================
07:20:25.0687 3988 \Device\Harddisk0\DR0:
07:20:25.0687 3988 MBR partitions:
07:20:25.0687 3988 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
07:20:25.0687 3988 ============================================================
07:20:25.0718 3988 C: <-> \Device\Harddisk0\DR0\Partition0
07:20:25.0734 3988 ============================================================
07:20:25.0734 3988 Initialize success
07:20:25.0734 3988 ============================================================
07:20:29.0734 2328 ============================================================
07:20:29.0734 2328 Scan started
07:20:29.0734 2328 Mode: Manual;
07:20:29.0734 2328 ============================================================
07:20:30.0296 2328 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
07:20:30.0296 2328 61883 - ok
07:20:30.0296 2328 Abiosdsk - ok
07:20:30.0312 2328 abp480n5 - ok
07:20:30.0343 2328 ACPI (4fe34f1f3126b61fcc6b2043aa8112c9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
07:20:30.0343 2328 ACPI - ok
07:20:30.0359 2328 ACPIEC (afdff022a01f0b11c776f0860c3b282f) C:\WINDOWS\system32\drivers\ACPIEC.sys
07:20:30.0359 2328 ACPIEC - ok
07:20:30.0390 2328 ACS (f7f9513070cc9698c02acb747070e04c) C:\WINDOWS\system32\acs.exe
07:20:30.0390 2328 ACS - ok
07:20:30.0640 2328 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:20:30.0703 2328 AdobeFlashPlayerUpdateSvc - ok
07:20:30.0703 2328 adpu160m - ok
07:20:30.0812 2328 AdvancedSystemCareService5 (96d6cdd0b32846e8cfbe592f4f32e608) C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
07:20:30.0828 2328 AdvancedSystemCareService5 - ok
07:20:30.0859 2328 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
07:20:30.0859 2328 aec - ok
07:20:30.0875 2328 AegisP (2c5c22990156a1063e19ad162191dc1d) C:\WINDOWS\system32\DRIVERS\AegisP.sys
07:20:30.0875 2328 AegisP - ok
07:20:30.0906 2328 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
07:20:30.0906 2328 AFD - ok
07:20:30.0921 2328 Aha154x - ok
07:20:30.0921 2328 aic78u2 - ok
07:20:30.0921 2328 aic78xx - ok
07:20:30.0937 2328 Alerter (e0a6fa244b8624d78fe5ff6f56a33bae) C:\WINDOWS\system32\alrsvc.dll
07:20:30.0937 2328 Alerter - ok
07:20:30.0953 2328 ALG (88842de939a827577bf24243699ac80a) C:\WINDOWS\System32\alg.exe
07:20:30.0953 2328 ALG - ok
07:20:30.0953 2328 AliIde - ok
07:20:31.0046 2328 Ambfilt (267fc636801edc5ab28e14036349e3be) C:\WINDOWS\system32\drivers\Ambfilt.sys
07:20:31.0093 2328 Ambfilt - ok
07:20:31.0187 2328 amsint - ok
07:20:31.0234 2328 Apple Mobile Device (b8e865d24f2753a35cc2a9a6a3ce1ad4) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
07:20:31.0250 2328 Apple Mobile Device - ok
07:20:31.0265 2328 AppMgmt - ok
07:20:31.0296 2328 AR5211 (cb27109c47f900526959f4eb7e15b047) C:\WINDOWS\system32\DRIVERS\ar5211.sys
07:20:31.0343 2328 AR5211 - ok
07:20:31.0453 2328 AR5416 (572d2cda0b0131cb4dbb31981ec75b49) C:\WINDOWS\system32\DRIVERS\athw.sys
07:20:31.0500 2328 AR5416 - ok
07:20:31.0562 2328 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
07:20:31.0562 2328 Arp1394 - ok
07:20:31.0578 2328 asc - ok
07:20:31.0578 2328 asc3350p - ok
07:20:31.0578 2328 asc3550 - ok
07:20:31.0625 2328 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
07:20:31.0656 2328 aspnet_state - ok
07:20:31.0671 2328 asusgsb (d320732bcf5ff856120bd06855c66867) C:\WINDOWS\system32\drivers\asusgsb32.sys
07:20:31.0671 2328 asusgsb - ok
07:20:31.0687 2328 asuskbnt (b3b881eb81013aac11594a5400ada47a) C:\WINDOWS\system32\drivers\atkkbnt.sys
07:20:31.0687 2328 asuskbnt - ok
07:20:31.0703 2328 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
07:20:31.0703 2328 AsyncMac - ok
07:20:31.0718 2328 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
07:20:31.0718 2328 atapi - ok
07:20:31.0718 2328 Atdisk - ok
07:20:31.0750 2328 ATKKeyboardService (f6a30cf0e7280415ddea40b0262339c6) C:\WINDOWS\ATKKBService.exe
07:20:31.0906 2328 ATKKeyboardService - ok
07:20:31.0937 2328 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
07:20:31.0937 2328 Atmarpc - ok
07:20:31.0984 2328 AudioSrv (de31b88962a8645dba5a37b993e7b0f1) C:\WINDOWS\System32\audiosrv.dll
07:20:32.0015 2328 AudioSrv - ok
07:20:32.0046 2328 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
07:20:32.0046 2328 audstub - ok
07:20:32.0078 2328 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
07:20:32.0078 2328 Avc - ok
07:20:32.0125 2328 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
07:20:32.0125 2328 Beep - ok
07:20:32.0156 2328 BIOS (be5d50529799b9bab6be879ec768b6cf) C:\WINDOWS\system32\drivers\BIOS.sys
07:20:32.0156 2328 BIOS - ok
07:20:32.0187 2328 BITS (19395d092fd85ddc2d9c7729cf5a2ac8) C:\WINDOWS\system32\qmgr.dll
07:20:32.0281 2328 BITS - ok
07:20:32.0328 2328 Bonjour Service (9efe4236f8670846b6e7c5b0eff6e715) C:\Program Files\Bonjour\mDNSResponder.exe
07:20:32.0328 2328 Bonjour Service - ok
07:20:32.0343 2328 Browser (249276d3ef1e74b992299cb96099e4d7) C:\WINDOWS\System32\browser.dll
07:20:32.0343 2328 Browser - ok
07:20:32.0375 2328 Cap7134 (b1f7ae583377529c2c084a1ffb0aa756) C:\WINDOWS\system32\DRIVERS\Cap7134.sys
07:20:32.0390 2328 Cap7134 - ok
07:20:32.0421 2328 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
07:20:32.0421 2328 cbidf2k - ok
07:20:32.0421 2328 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
07:20:32.0421 2328 CCDECODE - ok
07:20:32.0437 2328 cd20xrnt - ok
07:20:32.0437 2328 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
07:20:32.0437 2328 Cdaudio - ok
07:20:32.0453 2328 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
07:20:32.0453 2328 Cdfs - ok
07:20:32.0484 2328 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) C:\WINDOWS\system32\drivers\cdrbsdrv.sys
07:20:32.0484 2328 cdrbsdrv - ok
07:20:32.0484 2328 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
07:20:32.0500 2328 Cdrom - ok
07:20:32.0500 2328 Changer - ok
07:20:32.0515 2328 CiSvc (e390dc1d7c461d7d56ec53402f329928) C:\WINDOWS\system32\cisvc.exe
07:20:32.0515 2328 CiSvc - ok
07:20:32.0546 2328 ClipSrv (064507a8dfa8c5c7e2ffddd3e6f424fa) C:\WINDOWS\system32\clipsrv.exe
07:20:32.0562 2328 ClipSrv - ok
07:20:32.0609 2328 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:20:32.0640 2328 clr_optimization_v2.0.50727_32 - ok
07:20:32.0687 2328 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:20:32.0734 2328 clr_optimization_v4.0.30319_32 - ok
07:20:32.0734 2328 CmdIde - ok
07:20:32.0734 2328 COMSysApp - ok
07:20:32.0734 2328 Cpqarray - ok
07:20:32.0765 2328 CryptSvc (f3ab0933cbd166d271992f411c27ccaf) C:\WINDOWS\System32\cryptsvc.dll
07:20:32.0765 2328 CryptSvc - ok
07:20:32.0765 2328 dac2w2k - ok
07:20:32.0765 2328 dac960nt - ok
07:20:32.0812 2328 DcomLaunch (be27674d1cbc3214aec84b4336a38bbf) C:\WINDOWS\system32\rpcss.dll
07:20:32.0812 2328 DcomLaunch - ok
07:20:32.0828 2328 Dhcp (8c9a53e285ac5e6704844d0459ec85be) C:\WINDOWS\System32\dhcpcsvc.dll
07:20:32.0843 2328 Dhcp - ok
07:20:32.0843 2328 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
07:20:32.0843 2328 Disk - ok
07:20:32.0843 2328 dmadmin - ok
07:20:32.0890 2328 dmboot (db5fd2bf5b07dc54bfcb3664ff05bd7c) C:\WINDOWS\system32\drivers\dmboot.sys
07:20:32.0906 2328 dmboot - ok
07:20:32.0906 2328 dmio (fff1720af51171f32f1ead5cf71f2810) C:\WINDOWS\system32\drivers\dmio.sys
07:20:32.0921 2328 dmio - ok
07:20:32.0921 2328 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
07:20:32.0921 2328 dmload - ok
07:20:32.0953 2328 dmserver (2bfefe9e865655a76982f050450b9591) C:\WINDOWS\System32\dmserver.dll
07:20:32.0953 2328 dmserver - ok
07:20:32.0953 2328 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
07:20:32.0953 2328 DMusic - ok
07:20:33.0000 2328 Dnscache (dfaa406bf19f4ee806a6f8d4342137f7) C:\WINDOWS\System32\dnsrslvr.dll
07:20:33.0000 2328 Dnscache - ok
07:20:33.0015 2328 Dot3svc (4a3e2bd20157a0946751229e92eb8621) C:\WINDOWS\System32\dot3svc.dll
07:20:33.0031 2328 Dot3svc - ok
07:20:33.0031 2328 dpti2o - ok
07:20:33.0031 2328 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
07:20:33.0046 2328 drmkaud - ok
07:20:33.0062 2328 eamon (9309c5c9831203436e64cf2ae605c5d7) C:\WINDOWS\system32\DRIVERS\eamon.sys
07:20:33.0078 2328 eamon - ok
07:20:33.0093 2328 EapHost (0887d9c2be8d940778cad1e3b85f2a41) C:\WINDOWS\System32\eapsvc.dll
07:20:33.0093 2328 EapHost - ok
07:20:33.0125 2328 ehdrv (deff87f04ab5f6dd5edf2b80853bbe10) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
07:20:33.0125 2328 ehdrv - ok
07:20:33.0140 2328 EIO (0daf3544804650526751c478aeccce63) C:\WINDOWS\system32\drivers\EIO.sys
07:20:33.0140 2328 EIO - ok
07:20:33.0281 2328 ekrn (3b944199f8edd76be94460c0361409ab) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
07:20:33.0281 2328 ekrn - ok
07:20:33.0296 2328 epfwtdir (06c65ac0a703cf8eea4f284d901a1550) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
07:20:33.0312 2328 epfwtdir - ok
07:20:33.0328 2328 ERSvc (a2a4912798f2be706abadd3d30800d16) C:\WINDOWS\System32\ersvc.dll
07:20:33.0328 2328 ERSvc - ok
07:20:33.0359 2328 Eventlog (9ef697af07bb8dd82c3b02ca953a95b7) C:\WINDOWS\system32\services.exe
07:20:33.0406 2328 Eventlog - ok
07:20:33.0421 2328 EventSystem (a371f11ef07653591c8de26afb13ce7f) C:\WINDOWS\system32\es.dll
07:20:33.0437 2328 EventSystem - ok
07:20:33.0453 2328 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
07:20:33.0453 2328 Fastfat - ok
07:20:33.0484 2328 FastUserSwitchingCompatibility (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
07:20:33.0484 2328 FastUserSwitchingCompatibility - ok
07:20:33.0500 2328 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
07:20:33.0515 2328 Fdc - ok
07:20:33.0515 2328 Fips (ac366695a0796560aa37215ad5762aaf) C:\WINDOWS\system32\drivers\Fips.sys
07:20:33.0515 2328 Fips - ok
07:20:33.0531 2328 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
07:20:33.0531 2328 Flpydisk - ok
07:20:33.0546 2328 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
07:20:33.0562 2328 FltMgr - ok
07:20:33.0609 2328 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
07:20:33.0625 2328 FontCache3.0.0.0 - ok
07:20:33.0625 2328 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
07:20:33.0625 2328 Fs_Rec - ok
07:20:33.0640 2328 Ftdisk (4e664d8541db4a66b73a24257e322e1f) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
07:20:33.0640 2328 Ftdisk - ok
07:20:33.0671 2328 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
07:20:33.0671 2328 GEARAspiWDM - ok
07:20:33.0671 2328 GMSIPCI - ok
07:20:33.0687 2328 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
07:20:33.0703 2328 Gpc - ok
07:20:33.0750 2328 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
07:20:33.0750 2328 gupdate - ok
07:20:33.0750 2328 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
07:20:33.0750 2328 gupdatem - ok
07:20:33.0781 2328 hamachi (7929a161f9951d173ca9900fe7067391) C:\WINDOWS\system32\DRIVERS\hamachi.sys
07:20:33.0796 2328 hamachi - ok
07:20:33.0812 2328 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
07:20:33.0812 2328 HDAudBus - ok
07:20:33.0859 2328 helpsvc (fcfe31fb75f8a6295b6b0af87a626282) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
07:20:33.0859 2328 helpsvc - ok
07:20:33.0890 2328 HidServ (00e25ee90166b3e1be6e74aebf858306) C:\WINDOWS\System32\hidserv.dll
07:20:33.0890 2328 HidServ - ok
07:20:33.0937 2328 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
07:20:33.0953 2328 HidUsb - ok
07:20:33.0968 2328 hkmsvc (7a6b320928f86bc851530d63c82965d9) C:\WINDOWS\System32\kmsvc.dll
07:20:33.0984 2328 hkmsvc - ok
07:20:33.0984 2328 hpn - ok
07:20:34.0000 2328 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
07:20:34.0015 2328 HPZid412 - ok
07:20:34.0031 2328 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
07:20:34.0031 2328 HPZipr12 - ok
07:20:34.0046 2328 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
07:20:34.0062 2328 HPZius12 - ok
07:20:34.0078 2328 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
07:20:34.0093 2328 HTTP - ok
07:20:34.0109 2328 HTTPFilter (58fe2f2da3bc5573f4a35b3760d3125f) C:\WINDOWS\System32\w3ssl.dll
07:20:34.0156 2328 HTTPFilter - ok
07:20:34.0156 2328 i2omgmt - ok
07:20:34.0156 2328 i2omp - ok
07:20:34.0187 2328 i8042prt (c528e27945367191e7bae364930b6932) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
07:20:34.0187 2328 i8042prt - ok
07:20:34.0265 2328 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
07:20:34.0265 2328 IDriverT - ok
07:20:34.0375 2328 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:20:34.0421 2328 idsvc - ok
07:20:34.0437 2328 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
07:20:34.0437 2328 Imapi - ok
07:20:34.0468 2328 ImapiService (f7b93aafad33b2320954c17e26c8d361) C:\WINDOWS\system32\imapi.exe
07:20:34.0468 2328 ImapiService - ok
07:20:34.0484 2328 ini910u - ok
07:20:34.0812 2328 IntcAzAudAddService (063dd51cbdc37b8668e09148e0a118bc) C:\WINDOWS\system32\drivers\RtkHDAud.sys
07:20:34.0843 2328 IntcAzAudAddService - ok
07:20:34.0937 2328 IntelIde - ok
07:20:34.0937 2328 intelppm (27b290d632af2cf3cf40bfddb7370985) C:\WINDOWS\system32\DRIVERS\intelppm.sys
07:20:34.0937 2328 intelppm - ok
07:20:34.0937 2328 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
07:20:34.0937 2328 Ip6Fw - ok
07:20:34.0953 2328 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
07:20:34.0968 2328 IpFilterDriver - ok
07:20:34.0984 2328 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
07:20:34.0984 2328 IpInIp - ok
07:20:35.0015 2328 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
07:20:35.0015 2328 IpNat - ok
07:20:35.0078 2328 iPod Service (d2e8efb8af35fcf5a7af22f5a0ce1a82) C:\Program Files\iPod\bin\iPodService.exe
07:20:35.0109 2328 iPod Service - ok
07:20:35.0125 2328 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
07:20:35.0125 2328 IPSec - ok
07:20:35.0171 2328 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
07:20:35.0171 2328 IRENUM - ok
07:20:35.0187 2328 isapnp (cc9f8a2d60aed1a51a3ac34c59b987ae) C:\WINDOWS\system32\DRIVERS\isapnp.sys
07:20:35.0187 2328 isapnp - ok
07:20:35.0265 2328 JavaQuickStarterService (5e06a9d23727daf96faa796f1135fdcd) C:\Program Files\Java\jre6\bin\jqs.exe
07:20:35.0296 2328 JavaQuickStarterService - ok
07:20:35.0312 2328 Kbdclass (1b6162fe7f66b1a71a4b70f941c4aa9b) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
07:20:35.0312 2328 Kbdclass - ok
07:20:35.0328 2328 kbdhid (86c8f23616c6c6e5b2776901c17b945b) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
07:20:35.0343 2328 kbdhid - ok
07:20:35.0375 2328 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
07:20:35.0375 2328 kmixer - ok
07:20:35.0390 2328 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
07:20:35.0390 2328 KSecDD - ok
07:20:35.0406 2328 lanmanserver (3428e8f86f8add36b42fb23542c7b3e4) C:\WINDOWS\System32\srvsvc.dll
07:20:35.0406 2328 lanmanserver - ok
07:20:35.0437 2328 lanmanworkstation (936c1d110232d23b621cb0196e4f80f0) C:\WINDOWS\System32\wkssvc.dll
07:20:35.0437 2328 lanmanworkstation - ok
07:20:35.0437 2328 lbrtfdc - ok
07:20:35.0500 2328 LightScribeService (c12476de1affb1bba1a48a459ceb3d39) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
07:20:35.0515 2328 LightScribeService - ok
07:20:35.0531 2328 LmHosts (0ab159f536e3e8f7f07113702a07cca5) C:\WINDOWS\System32\lmhsvc.dll
07:20:35.0531 2328 LmHosts - ok
07:20:35.0546 2328 MarvinBus (d51e16339213898bc20c58670274ec3e) C:\WINDOWS\system32\DRIVERS\MarvinBus.sys
07:20:35.0562 2328 MarvinBus - ok
07:20:35.0578 2328 Messenger (221cd1c815b8a6b79389c3f5d1018de8) C:\WINDOWS\System32\msgsvc.dll
07:20:35.0578 2328 Messenger - ok
07:20:35.0593 2328 Microsoft SharePoint Workspace Audit Service - ok
07:20:35.0609 2328 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
07:20:35.0609 2328 mnmdd - ok
07:20:35.0640 2328 mnmsrvc (9a57d046f88f4b69751b11fd40088a61) C:\WINDOWS\system32\mnmsrvc.exe
07:20:35.0640 2328 mnmsrvc - ok
07:20:35.0671 2328 Modem (44032b0c6d9954d3fd26438330b99ee7) C:\WINDOWS\system32\drivers\Modem.sys
07:20:35.0671 2328 Modem - ok
07:20:35.0765 2328 Monfilt (c7d9f9717916b34c1b00dd4834af485c) C:\WINDOWS\system32\drivers\Monfilt.sys
07:20:35.0812 2328 Monfilt - ok
07:20:35.0937 2328 Mouclass (4cb582831dbde63ce43b45d771218374) C:\WINDOWS\system32\DRIVERS\mouclass.sys
07:20:35.0937 2328 Mouclass - ok
07:20:35.0968 2328 mouhid (bb269eba740737ab749b214d568b6812) C:\WINDOWS\system32\DRIVERS\mouhid.sys
07:20:35.0968 2328 mouhid - ok
07:20:36.0000 2328 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
07:20:36.0000 2328 MountMgr - ok
07:20:36.0062 2328 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
07:20:36.0062 2328 MozillaMaintenance - ok
07:20:36.0062 2328 mraid35x - ok
07:20:36.0093 2328 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
07:20:36.0140 2328 MRxDAV - ok
07:20:36.0156 2328 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
07:20:36.0171 2328 MRxSmb - ok
07:20:36.0171 2328 MSDTC (6db4d1521caba9a5ffab54ade0ae867d) C:\WINDOWS\system32\msdtc.exe
07:20:36.0187 2328 MSDTC - ok
07:20:36.0203 2328 MSDV (8575d788395c4d6378d98d1ed7cdadb9) C:\WINDOWS\system32\DRIVERS\msdv.sys
07:20:36.0203 2328 MSDV - ok
07:20:36.0218 2328 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
07:20:36.0218 2328 Msfs - ok
07:20:36.0234 2328 MSIServer - ok
07:20:36.0234 2328 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
07:20:36.0234 2328 MSKSSRV - ok
07:20:36.0234 2328 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
07:20:36.0234 2328 MSPCLOCK - ok
07:20:36.0234 2328 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
07:20:36.0234 2328 MSPQM - ok
07:20:36.0265 2328 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
07:20:36.0265 2328 mssmbios - ok
07:20:36.0312 2328 MSSQL$SQLEXPRESS - ok
07:20:36.0359 2328 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
07:20:36.0375 2328 MSSQLServerADHelper100 - ok
07:20:36.0390 2328 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
07:20:36.0390 2328 MSTEE - ok
07:20:36.0406 2328 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
07:20:36.0406 2328 Mup - ok
07:20:36.0421 2328 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
07:20:36.0437 2328 NABTSFEC - ok
07:20:36.0468 2328 napagent (6ea362e9db03d44f6b996f4d8be237e9) C:\WINDOWS\System32\qagentrt.dll
07:20:36.0484 2328 napagent - ok
07:20:36.0562 2328 NBService (89844c3d3a7aae8999e229c88e452633) C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
07:20:36.0625 2328 NBService - ok
07:20:36.0671 2328 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
07:20:36.0671 2328 NDIS - ok
07:20:36.0671 2328 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
07:20:36.0687 2328 NdisIP - ok
07:20:36.0703 2328 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
07:20:36.0703 2328 NdisTapi - ok
07:20:36.0703 2328 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
07:20:36.0703 2328 Ndisuio - ok
07:20:36.0718 2328 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
07:20:36.0718 2328 NdisWan - ok
07:20:36.0734 2328 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
07:20:36.0734 2328 NDProxy - ok
07:20:36.0750 2328 Net Driver HPZ12 (90eb97c8dbf11bb0016c51946ac5ecd6) C:\WINDOWS\system32\HPZinw12.dll
07:20:36.0750 2328 Net Driver HPZ12 - ok
07:20:36.0781 2328 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
07:20:36.0781 2328 NetBIOS - ok
07:20:36.0828 2328 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
07:20:36.0843 2328 NetBT - ok
07:20:36.0875 2328 NetDDE (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
07:20:36.0875 2328 NetDDE - ok
07:20:36.0875 2328 NetDDEdsdm (933de774986ec85e48210c44ab431de6) C:\WINDOWS\system32\netdde.exe
07:20:36.0875 2328 NetDDEdsdm - ok
07:20:36.0890 2328 Netlogon (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
07:20:36.0890 2328 Netlogon - ok
07:20:36.0906 2328 Netman (72e1e9e2977be08bdeedb6d8fd9d4d40) C:\WINDOWS\System32\netman.dll
07:20:36.0921 2328 Netman - ok
07:20:37.0000 2328 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:20:37.0031 2328 NetTcpPortSharing - ok
07:20:37.0031 2328 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
07:20:37.0031 2328 NIC1394 - ok
07:20:37.0062 2328 Nla (39ee7c3bfbc64ba87cc8cf67386e814c) C:\WINDOWS\System32\mswsock.dll
07:20:37.0109 2328 Nla - ok
07:20:37.0187 2328 NMIndexingService (433049770b810d7c83c5c94cdb3e09d2) C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
07:20:37.0218 2328 NMIndexingService - ok
07:20:37.0234 2328 nmwcd (c82f4cc10ad315b6d6bcb14d0a7cad66) C:\WINDOWS\system32\drivers\ccdcmb.sys
07:20:37.0234 2328 nmwcd - ok
07:20:37.0250 2328 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
07:20:37.0250 2328 Npfs - ok
07:20:37.0250 2328 NTACCESS - ok
07:20:37.0281 2328 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
07:20:37.0328 2328 Ntfs - ok
07:20:37.0328 2328 NtLmSsp (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
07:20:37.0328 2328 NtLmSsp - ok
07:20:37.0359 2328 NtmsSvc (023dd70573d644f3d9c8b1258a7bfd08) C:\WINDOWS\system32\ntmssvc.dll
07:20:37.0390 2328 NtmsSvc - ok
07:20:37.0421 2328 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
07:20:37.0421 2328 Null - ok
07:20:38.0046 2328 nv (7b5a17bd54bb9142843dbe99a1caaed8) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
07:20:38.0359 2328 nv - ok
07:20:38.0468 2328 NVSvc (5150b108ea88831e1c599603d8b89621) C:\WINDOWS\system32\nvsvc32.exe
07:20:38.0468 2328 NVSvc - ok
07:20:38.0578 2328 nvUpdatusService (83e8ab7bb3c8956c53fec071c94f0bbb) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
07:20:38.0640 2328 nvUpdatusService - ok
07:20:38.0718 2328 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
07:20:38.0734 2328 NwlnkFlt - ok
07:20:38.0750 2328 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
07:20:38.0750 2328 NwlnkFwd - ok
07:20:38.0765 2328 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
07:20:38.0765 2328 ohci1394 - ok
07:20:38.0906 2328 OODefragAgent (e0b8e85e67099ffd7f8efd4f2b226516) C:\Program Files\OO Software\Defrag\oodag.exe
07:20:38.0968 2328 OODefragAgent - ok
07:20:39.0015 2328 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:20:39.0015 2328 ose - ok
07:20:39.0250 2328 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
07:20:39.0359 2328 osppsvc - ok
07:20:39.0437 2328 PAC207 (5489b567cdd6ae216519caca7cc700e9) C:\WINDOWS\system32\DRIVERS\pfc027.sys
07:20:39.0468 2328 PAC207 - ok
07:20:39.0484 2328 Parport (46f8db73b4a53e543f8e371dc7c75bae) C:\WINDOWS\system32\DRIVERS\parport.sys
07:20:39.0484 2328 Parport - ok
07:20:39.0500 2328 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
07:20:39.0500 2328 PartMgr - ok
07:20:39.0515 2328 ParVdm (1fae19d0457176318bba4a8795656ebc) C:\WINDOWS\system32\drivers\ParVdm.sys
07:20:39.0515 2328 ParVdm - ok
07:20:39.0531 2328 PCI (6ce351d149cb4befc702951e471e1730) C:\WINDOWS\system32\DRIVERS\pci.sys
07:20:39.0531 2328 PCI - ok
07:20:39.0531 2328 PCIDump - ok
07:20:39.0546 2328 PCIIde (2da4ec85e0ea7a45c6b2a05820492d5a) C:\WINDOWS\system32\DRIVERS\pciide.sys
07:20:39.0546 2328 PCIIde - ok
07:20:39.0562 2328 PCLEPCI (1bebe7de8508a02650cdce45c664c2a2) C:\WINDOWS\system32\drivers\pclepci.sys
07:20:39.0578 2328 PCLEPCI - ok
07:20:39.0609 2328 Pcmcia (4fc31e6c19a5ce5198b1abff94cae758) C:\WINDOWS\system32\drivers\Pcmcia.sys
07:20:39.0609 2328 Pcmcia - ok
07:20:39.0625 2328 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys
07:20:39.0640 2328 pcouffin - ok
07:20:39.0640 2328 PDCOMP - ok
07:20:39.0640 2328 PDFRAME - ok
07:20:39.0640 2328 PDRELI - ok
07:20:39.0640 2328 PDRFRAME - ok
07:20:39.0656 2328 perc2 - ok
07:20:39.0656 2328 perc2hib - ok
07:20:39.0687 2328 PhTVTune (e1644e126aafc812f4ced752d18eaa43) C:\WINDOWS\system32\DRIVERS\PhTVTune.sys
07:20:39.0687 2328 PhTVTune - ok
07:20:39.0703 2328 PlugPlay (9ef697af07bb8dd82c3b02ca953a95b7) C:\WINDOWS\system32\services.exe
07:20:39.0718 2328 PlugPlay - ok
07:20:39.0750 2328 Pml Driver HPZ12 (f0efaf6000e9fcbd77f769d527ce5f9d) C:\WINDOWS\system32\HPZipm12.dll
07:20:39.0765 2328 Pml Driver HPZ12 - ok
07:20:39.0796 2328 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\WINDOWS\system32\PnkBstrA.exe
07:20:39.0812 2328 PnkBstrA - ok
07:20:39.0812 2328 PolicyAgent (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
07:20:39.0812 2328 PolicyAgent - ok
07:20:39.0828 2328 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
07:20:39.0828 2328 PptpMiniport - ok
07:20:39.0828 2328 ProtectedStorage (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
07:20:39.0843 2328 ProtectedStorage - ok
07:20:39.0843 2328 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
07:20:39.0843 2328 PSched - ok
07:20:39.0859 2328 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
07:20:39.0859 2328 Ptilink - ok
07:20:39.0875 2328 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
07:20:39.0875 2328 PxHelp20 - ok
07:20:39.0875 2328 ql1080 - ok
07:20:39.0875 2328 Ql10wnt - ok
07:20:39.0890 2328 ql12160 - ok
07:20:39.0890 2328 ql1240 - ok
07:20:39.0890 2328 ql1280 - ok
07:20:39.0906 2328 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
07:20:39.0906 2328 RasAcd - ok
07:20:39.0921 2328 RasAuto (2b5e44ea009f2f374b980e1e9a70635d) C:\WINDOWS\System32\rasauto.dll
07:20:39.0937 2328 RasAuto - ok
07:20:39.0953 2328 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
07:20:39.0953 2328 Rasl2tp - ok
07:20:39.0984 2328 RasMan (d57554c664b64604bd1ee13ea2c07e77) C:\WINDOWS\System32\rasmans.dll
07:20:40.0000 2328 RasMan - ok
07:20:40.0000 2328 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
07:20:40.0000 2328 RasPppoe - ok
07:20:40.0015 2328 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
07:20:40.0015 2328 Raspti - ok
07:20:40.0031 2328 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
07:20:40.0062 2328 Rdbss - ok
07:20:40.0062 2328 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
07:20:40.0062 2328 RDPCDD - ok
07:20:40.0093 2328 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
07:20:40.0093 2328 RDPWD - ok
07:20:40.0109 2328 RDSessMgr (c0d9d9711cb74ee9bc66353d8cbdab0e) C:\WINDOWS\system32\sessmgr.exe
07:20:40.0125 2328 RDSessMgr - ok
07:20:40.0140 2328 redbook (611bfd220305be3a85ae876ea47d4aa5) C:\WINDOWS\system32\DRIVERS\redbook.sys
07:20:40.0140 2328 redbook - ok
07:20:40.0171 2328 RemoteAccess (127c26b5371651043450e52542099aba) C:\WINDOWS\System32\mprdim.dll
07:20:40.0171 2328 RemoteAccess - ok
07:20:40.0187 2328 RpcLocator (718b3bdc0bc3c2f7d065a53d26202af9) C:\WINDOWS\system32\locator.exe
07:20:40.0203 2328 RpcLocator - ok
07:20:40.0218 2328 RpcSs (be27674d1cbc3214aec84b4336a38bbf) C:\WINDOWS\system32\rpcss.dll
07:20:40.0218 2328 RpcSs - ok
07:20:40.0250 2328 RsFx0103 (fd692c6ffade58f7c4c3c3c9a0ec35bd) C:\WINDOWS\system32\DRIVERS\RsFx0103.sys
07:20:40.0296 2328 RsFx0103 - ok
07:20:40.0312 2328 RSUSBSTOR (247b0a8164069cd4fe6f3094c581b13b) C:\WINDOWS\system32\Drivers\RtsUStor.sys
07:20:40.0312 2328 RSUSBSTOR - ok
07:20:40.0343 2328 RSVP (09ab2e71e58b078038e3bfdba7ffc984) C:\WINDOWS\system32\rsvp.exe
07:20:40.0359 2328 RSVP - ok
07:20:40.0390 2328 RTLE8023xp (d3578c3806ed545e5c36b2a20f5c0b5a) C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
07:20:40.0406 2328 RTLE8023xp - ok
07:20:40.0421 2328 SamSs (ed0a176354487ceed65b80a7148ab739) C:\WINDOWS\system32\lsass.exe
07:20:40.0421 2328 SamSs - ok
07:20:40.0437 2328 SCardSvr (410046e401eb11e1e6749e9deea41d4a) C:\WINDOWS\System32\SCardSvr.exe
07:20:40.0453 2328 SCardSvr - ok
07:20:40.0468 2328 Schedule (3ff232a7731621b8902d81d42418c93c) C:\WINDOWS\system32\schedsvc.dll
07:20:40.0500 2328 Schedule - ok
07:20:40.0546 2328 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
07:20:40.0546 2328 Secdrv - ok
07:20:40.0562 2328 seclogon (477e2c3cc5e4a0d635bcb0ea8dcac3c6) C:\WINDOWS\System32\seclogon.dll
07:20:40.0562 2328 seclogon - ok
07:20:40.0578 2328 SENS (a530b75c10c23c9ab28fdb6ce719e21f) C:\WINDOWS\system32\sens.dll
07:20:40.0578 2328 SENS - ok
07:20:40.0609 2328 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
07:20:40.0625 2328 serenum - ok
07:20:40.0625 2328 Serial (b842729337c9b921615c40d3c1a1af96) C:\WINDOWS\system32\DRIVERS\serial.sys
07:20:40.0625 2328 Serial - ok
07:20:40.0640 2328 SetupNTGLM7X - ok
07:20:40.0687 2328 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
07:20:40.0687 2328 sfdrv01 - ok
07:20:40.0687 2328 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
07:20:40.0703 2328 sfhlp02 - ok
07:20:40.0718 2328 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
07:20:40.0734 2328 Sfloppy - ok
07:20:40.0734 2328 sfsync02 (6120e41228a3718d8376437fe135dd4d) C:\WINDOWS\system32\drivers\sfsync02.sys
07:20:40.0734 2328 sfsync02 - ok
07:20:40.0750 2328 sfvfs02 (d5a7e09d2c6a702809e49190d52adc9f) C:\WINDOWS\system32\drivers\sfvfs02.sys
07:20:40.0750 2328 sfvfs02 - ok
07:20:40.0781 2328 SharedAccess (f58faca9621d2db01bd0927d9a0a208e) C:\WINDOWS\System32\ipnathlp.dll
07:20:40.0843 2328 SharedAccess - ok
07:20:40.0859 2328 ShellHWDetection (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
07:20:40.0859 2328 ShellHWDetection - ok
07:20:40.0859 2328 Simbad - ok
07:20:40.0921 2328 SkypeUpdate (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files\Skype\Updater\Updater.exe
07:20:40.0953 2328 SkypeUpdate - ok
07:20:40.0968 2328 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
07:20:40.0984 2328 SLIP - ok
07:20:41.0000 2328 Sparrow - ok
07:20:41.0015 2328 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
07:20:41.0015 2328 splitter - ok
07:20:41.0046 2328 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
07:20:41.0046 2328 Spooler - ok
07:20:41.0093 2328 sptd (cdddec541bc3c96f91ecb48759673505) C:\WINDOWS\system32\Drivers\sptd.sys
07:20:41.0093 2328 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
07:20:41.0093 2328 sptd ( LockedFile.Multi.Generic ) - warning
07:20:41.0093 2328 sptd - detected LockedFile.Multi.Generic (1)
07:20:41.0171 2328 SQLAgent$SQLEXPRESS (a687b5b326afcfcf182c4931d1ff9771) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
07:20:41.0187 2328 SQLAgent$SQLEXPRESS - ok
07:20:41.0203 2328 SQLBrowser (b54b48f6d92423440c264e91225c5ff1) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
07:20:41.0250 2328 SQLBrowser - ok
07:20:41.0265 2328 SQLWriter (637a0f23f9012358e92e6f99835494d1) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
07:20:41.0281 2328 SQLWriter - ok
07:20:41.0375 2328 sr (94610c8653635e4459316a0050d55ce7) C:\WINDOWS\system32\DRIVERS\sr.sys
07:20:41.0375 2328 sr - ok
07:20:41.0390 2328 srservice (35b91147124f64ac8081a2edb9ea4dee) C:\WINDOWS\system32\srsvc.dll
07:20:41.0406 2328 srservice - ok
07:20:41.0437 2328 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
07:20:41.0437 2328 Srv - ok
07:20:41.0468 2328 SSDPSRV (becd5271dc4e3b7c3d035f790fcbc1e5) C:\WINDOWS\System32\ssdpsrv.dll
07:20:41.0468 2328 SSDPSRV - ok
07:20:41.0500 2328 STI Simulator (ed78dfad8efcdfbc89500492c4d14645) C:\WINDOWS\System32\PAStiSvc.exe
07:20:41.0500 2328 STI Simulator - ok
07:20:41.0531 2328 stisvc (c1cdd9275f6a115bb0ae1d55d8d27ba6) C:\WINDOWS\system32\wiaservc.dll
07:20:41.0578 2328 stisvc - ok
07:20:41.0593 2328 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
07:20:41.0609 2328 streamip - ok
07:20:41.0640 2328 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
07:20:41.0640 2328 swenum - ok
07:20:41.0687 2328 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
07:20:41.0703 2328 SwitchBoard - ok
07:20:41.0718 2328 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
07:20:41.0718 2328 swmidi - ok
07:20:41.0718 2328 SwPrv - ok
07:20:41.0718 2328 symc810 - ok
07:20:41.0734 2328 symc8xx - ok
07:20:41.0734 2328 sym_hi - ok
07:20:41.0734 2328 sym_u3 - ok
07:20:41.0750 2328 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
07:20:41.0765 2328 sysaudio - ok
07:20:41.0781 2328 SysmonLog (ce06f01b88ace199a1bf460cac29c110) C:\WINDOWS\system32\smlogsvc.exe
07:20:41.0781 2328 SysmonLog - ok
07:20:41.0796 2328 TapiSrv (c2546cd7a398476f9df5614b2ae160e8) C:\WINDOWS\System32\tapisrv.dll
07:20:41.0859 2328 TapiSrv - ok
07:20:41.0875 2328 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
07:20:41.0890 2328 Tcpip - ok
07:20:41.0906 2328 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
07:20:41.0906 2328 TDPIPE - ok
07:20:41.0921 2328 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
07:20:41.0921 2328 TDTCP - ok
07:20:41.0921 2328 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
07:20:41.0921 2328 TermDD - ok
07:20:41.0937 2328 TermService (a75dd6fc3dbee4fff5ebc9f2c28bb66e) C:\WINDOWS\System32\termsrv.dll
07:20:41.0953 2328 TermService - ok
07:20:41.0984 2328 tffsport (d9d5e4ca72270e9f3eca97da0983ab87) C:\WINDOWS\system32\DRIVERS\tffsport.sys
07:20:42.0015 2328 tffsport - ok
07:20:42.0031 2328 Themes (ee9a2b9ea968a792a053c9d1a86bf870) C:\WINDOWS\System32\shsvcs.dll
07:20:42.0031 2328 Themes - ok
07:20:42.0046 2328 TosIde - ok
07:20:42.0062 2328 TrkWks (38853304ccb938d30e0c4cde8d2c2a8a) C:\WINDOWS\system32\trkwks.dll
07:20:42.0078 2328 TrkWks - ok
07:20:42.0125 2328 TuneUp.Defrag (233fcd3443cfbbaa27e7e463dccbc528) C:\WINDOWS\System32\TuneUpDefragService.exe
07:20:42.0171 2328 TuneUp.Defrag - ok
07:20:42.0187 2328 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
07:20:42.0187 2328 Udfs - ok
07:20:42.0187 2328 ultra - ok
07:20:42.0218 2328 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
07:20:42.0250 2328 Update - ok
07:20:42.0281 2328 upnphost (651bd90dcee5b7bdc74a2eb7c9266f9e) C:\WINDOWS\System32\upnphost.dll
07:20:42.0312 2328 upnphost - ok
07:20:42.0328 2328 UPS (20a0f6a11959e92908717d09e87d670d) C:\WINDOWS\System32\ups.exe
07:20:42.0328 2328 UPS - ok
07:20:42.0359 2328 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
07:20:42.0375 2328 usbaudio - ok
07:20:42.0390 2328 usbbus (9419faac6552a51542dbba02971c841c) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys
07:20:42.0390 2328 usbbus - ok
07:20:42.0421 2328 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
07:20:42.0421 2328 usbccgp - ok
07:20:42.0437 2328 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys
07:20:42.0453 2328 UsbDiag - ok
07:20:42.0484 2328 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
07:20:42.0484 2328 usbehci - ok
07:20:42.0500 2328 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
07:20:42.0500 2328 usbhub - ok
07:20:42.0515 2328 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys
07:20:42.0515 2328 USBModem - ok
07:20:42.0515 2328 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
07:20:42.0515 2328 usbprint - ok
07:20:42.0546 2328 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
07:20:42.0562 2328 usbscan - ok
07:20:42.0562 2328 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
07:20:42.0578 2328 usbstor - ok
07:20:42.0625 2328 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
07:20:42.0625 2328 usbuhci - ok
07:20:42.0625 2328 UxTuneUp (25895cc7c3f101419a9ed1bf65a8bd62) C:\WINDOWS\System32\uxtuneup.dll
07:20:42.0640 2328 UxTuneUp - ok
07:20:42.0640 2328 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
07:20:42.0640 2328 VgaSave - ok
07:20:42.0640 2328 ViaIde - ok
07:20:42.0687 2328 Video3D (8643da4a6c83da6c10fcab1e5ab6632d) C:\WINDOWS\system32\Drivers\Video3D32.sys
07:20:42.0687 2328 Video3D - ok
07:20:42.0703 2328 VolSnap (28a4b296b47782173c346e376cb374d1) C:\WINDOWS\system32\drivers\VolSnap.sys
07:20:42.0703 2328 VolSnap - ok
07:20:42.0734 2328 VSS (d6ba1a63d9e00933f1cd2a885573afb2) C:\WINDOWS\System32\vssvc.exe
07:20:42.0734 2328 VSS - ok
07:20:42.0750 2328 W32Time (fa4e1cdba256787f2149f4aad07bc91f) C:\WINDOWS\system32\w32time.dll
07:20:42.0796 2328 W32Time - ok
07:20:42.0812 2328 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
07:20:42.0812 2328 Wanarp - ok
07:20:42.0859 2328 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
07:20:42.0875 2328 Wdf01000 - ok
07:20:42.0875 2328 WDICA - ok
07:20:42.0890 2328 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
07:20:42.0890 2328 wdmaud - ok
07:20:42.0953 2328 Web Assistant Updater (ce2c4578a8d8265a6c3fd131959ba2fa) C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
07:20:42.0968 2328 Web Assistant Updater - ok
07:20:42.0984 2328 WebClient (47ae51048a82dfa1cd6b51d369f7e169) C:\WINDOWS\System32\webclnt.dll
07:20:42.0984 2328 WebClient - ok
07:20:43.0046 2328 winmgmt (e488332126e3b1182d2b8a0c35408ec6) C:\WINDOWS\system32\wbem\WMIsvc.dll
07:20:43.0078 2328 winmgmt - ok
07:20:43.0109 2328 WinRing0_1_2_0 - ok
07:20:43.0171 2328 WinRM (4d34cedd74bdbf2b6a935eae3bf80543) C:\WINDOWS\system32\WsmSvc.dll
07:20:43.0218 2328 WinRM - ok
07:20:43.0265 2328 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
07:20:43.0265 2328 WmdmPmSN - ok
07:20:43.0281 2328 WmiApSrv (23f6f03272f7e5679f1f050aed5acee6) C:\WINDOWS\system32\wbem\wmiapsrv.exe
07:20:43.0281 2328 WmiApSrv - ok
07:20:43.0359 2328 WMPNetworkSvc (3739866d20abd42f26a7b85f9e2560af) C:\Program Files\Windows Media Player\WMPNetwk.exe
07:20:43.0406 2328 WMPNetworkSvc - ok
07:20:43.0453 2328 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
07:20:43.0468 2328 WpdUsb - ok
07:20:43.0593 2328 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:20:43.0625 2328 WPFFontCache_v0400 - ok
07:20:43.0656 2328 wscsvc (4c86d5faf78194995af9cc1075f65dd3) C:\WINDOWS\system32\wscsvc.dll
07:20:43.0656 2328 wscsvc - ok
07:20:43.0671 2328 WSIMD (0091d78c5f8fde0cdf2b214823de6e48) C:\WINDOWS\system32\DRIVERS\wsimd.sys
07:20:43.0703 2328 WSIMD - ok
07:20:43.0718 2328 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
07:20:43.0718 2328 WSTCODEC - ok
07:20:43.0734 2328 wuauserv (c1364564800ee9784192145324a23308) C:\WINDOWS\system32\wuauserv.dll
07:20:43.0750 2328 wuauserv - ok
07:20:43.0781 2328 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
07:20:43.0781 2328 WudfPf - ok
07:20:43.0781 2328 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
07:20:43.0781 2328 WudfRd - ok
07:20:43.0796 2328 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
07:20:43.0796 2328 WudfSvc - ok
07:20:43.0843 2328 WZCSVC (a27d4ba7264c0bf52f32d10405bea1d4) C:\WINDOWS\System32\wzcsvc.dll
07:20:43.0890 2328 WZCSVC - ok
07:20:43.0921 2328 xmlprov (eaa4bb9edb3fb10cf8979fe65e63658f) C:\WINDOWS\System32\xmlprov.dll
07:20:43.0953 2328 xmlprov - ok
07:20:43.0968 2328 MBR (0x1B8) (413fc2a0c716421b3158746d63736515) \Device\Harddisk0\DR0
07:20:44.0281 2328 \Device\Harddisk0\DR0 - ok
07:20:44.0281 2328 Boot (0x1200) (8e09eb9ef6985b77ecf09cdf3f9b5cce) \Device\Harddisk0\DR0\Partition0
07:20:44.0281 2328 \Device\Harddisk0\DR0\Partition0 - ok
07:20:44.0281 2328 ============================================================
07:20:44.0281 2328 Scan finished
07:20:44.0281 2328 ============================================================
07:20:44.0296 2776 Detected object count: 1
07:20:44.0296 2776 Actual detected object count: 1
07:20:54.0468 2776 sptd ( LockedFile.Multi.Generic ) - skipped by user
07:20:54.0468 2776 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
07:21:07.0765 1904 Deinitialize success