pomalý start pc,prosím kontrolu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod jaro3 » 19 pro 2019 23:09

Ještě RootkitRevealer a mbam.


Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Reklama
smarda84
Level 1
Level 1
Příspěvky: 82
Registrován: květen 15
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod smarda84 » 20 pro 2019 18:31

RootkitRevealer když spustím tak se jen zatočí kolečko jako že se to spustí a nic se neděje nebo dělám něco špatně?


Malwarebytes
www.malwarebytes.com

-Podrobnosti logovacího souboru-
Datum skenování: 20.12.19
Čas skenování: 16:42
Logovací soubor: 470101e0-233f-11ea-ba0d-101f74f7b96d.json

-Informace o softwaru-
Verze: 4.0.4.49
Verze komponentů:
Aktualizovat verzi balíku komponent:
Licence: Bezplatná

-Systémová informace-
OS: Windows 10 (Build 18362.535)
CPU: x64
Systém souborů: NTFS
Uživatel: DESKTOP-J7GV84K\Admin

-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Spuštění skenování: Ruční
Výsledek: Zrušeno
Skenované objekty: 0
Zjištěné hrozby: 0
Hrozby umístěné do karantény: 0
Uplynulý čas: 15 min, 20 sek

-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat

-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)

Modul: 0
(Nebyly zjištěny žádné škodlivé položky)

Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)

Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)

Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)

Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)

Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)

Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)

WMI: 0
(Nebyly zjištěny žádné škodlivé položky)


(end)
CPU:Intel Pentium G4560 @ 3.50 GHz, GPU:NVIDIA GeForce GTX 1050 Ti, RAM: Kingston 8 Gb DDR 4, MB: MSI B250M PRO-VD,
SSD: Kingston SSDNow V300 120Gb, Hdd:1 Seagate Barracuda 250 Gb, 2 Western Digital Caviar Blue 1 TB, PSU: Fortron ATX-400PNF 400W

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod jaro3 » 20 pro 2019 18:47

Udělej znovu GMER.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

smarda84
Level 1
Level 1
Příspěvky: 82
Registrován: květen 15
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod smarda84 » 20 pro 2019 20:45

GMER 2.2.19882 - http://www.gmer.net
Rootkit scan 2019-12-20 20:35:33
Windows 6.2.9200 x64
Running: gmer.exe


---- Services - GMER 2.2 ----

Service System32\Drivers\MbamChameleon.sys (*** hidden *** ) [AUTO] MBAMChameleon <-- ROOTKIT !!!

---- EOF - GMER 2.2 ----





MER 2.2.19882 - http://www.gmer.net
Rootkit scan 2019-12-20 20:41:30
Windows 6.2.9200 x64
Running: gmer.exe


---- Services - GMER 2.2 ----

Service System32\Drivers\MbamChameleon.sys (*** hidden *** ) [AUTO] MBAMChameleon <-- ROOTKIT !!!

---- Registry - GMER 2.2 ----

Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\kernel\RNG@RNGAuxiliarySeed 478007436
Reg HKLM\SYSTEM\CurrentControlSet\Services\bam\State\UserSettings\S-1-5-21-2756024143-1932332312-656688122-1001@SequenceNumber 32
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@Type 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@Start 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@ErrorControl 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@Tag 11
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@ImagePath \SystemRoot\System32\Drivers\MbamChameleon.sys
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@DisplayName MBAMChameleon
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@Group FSFilter Activity Monitor
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@DependOnService FltMgr?
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@Description Malwarebytes Anti-Malware Chameleon
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@Enabled 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@ProtectedPaths \Device\HarddiskVolume4\WINDOWS\System32\DRIVERS\mbamchameleon.sys?
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@ProtectedRegistry \REGISTRY\MACHINE\SYSTEM\CONTROLSET*\SERVICES\MBAMCHAMELEON\*?\Registry\MACHINE\SYSTEM\CURRENTCONTROLSET\SERVICES\MBAMChameleon\?
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon@RefCount 2
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon\Instances
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon\Instances@DefaultInstance MBAMChameleon
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon\Instances\MBAMChameleon
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon\Instances\MBAMChameleon@Altitude 400900
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon\Instances\MBAMChameleon@Flags 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\MBAMChameleon
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 3948
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 3016
Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile@EnableFirewall 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeEstimated 0x83 0xC6 0x56 0x54 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeHigh 0x83 0x2E 0x1B 0xB6 ...
Reg HKLM\SYSTEM\CurrentControlSet\Services\W32Time\SecureTimeLimits@SecureTimeLow 0x83 0x5E 0x92 0xF2 ...
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\ActivityDataModel\ReaderRevisionInfo@72367D90-7CA4-EE1E-2C12-329C399FCC3C 1?70??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FeatureUsage\AppLaunch@Microsoft.Windows.Explorer 27
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Search\JumplistData@{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\notepad.exe 0x55 0x17 0x70 0x58 ...

---- EOF - GMER 2.2 ----
CPU:Intel Pentium G4560 @ 3.50 GHz, GPU:NVIDIA GeForce GTX 1050 Ti, RAM: Kingston 8 Gb DDR 4, MB: MSI B250M PRO-VD,
SSD: Kingston SSDNow V300 120Gb, Hdd:1 Seagate Barracuda 250 Gb, 2 Western Digital Caviar Blue 1 TB, PSU: Fortron ATX-400PNF 400W

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod jaro3 » 20 pro 2019 21:23

V pořádku.

ještě:
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

smarda84
Level 1
Level 1
Příspěvky: 82
Registrován: květen 15
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod smarda84 » 20 pro 2019 22:27

22:22:54.0405 8916 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:22:54.0405 8916 UEFI system
22:22:54.0718 8916 ============================================================
22:22:54.0718 8916 Current date / time: 2019/12/20 22:22:54.0718
22:22:54.0718 8916 SystemInfo:
22:22:54.0718 8916
22:22:54.0718 8916 OS Version: 6.2.9200 ServicePack: 0.0
22:22:54.0718 8916 Product type: Workstation
22:22:54.0718 8916 ComputerName: DESKTOP-J7GV84K
22:22:54.0718 8916 UserName: Admin
22:22:54.0718 8916 Windows directory: C:\WINDOWS
22:22:54.0718 8916 System windows directory: C:\WINDOWS
22:22:54.0718 8916 Running under WOW64
22:22:54.0718 8916 Processor architecture: Intel x64
22:22:54.0718 8916 Number of processors: 4
22:22:54.0718 8916 Page size: 0x1000
22:22:54.0718 8916 Boot type: Normal boot
22:22:54.0718 8916 ============================================================
22:22:55.0015 8916 Drive \Device\Harddisk0\DR0 - Size: 0x1BF3000000 (111.80 Gb), SectorSize: 0x200, Cylinders: 0x3902, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:22:55.0015 8916 ============================================================
22:22:55.0015 8916 \Device\Harddisk0\DR0:
22:22:55.0015 8916 GPT partitions:
22:22:55.0015 8916 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {38E883AA-C8FF-4C64-9872-4CE146E21D6B}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xF9800
22:22:55.0015 8916 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {8E26E99A-68B2-4273-A2B6-61830C8F9B0E}, Name: EFI system partition, StartLBA 0xFA000, BlocksNum 0x32000
22:22:55.0015 8916 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {D02C6471-07C0-4F69-87AE-C6C9B8592A73}, Name: Microsoft reserved partition, StartLBA 0x12C000, BlocksNum 0x8000
22:22:55.0015 8916 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {AFD40143-E8D8-4554-ACDB-7EFB62A6AC75}, Name: Basic data partition, StartLBA 0x134000, BlocksNum 0xDD3118F
22:22:55.0015 8916 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C148BAA0-A8A0-4F37-B60F-244A4F81E779}, Name: , StartLBA 0xDE65800, BlocksNum 0x131800
22:22:55.0015 8916 MBR partitions:
22:22:55.0015 8916 ============================================================
22:22:55.0015 8916 C: <-> \Device\Harddisk0\DR0\Partition4
22:22:55.0015 8916 ============================================================
22:22:55.0015 8916 Initialize success
22:22:55.0015 8916 ============================================================
22:23:25.0369 0008 ============================================================
22:23:25.0369 0008 Scan started
22:23:25.0369 0008 Mode: Manual;
22:23:25.0369 0008 ============================================================
22:23:26.0150 0008 ================ Scan system memory ========================
22:23:26.0150 0008 System memory - ok
22:23:26.0166 0008 ================ Scan services =============================
22:23:26.0306 0008 [ 214FD47FAA4CA006B575B65AC7604E3A ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
22:23:26.0306 0008 1394ohci - ok
22:23:26.0322 0008 [ 4A8F6E456977488CC4C77149792340E9 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
22:23:26.0337 0008 3ware - ok
22:23:26.0337 0008 AarSvc - ok
22:23:26.0353 0008 Suspicious service (Hidden): AarSvc_2b981
22:23:26.0369 0008 [ 899B7E724BF19F17978B6A37B864A277 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
22:23:26.0369 0008 Accelerometer - ok
22:23:26.0384 0008 [ 4EC1CE67D6DF47C05C9400332BB6699C ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
22:23:26.0384 0008 ACPI - ok
22:23:26.0400 0008 [ 97CD5E972FA665A42E9C087B1DFAE6E6 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
22:23:26.0400 0008 AcpiDev - ok
22:23:26.0400 0008 acpiex - ok
22:23:26.0416 0008 [ 8E4182F6A345D2D85F9AC3BCBBD7F18C ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
22:23:26.0416 0008 acpipagr - ok
22:23:26.0416 0008 [ 48D460FAA6929BC81869CC7299A6B70A ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
22:23:26.0416 0008 AcpiPmi - ok
22:23:26.0431 0008 [ B9EDE7133F52C0B989A66CA3B39AA588 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
22:23:26.0431 0008 acpitime - ok
22:23:26.0431 0008 Acx01000 - ok
22:23:26.0462 0008 [ 126384CA8ADA5F1E061CAE75581CEE8F ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
22:23:26.0462 0008 ADP80XX - ok
22:23:26.0478 0008 AFD - ok
22:23:26.0478 0008 [ 033DE3E43A9FC3F02B04E791148D0F11 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
22:23:26.0478 0008 afunix - ok
22:23:26.0494 0008 [ 1772CB571F5CAB57E407CB1DCE570D4B ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
22:23:26.0494 0008 ahcache - ok
22:23:26.0509 0008 [ 232B30ECEFBB1BEC07F2DF21D46DCDB6 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
22:23:26.0509 0008 AJRouter - ok
22:23:26.0509 0008 [ FADF878C0D61D07170C91C891EBC72B2 ] ALG C:\WINDOWS\System32\alg.exe
22:23:26.0525 0008 ALG - ok
22:23:26.0525 0008 [ BBADD85854BFB5D43C60B7AC8EEA3DBA ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
22:23:26.0541 0008 AMD External Events Utility - ok
22:23:26.0541 0008 [ 55578CF027B0AE9F0D653B209C9F1B6D ] amdgpio2 C:\WINDOWS\System32\drivers\amdgpio2.sys
22:23:26.0541 0008 amdgpio2 - ok
22:23:26.0556 0008 [ A6B00F4CD34F26B22B1B97D454567DA1 ] amdi2c C:\WINDOWS\System32\drivers\amdi2c.sys
22:23:26.0556 0008 amdi2c - ok
22:23:26.0572 0008 [ 0D8417FA650DC4797B6887ED7C7B98EB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
22:23:26.0572 0008 AmdK8 - ok
22:23:26.0572 0008 amdkmdag - ok
22:23:26.0587 0008 [ 17BA5C907E14947574CBB788F4CEB85F ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
22:23:26.0587 0008 amdkmdap - ok
22:23:26.0603 0008 [ 82D7250133CF669A294AF189910C8744 ] amdkmpfd C:\WINDOWS\system32\drivers\amdkmpfd.sys
22:23:26.0603 0008 amdkmpfd - ok
22:23:26.0619 0008 [ F59B38434ABADE857DA389F38FEBD061 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
22:23:26.0619 0008 AmdPPM - ok
22:23:26.0619 0008 [ 6BA3FF67D317AF6A6946CCF4E80B5B33 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
22:23:26.0619 0008 amdsata - ok
22:23:26.0634 0008 [ 3FD087BF35CFC998037DF2534ED9CBC2 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
22:23:26.0634 0008 amdsbs - ok
22:23:26.0650 0008 [ B6AF8AAE55DC50EA0610FCFF92133952 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
22:23:26.0650 0008 amdxata - ok
22:23:26.0650 0008 amsdk - ok
22:23:26.0666 0008 AppID - ok
22:23:26.0666 0008 [ 34F6D0A9692590838D867A26FD83B257 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
22:23:26.0666 0008 AppIDSvc - ok
22:23:26.0681 0008 Appinfo - ok
22:23:26.0681 0008 applockerfltr - ok
22:23:26.0697 0008 [ 57EEEC521B7CA488A2C0C627B1F8DB75 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
22:23:26.0697 0008 AppMgmt - ok
22:23:26.0712 0008 [ 2D7826A4C6C3DE9668DEC67FA352ADBB ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
22:23:26.0712 0008 AppReadiness - ok
22:23:26.0728 0008 AppVClient - ok
22:23:26.0728 0008 AppvStrm - ok
22:23:26.0728 0008 AppvVemgr - ok
22:23:26.0744 0008 AppvVfs - ok
22:23:26.0744 0008 AppXSvc - ok
22:23:26.0759 0008 [ A05FF69C88EAB79E51430E6982BCC6F0 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
22:23:26.0759 0008 arcsas - ok
22:23:26.0759 0008 AssignedAccessManagerSvc - ok
22:23:26.0775 0008 [ 2615D71853F78D464C601CD0A8D07D6F ] aswArDisk C:\WINDOWS\system32\drivers\aswArDisk.sys
22:23:26.0775 0008 aswArDisk - ok
22:23:26.0775 0008 [ 0A0BDD679D44B77D2E6464E9FAC6244C ] aswArPot C:\WINDOWS\system32\drivers\aswArPot.sys
22:23:26.0775 0008 aswArPot - ok
22:23:26.0853 0008 [ A1F73C87120EA013BB4FC14DF41F0C31 ] aswbIDSAgent C:\Program Files\AVAST Software\Avast\aswidsagent.exe
22:23:26.0900 0008 aswbIDSAgent - ok
22:23:26.0916 0008 [ 0802616A5313D906F45777409358BAA4 ] aswbidsdriver C:\WINDOWS\system32\drivers\aswbidsdriver.sys
22:23:26.0916 0008 aswbidsdriver - ok
22:23:26.0931 0008 [ B8388AE2E78B578C8608132A89064A98 ] aswbidsh C:\WINDOWS\system32\drivers\aswbidsh.sys
22:23:26.0931 0008 aswbidsh - ok
22:23:26.0931 0008 [ B2AEFD57FB1A06FBDB949DEF77FD85A1 ] aswbuniv C:\WINDOWS\system32\drivers\aswbuniv.sys
22:23:26.0931 0008 aswbuniv - ok
22:23:26.0947 0008 [ 0CF08AE957049C333C0BED15375F3B3B ] aswElam C:\WINDOWS\system32\drivers\aswElam.sys
22:23:26.0947 0008 aswElam - ok
22:23:26.0962 0008 [ C02494F11C9349DA82993F2D052364E0 ] aswHdsKe C:\WINDOWS\system32\drivers\aswHdsKe.sys
22:23:26.0962 0008 aswHdsKe - ok
22:23:26.0962 0008 [ C4724AD0EF5F3CC0D9959D99B74D545D ] aswKbd C:\WINDOWS\system32\drivers\aswKbd.sys
22:23:26.0962 0008 aswKbd - ok
22:23:26.0978 0008 [ 24EDABA3C08DC854108E97DFFEFB2C49 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
22:23:26.0978 0008 aswMonFlt - ok
22:23:26.0978 0008 [ A76C8BC7C0DEF3596BEC0CB7A1A65092 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr2.sys
22:23:26.0994 0008 aswRdr - ok
22:23:26.0994 0008 [ 1D7A6EE138ED02D13903294DDD51B825 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
22:23:26.0994 0008 aswRvrt - ok
22:23:27.0009 0008 [ D72BB9A1A40AB39787CA7E93F5EE54C6 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
22:23:27.0025 0008 aswSnx - ok
22:23:27.0025 0008 [ BE85AB864159055265D015AC3E212254 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
22:23:27.0041 0008 aswSP - ok
22:23:27.0041 0008 [ 1CFB05FF1268D2C5559BFD46F1AE4ADD ] aswStm C:\WINDOWS\system32\drivers\aswStm.sys
22:23:27.0041 0008 aswStm - ok
22:23:27.0056 0008 [ 6DE508D6C0D2BD4BD9D348BE592DD74C ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
22:23:27.0056 0008 aswVmm - ok
22:23:27.0072 0008 AsyncMac - ok
22:23:27.0072 0008 [ 6CB8D419AD7A2D7D5373A7DDE2664D5C ] atapi C:\WINDOWS\system32\drivers\atapi.sys
22:23:27.0072 0008 atapi - ok
22:23:27.0087 0008 [ 5244935143285E43CB0AA3928B19B49C ] AtherosSvc C:\WINDOWS\System32\drivers\AdminService.exe
22:23:27.0087 0008 AtherosSvc - ok
22:23:27.0134 0008 [ D03E551165C72F2A4BBDDC566EAA819E ] athr C:\WINDOWS\System32\drivers\athwnx.sys
22:23:27.0166 0008 athr - ok
22:23:27.0181 0008 AudioEndpointBuilder - ok
22:23:27.0181 0008 Audiosrv - ok
22:23:27.0197 0008 [ 23410CD6AD97FDF3FD465ACBB6C170E2 ] autotimesvc C:\WINDOWS\System32\autotimesvc.dll
22:23:27.0197 0008 autotimesvc - ok
22:23:27.0212 0008 [ B1C084B1BA61B4ED3B1F5C27F5F3AB9C ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:23:27.0228 0008 avast! Antivirus - ok
22:23:27.0228 0008 [ 6B65D672064FE7981B0BCE648536A2E0 ] AvastWscReporter C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
22:23:27.0228 0008 AvastWscReporter - ok
22:23:27.0228 0008 AxInstSV - ok
22:23:27.0244 0008 [ A1FF5E48350A1C3332190CA008916F0E ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
22:23:27.0259 0008 b06bdrv - ok
22:23:27.0259 0008 [ 96ECA99B219CBB4F7C95176E492F53BF ] bam C:\WINDOWS\system32\drivers\bam.sys
22:23:27.0259 0008 bam - ok
22:23:27.0291 0008 BasicDisplay - ok
22:23:27.0291 0008 BasicRender - ok
22:23:27.0322 0008 [ FEEAA31D7AAC2119B4AE5C340490524B ] BcastDVRUserService C:\WINDOWS\System32\BcastDVRUserService.dll
22:23:27.0337 0008 BcastDVRUserService - ok
22:23:27.0337 0008 Suspicious service (Hidden): BcastDVRUserService_2b981
22:23:27.0353 0008 [ 739D089777D2B66DBE7201E5EA4BA2D7 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
22:23:27.0353 0008 bcmfn2 - ok
22:23:27.0353 0008 BDESVC - ok
22:23:27.0353 0008 [ A5D43CA19863A29D219C3C588D936FFC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
22:23:27.0369 0008 Beep - ok
22:23:27.0369 0008 BFE - ok
22:23:27.0369 0008 bindflt - ok
22:23:27.0384 0008 BITS - ok
22:23:27.0384 0008 BluetoothUserService - ok
22:23:27.0384 0008 Suspicious service (Hidden): BluetoothUserService_2b981
22:23:27.0400 0008 bowser - ok
22:23:27.0400 0008 BrokerInfrastructure - ok
22:23:27.0416 0008 BTAGService - ok
22:23:27.0416 0008 [ 05D8C82B31BF88CE557E4DC684C7A6A5 ] BtFilter C:\WINDOWS\System32\drivers\btfilter.sys
22:23:27.0416 0008 BtFilter - ok
22:23:27.0431 0008 [ CCA2505C9EB10CDABDC9FEE10D812F02 ] BthA2dp C:\WINDOWS\System32\drivers\BthA2dp.sys
22:23:27.0431 0008 BthA2dp - ok
22:23:27.0447 0008 [ 42C9AFF4636ACE3DCFB79FEF85345545 ] BthAvctpSvc C:\WINDOWS\System32\BthAvctpSvc.dll
22:23:27.0447 0008 BthAvctpSvc - ok
22:23:27.0462 0008 [ 106123BBB49CB8CE937FD61CF26C3C9B ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
22:23:27.0462 0008 BthEnum - ok
22:23:27.0478 0008 [ 48AE897A64019A816D694241BF62E266 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
22:23:27.0478 0008 BthHFEnum - ok
22:23:27.0478 0008 [ 9E958ED983C0DD9C690248084219C2DE ] BthLEEnum C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
22:23:27.0478 0008 BthLEEnum - ok
22:23:27.0494 0008 [ AF935DF213BEA3BAEDD40E524BB6E4F6 ] BthMini C:\WINDOWS\System32\drivers\BTHMINI.sys
22:23:27.0494 0008 BthMini - ok
22:23:27.0494 0008 [ 98C477D98674C799758B3C6E9950E11A ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
22:23:27.0509 0008 BTHMODEM - ok
22:23:27.0525 0008 [ 9EE2677BD8520DB004F665EF709936DB ] BTHPORT C:\WINDOWS\System32\drivers\BTHport.sys
22:23:27.0541 0008 BTHPORT - ok
22:23:27.0541 0008 [ E947884C5B5A5FDE7F13D0D16EEA45EE ] bthserv C:\WINDOWS\system32\bthserv.dll
22:23:27.0541 0008 bthserv - ok
22:23:27.0556 0008 [ DB77227DFDC89599B5BC605A8E1CA6B1 ] BTHUSB C:\WINDOWS\System32\drivers\BTHUSB.sys
22:23:27.0556 0008 BTHUSB - ok
22:23:27.0572 0008 [ 600CA7D3C456198089558B142D86C065 ] bttflt C:\WINDOWS\system32\drivers\bttflt.sys
22:23:27.0572 0008 bttflt - ok
22:23:27.0572 0008 [ 58F44FD7BA873AAA8FE6C9473702492B ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
22:23:27.0572 0008 buttonconverter - ok
22:23:27.0587 0008 [ D3FC817DA4694E586135A3221811B409 ] CAD C:\WINDOWS\System32\drivers\CAD.sys
22:23:27.0587 0008 CAD - ok
22:23:27.0587 0008 camsvc - ok
22:23:27.0603 0008 [ C240AF291AC69BF55C33DC9820338D66 ] CaptureService C:\WINDOWS\System32\CaptureService.dll
22:23:27.0603 0008 CaptureService - ok
22:23:27.0603 0008 Suspicious service (Hidden): CaptureService_2b981
22:23:27.0619 0008 cbdhsvc - ok
22:23:27.0619 0008 Suspicious service (Hidden): cbdhsvc_2b981
22:23:27.0619 0008 cdfs - ok
22:23:27.0634 0008 CDPSvc - ok
22:23:27.0634 0008 CDPUserSvc - ok
22:23:27.0650 0008 Suspicious service (Hidden): CDPUserSvc_2b981
22:23:27.0650 0008 cdrom - ok
22:23:27.0650 0008 [ F738B75E685601069A0A3F8C30CF4F47 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
22:23:27.0666 0008 CertPropSvc - ok
22:23:27.0681 0008 [ E5259475D04AA9C04D2B44DB0BAC05D8 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
22:23:27.0681 0008 cht4iscsi - ok
22:23:27.0712 0008 [ C748EE7BCE13820DB957C79B64219992 ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
22:23:27.0728 0008 cht4vbd - ok
22:23:27.0744 0008 [ B7FCEF757304710463D78C1155764BA7 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
22:23:27.0744 0008 circlass - ok
22:23:27.0744 0008 CldFlt - ok
22:23:27.0759 0008 CLFS - ok
22:23:27.0759 0008 ClipSVC - ok
22:23:27.0791 0008 CmBatt - ok
22:23:27.0806 0008 CNG - ok
22:23:27.0822 0008 [ 6FD42010608BC1B77D60947175E0BFD9 ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
22:23:27.0822 0008 cnghwassist - ok
22:23:27.0837 0008 CompositeBus - ok
22:23:27.0837 0008 COMSysApp - ok
22:23:27.0853 0008 condrv - ok
22:23:27.0869 0008 [ 31D59C0A7B2549F578FC82B5ED9661FD ] ConsentUxUserSvc C:\WINDOWS\System32\ConsentUxClient.dll
22:23:27.0869 0008 ConsentUxUserSvc - ok
22:23:27.0884 0008 Suspicious service (Hidden): ConsentUxUserSvc_2b981
22:23:27.0900 0008 [ 64C146E79B02051548A3D2790071C96A ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
22:23:27.0916 0008 CoreMessagingRegistrar - ok
22:23:27.0962 0008 [ 5D19617245C798A0EED86D4D36B8C6E8 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
22:23:27.0978 0008 cphs - ok
22:23:27.0994 0008 [ 868B7A47689F43A27D3BD5CBAD723055 ] CredentialEnrollmentManagerUserSvc C:\WINDOWS\system32\CredentialEnrollmentManager.exe
22:23:28.0009 0008 CredentialEnrollmentManagerUserSvc - ok
22:23:28.0009 0008 Suspicious service (Hidden): CredentialEnrollmentManagerUserSvc_2b981
22:23:28.0009 0008 [ 868B7A47689F43A27D3BD5CBAD723055 ] CredentialEnrollmentManagerUserSvc_2b981 C:\WINDOWS\system32\CredentialEnrollmentManager.exe
22:23:28.0025 0008 CredentialEnrollmentManagerUserSvc_2b981 ( HiddenService.Multi.Generic ) - warning
22:23:28.0025 0008 CredentialEnrollmentManagerUserSvc_2b981 - detected HiddenService.Multi.Generic (1)
22:23:28.0025 0008 CryptSvc - ok
22:23:28.0041 0008 CSC - ok
22:23:28.0056 0008 [ D1E156D0823810D24E6EEAF8E503C040 ] CscService C:\WINDOWS\System32\cscsvc.dll
22:23:28.0056 0008 CscService - ok
22:23:28.0072 0008 [ D32047ED7F2718871AFC215FFF4760C2 ] dam C:\WINDOWS\system32\drivers\dam.sys
22:23:28.0072 0008 dam - ok
22:23:28.0087 0008 DcomLaunch - ok
22:23:28.0087 0008 defragsvc - ok
22:23:28.0103 0008 [ 1FFBA1554A8CA99C2D38AC678CF1E535 ] DeviceAssociationBrokerSvc C:\WINDOWS\System32\deviceaccess.dll
22:23:28.0103 0008 DeviceAssociationBrokerSvc - ok
22:23:28.0119 0008 Suspicious service (Hidden): DeviceAssociationBrokerSvc_2b981
22:23:28.0119 0008 [ 8AB0C55A78B0C18991ACC62C13167DDD ] DeviceAssociationService C:\WINDOWS\system32\das.dll
22:23:28.0134 0008 DeviceAssociationService - ok
22:23:28.0134 0008 DeviceInstall - ok
22:23:28.0150 0008 [ 6683A03C986D00273C67ADB1B249D7ED ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
22:23:28.0228 0008 DevicePickerUserSvc - ok
22:23:28.0228 0008 Suspicious service (Hidden): DevicePickerUserSvc_2b981
22:23:28.0228 0008 DevicesFlowUserSvc - ok
22:23:28.0244 0008 Suspicious service (Hidden): DevicesFlowUserSvc_2b981
22:23:28.0259 0008 DevQueryBroker - ok
22:23:28.0259 0008 Dfsc - ok
22:23:28.0275 0008 Dhcp - ok
22:23:28.0291 0008 diagnosticshub.standardcollector.service - ok
22:23:28.0291 0008 diagsvc - ok
22:23:28.0306 0008 DiagTrack - ok
22:23:28.0322 0008 [ F13316A14B8E7319C5DCD77A439BCCCF ] disk C:\WINDOWS\system32\drivers\disk.sys
22:23:28.0322 0008 disk - ok
22:23:28.0322 0008 DispBrokerDesktopSvc - ok
22:23:28.0337 0008 DisplayEnhancementService - ok
22:23:28.0353 0008 DmEnrollmentSvc - ok
22:23:28.0384 0008 [ 0F4ABC6AEF95AC1E50D3F36808DE4C3D ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
22:23:28.0384 0008 dmvsc - ok
22:23:28.0400 0008 [ A4F5D5C81B9690B8ACB8798A5C711D31 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
22:23:28.0400 0008 dmwappushservice - ok
22:23:28.0416 0008 Dnscache - ok
22:23:28.0431 0008 dot3svc - ok
22:23:28.0431 0008 [ FC37ABA7F9026FFB255CEC78AC2410E4 ] DPS C:\WINDOWS\system32\dps.dll
22:23:28.0447 0008 DPS - ok
22:23:28.0447 0008 [ 8D6B2A26E72E260860FC46593E67E94F ] drmkaud C:\WINDOWS\System32\drivers\drmkaud.sys
22:23:28.0462 0008 drmkaud - ok
22:23:28.0462 0008 [ 5C438FD023BB99268C291E2A0F670AF9 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
22:23:28.0478 0008 DsmSvc - ok
22:23:28.0494 0008 DsSvc - ok
22:23:28.0494 0008 [ 6A34FC162F61E26010BD0BF0F211C4A2 ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
22:23:28.0509 0008 DusmSvc - ok
22:23:28.0509 0008 DXGKrnl - ok
22:23:28.0525 0008 Eaphost - ok
22:23:28.0572 0008 [ E326127FB5622481C00EA40401039B2D ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
22:23:28.0603 0008 ebdrv - ok
22:23:28.0603 0008 EFS - ok
22:23:28.0619 0008 EhStorClass - ok
22:23:28.0619 0008 [ C31E54032B1B24F561535228F7714F85 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
22:23:28.0619 0008 EhStorTcgDrv - ok
22:23:28.0634 0008 [ 910F199C081D8D7471173333265982E3 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
22:23:28.0634 0008 embeddedmode - ok
22:23:28.0650 0008 [ ADBA0456A915EFCD6B35F298D185A976 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
22:23:28.0666 0008 EntAppSvc - ok
22:23:28.0666 0008 [ 122DD638F997E3EB08E442DACFEE0D78 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
22:23:28.0666 0008 ErrDev - ok
22:23:28.0681 0008 EventLog - ok
22:23:28.0697 0008 [ B35DF93E24892EE15363AFAA678AF78E ] EventSystem C:\WINDOWS\system32\es.dll
22:23:28.0697 0008 EventSystem - ok
22:23:28.0712 0008 exfat - ok
22:23:28.0712 0008 fastfat - ok
22:23:28.0728 0008 [ C6F56E6CF1822CFB9D8F85870453675E ] Fax C:\WINDOWS\system32\fxssvc.exe
22:23:28.0744 0008 Fax - ok
22:23:28.0744 0008 [ F2F45F7B58EDBA2255AA0D0EDCE16C0F ] fdc C:\WINDOWS\System32\drivers\fdc.sys
22:23:28.0744 0008 fdc - ok
22:23:28.0759 0008 [ 574937AAC16BC828BA35DA6639972660 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
22:23:28.0759 0008 fdPHost - ok
22:23:28.0759 0008 [ 5414A54236322C5ED8691CEC1A38EF80 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
22:23:28.0775 0008 FDResPub - ok
22:23:28.0775 0008 [ 9AC5E05D599A49DC91E2F438F93D719F ] fhsvc C:\WINDOWS\system32\fhsvc.dll
22:23:28.0791 0008 fhsvc - ok
22:23:28.0791 0008 [ 35E6FE3288B6147F844B1845564FF161 ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
22:23:28.0791 0008 FileCrypt - ok
22:23:28.0806 0008 FileInfo - ok
22:23:28.0806 0008 Filetrace - ok
22:23:28.0822 0008 [ D346C0E0F62FCE6669783C3D8B527F74 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
22:23:28.0822 0008 flpydisk - ok
22:23:28.0822 0008 FltMgr - ok
22:23:28.0837 0008 FontCache - ok
22:23:28.0853 0008 FontCache3.0.0.0 - ok
22:23:28.0853 0008 FrameServer - ok
22:23:28.0869 0008 FsDepends - ok
22:23:28.0869 0008 Fs_Rec - ok
22:23:28.0884 0008 fvevol - ok
22:23:28.0884 0008 [ EF8A6E4DDD8A6F5840B96C1C238B59EC ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
22:23:28.0884 0008 gencounter - ok
22:23:28.0916 0008 [ 56694161233F5A703E2C875BF4265407 ] genericusbfn C:\WINDOWS\System32\DriverStore\FileRepository\genericusbfn.inf_amd64_b9c53b80e63af230\genericusbfn.sys
22:23:28.0916 0008 genericusbfn - ok
22:23:28.0931 0008 [ 88343381510C242E854C22C002349107 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\elevation_service.exe
22:23:28.0947 0008 GoogleChromeElevationService - ok
22:23:28.0947 0008 GPIOClx0101 - ok
22:23:28.0962 0008 gpsvc - ok
22:23:28.0962 0008 [ ECF72E76711455EEB362E2E175395F87 ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
22:23:28.0962 0008 GpuEnergyDrv - ok
22:23:28.0978 0008 [ 7A9DDF886942F5C791360BD76B06D874 ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
22:23:28.0978 0008 GraphicsPerfSvc - ok
22:23:28.0994 0008 [ 92EE791A630830452485E8E375F8DB35 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:23:28.0994 0008 gupdate - ok
22:23:28.0994 0008 [ 92EE791A630830452485E8E375F8DB35 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:23:28.0994 0008 gupdatem - ok
22:23:29.0009 0008 HdAudAddService - ok
22:23:29.0009 0008 HDAudBus - ok
22:23:29.0025 0008 [ 23CB986FD6DC1D8022831254C609E481 ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
22:23:29.0025 0008 HidBatt - ok
22:23:29.0025 0008 [ 98DB60B4CC713C73E3BFCD8521210B26 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
22:23:29.0025 0008 HidBth - ok
22:23:29.0041 0008 [ F5468C4442990B23D99FEA900B63338F ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
22:23:29.0041 0008 hidi2c - ok
22:23:29.0041 0008 [ 34642FB049036D8BAAA42C922A82CCBC ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
22:23:29.0056 0008 hidinterrupt - ok
22:23:29.0056 0008 [ C789878B45C886DBD967826B491C9C19 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
22:23:29.0056 0008 HidIr - ok
22:23:29.0072 0008 hidserv - ok
22:23:29.0072 0008 [ B3ACD7D2D86A046DB549B922D663DEA2 ] hidspi C:\WINDOWS\System32\drivers\hidspi.sys
22:23:29.0072 0008 hidspi - ok
22:23:29.0087 0008 HidUsb - ok
22:23:29.0103 0008 [ 02CE63D8DD5E6DD5CEFF336191C0859E ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:23:29.0103 0008 HPDrvMntSvc.exe - ok
22:23:29.0103 0008 [ D104FF402FC3DDB686E6DEF00334DB26 ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
22:23:29.0119 0008 hpdskflt - ok
22:23:29.0119 0008 [ 0A9F0B8E8388C4D50B1264FC65E8AADA ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe
22:23:29.0134 0008 hpHotkeyMonitor - ok
22:23:29.0134 0008 [ B98EE5D4535A685634B90F7E04DE0DF7 ] HpqKbFiltr C:\WINDOWS\System32\drivers\HpqKbFiltr.sys
22:23:29.0134 0008 HpqKbFiltr - ok
22:23:29.0150 0008 [ E7C7829BA0395E48F8C8FE16B8832344 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:23:29.0166 0008 hpqwmiex - ok
22:23:29.0166 0008 [ A195E0255B056E2968B3A4BE21588E35 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
22:23:29.0166 0008 HpSAMD - ok
22:23:29.0181 0008 [ 55FFCBB036D7BE4BCA6FA1421203A27F ] hpsrv C:\WINDOWS\system32\Hpservice.exe
22:23:29.0181 0008 hpsrv - ok
22:23:29.0181 0008 HTTP - ok
22:23:29.0197 0008 [ 6E7C4CAE43DA57A46DE9AC07D3400719 ] hvcrash C:\WINDOWS\System32\drivers\hvcrash.sys
22:23:29.0197 0008 hvcrash - ok
22:23:29.0212 0008 HvHost - ok
22:23:29.0212 0008 hvservice - ok
22:23:29.0212 0008 [ C1AE2929CAD05CD2AA1FA835B06023A0 ] HwNClx0101 C:\WINDOWS\system32\Drivers\mshwnclx.sys
22:23:29.0228 0008 HwNClx0101 - ok
22:23:29.0228 0008 hwpolicy - ok
22:23:29.0244 0008 [ 4B0CB29B31E937AAC09EC0E66B03A70B ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
22:23:29.0244 0008 hyperkbd - ok
22:23:29.0244 0008 [ 454416484E10579883D0DE1CE13E695D ] HyperVideo C:\WINDOWS\System32\drivers\HyperVideo.sys
22:23:29.0244 0008 HyperVideo - ok
22:23:29.0259 0008 i8042prt - ok
22:23:29.0259 0008 [ 9E5AECAB5F05218D9AC923E7CEA1CE15 ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
22:23:29.0259 0008 iagpio - ok
22:23:29.0275 0008 [ 48EDB9B5DAB7D294951A520330F13715 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
22:23:29.0275 0008 iai2c - ok
22:23:29.0275 0008 [ 6C3EDE394C71D5A67A504F55E35B6F47 ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
22:23:29.0275 0008 iaLPSS2i_GPIO2 - ok
22:23:29.0291 0008 [ 806D14CEAF25E5F2DFCBA8E7E33B86BB ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
22:23:29.0291 0008 iaLPSS2i_GPIO2_BXT_P - ok
22:23:29.0306 0008 [ 87DDDAE1693484BD0A210C877BDA00C2 ] iaLPSS2i_GPIO2_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_CNL.sys
22:23:29.0306 0008 iaLPSS2i_GPIO2_CNL - ok
22:23:29.0306 0008 [ 8D3E3C431367E3BA632B4396CA662E1A ] iaLPSS2i_GPIO2_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_GLK.sys
22:23:29.0306 0008 iaLPSS2i_GPIO2_GLK - ok
22:23:29.0322 0008 [ 149F1260537C4F68C3F67C363B62F3C5 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
22:23:29.0322 0008 iaLPSS2i_I2C - ok
22:23:29.0322 0008 [ 3E641E905A6DBF29CBA1E72BBE349808 ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
22:23:29.0337 0008 iaLPSS2i_I2C_BXT_P - ok
22:23:29.0337 0008 [ B78D6AF79045B0DAB58596AF75037516 ] iaLPSS2i_I2C_CNL C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_CNL.sys
22:23:29.0337 0008 iaLPSS2i_I2C_CNL - ok
22:23:29.0353 0008 [ 2ED3B41C7CB4101ACB15D84D8AB5AA9D ] iaLPSS2i_I2C_GLK C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_GLK.sys
22:23:29.0353 0008 iaLPSS2i_I2C_GLK - ok
22:23:29.0369 0008 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
22:23:29.0369 0008 iaLPSSi_GPIO - ok
22:23:29.0369 0008 [ EB82A11613326691508D9ED9A4FE29E7 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
22:23:29.0369 0008 iaLPSSi_I2C - ok
22:23:29.0384 0008 [ 92175FB164CDD9A49821DCE51D9E2699 ] iaStorAVC C:\WINDOWS\system32\drivers\iaStorAVC.sys
22:23:29.0400 0008 iaStorAVC - ok
22:23:29.0400 0008 [ E027678E8F76B2225C64CD186986E249 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
22:23:29.0416 0008 iaStorV - ok
22:23:29.0431 0008 [ B9D28B4AF5C5D472DB6659B787811CF3 ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
22:23:29.0431 0008 ibbus - ok
22:23:29.0431 0008 icssvc - ok
22:23:29.0494 0008 [ 226EAECA4F21F899E3F0C95297678A0B ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
22:23:29.0541 0008 igfx - ok
22:23:29.0556 0008 IKEEXT - ok
22:23:29.0556 0008 [ 7EDB7CCEDC86F03D3254274564DB0E99 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
22:23:29.0556 0008 IndirectKmd - ok
22:23:29.0572 0008 InstallService - ok
22:23:29.0572 0008 [ A0A315EAF4617BED7B154DE5059F4ED6 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
22:23:29.0587 0008 intelide - ok
22:23:29.0587 0008 [ B3E270140879C45BF2B32D5EBE7A614A ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
22:23:29.0603 0008 intelpep - ok
22:23:29.0603 0008 [ 8D6ADFE99C1DC577C74B0148E70ED5BB ] intelpmax C:\WINDOWS\System32\drivers\intelpmax.sys
22:23:29.0603 0008 intelpmax - ok
22:23:29.0619 0008 intelppm - ok
22:23:29.0619 0008 [ A89BF4378628224DA411A76FF6913E95 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
22:23:29.0619 0008 iorate - ok
22:23:29.0634 0008 [ 02A2D46896B4312F084D5095D00B6DE7 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:23:29.0634 0008 IpFilterDriver - ok
22:23:29.0634 0008 iphlpsvc - ok
22:23:29.0650 0008 [ 4BAA9037E2D4544906A7E9BDFE0CFCB5 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
22:23:29.0650 0008 IPMIDRV - ok
22:23:29.0650 0008 [ 5E05C0FEA671B910FEBC634E796C38B5 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
22:23:29.0666 0008 IPNAT - ok
22:23:29.0666 0008 [ 3BB90B22F0D8A58B261A1B1AE6B80EAD ] IPT C:\WINDOWS\System32\drivers\ipt.sys
22:23:29.0666 0008 IPT - ok
22:23:29.0681 0008 [ 5B4848FF9C6D605563BE8E21D4D2F70F ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
22:23:29.0681 0008 IpxlatCfgSvc - ok
22:23:29.0697 0008 [ 054FE6D33A16F8CE82DCBA85AEE69B76 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
22:23:29.0697 0008 isapnp - ok
22:23:29.0697 0008 [ BEEE3BA3612ACAB58CEDABD6AAD10BAA ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
22:23:29.0712 0008 iScsiPrt - ok
22:23:29.0712 0008 [ 7C65B40F45AD2545443D009A837D7893 ] ItSas35i C:\WINDOWS\system32\drivers\ItSas35i.sys
22:23:29.0712 0008 ItSas35i - ok
22:23:29.0728 0008 [ 3FE43C2F5B5C08657A1B547AFBE2118E ] JMCR C:\WINDOWS\System32\drivers\jmcr.sys
22:23:29.0728 0008 JMCR - ok
22:23:29.0744 0008 kbdclass - ok
22:23:29.0744 0008 kbdhid - ok
22:23:29.0744 0008 kdnic - ok
22:23:29.0759 0008 KeyIso - ok
22:23:29.0759 0008 KSecDD - ok
22:23:29.0775 0008 KSecPkg - ok
22:23:29.0775 0008 ksthunk - ok
22:23:29.0790 0008 [ 2A4F33C288355AF81387C4030C00FEBB ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
22:23:29.0790 0008 KtmRm - ok
22:23:29.0806 0008 LanmanServer - ok
22:23:29.0806 0008 LanmanWorkstation - ok
22:23:29.0822 0008 [ C74D6825D4F8F587AFBFE4CFAFA6CCE2 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
22:23:29.0822 0008 lfsvc - ok
22:23:29.0837 0008 [ 1DDE097A358F533F58060B49A06B0AA4 ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
22:23:29.0837 0008 LicenseManager - ok
22:23:29.0853 0008 [ A0D1856F57DFCF58D8A9E23D8B205886 ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
22:23:29.0853 0008 lltdio - ok
22:23:29.0869 0008 [ 27DA2D87DA23C2AB3328AFBA945DFEF4 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
22:23:29.0869 0008 lltdsvc - ok
22:23:29.0884 0008 lmhosts - ok
22:23:29.0884 0008 [ 103BE142566D66F8AE52C89FE9E92D2B ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:23:29.0900 0008 LMS - ok
22:23:29.0900 0008 [ 8EC5966393F3D2FB1F3663D47F059571 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
22:23:29.0900 0008 LSI_SAS - ok
22:23:29.0915 0008 [ B3A55D8E17DC2CEC64C55031B60692E5 ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
22:23:29.0915 0008 LSI_SAS2i - ok
22:23:29.0931 0008 [ 08F9429D6D41E0D217C415D052BC84D6 ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
22:23:29.0931 0008 LSI_SAS3i - ok
22:23:29.0931 0008 [ 21A85C6B86AF33EDED64F556D2DB7E32 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
22:23:29.0931 0008 LSI_SSS - ok
22:23:29.0947 0008 LSM - ok
22:23:29.0947 0008 luafv - ok
22:23:29.0962 0008 [ 41744BD2D3FBA7BD8C910913152A88C4 ] LxpSvc C:\WINDOWS\System32\LanguageOverlayServer.dll
22:23:29.0978 0008 LxpSvc - ok
22:23:29.0978 0008 [ 1294A83A7E61544E5C3678A40237F842 ] MapsBroker C:\WINDOWS\System32\moshost.dll
22:23:29.0994 0008 MapsBroker - ok
22:23:29.0994 0008 [ 7B1EFA88175EFB47970D274E671C8BE8 ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
22:23:30.0009 0008 mausbhost - ok
22:23:30.0009 0008 [ 822938D041A15C2FF4841C656D94F604 ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
22:23:30.0025 0008 mausbip - ok
22:23:30.0025 0008 [ 31E4AC0C3D3BAC32082304BD43560760 ] MbamElam C:\WINDOWS\system32\DRIVERS\MbamElam.sys
22:23:30.0025 0008 MbamElam - ok
22:23:30.0103 0008 [ 3C6F0D0A69269D79EAAE6525C9802141 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
22:23:30.0150 0008 MBAMService - ok
22:23:30.0165 0008 [ 62EC57D9D027BD14A782846B521C78F2 ] MBAMSwissArmy C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
22:23:30.0165 0008 MBAMSwissArmy - ok
22:23:30.0165 0008 MbbCx - ok
22:23:30.0181 0008 [ 1BB90BE197FB0D96185B1E3A78177A57 ] megasas C:\WINDOWS\system32\drivers\megasas.sys
22:23:30.0181 0008 megasas - ok
22:23:30.0197 0008 [ AEF3EA8036FF17BF8BD9403B1D76A876 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
22:23:30.0197 0008 megasas2i - ok
22:23:30.0197 0008 [ 91680A3466B271AAE802452BDE032380 ] megasas35i C:\WINDOWS\system32\drivers\megasas35i.sys
22:23:30.0197 0008 megasas35i - ok
22:23:30.0212 0008 [ 721FC491970364F1065C791629323502 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
22:23:30.0228 0008 megasr - ok
22:23:30.0228 0008 [ 86614752D2FAE34CCD9E7B2AABA5FBEC ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
22:23:30.0228 0008 MEIx64 - ok
22:23:30.0244 0008 [ F1DE8D5576D0200A808C3475FC6E90A5 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
22:23:30.0244 0008 MessagingService - ok
22:23:30.0244 0008 Suspicious service (Hidden): MessagingService_2b981
22:23:30.0259 0008 [ 41A35E2FFC5F68F2345CAFDBA29D59E3 ] Microsoft_Bluetooth_AvrcpTransport C:\WINDOWS\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
22:23:30.0259 0008 Microsoft_Bluetooth_AvrcpTransport - ok
22:23:30.0275 0008 [ 3FFE0858D0E44AD01151A1D20EFE8C6E ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
22:23:30.0290 0008 mlx4_bus - ok
22:23:30.0290 0008 MMCSS - ok
22:23:30.0306 0008 [ BD0744EA7533D420236F4958CDC88332 ] Modem C:\WINDOWS\system32\drivers\modem.sys
22:23:30.0306 0008 Modem - ok
22:23:30.0306 0008 monitor - ok
22:23:30.0322 0008 mouclass - ok
22:23:30.0322 0008 mouhid - ok
22:23:30.0322 0008 mountmgr - ok
22:23:30.0337 0008 mpsdrv - ok
22:23:30.0337 0008 mpssvc - ok
22:23:30.0353 0008 MRxDAV - ok
22:23:30.0353 0008 mrxsmb - ok
22:23:30.0369 0008 mrxsmb20 - ok
22:23:30.0369 0008 [ 90F0B61C3A11A7D2E718FC70EDF55942 ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
22:23:30.0369 0008 MsBridge - ok
22:23:30.0384 0008 [ DC59FE37CFF118B6DAC426FE9923B32C ] MSDTC C:\WINDOWS\System32\msdtc.exe
22:23:30.0400 0008 MSDTC - ok
22:23:30.0400 0008 Msfs - ok
22:23:30.0415 0008 [ 5CC4AE59BAC4DDE8C0ECB05A4A965D19 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
22:23:30.0415 0008 msgpiowin32 - ok
22:23:30.0431 0008 mshidkmdf - ok
22:23:30.0431 0008 [ ED11DC4C201FF6C06F171E18B379B589 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
22:23:30.0431 0008 mshidumdf - ok
22:23:30.0447 0008 [ B96409D62458CF2D45895A8B112B1E24 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
22:23:30.0447 0008 msisadrv - ok
22:23:30.0447 0008 MSiSCSI - ok
22:23:30.0462 0008 msiserver - ok
22:23:30.0462 0008 MSKSSRV - ok
22:23:30.0478 0008 [ D65874265E85BEF4E54740FB69803430 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
22:23:30.0478 0008 MsLldp - ok
22:23:30.0478 0008 MSPCLOCK - ok
22:23:30.0494 0008 MSPQM - ok
22:23:30.0494 0008 MsRPC - ok
22:23:30.0509 0008 MsSecFlt - ok
22:23:30.0509 0008 mssmbios - ok
22:23:30.0525 0008 MSTEE - ok
22:23:30.0525 0008 [ EA16B406DCEF72848A1E2BA9B32469CF ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
22:23:30.0525 0008 MTConfig - ok
22:23:30.0540 0008 Mup - ok
22:23:30.0540 0008 [ 62F9AE1AB6F9B3825A4DB481E2613940 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
22:23:30.0540 0008 mvumis - ok
22:23:30.0556 0008 NativeWifiP - ok
22:23:30.0572 0008 [ 3509BB296C4E2F8D71089C17DFB6CEAF ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
22:23:30.0587 0008 NaturalAuthentication - ok
22:23:30.0587 0008 NcaSvc - ok
22:23:30.0603 0008 [ DF5A8E0E5E3FE297FCBC0F9F7E7DF4AC ] NcbService C:\WINDOWS\System32\ncbservice.dll
22:23:30.0619 0008 NcbService - ok
22:23:30.0619 0008 [ 9EB402A3A00433B271C2DE5B904AA770 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
22:23:30.0634 0008 NcdAutoSetup - ok
22:23:30.0634 0008 [ 323CE279076206EB4B1EC4FE85A81FEB ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
22:23:30.0650 0008 ndfltr - ok
22:23:30.0650 0008 NDIS - ok
22:23:30.0665 0008 [ FFB60317CFDA978621A5F8C54450AF01 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
22:23:30.0665 0008 NdisCap - ok
22:23:30.0665 0008 [ 50CA50122E9DE4F82B71C9F09A929700 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
22:23:30.0681 0008 NdisImPlatform - ok
22:23:30.0681 0008 NdisTapi - ok
22:23:30.0697 0008 Ndisuio - ok
22:23:30.0697 0008 NdisVirtualBus - ok
22:23:30.0697 0008 NdisWan - ok
22:23:30.0712 0008 ndiswanlegacy - ok
22:23:30.0712 0008 [ C91AE4E1A91B338F85D2F64667F0C6AA ] NDKPing C:\WINDOWS\system32\drivers\NDKPing.sys
22:23:30.0712 0008 NDKPing - ok
22:23:30.0728 0008 ndproxy - ok
22:23:30.0728 0008 [ 340AC1BF4E5727DC58E16E9F0806B36F ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
22:23:30.0744 0008 Ndu - ok
22:23:30.0744 0008 NetAdapterCx - ok
22:23:30.0744 0008 NetBIOS - ok
22:23:30.0759 0008 NetBT - ok
22:23:30.0775 0008 Netlogon - ok
22:23:30.0775 0008 Netman - ok
22:23:30.0775 0008 netprofm - ok
22:23:30.0790 0008 NetSetupSvc - ok
22:23:30.0806 0008 [ 4A06ABEBE138F4ACBE5AA5AF97711DAB ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:23:30.0806 0008 NetTcpPortSharing - ok
22:23:30.0822 0008 [ 9A623CA1E98A73B95F7C3F8C965C683B ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
22:23:30.0822 0008 netvsc - ok
22:23:30.0837 0008 NgcCtnrSvc - ok
22:23:30.0837 0008 NgcSvc - ok
22:23:30.0853 0008 NlaSvc - ok
22:23:30.0853 0008 Npfs - ok
22:23:30.0869 0008 npsvctrig - ok
22:23:30.0869 0008 nsi - ok
22:23:30.0869 0008 nsiproxy - ok
22:23:30.0884 0008 Ntfs - ok
22:23:30.0900 0008 Null - ok
22:23:30.0900 0008 [ F7E5F5D6F7A645A263F71D53F4B0EFD1 ] nvdimm C:\WINDOWS\System32\drivers\nvdimm.sys
22:23:30.0900 0008 nvdimm - ok
22:23:30.0915 0008 [ 34185B2FFC507E1C93F1A90CC7F74ACD ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
22:23:30.0915 0008 nvraid - ok
22:23:30.0931 0008 [ 516681B5A77104029F18468E5428678F ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
22:23:30.0931 0008 nvstor - ok
22:23:30.0947 0008 [ 464C685801474077A3BA79529E6459E1 ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
22:23:30.0947 0008 OneSyncSvc - ok
22:23:30.0947 0008 Suspicious service (Hidden): OneSyncSvc_2b981
22:23:30.0962 0008 p2pimsvc - ok
22:23:30.0962 0008 p2psvc - ok
22:23:30.0978 0008 [ AC682BC99BECA3A6C8C71234A9BC4225 ] Parport C:\WINDOWS\System32\drivers\parport.sys
22:23:30.0978 0008 Parport - ok
22:23:30.0978 0008 partmgr - ok
22:23:30.0994 0008 PcaSvc - ok
22:23:31.0009 0008 [ 10A749ACB28646D00CA6E53C8420AE5B ] pci C:\WINDOWS\system32\drivers\pci.sys
22:23:31.0009 0008 pci - ok
CPU:Intel Pentium G4560 @ 3.50 GHz, GPU:NVIDIA GeForce GTX 1050 Ti, RAM: Kingston 8 Gb DDR 4, MB: MSI B250M PRO-VD,
SSD: Kingston SSDNow V300 120Gb, Hdd:1 Seagate Barracuda 250 Gb, 2 Western Digital Caviar Blue 1 TB, PSU: Fortron ATX-400PNF 400W

smarda84
Level 1
Level 1
Příspěvky: 82
Registrován: květen 15
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod smarda84 » 20 pro 2019 22:28

22:23:31.0009 0008 [ 7EDA3D7F6ED0E9B27B451155FBB857C3 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
22:23:31.0025 0008 pciide - ok
22:23:31.0025 0008 [ C98DC1ACC9D5C4754BE83E28233369B9 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
22:23:31.0025 0008 pcmcia - ok
22:23:31.0040 0008 pcw - ok
22:23:31.0040 0008 pdc - ok
22:23:31.0056 0008 PEAUTH - ok
22:23:31.0072 0008 [ DD862D97C38953177C798BEC6707512B ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
22:23:31.0103 0008 PeerDistSvc - ok
22:23:31.0103 0008 [ 3EDF20F5B059DD88ED7DBAF40CF31CA7 ] perceptionsimulation C:\WINDOWS\system32\PerceptionSimulation\PerceptionSimulationService.exe
22:23:31.0119 0008 perceptionsimulation - ok
22:23:31.0119 0008 [ 5AAC1089AC330F737B445158094FD4B0 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
22:23:31.0119 0008 percsas2i - ok
22:23:31.0134 0008 [ 12E63DAE1AEFAF7C7C3A533184B14C11 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
22:23:31.0134 0008 percsas3i - ok
22:23:31.0181 0008 [ 0EC027E95D4B022102940FA3CD930E46 ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
22:23:31.0197 0008 PerfHost - ok
22:23:31.0228 0008 [ 0CB5CA2CF0539502E5019BED31A4DD3D ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
22:23:31.0244 0008 PhoneSvc - ok
22:23:31.0244 0008 [ D4AE23C2024C079A8B3F3A11229B19D2 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
22:23:31.0259 0008 PimIndexMaintenanceSvc - ok
22:23:31.0259 0008 Suspicious service (Hidden): PimIndexMaintenanceSvc_2b981
22:23:31.0275 0008 [ 0E3A1170D5698CACE6B6A4E72B04A5D0 ] PktMon C:\WINDOWS\system32\drivers\PktMon.sys
22:23:31.0275 0008 PktMon - ok
22:23:31.0290 0008 [ 8059D6CF7FD1D34B61D1880A20F58B1C ] pla C:\WINDOWS\system32\pla.dll
22:23:31.0322 0008 pla - ok
22:23:31.0322 0008 PlugPlay - ok
22:23:31.0337 0008 [ 26C53135EE0B51441B17AE473962303F ] pmem C:\WINDOWS\System32\drivers\pmem.sys
22:23:31.0337 0008 pmem - ok
22:23:31.0337 0008 [ 4689DC2AEF21B8764CC4F4AD6712210A ] PNPMEM C:\WINDOWS\System32\drivers\pnpmem.sys
22:23:31.0353 0008 PNPMEM - ok
22:23:31.0353 0008 [ 65272396F9B8D1F01E020639E1AC5DC3 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
22:23:31.0369 0008 PNRPAutoReg - ok
22:23:31.0369 0008 PNRPsvc - ok
22:23:31.0384 0008 PolicyAgent - ok
22:23:31.0384 0008 portcfg - ok
22:23:31.0400 0008 Power - ok
22:23:31.0400 0008 PptpMiniport - ok
22:23:31.0447 0008 [ 6173803E45D401CB58BBD1BD34DFDA59 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
22:23:31.0478 0008 PrintNotify - ok
22:23:31.0478 0008 [ 9CCFB9CA2C3CE919D1E47321D6188F6E ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
22:23:31.0494 0008 PrintWorkflowUserSvc - ok
22:23:31.0494 0008 Suspicious service (Hidden): PrintWorkflowUserSvc_2b981
22:23:31.0509 0008 [ D37B66581DC3911C26DABDE507B3BD49 ] Processor C:\WINDOWS\System32\drivers\processr.sys
22:23:31.0509 0008 Processor - ok
22:23:31.0525 0008 ProfSvc - ok
22:23:31.0525 0008 [ C0EF1DA7CB74EB2E0B87686AB7AA7454 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
22:23:31.0540 0008 Psched - ok
22:23:31.0540 0008 [ 34F064C964229611B694B5D01AAF4152 ] PushToInstall C:\WINDOWS\system32\PushToInstall.dll
22:23:31.0556 0008 PushToInstall - ok
22:23:31.0572 0008 [ E862021CE0B9DA301969D8843A6F6AD8 ] QWAVE C:\WINDOWS\system32\qwave.dll
22:23:31.0587 0008 QWAVE - ok
22:23:31.0587 0008 [ 00664026ACC782597B77AAAB5B65E715 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
22:23:31.0587 0008 QWAVEdrv - ok
22:23:31.0603 0008 Ramdisk - ok
22:23:31.0603 0008 RasAcd - ok
22:23:31.0619 0008 RasAgileVpn - ok
22:23:31.0619 0008 RasAuto - ok
22:23:31.0634 0008 Rasl2tp - ok
22:23:31.0634 0008 RasMan - ok
22:23:31.0650 0008 RasPppoe - ok
22:23:31.0650 0008 RasSstp - ok
22:23:31.0665 0008 rdbss - ok
22:23:31.0665 0008 [ D02EA52890750A5980EE970586942695 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
22:23:31.0665 0008 rdpbus - ok
22:23:31.0681 0008 RDPDR - ok
22:23:31.0697 0008 RdpVideoMiniport - ok
22:23:31.0712 0008 [ CD3A6A87C682363E227F065B8E59D94C ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
22:23:31.0712 0008 rdyboost - ok
22:23:31.0712 0008 ReFS - ok
22:23:31.0728 0008 ReFSv1 - ok
22:23:31.0744 0008 [ 656E36EF61C55C51B0D66BCFC1C310EA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
22:23:31.0759 0008 RemoteAccess - ok
22:23:31.0759 0008 [ 15D9B88C7258263375BA462B96E61860 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
22:23:31.0775 0008 RemoteRegistry - ok
22:23:31.0775 0008 RetailDemo - ok
22:23:31.0790 0008 [ FF46B8795B06BAB591F082FBEF17DC91 ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
22:23:31.0790 0008 RFCOMM - ok
22:23:31.0806 0008 [ E3DE6D17049E592A710284B4C811E7BF ] rhproxy C:\WINDOWS\System32\drivers\rhproxy.sys
22:23:31.0806 0008 rhproxy - ok
22:23:31.0806 0008 RmSvc - ok
22:23:31.0822 0008 RpcEptMapper - ok
22:23:31.0822 0008 [ A089120B99842F0A3CE8AE586A31BD56 ] RpcLocator C:\WINDOWS\system32\locator.exe
22:23:31.0837 0008 RpcLocator - ok
22:23:31.0837 0008 RpcSs - ok
22:23:31.0853 0008 [ CCF4A5CEC8FA38035007AB19EB0EBE2E ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
22:23:31.0853 0008 rspndr - ok
22:23:31.0869 0008 rt640x64 - ok
22:23:31.0869 0008 [ 40CD5DB1671197EFBD5C3AB16B9B037C ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
22:23:31.0869 0008 s3cap - ok
22:23:31.0884 0008 SamSs - ok
22:23:31.0884 0008 [ C111AC7C9698EAC8DAEA3425DAD68F42 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
22:23:31.0900 0008 sbp2port - ok
22:23:31.0900 0008 [ 6F1E358F693B1D389D7C12B271157D69 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
22:23:31.0915 0008 SCardSvr - ok
22:23:31.0931 0008 [ 057C49628A9E9945CA5676F52464D931 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
22:23:31.0931 0008 ScDeviceEnum - ok
22:23:31.0947 0008 [ E0891042C6FBF9FB1ED5133D745AD647 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
22:23:31.0947 0008 scfilter - ok
22:23:31.0962 0008 Schedule - ok
22:23:31.0962 0008 [ 374BCC5C90587174FC2FC50401630E5E ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
22:23:31.0962 0008 scmbus - ok
22:23:31.0978 0008 [ F738B75E685601069A0A3F8C30CF4F47 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
22:23:31.0978 0008 SCPolicySvc - ok
22:23:31.0994 0008 [ EDF00A16A45100A6F659065105E7F7B8 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
22:23:31.0994 0008 sdbus - ok
22:23:32.0009 0008 [ 801D9B80964AC7240F82C452709E28F8 ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
22:23:32.0009 0008 SDFRd - ok
22:23:32.0025 0008 [ 12991E3B5C124E394DBA0D48D1B8E96E ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
22:23:32.0025 0008 SDRSVC - ok
22:23:32.0040 0008 [ 14B11BF6B3B0D4D54C4F649DB701A597 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
22:23:32.0040 0008 sdstor - ok
22:23:32.0056 0008 [ 512FD6039A256324A745DF4FA01D5D02 ] seclogon C:\WINDOWS\system32\seclogon.dll
22:23:32.0056 0008 seclogon - ok
22:23:32.0072 0008 SecurityHealthService - ok
22:23:32.0087 0008 [ 4F88B110B25531EC1CC84D621B2C74EC ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
22:23:32.0103 0008 SEMgrSvc - ok
22:23:32.0119 0008 [ 84F8DAF82B643F63D5D6EF93F8F5BB95 ] SENS C:\WINDOWS\System32\sens.dll
22:23:32.0134 0008 SENS - ok
22:23:32.0134 0008 Sense - ok
22:23:32.0165 0008 [ EA7F202EE760B3F949191FDF86E553EA ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
22:23:32.0181 0008 SensorDataService - ok
22:23:32.0197 0008 [ D83530B2386434C004C0E4E41DD61843 ] SensorService C:\WINDOWS\system32\SensorService.dll
22:23:32.0212 0008 SensorService - ok
22:23:32.0212 0008 [ 706087D7D9D2A5347F6B327B353E9E08 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
22:23:32.0228 0008 SensrSvc - ok
22:23:32.0228 0008 SerCx - ok
22:23:32.0244 0008 SerCx2 - ok
22:23:32.0244 0008 [ 570C25D873C1BB07CEC1D244F540FBD7 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
22:23:32.0259 0008 Serenum - ok
22:23:32.0259 0008 [ 75643A5BE2FB697CACB327C98571C1E0 ] Serial C:\WINDOWS\System32\drivers\serial.sys
22:23:32.0259 0008 Serial - ok
22:23:32.0275 0008 [ 408A7AF941752F2CF6113A5028F10479 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
22:23:32.0275 0008 sermouse - ok
22:23:32.0290 0008 SessionEnv - ok
22:23:32.0306 0008 [ B2CE0504DA72D0D6EB8A997D62852793 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
22:23:32.0306 0008 sfloppy - ok
22:23:32.0306 0008 [ C0F588AB65EE3869C38C1BD10A0AEF85 ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
22:23:32.0322 0008 SgrmAgent - ok
22:23:32.0322 0008 [ C51AA0BB954EA45E85572E6CC29BA6F4 ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
22:23:32.0337 0008 SgrmBroker - ok
22:23:32.0353 0008 [ 4F1EE4017B159974EC76EE0F3033C524 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
22:23:32.0369 0008 SharedAccess - ok
22:23:32.0369 0008 SharedRealitySvc - ok
22:23:32.0384 0008 [ 66E6C9C7AEB812EF3F7ED69143E8E287 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:23:32.0400 0008 ShellHWDetection - ok
22:23:32.0415 0008 [ B2E022EFC0BB678D37D4595BEC535BF5 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
22:23:32.0431 0008 shpamsvc - ok
22:23:32.0447 0008 [ E1FCDB9B82A224C4EB01F7A0C54DF557 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
22:23:32.0447 0008 SiSRaid2 - ok
22:23:32.0447 0008 [ 0588849E68C841A706081A294E51E759 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
22:23:32.0462 0008 SiSRaid4 - ok
22:23:32.0462 0008 [ 7A160562207FA446643277E75C6D697B ] SmartSAMD C:\WINDOWS\system32\drivers\SmartSAMD.sys
22:23:32.0478 0008 SmartSAMD - ok
22:23:32.0478 0008 [ B15241350252D74581FE956F358478C5 ] smbdirect C:\WINDOWS\system32\DRIVERS\smbdirect.sys
22:23:32.0494 0008 smbdirect - ok
22:23:32.0494 0008 smphost - ok
22:23:32.0509 0008 SmsRouter - ok
22:23:32.0525 0008 [ 78172782B1E1E26933D67A9DA912158C ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
22:23:32.0525 0008 SNMPTRAP - ok
22:23:32.0556 0008 [ D72CD2B88183FC42C4E8C53F7D3B4A2B ] SNP2UVC C:\WINDOWS\system32\DRIVERS\snp2uvc.sys
22:23:32.0587 0008 SNP2UVC - ok
22:23:32.0603 0008 [ E2BA844230F364548420EDDF4C82E33F ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
22:23:32.0603 0008 spaceport - ok
22:23:32.0619 0008 [ B0FC1C59BC63170BE57D66837FB6BEED ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
22:23:32.0619 0008 SpatialGraphFilter - ok
22:23:32.0634 0008 SpbCx - ok
22:23:32.0634 0008 spectrum - ok
22:23:32.0650 0008 Spooler - ok
22:23:32.0650 0008 sppsvc - ok
22:23:32.0650 0008 srv2 - ok
22:23:32.0665 0008 srvnet - ok
22:23:32.0665 0008 SSDPSRV - ok
22:23:32.0681 0008 [ 9FFECD197D09FF33B00D5E5B78A48146 ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
22:23:32.0697 0008 ssh-agent - ok
22:23:32.0697 0008 SstpSvc - ok
22:23:32.0759 0008 [ 7B95F9C1FC5CFADC7F922E76DA711A9C ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
22:23:32.0806 0008 StateRepository - ok
22:23:32.0822 0008 [ 8BC164974B677F0D4ABFCA42ADADD14E ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
22:23:32.0822 0008 stexstor - ok
22:23:32.0837 0008 [ 093FD1EA9E8863E77ACA35F9C794ACBD ] stisvc C:\WINDOWS\System32\wiaservc.dll
22:23:32.0853 0008 stisvc - ok
22:23:32.0853 0008 storahci - ok
22:23:32.0869 0008 [ 8B2A9CF83531994775A1DA620AA234FB ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
22:23:32.0869 0008 storflt - ok
22:23:32.0884 0008 [ C53E35BB56BA2C3682EA812003CAF82E ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
22:23:32.0884 0008 stornvme - ok
22:23:32.0900 0008 storqosflt - ok
22:23:32.0900 0008 StorSvc - ok
22:23:32.0915 0008 [ 82A7E0411D46526CA878651608CA2F89 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
22:23:32.0915 0008 storufs - ok
22:23:32.0931 0008 [ 868A36136BC87EB433CA0DC7394A8A3B ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
22:23:32.0931 0008 storvsc - ok
22:23:32.0931 0008 svsvc - ok
22:23:32.0962 0008 swenum - ok
22:23:32.0962 0008 swprv - ok
22:23:32.0978 0008 [ D2C18148D3C16CCED6E176C646C13EFD ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
22:23:32.0978 0008 Synth3dVsc - ok
22:23:32.0994 0008 [ E54E683258C773A22C74571564ADBBB8 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
22:23:33.0009 0008 SynTP - ok
22:23:33.0025 0008 [ E8E298FF2DD4E54D8DE24186F0F7249F ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
22:23:33.0040 0008 SynTPEnhService - ok
22:23:33.0056 0008 SysMain - ok
22:23:33.0056 0008 SystemEventsBroker - ok
22:23:33.0072 0008 [ D79C8F7F04616ADF654FBDA9847CF3EB ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
22:23:33.0087 0008 TabletInputService - ok
22:23:33.0103 0008 [ 65AE63EC8F388BB53CBD3D9751464E04 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
22:23:33.0103 0008 TapiSrv - ok
22:23:33.0119 0008 Tcpip - ok
22:23:33.0119 0008 Tcpip6 - ok
22:23:33.0134 0008 [ 6A6D4EE00469704BC0091AF5AC73C6DD ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
22:23:33.0150 0008 tcpipreg - ok
22:23:33.0150 0008 tdx - ok
22:23:33.0165 0008 [ BACB822DEC72FECEFC809449FD3C7CD3 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
22:23:33.0165 0008 terminpt - ok
22:23:33.0181 0008 TermService - ok
22:23:33.0181 0008 [ 3B09BAB568BD4ED4B7A1998D47ECCF0C ] Themes C:\WINDOWS\system32\themeservice.dll
22:23:33.0197 0008 Themes - ok
22:23:33.0212 0008 [ 00E0C9BF4808162AE2FC9E6C8BA50701 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
22:23:33.0228 0008 TieringEngineService - ok
22:23:33.0228 0008 TimeBrokerSvc - ok
22:23:33.0243 0008 TokenBroker - ok
22:23:33.0243 0008 [ 146CF660D2014380F2FEA73501DD8E6A ] TPM C:\WINDOWS\System32\drivers\tpm.sys
22:23:33.0259 0008 TPM - ok
22:23:33.0259 0008 [ F47972C77B03F421BE57CFEEE384D98B ] TrkWks C:\WINDOWS\System32\trkwks.dll
22:23:33.0275 0008 TrkWks - ok
22:23:33.0290 0008 [ 0ABBA689E78D931613ADB942C43B2CF1 ] TroubleshootingSvc C:\WINDOWS\system32\MitigationClient.dll
22:23:33.0306 0008 TroubleshootingSvc - ok
22:23:33.0306 0008 TrustedInstaller - ok
22:23:33.0322 0008 [ 4D66CADB97981EE7390E95C5D59319F1 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
22:23:33.0322 0008 TsUsbFlt - ok
22:23:33.0337 0008 [ C26F638642EF8203EC7113464A0CCA55 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
22:23:33.0337 0008 TsUsbGD - ok
22:23:33.0353 0008 [ B79C25A0C53E2219D63352BF563F7D9E ] tsusbhub C:\WINDOWS\System32\drivers\tsusbhub.sys
22:23:33.0353 0008 tsusbhub - ok
22:23:33.0353 0008 tunnel - ok
22:23:33.0368 0008 tzautoupdate - ok
22:23:33.0384 0008 [ 948B18AEBDBF85B5A022AE3DD44EF7ED ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
22:23:33.0384 0008 UASPStor - ok
22:23:33.0384 0008 [ 4CFC014F7268E18414D115D2915E7636 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
22:23:33.0400 0008 UcmCx0101 - ok
22:23:33.0400 0008 [ C6ABD73AA3C86F3252E476FD34FC4D66 ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
22:23:33.0400 0008 UcmTcpciCx0101 - ok
22:23:33.0415 0008 [ A10EF89D243B4A011E4A7618319B5D57 ] UcmUcsiAcpiClient C:\WINDOWS\System32\drivers\UcmUcsiAcpiClient.sys
22:23:33.0415 0008 UcmUcsiAcpiClient - ok
22:23:33.0431 0008 [ 777028ECD134FD8A094F4613475F099B ] UcmUcsiCx0101 C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys
22:23:33.0431 0008 UcmUcsiCx0101 - ok
22:23:33.0431 0008 Ucx01000 - ok
22:23:33.0447 0008 UdeCx - ok
22:23:33.0447 0008 udfs - ok
22:23:33.0462 0008 [ B25FA421FC85C9A3F4AC81587B07A90E ] UEFI C:\WINDOWS\System32\DriverStore\FileRepository\uefi.inf_amd64_4fcaf0fc6eaf7533\UEFI.sys
22:23:33.0462 0008 UEFI - ok
22:23:33.0478 0008 [ A9250ADFC71B9CBEE5BAD97CEE0C1EF0 ] UevAgentDriver C:\WINDOWS\system32\drivers\UevAgentDriver.sys
22:23:33.0478 0008 UevAgentDriver - ok
22:23:33.0478 0008 UevAgentService - ok
22:23:33.0493 0008 [ 87D5D59B6AAC3ACCB6875D9666825C8E ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
22:23:33.0493 0008 Ufx01000 - ok
22:23:33.0509 0008 [ A872BEA2A958430B9BABE0F5A6259E5A ] UfxChipidea C:\WINDOWS\System32\DriverStore\FileRepository\ufxchipidea.inf_amd64_624eef84faf426d6\UfxChipidea.sys
22:23:33.0509 0008 UfxChipidea - ok
22:23:33.0525 0008 [ 86AD2D2C5AF22D8D13617F512EDA35B9 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
22:23:33.0525 0008 ufxsynopsys - ok
22:23:33.0540 0008 umbus - ok
22:23:33.0556 0008 [ 63C55C0E80F83D63EEB3BF6810DD8387 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
22:23:33.0556 0008 UmPass - ok
22:23:33.0572 0008 [ 79C0194B9F2FF312F1E2927D42E52105 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
22:23:33.0587 0008 UmRdpService - ok
22:23:33.0587 0008 UnistoreSvc - ok
22:23:33.0603 0008 Suspicious service (Hidden): UnistoreSvc_2b981
22:23:33.0634 0008 [ 6B778A47EB9CE430708AC42980BB712C ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:23:33.0650 0008 UNS - ok
22:23:33.0650 0008 upnphost - ok
22:23:33.0665 0008 [ 9DCE4606E15FA465DE1AC453F46A85E6 ] UrsChipidea C:\WINDOWS\System32\DriverStore\FileRepository\urschipidea.inf_amd64_86da23c455846f41\urschipidea.sys
22:23:33.0665 0008 UrsChipidea - ok
22:23:33.0681 0008 [ A7BE0A24B7F11060394A3BFAE21C783F ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
22:23:33.0681 0008 UrsCx01000 - ok
22:23:33.0681 0008 [ F1DE82278E0A027980B598BD70CECD6A ] UrsSynopsys C:\WINDOWS\System32\DriverStore\FileRepository\urssynopsys.inf_amd64_7302ce5d1420ed71\urssynopsys.sys
22:23:33.0697 0008 UrsSynopsys - ok
22:23:33.0697 0008 [ 7568EE93D647F65AC772852C9869E513 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
22:23:33.0697 0008 usbaudio - ok
22:23:33.0712 0008 [ 61DFCE1DAB6503BC75032102F150D692 ] usbaudio2 C:\WINDOWS\System32\drivers\usbaudio2.sys
22:23:33.0728 0008 usbaudio2 - ok
22:23:33.0728 0008 usbccgp - ok
22:23:33.0743 0008 [ 4A2A90FC52DD031BD5135BF2B6F95CDD ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
22:23:33.0743 0008 usbcir - ok
22:23:33.0759 0008 usbehci - ok
22:23:33.0759 0008 usbhub - ok
22:23:33.0759 0008 USBHUB3 - ok
22:23:33.0775 0008 [ A6FF43DEE42EF4B160976D8A3BCA2143 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
22:23:33.0775 0008 usbohci - ok
22:23:33.0790 0008 [ 11724C8F4354F87EC7F96CBCBD18A612 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
22:23:33.0790 0008 usbprint - ok
22:23:33.0790 0008 [ 55CFD737A673108074914ED21F44CC0D ] usbser C:\WINDOWS\System32\drivers\usbser.sys
22:23:33.0806 0008 usbser - ok
22:23:33.0806 0008 [ D575E148B38E2226E1DA27D0206B1006 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
22:23:33.0806 0008 USBSTOR - ok
22:23:33.0822 0008 [ 194091B0D8079A66B64A017B3E3965C1 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
22:23:33.0822 0008 usbuhci - ok
22:23:33.0837 0008 USBXHCI - ok
22:23:33.0853 0008 [ 4AB290C4D42C77D1A395D44BF428E126 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
22:23:33.0884 0008 UserDataSvc - ok
22:23:33.0884 0008 Suspicious service (Hidden): UserDataSvc_2b981
22:23:33.0900 0008 UserManager - ok
22:23:33.0900 0008 UsoSvc - ok
22:23:33.0915 0008 [ DA482A04D8A194EF5041F0090A774A17 ] VacSvc C:\WINDOWS\System32\vac.dll
22:23:33.0931 0008 VacSvc - ok
22:23:33.0947 0008 VaultSvc - ok
22:23:33.0947 0008 [ F8B7332117B5D5944945FA9EDEB6E2FA ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
22:23:33.0947 0008 vdrvroot - ok
22:23:33.0962 0008 vds - ok
22:23:33.0962 0008 VerifierExt - ok
22:23:33.0978 0008 [ 4731BEDA2485437B1B93C4EBA618C69F ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
22:23:33.0993 0008 vhdmp - ok
22:23:33.0993 0008 [ 7D2E55D69166E5ADD2E85E4D91B106EA ] vhf C:\WINDOWS\System32\drivers\vhf.sys
22:23:34.0009 0008 vhf - ok
22:23:34.0009 0008 Vid - ok
22:23:34.0025 0008 [ 8350086E9500068CC3A3213DF90B2AED ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
22:23:34.0025 0008 vmbus - ok
22:23:34.0040 0008 [ 0D36DA7B9053AA928EBB0A791FA9AD98 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
22:23:34.0040 0008 VMBusHID - ok
22:23:34.0040 0008 [ 32480E0760E0C3D21964CE3992001D5F ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
22:23:34.0056 0008 vmgid - ok
22:23:34.0056 0008 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
22:23:34.0072 0008 vmicguestinterface - ok
22:23:34.0072 0008 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
22:23:34.0087 0008 vmicheartbeat - ok
22:23:34.0103 0008 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
22:23:34.0103 0008 vmickvpexchange - ok
22:23:34.0118 0008 [ E8D33D1EA66CF460A204007DFF2CC1D8 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
22:23:34.0118 0008 vmicrdv - ok
22:23:34.0134 0008 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
22:23:34.0134 0008 vmicshutdown - ok
22:23:34.0150 0008 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
22:23:34.0150 0008 vmictimesync - ok
22:23:34.0165 0008 [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
22:23:34.0165 0008 vmicvmsession - ok
22:23:34.0181 0008 [ E8D33D1EA66CF460A204007DFF2CC1D8 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
22:23:34.0197 0008 vmicvss - ok
22:23:34.0197 0008 [ F2509A5541AE06A8EAF74BFCB74583BD ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
22:23:34.0197 0008 volmgr - ok
22:23:34.0212 0008 volmgrx - ok
22:23:34.0228 0008 volsnap - ok
22:23:34.0228 0008 [ 48AC7024857127BF09088853DB43FF93 ] volume C:\WINDOWS\system32\drivers\volume.sys
22:23:34.0228 0008 volume - ok
22:23:34.0243 0008 [ CF1C674D2149ECCDF3C93EECA1EA2F61 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
22:23:34.0243 0008 vpci - ok
22:23:34.0259 0008 [ 942B73A77ACB3099384A0754814EA9D9 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
22:23:34.0259 0008 vsmraid - ok
22:23:34.0275 0008 VSS - ok
22:23:34.0275 0008 [ A6CEC1A878536F3D5C82CFDF6E4CFCB9 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
22:23:34.0290 0008 VSTXRAID - ok
22:23:34.0290 0008 vwifibus - ok
22:23:34.0306 0008 vwififlt - ok
22:23:34.0306 0008 vwifimp - ok
22:23:34.0322 0008 W32Time - ok
22:23:34.0322 0008 WaaSMedicSvc - ok
22:23:34.0337 0008 [ 0F428BDADB31C63BEC85FE65577BD84B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
22:23:34.0337 0008 WacomPen - ok
22:23:34.0353 0008 [ 0DC4909F3D4E5272CB0A5B2BB7CA06BB ] WalletService C:\WINDOWS\system32\WalletService.dll
22:23:34.0368 0008 WalletService - ok
22:23:34.0368 0008 wanarp - ok
22:23:34.0384 0008 wanarpv6 - ok
22:23:34.0384 0008 [ FA45D9FF48626207024305DADAD40AAB ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
22:23:34.0400 0008 WarpJITSvc - ok
22:23:34.0415 0008 wbengine - ok
22:23:34.0431 0008 [ A49E17680E06B392CC6ECB47F01A6E64 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
22:23:34.0447 0008 WbioSrvc - ok
22:23:34.0462 0008 wcifs - ok
22:23:34.0462 0008 Wcmsvc - ok
22:23:34.0478 0008 wcncsvc - ok
22:23:34.0493 0008 [ B6F93B8B921662E81F9BA6A2AD014F86 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
22:23:34.0493 0008 wcnfs - ok
22:23:34.0493 0008 [ 2C07D096CFE550CD1F4B063FDD1DB07C ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
22:23:34.0493 0008 WdBoot - ok
22:23:34.0509 0008 Wdf01000 - ok
22:23:34.0525 0008 [ B2DCC522869DEAF476BDFCA43573A908 ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
22:23:34.0525 0008 WdFilter - ok
22:23:34.0540 0008 [ AA843CF3C016B79340C6FDACDA20D75D ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
22:23:34.0556 0008 WdiServiceHost - ok
22:23:34.0556 0008 [ AA843CF3C016B79340C6FDACDA20D75D ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
22:23:34.0572 0008 WdiSystemHost - ok
22:23:34.0572 0008 wdiwifi - ok
22:23:34.0587 0008 [ 35ED849BBAD731509E4E8D3A015CE5FA ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
22:23:34.0587 0008 WdmCompanionFilter - ok
22:23:34.0603 0008 WdNisDrv - ok
22:23:34.0603 0008 WdNisSvc - ok
22:23:34.0618 0008 [ 96F813A401A00A1C0477C0738DE64E3A ] WebClient C:\WINDOWS\System32\webclnt.dll
22:23:34.0634 0008 WebClient - ok
22:23:34.0650 0008 [ D2432132ABE0F620939B667D4894A36F ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
22:23:34.0665 0008 Wecsvc - ok
22:23:34.0665 0008 [ FAF9800B056767E9F525C143C90F4F9E ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
22:23:34.0681 0008 WEPHOSTSVC - ok
22:23:34.0697 0008 wercplsupport - ok
22:23:34.0697 0008 WerSvc - ok
22:23:34.0712 0008 [ 5FB0717636A54C5C37082E79A6605902 ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
22:23:34.0743 0008 WFDSConMgrSvc - ok
22:23:34.0743 0008 WFPLWFS - ok
22:23:34.0759 0008 [ 4D14BAB695C17DFFC1AAF7A23FFB59F1 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
22:23:34.0775 0008 WiaRpc - ok
22:23:34.0775 0008 WIMMount - ok
22:23:34.0790 0008 WinDefend - ok
22:23:34.0806 0008 [ 9FCCEAAF76F60F712C2DCEE6FC0B07A2 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
22:23:34.0806 0008 WindowsTrustedRT - ok
22:23:34.0822 0008 [ C696815C9B8DD3F40454A949E30ECA0B ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
22:23:34.0822 0008 WindowsTrustedRTProxy - ok
22:23:34.0837 0008 WinHttpAutoProxySvc - ok
22:23:34.0837 0008 [ 9B3BD21B1FF32B20EE30FA4332D3AB6C ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
22:23:34.0837 0008 WinMad - ok
22:23:34.0853 0008 Winmgmt - ok
22:23:34.0868 0008 WinNat - ok
22:23:34.0868 0008 WinQuic - ok
22:23:34.0900 0008 [ 74E4D3C8A6EF62362187D0C6FC0DC49B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
22:23:34.0947 0008 WinRM - ok
22:23:34.0962 0008 [ 7C8733775E291E3211F918A30B425742 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
22:23:34.0978 0008 WINUSB - ok
22:23:34.0978 0008 [ D130D6ED19268A74D6587C0D134B59EB ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
22:23:34.0978 0008 WinVerbs - ok
22:23:34.0993 0008 wisvc - ok
22:23:34.0993 0008 WlanSvc - ok
22:23:35.0025 0008 [ A60DCC4F1CE38740F86B95E57B526545 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
22:23:35.0056 0008 wlidsvc - ok
22:23:35.0087 0008 [ 06122A4C8860167431FB9D66CCC93D18 ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
22:23:35.0103 0008 wlpasvc - ok
22:23:35.0118 0008 WManSvc - ok
22:23:35.0118 0008 WmiAcpi - ok
22:23:35.0134 0008 wmiApSrv - ok
22:23:35.0134 0008 WMPNetworkSvc - ok
22:23:35.0150 0008 Wof - ok
22:23:35.0165 0008 workfolderssvc - ok
22:23:35.0181 0008 WpcMonSvc - ok
22:23:35.0181 0008 WPDBusEnum - ok
22:23:35.0197 0008 [ 58CD56BD6647BCAD784D9EB172D3132B ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
22:23:35.0197 0008 WpdUpFltr - ok
22:23:35.0197 0008 WpnService - ok
22:23:35.0212 0008 [ B10C7C8714D4D279F56072EBAC17F6DD ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
22:23:35.0228 0008 WpnUserService - ok
22:23:35.0243 0008 Suspicious service (Hidden): WpnUserService_2b981
22:23:35.0243 0008 ws2ifsl - ok
22:23:35.0259 0008 wscsvc - ok
22:23:35.0259 0008 WSearch - ok
22:23:35.0275 0008 wuauserv - ok
22:23:35.0290 0008 [ 28F033782B14D59DDBCA1E2FAE674B8A ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
22:23:35.0290 0008 WudfPf - ok
22:23:35.0306 0008 [ C339B551B1233A139AFD73C9DD8B50EC ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
22:23:35.0306 0008 WUDFRd - ok
22:23:35.0322 0008 [ C339B551B1233A139AFD73C9DD8B50EC ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
22:23:35.0322 0008 WUDFWpdFs - ok
22:23:35.0337 0008 WwanSvc - ok
22:23:35.0353 0008 [ 5A185AD39FBA3409D7AD7DDCDA29DBA0 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
22:23:35.0368 0008 XblAuthManager - ok
22:23:35.0400 0008 [ 2F19D8B17B932AF9A5FAC588D6437773 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
22:23:35.0415 0008 XblGameSave - ok
22:23:35.0431 0008 [ 384059930ED4037232D12DBD8CB99B95 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
22:23:35.0431 0008 xboxgip - ok
22:23:35.0447 0008 [ C7135FB498E924FD4F93A35B206D1256 ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
22:23:35.0462 0008 XboxGipSvc - ok
22:23:35.0493 0008 [ 5A495E793B14CCD532182BFEF1D06207 ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
22:23:35.0509 0008 XboxNetApiSvc - ok
22:23:35.0525 0008 [ 4F6C56E15EDAD3E3CD7D839972F61BE0 ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
22:23:35.0525 0008 xinputhid - ok
22:23:35.0540 0008 ================ Scan global ===============================
22:23:35.0556 0008 [Global] - ok
22:23:35.0556 0008 ================ Scan MBR ==================================
22:23:35.0556 0008 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
22:23:35.0572 0008 \Device\Harddisk0\DR0 - ok
22:23:35.0572 0008 ================ Scan VBR ==================================
22:23:35.0572 0008 [ 62A053D2D313E3FBA41F7156B1F12BE3 ] \Device\Harddisk0\DR0\Partition1
22:23:35.0572 0008 \Device\Harddisk0\DR0\Partition1 - ok
22:23:35.0572 0008 [ 826EF10532C9005DC3CB5A9F1F48B84C ] \Device\Harddisk0\DR0\Partition2
22:23:35.0572 0008 \Device\Harddisk0\DR0\Partition2 - ok
22:23:35.0587 0008 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
22:23:35.0587 0008 \Device\Harddisk0\DR0\Partition3 - ok
22:23:35.0587 0008 [ 0B1C3DFD4E5C64E08585BAFA319DD777 ] \Device\Harddisk0\DR0\Partition4
22:23:35.0587 0008 \Device\Harddisk0\DR0\Partition4 - ok
22:23:35.0587 0008 [ F0E5E1B86B64D30EE5CC57E8758E8E9A ] \Device\Harddisk0\DR0\Partition5
22:23:35.0603 0008 \Device\Harddisk0\DR0\Partition5 - ok
22:23:35.0603 0008 ============================================================
22:23:35.0603 0008 Scan finished
22:23:35.0603 0008 ============================================================
22:23:35.0618 2884 Detected object count: 1
22:23:35.0618 2884 Actual detected object count: 1
22:23:49.0587 2884 CredentialEnrollmentManagerUserSvc_2b981 ( HiddenService.Multi.Generic ) - skipped by user
22:23:49.0587 2884 CredentialEnrollmentManagerUserSvc_2b981 ( HiddenService.Multi.Generic ) - User select action: Skip
22:23:54.0555 2916 Deinitialize success
CPU:Intel Pentium G4560 @ 3.50 GHz, GPU:NVIDIA GeForce GTX 1050 Ti, RAM: Kingston 8 Gb DDR 4, MB: MSI B250M PRO-VD,
SSD: Kingston SSDNow V300 120Gb, Hdd:1 Seagate Barracuda 250 Gb, 2 Western Digital Caviar Blue 1 TB, PSU: Fortron ATX-400PNF 400W

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod jaro3 » 20 pro 2019 23:00

čisto , viry to nebude..

Stáhni si zde DelFix
Další odkazy:
https://toolslib.net/downloads/viewdownload/2-delfix/
http://ccm.net/download/download-24087-delfix
https://www.bleepingcomputer.com/download/delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7, 8 a10 musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Zkus sekci problém s HW , nebo program OCCT :
OCCT
http://www.slunecnice.cz/sw/occt/
http://www.ocbase.com/

stáhni a spusť ,pokud program nabídne aktualizaci , stáhni novou verzi .
Pokud se ukáže žádost o fin. Pomoc /PayPal) odškrtni jí (2x).
Klikni na CPU:OCCT a pak na "ON"..pokud Ti to nespadne , po pár minutách zastav (OFF) , program Ti naskenuje několik obrázků , ten poslední sem vlož.
klikni na GPU a na "ON" , zase nech pár minut , pokud to nespadne dřív..zase poslední obázek.
Můžeš otestovat i zdroj.
CPU:OCCT
CPU: Linpack
GPU: 3D
Power Supply

Po kliknutí na nástroje (ozubené kolo) si zkontrolovat hodnoty pomocí:
HW Monitor
AIDA64
CoreTemp
Everest
MotherBoard Monitor5
SpeedFan 4
SysTool v.1
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

smarda84
Level 1
Level 1
Příspěvky: 82
Registrován: květen 15
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod smarda84 » 21 pro 2019 10:50

# DelFix v1.013 - Logfile created 21/12/2019 at 10:49:15
# Updated 17/04/2016 by Xplode
# Username : Admin - DESKTOP-J7GV84K
# Operating System : Windows 10 Enterprise (64 bits)

~ Removing disinfection tools ...

Deleted : C:\_OTL
Deleted : C:\AdwCleaner
Deleted : C:\Users\Admin\Desktop\OTL.exe
Deleted : C:\Users\Admin\Desktop\tdsskiller.zip
Deleted : C:\Users\Admin\Downloads\HijackThis.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools

~ Cleaning system restore ...

Deleted : RP #1 [zoek.exe restore point | 12/11/2019 17:19:33]
Deleted : RP #4 [Removed Sophos Virus Removal Tool. | 12/14/2019 11:28:33]
Deleted : RP #5 [Removed DriverUpdate | 12/17/2019 19:31:23]
Deleted : RP #6 [Removed SlimCleaner Plus | 12/17/2019 19:31:51]

New restore point created !

########## - EOF - ##########
CPU:Intel Pentium G4560 @ 3.50 GHz, GPU:NVIDIA GeForce GTX 1050 Ti, RAM: Kingston 8 Gb DDR 4, MB: MSI B250M PRO-VD,
SSD: Kingston SSDNow V300 120Gb, Hdd:1 Seagate Barracuda 250 Gb, 2 Western Digital Caviar Blue 1 TB, PSU: Fortron ATX-400PNF 400W

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod jaro3 » 21 pro 2019 18:33

Vyzkoušej OCCT , zkontroluj CPU , GPU i zdroj při zátěži.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Denisovic_CZE
nováček
Příspěvky: 28
Registrován: prosinec 19
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod Denisovic_CZE » 21 pro 2019 19:49

Počítač může být zavirovaný, radši bych reinstaloval

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 40419
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: pomalý start pc,prosím kontrolu

Příspěvekod jaro3 » 21 pro 2019 22:53

Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 14 hostů