Zdravím
Dnes mně malwár našel Bitcoin minera ..
Nemám tu ještě nějakou havěť?
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:49:27, on 31.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16521)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
P:\Mozila Firefox\firefox.exe
C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
P:\Skype\Phone\Skype.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
C:\Program Files (x86)\SpeedFan\speedfan.exe
P:\Mozila Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
D:\Download\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\SysWOW64\Userinit.exe,
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [mncvspynSrv] C:\Windows\inf\mncvspyn.vbe
O4 - HKLM\..\Run: [EgisTecPMMUpdate] "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
O4 - HKLM\..\Run: [EgisUpdate] "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
O4 - HKLM\..\Run: [MWLTSR] X:\MyWinLocker\MWLTSR.exe /run
O4 - HKCU\..\Run: [Google Update] "C:\Users\uzivatel\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [IsMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://P:\MSOFFI~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - P:\MSOFFI~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - P:\MSOFFI~1\Office12\ONBttnIE.dll
O9 - Extra button: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - P:\ICQ7.0\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7 - {88EB38EF-4D2C-436D-ABD3-56B232674062} - P:\ICQ7.0\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - P:\MSOFFI~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - https://support.dell.com/systemprofiler/SysProExe.CAB
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe
O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corp. - P:\Solid works\SolidWorks\swScheduler\DTSCoordinatorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: CxUtilSvc - Conexant Systems, Inc. - C:\Program Files\Conexant\SA3\CxUtilSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Úložná technologie Intel® Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - P:\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - P:\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - P:\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - P:\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
--
End of file - 11560 bytes
BitCoin miner Kontrola logu Vyřešeno
-
memphisto
- Guru Level 13
- Příspěvky: 21113
- Registrován: září 06
- Bydliště: Zlín - České Budějovice
- Pohlaví:
- Stav:
Offline
Re: BitCoin miner Kontrola logu
Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Re: BitCoin miner Kontrola logu
Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.03.29.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16521
uzivatel :: VITI [administrátor]
Ochrana: Zakázána
31.3.2014 23:27:51
mbam-log-2014-03-31 (23-27-51).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 222715
Uplynulý čas: 2 minut, 23 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
________________________________________________________________________
# AdwCleaner v3.022 - Report created 31/03/2014 at 23:25:50
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - VITI
# Running from : C:\Users\uzivatel\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\Extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
File Found : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\user.js
Folder Found C:\Program Files (x86)\FoxTab
Folder Found C:\Users\uzivatel\AppData\Local\eSupport.com
Folder Found C:\Users\uzivatel\AppData\Local\Mobogenie
Folder Found C:\Users\uzivatel\Documents\Mobogenie
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\Software\InstallCore
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16521
-\\ Mozilla Firefox v28.0 (cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\prefs.js ]
-\\ Google Chrome v33.0.1750.154
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1714 octets] - [31/03/2014 23:25:50]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1774 octets] ##########
www.malwarebytes.org
Verze: v2014.03.29.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16521
uzivatel :: VITI [administrátor]
Ochrana: Zakázána
31.3.2014 23:27:51
mbam-log-2014-03-31 (23-27-51).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 222715
Uplynulý čas: 2 minut, 23 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)
(konec)
________________________________________________________________________
# AdwCleaner v3.022 - Report created 31/03/2014 at 23:25:50
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - VITI
# Running from : C:\Users\uzivatel\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
File Found : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\Extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
File Found : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\user.js
Folder Found C:\Program Files (x86)\FoxTab
Folder Found C:\Users\uzivatel\AppData\Local\eSupport.com
Folder Found C:\Users\uzivatel\AppData\Local\Mobogenie
Folder Found C:\Users\uzivatel\Documents\Mobogenie
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\Software\InstallCore
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Found : [x64] HKLM\SOFTWARE\Speedchecker Limited
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16521
-\\ Mozilla Firefox v28.0 (cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\prefs.js ]
-\\ Google Chrome v33.0.1750.154
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1714 octets] - [31/03/2014 23:25:50]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1774 octets] ##########
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: BitCoin miner Kontrola logu
Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
Stáhni si Junkware Removal Tool by Thisisu
na svojí plochu.
Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.
Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: BitCoin miner Kontrola logu
ADW cleaner
# AdwCleaner v3.022 - Report created 01/04/2014 at 23:37:08
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - VITI
# Running from : C:\Users\uzivatel\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\FoxTab
Folder Deleted : C:\Users\uzivatel\AppData\Local\eSupport.com
Folder Deleted : C:\Users\uzivatel\AppData\Local\Mobogenie
Folder Deleted : C:\Users\uzivatel\Documents\Mobogenie
File Deleted : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\Extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
File Deleted : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\InstallCore
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16521
-\\ Mozilla Firefox v28.0 (cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\prefs.js ]
-\\ Google Chrome v33.0.1750.154
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1870 octets] - [31/03/2014 23:25:50]
AdwCleaner[R1].txt - [1930 octets] - [01/04/2014 23:36:33]
AdwCleaner[S0].txt - [1831 octets] - [01/04/2014 23:37:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1891 octets] ##########
# AdwCleaner v3.022 - Report created 01/04/2014 at 23:37:08
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : uzivatel - VITI
# Running from : C:\Users\uzivatel\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\Program Files (x86)\FoxTab
Folder Deleted : C:\Users\uzivatel\AppData\Local\eSupport.com
Folder Deleted : C:\Users\uzivatel\AppData\Local\Mobogenie
Folder Deleted : C:\Users\uzivatel\Documents\Mobogenie
File Deleted : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\Extensions\{5ebdca98-43b3-45bb-87e0-716029fb42ab}.xpi
File Deleted : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\user.js
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D54C859C-6066-4F31-8FE0-2AAEDCAE67D7}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\InstallCore
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16521
-\\ Mozilla Firefox v28.0 (cs)
[ File : C:\Users\uzivatel\AppData\Roaming\Mozilla\Firefox\Profiles\8rdhcei9.default\prefs.js ]
-\\ Google Chrome v33.0.1750.154
[ File : C:\Users\uzivatel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1870 octets] - [31/03/2014 23:25:50]
AdwCleaner[R1].txt - [1930 octets] - [01/04/2014 23:36:33]
AdwCleaner[S0].txt - [1831 octets] - [01/04/2014 23:37:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1891 octets] ##########
Re: BitCoin miner Kontrola logu
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Home Premium x64
Ran by uzivatel on Łt 01.04.2014 at 23:38:57,49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\uzivatel\AppData\Roaming\thinstall"
Successfully deleted: [Folder] "C:\Users\uzivatel\appdata\local\thinstall"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 01.04.2014 at 23:43:12,79
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Home Premium x64
Ran by uzivatel on Łt 01.04.2014 at 23:38:57,49
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\uzivatel\AppData\Roaming\thinstall"
Successfully deleted: [Folder] "C:\Users\uzivatel\appdata\local\thinstall"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Łt 01.04.2014 at 23:43:12,79
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Re: BitCoin miner Kontrola logu
RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Kontrola -- Datum : 04/01/2014 23:42:46
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ATA ST1000LM024 HN-M SCSI Disk Device +++++
--- User ---
[MBR] 58c0ef6addcc8092a4ef0f2b3d10fc83
[BSP] cd1f618ed697e47f40143ddd48e7eb1a : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 80325 | Size: 953829 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) ATA KINGSTON SV300S3 SCSI Disk Device +++++
--- User ---
[MBR] a52b2ff222c10fed5d6547f802c6e5f9
[BSP] 6431b157f650bf44955dc5b920a9953e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114371 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Verbatim STORE N GO USB Device +++++
--- User ---
[MBR] 86f6cb34f0929d7ecf8b6edab4857854
[BSP] 8f6ce6a81794b305701f3a05f4f57274 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 2048 | Size: 7650 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
Dokončeno : << RKreport[0]_S_04012014_234246.txt >>
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Kontrola -- Datum : 04/01/2014 23:42:46
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> NALEZENO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ATA ST1000LM024 HN-M SCSI Disk Device +++++
--- User ---
[MBR] 58c0ef6addcc8092a4ef0f2b3d10fc83
[BSP] cd1f618ed697e47f40143ddd48e7eb1a : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 80325 | Size: 953829 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) ATA KINGSTON SV300S3 SCSI Disk Device +++++
--- User ---
[MBR] a52b2ff222c10fed5d6547f802c6e5f9
[BSP] 6431b157f650bf44955dc5b920a9953e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114371 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Verbatim STORE N GO USB Device +++++
--- User ---
[MBR] 86f6cb34f0929d7ecf8b6edab4857854
[BSP] 8f6ce6a81794b305701f3a05f4f57274 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 2048 | Size: 7650 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
Dokončeno : << RKreport[0]_S_04012014_234246.txt >>
-
Orcus
- člen Security týmu
-
Elite Level 10.5
- Příspěvky: 10645
- Registrován: duben 10
- Bydliště: Okolo rostou 3 růže =o)
- Pohlaví:
- Stav:
Offline
Re: BitCoin miner Kontrola logu
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
====================================================
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje "Smazání- Finished "
- Klikni na "Zprávy " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
====================================================
Stáhni si TDSSKiller
Na svojí plochu. Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.
Pokud se log nevejde do jedné zprávy, rozděl jej na více částí.
Láska hřeje, ale uhlí je uhlí. 
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.
Pár rad k bezpečnosti PC.
Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix
Pokud budete spokojeni , můžete podpořit naše fórum.
Re: BitCoin miner Kontrola logu
RogueKiller V8.8.15 _x64_ [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Odebrat -- Datum : 04/02/2014 08:23:43
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ATA ST1000LM024 HN-M SCSI Disk Device +++++
--- User ---
[MBR] 58c0ef6addcc8092a4ef0f2b3d10fc83
[BSP] cd1f618ed697e47f40143ddd48e7eb1a : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 80325 | Size: 953829 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) ATA KINGSTON SV300S3 SCSI Disk Device +++++
--- User ---
[MBR] a52b2ff222c10fed5d6547f802c6e5f9
[BSP] 6431b157f650bf44955dc5b920a9953e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114371 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Verbatim STORE N GO USB Device +++++
--- User ---
[MBR] 86f6cb34f0929d7ecf8b6edab4857854
[BSP] 8f6ce6a81794b305701f3a05f4f57274 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 2048 | Size: 7650 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
Dokončeno : << RKreport[0]_D_04022014_082343.txt >>
RKreport[0]_S_04012014_234246.txt;RKreport[0]_S_04022014_082252.txt
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Spuštěno v : Normální režim
Uživatel : uzivatel [Práva správce]
Mód : Odebrat -- Datum : 04/02/2014 08:23:43
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 10 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : ConsentPromptBehaviorAdmin (0) -> NAHRAZENO (2)
[HJ POL][PUM] HKLM\[...]\Wow6432Node\[...]\System : EnableLUA (0) -> NAHRAZENO (1)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0x0] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ATA ST1000LM024 HN-M SCSI Disk Device +++++
--- User ---
[MBR] 58c0ef6addcc8092a4ef0f2b3d10fc83
[BSP] cd1f618ed697e47f40143ddd48e7eb1a : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB
1 - [XXXXXX] LINUX-SWP (0x42) [VISIBLE] Offset (sectors): 80325 | Size: 953829 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) ATA KINGSTON SV300S3 SCSI Disk Device +++++
--- User ---
[MBR] a52b2ff222c10fed5d6547f802c6e5f9
[BSP] 6431b157f650bf44955dc5b920a9953e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 114371 MB
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) Verbatim STORE N GO USB Device +++++
--- User ---
[MBR] 86f6cb34f0929d7ecf8b6edab4857854
[BSP] 8f6ce6a81794b305701f3a05f4f57274 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] FAT32 (0x0b) [VISIBLE] Offset (sectors): 2048 | Size: 7650 MB
User = LL1 ... OK!
Error reading LL2 MBR! ([0x32] Po?adavek není podporován. )
Dokončeno : << RKreport[0]_D_04022014_082343.txt >>
RKreport[0]_S_04012014_234246.txt;RKreport[0]_S_04022014_082252.txt
Re: BitCoin miner Kontrola logu
08:29:30.0000 3940 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:29:36.0642 3940 ============================================================
08:29:36.0642 3940 Current date / time: 2014/04/02 08:29:36.0642
08:29:36.0642 3940 SystemInfo:
08:29:36.0642 3940
08:29:36.0642 3940 OS Version: 6.1.7601 ServicePack: 1.0
08:29:36.0642 3940 Product type: Workstation
08:29:36.0642 3940 ComputerName: VITI
08:29:36.0643 3940 UserName: uzivatel
08:29:36.0643 3940 Windows directory: C:\Windows
08:29:36.0643 3940 System windows directory: C:\Windows
08:29:36.0643 3940 Running under WOW64
08:29:36.0643 3940 Processor architecture: Intel x64
08:29:36.0643 3940 Number of processors: 8
08:29:36.0643 3940 Page size: 0x1000
08:29:36.0643 3940 Boot type: Normal boot
08:29:36.0643 3940 ============================================================
08:29:36.0918 3940 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:29:36.0919 3940 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:29:36.0924 3940 Drive \Device\Harddisk2\DR2 - Size: 0x1DE300000 (7.47 Gb), SectorSize: 0x200, Cylinders: 0x3CF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:29:36.0926 3940 ============================================================
08:29:36.0926 3940 \Device\Harddisk0\DR0:
08:29:36.0926 3940 MBR partitions:
08:29:36.0926 3940 \Device\Harddisk1\DR1:
08:29:36.0926 3940 MBR partitions:
08:29:36.0926 3940 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:29:36.0926 3940 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
08:29:36.0926 3940 \Device\Harddisk2\DR2:
08:29:36.0926 3940 MBR partitions:
08:29:36.0926 3940 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0xEF1000
08:29:36.0926 3940 ============================================================
08:29:36.0928 3940 C: <-> \Device\Harddisk1\DR1\Partition2
08:29:36.0928 3940 ============================================================
08:29:36.0928 3940 Initialize success
08:29:36.0928 3940 ============================================================
08:29:38.0701 5060 ============================================================
08:29:38.0701 5060 Scan started
08:29:38.0701 5060 Mode: Manual;
08:29:38.0701 5060 ============================================================
08:29:38.0786 5060 ================ Scan system memory ========================
08:29:38.0786 5060 System memory - ok
08:29:38.0787 5060 ================ Scan services =============================
08:29:38.0850 5060 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:29:38.0853 5060 1394ohci - ok
08:29:38.0865 5060 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:29:38.0868 5060 ACPI - ok
08:29:38.0874 5060 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:29:38.0875 5060 AcpiPmi - ok
08:29:38.0888 5060 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:29:38.0894 5060 adp94xx - ok
08:29:38.0905 5060 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:29:38.0908 5060 adpahci - ok
08:29:38.0917 5060 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:29:38.0919 5060 adpu320 - ok
08:29:38.0927 5060 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:29:38.0929 5060 AeLookupSvc - ok
08:29:38.0941 5060 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
08:29:38.0946 5060 AFD - ok
08:29:38.0953 5060 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:29:38.0954 5060 agp440 - ok
08:29:38.0962 5060 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:29:38.0963 5060 ALG - ok
08:29:38.0968 5060 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:29:38.0969 5060 aliide - ok
08:29:38.0979 5060 [ 6B86F165C7D518CDB70804D82AC3ACD5 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:29:38.0982 5060 AMD External Events Utility - ok
08:29:38.0987 5060 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:29:38.0987 5060 amdide - ok
08:29:38.0994 5060 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:29:38.0995 5060 AmdK8 - ok
08:29:39.0158 5060 [ 116176D9B55DDA2C5494DF5611E246A7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
08:29:39.0211 5060 amdkmdag - ok
08:29:39.0220 5060 [ 29A5ACBF46308BD283A5F0D93C4686B5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
08:29:39.0221 5060 amdkmdap - ok
08:29:39.0224 5060 [ FFCB1F4FEAC8AB77887031F8AD0D7C06 ] amdkmpfd C:\Windows\system32\DRIVERS\amdkmpfd.sys
08:29:39.0224 5060 amdkmpfd - ok
08:29:39.0227 5060 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
08:29:39.0227 5060 AmdPPM - ok
08:29:39.0231 5060 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:29:39.0231 5060 amdsata - ok
08:29:39.0236 5060 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:29:39.0237 5060 amdsbs - ok
08:29:39.0239 5060 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:29:39.0240 5060 amdxata - ok
08:29:39.0244 5060 [ D86564B66FB10C73C13F40F7D8E40FE6 ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
08:29:39.0244 5060 AMPPAL - ok
08:29:39.0248 5060 [ D86564B66FB10C73C13F40F7D8E40FE6 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
08:29:39.0249 5060 AMPPALP - ok
08:29:39.0260 5060 [ 9BE647AB104153BD0053EB4A48F50B31 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
08:29:39.0264 5060 AMPPALR3 - ok
08:29:39.0267 5060 [ FAD35699987BAA96E22E13B24FF44769 ] androidusb C:\Windows\system32\Drivers\androidusb.sys
08:29:39.0267 5060 androidusb - ok
08:29:39.0270 5060 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:29:39.0271 5060 AppID - ok
08:29:39.0274 5060 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:29:39.0274 5060 AppIDSvc - ok
08:29:39.0278 5060 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
08:29:39.0279 5060 Appinfo - ok
08:29:39.0282 5060 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
08:29:39.0283 5060 arc - ok
08:29:39.0286 5060 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:29:39.0286 5060 arcsas - ok
08:29:39.0300 5060 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:29:39.0305 5060 aspnet_state - ok
08:29:39.0308 5060 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:29:39.0308 5060 AsyncMac - ok
08:29:39.0311 5060 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:29:39.0311 5060 atapi - ok
08:29:39.0323 5060 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:29:39.0330 5060 AudioEndpointBuilder - ok
08:29:39.0340 5060 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:29:39.0343 5060 AudioSrv - ok
08:29:39.0349 5060 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:29:39.0352 5060 AxInstSV - ok
08:29:39.0360 5060 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:29:39.0363 5060 b06bdrv - ok
08:29:39.0368 5060 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:29:39.0369 5060 b57nd60a - ok
08:29:39.0374 5060 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:29:39.0375 5060 BDESVC - ok
08:29:39.0378 5060 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:29:39.0379 5060 Beep - ok
08:29:39.0389 5060 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:29:39.0397 5060 BFE - ok
08:29:39.0410 5060 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
08:29:39.0422 5060 BITS - ok
08:29:39.0425 5060 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:29:39.0425 5060 blbdrive - ok
08:29:39.0433 5060 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:29:39.0435 5060 Bonjour Service - ok
08:29:39.0439 5060 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:29:39.0440 5060 bowser - ok
08:29:39.0443 5060 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:29:39.0443 5060 BrFiltLo - ok
08:29:39.0446 5060 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:29:39.0447 5060 BrFiltUp - ok
08:29:39.0450 5060 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:29:39.0452 5060 Browser - ok
08:29:39.0458 5060 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:29:39.0459 5060 Brserid - ok
08:29:39.0463 5060 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:29:39.0463 5060 BrSerWdm - ok
08:29:39.0465 5060 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:29:39.0466 5060 BrUsbMdm - ok
08:29:39.0468 5060 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:29:39.0468 5060 BrUsbSer - ok
08:29:39.0478 5060 [ 1068AD5058622BB027681EBEB41DE1CD ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
08:29:39.0481 5060 BstHdAndroidSvc - ok
08:29:39.0485 5060 [ 66A41B10E0D97C2BA14A2CDFF2B18B86 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
08:29:39.0485 5060 BstHdDrv - ok
08:29:39.0491 5060 [ 7F621A46D4C0075B529A71A2CF97DCF0 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
08:29:39.0493 5060 BstHdLogRotatorSvc - ok
08:29:39.0496 5060 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
08:29:39.0497 5060 BthEnum - ok
08:29:39.0500 5060 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:29:39.0500 5060 BTHMODEM - ok
08:29:39.0504 5060 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
08:29:39.0505 5060 BthPan - ok
08:29:39.0513 5060 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
08:29:39.0515 5060 BTHPORT - ok
08:29:39.0519 5060 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:29:39.0521 5060 bthserv - ok
08:29:39.0524 5060 [ D30286FF3C7B6318C024D2BC2955C1BF ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
08:29:39.0525 5060 BTHSSecurityMgr - ok
08:29:39.0528 5060 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
08:29:39.0529 5060 BTHUSB - ok
08:29:39.0532 5060 Bulk1528 - ok
08:29:39.0535 5060 Ca1528av - ok
08:29:39.0539 5060 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:29:39.0540 5060 cdfs - ok
08:29:39.0544 5060 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:29:39.0544 5060 cdrom - ok
08:29:39.0549 5060 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:29:39.0551 5060 CertPropSvc - ok
08:29:39.0554 5060 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
08:29:39.0554 5060 circlass - ok
08:29:39.0561 5060 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:29:39.0563 5060 CLFS - ok
08:29:39.0571 5060 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:29:39.0572 5060 clr_optimization_v2.0.50727_32 - ok
08:29:39.0578 5060 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:29:39.0580 5060 clr_optimization_v2.0.50727_64 - ok
08:29:39.0590 5060 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:29:39.0600 5060 clr_optimization_v4.0.30319_32 - ok
08:29:39.0604 5060 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:29:39.0607 5060 clr_optimization_v4.0.30319_64 - ok
08:29:39.0610 5060 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:29:39.0611 5060 CmBatt - ok
08:29:39.0613 5060 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:29:39.0614 5060 cmdide - ok
08:29:39.0621 5060 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
08:29:39.0624 5060 CNG - ok
08:29:39.0644 5060 [ C563394A9E4F6A666CC663FDF03A7B05 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
08:29:39.0652 5060 CnxtHdAudService - ok
08:29:39.0655 5060 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:29:39.0656 5060 Compbatt - ok
08:29:39.0658 5060 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
08:29:39.0659 5060 CompositeBus - ok
08:29:39.0661 5060 COMSysApp - ok
08:29:39.0664 5060 CoordinatorServiceHost - ok
08:29:39.0700 5060 [ F08C6020E57F5E5BF2FD034DB10BEDFB ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
08:29:39.0702 5060 cphs - ok
08:29:39.0704 5060 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:29:39.0705 5060 crcdisk - ok
08:29:39.0710 5060 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:29:39.0712 5060 CryptSvc - ok
08:29:39.0717 5060 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
08:29:39.0718 5060 CtClsFlt - ok
08:29:39.0722 5060 [ 9A59DF2CA690019FEA3B265D5A7EB619 ] CxUtilSvc C:\Program Files\Conexant\SA3\CxUtilSvc.exe
08:29:39.0723 5060 CxUtilSvc - ok
08:29:39.0733 5060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:29:39.0736 5060 DcomLaunch - ok
08:29:39.0742 5060 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:29:39.0745 5060 defragsvc - ok
08:29:39.0750 5060 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:29:39.0750 5060 DfsC - ok
08:29:39.0757 5060 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:29:39.0761 5060 Dhcp - ok
08:29:39.0764 5060 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:29:39.0764 5060 discache - ok
08:29:39.0767 5060 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
08:29:39.0768 5060 Disk - ok
08:29:39.0773 5060 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:29:39.0776 5060 Dnscache - ok
08:29:39.0783 5060 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:29:39.0786 5060 dot3svc - ok
08:29:39.0791 5060 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:29:39.0794 5060 DPS - ok
08:29:39.0796 5060 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:29:39.0797 5060 drmkaud - ok
08:29:39.0803 5060 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
08:29:39.0805 5060 dtsoftbus01 - ok
08:29:39.0819 5060 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:29:39.0824 5060 DXGKrnl - ok
08:29:39.0829 5060 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:29:39.0831 5060 EapHost - ok
08:29:39.0869 5060 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:29:39.0885 5060 ebdrv - ok
08:29:39.0889 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
08:29:39.0889 5060 EFS - ok
08:29:39.0895 5060 [ 712FF10F0811B13A86475902A1109321 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
08:29:39.0896 5060 EgisTec Ticket Service - ok
08:29:39.0906 5060 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:29:39.0909 5060 ehRecvr - ok
08:29:39.0912 5060 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:29:39.0913 5060 ehSched - ok
08:29:39.0923 5060 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:29:39.0926 5060 elxstor - ok
08:29:39.0928 5060 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:29:39.0929 5060 ErrDev - ok
08:29:39.0934 5060 [ F37415F77CDD8AFD4F611BC125764C9E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
08:29:39.0936 5060 ETD - ok
08:29:39.0945 5060 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:29:39.0947 5060 EventSystem - ok
08:29:39.0958 5060 [ 00B132F23AA25DEF2060D490B0AB70EF ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
08:29:39.0961 5060 EvtEng - ok
08:29:39.0965 5060 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:29:39.0966 5060 exfat - ok
08:29:39.0971 5060 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:29:39.0972 5060 fastfat - ok
08:29:39.0983 5060 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:29:39.0986 5060 Fax - ok
08:29:39.0989 5060 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
08:29:39.0989 5060 fdc - ok
08:29:39.0992 5060 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:29:39.0993 5060 fdPHost - ok
08:29:39.0996 5060 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:29:39.0997 5060 FDResPub - ok
08:29:40.0000 5060 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:29:40.0000 5060 FileInfo - ok
08:29:40.0003 5060 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:29:40.0003 5060 Filetrace - ok
08:29:40.0016 5060 [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:29:40.0021 5060 FLEXnet Licensing Service - ok
08:29:40.0038 5060 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
08:29:40.0045 5060 FLEXnet Licensing Service 64 - ok
08:29:40.0048 5060 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
08:29:40.0048 5060 flpydisk - ok
08:29:40.0054 5060 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:29:40.0055 5060 FltMgr - ok
08:29:40.0061 5060 [ B8AFE7A30D34C0E9FDBA81632294547C ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
08:29:40.0062 5060 fltsrv - ok
08:29:40.0076 5060 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
08:29:40.0086 5060 FontCache - ok
08:29:40.0090 5060 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:29:40.0090 5060 FontCache3.0.0.0 - ok
08:29:40.0093 5060 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:29:40.0093 5060 FsDepends - ok
08:29:40.0096 5060 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:29:40.0097 5060 Fs_Rec - ok
08:29:40.0102 5060 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:29:40.0103 5060 fvevol - ok
08:29:40.0106 5060 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:29:40.0106 5060 gagp30kx - ok
08:29:40.0111 5060 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:29:40.0111 5060 GEARAspiWDM - ok
08:29:40.0121 5060 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:29:40.0129 5060 gpsvc - ok
08:29:40.0133 5060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:29:40.0134 5060 gupdate - ok
08:29:40.0137 5060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:29:40.0138 5060 gupdatem - ok
08:29:40.0141 5060 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:29:40.0141 5060 hcw85cir - ok
08:29:40.0147 5060 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:29:40.0148 5060 HdAudAddService - ok
08:29:40.0152 5060 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:29:40.0153 5060 HDAudBus - ok
08:29:40.0155 5060 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:29:40.0156 5060 HidBatt - ok
08:29:40.0159 5060 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:29:40.0160 5060 HidBth - ok
08:29:40.0163 5060 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
08:29:40.0164 5060 HidIr - ok
08:29:40.0167 5060 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
08:29:40.0168 5060 hidserv - ok
08:29:40.0171 5060 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:29:40.0171 5060 HidUsb - ok
08:29:40.0175 5060 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:29:40.0177 5060 hkmsvc - ok
08:29:40.0182 5060 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:29:40.0186 5060 HomeGroupListener - ok
08:29:40.0191 5060 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:29:40.0193 5060 HomeGroupProvider - ok
08:29:40.0197 5060 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:29:40.0197 5060 HpSAMD - ok
08:29:40.0207 5060 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:29:40.0210 5060 HTTP - ok
08:29:40.0213 5060 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:29:40.0213 5060 hwpolicy - ok
08:29:40.0216 5060 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:29:40.0217 5060 i8042prt - ok
08:29:40.0226 5060 [ AE0C5DF7E7DA3E7AC29B64CFA8C4F044 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
08:29:40.0229 5060 iaStorA - ok
08:29:40.0234 5060 [ 777788D9B63CCEEEF2DB353BA4EDD454 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
08:29:40.0234 5060 IAStorDataMgrSvc - ok
08:29:40.0237 5060 [ 711241EA1BA9DB44F34D03D2AD00ED08 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
08:29:40.0238 5060 iaStorF - ok
08:29:40.0245 5060 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:29:40.0247 5060 iaStorV - ok
08:29:40.0275 5060 [ 829EA5ECCAA623279D94EAEE3B5AD140 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
08:29:40.0288 5060 IconMan_R - ok
08:29:40.0299 5060 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:29:40.0304 5060 idsvc - ok
08:29:40.0307 5060 IEEtwCollectorService - ok
08:29:40.0311 5060 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:29:40.0311 5060 iirsp - ok
08:29:40.0322 5060 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
08:29:40.0331 5060 IKEEXT - ok
08:29:40.0338 5060 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
08:29:40.0339 5060 IntcDAud - ok
08:29:40.0349 5060 [ 7C76466F4E0F76CE259C6005D161E9E8 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
08:29:40.0353 5060 Intel(R) Capability Licensing Service Interface - ok
08:29:40.0356 5060 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:29:40.0356 5060 intelide - ok
08:29:40.0524 5060 [ 371D7F91C0D2314EB984A4A6CBEABC92 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
08:29:40.0610 5060 intelkmd - ok
08:29:40.0616 5060 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:29:40.0617 5060 intelppm - ok
08:29:40.0620 5060 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:29:40.0622 5060 IPBusEnum - ok
08:29:40.0625 5060 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:29:40.0626 5060 IpFilterDriver - ok
08:29:40.0634 5060 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:29:40.0639 5060 iphlpsvc - ok
08:29:40.0642 5060 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:29:40.0642 5060 IPMIDRV - ok
08:29:40.0646 5060 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:29:40.0646 5060 IPNAT - ok
08:29:40.0649 5060 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:29:40.0650 5060 IRENUM - ok
08:29:40.0652 5060 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:29:40.0652 5060 isapnp - ok
08:29:40.0658 5060 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:29:40.0660 5060 iScsiPrt - ok
08:29:40.0662 5060 [ 7A4D015FF432645C55C162DADAEA143E ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
08:29:40.0663 5060 iusb3hcs - ok
08:29:40.0669 5060 [ 5D6164479F6F900ACD287FDC6935532E ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
08:29:40.0670 5060 iusb3hub - ok
08:29:40.0681 5060 [ 9F5687C7EFA906E4F33586D393F7C257 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
08:29:40.0684 5060 iusb3xhc - ok
08:29:40.0689 5060 [ D22982C269775BCBDDA8A0F82A9ADE9E ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
08:29:40.0690 5060 jhi_service - ok
08:29:40.0693 5060 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:29:40.0694 5060 kbdclass - ok
08:29:40.0696 5060 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
08:29:40.0697 5060 kbdhid - ok
08:29:40.0699 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
08:29:40.0700 5060 KeyIso - ok
08:29:40.0704 5060 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:29:40.0704 5060 KSecDD - ok
08:29:40.0708 5060 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:29:40.0709 5060 KSecPkg - ok
08:29:40.0712 5060 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:29:40.0712 5060 ksthunk - ok
08:29:40.0718 5060 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:29:40.0723 5060 KtmRm - ok
08:29:40.0728 5060 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
08:29:40.0731 5060 LanmanServer - ok
08:29:40.0735 5060 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:29:40.0738 5060 LanmanWorkstation - ok
08:29:40.0741 5060 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:29:40.0742 5060 lltdio - ok
08:29:40.0748 5060 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:29:40.0752 5060 lltdsvc - ok
08:29:40.0754 5060 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:29:40.0756 5060 lmhosts - ok
08:29:40.0761 5060 [ 5C08357C65F658E29B5DDC2EF18D575C ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
08:29:40.0762 5060 LMS - ok
08:29:40.0766 5060 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:29:40.0767 5060 LSI_FC - ok
08:29:40.0771 5060 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:29:40.0771 5060 LSI_SAS - ok
08:29:40.0774 5060 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:29:40.0775 5060 LSI_SAS2 - ok
08:29:40.0778 5060 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:29:40.0779 5060 LSI_SCSI - ok
08:29:40.0782 5060 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:29:40.0783 5060 luafv - ok
08:29:40.0786 5060 [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
08:29:40.0786 5060 LVUSBS64 - ok
08:29:40.0789 5060 [ D7F57860E779B84AB982E8F4F23E30D1 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
08:29:40.0790 5060 massfilter_hs - ok
08:29:40.0793 5060 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
08:29:40.0793 5060 MBAMProtector - ok
08:29:40.0795 5060 MBAMScheduler - ok
08:29:40.0798 5060 MBAMService - ok
08:29:40.0802 5060 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:29:40.0805 5060 Mcx2Svc - ok
08:29:40.0808 5060 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
08:29:40.0808 5060 megasas - ok
08:29:40.0814 5060 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:29:40.0815 5060 MegaSR - ok
08:29:40.0818 5060 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:29:40.0819 5060 MEIx64 - ok
08:29:40.0822 5060 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:29:40.0824 5060 MMCSS - ok
08:29:40.0826 5060 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:29:40.0827 5060 Modem - ok
08:29:40.0829 5060 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:29:40.0830 5060 monitor - ok
08:29:40.0832 5060 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:29:40.0833 5060 mouclass - ok
08:29:40.0836 5060 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:29:40.0836 5060 mouhid - ok
08:29:40.0840 5060 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:29:40.0840 5060 mountmgr - ok
08:29:40.0844 5060 [ AEE4E9CC59CDEB55B1ECB0E596E796BE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:29:40.0845 5060 MozillaMaintenance - ok
08:29:40.0851 5060 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
08:29:40.0852 5060 MpFilter - ok
08:29:40.0857 5060 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:29:40.0857 5060 mpio - ok
08:29:40.0861 5060 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:29:40.0862 5060 mpsdrv - ok
08:29:40.0873 5060 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:29:40.0882 5060 MpsSvc - ok
08:29:40.0885 5060 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:29:40.0886 5060 MRxDAV - ok
08:29:40.0890 5060 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:29:40.0891 5060 mrxsmb - ok
08:29:40.0897 5060 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:29:40.0899 5060 mrxsmb10 - ok
08:29:40.0902 5060 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:29:40.0903 5060 mrxsmb20 - ok
08:29:40.0906 5060 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:29:40.0906 5060 msahci - ok
08:29:40.0911 5060 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:29:40.0912 5060 msdsm - ok
08:29:40.0916 5060 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:29:40.0917 5060 MSDTC - ok
08:29:40.0921 5060 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:29:40.0922 5060 Msfs - ok
08:29:40.0924 5060 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:29:40.0924 5060 mshidkmdf - ok
08:29:40.0927 5060 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:29:40.0927 5060 msisadrv - ok
08:29:40.0931 5060 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:29:40.0934 5060 MSiSCSI - ok
08:29:40.0936 5060 msiserver - ok
08:29:40.0939 5060 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:29:40.0940 5060 MSKSSRV - ok
08:29:40.0943 5060 [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
08:29:40.0943 5060 MsMpSvc - ok
08:29:40.0946 5060 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:29:40.0946 5060 MSPCLOCK - ok
08:29:40.0948 5060 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:29:40.0949 5060 MSPQM - ok
08:29:40.0955 5060 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:29:40.0957 5060 MsRPC - ok
08:29:40.0961 5060 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
08:29:40.0961 5060 mssmbios - ok
08:29:40.0963 5060 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:29:40.0963 5060 MSTEE - ok
08:29:40.0966 5060 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:29:40.0966 5060 MTConfig - ok
08:29:40.0969 5060 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:29:40.0969 5060 Mup - ok
08:29:40.0972 5060 [ C009123B206C56854F4E88596035231D ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
08:29:40.0972 5060 mwlPSDFilter - ok
08:29:40.0975 5060 [ BF3739EEB9F008B1DEBAC115089A53F8 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
08:29:40.0975 5060 mwlPSDNServ - ok
08:29:40.0978 5060 [ 38DD143D95E7A01B86F219DDA9C28779 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
08:29:40.0979 5060 mwlPSDVDisk - ok
08:29:40.0984 5060 [ 74E1E62819D33F176821ADC9AFF8A3E7 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
08:29:40.0985 5060 MyWiFiDHCPDNS - ok
08:29:40.0993 5060 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:29:40.0998 5060 napagent - ok
08:29:41.0005 5060 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:29:41.0007 5060 NativeWifiP - ok
08:29:41.0020 5060 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:29:41.0025 5060 NDIS - ok
08:29:41.0028 5060 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:29:41.0029 5060 NdisCap - ok
08:29:41.0031 5060 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:29:41.0032 5060 NdisTapi - ok
08:29:41.0035 5060 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:29:41.0035 5060 Ndisuio - ok
08:29:41.0039 5060 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:29:41.0040 5060 NdisWan - ok
08:29:41.0043 5060 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:29:41.0044 5060 NDProxy - ok
08:29:41.0047 5060 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:29:41.0047 5060 NetBIOS - ok
08:29:41.0053 5060 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:29:41.0054 5060 NetBT - ok
08:29:41.0057 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
08:29:41.0058 5060 Netlogon - ok
08:29:41.0065 5060 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:29:41.0070 5060 Netman - ok
08:29:41.0079 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0082 5060 NetMsmqActivator - ok
08:29:41.0085 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0086 5060 NetPipeActivator - ok
08:29:41.0093 5060 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:29:41.0096 5060 netprofm - ok
08:29:41.0099 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0100 5060 NetTcpActivator - ok
08:29:41.0102 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0103 5060 NetTcpPortSharing - ok
08:29:41.0263 5060 [ D39BFDCB570E9019831901AB1B8B4443 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
08:29:41.0322 5060 NETwNs64 - ok
08:29:41.0352 5060 NEWDRIVER - ok
08:29:41.0356 5060 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:29:41.0356 5060 nfrd960 - ok
08:29:41.0360 5060 [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
08:29:41.0361 5060 NisDrv - ok
08:29:41.0366 5060 [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
08:29:41.0368 5060 NisSrv - ok
08:29:41.0374 5060 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:29:41.0378 5060 NlaSvc - ok
08:29:41.0381 5060 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:29:41.0381 5060 Npfs - ok
08:29:41.0384 5060 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:29:41.0385 5060 nsi - ok
08:29:41.0388 5060 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:29:41.0388 5060 nsiproxy - ok
08:29:41.0408 5060 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:29:41.0415 5060 Ntfs - ok
08:29:41.0418 5060 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:29:41.0418 5060 Null - ok
08:29:41.0423 5060 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:29:41.0424 5060 nvraid - ok
08:29:41.0428 5060 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:29:41.0429 5060 nvstor - ok
08:29:41.0433 5060 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:29:41.0434 5060 nv_agp - ok
08:29:41.0443 5060 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:29:41.0445 5060 odserv - ok
08:29:41.0449 5060 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:29:41.0450 5060 ohci1394 - ok
08:29:41.0454 5060 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:29:41.0455 5060 ose - ok
08:29:41.0463 5060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:29:41.0468 5060 p2pimsvc - ok
08:29:41.0477 5060 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:29:41.0483 5060 p2psvc - ok
08:29:41.0486 5060 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
08:29:41.0487 5060 Parport - ok
08:29:41.0490 5060 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:29:41.0491 5060 partmgr - ok
08:29:41.0496 5060 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:29:41.0500 5060 PcaSvc - ok
08:29:41.0504 5060 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:29:41.0505 5060 pci - ok
08:29:41.0508 5060 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:29:41.0508 5060 pciide - ok
08:29:41.0513 5060 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:29:41.0514 5060 pcmcia - ok
08:29:41.0517 5060 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:29:41.0517 5060 pcw - ok
08:29:41.0527 5060 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:29:41.0530 5060 PEAUTH - ok
08:29:41.0534 5060 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:29:41.0535 5060 PerfHost - ok
08:29:41.0566 5060 [ 087A343DFC337F37723DD7912DE6B6CD ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
08:29:41.0579 5060 PID_PEPI - ok
08:29:41.0599 5060 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:29:41.0614 5060 pla - ok
08:29:41.0622 5060 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:29:41.0627 5060 PlugPlay - ok
08:29:41.0632 5060 PnkBstrA - ok
08:29:41.0635 5060 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:29:41.0637 5060 PNRPAutoReg - ok
08:29:41.0644 5060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:29:41.0646 5060 PNRPsvc - ok
08:29:41.0656 5060 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:29:41.0662 5060 PolicyAgent - ok
08:29:41.0667 5060 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:29:41.0671 5060 Power - ok
08:29:41.0675 5060 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:29:41.0675 5060 PptpMiniport - ok
08:29:41.0678 5060 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
08:29:41.0679 5060 Processor - ok
08:29:41.0684 5060 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:29:41.0688 5060 ProfSvc - ok
08:29:41.0690 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
08:29:41.0691 5060 ProtectedStorage - ok
08:29:41.0695 5060 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:29:41.0696 5060 Psched - ok
08:29:41.0701 5060 [ 49493356A24A0C6D6B39C9014EAA62ED ] pwdrvio C:\Windows\system32\pwdrvio.sys
08:29:41.0702 5060 pwdrvio - ok
08:29:41.0706 5060 [ A179327A77C9D1867DB84058258A19DB ] pwdspio C:\Windows\system32\pwdspio.sys
08:29:41.0707 5060 pwdspio - ok
08:29:41.0729 5060 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:29:41.0737 5060 ql2300 - ok
08:29:41.0741 5060 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:29:41.0741 5060 ql40xx - ok
08:29:41.0747 5060 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:29:41.0751 5060 QWAVE - ok
08:29:41.0754 5060 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:29:41.0754 5060 QWAVEdrv - ok
08:29:41.0757 5060 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:29:41.0757 5060 RasAcd - ok
08:29:41.0760 5060 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:29:41.0761 5060 RasAgileVpn - ok
08:29:41.0764 5060 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:29:41.0766 5060 RasAuto - ok
08:29:41.0770 5060 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:29:41.0771 5060 Rasl2tp - ok
08:29:41.0777 5060 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:29:41.0782 5060 RasMan - ok
08:29:41.0785 5060 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:29:41.0785 5060 RasPppoe - ok
08:29:41.0789 5060 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:29:41.0789 5060 RasSstp - ok
08:29:41.0795 5060 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:29:41.0796 5060 rdbss - ok
08:29:41.0799 5060 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
08:29:41.0799 5060 rdpbus - ok
08:29:41.0802 5060 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:29:41.0802 5060 RDPCDD - ok
08:29:41.0806 5060 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:29:41.0806 5060 RDPENCDD - ok
08:29:41.0809 5060 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:29:41.0810 5060 RDPREFMP - ok
08:29:41.0814 5060 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:29:41.0815 5060 RDPWD - ok
08:29:41.0821 5060 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:29:41.0822 5060 rdyboost - ok
08:29:41.0827 5060 [ 5A118234A2251D6CFB8A11DFE7AC4B4A ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
08:29:41.0828 5060 RegSrvc - ok
08:29:41.0832 5060 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:29:41.0834 5060 RemoteAccess - ok
08:29:41.0840 5060 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:29:41.0844 5060 RemoteRegistry - ok
08:29:41.0849 5060 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
08:29:41.0850 5060 RFCOMM - ok
08:29:41.0853 5060 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:29:41.0856 5060 RpcEptMapper - ok
08:29:41.0858 5060 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:29:41.0859 5060 RpcLocator - ok
08:29:41.0868 5060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:29:41.0871 5060 RpcSs - ok
08:29:41.0875 5060 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:29:41.0876 5060 rspndr - ok
08:29:41.0883 5060 [ 46726EB52FDC7A141DE6780B09F3F729 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys
08:29:41.0884 5060 RSUSBVSTOR - ok
08:29:41.0888 5060 [ 3208C73AE8E3B032DF1235B8F820CBBC ] rtcrfilt64 C:\Windows\system32\DRIVERS\rtcrfilt64.sys
08:29:41.0888 5060 rtcrfilt64 - ok
08:29:41.0893 5060 [ B88880586ACD3EDEFCD0F9C2A6C1EE27 ] RTL2832UBDA C:\Windows\system32\drivers\RTL2832UBDA.sys
08:29:41.0894 5060 RTL2832UBDA - ok
08:29:41.0901 5060 [ 4C04300EE6A5E780FD4E2F0806AECA0E ] RTL2832UUSB C:\Windows\system32\Drivers\RTL2832UUSB.sys
08:29:41.0901 5060 RTL2832UUSB - ok
08:29:41.0911 5060 [ C5CD940EFFADE1F6246730BCA14E9FE6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
08:29:41.0914 5060 RTL8167 - ok
08:29:41.0916 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
08:29:41.0917 5060 SamSs - ok
08:29:41.0921 5060 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:29:41.0921 5060 sbp2port - ok
08:29:41.0926 5060 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:29:41.0929 5060 SCardSvr - ok
08:29:41.0932 5060 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:29:41.0933 5060 scfilter - ok
08:29:41.0949 5060 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:29:41.0963 5060 Schedule - ok
08:29:41.0967 5060 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:29:41.0967 5060 SCPolicySvc - ok
08:29:41.0971 5060 [ 8B56BDCE6A303DDE63D63440D1CF9AD1 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
08:29:41.0972 5060 ScreamBAudioSvc - ok
08:29:41.0977 5060 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:29:41.0980 5060 SDRSVC - ok
08:29:41.0983 5060 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:29:41.0984 5060 secdrv - ok
08:29:41.0987 5060 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:29:41.0989 5060 seclogon - ok
08:29:41.0993 5060 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
08:29:41.0994 5060 SENS - ok
08:29:41.0998 5060 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:29:42.0000 5060 SensrSvc - ok
08:29:42.0002 5060 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
08:29:42.0003 5060 Serenum - ok
08:29:42.0006 5060 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
08:29:42.0007 5060 Serial - ok
08:29:42.0010 5060 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:29:42.0010 5060 sermouse - ok
08:29:42.0018 5060 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:29:42.0020 5060 SessionEnv - ok
08:29:42.0023 5060 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:29:42.0023 5060 sffdisk - ok
08:29:42.0026 5060 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:29:42.0026 5060 sffp_mmc - ok
08:29:42.0029 5060 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:29:42.0029 5060 sffp_sd - ok
08:29:42.0032 5060 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:29:42.0032 5060 sfloppy - ok
08:29:42.0039 5060 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:29:42.0044 5060 SharedAccess - ok
08:29:42.0051 5060 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:29:42.0056 5060 ShellHWDetection - ok
08:29:42.0059 5060 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:29:42.0060 5060 SiSRaid2 - ok
08:29:42.0063 5060 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:29:42.0064 5060 SiSRaid4 - ok
08:29:42.0066 5060 SkypeUpdate - ok
08:29:42.0070 5060 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:29:42.0071 5060 Smb - ok
08:29:42.0076 5060 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:29:42.0077 5060 SNMPTRAP - ok
08:29:42.0082 5060 [ 4945020BC094C322571184A6E8056B3A ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
08:29:42.0083 5060 SolidWorks Licensing Service - ok
08:29:42.0088 5060 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
08:29:42.0088 5060 speedfan - ok
08:29:42.0091 5060 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:29:42.0092 5060 spldr - ok
08:29:42.0100 5060 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:29:42.0104 5060 Spooler - ok
08:29:42.0169 5060 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:29:42.0198 5060 sppsvc - ok
08:29:42.0204 5060 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:29:42.0206 5060 sppuinotify - ok
08:29:42.0214 5060 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:29:42.0217 5060 srv - ok
08:29:42.0226 5060 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:29:42.0228 5060 srv2 - ok
08:29:42.0234 5060 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:29:42.0235 5060 srvnet - ok
08:29:42.0241 5060 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:29:42.0245 5060 SSDPSRV - ok
08:29:42.0249 5060 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:29:42.0252 5060 SstpSvc - ok
08:29:42.0256 5060 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:29:42.0256 5060 stexstor - ok
08:29:42.0267 5060 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:29:42.0275 5060 stisvc - ok
08:29:42.0279 5060 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
08:29:42.0279 5060 swenum - ok
08:29:42.0290 5060 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
08:29:42.0293 5060 SwitchBoard - ok
08:29:42.0303 5060 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:29:42.0310 5060 swprv - ok
08:29:42.0338 5060 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:29:42.0358 5060 SysMain - ok
08:29:42.0362 5060 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:29:42.0366 5060 TabletInputService - ok
08:29:42.0373 5060 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:29:42.0379 5060 TapiSrv - ok
08:29:42.0383 5060 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:29:42.0385 5060 TBS - ok
08:29:42.0410 5060 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:29:42.0424 5060 Tcpip - ok
08:29:42.0450 5060 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:29:42.0463 5060 TCPIP6 - ok
08:29:42.0468 5060 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:29:42.0469 5060 tcpipreg - ok
08:29:42.0474 5060 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:29:42.0474 5060 TDPIPE - ok
08:29:42.0478 5060 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:29:42.0478 5060 TDTCP - ok
08:29:42.0482 5060 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:29:42.0484 5060 tdx - ok
08:29:42.0486 5060 TeamViewer9 - ok
08:29:42.0491 5060 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
08:29:42.0492 5060 TermDD - ok
08:29:42.0503 5060 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:29:42.0512 5060 TermService - ok
08:29:42.0517 5060 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:29:42.0519 5060 Themes - ok
08:29:42.0523 5060 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:29:42.0525 5060 THREADORDER - ok
08:29:42.0529 5060 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:29:42.0532 5060 TrkWks - ok
08:29:42.0538 5060 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:29:42.0539 5060 TrustedInstaller - ok
08:29:42.0544 5060 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:29:42.0545 5060 tssecsrv - ok
08:29:42.0549 5060 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:29:42.0550 5060 TsUsbFlt - ok
08:29:42.0553 5060 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:29:42.0554 5060 TsUsbGD - ok
08:29:42.0559 5060 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:29:42.0560 5060 tunnel - ok
08:29:36.0642 3940 ============================================================
08:29:36.0642 3940 Current date / time: 2014/04/02 08:29:36.0642
08:29:36.0642 3940 SystemInfo:
08:29:36.0642 3940
08:29:36.0642 3940 OS Version: 6.1.7601 ServicePack: 1.0
08:29:36.0642 3940 Product type: Workstation
08:29:36.0642 3940 ComputerName: VITI
08:29:36.0643 3940 UserName: uzivatel
08:29:36.0643 3940 Windows directory: C:\Windows
08:29:36.0643 3940 System windows directory: C:\Windows
08:29:36.0643 3940 Running under WOW64
08:29:36.0643 3940 Processor architecture: Intel x64
08:29:36.0643 3940 Number of processors: 8
08:29:36.0643 3940 Page size: 0x1000
08:29:36.0643 3940 Boot type: Normal boot
08:29:36.0643 3940 ============================================================
08:29:36.0918 3940 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:29:36.0919 3940 Drive \Device\Harddisk1\DR1 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:29:36.0924 3940 Drive \Device\Harddisk2\DR2 - Size: 0x1DE300000 (7.47 Gb), SectorSize: 0x200, Cylinders: 0x3CF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:29:36.0926 3940 ============================================================
08:29:36.0926 3940 \Device\Harddisk0\DR0:
08:29:36.0926 3940 MBR partitions:
08:29:36.0926 3940 \Device\Harddisk1\DR1:
08:29:36.0926 3940 MBR partitions:
08:29:36.0926 3940 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:29:36.0926 3940 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xDF61800
08:29:36.0926 3940 \Device\Harddisk2\DR2:
08:29:36.0926 3940 MBR partitions:
08:29:36.0926 3940 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0xEF1000
08:29:36.0926 3940 ============================================================
08:29:36.0928 3940 C: <-> \Device\Harddisk1\DR1\Partition2
08:29:36.0928 3940 ============================================================
08:29:36.0928 3940 Initialize success
08:29:36.0928 3940 ============================================================
08:29:38.0701 5060 ============================================================
08:29:38.0701 5060 Scan started
08:29:38.0701 5060 Mode: Manual;
08:29:38.0701 5060 ============================================================
08:29:38.0786 5060 ================ Scan system memory ========================
08:29:38.0786 5060 System memory - ok
08:29:38.0787 5060 ================ Scan services =============================
08:29:38.0850 5060 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
08:29:38.0853 5060 1394ohci - ok
08:29:38.0865 5060 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
08:29:38.0868 5060 ACPI - ok
08:29:38.0874 5060 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
08:29:38.0875 5060 AcpiPmi - ok
08:29:38.0888 5060 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
08:29:38.0894 5060 adp94xx - ok
08:29:38.0905 5060 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
08:29:38.0908 5060 adpahci - ok
08:29:38.0917 5060 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
08:29:38.0919 5060 adpu320 - ok
08:29:38.0927 5060 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
08:29:38.0929 5060 AeLookupSvc - ok
08:29:38.0941 5060 [ 79059559E89D06E8B80CE2944BE20228 ] AFD C:\Windows\system32\drivers\afd.sys
08:29:38.0946 5060 AFD - ok
08:29:38.0953 5060 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
08:29:38.0954 5060 agp440 - ok
08:29:38.0962 5060 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
08:29:38.0963 5060 ALG - ok
08:29:38.0968 5060 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
08:29:38.0969 5060 aliide - ok
08:29:38.0979 5060 [ 6B86F165C7D518CDB70804D82AC3ACD5 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:29:38.0982 5060 AMD External Events Utility - ok
08:29:38.0987 5060 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
08:29:38.0987 5060 amdide - ok
08:29:38.0994 5060 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
08:29:38.0995 5060 AmdK8 - ok
08:29:39.0158 5060 [ 116176D9B55DDA2C5494DF5611E246A7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
08:29:39.0211 5060 amdkmdag - ok
08:29:39.0220 5060 [ 29A5ACBF46308BD283A5F0D93C4686B5 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
08:29:39.0221 5060 amdkmdap - ok
08:29:39.0224 5060 [ FFCB1F4FEAC8AB77887031F8AD0D7C06 ] amdkmpfd C:\Windows\system32\DRIVERS\amdkmpfd.sys
08:29:39.0224 5060 amdkmpfd - ok
08:29:39.0227 5060 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
08:29:39.0227 5060 AmdPPM - ok
08:29:39.0231 5060 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
08:29:39.0231 5060 amdsata - ok
08:29:39.0236 5060 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
08:29:39.0237 5060 amdsbs - ok
08:29:39.0239 5060 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
08:29:39.0240 5060 amdxata - ok
08:29:39.0244 5060 [ D86564B66FB10C73C13F40F7D8E40FE6 ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
08:29:39.0244 5060 AMPPAL - ok
08:29:39.0248 5060 [ D86564B66FB10C73C13F40F7D8E40FE6 ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
08:29:39.0249 5060 AMPPALP - ok
08:29:39.0260 5060 [ 9BE647AB104153BD0053EB4A48F50B31 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
08:29:39.0264 5060 AMPPALR3 - ok
08:29:39.0267 5060 [ FAD35699987BAA96E22E13B24FF44769 ] androidusb C:\Windows\system32\Drivers\androidusb.sys
08:29:39.0267 5060 androidusb - ok
08:29:39.0270 5060 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
08:29:39.0271 5060 AppID - ok
08:29:39.0274 5060 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
08:29:39.0274 5060 AppIDSvc - ok
08:29:39.0278 5060 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
08:29:39.0279 5060 Appinfo - ok
08:29:39.0282 5060 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
08:29:39.0283 5060 arc - ok
08:29:39.0286 5060 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
08:29:39.0286 5060 arcsas - ok
08:29:39.0300 5060 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:29:39.0305 5060 aspnet_state - ok
08:29:39.0308 5060 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
08:29:39.0308 5060 AsyncMac - ok
08:29:39.0311 5060 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
08:29:39.0311 5060 atapi - ok
08:29:39.0323 5060 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:29:39.0330 5060 AudioEndpointBuilder - ok
08:29:39.0340 5060 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
08:29:39.0343 5060 AudioSrv - ok
08:29:39.0349 5060 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
08:29:39.0352 5060 AxInstSV - ok
08:29:39.0360 5060 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
08:29:39.0363 5060 b06bdrv - ok
08:29:39.0368 5060 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
08:29:39.0369 5060 b57nd60a - ok
08:29:39.0374 5060 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
08:29:39.0375 5060 BDESVC - ok
08:29:39.0378 5060 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
08:29:39.0379 5060 Beep - ok
08:29:39.0389 5060 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
08:29:39.0397 5060 BFE - ok
08:29:39.0410 5060 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
08:29:39.0422 5060 BITS - ok
08:29:39.0425 5060 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
08:29:39.0425 5060 blbdrive - ok
08:29:39.0433 5060 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:29:39.0435 5060 Bonjour Service - ok
08:29:39.0439 5060 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
08:29:39.0440 5060 bowser - ok
08:29:39.0443 5060 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
08:29:39.0443 5060 BrFiltLo - ok
08:29:39.0446 5060 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
08:29:39.0447 5060 BrFiltUp - ok
08:29:39.0450 5060 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
08:29:39.0452 5060 Browser - ok
08:29:39.0458 5060 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
08:29:39.0459 5060 Brserid - ok
08:29:39.0463 5060 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
08:29:39.0463 5060 BrSerWdm - ok
08:29:39.0465 5060 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
08:29:39.0466 5060 BrUsbMdm - ok
08:29:39.0468 5060 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
08:29:39.0468 5060 BrUsbSer - ok
08:29:39.0478 5060 [ 1068AD5058622BB027681EBEB41DE1CD ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
08:29:39.0481 5060 BstHdAndroidSvc - ok
08:29:39.0485 5060 [ 66A41B10E0D97C2BA14A2CDFF2B18B86 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
08:29:39.0485 5060 BstHdDrv - ok
08:29:39.0491 5060 [ 7F621A46D4C0075B529A71A2CF97DCF0 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
08:29:39.0493 5060 BstHdLogRotatorSvc - ok
08:29:39.0496 5060 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
08:29:39.0497 5060 BthEnum - ok
08:29:39.0500 5060 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
08:29:39.0500 5060 BTHMODEM - ok
08:29:39.0504 5060 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
08:29:39.0505 5060 BthPan - ok
08:29:39.0513 5060 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
08:29:39.0515 5060 BTHPORT - ok
08:29:39.0519 5060 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
08:29:39.0521 5060 bthserv - ok
08:29:39.0524 5060 [ D30286FF3C7B6318C024D2BC2955C1BF ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
08:29:39.0525 5060 BTHSSecurityMgr - ok
08:29:39.0528 5060 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
08:29:39.0529 5060 BTHUSB - ok
08:29:39.0532 5060 Bulk1528 - ok
08:29:39.0535 5060 Ca1528av - ok
08:29:39.0539 5060 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
08:29:39.0540 5060 cdfs - ok
08:29:39.0544 5060 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
08:29:39.0544 5060 cdrom - ok
08:29:39.0549 5060 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
08:29:39.0551 5060 CertPropSvc - ok
08:29:39.0554 5060 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
08:29:39.0554 5060 circlass - ok
08:29:39.0561 5060 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
08:29:39.0563 5060 CLFS - ok
08:29:39.0571 5060 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:29:39.0572 5060 clr_optimization_v2.0.50727_32 - ok
08:29:39.0578 5060 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:29:39.0580 5060 clr_optimization_v2.0.50727_64 - ok
08:29:39.0590 5060 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:29:39.0600 5060 clr_optimization_v4.0.30319_32 - ok
08:29:39.0604 5060 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:29:39.0607 5060 clr_optimization_v4.0.30319_64 - ok
08:29:39.0610 5060 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
08:29:39.0611 5060 CmBatt - ok
08:29:39.0613 5060 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
08:29:39.0614 5060 cmdide - ok
08:29:39.0621 5060 [ EBF28856F69CF094A902F884CF989706 ] CNG C:\Windows\system32\Drivers\cng.sys
08:29:39.0624 5060 CNG - ok
08:29:39.0644 5060 [ C563394A9E4F6A666CC663FDF03A7B05 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
08:29:39.0652 5060 CnxtHdAudService - ok
08:29:39.0655 5060 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
08:29:39.0656 5060 Compbatt - ok
08:29:39.0658 5060 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
08:29:39.0659 5060 CompositeBus - ok
08:29:39.0661 5060 COMSysApp - ok
08:29:39.0664 5060 CoordinatorServiceHost - ok
08:29:39.0700 5060 [ F08C6020E57F5E5BF2FD034DB10BEDFB ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
08:29:39.0702 5060 cphs - ok
08:29:39.0704 5060 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
08:29:39.0705 5060 crcdisk - ok
08:29:39.0710 5060 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
08:29:39.0712 5060 CryptSvc - ok
08:29:39.0717 5060 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
08:29:39.0718 5060 CtClsFlt - ok
08:29:39.0722 5060 [ 9A59DF2CA690019FEA3B265D5A7EB619 ] CxUtilSvc C:\Program Files\Conexant\SA3\CxUtilSvc.exe
08:29:39.0723 5060 CxUtilSvc - ok
08:29:39.0733 5060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
08:29:39.0736 5060 DcomLaunch - ok
08:29:39.0742 5060 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
08:29:39.0745 5060 defragsvc - ok
08:29:39.0750 5060 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
08:29:39.0750 5060 DfsC - ok
08:29:39.0757 5060 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
08:29:39.0761 5060 Dhcp - ok
08:29:39.0764 5060 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
08:29:39.0764 5060 discache - ok
08:29:39.0767 5060 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
08:29:39.0768 5060 Disk - ok
08:29:39.0773 5060 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
08:29:39.0776 5060 Dnscache - ok
08:29:39.0783 5060 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
08:29:39.0786 5060 dot3svc - ok
08:29:39.0791 5060 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
08:29:39.0794 5060 DPS - ok
08:29:39.0796 5060 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
08:29:39.0797 5060 drmkaud - ok
08:29:39.0803 5060 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
08:29:39.0805 5060 dtsoftbus01 - ok
08:29:39.0819 5060 [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
08:29:39.0824 5060 DXGKrnl - ok
08:29:39.0829 5060 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
08:29:39.0831 5060 EapHost - ok
08:29:39.0869 5060 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
08:29:39.0885 5060 ebdrv - ok
08:29:39.0889 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS C:\Windows\System32\lsass.exe
08:29:39.0889 5060 EFS - ok
08:29:39.0895 5060 [ 712FF10F0811B13A86475902A1109321 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
08:29:39.0896 5060 EgisTec Ticket Service - ok
08:29:39.0906 5060 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
08:29:39.0909 5060 ehRecvr - ok
08:29:39.0912 5060 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
08:29:39.0913 5060 ehSched - ok
08:29:39.0923 5060 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
08:29:39.0926 5060 elxstor - ok
08:29:39.0928 5060 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
08:29:39.0929 5060 ErrDev - ok
08:29:39.0934 5060 [ F37415F77CDD8AFD4F611BC125764C9E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
08:29:39.0936 5060 ETD - ok
08:29:39.0945 5060 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
08:29:39.0947 5060 EventSystem - ok
08:29:39.0958 5060 [ 00B132F23AA25DEF2060D490B0AB70EF ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
08:29:39.0961 5060 EvtEng - ok
08:29:39.0965 5060 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
08:29:39.0966 5060 exfat - ok
08:29:39.0971 5060 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
08:29:39.0972 5060 fastfat - ok
08:29:39.0983 5060 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
08:29:39.0986 5060 Fax - ok
08:29:39.0989 5060 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
08:29:39.0989 5060 fdc - ok
08:29:39.0992 5060 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
08:29:39.0993 5060 fdPHost - ok
08:29:39.0996 5060 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
08:29:39.0997 5060 FDResPub - ok
08:29:40.0000 5060 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
08:29:40.0000 5060 FileInfo - ok
08:29:40.0003 5060 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
08:29:40.0003 5060 Filetrace - ok
08:29:40.0016 5060 [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:29:40.0021 5060 FLEXnet Licensing Service - ok
08:29:40.0038 5060 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
08:29:40.0045 5060 FLEXnet Licensing Service 64 - ok
08:29:40.0048 5060 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
08:29:40.0048 5060 flpydisk - ok
08:29:40.0054 5060 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
08:29:40.0055 5060 FltMgr - ok
08:29:40.0061 5060 [ B8AFE7A30D34C0E9FDBA81632294547C ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
08:29:40.0062 5060 fltsrv - ok
08:29:40.0076 5060 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
08:29:40.0086 5060 FontCache - ok
08:29:40.0090 5060 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:29:40.0090 5060 FontCache3.0.0.0 - ok
08:29:40.0093 5060 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
08:29:40.0093 5060 FsDepends - ok
08:29:40.0096 5060 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
08:29:40.0097 5060 Fs_Rec - ok
08:29:40.0102 5060 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
08:29:40.0103 5060 fvevol - ok
08:29:40.0106 5060 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
08:29:40.0106 5060 gagp30kx - ok
08:29:40.0111 5060 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:29:40.0111 5060 GEARAspiWDM - ok
08:29:40.0121 5060 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
08:29:40.0129 5060 gpsvc - ok
08:29:40.0133 5060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:29:40.0134 5060 gupdate - ok
08:29:40.0137 5060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:29:40.0138 5060 gupdatem - ok
08:29:40.0141 5060 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
08:29:40.0141 5060 hcw85cir - ok
08:29:40.0147 5060 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:29:40.0148 5060 HdAudAddService - ok
08:29:40.0152 5060 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
08:29:40.0153 5060 HDAudBus - ok
08:29:40.0155 5060 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
08:29:40.0156 5060 HidBatt - ok
08:29:40.0159 5060 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
08:29:40.0160 5060 HidBth - ok
08:29:40.0163 5060 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
08:29:40.0164 5060 HidIr - ok
08:29:40.0167 5060 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
08:29:40.0168 5060 hidserv - ok
08:29:40.0171 5060 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
08:29:40.0171 5060 HidUsb - ok
08:29:40.0175 5060 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
08:29:40.0177 5060 hkmsvc - ok
08:29:40.0182 5060 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:29:40.0186 5060 HomeGroupListener - ok
08:29:40.0191 5060 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:29:40.0193 5060 HomeGroupProvider - ok
08:29:40.0197 5060 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
08:29:40.0197 5060 HpSAMD - ok
08:29:40.0207 5060 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
08:29:40.0210 5060 HTTP - ok
08:29:40.0213 5060 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
08:29:40.0213 5060 hwpolicy - ok
08:29:40.0216 5060 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
08:29:40.0217 5060 i8042prt - ok
08:29:40.0226 5060 [ AE0C5DF7E7DA3E7AC29B64CFA8C4F044 ] iaStorA C:\Windows\system32\DRIVERS\iaStorA.sys
08:29:40.0229 5060 iaStorA - ok
08:29:40.0234 5060 [ 777788D9B63CCEEEF2DB353BA4EDD454 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
08:29:40.0234 5060 IAStorDataMgrSvc - ok
08:29:40.0237 5060 [ 711241EA1BA9DB44F34D03D2AD00ED08 ] iaStorF C:\Windows\system32\DRIVERS\iaStorF.sys
08:29:40.0238 5060 iaStorF - ok
08:29:40.0245 5060 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
08:29:40.0247 5060 iaStorV - ok
08:29:40.0275 5060 [ 829EA5ECCAA623279D94EAEE3B5AD140 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
08:29:40.0288 5060 IconMan_R - ok
08:29:40.0299 5060 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:29:40.0304 5060 idsvc - ok
08:29:40.0307 5060 IEEtwCollectorService - ok
08:29:40.0311 5060 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
08:29:40.0311 5060 iirsp - ok
08:29:40.0322 5060 [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT C:\Windows\System32\ikeext.dll
08:29:40.0331 5060 IKEEXT - ok
08:29:40.0338 5060 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
08:29:40.0339 5060 IntcDAud - ok
08:29:40.0349 5060 [ 7C76466F4E0F76CE259C6005D161E9E8 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
08:29:40.0353 5060 Intel(R) Capability Licensing Service Interface - ok
08:29:40.0356 5060 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
08:29:40.0356 5060 intelide - ok
08:29:40.0524 5060 [ 371D7F91C0D2314EB984A4A6CBEABC92 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
08:29:40.0610 5060 intelkmd - ok
08:29:40.0616 5060 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
08:29:40.0617 5060 intelppm - ok
08:29:40.0620 5060 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
08:29:40.0622 5060 IPBusEnum - ok
08:29:40.0625 5060 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:29:40.0626 5060 IpFilterDriver - ok
08:29:40.0634 5060 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
08:29:40.0639 5060 iphlpsvc - ok
08:29:40.0642 5060 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
08:29:40.0642 5060 IPMIDRV - ok
08:29:40.0646 5060 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
08:29:40.0646 5060 IPNAT - ok
08:29:40.0649 5060 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
08:29:40.0650 5060 IRENUM - ok
08:29:40.0652 5060 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
08:29:40.0652 5060 isapnp - ok
08:29:40.0658 5060 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
08:29:40.0660 5060 iScsiPrt - ok
08:29:40.0662 5060 [ 7A4D015FF432645C55C162DADAEA143E ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
08:29:40.0663 5060 iusb3hcs - ok
08:29:40.0669 5060 [ 5D6164479F6F900ACD287FDC6935532E ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
08:29:40.0670 5060 iusb3hub - ok
08:29:40.0681 5060 [ 9F5687C7EFA906E4F33586D393F7C257 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
08:29:40.0684 5060 iusb3xhc - ok
08:29:40.0689 5060 [ D22982C269775BCBDDA8A0F82A9ADE9E ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
08:29:40.0690 5060 jhi_service - ok
08:29:40.0693 5060 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
08:29:40.0694 5060 kbdclass - ok
08:29:40.0696 5060 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
08:29:40.0697 5060 kbdhid - ok
08:29:40.0699 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso C:\Windows\system32\lsass.exe
08:29:40.0700 5060 KeyIso - ok
08:29:40.0704 5060 [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
08:29:40.0704 5060 KSecDD - ok
08:29:40.0708 5060 [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
08:29:40.0709 5060 KSecPkg - ok
08:29:40.0712 5060 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
08:29:40.0712 5060 ksthunk - ok
08:29:40.0718 5060 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
08:29:40.0723 5060 KtmRm - ok
08:29:40.0728 5060 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
08:29:40.0731 5060 LanmanServer - ok
08:29:40.0735 5060 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:29:40.0738 5060 LanmanWorkstation - ok
08:29:40.0741 5060 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
08:29:40.0742 5060 lltdio - ok
08:29:40.0748 5060 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
08:29:40.0752 5060 lltdsvc - ok
08:29:40.0754 5060 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
08:29:40.0756 5060 lmhosts - ok
08:29:40.0761 5060 [ 5C08357C65F658E29B5DDC2EF18D575C ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
08:29:40.0762 5060 LMS - ok
08:29:40.0766 5060 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
08:29:40.0767 5060 LSI_FC - ok
08:29:40.0771 5060 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
08:29:40.0771 5060 LSI_SAS - ok
08:29:40.0774 5060 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
08:29:40.0775 5060 LSI_SAS2 - ok
08:29:40.0778 5060 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
08:29:40.0779 5060 LSI_SCSI - ok
08:29:40.0782 5060 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
08:29:40.0783 5060 luafv - ok
08:29:40.0786 5060 [ 5C3FF68267A5D242EE79EE01B993D6CE ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys
08:29:40.0786 5060 LVUSBS64 - ok
08:29:40.0789 5060 [ D7F57860E779B84AB982E8F4F23E30D1 ] massfilter_hs C:\Windows\system32\drivers\massfilter_hs.sys
08:29:40.0790 5060 massfilter_hs - ok
08:29:40.0793 5060 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
08:29:40.0793 5060 MBAMProtector - ok
08:29:40.0795 5060 MBAMScheduler - ok
08:29:40.0798 5060 MBAMService - ok
08:29:40.0802 5060 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
08:29:40.0805 5060 Mcx2Svc - ok
08:29:40.0808 5060 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
08:29:40.0808 5060 megasas - ok
08:29:40.0814 5060 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
08:29:40.0815 5060 MegaSR - ok
08:29:40.0818 5060 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
08:29:40.0819 5060 MEIx64 - ok
08:29:40.0822 5060 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
08:29:40.0824 5060 MMCSS - ok
08:29:40.0826 5060 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
08:29:40.0827 5060 Modem - ok
08:29:40.0829 5060 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
08:29:40.0830 5060 monitor - ok
08:29:40.0832 5060 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
08:29:40.0833 5060 mouclass - ok
08:29:40.0836 5060 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
08:29:40.0836 5060 mouhid - ok
08:29:40.0840 5060 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
08:29:40.0840 5060 mountmgr - ok
08:29:40.0844 5060 [ AEE4E9CC59CDEB55B1ECB0E596E796BE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:29:40.0845 5060 MozillaMaintenance - ok
08:29:40.0851 5060 [ C6B88D62F20AC646C6BD5C032EC2FAF9 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
08:29:40.0852 5060 MpFilter - ok
08:29:40.0857 5060 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
08:29:40.0857 5060 mpio - ok
08:29:40.0861 5060 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
08:29:40.0862 5060 mpsdrv - ok
08:29:40.0873 5060 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
08:29:40.0882 5060 MpsSvc - ok
08:29:40.0885 5060 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
08:29:40.0886 5060 MRxDAV - ok
08:29:40.0890 5060 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
08:29:40.0891 5060 mrxsmb - ok
08:29:40.0897 5060 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:29:40.0899 5060 mrxsmb10 - ok
08:29:40.0902 5060 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:29:40.0903 5060 mrxsmb20 - ok
08:29:40.0906 5060 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
08:29:40.0906 5060 msahci - ok
08:29:40.0911 5060 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
08:29:40.0912 5060 msdsm - ok
08:29:40.0916 5060 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
08:29:40.0917 5060 MSDTC - ok
08:29:40.0921 5060 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
08:29:40.0922 5060 Msfs - ok
08:29:40.0924 5060 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
08:29:40.0924 5060 mshidkmdf - ok
08:29:40.0927 5060 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
08:29:40.0927 5060 msisadrv - ok
08:29:40.0931 5060 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
08:29:40.0934 5060 MSiSCSI - ok
08:29:40.0936 5060 msiserver - ok
08:29:40.0939 5060 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
08:29:40.0940 5060 MSKSSRV - ok
08:29:40.0943 5060 [ 7675E15D1B2180745E4DA4D26AAD7385 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
08:29:40.0943 5060 MsMpSvc - ok
08:29:40.0946 5060 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
08:29:40.0946 5060 MSPCLOCK - ok
08:29:40.0948 5060 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
08:29:40.0949 5060 MSPQM - ok
08:29:40.0955 5060 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
08:29:40.0957 5060 MsRPC - ok
08:29:40.0961 5060 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
08:29:40.0961 5060 mssmbios - ok
08:29:40.0963 5060 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
08:29:40.0963 5060 MSTEE - ok
08:29:40.0966 5060 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
08:29:40.0966 5060 MTConfig - ok
08:29:40.0969 5060 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
08:29:40.0969 5060 Mup - ok
08:29:40.0972 5060 [ C009123B206C56854F4E88596035231D ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
08:29:40.0972 5060 mwlPSDFilter - ok
08:29:40.0975 5060 [ BF3739EEB9F008B1DEBAC115089A53F8 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
08:29:40.0975 5060 mwlPSDNServ - ok
08:29:40.0978 5060 [ 38DD143D95E7A01B86F219DDA9C28779 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
08:29:40.0979 5060 mwlPSDVDisk - ok
08:29:40.0984 5060 [ 74E1E62819D33F176821ADC9AFF8A3E7 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
08:29:40.0985 5060 MyWiFiDHCPDNS - ok
08:29:40.0993 5060 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
08:29:40.0998 5060 napagent - ok
08:29:41.0005 5060 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
08:29:41.0007 5060 NativeWifiP - ok
08:29:41.0020 5060 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
08:29:41.0025 5060 NDIS - ok
08:29:41.0028 5060 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
08:29:41.0029 5060 NdisCap - ok
08:29:41.0031 5060 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
08:29:41.0032 5060 NdisTapi - ok
08:29:41.0035 5060 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
08:29:41.0035 5060 Ndisuio - ok
08:29:41.0039 5060 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
08:29:41.0040 5060 NdisWan - ok
08:29:41.0043 5060 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
08:29:41.0044 5060 NDProxy - ok
08:29:41.0047 5060 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
08:29:41.0047 5060 NetBIOS - ok
08:29:41.0053 5060 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
08:29:41.0054 5060 NetBT - ok
08:29:41.0057 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon C:\Windows\system32\lsass.exe
08:29:41.0058 5060 Netlogon - ok
08:29:41.0065 5060 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
08:29:41.0070 5060 Netman - ok
08:29:41.0079 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0082 5060 NetMsmqActivator - ok
08:29:41.0085 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0086 5060 NetPipeActivator - ok
08:29:41.0093 5060 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
08:29:41.0096 5060 netprofm - ok
08:29:41.0099 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0100 5060 NetTcpActivator - ok
08:29:41.0102 5060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:29:41.0103 5060 NetTcpPortSharing - ok
08:29:41.0263 5060 [ D39BFDCB570E9019831901AB1B8B4443 ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
08:29:41.0322 5060 NETwNs64 - ok
08:29:41.0352 5060 NEWDRIVER - ok
08:29:41.0356 5060 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
08:29:41.0356 5060 nfrd960 - ok
08:29:41.0360 5060 [ ACE8C64C57E4A711473C8BC10ADF692B ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
08:29:41.0361 5060 NisDrv - ok
08:29:41.0366 5060 [ 6247E8B31ED0A9D6BC5A26276E49BEB3 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
08:29:41.0368 5060 NisSrv - ok
08:29:41.0374 5060 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
08:29:41.0378 5060 NlaSvc - ok
08:29:41.0381 5060 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
08:29:41.0381 5060 Npfs - ok
08:29:41.0384 5060 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
08:29:41.0385 5060 nsi - ok
08:29:41.0388 5060 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
08:29:41.0388 5060 nsiproxy - ok
08:29:41.0408 5060 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
08:29:41.0415 5060 Ntfs - ok
08:29:41.0418 5060 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
08:29:41.0418 5060 Null - ok
08:29:41.0423 5060 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
08:29:41.0424 5060 nvraid - ok
08:29:41.0428 5060 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
08:29:41.0429 5060 nvstor - ok
08:29:41.0433 5060 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
08:29:41.0434 5060 nv_agp - ok
08:29:41.0443 5060 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:29:41.0445 5060 odserv - ok
08:29:41.0449 5060 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
08:29:41.0450 5060 ohci1394 - ok
08:29:41.0454 5060 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:29:41.0455 5060 ose - ok
08:29:41.0463 5060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
08:29:41.0468 5060 p2pimsvc - ok
08:29:41.0477 5060 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
08:29:41.0483 5060 p2psvc - ok
08:29:41.0486 5060 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
08:29:41.0487 5060 Parport - ok
08:29:41.0490 5060 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
08:29:41.0491 5060 partmgr - ok
08:29:41.0496 5060 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
08:29:41.0500 5060 PcaSvc - ok
08:29:41.0504 5060 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
08:29:41.0505 5060 pci - ok
08:29:41.0508 5060 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
08:29:41.0508 5060 pciide - ok
08:29:41.0513 5060 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
08:29:41.0514 5060 pcmcia - ok
08:29:41.0517 5060 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
08:29:41.0517 5060 pcw - ok
08:29:41.0527 5060 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
08:29:41.0530 5060 PEAUTH - ok
08:29:41.0534 5060 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
08:29:41.0535 5060 PerfHost - ok
08:29:41.0566 5060 [ 087A343DFC337F37723DD7912DE6B6CD ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS
08:29:41.0579 5060 PID_PEPI - ok
08:29:41.0599 5060 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
08:29:41.0614 5060 pla - ok
08:29:41.0622 5060 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
08:29:41.0627 5060 PlugPlay - ok
08:29:41.0632 5060 PnkBstrA - ok
08:29:41.0635 5060 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
08:29:41.0637 5060 PNRPAutoReg - ok
08:29:41.0644 5060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
08:29:41.0646 5060 PNRPsvc - ok
08:29:41.0656 5060 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
08:29:41.0662 5060 PolicyAgent - ok
08:29:41.0667 5060 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
08:29:41.0671 5060 Power - ok
08:29:41.0675 5060 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
08:29:41.0675 5060 PptpMiniport - ok
08:29:41.0678 5060 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
08:29:41.0679 5060 Processor - ok
08:29:41.0684 5060 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
08:29:41.0688 5060 ProfSvc - ok
08:29:41.0690 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\Windows\system32\lsass.exe
08:29:41.0691 5060 ProtectedStorage - ok
08:29:41.0695 5060 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
08:29:41.0696 5060 Psched - ok
08:29:41.0701 5060 [ 49493356A24A0C6D6B39C9014EAA62ED ] pwdrvio C:\Windows\system32\pwdrvio.sys
08:29:41.0702 5060 pwdrvio - ok
08:29:41.0706 5060 [ A179327A77C9D1867DB84058258A19DB ] pwdspio C:\Windows\system32\pwdspio.sys
08:29:41.0707 5060 pwdspio - ok
08:29:41.0729 5060 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
08:29:41.0737 5060 ql2300 - ok
08:29:41.0741 5060 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
08:29:41.0741 5060 ql40xx - ok
08:29:41.0747 5060 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
08:29:41.0751 5060 QWAVE - ok
08:29:41.0754 5060 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
08:29:41.0754 5060 QWAVEdrv - ok
08:29:41.0757 5060 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
08:29:41.0757 5060 RasAcd - ok
08:29:41.0760 5060 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
08:29:41.0761 5060 RasAgileVpn - ok
08:29:41.0764 5060 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
08:29:41.0766 5060 RasAuto - ok
08:29:41.0770 5060 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
08:29:41.0771 5060 Rasl2tp - ok
08:29:41.0777 5060 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
08:29:41.0782 5060 RasMan - ok
08:29:41.0785 5060 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
08:29:41.0785 5060 RasPppoe - ok
08:29:41.0789 5060 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
08:29:41.0789 5060 RasSstp - ok
08:29:41.0795 5060 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
08:29:41.0796 5060 rdbss - ok
08:29:41.0799 5060 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
08:29:41.0799 5060 rdpbus - ok
08:29:41.0802 5060 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
08:29:41.0802 5060 RDPCDD - ok
08:29:41.0806 5060 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
08:29:41.0806 5060 RDPENCDD - ok
08:29:41.0809 5060 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
08:29:41.0810 5060 RDPREFMP - ok
08:29:41.0814 5060 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
08:29:41.0815 5060 RDPWD - ok
08:29:41.0821 5060 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
08:29:41.0822 5060 rdyboost - ok
08:29:41.0827 5060 [ 5A118234A2251D6CFB8A11DFE7AC4B4A ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
08:29:41.0828 5060 RegSrvc - ok
08:29:41.0832 5060 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
08:29:41.0834 5060 RemoteAccess - ok
08:29:41.0840 5060 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
08:29:41.0844 5060 RemoteRegistry - ok
08:29:41.0849 5060 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
08:29:41.0850 5060 RFCOMM - ok
08:29:41.0853 5060 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
08:29:41.0856 5060 RpcEptMapper - ok
08:29:41.0858 5060 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
08:29:41.0859 5060 RpcLocator - ok
08:29:41.0868 5060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
08:29:41.0871 5060 RpcSs - ok
08:29:41.0875 5060 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
08:29:41.0876 5060 rspndr - ok
08:29:41.0883 5060 [ 46726EB52FDC7A141DE6780B09F3F729 ] RSUSBVSTOR C:\Windows\system32\Drivers\RtsUVStor.sys
08:29:41.0884 5060 RSUSBVSTOR - ok
08:29:41.0888 5060 [ 3208C73AE8E3B032DF1235B8F820CBBC ] rtcrfilt64 C:\Windows\system32\DRIVERS\rtcrfilt64.sys
08:29:41.0888 5060 rtcrfilt64 - ok
08:29:41.0893 5060 [ B88880586ACD3EDEFCD0F9C2A6C1EE27 ] RTL2832UBDA C:\Windows\system32\drivers\RTL2832UBDA.sys
08:29:41.0894 5060 RTL2832UBDA - ok
08:29:41.0901 5060 [ 4C04300EE6A5E780FD4E2F0806AECA0E ] RTL2832UUSB C:\Windows\system32\Drivers\RTL2832UUSB.sys
08:29:41.0901 5060 RTL2832UUSB - ok
08:29:41.0911 5060 [ C5CD940EFFADE1F6246730BCA14E9FE6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
08:29:41.0914 5060 RTL8167 - ok
08:29:41.0916 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs C:\Windows\system32\lsass.exe
08:29:41.0917 5060 SamSs - ok
08:29:41.0921 5060 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
08:29:41.0921 5060 sbp2port - ok
08:29:41.0926 5060 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
08:29:41.0929 5060 SCardSvr - ok
08:29:41.0932 5060 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
08:29:41.0933 5060 scfilter - ok
08:29:41.0949 5060 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
08:29:41.0963 5060 Schedule - ok
08:29:41.0967 5060 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
08:29:41.0967 5060 SCPolicySvc - ok
08:29:41.0971 5060 [ 8B56BDCE6A303DDE63D63440D1CF9AD1 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
08:29:41.0972 5060 ScreamBAudioSvc - ok
08:29:41.0977 5060 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
08:29:41.0980 5060 SDRSVC - ok
08:29:41.0983 5060 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
08:29:41.0984 5060 secdrv - ok
08:29:41.0987 5060 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
08:29:41.0989 5060 seclogon - ok
08:29:41.0993 5060 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
08:29:41.0994 5060 SENS - ok
08:29:41.0998 5060 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
08:29:42.0000 5060 SensrSvc - ok
08:29:42.0002 5060 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
08:29:42.0003 5060 Serenum - ok
08:29:42.0006 5060 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
08:29:42.0007 5060 Serial - ok
08:29:42.0010 5060 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
08:29:42.0010 5060 sermouse - ok
08:29:42.0018 5060 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
08:29:42.0020 5060 SessionEnv - ok
08:29:42.0023 5060 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
08:29:42.0023 5060 sffdisk - ok
08:29:42.0026 5060 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
08:29:42.0026 5060 sffp_mmc - ok
08:29:42.0029 5060 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
08:29:42.0029 5060 sffp_sd - ok
08:29:42.0032 5060 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
08:29:42.0032 5060 sfloppy - ok
08:29:42.0039 5060 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
08:29:42.0044 5060 SharedAccess - ok
08:29:42.0051 5060 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:29:42.0056 5060 ShellHWDetection - ok
08:29:42.0059 5060 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
08:29:42.0060 5060 SiSRaid2 - ok
08:29:42.0063 5060 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
08:29:42.0064 5060 SiSRaid4 - ok
08:29:42.0066 5060 SkypeUpdate - ok
08:29:42.0070 5060 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
08:29:42.0071 5060 Smb - ok
08:29:42.0076 5060 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
08:29:42.0077 5060 SNMPTRAP - ok
08:29:42.0082 5060 [ 4945020BC094C322571184A6E8056B3A ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
08:29:42.0083 5060 SolidWorks Licensing Service - ok
08:29:42.0088 5060 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
08:29:42.0088 5060 speedfan - ok
08:29:42.0091 5060 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
08:29:42.0092 5060 spldr - ok
08:29:42.0100 5060 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
08:29:42.0104 5060 Spooler - ok
08:29:42.0169 5060 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
08:29:42.0198 5060 sppsvc - ok
08:29:42.0204 5060 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
08:29:42.0206 5060 sppuinotify - ok
08:29:42.0214 5060 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
08:29:42.0217 5060 srv - ok
08:29:42.0226 5060 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
08:29:42.0228 5060 srv2 - ok
08:29:42.0234 5060 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
08:29:42.0235 5060 srvnet - ok
08:29:42.0241 5060 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
08:29:42.0245 5060 SSDPSRV - ok
08:29:42.0249 5060 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
08:29:42.0252 5060 SstpSvc - ok
08:29:42.0256 5060 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
08:29:42.0256 5060 stexstor - ok
08:29:42.0267 5060 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
08:29:42.0275 5060 stisvc - ok
08:29:42.0279 5060 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
08:29:42.0279 5060 swenum - ok
08:29:42.0290 5060 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
08:29:42.0293 5060 SwitchBoard - ok
08:29:42.0303 5060 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
08:29:42.0310 5060 swprv - ok
08:29:42.0338 5060 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
08:29:42.0358 5060 SysMain - ok
08:29:42.0362 5060 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:29:42.0366 5060 TabletInputService - ok
08:29:42.0373 5060 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
08:29:42.0379 5060 TapiSrv - ok
08:29:42.0383 5060 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
08:29:42.0385 5060 TBS - ok
08:29:42.0410 5060 [ 40AF23633D197905F03AB5628C558C51 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
08:29:42.0424 5060 Tcpip - ok
08:29:42.0450 5060 [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
08:29:42.0463 5060 TCPIP6 - ok
08:29:42.0468 5060 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
08:29:42.0469 5060 tcpipreg - ok
08:29:42.0474 5060 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
08:29:42.0474 5060 TDPIPE - ok
08:29:42.0478 5060 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
08:29:42.0478 5060 TDTCP - ok
08:29:42.0482 5060 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
08:29:42.0484 5060 tdx - ok
08:29:42.0486 5060 TeamViewer9 - ok
08:29:42.0491 5060 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
08:29:42.0492 5060 TermDD - ok
08:29:42.0503 5060 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
08:29:42.0512 5060 TermService - ok
08:29:42.0517 5060 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
08:29:42.0519 5060 Themes - ok
08:29:42.0523 5060 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
08:29:42.0525 5060 THREADORDER - ok
08:29:42.0529 5060 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
08:29:42.0532 5060 TrkWks - ok
08:29:42.0538 5060 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:29:42.0539 5060 TrustedInstaller - ok
08:29:42.0544 5060 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
08:29:42.0545 5060 tssecsrv - ok
08:29:42.0549 5060 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
08:29:42.0550 5060 TsUsbFlt - ok
08:29:42.0553 5060 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
08:29:42.0554 5060 TsUsbGD - ok
08:29:42.0559 5060 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
08:29:42.0560 5060 tunnel - ok
Re: BitCoin miner Kontrola logu
08:29:42.0563 5060 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
08:29:42.0564 5060 uagp35 - ok
08:29:42.0571 5060 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:29:42.0574 5060 udfs - ok
08:29:42.0580 5060 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:29:42.0582 5060 UI0Detect - ok
08:29:42.0586 5060 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:29:42.0587 5060 uliagpkx - ok
08:29:42.0591 5060 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:29:42.0592 5060 umbus - ok
08:29:42.0595 5060 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
08:29:42.0596 5060 UmPass - ok
08:29:42.0604 5060 [ 0DFC9713D117B349E41A2A477448107A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
08:29:42.0607 5060 UNS - ok
08:29:42.0615 5060 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:29:42.0621 5060 upnphost - ok
08:29:42.0626 5060 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
08:29:42.0628 5060 usbaudio - ok
08:29:42.0632 5060 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:29:42.0633 5060 usbccgp - ok
08:29:42.0637 5060 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:29:42.0638 5060 usbcir - ok
08:29:42.0643 5060 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\drivers\usbehci.sys
08:29:42.0643 5060 usbehci - ok
08:29:42.0651 5060 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:29:42.0653 5060 usbhub - ok
08:29:42.0657 5060 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:29:42.0657 5060 usbohci - ok
08:29:42.0661 5060 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
08:29:42.0662 5060 usbprint - ok
08:29:42.0666 5060 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:29:42.0667 5060 USBSTOR - ok
08:29:42.0670 5060 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:29:42.0671 5060 usbuhci - ok
08:29:42.0678 5060 [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
08:29:42.0679 5060 usbvideo - ok
08:29:42.0683 5060 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:29:42.0685 5060 UxSms - ok
08:29:42.0689 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
08:29:42.0690 5060 VaultSvc - ok
08:29:42.0697 5060 [ 8DB40EB504AE9C10558675035B4B4A4A ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
08:29:42.0699 5060 VBoxDrv - ok
08:29:42.0704 5060 [ 9C24F61B36E7305AC42DC41881A2C97C ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
08:29:42.0706 5060 VBoxNetAdp - ok
08:29:42.0711 5060 [ 4B3B9912BBA05473BE94E61334971858 ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
08:29:42.0712 5060 VBoxNetFlt - ok
08:29:42.0717 5060 [ B0EF7DC7C779C5B53F9E38D7261751E5 ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
08:29:42.0718 5060 VBoxUSB - ok
08:29:42.0722 5060 [ 3A4B01C2BDB07DFEF29B0B369487503A ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
08:29:42.0723 5060 VCSVADHWSer - ok
08:29:42.0726 5060 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:29:42.0727 5060 vdrvroot - ok
08:29:42.0737 5060 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:29:42.0742 5060 vds - ok
08:29:42.0746 5060 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:29:42.0746 5060 vga - ok
08:29:42.0750 5060 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:29:42.0750 5060 VgaSave - ok
08:29:42.0757 5060 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
08:29:42.0758 5060 vhdmp - ok
08:29:42.0762 5060 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:29:42.0763 5060 viaide - ok
08:29:42.0767 5060 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:29:42.0768 5060 volmgr - ok
08:29:42.0776 5060 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:29:42.0778 5060 volmgrx - ok
08:29:42.0785 5060 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:29:42.0787 5060 volsnap - ok
08:29:42.0793 5060 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
08:29:42.0794 5060 vpcbus - ok
08:29:42.0799 5060 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
08:29:42.0800 5060 vpcusb - ok
08:29:42.0805 5060 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:29:42.0806 5060 vsmraid - ok
08:29:42.0832 5060 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:29:42.0843 5060 VSS - ok
08:29:42.0847 5060 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
08:29:42.0847 5060 vwifibus - ok
08:29:42.0852 5060 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:29:42.0852 5060 vwififlt - ok
08:29:42.0857 5060 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
08:29:42.0857 5060 vwifimp - ok
08:29:42.0866 5060 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:29:42.0873 5060 W32Time - ok
08:29:42.0878 5060 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:29:42.0878 5060 WacomPen - ok
08:29:42.0883 5060 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:29:42.0884 5060 WANARP - ok
08:29:42.0887 5060 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:29:42.0888 5060 Wanarpv6 - ok
08:29:42.0908 5060 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
08:29:42.0915 5060 WatAdminSvc - ok
08:29:42.0938 5060 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:29:42.0948 5060 wbengine - ok
08:29:42.0955 5060 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:29:42.0959 5060 WbioSrvc - ok
08:29:42.0967 5060 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:29:42.0973 5060 wcncsvc - ok
08:29:42.0977 5060 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:29:42.0979 5060 WcsPlugInService - ok
08:29:42.0983 5060 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
08:29:42.0984 5060 Wd - ok
08:29:42.0997 5060 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:29:43.0001 5060 Wdf01000 - ok
08:29:43.0006 5060 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:29:43.0009 5060 WdiServiceHost - ok
08:29:43.0013 5060 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:29:43.0015 5060 WdiSystemHost - ok
08:29:43.0023 5060 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:29:43.0029 5060 WebClient - ok
08:29:43.0035 5060 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:29:43.0040 5060 Wecsvc - ok
08:29:43.0045 5060 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:29:43.0047 5060 wercplsupport - ok
08:29:43.0052 5060 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:29:43.0055 5060 WerSvc - ok
08:29:43.0058 5060 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:29:43.0059 5060 WfpLwf - ok
08:29:43.0063 5060 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:29:43.0063 5060 WIMMount - ok
08:29:43.0066 5060 WinDefend - ok
08:29:43.0072 5060 WinHttpAutoProxySvc - ok
08:29:43.0083 5060 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:29:43.0085 5060 Winmgmt - ok
08:29:43.0116 5060 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:29:43.0143 5060 WinRM - ok
08:29:43.0152 5060 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
08:29:43.0152 5060 WinUsb - ok
08:29:43.0170 5060 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:29:43.0184 5060 Wlansvc - ok
08:29:43.0187 5060 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
08:29:43.0187 5060 WmiAcpi - ok
08:29:43.0194 5060 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:29:43.0196 5060 wmiApSrv - ok
08:29:43.0199 5060 WMPNetworkSvc - ok
08:29:43.0203 5060 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:29:43.0206 5060 WPCSvc - ok
08:29:43.0210 5060 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:29:43.0214 5060 WPDBusEnum - ok
08:29:43.0218 5060 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:29:43.0219 5060 ws2ifsl - ok
08:29:43.0223 5060 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
08:29:43.0226 5060 wscsvc - ok
08:29:43.0229 5060 WSearch - ok
08:29:43.0266 5060 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:29:43.0293 5060 wuauserv - ok
08:29:43.0298 5060 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:29:43.0299 5060 WudfPf - ok
08:29:43.0306 5060 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:29:43.0308 5060 WUDFRd - ok
08:29:43.0312 5060 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:29:43.0315 5060 wudfsvc - ok
08:29:43.0321 5060 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
08:29:43.0327 5060 WwanSvc - ok
08:29:43.0377 5060 [ A923222A8437E6C419AFC1A3BE32FF47 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
08:29:43.0399 5060 ZeroConfigService - ok
08:29:43.0408 5060 ================ Scan global ===============================
08:29:43.0411 5060 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:29:43.0416 5060 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
08:29:43.0423 5060 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
08:29:43.0427 5060 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:29:43.0435 5060 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:29:43.0437 5060 [Global] - ok
08:29:43.0438 5060 ================ Scan MBR ==================================
08:29:43.0440 5060 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
08:29:43.0444 5060 \Device\Harddisk0\DR0 - ok
08:29:43.0446 5060 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
08:29:43.0555 5060 \Device\Harddisk1\DR1 - ok
08:29:43.0562 5060 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
08:29:52.0775 5060 \Device\Harddisk2\DR2 - ok
08:29:52.0775 5060 ================ Scan VBR ==================================
08:29:52.0780 5060 [ 56B41A7457E4F27904F6D7EDE9405F58 ] \Device\Harddisk1\DR1\Partition1
08:29:52.0782 5060 \Device\Harddisk1\DR1\Partition1 - ok
08:29:52.0785 5060 [ C2FA5A28DA1298B41AFA33646548BDD9 ] \Device\Harddisk1\DR1\Partition2
08:29:52.0787 5060 \Device\Harddisk1\DR1\Partition2 - ok
08:29:52.0792 5060 [ AB8A5EE6C5B85CADF2E47E7D089B6EED ] \Device\Harddisk2\DR2\Partition1
08:29:52.0793 5060 \Device\Harddisk2\DR2\Partition1 - ok
08:29:52.0794 5060 ============================================================
08:29:52.0794 5060 Scan finished
08:29:52.0794 5060 ============================================================
08:29:52.0805 1844 Detected object count: 0
08:29:52.0805 1844 Actual detected object count: 0
08:30:05.0174 2868 Deinitialize success
08:29:42.0564 5060 uagp35 - ok
08:29:42.0571 5060 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
08:29:42.0574 5060 udfs - ok
08:29:42.0580 5060 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
08:29:42.0582 5060 UI0Detect - ok
08:29:42.0586 5060 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
08:29:42.0587 5060 uliagpkx - ok
08:29:42.0591 5060 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
08:29:42.0592 5060 umbus - ok
08:29:42.0595 5060 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
08:29:42.0596 5060 UmPass - ok
08:29:42.0604 5060 [ 0DFC9713D117B349E41A2A477448107A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
08:29:42.0607 5060 UNS - ok
08:29:42.0615 5060 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
08:29:42.0621 5060 upnphost - ok
08:29:42.0626 5060 [ B0435098C81D04CAFFF80DDB746CD3A2 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
08:29:42.0628 5060 usbaudio - ok
08:29:42.0632 5060 [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
08:29:42.0633 5060 usbccgp - ok
08:29:42.0637 5060 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir C:\Windows\system32\drivers\usbcir.sys
08:29:42.0638 5060 usbcir - ok
08:29:42.0643 5060 [ 18A85013A3E0F7E1755365D287443965 ] usbehci C:\Windows\system32\drivers\usbehci.sys
08:29:42.0643 5060 usbehci - ok
08:29:42.0651 5060 [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
08:29:42.0653 5060 usbhub - ok
08:29:42.0657 5060 [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci C:\Windows\system32\drivers\usbohci.sys
08:29:42.0657 5060 usbohci - ok
08:29:42.0661 5060 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
08:29:42.0662 5060 usbprint - ok
08:29:42.0666 5060 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:29:42.0667 5060 USBSTOR - ok
08:29:42.0670 5060 [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
08:29:42.0671 5060 usbuhci - ok
08:29:42.0678 5060 [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
08:29:42.0679 5060 usbvideo - ok
08:29:42.0683 5060 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
08:29:42.0685 5060 UxSms - ok
08:29:42.0689 5060 [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc C:\Windows\system32\lsass.exe
08:29:42.0690 5060 VaultSvc - ok
08:29:42.0697 5060 [ 8DB40EB504AE9C10558675035B4B4A4A ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
08:29:42.0699 5060 VBoxDrv - ok
08:29:42.0704 5060 [ 9C24F61B36E7305AC42DC41881A2C97C ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
08:29:42.0706 5060 VBoxNetAdp - ok
08:29:42.0711 5060 [ 4B3B9912BBA05473BE94E61334971858 ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
08:29:42.0712 5060 VBoxNetFlt - ok
08:29:42.0717 5060 [ B0EF7DC7C779C5B53F9E38D7261751E5 ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
08:29:42.0718 5060 VBoxUSB - ok
08:29:42.0722 5060 [ 3A4B01C2BDB07DFEF29B0B369487503A ] VCSVADHWSer C:\Windows\system32\DRIVERS\vcsvad.sys
08:29:42.0723 5060 VCSVADHWSer - ok
08:29:42.0726 5060 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
08:29:42.0727 5060 vdrvroot - ok
08:29:42.0737 5060 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
08:29:42.0742 5060 vds - ok
08:29:42.0746 5060 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
08:29:42.0746 5060 vga - ok
08:29:42.0750 5060 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
08:29:42.0750 5060 VgaSave - ok
08:29:42.0757 5060 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
08:29:42.0758 5060 vhdmp - ok
08:29:42.0762 5060 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
08:29:42.0763 5060 viaide - ok
08:29:42.0767 5060 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
08:29:42.0768 5060 volmgr - ok
08:29:42.0776 5060 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
08:29:42.0778 5060 volmgrx - ok
08:29:42.0785 5060 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
08:29:42.0787 5060 volsnap - ok
08:29:42.0793 5060 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
08:29:42.0794 5060 vpcbus - ok
08:29:42.0799 5060 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
08:29:42.0800 5060 vpcusb - ok
08:29:42.0805 5060 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
08:29:42.0806 5060 vsmraid - ok
08:29:42.0832 5060 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
08:29:42.0843 5060 VSS - ok
08:29:42.0847 5060 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
08:29:42.0847 5060 vwifibus - ok
08:29:42.0852 5060 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
08:29:42.0852 5060 vwififlt - ok
08:29:42.0857 5060 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
08:29:42.0857 5060 vwifimp - ok
08:29:42.0866 5060 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
08:29:42.0873 5060 W32Time - ok
08:29:42.0878 5060 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
08:29:42.0878 5060 WacomPen - ok
08:29:42.0883 5060 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
08:29:42.0884 5060 WANARP - ok
08:29:42.0887 5060 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
08:29:42.0888 5060 Wanarpv6 - ok
08:29:42.0908 5060 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
08:29:42.0915 5060 WatAdminSvc - ok
08:29:42.0938 5060 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
08:29:42.0948 5060 wbengine - ok
08:29:42.0955 5060 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
08:29:42.0959 5060 WbioSrvc - ok
08:29:42.0967 5060 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
08:29:42.0973 5060 wcncsvc - ok
08:29:42.0977 5060 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:29:42.0979 5060 WcsPlugInService - ok
08:29:42.0983 5060 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
08:29:42.0984 5060 Wd - ok
08:29:42.0997 5060 [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
08:29:43.0001 5060 Wdf01000 - ok
08:29:43.0006 5060 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
08:29:43.0009 5060 WdiServiceHost - ok
08:29:43.0013 5060 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
08:29:43.0015 5060 WdiSystemHost - ok
08:29:43.0023 5060 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
08:29:43.0029 5060 WebClient - ok
08:29:43.0035 5060 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
08:29:43.0040 5060 Wecsvc - ok
08:29:43.0045 5060 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
08:29:43.0047 5060 wercplsupport - ok
08:29:43.0052 5060 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
08:29:43.0055 5060 WerSvc - ok
08:29:43.0058 5060 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
08:29:43.0059 5060 WfpLwf - ok
08:29:43.0063 5060 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
08:29:43.0063 5060 WIMMount - ok
08:29:43.0066 5060 WinDefend - ok
08:29:43.0072 5060 WinHttpAutoProxySvc - ok
08:29:43.0083 5060 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
08:29:43.0085 5060 Winmgmt - ok
08:29:43.0116 5060 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
08:29:43.0143 5060 WinRM - ok
08:29:43.0152 5060 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
08:29:43.0152 5060 WinUsb - ok
08:29:43.0170 5060 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
08:29:43.0184 5060 Wlansvc - ok
08:29:43.0187 5060 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
08:29:43.0187 5060 WmiAcpi - ok
08:29:43.0194 5060 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
08:29:43.0196 5060 wmiApSrv - ok
08:29:43.0199 5060 WMPNetworkSvc - ok
08:29:43.0203 5060 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
08:29:43.0206 5060 WPCSvc - ok
08:29:43.0210 5060 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
08:29:43.0214 5060 WPDBusEnum - ok
08:29:43.0218 5060 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
08:29:43.0219 5060 ws2ifsl - ok
08:29:43.0223 5060 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
08:29:43.0226 5060 wscsvc - ok
08:29:43.0229 5060 WSearch - ok
08:29:43.0266 5060 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
08:29:43.0293 5060 wuauserv - ok
08:29:43.0298 5060 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
08:29:43.0299 5060 WudfPf - ok
08:29:43.0306 5060 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
08:29:43.0308 5060 WUDFRd - ok
08:29:43.0312 5060 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
08:29:43.0315 5060 wudfsvc - ok
08:29:43.0321 5060 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
08:29:43.0327 5060 WwanSvc - ok
08:29:43.0377 5060 [ A923222A8437E6C419AFC1A3BE32FF47 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
08:29:43.0399 5060 ZeroConfigService - ok
08:29:43.0408 5060 ================ Scan global ===============================
08:29:43.0411 5060 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:29:43.0416 5060 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
08:29:43.0423 5060 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
08:29:43.0427 5060 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:29:43.0435 5060 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:29:43.0437 5060 [Global] - ok
08:29:43.0438 5060 ================ Scan MBR ==================================
08:29:43.0440 5060 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
08:29:43.0444 5060 \Device\Harddisk0\DR0 - ok
08:29:43.0446 5060 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
08:29:43.0555 5060 \Device\Harddisk1\DR1 - ok
08:29:43.0562 5060 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
08:29:52.0775 5060 \Device\Harddisk2\DR2 - ok
08:29:52.0775 5060 ================ Scan VBR ==================================
08:29:52.0780 5060 [ 56B41A7457E4F27904F6D7EDE9405F58 ] \Device\Harddisk1\DR1\Partition1
08:29:52.0782 5060 \Device\Harddisk1\DR1\Partition1 - ok
08:29:52.0785 5060 [ C2FA5A28DA1298B41AFA33646548BDD9 ] \Device\Harddisk1\DR1\Partition2
08:29:52.0787 5060 \Device\Harddisk1\DR1\Partition2 - ok
08:29:52.0792 5060 [ AB8A5EE6C5B85CADF2E47E7D089B6EED ] \Device\Harddisk2\DR2\Partition1
08:29:52.0793 5060 \Device\Harddisk2\DR2\Partition1 - ok
08:29:52.0794 5060 ============================================================
08:29:52.0794 5060 Scan finished
08:29:52.0794 5060 ============================================================
08:29:52.0805 1844 Detected object count: 0
08:29:52.0805 1844 Actual detected object count: 0
08:30:05.0174 2868 Deinitialize success
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: BitCoin miner Kontrola logu
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 98 hostů