Kontrola logu zavirovaný pc

[Aron]

Prosím o kontrolu logu. Protože včera přišel ke mě kamarád,který chtěl filmy na fles disk. Klikl jsem na nákou slošku na fles disku. A do počítače se mi dostalo skoro 1300 VIRU převážně trojany. Nešlo nic dělat s počítačem, ještě že sem měl v počítači Malwarebytes Anti-Malware. Počítač jsem projel kompletní kontrolou. Našlo to skoro 1300 VIRU které jsem odstranil. Po odstranění viru mi hlásil muj antivir AVAST další viry. Tak jsem je odstranil. Dneska přídu s práce a zase avast hlási viry tak jsem udělal AVASEM kompletní kontrolu a našlo to zas kolem 1200 nakažených souboru. Tak tady vám dávám log na kontrolu a byl bych rád kdyby jste mi pomohli počítač odvirovat děkuji.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:47:16, on 2.4.2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\stolní pc\Plocha\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - http://update.microsoft.com/microsoftup ... 7598223609
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

--
End of file - 2600 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Aron]

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Verze: v2014.04.02.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
stolní pc :: STOLNÍPC [administrátor]

Ochrana: Povolena

2.4.2014 18:12:08
mbam-log-2014-04-02 (18-12-08).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 283452
Uplynulý čas: 14 minut, 13 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[Aron]

# AdwCleaner v3.023 - Report created 02/04/2014 at 18:28:56
# Updated 01/04/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : stolní pc - STOLNÍPC
# Running from : C:\Documents and Settings\stolní pc\Plocha\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Google Chrome v33.0.1750.154

[ File : C:\Documents and Settings\stolní pc\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [853 octets] - [01/04/2014 22:26:10]
AdwCleaner[R1].txt - [774 octets] - [02/04/2014 18:28:56]
AdwCleaner[S0].txt - [915 octets] - [01/04/2014 22:29:17]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [892 octets] ##########

[jaro3]

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.


Stáhni si RogueKiller by Adlice Software
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

[Aron]

# AdwCleaner v3.023 - Report created 02/04/2014 at 19:25:53
# Updated 01/04/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : stolní pc - STOLNÍPC
# Running from : C:\Documents and Settings\stolní pc\Plocha\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Google Chrome v33.0.1750.154

[ File : C:\Documents and Settings\stolní pc\Local Settings\Data aplikací\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [853 octets] - [01/04/2014 22:26:10]
AdwCleaner[R1].txt - [971 octets] - [02/04/2014 18:28:56]
AdwCleaner[R2].txt - [1030 octets] - [02/04/2014 19:22:41]
AdwCleaner[S0].txt - [915 octets] - [01/04/2014 22:29:17]
AdwCleaner[S1].txt - [955 octets] - [02/04/2014 19:25:53]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1014 octets] ##########

[Aron]

CHtěl jsem dát kontrolu JRT ale vyskočila mi hláška Error systém nemuže najít uvedený soubor.

[jaro3]

Pokračuj s RogueKiller

[Aron]

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : stolní pc [Práva správce]
Mód : Kontrola -- Datum : 04/02/2014 19:43:46
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : atapi.sys -> HOOKED (prosync1.sys @ 0xF7D386C1)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST340014A +++++
--- User ---
[MBR] eb605af15fa21b0368960d016bd491e8
[BSP] d2039fccd679f5a414d69ae835f118a0 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 38164 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD1600JB-00GVC0 +++++
--- User ---
[MBR] 8aa037e442d9d9c21665db00058e0709
[BSP] 0ced2f7ad1ea336f37a2fe695ecf7dff : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 51999 MB
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 106494885 | Size: 100618 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_04022014_194346.txt >>

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

[Aron]

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Podpora : http://forum.adlice.com
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com

Operační systém : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Spuštěno v : Normální režim
Uživatel : stolní pc [Práva správce]
Mód : Odebrat -- Datum : 04/02/2014 19:52:30
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ POL][PUM] HKLM\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Browser Addons : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤
[Address] IRP[IRP_MJ_INTERNAL_DEVICE_CONTROL] : atapi.sys -> HOOKED (prosync1.sys @ 0xF7D386C1)

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts




¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST340014A +++++
--- User ---
[MBR] eb605af15fa21b0368960d016bd491e8
[BSP] d2039fccd679f5a414d69ae835f118a0 : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 38164 MB
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) WDC WD1600JB-00GVC0 +++++
--- User ---
[MBR] 8aa037e442d9d9c21665db00058e0709
[BSP] 0ced2f7ad1ea336f37a2fe695ecf7dff : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 51999 MB
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 106494885 | Size: 100618 MB
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_04022014_195230.txt >>
RKreport[0]_S_04022014_195206.txt

[Aron]

19:57:04.0968 0x075c TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
19:57:09.0906 0x075c ============================================================
19:57:09.0906 0x075c Current date / time: 2014/04/02 19:57:09.0906
19:57:09.0906 0x075c SystemInfo:
19:57:09.0906 0x075c
19:57:09.0906 0x075c OS Version: 5.1.2600 ServicePack: 3.0
19:57:09.0906 0x075c Product type: Workstation
19:57:09.0906 0x075c ComputerName: STOLNÍPC
19:57:09.0906 0x075c UserName: stolní pc
19:57:09.0906 0x075c Windows directory: C:\WINDOWS
19:57:09.0906 0x075c System windows directory: C:\WINDOWS
19:57:09.0906 0x075c Processor architecture: Intel x86
19:57:09.0906 0x075c Number of processors: 1
19:57:09.0906 0x075c Page size: 0x1000
19:57:09.0906 0x075c Boot type: Normal boot
19:57:09.0906 0x075c ============================================================
19:57:11.0906 0x075c KLMD registered as C:\WINDOWS\system32\drivers\19697086.sys
19:57:12.0109 0x075c System UUID: {74B21F67-F527-7322-8867-DED4BA69A6CA}
19:57:13.0296 0x075c Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:57:13.0312 0x075c Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:57:13.0312 0x075c ============================================================
19:57:13.0312 0x075c \Device\Harddisk0\DR0:
19:57:13.0312 0x075c MBR partitions:
19:57:13.0312 0x075c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A8A000
19:57:13.0312 0x075c \Device\Harddisk1\DR1:
19:57:13.0312 0x075c MBR partitions:
19:57:13.0312 0x075c \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x658FB66
19:57:13.0328 0x075c \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x658FBE4, BlocksNum 0xC48501C
19:57:13.0328 0x075c ============================================================
19:57:13.0343 0x075c C: <-> \Device\Harddisk0\DR0\Partition1
19:57:13.0359 0x075c E: <-> \Device\Harddisk1\DR1\Partition1
19:57:13.0421 0x075c F: <-> \Device\Harddisk1\DR1\Partition2
19:57:13.0421 0x075c ============================================================
19:57:13.0421 0x075c Initialize success
19:57:13.0421 0x075c ============================================================
19:57:15.0718 0x0ce8 ============================================================
19:57:15.0718 0x0ce8 Scan started
19:57:15.0718 0x0ce8 Mode: Manual;
19:57:15.0718 0x0ce8 ============================================================
19:57:15.0718 0x0ce8 KSN ping started
19:57:27.0375 0x0ce8 KSN ping finished: true
19:57:27.0781 0x0ce8 ================ Scan system memory ========================
19:57:27.0781 0x0ce8 System memory - ok
19:57:27.0781 0x0ce8 ================ Scan services =============================
19:57:27.0953 0x0ce8 Abiosdsk - ok
19:57:27.0968 0x0ce8 abp480n5 - ok
19:57:28.0015 0x0ce8 [ 4FE34F1F3126B61FCC6B2043AA8112C9, DE370865E47A5D2A4B227EEFFB42384F67F08D622BF936A9C9CEF70CC47F324B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:57:28.0031 0x0ce8 ACPI - ok
19:57:28.0296 0x0ce8 [ AFDFF022A01F0B11C776F0860C3B282F, 135E5257B62D921B76271014301E9EA1E2383D5DBB04E475DC3A7EFFD2561F56 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
19:57:28.0296 0x0ce8 ACPIEC - ok
19:57:28.0328 0x0ce8 adpu160m - ok
19:57:28.0375 0x0ce8 [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec C:\WINDOWS\system32\drivers\aec.sys
19:57:28.0375 0x0ce8 aec - ok
19:57:28.0437 0x0ce8 [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD C:\WINDOWS\System32\drivers\afd.sys
19:57:28.0437 0x0ce8 AFD - ok
19:57:28.0484 0x0ce8 [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
19:57:28.0500 0x0ce8 agp440 - ok
19:57:28.0515 0x0ce8 Aha154x - ok
19:57:28.0546 0x0ce8 aic78u2 - ok
19:57:28.0562 0x0ce8 aic78xx - ok
19:57:28.0890 0x0ce8 [ DD8520280304B6145A6BE31008748C7C, 4007EAA97E501492E450241338759337EF05E4F5C61AA05FF4BA3CFAD036B0D9 ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
19:57:29.0109 0x0ce8 ALCXWDM - ok
19:57:29.0171 0x0ce8 [ E0A6FA244B8624D78FE5FF6F56A33BAE, 26B828FDB03AE4A4F1DC7A1792F9BAD69CF947897D47F5E567F24F4B6D5CB541 ] Alerter C:\WINDOWS\system32\alrsvc.dll
19:57:29.0171 0x0ce8 Alerter - ok
19:57:29.0203 0x0ce8 [ F7DC2B1E57F285E90B174A51384D4D94, 5D700556374E2EF9C4F5E64332C8BFF33CF35B783BACF6769ECB9DD2F52D64D8 ] ALG C:\WINDOWS\System32\alg.exe
19:57:29.0203 0x0ce8 ALG - ok
19:57:29.0234 0x0ce8 AliIde - ok
19:57:29.0250 0x0ce8 amsint - ok
19:57:29.0296 0x0ce8 [ 6B8E7A90E576D4FE308F97C69060A171, 6CE49BC78715737D78E05DECAC23E26A5672ACD2CF3D10154FEA9D47B318D47C ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
19:57:29.0312 0x0ce8 AppMgmt - ok
19:57:29.0328 0x0ce8 asc - ok
19:57:29.0359 0x0ce8 asc3350p - ok
19:57:29.0375 0x0ce8 asc3550 - ok
19:57:29.0453 0x0ce8 [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:57:29.0468 0x0ce8 aspnet_state - ok
19:57:29.0500 0x0ce8 [ B347D2FEAE2D063943F16EC98634AB89, 2CA74745232607571ED088270B3B3FA555628455A257A6E52F133D650D861FD4 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
19:57:29.0515 0x0ce8 aswMonFlt - ok
19:57:29.0562 0x0ce8 [ 71A7C3DB37ED3F6118AC7FEB50574C35, D14BFFF9E1FA77ACB4F011C68645D3961E3278ED445D574F49653BA45F0332E2 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
19:57:29.0562 0x0ce8 aswRdr - ok
19:57:29.0593 0x0ce8 [ 84B4C00AE8CDFC52CF68F322D821F34C, 9971A8ECDF2B81F4AA59E7680639A8B798430E1FDF5A39C6E05E522BF2DEF3F8 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
19:57:29.0593 0x0ce8 aswRvrt - ok
19:57:29.0687 0x0ce8 [ 3A50AD6AE8D8A0F78F03316F5B93FE45, 6F3952EDA23E5FD7CACE152D3DA3B1F1238E9B9976CDD5193D21424463BAA0E9 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
19:57:29.0734 0x0ce8 aswSnx - ok
19:57:29.0796 0x0ce8 [ B6381B4DC603C558419641BA969930E0, F6586B6D055C62942CD0E5702FFCC6F4DB7424DC551EB0041876C3544994EB59 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
19:57:29.0828 0x0ce8 aswSP - ok
19:57:29.0875 0x0ce8 [ 4A90E597A9AF787C4CEA0DE95C1F74A7, 07A80674038F2C78DA5868CB4350C1E8618E3EAAA3E894E32FDF5C876D5280F4 ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
19:57:29.0875 0x0ce8 aswTdi - ok
19:57:29.0921 0x0ce8 [ 680448905E27BBC6587ADB28597640D6, A55297D872162178FDCF2C64C2357DCE1D98418AB84CF5E8621DED73C7484629 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
19:57:29.0921 0x0ce8 aswVmm - ok
19:57:29.0968 0x0ce8 [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:57:29.0968 0x0ce8 AsyncMac - ok
19:57:30.0015 0x0ce8 [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
19:57:30.0031 0x0ce8 atapi - ok
19:57:30.0046 0x0ce8 Atdisk - ok
19:57:30.0140 0x0ce8 [ 86BE5339A67C0A309F3E3EF8B0901EE5, 52B6D82F113341CB8A9B7193F9A7722A224F85DF53B88AE00395D635BB140567 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:57:30.0171 0x0ce8 ati2mtag - ok
19:57:30.0234 0x0ce8 [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:57:30.0234 0x0ce8 Atmarpc - ok
19:57:30.0265 0x0ce8 [ DE31B88962A8645DBA5A37B993E7B0F1, CA93F25A3FD0CE68BB9B8E3AB6B813BF38DE3EDDFC990291B3957FAA59B2B274 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
19:57:30.0281 0x0ce8 AudioSrv - ok
19:57:30.0328 0x0ce8 [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
19:57:30.0328 0x0ce8 audstub - ok
19:57:30.0406 0x0ce8 [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:57:30.0421 0x0ce8 avast! Antivirus - ok
19:57:30.0468 0x0ce8 [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep C:\WINDOWS\system32\drivers\Beep.sys
19:57:30.0468 0x0ce8 Beep - ok
19:57:30.0531 0x0ce8 [ 19395D092FD85DDC2D9C7729CF5A2AC8, 7640F36BA19698EE8A6257BF78A8C57DD9D734BED9CA6BB9B68603BAEA092412 ] BITS C:\WINDOWS\system32\qmgr.dll
19:57:30.0578 0x0ce8 BITS - ok
19:57:30.0625 0x0ce8 [ 89E739BBA5F636297EA5B5F811189E06, 151B32B12F5DD0D388134DA2471FE9741CF22B9C408DA58FEF8019D3C4EC836B ] Browser C:\WINDOWS\System32\browser.dll
19:57:30.0625 0x0ce8 Browser - ok
19:57:30.0656 0x0ce8 [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
19:57:30.0656 0x0ce8 cbidf2k - ok
19:57:30.0687 0x0ce8 cd20xrnt - ok
19:57:30.0718 0x0ce8 [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
19:57:30.0718 0x0ce8 Cdaudio - ok
19:57:30.0765 0x0ce8 [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
19:57:30.0765 0x0ce8 Cdfs - ok
19:57:30.0812 0x0ce8 [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:57:30.0812 0x0ce8 Cdrom - ok
19:57:30.0843 0x0ce8 [ FD02FDE95C50505784CFD7843AC41CE3, 6EDAD15FBC659E2FB3AA714EBD54D67DF44AF1C311C77E618E5ECB44B94F72DB ] cisvc C:\WINDOWS\system32\cisvc.exe
19:57:30.0843 0x0ce8 cisvc - ok
19:57:30.0875 0x0ce8 [ 990A1F71D43FB65AA1F91CA73D67F700, 587F714FCF5764C8A2153DCBD420D19E4FF70227F7B5E5C9F572FB172F36E2F6 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
19:57:30.0875 0x0ce8 ClipSrv - ok
19:57:30.0921 0x0ce8 [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:57:30.0937 0x0ce8 clr_optimization_v2.0.50727_32 - ok
19:57:31.0031 0x0ce8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:57:31.0046 0x0ce8 clr_optimization_v4.0.30319_32 - ok
19:57:31.0062 0x0ce8 CmdIde - ok
19:57:31.0078 0x0ce8 COMSysApp - ok
19:57:31.0109 0x0ce8 Cpqarray - ok
19:57:31.0171 0x0ce8 [ F3AB0933CBD166D271992F411C27CCAF, 50E01F3B058F814BE914FA5050B2D972E8584A467719A5ABCF9D9EBD596A54A7 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
19:57:31.0171 0x0ce8 CryptSvc - ok
19:57:31.0187 0x0ce8 dac2w2k - ok
19:57:31.0203 0x0ce8 dac960nt - ok
19:57:31.0265 0x0ce8 [ BE27674D1CBC3214AEC84B4336A38BBF, 3DF5F9A9E97595A61314B2731DF4F3D3C19D1B9D2291624A63B8E1861FFC2D76 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
19:57:31.0296 0x0ce8 DcomLaunch - ok
19:57:31.0343 0x0ce8 [ 8C9A53E285AC5E6704844D0459EC85BE, 9E86AF4C06CEC007C9B1590B6E056319603E4D79BED0C2471C6F1BC251B380CF ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
19:57:31.0359 0x0ce8 Dhcp - ok
19:57:31.0390 0x0ce8 [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
19:57:31.0390 0x0ce8 Disk - ok
19:57:31.0406 0x0ce8 dmadmin - ok
19:57:31.0500 0x0ce8 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C, 46074FBBC5E4A40A7B3A45636089DEDD2A619778C7DCD797571C2BB64D775F7E ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
19:57:31.0546 0x0ce8 dmboot - ok
19:57:31.0593 0x0ce8 [ FFF1720AF51171F32F1EAD5CF71F2810, 2E40D63DC7670C1E88A532DB8923A98ABC8481C351C4D915C2753E10BA77F36D ] dmio C:\WINDOWS\system32\drivers\dmio.sys
19:57:31.0593 0x0ce8 dmio - ok
19:57:31.0625 0x0ce8 [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload C:\WINDOWS\system32\drivers\dmload.sys
19:57:31.0640 0x0ce8 dmload - ok
19:57:31.0656 0x0ce8 [ 2BFEFE9E865655A76982F050450B9591, 15C7D093D638770519AA43E7D8897310F32AB1F217027F5750D799494A985C35 ] dmserver C:\WINDOWS\System32\dmserver.dll
19:57:31.0671 0x0ce8 dmserver - ok
19:57:31.0703 0x0ce8 [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
19:57:31.0703 0x0ce8 DMusic - ok
19:57:31.0750 0x0ce8 [ DFAA406BF19F4EE806A6F8D4342137F7, EE2C11B3E37565FC009E323607B2F5F148F9219012EDF848CEFC1B273DAA98A9 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
19:57:31.0750 0x0ce8 Dnscache - ok
19:57:31.0828 0x0ce8 [ 4A3E2BD20157A0946751229E92EB8621, D8C00CC2C18C517F7262EBC3C511C062E5ABA797056AEB22AC5DEB306BA8C526 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
19:57:31.0843 0x0ce8 Dot3svc - ok
19:57:31.0859 0x0ce8 dpti2o - ok
19:57:31.0890 0x0ce8 [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
19:57:31.0890 0x0ce8 drmkaud - ok
19:57:31.0921 0x0ce8 [ 0887D9C2BE8D940778CAD1E3B85F2A41, 2E30DC06D46A5E174B7CAA2D70BDB697015495942572E90425E2EE7AC541BCF4 ] EapHost C:\WINDOWS\System32\eapsvc.dll
19:57:31.0937 0x0ce8 EapHost - ok
19:57:31.0984 0x0ce8 [ 6E883BF518296A40959131C2304AF714, FCBDAB6C9220742821D1A1711D39688889B578E0992F8B41945027DB23E92777 ] EL90XBC C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
19:57:31.0984 0x0ce8 EL90XBC - ok
19:57:32.0031 0x0ce8 [ A2A4912798F2BE706ABADD3D30800D16, CCCCA389D22525D984DE9B59E4CEBE0EEEF315F725176EB5C4DC1A5B6157234A ] ERSvc C:\WINDOWS\System32\ersvc.dll
19:57:32.0046 0x0ce8 ERSvc - ok
19:57:32.0093 0x0ce8 [ 9EF697AF07BB8DD82C3B02CA953A95B7, F26033E660B8FF1BDB9E88CDA205CE128C03138AF6BEC05DB3CF2D95C16D86C6 ] Eventlog C:\WINDOWS\system32\services.exe
19:57:32.0109 0x0ce8 Eventlog - ok
19:57:32.0171 0x0ce8 [ A371F11EF07653591C8DE26AFB13CE7F, 1192EDC8B146F1C27E8CD7E126DDC044F8B368C2E891A90CD81620D48C9550B6 ] EventSystem C:\WINDOWS\system32\es.dll
19:57:32.0187 0x0ce8 EventSystem - ok
19:57:32.0250 0x0ce8 [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
19:57:32.0250 0x0ce8 Fastfat - ok
19:57:32.0312 0x0ce8 [ EE9A2B9EA968A792A053C9D1A86BF870, 39798179F2EA42216CBE98F08ADA3675A87BD0C31A66534367B96CB129AF36BA ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:57:32.0328 0x0ce8 FastUserSwitchingCompatibility - ok
19:57:32.0375 0x0ce8 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
19:57:32.0375 0x0ce8 Fdc - ok
19:57:32.0406 0x0ce8 [ AC366695A0796560AA37215AD5762AAF, 6ADC7443EA42D77199D4879AF3C33A07914116C69A34B895D8CB8444EE50077F ] Fips C:\WINDOWS\system32\drivers\Fips.sys
19:57:32.0406 0x0ce8 Fips - ok
19:57:32.0437 0x0ce8 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
19:57:32.0453 0x0ce8 Flpydisk - ok
19:57:32.0500 0x0ce8 [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
19:57:32.0500 0x0ce8 FltMgr - ok
19:57:32.0562 0x0ce8 [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:57:32.0562 0x0ce8 FontCache3.0.0.0 - ok
19:57:32.0609 0x0ce8 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:57:32.0609 0x0ce8 Fs_Rec - ok
19:57:32.0656 0x0ce8 [ 4E664D8541DB4A66B73A24257E322E1F, 17A2140AFE2B41E579FCCAFB82532853AD90A6EDBCB13DE80741DAE0AD5B4CC9 ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:57:32.0656 0x0ce8 Ftdisk - ok
19:57:32.0703 0x0ce8 [ 065639773D8B03F33577F6CDAEA21063, F20D0F3256F5F894CCA48755B23679619B5D02A0F64A142FC6CB619FC0952067 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
19:57:32.0703 0x0ce8 gameenum - ok
19:57:32.0750 0x0ce8 [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:57:32.0750 0x0ce8 Gpc - ok
19:57:32.0828 0x0ce8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
19:57:32.0828 0x0ce8 gupdate - ok
19:57:32.0859 0x0ce8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
19:57:32.0859 0x0ce8 gupdatem - ok
19:57:32.0937 0x0ce8 [ FCFE31FB75F8A6295B6B0AF87A626282, 6BA385797DBC73EB29EFE3293B80C21B1B8A1E9B87A462476E73C526C9565E5F ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:57:32.0937 0x0ce8 helpsvc - ok
19:57:32.0984 0x0ce8 [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:57:32.0984 0x0ce8 hidusb - ok
19:57:33.0015 0x0ce8 [ 7A6B320928F86BC851530D63C82965D9, 1F628759D31098DFBC05244735B5A62ACD8E45DBC5C9D236260D68EB8F1E28F5 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
19:57:33.0046 0x0ce8 hkmsvc - ok
19:57:33.0062 0x0ce8 hpn - ok
19:57:33.0109 0x0ce8 [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
19:57:33.0125 0x0ce8 HTTP - ok
19:57:33.0171 0x0ce8 [ 58FE2F2DA3BC5573F4A35B3760D3125F, B241ACCE426402EC64DC34C49CECB8CDC0851986D54BFCCED7040D6C43F5787A ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
19:57:33.0187 0x0ce8 HTTPFilter - ok
19:57:33.0203 0x0ce8 i2omp - ok
19:57:33.0250 0x0ce8 [ C528E27945367191E7BAE364930B6932, 1B95C7B49B4CAE734DC6C9EC22555C5356EEC856B8491C761C777479264CF854 ] i8042prt C:\WINDOWS\system32\drivers\i8042prt.sys
19:57:33.0250 0x0ce8 i8042prt - ok
19:57:33.0328 0x0ce8 [ 8448EC17643D5BFB16DD5F102BA98414, F764FCFC77D3FDB172DA26F904BE22E40743ECEFC75C58347BA6D249D98295E1 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:57:33.0328 0x0ce8 IDriverT - ok
19:57:33.0468 0x0ce8 [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:57:33.0515 0x0ce8 idsvc - ok
19:57:33.0562 0x0ce8 [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
19:57:33.0578 0x0ce8 Imapi - ok
19:57:33.0609 0x0ce8 [ EE7B0319B6ADAEA329D3C937CA20922D, FF8306D3A80687F05D3C57AB5C5072C0A53AF1B386792CFF094A832BE4117EAC ] ImapiService C:\WINDOWS\system32\imapi.exe
19:57:33.0625 0x0ce8 ImapiService - ok
19:57:33.0656 0x0ce8 ini910u - ok
19:57:33.0687 0x0ce8 [ 57D928E548B38502ABBA7A77A6EB7312, AD26B8096D918269BD7D9D454BB93850BCE595CE9E2A396F45777E7312396B33 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
19:57:33.0687 0x0ce8 IntelIde - ok
19:57:33.0734 0x0ce8 [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
19:57:33.0734 0x0ce8 Ip6Fw - ok
19:57:33.0781 0x0ce8 [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:57:33.0781 0x0ce8 IpFilterDriver - ok
19:57:33.0812 0x0ce8 [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:57:33.0828 0x0ce8 IpInIp - ok
19:57:33.0859 0x0ce8 [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:57:33.0875 0x0ce8 IpNat - ok
19:57:33.0906 0x0ce8 [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:57:33.0921 0x0ce8 IPSec - ok
19:57:33.0953 0x0ce8 [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
19:57:33.0968 0x0ce8 IRENUM - ok
19:57:34.0015 0x0ce8 [ CC9F8A2D60AED1A51A3AC34C59B987AE, CBF69817BE3D9A4617390B1A3306074CB8581F21562CD1357D32BC3E542F3CEE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:57:34.0015 0x0ce8 isapnp - ok
19:57:34.0062 0x0ce8 [ 1B6162FE7F66B1A71A4B70F941C4AA9B, C2EA494BAB0513A6027414FB1E75834F980A77852D0DC8559E8942FC222A075A ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:57:34.0062 0x0ce8 Kbdclass - ok
19:57:34.0093 0x0ce8 [ 86C8F23616C6C6E5B2776901C17B945B, 211B63FC405A2DDB126D204D61E779D66C7211882CC0374521926C633E180B91 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:57:34.0093 0x0ce8 kbdhid - ok
19:57:34.0156 0x0ce8 [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
19:57:34.0156 0x0ce8 kmixer - ok
19:57:34.0218 0x0ce8 [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
19:57:34.0234 0x0ce8 KSecDD - ok
19:57:34.0281 0x0ce8 [ 3428E8F86F8ADD36B42FB23542C7B3E4, 9CF643D1A70AF08407ACD5FD6FE4B8777521DDF41B5E63C2E6E1E4CAAC69A403 ] LanmanServer C:\WINDOWS\System32\srvsvc.dll
19:57:34.0296 0x0ce8 LanmanServer - ok
19:57:34.0359 0x0ce8 [ 936C1D110232D23B621CB0196E4F80F0, 2DE3AF93E20F1DC7A6FF31B18054EA4D2350387E4DA91C4B16D451384F0C57E2 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:57:34.0375 0x0ce8 lanmanworkstation - ok
19:57:34.0437 0x0ce8 [ 0AB159F536E3E8F7F07113702A07CCA5, 3218C553183E6697C663B6D12790E09756B50505590858DD5AC62411D37CDD7C ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
19:57:34.0437 0x0ce8 LmHosts - ok
19:57:34.0484 0x0ce8 [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
19:57:34.0484 0x0ce8 MBAMProtector - ok
19:57:34.0562 0x0ce8 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:57:34.0593 0x0ce8 MBAMScheduler - ok
19:57:34.0671 0x0ce8 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
19:57:34.0718 0x0ce8 MBAMService - ok
19:57:34.0750 0x0ce8 [ 221CD1C815B8A6B79389C3F5D1018DE8, 6D0D25D6669C4F9452F74EC72C6138A41D9408E01AF5FD01C08F27BE7BC9C905 ] Messenger C:\WINDOWS\System32\msgsvc.dll
19:57:34.0765 0x0ce8 Messenger - ok
19:57:34.0812 0x0ce8 [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
19:57:34.0812 0x0ce8 mnmdd - ok
19:57:34.0859 0x0ce8 [ 1F4809D79ACE4416C99AFFE7101C52CF, F93C72FB2C8BFED270D0C97DE1DA45566C3F06E13A1333AB07164F8385AF29D1 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
19:57:34.0859 0x0ce8 mnmsrvc - ok
19:57:34.0906 0x0ce8 [ 44032B0C6D9954D3FD26438330B99EE7, A49749A4C00D50F57170AA5DA9E2DEECC8C524A48B144C8B784894F2C202FBEE ] Modem C:\WINDOWS\system32\drivers\Modem.sys
19:57:34.0906 0x0ce8 Modem - ok
19:57:34.0937 0x0ce8 [ 4CB582831DBDE63CE43B45D771218374, 6D470B26197C5B388983D9213D48D2CDE934C9591572876DC7790FE4B59E0845 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:57:34.0953 0x0ce8 Mouclass - ok
19:57:34.0968 0x0ce8 [ BB269EBA740737AB749B214D568B6812, ABF41D9B521EBBE674E76981CAD31F8FD05976DE7070266C3956FDB67C83C4C2 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:57:34.0984 0x0ce8 mouhid - ok
19:57:35.0015 0x0ce8 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
19:57:35.0015 0x0ce8 MountMgr - ok
19:57:35.0046 0x0ce8 mraid35x - ok
19:57:35.0093 0x0ce8 [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:57:35.0093 0x0ce8 MRxDAV - ok
19:57:35.0171 0x0ce8 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:57:35.0203 0x0ce8 MRxSmb - ok
19:57:35.0250 0x0ce8 [ 0107F1400BFFBC39579EE52A69E71211, 7D3F8A09E3C852784985E3A404F55AA4ACDC11C53327AE694A21ED1E12DFB706 ] MSDTC C:\WINDOWS\system32\msdtc.exe
19:57:35.0265 0x0ce8 MSDTC - ok
19:57:35.0328 0x0ce8 [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
19:57:35.0328 0x0ce8 Msfs - ok
19:57:35.0343 0x0ce8 MSIServer - ok
19:57:35.0375 0x0ce8 [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:57:35.0375 0x0ce8 MSKSSRV - ok
19:57:35.0406 0x0ce8 [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:57:35.0406 0x0ce8 MSPCLOCK - ok
19:57:35.0437 0x0ce8 [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
19:57:35.0453 0x0ce8 MSPQM - ok
19:57:35.0500 0x0ce8 [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:57:35.0500 0x0ce8 mssmbios - ok
19:57:35.0546 0x0ce8 [ CA3E22598F411199ADC2DFEE76CD0AE0, 73ACE780A198467657CD2AF6019F0FC753B4FC6D26A9D6477C88C5396273F77C ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
19:57:35.0562 0x0ce8 ms_mpu401 - ok
19:57:35.0609 0x0ce8 [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
19:57:35.0609 0x0ce8 Mup - ok
19:57:35.0671 0x0ce8 [ 6EA362E9DB03D44F6B996F4D8BE237E9, FE6B4C546D26C4A2832CF4CB280B86B1723E10E46A3C24AF6C9856FCCAE9D1FC ] napagent C:\WINDOWS\System32\qagentrt.dll
19:57:35.0703 0x0ce8 napagent - ok
19:57:35.0750 0x0ce8 [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
19:57:35.0765 0x0ce8 NDIS - ok
19:57:35.0812 0x0ce8 [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:57:35.0812 0x0ce8 NdisTapi - ok
19:57:35.0859 0x0ce8 [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:57:35.0859 0x0ce8 Ndisuio - ok
19:57:35.0890 0x0ce8 [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:57:35.0906 0x0ce8 NdisWan - ok
19:57:35.0953 0x0ce8 [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
19:57:35.0953 0x0ce8 NDProxy - ok
19:57:35.0984 0x0ce8 [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
19:57:36.0000 0x0ce8 NetBIOS - ok
19:57:36.0046 0x0ce8 [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
19:57:36.0062 0x0ce8 NetBT - ok
19:57:36.0093 0x0ce8 [ 64F77BD777AE214C97447C9D40394C1D, E35D3C688440EA8FAE446DD82F53253AED02940FBF8B9E2F569AEC6C6CB3D00F ] NetDDE C:\WINDOWS\system32\netdde.exe
19:57:36.0109 0x0ce8 NetDDE - ok
19:57:36.0140 0x0ce8 [ 64F77BD777AE214C97447C9D40394C1D, E35D3C688440EA8FAE446DD82F53253AED02940FBF8B9E2F569AEC6C6CB3D00F ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
19:57:36.0156 0x0ce8 NetDDEdsdm - ok
19:57:36.0187 0x0ce8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] Netlogon C:\WINDOWS\system32\lsass.exe
19:57:36.0203 0x0ce8 Netlogon - ok
19:57:36.0250 0x0ce8 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40, 588C8BA14A7255FD36A88960CBE34341301773765ECF2A9A0F1760A509A08A5B ] Netman C:\WINDOWS\System32\netman.dll
19:57:36.0265 0x0ce8 Netman - ok
19:57:36.0328 0x0ce8 [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:57:36.0343 0x0ce8 NetTcpPortSharing - ok
19:57:36.0375 0x0ce8 [ 39EE7C3BFBC64BA87CC8CF67386E814C, B93CCB625CE370D9A49C9374D24C939D7C9FEF81401F4F822C51E12677D77E01 ] Nla C:\WINDOWS\System32\mswsock.dll
19:57:36.0406 0x0ce8 Nla - ok
19:57:36.0453 0x0ce8 [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
19:57:36.0453 0x0ce8 Npfs - ok
19:57:36.0515 0x0ce8 [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
19:57:36.0562 0x0ce8 Ntfs - ok
19:57:36.0593 0x0ce8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
19:57:36.0593 0x0ce8 NtLmSsp - ok
19:57:36.0656 0x0ce8 [ 023DD70573D644F3D9C8B1258A7BFD08, 9A1D3210ED5FD8BEDF92ED577A9B30E37035408A73EB66A8C950B75AB7539B83 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
19:57:36.0703 0x0ce8 NtmsSvc - ok
19:57:36.0734 0x0ce8 [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null C:\WINDOWS\system32\drivers\Null.sys
19:57:36.0750 0x0ce8 Null - ok
19:57:37.0062 0x0ce8 [ BA1B732C1A70CFEA0C1B64F2850BF44F, 6B1F9C07F1A23EA53FB53FF7BCAD5C076A36FBEFDF2DD79FB00B232F9D33DA9B ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
19:57:37.0265 0x0ce8 nv - ok
19:57:37.0343 0x0ce8 [ 400A88355FC9BBFC5383744FB74A139A, 1C00DD32BE663BAE693B3017006D44D0CFC09EE029E85CBCE18B61B2D684D450 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
19:57:37.0359 0x0ce8 NVSvc - ok
19:57:37.0390 0x0ce8 [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:57:37.0390 0x0ce8 NwlnkFlt - ok
19:57:37.0421 0x0ce8 [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:57:37.0437 0x0ce8 NwlnkFwd - ok
19:57:37.0484 0x0ce8 [ 46F8DB73B4A53E543F8E371DC7C75BAE, F6C5E7DE4B4AE0ED785DB075BE14EA6A0FC9050C95669B26DEF2B82D7B7D3B2C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
19:57:37.0500 0x0ce8 Parport - ok
19:57:37.0531 0x0ce8 [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
19:57:37.0531 0x0ce8 PartMgr - ok
19:57:37.0578 0x0ce8 [ 1FAE19D0457176318BBA4A8795656EBC, 5F3D6CABA203A0485D67F63A6A81151724EE200BE49ED095CFCB1EF29C19D19F ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
19:57:37.0578 0x0ce8 ParVdm - ok
19:57:37.0625 0x0ce8 [ 6CE351D149CB4BEFC702951E471E1730, 758327683BB45F01D5AE550AF21856822B4CF55E17F2A4F452F559088D242B37 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
19:57:37.0625 0x0ce8 PCI - ok
19:57:37.0656 0x0ce8 PCIDump - ok
19:57:37.0671 0x0ce8 [ 2DA4EC85E0EA7A45C6B2A05820492D5A, A8C6BD93D3BC33A5B36EB523997EF9E0783B6E6EAFB6E7F58BCC2629009BDCF9 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
19:57:37.0687 0x0ce8 PCIIde - ok
19:57:37.0718 0x0ce8 [ 4FC31E6C19A5CE5198B1ABFF94CAE758, A031E21EC1F15DA5E8429269F435337FA961C3C06D535DAFD448C7355F33FD0C ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
19:57:37.0734 0x0ce8 Pcmcia - ok
19:57:37.0750 0x0ce8 perc2 - ok
19:57:37.0781 0x0ce8 perc2hib - ok
19:57:37.0843 0x0ce8 [ 9EF697AF07BB8DD82C3B02CA953A95B7, F26033E660B8FF1BDB9E88CDA205CE128C03138AF6BEC05DB3CF2D95C16D86C6 ] PlugPlay C:\WINDOWS\system32\services.exe
19:57:37.0859 0x0ce8 PlugPlay - ok
19:57:37.0890 0x0ce8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
19:57:37.0906 0x0ce8 PolicyAgent - ok
19:57:37.0937 0x0ce8 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:57:37.0953 0x0ce8 PptpMiniport - ok
19:57:37.0984 0x0ce8 [ 7EB15DCE4EC3A0220BD796A15C18186E, E06C572F3FE4F3377D8AF74E8EF15478E71B4C61F944E48E8C35534BEF086110 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
19:57:37.0984 0x0ce8 Processor - ok
19:57:38.0031 0x0ce8 [ F0801AE96BF679A3DBA23D48BA74A98F, 11AC36A7CE81CA1E682CB9397647B0CA0E25CC470605C46515387C934B140D68 ] prodrv06 C:\WINDOWS\System32\drivers\prodrv06.sys
19:57:38.0046 0x0ce8 prodrv06 - ok
19:57:38.0093 0x0ce8 [ 2409B32E691CB5DDA39EA40BD154A50B, DE40438D2ACF72E45C6E2E995DD1A5357A53349487BD09D05A637D528F5E4D39 ] prohlp02 C:\WINDOWS\system32\drivers\prohlp02.sys
19:57:38.0109 0x0ce8 prohlp02 - ok
19:57:38.0140 0x0ce8 [ 960BCE3ED38761B446AABAC06C76BADF, 3A98C85F08C312977C3D6E4C90FC211D71A1D855A47B28097CC9B34DC99E3A76 ] prosync1 C:\WINDOWS\system32\drivers\prosync1.sys
19:57:38.0140 0x0ce8 prosync1 - ok
19:57:38.0171 0x0ce8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:57:38.0187 0x0ce8 ProtectedStorage - ok
19:57:38.0218 0x0ce8 [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
19:57:38.0234 0x0ce8 PSched - ok
19:57:38.0265 0x0ce8 [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:57:38.0281 0x0ce8 Ptilink - ok
19:57:38.0296 0x0ce8 ql1080 - ok
19:57:38.0328 0x0ce8 Ql10wnt - ok
19:57:38.0343 0x0ce8 ql12160 - ok
19:57:38.0359 0x0ce8 ql1240 - ok
19:57:38.0390 0x0ce8 ql1280 - ok
19:57:38.0406 0x0ce8 [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:57:38.0421 0x0ce8 RasAcd - ok
19:57:38.0468 0x0ce8 [ 2B5E44EA009F2F374B980E1E9A70635D, 62D8FDB80C8ACBA2C42C12760B785587C43BEDFE015EC5C41B25F2BB735EFEB0 ] RasAuto C:\WINDOWS\System32\rasauto.dll
19:57:38.0484 0x0ce8 RasAuto - ok
19:57:38.0515 0x0ce8 [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:57:38.0515 0x0ce8 Rasl2tp - ok
19:57:38.0562 0x0ce8 [ D57554C664B64604BD1EE13EA2C07E77, B090C05B91EA602BFF9A5E89AB1A0FFDE869611961FF749DA8B3F4D00F04E756 ] RasMan C:\WINDOWS\System32\rasmans.dll
19:57:38.0593 0x0ce8 RasMan - ok
19:57:38.0625 0x0ce8 [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:57:38.0640 0x0ce8 RasPppoe - ok
19:57:38.0671 0x0ce8 [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
19:57:38.0687 0x0ce8 Raspti - ok
19:57:38.0734 0x0ce8 [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:57:38.0750 0x0ce8 Rdbss - ok
19:57:38.0781 0x0ce8 [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:57:38.0781 0x0ce8 RDPCDD - ok
19:57:38.0859 0x0ce8 [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:57:38.0875 0x0ce8 rdpdr - ok
19:57:38.0921 0x0ce8 [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
19:57:38.0937 0x0ce8 RDPWD - ok
19:57:38.0984 0x0ce8 [ EE3B65E5307FF550AACB93C21460ADEB, EA8E314BB813A6F9B8F936F49C9B5D952FDC05912787E05D5CB95AEFF1D3A8EC ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
19:57:39.0000 0x0ce8 RDSessMgr - ok
19:57:39.0046 0x0ce8 [ 611BFD220305BE3A85AE876EA47D4AA5, FDF87878EB3886649025E5A12F1C3FC9072D66CCD3217944710085C1F8A4512E ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
19:57:39.0046 0x0ce8 redbook - ok
19:57:39.0109 0x0ce8 [ 127C26B5371651043450E52542099ABA, 98AADAD8D5211CB894AA7C59B6299861B1F44B6D8F46AB5837E7D2F5B615B14A ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
19:57:39.0109 0x0ce8 RemoteAccess - ok
19:57:39.0156 0x0ce8 [ 8F31505484A190D5B22274708799F4EC, 170FF8193C95CEE73B9342B6FB7D83DF4E80B2CCBB27DF41F4AB5F2FB9AF60E1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
19:57:39.0171 0x0ce8 RemoteRegistry - ok
19:57:39.0203 0x0ce8 [ E69852103DDCE2BCBABE5CA2B1D497C1, 1197255C38A36D435FA1C6D688D70DEE47872FB9BB5D4A24DDCDF0598F891700 ] RpcLocator C:\WINDOWS\system32\locator.exe
19:57:39.0218 0x0ce8 RpcLocator - ok
19:57:39.0265 0x0ce8 [ BE27674D1CBC3214AEC84B4336A38BBF, 3DF5F9A9E97595A61314B2731DF4F3D3C19D1B9D2291624A63B8E1861FFC2D76 ] RpcSs C:\WINDOWS\System32\rpcss.dll
19:57:39.0296 0x0ce8 RpcSs - ok
19:57:39.0343 0x0ce8 [ DE0E64F490F6F505B10EE8ADD7EE976B, 4B4FEA67E50C5357D23720C985D423B3B9B1E40C16FA2DCA4A4E08CADD618AF4 ] RSVP C:\WINDOWS\system32\rsvp.exe
19:57:39.0359 0x0ce8 RSVP - ok
19:57:39.0390 0x0ce8 [ ED0A176354487CEED65B80A7148AB739, 71295D7D7684539DBD2924B437660960C01E073A521FE12D1519969327EC8DC4 ] SamSs C:\WINDOWS\system32\lsass.exe
19:57:39.0390 0x0ce8 SamSs - ok
19:57:39.0437 0x0ce8 [ 7EE8FEE9D15E75BCA005C262B6F51573, C6A61253054FBE48879FD5781AC351F5E3D2D6AEBB544FABCAFD444BE32E189B ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
19:57:39.0453 0x0ce8 SCardSvr - ok
19:57:39.0500 0x0ce8 [ 3FF232A7731621B8902D81D42418C93C, 2030C9A843D9555170179883BD4CC1E978D5FC5EC0D7FCA56518224E428BE421 ] Schedule C:\WINDOWS\system32\schedsvc.dll
19:57:39.0515 0x0ce8 Schedule - ok
19:57:39.0562 0x0ce8 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:57:39.0562 0x0ce8 Secdrv - ok
19:57:39.0609 0x0ce8 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6, 82EEB2345AC19050FAB202DE76C2CDD93E753F5AB67789A86A1726D3040C02E5 ] seclogon C:\WINDOWS\System32\seclogon.dll
19:57:39.0625 0x0ce8 seclogon - ok
19:57:39.0656 0x0ce8 [ A530B75C10C23C9AB28FDB6CE719E21F, 14568DF6457758E2F534A46A8E6245C364895C3993BEF2B5A889B98DBB201A27 ] SENS C:\WINDOWS\system32\sens.dll
19:57:39.0671 0x0ce8 SENS - ok
19:57:39.0703 0x0ce8 [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
19:57:39.0703 0x0ce8 serenum - ok
19:57:39.0734 0x0ce8 [ B842729337C9B921615C40D3C1A1AF96, 503670A56423B996C6ED6AE95F07FB88910767C4A2041A4BE9070C57A016E7FA ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
19:57:39.0734 0x0ce8 Serial - ok
19:57:39.0828 0x0ce8 [ 462AEE0EA0481EA8BD45CAC876A4CCC4, C26AF130C2FB4234B6AA5EE979DEFDFAC38EA038D6046495196F8DF62DEE4120 ] sfhlp01 C:\WINDOWS\system32\drivers\sfhlp01.sys
19:57:39.0828 0x0ce8 sfhlp01 - ok
19:57:39.0875 0x0ce8 [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
19:57:39.0875 0x0ce8 Sfloppy - ok
19:57:39.0953 0x0ce8 [ F58FACA9621D2DB01BD0927D9A0A208E, 239C87E09261BC9D1DBE99DABCFC4787D42289E8769563A5EFB323BE6F177C9A ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
19:57:39.0984 0x0ce8 SharedAccess - ok
19:57:40.0015 0x0ce8 [ EE9A2B9EA968A792A053C9D1A86BF870, 39798179F2EA42216CBE98F08ADA3675A87BD0C31A66534367B96CB129AF36BA ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:57:40.0031 0x0ce8 ShellHWDetection - ok
19:57:40.0062 0x0ce8 Simbad - ok
19:57:40.0125 0x0ce8 [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:57:40.0140 0x0ce8 SkypeUpdate - ok
19:57:40.0171 0x0ce8 Sparrow - ok
19:57:40.0203 0x0ce8 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter C:\WINDOWS\system32\drivers\splitter.sys
19:57:40.0218 0x0ce8 splitter - ok
19:57:40.0250 0x0ce8 [ 81246D831CE1602E5FA57C58F16F3AD0, A1086EEA58E32FDEF2DE5ECBA06343D343477082D71AA758B8E9E6ABC08C4A99 ] Spooler C:\WINDOWS\system32\spoolsv.exe
19:57:40.0265 0x0ce8 Spooler - ok
19:57:40.0312 0x0ce8 [ 94610C8653635E4459316A0050D55CE7, D148D33B3D2B0757060531C526F2161504A8D7C4E5957D092C7EBDB007271339 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
19:57:40.0312 0x0ce8 sr - ok
19:57:40.0359 0x0ce8 [ 35B91147124F64AC8081A2EDB9EA4DEE, 1609D19156DAC6EE3C2D2350B062966B64D9CDC289E9B8FEB6D244AAEBE90BBF ] srservice C:\WINDOWS\system32\srsvc.dll
19:57:40.0390 0x0ce8 srservice - ok
19:57:40.0453 0x0ce8 [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
19:57:40.0484 0x0ce8 Srv - ok
19:57:40.0531 0x0ce8 [ BECD5271DC4E3B7C3D035F790FCBC1E5, D63B9DB81332553C963EC5057D241CE2287AF652387333C1FD79AF8C9B5F2BA7 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
19:57:40.0546 0x0ce8 SSDPSRV - ok
19:57:40.0593 0x0ce8 [ 3F0164FBC0BD1ADBD02DF9759181451A, 8BDAA0373BD16B38407F93FE5C697481D4D88C72B1931D6A7B9F80C0276242B9 ] ss_bbus C:\WINDOWS\system32\DRIVERS\ss_bbus.sys
19:57:40.0609 0x0ce8 ss_bbus - ok
19:57:40.0640 0x0ce8 [ B89D62206034E5FE573C80A24DD55675, 26D12E2A7CB538DDEEA7B764242E9EAE25E0A46293AE3608E6B7DD71AECBA901 ] ss_bmdfl C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys
19:57:40.0656 0x0ce8 ss_bmdfl - ok
19:57:40.0703 0x0ce8 [ 1ED0FCEA586FE2A416EE15196E5631DD, AF1EBAD7D580BF85ACD6C6287892DE4E7A679852887B9E866A032B1DDCF26183 ] ss_bmdm C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys
19:57:40.0703 0x0ce8 ss_bmdm - ok
19:57:40.0781 0x0ce8 [ C1CDD9275F6A115BB0AE1D55D8D27BA6, CD0511FD7F6AD832CBEB931C605AB3AD217631C57399CB8033248D27619541E4 ] stisvc C:\WINDOWS\system32\wiaservc.dll
19:57:40.0812 0x0ce8 stisvc - ok
19:57:40.0859 0x0ce8 [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
19:57:40.0859 0x0ce8 swenum - ok
19:57:40.0890 0x0ce8 [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
19:57:40.0890 0x0ce8 swmidi - ok
19:57:40.0921 0x0ce8 SwPrv - ok
19:57:40.0953 0x0ce8 symc810 - ok
19:57:40.0968 0x0ce8 symc8xx - ok
19:57:40.0984 0x0ce8 sym_hi - ok
19:57:41.0000 0x0ce8 sym_u3 - ok
19:57:41.0046 0x0ce8 [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
19:57:41.0046 0x0ce8 sysaudio - ok
19:57:41.0125 0x0ce8 [ C2546CD7A398476F9DF5614B2AE160E8, 11C8435BA983553E9C0806494E9B3C7080515C0375B0604F029D89B50726161A ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
19:57:41.0140 0x0ce8 TapiSrv - ok
19:57:41.0218 0x0ce8 [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:57:41.0234 0x0ce8 Tcpip - ok
19:57:41.0281 0x0ce8 [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
19:57:41.0281 0x0ce8 TDPIPE - ok
19:57:41.0312 0x0ce8 [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
19:57:41.0312 0x0ce8 TDTCP - ok
19:57:41.0359 0x0ce8 [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
19:57:41.0359 0x0ce8 TermDD - ok
19:57:41.0437 0x0ce8 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E, 3D2B1D899061448EAD993CDE97D1EF50DD64728E9F44D80FEAE591198A937653 ] TermService C:\WINDOWS\System32\termsrv.dll
19:57:41.0468 0x0ce8 TermService - ok
19:57:41.0500 0x0ce8 [ EE9A2B9EA968A792A053C9D1A86BF870, 39798179F2EA42216CBE98F08ADA3675A87BD0C31A66534367B96CB129AF36BA ] Themes C:\WINDOWS\System32\shsvcs.dll
19:57:41.0515 0x0ce8 Themes - ok
19:57:41.0562 0x0ce8 [ 537CB2F49B1F51A0F98666BD9AEA0EDF, 7B44345300714B3F673176161DDD9B725AF65D6B3FBAB5D90A1CD8D93BAA3819 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
19:57:41.0593 0x0ce8 TlntSvr - ok
19:57:41.0609 0x0ce8 TosIde - ok
19:57:41.0640 0x0ce8 [ 38853304CCB938D30E0C4CDE8D2C2A8A, 966E7BCC9F63A1A7777F8A12E51C2A91EC688CE96109943ADC4CB4EB58DC34A6 ] TrkWks C:\WINDOWS\system32\trkwks.dll
19:57:41.0656 0x0ce8 TrkWks - ok
19:57:41.0703 0x0ce8 [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
19:57:41.0718 0x0ce8 Udfs - ok
19:57:41.0734 0x0ce8 ultra - ok
19:57:41.0796 0x0ce8 [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
19:57:41.0812 0x0ce8 Update - ok
19:57:41.0875 0x0ce8 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E, AF7662BCA0819F82CE5EE0863E47149CC127DE664CB3DC6359B63FBD71DB54F8 ] upnphost C:\WINDOWS\System32\upnphost.dll
19:57:41.0906 0x0ce8 upnphost - ok
19:57:41.0937 0x0ce8 [ A84E3F215F015A1EB48376A780295E83, 941EB2DE42138381F7426C84EA2082AC308708013171003F08CD3CF2F9BBE9A0 ] UPS C:\WINDOWS\System32\ups.exe
19:57:41.0953 0x0ce8 UPS - ok
19:57:41.0984 0x0ce8 [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:57:42.0000 0x0ce8 usbccgp - ok
19:57:42.0031 0x0ce8 [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:57:42.0046 0x0ce8 usbehci - ok
19:57:42.0078 0x0ce8 [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:57:42.0093 0x0ce8 usbhub - ok
19:57:42.0140 0x0ce8 [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:57:42.0140 0x0ce8 USBSTOR - ok
19:57:42.0187 0x0ce8 [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:57:42.0187 0x0ce8 usbuhci - ok
19:57:42.0234 0x0ce8 [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
19:57:42.0234 0x0ce8 VgaSave - ok
19:57:42.0265 0x0ce8 ViaIde - ok
19:57:42.0296 0x0ce8 [ 28A4B296B47782173C346E376CB374D1, FE799FE4A41752A2B47027EA88214BF3E39B317302939F4A2D0F2A4EFAAC2F13 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
19:57:42.0312 0x0ce8 VolSnap - ok
19:57:42.0359 0x0ce8 [ DB8BBAF86FA1DB82A26A11D9DA08AD75, 5012E13EBD1ACF5EDCFDACD5030421618DC670ABD31FE4CD314493894DB00305 ] VSS C:\WINDOWS\System32\vssvc.exe
19:57:42.0390 0x0ce8 VSS - ok
19:57:42.0437 0x0ce8 [ FA4E1CDBA256787F2149F4AAD07BC91F, 1B5FC5248335D70094D04501AA2C30F54782B58FF8D573BE8E784A21529C7CAF ] W32Time C:\WINDOWS\system32\w32time.dll
19:57:42.0453 0x0ce8 W32Time - ok
19:57:42.0484 0x0ce8 [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:57:42.0500 0x0ce8 Wanarp - ok
19:57:42.0531 0x0ce8 [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
19:57:42.0546 0x0ce8 wdmaud - ok
19:57:42.0578 0x0ce8 [ 47AE51048A82DFA1CD6B51D369F7E169, 742F2162B8BDE00D83715093EA9743338964597ED22648B9F4F139D7278235A4 ] WebClient C:\WINDOWS\System32\webclnt.dll
19:57:42.0609 0x0ce8 WebClient - ok
19:57:42.0687 0x0ce8 [ E488332126E3B1182D2B8A0C35408EC6, F9F60911DF0A539753B2BEF6FAD2D0AED1BC1C3F43509F79D9AF2F810CDE5D9B ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
19:57:42.0703 0x0ce8 winmgmt - ok
19:57:42.0765 0x0ce8 [ 6199B2AE3F9DB9CB6DB230471A1DC601, E66C788C3E46AAC2ABB76F6E55E912EB28CF3D4C3D74FE6E85A6FABB7F22A5C9 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
19:57:42.0781 0x0ce8 WmdmPmSN - ok
19:57:42.0875 0x0ce8 [ 0171CFF34BBA8C5977F18C48D8AEF8C6, 0E3E04220157CCFB92F8D029805EB56D101C2A3AB3375354537FA9B5B3CAA0AD ] Wmi C:\WINDOWS\System32\advapi32.dll
19:57:42.0906 0x0ce8 Wmi - ok
19:57:42.0968 0x0ce8 [ 93313A62EC0A37959C44EEC9C54C77A5, AD09759A738C5AB6DD70D194A8B3466CDC0F888808BDEF368D6B88F428A19554 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:57:42.0984 0x0ce8 WmiApSrv - ok
19:57:43.0093 0x0ce8 [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:57:43.0140 0x0ce8 WPFFontCache_v0400 - ok
19:57:43.0171 0x0ce8 [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:57:43.0187 0x0ce8 WS2IFSL - ok
19:57:43.0234 0x0ce8 [ 4C86D5FAF78194995AF9CC1075F65DD3, D3B23BB0971E0DBC0A51720067489C224323B603178E91149BF56F779DE352F0 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
19:57:43.0250 0x0ce8 wscsvc - ok
19:57:43.0296 0x0ce8 [ C1364564800EE9784192145324A23308, 5345BAE00364233594C9CF99CE2CC485E65B5D4FFBB81C86B2950EDA2427584C ] wuauserv C:\WINDOWS\system32\wuauserv.dll
19:57:43.0312 0x0ce8 wuauserv - ok
19:57:43.0343 0x0ce8 [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:57:43.0359 0x0ce8 WudfPf - ok
19:57:43.0390 0x0ce8 [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:57:43.0406 0x0ce8 WudfRd - ok
19:57:43.0437 0x0ce8 [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
19:57:43.0453 0x0ce8 WudfSvc - ok
19:57:43.0531 0x0ce8 [ A27D4BA7264C0BF52F32D10405BEA1D4, 5F28607CCAB15FB601BEB35FF0B1A5CD27C678C6D1CA724E842C33EED4579B8C ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
19:57:43.0578 0x0ce8 WZCSVC - ok
19:57:43.0625 0x0ce8 [ EAA4BB9EDB3FB10CF8979FE65E63658F, B80EB477100FD3E26513360E09DB6EBF0C8D8B0618F1F4BF1F387ABA6DEC9B64 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
19:57:43.0656 0x0ce8 xmlprov - ok
19:57:43.0671 0x0ce8 ================ Scan global ===============================
19:57:43.0703 0x0ce8 [ F36278E42C8C5DF03CE17DAC8231C91C, D012A3C8F394DF4F0BF5D5A4C10E73BBF427762B7D3DB6CF5FAB96536E082B7A ] C:\WINDOWS\system32\basesrv.dll
19:57:43.0765 0x0ce8 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6, FAC6B8E2698D0EB12A0ACE62EA398AD05AB6AC5C39740A1E8BDAAF0BFDD5B4A3 ] C:\WINDOWS\system32\winsrv.dll
19:57:43.0828 0x0ce8 [ 4C0AA4ABC4E21672B55D8A700AF2B2A6, FAC6B8E2698D0EB12A0ACE62EA398AD05AB6AC5C39740A1E8BDAAF0BFDD5B4A3 ] C:\WINDOWS\system32\winsrv.dll
19:57:43.0875 0x0ce8 [ 9EF697AF07BB8DD82C3B02CA953A95B7, F26033E660B8FF1BDB9E88CDA205CE128C03138AF6BEC05DB3CF2D95C16D86C6 ] C:\WINDOWS\system32\services.exe
19:57:43.0890 0x0ce8 [ Global ] - ok
19:57:43.0906 0x0ce8 ================ Scan MBR ==================================
19:57:43.0921 0x0ce8 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
19:57:44.0156 0x0ce8 \Device\Harddisk0\DR0 - ok
19:57:44.0187 0x0ce8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
19:57:44.0734 0x0ce8 \Device\Harddisk1\DR1 - ok
19:57:44.0734 0x0ce8 ================ Scan VBR ==================================
19:57:44.0750 0x0ce8 [ 8730EB41D81E286E203F0A21D30279B4 ] \Device\Harddisk0\DR0\Partition1
19:57:44.0750 0x0ce8 \Device\Harddisk0\DR0\Partition1 - ok
19:57:44.0765 0x0ce8 [ CA5C52B43264905C754B3B092D95B4CF ] \Device\Harddisk1\DR1\Partition1
19:57:44.0781 0x0ce8 \Device\Harddisk1\DR1\Partition1 - ok
19:57:44.0781 0x0ce8 [ D0AD9D843949C72E94F2B6FECAD4BAFE ] \Device\Harddisk1\DR1\Partition2
19:57:44.0796 0x0ce8 \Device\Harddisk1\DR1\Partition2 - ok
19:57:44.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:45.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:46.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:47.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:48.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:49.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:50.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:51.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:52.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:53.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:54.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:55.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:56.0796 0x0ce8 Waiting for KSN requests completion. In queue: 172
19:57:57.0890 0x0ce8 AV detected via SS1: avast! Antivirus, 5.0.150996960, disabled, updated
19:57:57.0906 0x0ce8 Win FW state via NFM: disabled
19:58:00.0390 0x0ce8 ============================================================
19:58:00.0390 0x0ce8 Scan finished
19:58:00.0390 0x0ce8 ============================================================
19:58:00.0406 0x0c40 Detected object count: 0
19:58:00.0406 0x0c40 Actual detected object count: 0