Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

PetrBlade · Příspěvekod **PetrBlade** » 12 zář 2012 19:06

(jiný notebook, než v mých předchozích tématech)

Windows 7, x64, Nod32 (hloubková kontrola nic nenašla). Rozkouskovával se na něm obraz, tak Dell vyměnil základovku (2x, podle nich byl problém tam).
Problém ale teď je, že se objevuje modrá smrt.

Zkoušel jsem Verifier na kontrolu driverů. 2x proběhla, žádný výpis se neobjevil. Tak jsem ve Verifieru odstranil nastavení, restartoval a bum, modrá smrt. Výpis je v příloze. (takže v driverech to asi není)

Mrkne se na to někdo. Díky.

PS: Pokud se to nevyřeší, tak v pohodě. Dell slíbil, že notebook vymění (ale zase budeme dlouho bez něj).

Reklama

PetrBlade · Příspěvekod **PetrBlade** » 12 zář 2012 20:34

Přidávám ještě log z Hijackthis.
Mohla by tam být nějaká havěť, protože se (asi - nebyl jsem u toho) sama po dnešní dřívější modré smrti nastavilo v Internet Explorer jako domácí stránka nějaký arabský forum (přihlašovací stránka na něj). Jaký konkrétně nevím, protože jsem si to nenapsal a při čištění CCleanerem jsem o cookies přišel, takže už to teď nezjistím.

Kromě nejnovějšího Nodu32 jsem projel disk i aktualizovaným Malwarebytes' Anti-Malware a Spyware Terminator 2012 a nic mi to nenašlo. Všechno hloubkový kontroly.

V krajním případě se uchýlím ke Combofixu, ale až na Vaše doporučení.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:54:13, on 12.9.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [Dell Registration] C:\Program Files (x86)\System Registration\prodreg.exe /boot
O4 - HKLM\..\Run: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {682C59F5-478C-4421-9070-AD170D143B77} (Launcher Class) - http://www.dell.com/support/troubleshoo ... /pcd86.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Dell DataSafe Online (NOBU) - Dell, Inc. - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: RoxMediaDB12OEM - Sonic Solutions - c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
O23 - Service: Roxio Hard Drive Watcher 12 (RoxWatch12) - Sonic Solutions - c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9126 bytes

guest · Příspěvekod **guest** » 12 zář 2012 20:37

Jak si přišel na to dát to sem v raru? To nevidíš jak to dávají ostatní?

PetrBlade · Příspěvekod **PetrBlade** » 12 zář 2012 20:44

Jak jsem dával ten dmp, tak jsem to udělal stejně, nedošlo mi to. Mám to vypsat nebo už je to jedno?

EDIT: Jasný. Udělal jsem radši nový log po restartu, bez spuštěnýho Spyware Terminatora, a překopíroval ho.

guest · Příspěvekod **guest** » 12 zář 2012 20:53

Mně to jedno je, nevím jak tomu kdo to bude kontrolovat. :-)

PetrBlade · Příspěvekod **PetrBlade** » 13 zář 2012 09:42

Dneska hned po zapnutí nová BSoD, viz příloha.

Příspěvekod **jaro3** » 13 zář 2012 10:14

Na minidump kontaktuj uživatele MiliNess.

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

PetrBlade · Příspěvekod **PetrBlade** » 19 zář 2012 14:24

Vše proběhlo v pořádku, logy:

14:00:09.0417 4756 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
14:00:09.0495 4756 ============================================================
14:00:09.0495 4756 Current date / time: 2012/09/19 14:00:09.0495
14:00:09.0495 4756 SystemInfo:
14:00:09.0495 4756
14:00:09.0495 4756 OS Version: 6.1.7601 ServicePack: 1.0
14:00:09.0495 4756 Product type: Workstation
14:00:09.0495 4756 ComputerName: KREJCI-PC
14:00:09.0495 4756 UserName: krejci
14:00:09.0495 4756 Windows directory: C:\windows
14:00:09.0495 4756 System windows directory: C:\windows
14:00:09.0495 4756 Running under WOW64
14:00:09.0495 4756 Processor architecture: Intel x64
14:00:09.0495 4756 Number of processors: 4
14:00:09.0495 4756 Page size: 0x1000
14:00:09.0495 4756 Boot type: Normal boot
14:00:09.0495 4756 ============================================================
14:00:10.0072 4756 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:00:10.0087 4756 ============================================================
14:00:10.0087 4756 \Device\Harddisk0\DR0:
14:00:10.0087 4756 MBR partitions:
14:00:10.0087 4756 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
14:00:10.0087 4756 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x236AFAB0
14:00:10.0087 4756 ============================================================
14:00:10.0119 4756 C: <-> \Device\Harddisk0\DR0\Partition2
14:00:10.0119 4756 ============================================================
14:00:10.0119 4756 Initialize success
14:00:10.0119 4756 ============================================================
14:00:18.0309 5096 ============================================================
14:00:18.0309 5096 Scan started
14:00:18.0309 5096 Mode: Manual;
14:00:18.0309 5096 ============================================================
14:00:18.0777 5096 ================ Scan system memory ========================
14:00:18.0777 5096 System memory - ok
14:00:18.0777 5096 ================ Scan services =============================
14:00:19.0432 5096 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
14:00:19.0447 5096 1394ohci - ok
14:00:19.0510 5096 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
14:00:19.0541 5096 ACPI - ok
14:00:19.0557 5096 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
14:00:19.0557 5096 AcpiPmi - ok
14:00:19.0697 5096 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:00:19.0713 5096 AdobeARMservice - ok
14:00:19.0744 5096 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
14:00:19.0759 5096 adp94xx - ok
14:00:19.0791 5096 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
14:00:19.0806 5096 adpahci - ok
14:00:19.0837 5096 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
14:00:19.0837 5096 adpu320 - ok
14:00:19.0884 5096 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
14:00:19.0884 5096 AeLookupSvc - ok
14:00:19.0931 5096 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
14:00:19.0962 5096 AFD - ok
14:00:19.0978 5096 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
14:00:19.0993 5096 agp440 - ok
14:00:20.0025 5096 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
14:00:20.0025 5096 ALG - ok
14:00:20.0040 5096 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
14:00:20.0056 5096 aliide - ok
14:00:20.0071 5096 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
14:00:20.0071 5096 amdide - ok
14:00:20.0087 5096 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
14:00:20.0103 5096 AmdK8 - ok
14:00:20.0118 5096 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
14:00:20.0118 5096 AmdPPM - ok
14:00:20.0149 5096 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
14:00:20.0149 5096 amdsata - ok
14:00:20.0181 5096 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
14:00:20.0227 5096 amdsbs - ok
14:00:20.0259 5096 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
14:00:20.0259 5096 amdxata - ok
14:00:20.0290 5096 [ 24ED0EB2B2558970176ECEE680F8F806 ] ApfiltrService C:\windows\system32\DRIVERS\Apfiltr.sys
14:00:20.0290 5096 ApfiltrService - ok
14:00:20.0305 5096 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
14:00:20.0321 5096 AppID - ok
14:00:20.0352 5096 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
14:00:20.0368 5096 AppIDSvc - ok
14:00:20.0383 5096 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
14:00:20.0399 5096 Appinfo - ok
14:00:20.0446 5096 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
14:00:20.0446 5096 arc - ok
14:00:20.0477 5096 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
14:00:20.0477 5096 arcsas - ok
14:00:20.0617 5096 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:00:20.0664 5096 aspnet_state - ok
14:00:20.0711 5096 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
14:00:20.0711 5096 AsyncMac - ok
14:00:20.0742 5096 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
14:00:20.0742 5096 atapi - ok
14:00:20.0789 5096 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
14:00:20.0820 5096 AudioEndpointBuilder - ok
14:00:20.0851 5096 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
14:00:20.0867 5096 AudioSrv - ok
14:00:20.0883 5096 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
14:00:20.0883 5096 AxInstSV - ok
14:00:20.0929 5096 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
14:00:20.0976 5096 b06bdrv - ok
14:00:21.0007 5096 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
14:00:21.0023 5096 b57nd60a - ok
14:00:21.0054 5096 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
14:00:21.0054 5096 BDESVC - ok
14:00:21.0101 5096 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
14:00:21.0101 5096 Beep - ok
14:00:21.0148 5096 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
14:00:21.0179 5096 BFE - ok
14:00:21.0241 5096 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
14:00:21.0273 5096 BITS - ok
14:00:21.0319 5096 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
14:00:21.0319 5096 blbdrive - ok
14:00:21.0460 5096 [ 093B1B419EF25B15D3A1CA6953F41AFB ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
14:00:21.0460 5096 Bluetooth Device Monitor - ok
14:00:21.0569 5096 [ 03A7341E94ACD92E0831336D4F3ACE92 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
14:00:21.0569 5096 Bluetooth Media Service - ok
14:00:21.0585 5096 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
14:00:21.0585 5096 bowser - ok
14:00:21.0616 5096 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
14:00:21.0616 5096 BrFiltLo - ok
14:00:21.0631 5096 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
14:00:21.0631 5096 BrFiltUp - ok
14:00:21.0631 5096 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
14:00:21.0647 5096 BridgeMP - ok
14:00:21.0678 5096 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
14:00:21.0694 5096 Browser - ok
14:00:21.0725 5096 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
14:00:21.0741 5096 Brserid - ok
14:00:21.0772 5096 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
14:00:21.0787 5096 BrSerWdm - ok
14:00:21.0819 5096 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
14:00:21.0819 5096 BrUsbMdm - ok
14:00:21.0834 5096 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
14:00:21.0834 5096 BrUsbSer - ok
14:00:21.0912 5096 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
14:00:21.0912 5096 BthEnum - ok
14:00:21.0943 5096 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
14:00:21.0943 5096 BTHMODEM - ok
14:00:21.0990 5096 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
14:00:21.0990 5096 BthPan - ok
14:00:22.0037 5096 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
14:00:22.0084 5096 BTHPORT - ok
14:00:22.0115 5096 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
14:00:22.0131 5096 bthserv - ok
14:00:22.0146 5096 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
14:00:22.0162 5096 BTHUSB - ok
14:00:22.0193 5096 [ 16C1BAC9760C9FA85A30F3FA0FBB1B7A ] btmaux C:\windows\system32\DRIVERS\btmaux.sys
14:00:22.0193 5096 btmaux - ok
14:00:22.0240 5096 [ 40C6FEC49D1CC4D112368A2BCD2BCBB7 ] btmhsf C:\windows\system32\DRIVERS\btmhsf.sys
14:00:22.0240 5096 btmhsf - ok
14:00:22.0255 5096 catchme - ok
14:00:22.0287 5096 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
14:00:22.0287 5096 cdfs - ok
14:00:22.0333 5096 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
14:00:22.0333 5096 cdrom - ok
14:00:22.0365 5096 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
14:00:22.0365 5096 CertPropSvc - ok
14:00:22.0396 5096 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
14:00:22.0396 5096 circlass - ok
14:00:22.0443 5096 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
14:00:22.0474 5096 CLFS - ok
14:00:22.0567 5096 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:00:22.0583 5096 clr_optimization_v2.0.50727_32 - ok
14:00:22.0630 5096 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:00:22.0645 5096 clr_optimization_v2.0.50727_64 - ok
14:00:22.0739 5096 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:00:22.0848 5096 clr_optimization_v4.0.30319_32 - ok
14:00:22.0864 5096 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:00:22.0911 5096 clr_optimization_v4.0.30319_64 - ok
14:00:22.0942 5096 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
14:00:22.0957 5096 CmBatt - ok
14:00:22.0957 5096 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
14:00:22.0973 5096 cmdide - ok
14:00:23.0051 5096 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
14:00:23.0051 5096 CNG - ok
14:00:23.0067 5096 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
14:00:23.0082 5096 Compbatt - ok
14:00:23.0082 5096 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
14:00:23.0113 5096 CompositeBus - ok
14:00:23.0113 5096 COMSysApp - ok
14:00:23.0145 5096 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
14:00:23.0145 5096 crcdisk - ok
14:00:23.0223 5096 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
14:00:23.0238 5096 CryptSvc - ok
14:00:23.0301 5096 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\windows\system32\DRIVERS\CtClsFlt.sys
14:00:23.0316 5096 CtClsFlt - ok
14:00:23.0347 5096 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
14:00:23.0379 5096 DcomLaunch - ok
14:00:23.0410 5096 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
14:00:23.0410 5096 defragsvc - ok
14:00:23.0457 5096 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
14:00:23.0472 5096 DfsC - ok
14:00:23.0488 5096 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
14:00:23.0488 5096 Dhcp - ok
14:00:23.0519 5096 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
14:00:23.0519 5096 discache - ok
14:00:23.0535 5096 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
14:00:23.0535 5096 Disk - ok
14:00:23.0566 5096 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
14:00:23.0566 5096 Dnscache - ok
14:00:23.0597 5096 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
14:00:23.0597 5096 dot3svc - ok
14:00:23.0628 5096 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
14:00:23.0628 5096 DPS - ok
14:00:23.0644 5096 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
14:00:23.0691 5096 drmkaud - ok
14:00:23.0737 5096 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
14:00:23.0753 5096 DXGKrnl - ok
14:00:23.0784 5096 [ D00EAE9C735A7DEE8049E50D73D25434 ] eamonm C:\windows\system32\DRIVERS\eamonm.sys
14:00:23.0784 5096 eamonm - ok
14:00:23.0815 5096 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
14:00:23.0815 5096 EapHost - ok
14:00:23.0940 5096 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
14:00:24.0034 5096 ebdrv - ok
14:00:24.0081 5096 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
14:00:24.0081 5096 EFS - ok
14:00:24.0127 5096 [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] ehdrv C:\windows\system32\DRIVERS\ehdrv.sys
14:00:24.0127 5096 ehdrv - ok
14:00:24.0221 5096 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
14:00:24.0268 5096 ehRecvr - ok
14:00:24.0283 5096 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
14:00:24.0283 5096 ehSched - ok
14:00:24.0408 5096 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
14:00:24.0424 5096 ekrn - ok
14:00:24.0455 5096 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
14:00:24.0486 5096 elxstor - ok
14:00:24.0533 5096 [ 3EBB7FD3C605262B942868A1D840F4F1 ] epfwwfpr C:\windows\system32\DRIVERS\epfwwfpr.sys
14:00:24.0533 5096 epfwwfpr - ok
14:00:24.0549 5096 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
14:00:24.0549 5096 ErrDev - ok
14:00:24.0611 5096 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
14:00:24.0611 5096 EventSystem - ok
14:00:24.0720 5096 [ 8B6C9924B0D333DBF76086B8258A0891 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:00:24.0783 5096 EvtEng - ok
14:00:24.0845 5096 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
14:00:24.0845 5096 exfat - ok
14:00:24.0876 5096 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
14:00:24.0876 5096 fastfat - ok
14:00:24.0985 5096 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
14:00:25.0001 5096 Fax - ok
14:00:25.0032 5096 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
14:00:25.0079 5096 fdc - ok
14:00:25.0095 5096 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
14:00:25.0095 5096 fdPHost - ok
14:00:25.0126 5096 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
14:00:25.0141 5096 FDResPub - ok
14:00:25.0157 5096 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
14:00:25.0173 5096 FileInfo - ok
14:00:25.0173 5096 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
14:00:25.0204 5096 Filetrace - ok
14:00:25.0235 5096 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
14:00:25.0251 5096 flpydisk - ok
14:00:25.0266 5096 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
14:00:25.0282 5096 FltMgr - ok
14:00:25.0344 5096 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
14:00:25.0422 5096 FontCache - ok
14:00:25.0531 5096 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:00:25.0578 5096 FontCache3.0.0.0 - ok
14:00:25.0594 5096 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
14:00:25.0609 5096 FsDepends - ok
14:00:25.0656 5096 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
14:00:25.0687 5096 Fs_Rec - ok
14:00:25.0750 5096 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
14:00:25.0765 5096 fvevol - ok
14:00:25.0781 5096 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
14:00:25.0781 5096 gagp30kx - ok
14:00:25.0828 5096 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
14:00:25.0859 5096 gpsvc - ok
14:00:25.0890 5096 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
14:00:25.0890 5096 hcw85cir - ok
14:00:25.0937 5096 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
14:00:25.0953 5096 HdAudAddService - ok
14:00:25.0984 5096 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
14:00:25.0999 5096 HDAudBus - ok
14:00:26.0015 5096 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
14:00:26.0031 5096 HidBatt - ok
14:00:26.0031 5096 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
14:00:26.0046 5096 HidBth - ok
14:00:26.0062 5096 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
14:00:26.0062 5096 HidIr - ok
14:00:26.0124 5096 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
14:00:26.0140 5096 hidserv - ok
14:00:26.0171 5096 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
14:00:26.0187 5096 HidUsb - ok
14:00:26.0218 5096 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
14:00:26.0218 5096 hkmsvc - ok
14:00:26.0249 5096 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
14:00:26.0280 5096 HomeGroupListener - ok
14:00:26.0343 5096 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
14:00:26.0358 5096 HomeGroupProvider - ok
14:00:26.0405 5096 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
14:00:26.0405 5096 HpSAMD - ok
14:00:26.0530 5096 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
14:00:26.0561 5096 HTTP - ok
14:00:26.0577 5096 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
14:00:26.0577 5096 hwpolicy - ok
14:00:26.0592 5096 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
14:00:26.0608 5096 i8042prt - ok
14:00:26.0670 5096 [ D7921D5A870B11CC1ADAB198A519D50A ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
14:00:26.0686 5096 iaStor - ok
14:00:26.0779 5096 [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
14:00:26.0779 5096 IAStorDataMgrSvc - ok
14:00:26.0811 5096 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
14:00:26.0842 5096 iaStorV - ok
14:00:26.0889 5096 [ FC47F5CF561BF0FD897EFD1A9604DCCF ] iBtFltCoex C:\windows\system32\DRIVERS\iBtFltCoex.sys
14:00:26.0889 5096 iBtFltCoex - ok
14:00:26.0935 5096 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:00:26.0951 5096 idsvc - ok
14:00:27.0294 5096 [ 174BCAC474DE13B2650E444CF124828E ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
14:00:27.0528 5096 igfx - ok
14:00:27.0575 5096 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
14:00:27.0575 5096 iirsp - ok
14:00:27.0622 5096 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
14:00:27.0669 5096 IKEEXT - ok
14:00:27.0715 5096 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
14:00:27.0731 5096 intaud_WaveExtensible - ok
14:00:27.0747 5096 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
14:00:27.0747 5096 intelide - ok
14:00:27.0762 5096 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
14:00:27.0762 5096 intelppm - ok
14:00:27.0809 5096 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
14:00:27.0809 5096 IPBusEnum - ok
14:00:27.0825 5096 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
14:00:27.0825 5096 IpFilterDriver - ok
14:00:27.0903 5096 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
14:00:27.0934 5096 iphlpsvc - ok
14:00:27.0949 5096 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
14:00:27.0949 5096 IPMIDRV - ok
14:00:27.0965 5096 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
14:00:27.0965 5096 IPNAT - ok
14:00:27.0965 5096 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
14:00:27.0965 5096 IRENUM - ok
14:00:27.0965 5096 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
14:00:27.0965 5096 isapnp - ok
14:00:27.0996 5096 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
14:00:28.0012 5096 iScsiPrt - ok
14:00:28.0043 5096 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\windows\system32\DRIVERS\iwdbus.sys
14:00:28.0043 5096 iwdbus - ok
14:00:28.0059 5096 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
14:00:28.0059 5096 kbdclass - ok
14:00:28.0074 5096 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
14:00:28.0074 5096 kbdhid - ok
14:00:28.0090 5096 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
14:00:28.0090 5096 KeyIso - ok
14:00:28.0137 5096 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
14:00:28.0137 5096 KSecDD - ok
14:00:28.0152 5096 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
14:00:28.0152 5096 KSecPkg - ok
14:00:28.0183 5096 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
14:00:28.0183 5096 ksthunk - ok
14:00:28.0246 5096 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
14:00:28.0261 5096 KtmRm - ok
14:00:28.0324 5096 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
14:00:28.0339 5096 LanmanServer - ok
14:00:28.0355 5096 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
14:00:28.0355 5096 LanmanWorkstation - ok
14:00:28.0371 5096 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
14:00:28.0371 5096 lltdio - ok
14:00:28.0417 5096 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
14:00:28.0449 5096 lltdsvc - ok
14:00:28.0449 5096 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
14:00:28.0464 5096 lmhosts - ok
14:00:28.0511 5096 [ 0803906D607A9B83184447B75B60ECC2 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
14:00:28.0527 5096 LMS - ok
14:00:28.0542 5096 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
14:00:28.0558 5096 LSI_FC - ok
14:00:28.0573 5096 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
14:00:28.0573 5096 LSI_SAS - ok
14:00:28.0589 5096 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
14:00:28.0589 5096 LSI_SAS2 - ok
14:00:28.0605 5096 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
14:00:28.0605 5096 LSI_SCSI - ok
14:00:28.0667 5096 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
14:00:28.0667 5096 luafv - ok
14:00:28.0698 5096 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
14:00:28.0698 5096 MBAMProtector - ok
14:00:28.0807 5096 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:00:28.0870 5096 MBAMService - ok
14:00:28.0901 5096 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
14:00:28.0917 5096 Mcx2Svc - ok
14:00:29.0010 5096 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
14:00:29.0010 5096 MDM - ok
14:00:29.0057 5096 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
14:00:29.0057 5096 megasas - ok
14:00:29.0104 5096 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
14:00:29.0119 5096 MegaSR - ok
14:00:29.0151 5096 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
14:00:29.0166 5096 MEIx64 - ok
14:00:29.0182 5096 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
14:00:29.0197 5096 MMCSS - ok
14:00:29.0197 5096 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
14:00:29.0197 5096 Modem - ok
14:00:29.0244 5096 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
14:00:29.0244 5096 monitor - ok
14:00:29.0275 5096 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
14:00:29.0275 5096 mouclass - ok
14:00:29.0307 5096 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
14:00:29.0322 5096 mouhid - ok
14:00:29.0338 5096 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
14:00:29.0353 5096 mountmgr - ok
14:00:29.0400 5096 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
14:00:29.0400 5096 mpio - ok
14:00:29.0431 5096 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
14:00:29.0431 5096 mpsdrv - ok
14:00:29.0463 5096 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
14:00:29.0509 5096 MpsSvc - ok
14:00:29.0541 5096 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
14:00:29.0541 5096 MRxDAV - ok
14:00:29.0572 5096 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
14:00:29.0587 5096 mrxsmb - ok
14:00:29.0619 5096 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
14:00:29.0619 5096 mrxsmb10 - ok
14:00:29.0650 5096 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
14:00:29.0650 5096 mrxsmb20 - ok
14:00:29.0665 5096 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
14:00:29.0665 5096 msahci - ok
14:00:29.0697 5096 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
14:00:29.0697 5096 msdsm - ok
14:00:29.0712 5096 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
14:00:29.0728 5096 MSDTC - ok
14:00:29.0775 5096 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
14:00:29.0775 5096 Msfs - ok
14:00:29.0775 5096 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
14:00:29.0790 5096 mshidkmdf - ok
14:00:29.0790 5096 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
14:00:29.0821 5096 msisadrv - ok
14:00:29.0837 5096 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
14:00:29.0853 5096 MSiSCSI - ok
14:00:29.0853 5096 msiserver - ok
14:00:29.0884 5096 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
14:00:29.0915 5096 MSKSSRV - ok
14:00:29.0915 5096 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
14:00:29.0915 5096 MSPCLOCK - ok
14:00:29.0962 5096 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
14:00:29.0962 5096 MSPQM - ok
14:00:29.0993 5096 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
14:00:30.0009 5096 MsRPC - ok
14:00:30.0040 5096 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
14:00:30.0040 5096 mssmbios - ok
14:00:30.0040 5096 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
14:00:30.0071 5096 MSTEE - ok
14:00:30.0071 5096 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
14:00:30.0071 5096 MTConfig - ok
14:00:30.0102 5096 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
14:00:30.0102 5096 Mup - ok
14:00:30.0165 5096 [ 6ED8935257672F4CD04A88A0F3DE093D ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
14:00:30.0165 5096 MyWiFiDHCPDNS - ok
14:00:30.0258 5096 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
14:00:30.0274 5096 napagent - ok
14:00:30.0321 5096 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
14:00:30.0321 5096 NativeWifiP - ok
14:00:30.0430 5096 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
14:00:30.0461 5096 NAUpdate - ok
14:00:30.0539 5096 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
14:00:30.0617 5096 NDIS - ok
14:00:30.0664 5096 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
14:00:30.0664 5096 NdisCap - ok
14:00:30.0695 5096 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
14:00:30.0695 5096 NdisTapi - ok
14:00:30.0711 5096 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
14:00:30.0726 5096 Ndisuio - ok
14:00:30.0757 5096 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
14:00:30.0757 5096 NdisWan - ok
14:00:30.0789 5096 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
14:00:30.0789 5096 NDProxy - ok
14:00:30.0804 5096 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
14:00:30.0804 5096 NetBIOS - ok
14:00:30.0835 5096 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
14:00:30.0835 5096 NetBT - ok
14:00:30.0851 5096 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
14:00:30.0867 5096 Netlogon - ok
14:00:30.0898 5096 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
14:00:30.0929 5096 Netman - ok
14:00:30.0976 5096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:00:31.0085 5096 NetMsmqActivator - ok
14:00:31.0101 5096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:00:31.0101 5096 NetPipeActivator - ok
14:00:31.0147 5096 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
14:00:31.0179 5096 netprofm - ok
14:00:31.0179 5096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:00:31.0194 5096 NetTcpActivator - ok
14:00:31.0194 5096 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:00:31.0194 5096 NetTcpPortSharing - ok
14:00:31.0537 5096 [ 5D262402B0634C998F8CBCEAD7DD8676 ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
14:00:31.0725 5096 NETwNs64 - ok
14:00:31.0787 5096 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
14:00:31.0787 5096 nfrd960 - ok
14:00:31.0818 5096 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
14:00:31.0834 5096 NlaSvc - ok
14:00:31.0990 5096 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
14:00:32.0068 5096 NOBU - ok
14:00:32.0083 5096 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
14:00:32.0083 5096 Npfs - ok
14:00:32.0099 5096 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
14:00:32.0099 5096 nsi - ok
14:00:32.0115 5096 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
14:00:32.0115 5096 nsiproxy - ok
14:00:32.0193 5096 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
14:00:32.0239 5096 Ntfs - ok
14:00:32.0255 5096 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
14:00:32.0271 5096 Null - ok
14:00:32.0302 5096 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\windows\system32\DRIVERS\nusb3hub.sys
14:00:32.0317 5096 nusb3hub - ok
14:00:32.0333 5096 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\windows\system32\DRIVERS\nusb3xhc.sys
14:00:32.0333 5096 nusb3xhc - ok
14:00:32.0380 5096 [ F2662FDC20518EE8A8EED4F61BA42349 ] NVHDA C:\windows\system32\drivers\nvhda64v.sys
14:00:32.0395 5096 NVHDA - ok
14:00:32.0988 5096 [ 573B0941A37AEBEE96085D56A103F57B ] nvlddmkm C:\windows\system32\DRIVERS\nvlddmkm.sys
14:00:33.0066 5096 nvlddmkm - ok
14:00:33.0097 5096 [ 43AF7EBEAC2AB623468E32CADDCB61A4 ] nvpciflt C:\windows\system32\DRIVERS\nvpciflt.sys
14:00:33.0097 5096 nvpciflt - ok
14:00:33.0129 5096 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
14:00:33.0144 5096 nvraid - ok
14:00:33.0160 5096 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
14:00:33.0175 5096 nvstor - ok
14:00:33.0222 5096 [ C500760572C6059918FB0C960967695B ] NVSvc C:\windows\system32\nvvsvc.exe
14:00:33.0253 5096 NVSvc - ok
14:00:33.0503 5096 [ F28169A7ADF7B41809CF92D369E744F0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
14:00:33.0550 5096 nvUpdatusService - ok
14:00:33.0565 5096 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
14:00:33.0565 5096 nv_agp - ok
14:00:33.0597 5096 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
14:00:33.0597 5096 ohci1394 - ok
14:00:33.0659 5096 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:00:33.0659 5096 ose - ok
14:00:33.0706 5096 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
14:00:33.0706 5096 p2pimsvc - ok
14:00:33.0737 5096 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
14:00:33.0753 5096 p2psvc - ok
14:00:33.0815 5096 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
14:00:33.0815 5096 Parport - ok
14:00:33.0846 5096 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
14:00:33.0846 5096 partmgr - ok
14:00:33.0893 5096 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
14:00:33.0909 5096 PcaSvc - ok
14:00:34.0158 5096 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
14:00:34.0267 5096 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
14:00:34.0299 5096 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
14:00:34.0299 5096 pci - ok
14:00:34.0314 5096 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
14:00:34.0330 5096 pciide - ok
14:00:34.0345 5096 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
14:00:34.0361 5096 pcmcia - ok
14:00:34.0392 5096 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
14:00:34.0392 5096 pcw - ok
14:00:34.0439 5096 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
14:00:34.0486 5096 PEAUTH - ok
14:00:34.0876 5096 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
14:00:34.0876 5096 PerfHost - ok
14:00:35.0157 5096 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
14:00:35.0235 5096 pla - ok
14:00:35.0313 5096 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
14:00:35.0344 5096 PlugPlay - ok
14:00:35.0406 5096 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
14:00:35.0406 5096 PNRPAutoReg - ok
14:00:35.0469 5096 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
14:00:35.0484 5096 PNRPsvc - ok
14:00:35.0593 5096 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
14:00:35.0609 5096 PolicyAgent - ok
14:00:35.0687 5096 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
14:00:35.0703 5096 Power - ok
14:00:35.0765 5096 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
14:00:35.0765 5096 PptpMiniport - ok
14:00:35.0812 5096 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
14:00:35.0812 5096 Processor - ok
14:00:35.0859 5096 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
14:00:35.0874 5096 ProfSvc - ok
14:00:35.0905 5096 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
14:00:35.0905 5096 ProtectedStorage - ok
14:00:35.0937 5096 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
14:00:35.0968 5096 Psched - ok
14:00:36.0030 5096 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys
14:00:36.0030 5096 PxHlpa64 - ok
14:00:36.0311 5096 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
14:00:36.0405 5096 ql2300 - ok
14:00:36.0451 5096 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
14:00:36.0467 5096 ql40xx - ok
14:00:36.0498 5096 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
14:00:36.0498 5096 QWAVE - ok
14:00:36.0545 5096 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
14:00:36.0545 5096 QWAVEdrv - ok
14:00:36.0545 5096 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
14:00:36.0561 5096 RasAcd - ok
14:00:36.0592 5096 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
14:00:36.0592 5096 RasAgileVpn - ok
14:00:36.0607 5096 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
14:00:36.0623 5096 RasAuto - ok
14:00:36.0639 5096 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
14:00:36.0639 5096 Rasl2tp - ok
14:00:36.0670 5096 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
14:00:36.0670 5096 RasMan - ok
14:00:36.0685 5096 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
14:00:36.0685 5096 RasPppoe - ok
14:00:36.0701 5096 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
14:00:36.0701 5096 RasSstp - ok
14:00:36.0732 5096 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
14:00:36.0748 5096 rdbss - ok
14:00:36.0763 5096 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
14:00:36.0763 5096 rdpbus - ok
14:00:36.0795 5096 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
14:00:36.0795 5096 RDPCDD - ok
14:00:36.0810 5096 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
14:00:36.0810 5096 RDPENCDD - ok
14:00:36.0841 5096 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
14:00:36.0857 5096 RDPREFMP - ok
14:00:36.0888 5096 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
14:00:36.0888 5096 RDPWD - ok
14:00:36.0919 5096 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
14:00:36.0919 5096 rdyboost - ok
14:00:37.0029 5096 [ 189C5A8D2098E0AA14FD157A954B34FC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:00:37.0044 5096 RegSrvc - ok
14:00:37.0107 5096 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
14:00:37.0107 5096 RemoteAccess - ok
14:00:37.0216 5096 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
14:00:37.0216 5096 RemoteRegistry - ok
14:00:37.0294 5096 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
14:00:37.0309 5096 RFCOMM - ok
14:00:37.0621 5096 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
14:00:37.0668 5096 RoxMediaDB12OEM - ok
14:00:37.0684 5096 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
14:00:37.0699 5096 RoxWatch12 - ok
14:00:37.0715 5096 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
14:00:37.0715 5096 RpcEptMapper - ok
14:00:37.0746 5096 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
14:00:37.0762 5096 RpcLocator - ok
14:00:37.0793 5096 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
14:00:37.0793 5096 RpcSs - ok
14:00:37.0840 5096 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
14:00:37.0840 5096 rspndr - ok
14:00:37.0871 5096 [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
14:00:37.0871 5096 RSUSBSTOR - ok
14:00:37.0933 5096 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
14:00:37.0933 5096 RTL8167 - ok
14:00:37.0965 5096 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
14:00:37.0965 5096 SamSs - ok
14:00:37.0980 5096 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
14:00:37.0980 5096 sbp2port - ok
14:00:38.0011 5096 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
14:00:38.0011 5096 SCardSvr - ok
14:00:38.0027 5096 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
14:00:38.0027 5096 scfilter - ok
14:00:38.0074 5096 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
14:00:38.0121 5096 Schedule - ok
14:00:38.0152 5096 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
14:00:38.0152 5096 SCPolicySvc - ok
14:00:38.0183 5096 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
14:00:38.0183 5096 SDRSVC - ok
14:00:38.0214 5096 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
14:00:38.0214 5096 secdrv - ok
14:00:38.0230 5096 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
14:00:38.0230 5096 seclogon - ok
14:00:38.0261 5096 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
14:00:38.0261 5096 SENS - ok
14:00:38.0292 5096 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
14:00:38.0308 5096 SensrSvc - ok
14:00:38.0323 5096 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
14:00:38.0339 5096 Serenum - ok
14:00:38.0370 5096 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
14:00:38.0370 5096 Serial - ok
14:00:38.0386 5096 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
14:00:38.0401 5096 sermouse - ok
14:00:38.0433 5096 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
14:00:38.0433 5096 SessionEnv - ok
14:00:38.0448 5096 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
14:00:38.0464 5096 sffdisk - ok
14:00:38.0464 5096 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
14:00:38.0479 5096 sffp_mmc - ok
14:00:38.0495 5096 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
14:00:38.0495 5096 sffp_sd - ok
14:00:38.0511 5096 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
14:00:38.0511 5096 sfloppy - ok
14:00:38.0620 5096 [ 1968E6EBBEECF61D5F7D8603467E2AD0 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
14:00:38.0667 5096 SftService - ok
14:00:38.0713 5096 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
14:00:38.0729 5096 SharedAccess - ok
14:00:38.0760 5096 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
14:00:38.0776 5096 ShellHWDetection - ok
14:00:38.0807 5096 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
14:00:38.0807 5096 SiSRaid2 - ok
14:00:38.0838 5096 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
14:00:38.0854 5096 SiSRaid4 - ok
14:00:38.0901 5096 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
14:00:38.0916 5096 SkypeUpdate - ok
14:00:38.0932 5096 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
14:00:38.0932 5096 Smb - ok
14:00:38.0963 5096 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
14:00:38.0979 5096 SNMPTRAP - ok
14:00:38.0979 5096 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
14:00:38.0994 5096 spldr - ok
14:00:39.0041 5096 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
14:00:39.0072 5096 Spooler - ok
14:00:39.0150 5096 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
14:00:39.0244 5096 sppsvc - ok
14:00:39.0291 5096 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
14:00:39.0306 5096 sppuinotify - ok
14:00:39.0353 5096 [ B9657A0AFF28C1CB114ACC0CB93EE4BB ] sp_rsdrv2 C:\windows\system32\DRIVERS\stflt.sys
14:00:39.0353 5096 sp_rsdrv2 - ok
14:00:39.0384 5096 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
14:00:39.0400 5096 srv - ok
14:00:39.0447 5096 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
14:00:39.0447 5096 srv2 - ok
14:00:39.0478 5096 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
14:00:39.0478 5096 srvnet - ok
14:00:39.0493 5096 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
14:00:39.0509 5096 SSDPSRV - ok
14:00:39.0525 5096 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
14:00:39.0540 5096 SstpSvc - ok
14:00:39.0603 5096 [ C504AF1A54EF90BA47D2F75D3C8D3F24 ] ST2012_Svc C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
14:00:39.0681 5096 ST2012_Svc - ok
14:00:39.0743 5096 [ 0683504BBB3FFC0A73D9D217B63DD0E0 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:00:39.0759 5096 Stereo Service - ok
14:00:39.0790 5096 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
14:00:39.0805 5096 stexstor - ok
14:00:39.0821 5096 STHDA - ok
14:00:39.0868 5096 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
14:00:39.0915 5096 stisvc - ok
14:00:39.0993 5096 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
14:00:39.0993 5096 stllssvr - ok
14:00:40.0024 5096 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
14:00:40.0024 5096 swenum - ok
14:00:40.0102 5096 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
14:00:40.0117 5096 swprv - ok
14:00:40.0180 5096 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
14:00:40.0227 5096 SysMain - ok
14:00:40.0258 5096 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
14:00:40.0258 5096 TabletInputService - ok
14:00:40.0305 5096 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
14:00:40.0336 5096 TapiSrv - ok
14:00:40.0351 5096 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
14:00:40.0351 5096 TBS - ok
14:00:40.0429 5096 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
14:00:40.0507 5096 Tcpip - ok
14:00:40.0554 5096 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
14:00:40.0570 5096 TCPIP6 - ok
14:00:40.0601 5096 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
14:00:40.0617 5096 tcpipreg - ok
14:00:40.0632 5096 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
14:00:40.0632 5096 TDPIPE - ok
14:00:40.0663 5096 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
14:00:40.0679 5096 TDTCP - ok
14:00:40.0710 5096 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
14:00:40.0710 5096 tdx - ok
14:00:40.0726 5096 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
14:00:40.0726 5096 TermDD - ok
14:00:40.0773 5096 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
14:00:40.0804 5096 TermService - ok
14:00:40.0819 5096 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
14:00:40.0835 5096 Themes - ok
14:00:40.0866 5096 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
14:00:40.0866 5096 THREADORDER - ok
14:00:40.0882 5096 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
14:00:40.0897 5096 TrkWks - ok
14:00:40.0960 5096 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
14:00:40.0975 5096 TrustedInstaller - ok
14:00:41.0007 5096 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
14:00:41.0007 5096 tssecsrv - ok
14:00:41.0022 5096 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
14:00:41.0022 5096 TsUsbFlt - ok
14:00:41.0053 5096 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
14:00:41.0053 5096 TsUsbGD - ok
14:00:41.0085 5096 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
14:00:41.0085 5096 tunnel - ok
14:00:41.0131 5096 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
14:00:41.0131 5096 uagp35 - ok
14:00:41.0163 5096 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
14:00:41.0194 5096 udfs - ok
14:00:41.0225 5096 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
14:00:41.0225 5096 UI0Detect - ok
14:00:41.0256 5096 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
14:00:41.0256 5096 uliagpkx - ok
14:00:41.0287 5096 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
14:00:41.0303 5096 umbus - ok
14:00:41.0319 5096 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
14:00:41.0334 5096 UmPass - ok
14:00:41.0506 5096 [ EB79C6C91A99930015EF29AE7FA802D1 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
14:00:41.0615 5096 UNS - ok
14:00:41.0662 5096 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
14:00:41.0677 5096 upnphost - ok
14:00:41.0693 5096 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
14:00:41.0693 5096 usbccgp - ok
14:00:41.0724 5096 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
14:00:41.0724 5096 usbcir - ok
14:00:41.0755 5096 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
14:00:41.0755 5096 usbehci - ok
14:00:41.0787 5096 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
14:00:41.0802 5096 usbhub - ok
14:00:41.0833 5096 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
14:00:41.0833 5096 usbohci - ok
14:00:41.0880 5096 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
14:00:41.0880 5096 usbprint - ok
14:00:41.0911 5096 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
14:00:41.0911 5096 USBSTOR - ok
14:00:41.0927 5096 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
14:00:41.0943 5096 usbuhci - ok
14:00:41.0958 5096 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
14:00:41.0974 5096 usbvideo - ok
14:00:41.0989 5096 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
14:00:41.0989 5096 UxSms - ok
14:00:42.0005 5096 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
14:00:42.0005 5096 VaultSvc - ok
14:00:42.0021 5096 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
14:00:42.0021 5096 vdrvroot - ok
14:00:42.0052 5096 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
14:00:42.0083 5096 vds - ok

PetrBlade · Příspěvekod **PetrBlade** » 19 zář 2012 14:25

14:00:42.0099 5096 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
14:00:42.0099 5096 vga - ok
14:00:42.0130 5096 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
14:00:42.0130 5096 VgaSave - ok
14:00:42.0161 5096 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
14:00:42.0161 5096 vhdmp - ok
14:00:42.0192 5096 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
14:00:42.0192 5096 viaide - ok
14:00:42.0208 5096 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
14:00:42.0208 5096 volmgr - ok
14:00:42.0239 5096 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
14:00:42.0255 5096 volmgrx - ok
14:00:42.0270 5096 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
14:00:42.0286 5096 volsnap - ok
14:00:42.0317 5096 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
14:00:42.0317 5096 vsmraid - ok
14:00:42.0379 5096 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
14:00:42.0457 5096 VSS - ok
14:00:42.0473 5096 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
14:00:42.0504 5096 vwifibus - ok
14:00:42.0520 5096 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
14:00:42.0520 5096 vwififlt - ok
14:00:42.0551 5096 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
14:00:42.0582 5096 vwifimp - ok
14:00:42.0613 5096 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
14:00:42.0629 5096 W32Time - ok
14:00:42.0660 5096 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
14:00:42.0660 5096 WacomPen - ok
14:00:42.0691 5096 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
14:00:42.0691 5096 WANARP - ok
14:00:42.0691 5096 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
14:00:42.0691 5096 Wanarpv6 - ok
14:00:42.0801 5096 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
14:00:42.0847 5096 WatAdminSvc - ok
14:00:42.0910 5096 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
14:00:42.0988 5096 wbengine - ok
14:00:42.0988 5096 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
14:00:43.0019 5096 WbioSrvc - ok
14:00:43.0066 5096 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
14:00:43.0081 5096 wcncsvc - ok
14:00:43.0097 5096 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
14:00:43.0113 5096 WcsPlugInService - ok
14:00:43.0128 5096 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
14:00:43.0144 5096 Wd - ok
14:00:43.0175 5096 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
14:00:43.0206 5096 Wdf01000 - ok
14:00:43.0222 5096 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
14:00:43.0222 5096 WdiServiceHost - ok
14:00:43.0237 5096 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
14:00:43.0237 5096 WdiSystemHost - ok
14:00:43.0253 5096 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
14:00:43.0253 5096 WebClient - ok
14:00:43.0269 5096 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
14:00:43.0284 5096 Wecsvc - ok
14:00:43.0300 5096 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
14:00:43.0300 5096 wercplsupport - ok
14:00:43.0315 5096 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
14:00:43.0331 5096 WerSvc - ok
14:00:43.0347 5096 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
14:00:43.0347 5096 WfpLwf - ok
14:00:43.0409 5096 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
14:00:43.0425 5096 WimFltr - ok
14:00:43.0440 5096 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
14:00:43.0456 5096 WIMMount - ok
14:00:43.0487 5096 WinDefend - ok
14:00:43.0487 5096 WinHttpAutoProxySvc - ok
14:00:43.0565 5096 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
14:00:43.0565 5096 Winmgmt - ok
14:00:43.0643 5096 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
14:00:43.0721 5096 WinRM - ok
14:00:43.0799 5096 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
14:00:43.0830 5096 Wlansvc - ok
14:00:43.0893 5096 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
14:00:43.0893 5096 wlcrasvc - ok
14:00:44.0017 5096 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:00:44.0080 5096 wlidsvc - ok
14:00:44.0095 5096 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
14:00:44.0095 5096 WmiAcpi - ok
14:00:44.0142 5096 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
14:00:44.0142 5096 wmiApSrv - ok
14:00:44.0173 5096 WMPNetworkSvc - ok
14:00:44.0189 5096 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
14:00:44.0189 5096 WPCSvc - ok
14:00:44.0220 5096 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
14:00:44.0220 5096 WPDBusEnum - ok
14:00:44.0236 5096 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
14:00:44.0236 5096 ws2ifsl - ok
14:00:44.0267 5096 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
14:00:44.0267 5096 wscsvc - ok
14:00:44.0267 5096 WSearch - ok
14:00:44.0361 5096 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
14:00:44.0454 5096 wuauserv - ok
14:00:44.0470 5096 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
14:00:44.0470 5096 WudfPf - ok
14:00:44.0501 5096 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
14:00:44.0501 5096 WUDFRd - ok
14:00:44.0548 5096 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
14:00:44.0548 5096 wudfsvc - ok
14:00:44.0579 5096 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
14:00:44.0595 5096 WwanSvc - ok
14:00:44.0641 5096 ================ Scan global ===============================
14:00:44.0688 5096 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
14:00:44.0751 5096 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
14:00:44.0829 5096 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
14:00:44.0860 5096 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
14:00:44.0907 5096 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
14:00:44.0938 5096 [Global] - ok
14:00:44.0938 5096 ================ Scan MBR ==================================
14:00:44.0953 5096 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:00:45.0219 5096 \Device\Harddisk0\DR0 - ok
14:00:45.0219 5096 ================ Scan VBR ==================================
14:00:45.0219 5096 [ 17E6064B18AA88ED8319B3238FE06A25 ] \Device\Harddisk0\DR0\Partition1
14:00:45.0234 5096 \Device\Harddisk0\DR0\Partition1 - ok
14:00:45.0250 5096 [ E8411159304009450038F24DF9837590 ] \Device\Harddisk0\DR0\Partition2
14:00:45.0250 5096 \Device\Harddisk0\DR0\Partition2 - ok
14:00:45.0250 5096 ============================================================
14:00:45.0250 5096 Scan finished
14:00:45.0250 5096 ============================================================
14:00:45.0265 5088 Detected object count: 0
14:00:45.0265 5088 Actual detected object count: 0
14:00:55.0717 4752 Deinitialize success

PetrBlade · Příspěvekod **PetrBlade** » 19 zář 2012 14:26

ComboFix 12-09-18.07 - krejci 19.09.2012 14:10:16.4.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.2979.1674 [GMT 2:00]
Spuštěný z: c:\users\krejci\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\krejci\ncftp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-08-19 do 2012-09-19 )))))))))))))))))))))))))))))))
.
.
2012-09-19 12:14 . 2012-09-19 12:14 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-09-19 12:14 . 2012-09-19 12:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-19 11:53 . 2012-08-27 23:49 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7B1AC7CB-ED68-4CB4-A1BD-DB0DA654409E}\mpengine.dll
2012-09-19 11:44 . 2012-09-19 11:44 73696 ----a-w- c:\program files (x86)\Mozilla Firefox\breakpadinjector.dll
2012-09-19 11:30 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-19 11:30 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-19 11:30 . 2012-08-22 18:12 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-19 11:30 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-19 11:30 . 2012-08-22 18:12 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-19 11:30 . 2012-08-02 17:58 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-09-19 11:30 . 2012-08-02 16:57 490496 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-12 21:03 . 2012-09-12 21:03 289768 ----a-w- c:\windows\system32\javaws.exe
2012-09-12 21:03 . 2012-09-12 21:03 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-09-12 21:03 . 2012-09-12 21:03 189416 ----a-w- c:\windows\system32\javaw.exe
2012-09-12 21:03 . 2012-09-12 21:03 188904 ----a-w- c:\windows\system32\java.exe
2012-09-12 21:03 . 2012-09-12 21:03 -------- d-----w- c:\program files\Java
2012-09-12 18:21 . 2012-09-12 18:21 388096 ----a-r- c:\users\krejci\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-09-12 18:21 . 2012-09-12 18:21 -------- d-----w- c:\program files (x86)\Trend Micro
2012-09-08 19:59 . 2012-09-08 19:59 -------- d-----w- c:\users\krejci\AppData\Roaming\vlc
2012-09-07 09:47 . 2012-09-12 13:10 -------- d-----w- c:\users\krejci\AppData\Roaming\Media Player Classic
2012-09-06 18:50 . 2012-09-06 18:50 -------- d-----w- c:\program files\7-Zip
2012-08-30 22:36 . 2012-08-30 22:42 449024 ----a-w- c:\windows\SysWow64\mss32.dll
2012-08-30 22:21 . 2012-08-30 22:25 -------- d-----w- c:\program files\Acclaim Entertainment
2012-08-30 21:44 . 2012-08-30 21:44 -------- d-----w- c:\users\krejci\AppData\Roaming\Rovio
2012-08-30 21:16 . 2012-08-30 21:41 -------- d-----w- c:\users\krejci\AppData\Roaming\Friday's games
2012-08-30 21:15 . 2012-08-30 21:15 -------- d-----w- c:\programdata\Lost Treasures Of El Dorado
2012-08-30 20:42 . 2012-08-30 20:52 -------- d-----w- c:\programdata\TmForever
2012-08-30 19:17 . 2012-08-30 19:17 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-08-30 19:17 . 2012-08-30 19:17 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-08-30 19:16 . 2012-08-30 19:16 -------- d-----w- c:\program files (x86)\Java
2012-08-30 18:35 . 2012-08-30 18:50 -------- d-----w- C:\Games
2012-08-29 10:35 . 2012-08-29 10:35 -------- d-----w- c:\program files (x86)\Geeks3D
2012-08-29 10:25 . 2012-08-29 10:25 -------- d-----w- c:\program files (x86)\BurnInTest
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-19 11:37 . 2012-06-06 11:12 73136 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-19 11:37 . 2012-06-06 11:12 696240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-09-19 11:31 . 2012-06-06 12:45 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-09-12 21:03 . 2012-06-24 19:35 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-09-12 21:03 . 2011-08-28 22:13 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-08-30 19:17 . 2012-06-06 11:14 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-07-18 18:15 . 2012-08-16 12:38 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-07-06 20:07 . 2012-08-16 12:42 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-07-04 22:16 . 2012-08-16 12:38 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-07-04 22:13 . 2012-08-16 12:38 59392 ----a-w- c:\windows\system32\browcli.dll
2012-07-04 22:13 . 2012-08-16 12:38 136704 ----a-w- c:\windows\system32\browser.dll
2012-07-04 21:14 . 2012-08-16 12:38 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-07-03 11:46 . 2012-07-01 12:19 24904 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-01 12:15 . 2012-07-01 12:15 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2012-06-29 04:55 . 2012-08-16 12:41 17809920 ----a-w- c:\windows\system32\mshtml.dll
2012-06-29 04:09 . 2012-08-16 12:41 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-06-29 03:56 . 2012-08-16 12:41 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-06-29 03:49 . 2012-08-16 12:41 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-06-29 03:49 . 2012-08-16 12:41 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-06-29 03:48 . 2012-08-16 12:41 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-06-29 03:47 . 2012-08-16 12:41 237056 ----a-w- c:\windows\system32\url.dll
2012-06-29 03:45 . 2012-08-16 12:41 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-06-29 03:44 . 2012-08-16 12:41 816640 ----a-w- c:\windows\system32\jscript.dll
2012-06-29 03:43 . 2012-08-16 12:41 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-06-29 03:42 . 2012-08-16 12:41 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-06-29 03:40 . 2012-08-16 12:41 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-06-29 03:39 . 2012-08-16 12:41 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-06-29 03:35 . 2012-08-16 12:41 248320 ----a-w- c:\windows\system32\ieui.dll
2012-06-29 00:16 . 2012-08-16 12:41 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-06-29 00:09 . 2012-08-16 12:41 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-06-29 00:08 . 2012-08-16 12:41 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-06-29 00:04 . 2012-08-16 12:41 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-06-29 00:00 . 2012-08-16 12:41 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2011-04-13 503942]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-06 283160]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"Dell Registration"="c:\program files (x86)\System Registration\prodreg.exe" [2010-11-10 4144448]
"Dell DataSafe Online"="c:\program files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe" [2010-08-26 1117528]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-11-25 219632]
R3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [2010-11-03 1298496]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [2011-03-24 34200]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-07-03 24904]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-12-17 340240]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2011-03-04 174184]
R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2012-04-10 25072]
R3 RoxMediaDB12OEM;RoxMediaDB12OEM;c:\program files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-11-25 1116656]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-10-30 250984]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-06 1255736]
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R4 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-07-03 655944]
R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-25 687400]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R4 ST2012_Svc;Spyware Terminator 2012 Realtime Shield Service;c:\program files (x86)\Spyware Terminator\st_rsser64.exe [2012-06-21 1148664]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2011-04-22 25960]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [2010-11-03 897088]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2012-03-07 913144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2012-03-14 137144]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-06 13336]
S2 NOBU;Dell DataSafe Online;c:\program files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe SERVICE [x]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-04-22 2009704]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2011-07-08 1692480]
S2 sp_rsdrv2;Spyware Terminator Driver Filter;c:\windows\system32\DRIVERS\stflt.sys [2012-07-01 51496]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-04-22 378472]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-10-06 2655768]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys [2010-11-04 58128]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys [2011-11-14 327168]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2011-01-20 176096]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-12-09 60416]
S3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [2011-03-24 25496]
S3 MEIx64;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [2010-12-21 8505856]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-20 168216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-20 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-20 416024]
"Apoint"="c:\program files\DellTPad\Apoint.exe" [2011-04-12 609144]
"NVHotkey"="c:\windows\system32\nvHotkey.dll" [2011-04-22 312936]
"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-12-17 1933584]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2010-11-03 10228224]
"DellStage"="c:\program files (x86)\Dell Stage\Dell Stage\stage_primary.exe" [2011-04-29 2055016]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2012-03-07 4081008]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.facebook.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~2\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.3.1
DPF: {682C59F5-478C-4421-9070-AD170D143B77} - hxxp://www.dell.com/support/troubleshoo ... /pcd86.cab
FF - ProfilePath - c:\users\krejci\AppData\Roaming\Mozilla\Firefox\Profiles\lcczwtqw.default\
FF - prefs.js: browser.startup.homepage - about:newtab
FF - prefs.js: network.proxy.type - 0
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]
"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_278_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_278.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-09-19 14:17:09
ComboFix-quarantined-files.txt 2012-09-19 12:17
.
Před spuštěním: Volných bajtů: 181 343 064 064
Po spuštění: Volných bajtů: 180 698 492 928
.
- - End Of File - - 4CBB171B619B04B8796C9E7D1A0C7557

PetrBlade · Příspěvekod **PetrBlade** » 19 zář 2012 21:19

Prdím na to, obraz se dneska 2x rozpadl (černý řádkování a pak hodně podobný) a zase to spadlo, takže notebook vracíme na výměnu. Snad ho vymění bez problémů a někdy se naučí opravovat notebooky.
Díky za Váš čas.

Kontrola souboru *.dmp z Minidump (náhodné modré smrti) Vyřešeno

Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti)

Re: Kontrola souboru *.dmp z Minidump (náhodné modré smrti) Vyřešeno

Kdo je online