Prosím o kontrolu logu. (Zavirovaný počítač) Vyřešeno

[Ryo]

Zdravím.. Stahoval jsem různé blbosti do her, a nejspíše jsem si spolu s nimi stáhl nějaký vir.. Jde o nějaký posraný vyhledáváč "Do Search", se kterým nejde absolutně nic dělat. Mám Chrome, a v nastavení vyhledáváčů ani není znázorněn.. Po chvíli pátrání jsem se dozvěděl, že jde o vir. Dále.. Když jsem po startu PC ukončil zbytečnosti v procesech, běželo mi max. 35 procesů.. (Občas i méně, když jsem vypl indexování, které při hraní her není důležité..), nyní, po tom stahování mi jich stále běží 40+.. Využití RAM z 20-30% je nyní na 40% +.. Už si nevím rady, tak to zkusím tady. Ta ztráta výkonu jde v celku dost znát u hraní her, protože se mi sekají čím dál tím více.

Předem moc díky.


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:14:01, on 7.11.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16720)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\hjt\Trend Micro\HiJackThis\HiJackThis.exe

O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] C:\PROGRAM FILES\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe

--
End of file - 3944 bytes

[Reklama]

[memphisto]

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranìní historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit doèasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po probìhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Stáhni AdwCleaner
Ulož si ho na svojí plochu
Ukonči všechny programy, okna a prohlížeče
Spusť program poklepáním a klikni na „Search“
Po skenu se objeví log (jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

[Ryo]

Adw -

# AdwCleaner v3.011 - Report created 07/11/2013 at 21:15:07
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (32 bits)
# Username : HP - HP-PC
# Running from : C:\Users\HP\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\eSafe
Folder Deleted : C:\Program Files\Common Files\spigot
Folder Deleted : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml

***** [ Shortcuts ] *****

Shortcut Disinfected : C:\Users\Public\Desktop\Google Chrome.lnk
Shortcut Disinfected : C:\Users\HP\Desktop\Internet Explorer.lnk
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk
Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk
Shortcut Disinfected : C:\Users\HP\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cekcjpgehmohobmdiikfnopibipmgnml
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\AppDataLow\Software\smartbar
Key Deleted : HKLM\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Google Chrome v30.0.1599.101

[ File : C:\Users\HP\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R1].txt - [4296 octets] - [07/11/2013 21:09:36]
AdwCleaner[S0].txt - [2615 octets] - [07/11/2013 21:15:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2675 octets] ##########


Mbam -

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2013.11.07.06

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 10.0.9200.16721
HP :: HP-PC [administrátor]

7.11.2013 21:22:41
mbam-log-2013-11-07 (21-22-41).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 189680
Uplynulý čas: 5 minut, 27 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[memphisto]

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Stáhni si Junkware Removal Tool

na svojí plochu.
Deaktivuj si svůj antivirový program.
Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

[Ryo]

RogueKiller V8.7.6 [Oct 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : HP [Práva správce]
Mód : Kontrola -- Datum : 11/07/2013 21:42:18
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 2 ¤¤¤
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST380815AS ATA Device +++++
--- User ---
[MBR] c4ed79ba5de94eeedef5f41f2898b963
[BSP] 7e89e356f0963f075a429bae9dba6f33 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 76217 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_S_11072013_214218.txt >>




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x86
Ran by HP on źt 07.11.2013 at 21:43:52,30
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on źt 07.11.2013 at 21:46:36,38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[jaro3]

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.

[Ryo]

RogueKiller V8.7.6 [Oct 28 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://tigzyrk.blogspot.com/

Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : HP [Práva správce]
Mód : Odebrat -- Datum : 11/08/2013 14:24:07
| ARK || FAK || MBR |

¤¤¤ Škodlivé procesy: : 0 ¤¤¤

¤¤¤ ¤¤¤ Záznamy Registrů: : 4 ¤¤¤
[HJ POL][PUM] HKCU\[...]\System : DisableTaskMgr (0) -> VYMAZÁNO
[HJ POL][PUM] HKCU\[...]\System : DisableRegistryTools (0) -> VYMAZÁNO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)

¤¤¤ naplánované úlohy : 0 ¤¤¤

¤¤¤ spuštění položky : 0 ¤¤¤

¤¤¤ Webové prohlížeče : 0 ¤¤¤

¤¤¤ Zvláštní soubory / Složky: ¤¤¤

¤¤¤ Ovladač : [NAHRÁNO] ¤¤¤

¤¤¤ Externí včelstvo: ¤¤¤

¤¤¤ Nákaza : ¤¤¤

¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts


127.0.0.1 localhost


¤¤¤ Kontrola MBR: ¤¤¤

+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST380815AS ATA Device +++++
--- User ---
[MBR] c4ed79ba5de94eeedef5f41f2898b963
[BSP] 7e89e356f0963f075a429bae9dba6f33 : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 76217 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Dokončeno : << RKreport[0]_D_11082013_142407.txt >>
RKreport[0]_S_11082013_142312.txt

[Ryo]

14:26:26.0527 0x0a3c TDSS rootkit removing tool 3.0.0.16 Nov 1 2013 15:53:38
14:26:34.0904 0x0a3c ============================================================
14:26:34.0904 0x0a3c Current date / time: 2013/11/08 14:26:34.0904
14:26:34.0904 0x0a3c SystemInfo:
14:26:34.0904 0x0a3c
14:26:34.0904 0x0a3c OS Version: 6.1.7601 ServicePack: 1.0
14:26:34.0904 0x0a3c Product type: Workstation
14:26:34.0904 0x0a3c ComputerName: HP-PC
14:26:34.0904 0x0a3c UserName: HP
14:26:34.0904 0x0a3c Windows directory: C:\Windows
14:26:34.0904 0x0a3c System windows directory: C:\Windows
14:26:34.0904 0x0a3c Processor architecture: Intel x86
14:26:34.0904 0x0a3c Number of processors: 2
14:26:34.0904 0x0a3c Page size: 0x1000
14:26:34.0904 0x0a3c Boot type: Normal boot
14:26:34.0904 0x0a3c ============================================================
14:26:38.0695 0x0a3c System UUID: {AC5AB989-7B94-CD35-2DE5-1D2DEDCA438F}
14:26:39.0163 0x0a3c Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:26:39.0163 0x0a3c ============================================================
14:26:39.0163 0x0a3c \Device\Harddisk0\DR0:
14:26:39.0163 0x0a3c MBR partitions:
14:26:39.0163 0x0a3c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:26:39.0163 0x0a3c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x94DC800
14:26:39.0163 0x0a3c ============================================================
14:26:39.0179 0x0a3c C: <-> \Device\Harddisk0\DR0\Partition2
14:26:39.0179 0x0a3c ============================================================
14:26:39.0179 0x0a3c Initialize success
14:26:39.0179 0x0a3c ============================================================
14:26:40.0317 0x0d80 ============================================================
14:26:40.0317 0x0d80 Scan started
14:26:40.0317 0x0d80 Mode: Manual;
14:26:40.0317 0x0d80 ============================================================
14:26:40.0317 0x0d80 KSN ping started
14:26:43.0001 0x0d80 KSN ping finished: true
14:26:43.0453 0x0d80 ================ Scan system memory ========================
14:26:43.0453 0x0d80 System memory - ok
14:26:43.0453 0x0d80 ================ Scan services =============================
14:26:43.0593 0x0d80 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
14:26:43.0593 0x0d80 1394ohci - ok
14:26:43.0656 0x0d80 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
14:26:43.0656 0x0d80 ACPI - ok
14:26:43.0671 0x0d80 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
14:26:43.0671 0x0d80 AcpiPmi - ok
14:26:43.0718 0x0d80 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
14:26:43.0718 0x0d80 adp94xx - ok
14:26:43.0749 0x0d80 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
14:26:43.0765 0x0d80 adpahci - ok
14:26:43.0781 0x0d80 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
14:26:43.0781 0x0d80 adpu320 - ok
14:26:43.0890 0x0d80 [ 9243229DFCCC99B5441750EBA49F1B14, 1292D9A049F07E74F3E60068D839E9166BBC090A63972FBE5432D4818AA9DF47 ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
14:26:43.0905 0x0d80 AdvancedSystemCareService6 - ok
14:26:43.0937 0x0d80 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:26:43.0952 0x0d80 AeLookupSvc - ok
14:26:43.0999 0x0d80 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
14:26:44.0015 0x0d80 AFD - ok
14:26:44.0046 0x0d80 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
14:26:44.0046 0x0d80 agp440 - ok
14:26:44.0077 0x0d80 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
14:26:44.0077 0x0d80 aic78xx - ok
14:26:44.0093 0x0d80 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
14:26:44.0093 0x0d80 ALG - ok
14:26:44.0124 0x0d80 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
14:26:44.0124 0x0d80 aliide - ok
14:26:44.0155 0x0d80 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
14:26:44.0155 0x0d80 amdagp - ok
14:26:44.0202 0x0d80 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
14:26:44.0202 0x0d80 amdide - ok
14:26:44.0233 0x0d80 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
14:26:44.0233 0x0d80 AmdK8 - ok
14:26:44.0233 0x0d80 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
14:26:44.0233 0x0d80 AmdPPM - ok
14:26:44.0264 0x0d80 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
14:26:44.0264 0x0d80 amdsata - ok
14:26:44.0295 0x0d80 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
14:26:44.0295 0x0d80 amdsbs - ok
14:26:44.0311 0x0d80 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
14:26:44.0311 0x0d80 amdxata - ok
14:26:44.0342 0x0d80 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
14:26:44.0342 0x0d80 AppID - ok
14:26:44.0373 0x0d80 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
14:26:44.0373 0x0d80 AppIDSvc - ok
14:26:44.0405 0x0d80 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
14:26:44.0405 0x0d80 Appinfo - ok
14:26:44.0451 0x0d80 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
14:26:44.0451 0x0d80 AppMgmt - ok
14:26:44.0483 0x0d80 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
14:26:44.0483 0x0d80 arc - ok
14:26:44.0498 0x0d80 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
14:26:44.0498 0x0d80 arcsas - ok
14:26:44.0592 0x0d80 [ 2FE0D5DB69014980A970D3BF9A85D2B1, 3837F176B0CB7FEA2689D90B50B62F660FE579A5EB1E47C827DFA95596B72D1E ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
14:26:44.0607 0x0d80 aspnet_state - ok
14:26:44.0639 0x0d80 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:26:44.0639 0x0d80 AsyncMac - ok
14:26:44.0670 0x0d80 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
14:26:44.0670 0x0d80 atapi - ok
14:26:44.0717 0x0d80 [ F0D933B42CD0594048E4D5200AE9E417, FF53E843A99948568515964C3C97107FA875BBC3F2906BADEE0B29ACE5532F0D ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
14:26:44.0732 0x0d80 atksgt - ok
14:26:44.0779 0x0d80 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:26:44.0795 0x0d80 AudioEndpointBuilder - ok
14:26:44.0826 0x0d80 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
14:26:44.0841 0x0d80 Audiosrv - ok
14:26:44.0857 0x0d80 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
14:26:44.0873 0x0d80 AxInstSV - ok
14:26:44.0919 0x0d80 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
14:26:44.0935 0x0d80 b06bdrv - ok
14:26:44.0966 0x0d80 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
14:26:44.0982 0x0d80 b57nd60x - ok
14:26:45.0122 0x0d80 [ F9CE9B5E049EFC66B8E6C73C18EE8438, 8B43B84F59810DAFA961EEA13E354FF9A0796A185E2C8D6642D8660AAC1B96F4 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
14:26:45.0169 0x0d80 BCM43XX - ok
14:26:45.0216 0x0d80 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
14:26:45.0216 0x0d80 BDESVC - ok
14:26:45.0247 0x0d80 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
14:26:45.0247 0x0d80 Beep - ok
14:26:45.0278 0x0d80 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
14:26:45.0294 0x0d80 BFE - ok
14:26:45.0341 0x0d80 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\system32\qmgr.dll
14:26:45.0372 0x0d80 BITS - ok
14:26:45.0387 0x0d80 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
14:26:45.0387 0x0d80 blbdrive - ok
14:26:45.0419 0x0d80 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:26:45.0419 0x0d80 bowser - ok
14:26:45.0434 0x0d80 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:26:45.0434 0x0d80 BrFiltLo - ok
14:26:45.0450 0x0d80 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:26:45.0450 0x0d80 BrFiltUp - ok
14:26:45.0481 0x0d80 [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
14:26:45.0481 0x0d80 BridgeMP - ok
14:26:45.0512 0x0d80 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
14:26:45.0512 0x0d80 Browser - ok
14:26:45.0543 0x0d80 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
14:26:45.0543 0x0d80 Brserid - ok
14:26:45.0559 0x0d80 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
14:26:45.0559 0x0d80 BrSerWdm - ok
14:26:45.0575 0x0d80 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
14:26:45.0575 0x0d80 BrUsbMdm - ok
14:26:45.0575 0x0d80 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
14:26:45.0575 0x0d80 BrUsbSer - ok
14:26:45.0590 0x0d80 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
14:26:45.0590 0x0d80 BTHMODEM - ok
14:26:45.0621 0x0d80 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
14:26:45.0637 0x0d80 bthserv - ok
14:26:45.0653 0x0d80 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:26:45.0668 0x0d80 cdfs - ok
14:26:45.0715 0x0d80 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:26:45.0715 0x0d80 cdrom - ok
14:26:45.0762 0x0d80 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
14:26:45.0762 0x0d80 CertPropSvc - ok
14:26:45.0793 0x0d80 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
14:26:45.0809 0x0d80 circlass - ok
14:26:45.0855 0x0d80 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
14:26:45.0855 0x0d80 CLFS - ok
14:26:45.0918 0x0d80 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:26:45.0918 0x0d80 clr_optimization_v2.0.50727_32 - ok
14:26:45.0980 0x0d80 [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:26:45.0980 0x0d80 clr_optimization_v4.0.30319_32 - ok
14:26:46.0011 0x0d80 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:26:46.0011 0x0d80 CmBatt - ok
14:26:46.0027 0x0d80 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:26:46.0027 0x0d80 cmdide - ok
14:26:46.0074 0x0d80 [ 42F158036BD4C2FF3122BF142E60E6FD, BE7671C6FCE488A625DBA4F4F507664A12A31CF5CA564CC38E4C05FD8A86FB5D ] CNG C:\Windows\system32\Drivers\cng.sys
14:26:46.0089 0x0d80 CNG - ok
14:26:46.0105 0x0d80 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:26:46.0105 0x0d80 Compbatt - ok
14:26:46.0136 0x0d80 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
14:26:46.0152 0x0d80 CompositeBus - ok
14:26:46.0152 0x0d80 COMSysApp - ok
14:26:46.0183 0x0d80 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
14:26:46.0183 0x0d80 crcdisk - ok
14:26:46.0230 0x0d80 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:26:46.0230 0x0d80 CryptSvc - ok
14:26:46.0277 0x0d80 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
14:26:46.0292 0x0d80 CSC - ok
14:26:46.0323 0x0d80 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
14:26:46.0355 0x0d80 CscService - ok
14:26:46.0386 0x0d80 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
14:26:46.0401 0x0d80 DcomLaunch - ok
14:26:46.0433 0x0d80 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
14:26:46.0448 0x0d80 defragsvc - ok
14:26:46.0479 0x0d80 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:26:46.0479 0x0d80 DfsC - ok
14:26:46.0511 0x0d80 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
14:26:46.0526 0x0d80 Dhcp - ok
14:26:46.0557 0x0d80 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
14:26:46.0557 0x0d80 discache - ok
14:26:46.0589 0x0d80 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
14:26:46.0589 0x0d80 Disk - ok
14:26:46.0620 0x0d80 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:26:46.0620 0x0d80 Dnscache - ok
14:26:46.0651 0x0d80 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
14:26:46.0667 0x0d80 dot3svc - ok
14:26:46.0713 0x0d80 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
14:26:46.0713 0x0d80 DPS - ok
14:26:46.0745 0x0d80 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:26:46.0745 0x0d80 drmkaud - ok
14:26:46.0791 0x0d80 [ E6B7D1B24E16FB24CE1FEA964E144EBC, 30F81E0A017163A1AB463FE3A13B5CC2905B973E782AEBC1EB63759BF2470658 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
14:26:46.0791 0x0d80 dtsoftbus01 - ok
14:26:46.0854 0x0d80 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:26:46.0869 0x0d80 DXGKrnl - ok
14:26:46.0901 0x0d80 [ 377AD53E4154477339290B4212E69D53, CFB201699CBB9416963973DB2E45810760BEBABAE684EC06E35495601A8A10AF ] e1express C:\Windows\system32\DRIVERS\e1e6232.sys
14:26:46.0901 0x0d80 e1express - ok
14:26:46.0932 0x0d80 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
14:26:46.0932 0x0d80 EapHost - ok
14:26:47.0088 0x0d80 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
14:26:47.0166 0x0d80 ebdrv - ok
14:26:47.0197 0x0d80 [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] EFS C:\Windows\System32\lsass.exe
14:26:47.0213 0x0d80 EFS - ok
14:26:47.0275 0x0d80 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:26:47.0291 0x0d80 ehRecvr - ok
14:26:47.0322 0x0d80 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
14:26:47.0337 0x0d80 ehSched - ok
14:26:47.0369 0x0d80 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
14:26:47.0384 0x0d80 elxstor - ok
14:26:47.0400 0x0d80 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:26:47.0400 0x0d80 ErrDev - ok
14:26:47.0447 0x0d80 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
14:26:47.0462 0x0d80 EventSystem - ok
14:26:47.0478 0x0d80 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
14:26:47.0478 0x0d80 exfat - ok
14:26:47.0509 0x0d80 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:26:47.0509 0x0d80 fastfat - ok
14:26:47.0556 0x0d80 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
14:26:47.0571 0x0d80 Fax - ok
14:26:47.0587 0x0d80 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:26:47.0587 0x0d80 fdc - ok
14:26:47.0603 0x0d80 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
14:26:47.0603 0x0d80 fdPHost - ok
14:26:47.0618 0x0d80 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
14:26:47.0618 0x0d80 FDResPub - ok
14:26:47.0634 0x0d80 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:26:47.0634 0x0d80 FileInfo - ok
14:26:47.0649 0x0d80 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:26:47.0649 0x0d80 Filetrace - ok
14:26:47.0665 0x0d80 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:26:47.0665 0x0d80 flpydisk - ok
14:26:47.0681 0x0d80 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:26:47.0696 0x0d80 FltMgr - ok
14:26:47.0759 0x0d80 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
14:26:47.0805 0x0d80 FontCache - ok
14:26:47.0868 0x0d80 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:26:47.0883 0x0d80 FontCache3.0.0.0 - ok
14:26:47.0899 0x0d80 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
14:26:47.0899 0x0d80 FsDepends - ok
14:26:47.0915 0x0d80 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:26:47.0915 0x0d80 Fs_Rec - ok
14:26:47.0977 0x0d80 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
14:26:47.0977 0x0d80 fvevol - ok
14:26:48.0008 0x0d80 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
14:26:48.0008 0x0d80 gagp30kx - ok
14:26:48.0055 0x0d80 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
14:26:48.0102 0x0d80 gpsvc - ok
14:26:48.0149 0x0d80 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
14:26:48.0149 0x0d80 gupdate - ok
14:26:48.0164 0x0d80 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
14:26:48.0180 0x0d80 gupdatem - ok
14:26:48.0195 0x0d80 [ 7929A161F9951D173CA9900FE7067391, 35F329B3476D34E02C31B8050E1AB8C74BA0F3114A6B48AFED8F98751EFF44AB ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
14:26:48.0211 0x0d80 hamachi - ok
14:26:48.0227 0x0d80 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
14:26:48.0227 0x0d80 hcw85cir - ok
14:26:48.0289 0x0d80 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:26:48.0289 0x0d80 HdAudAddService - ok
14:26:48.0305 0x0d80 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
14:26:48.0320 0x0d80 HDAudBus - ok
14:26:48.0336 0x0d80 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
14:26:48.0336 0x0d80 HidBatt - ok
14:26:48.0351 0x0d80 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
14:26:48.0351 0x0d80 HidBth - ok
14:26:48.0367 0x0d80 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
14:26:48.0367 0x0d80 HidIr - ok
14:26:48.0398 0x0d80 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\System32\hidserv.dll
14:26:48.0398 0x0d80 hidserv - ok
14:26:48.0445 0x0d80 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
14:26:48.0445 0x0d80 HidUsb - ok
14:26:48.0476 0x0d80 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
14:26:48.0476 0x0d80 hkmsvc - ok
14:26:48.0507 0x0d80 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:26:48.0507 0x0d80 HomeGroupListener - ok
14:26:48.0539 0x0d80 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:26:48.0554 0x0d80 HomeGroupProvider - ok
14:26:48.0585 0x0d80 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
14:26:48.0585 0x0d80 HpSAMD - ok
14:26:48.0632 0x0d80 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:26:48.0648 0x0d80 HTTP - ok
14:26:48.0663 0x0d80 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
14:26:48.0679 0x0d80 hwpolicy - ok
14:26:48.0710 0x0d80 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
14:26:48.0710 0x0d80 i8042prt - ok
14:26:48.0757 0x0d80 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
14:26:48.0757 0x0d80 iaStorV - ok
14:26:48.0835 0x0d80 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:26:48.0866 0x0d80 idsvc - ok
14:26:49.0085 0x0d80 [ 9467514EA189475A6E7FDC5D7BDE9D3F, E6F5B99BF6B614832770F9310B06334A8174C7660DDEC7589433640527A14683 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
14:26:49.0209 0x0d80 igfx - ok
14:26:49.0256 0x0d80 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
14:26:49.0272 0x0d80 iirsp - ok
14:26:49.0319 0x0d80 [ F95622F161474511B8D80D6B093AA610, F2320E25EB9B4AA9A8366BD3AA23EABEBE111A5610D3A62EBA47D90427D5BC26 ] IKEEXT C:\Windows\System32\ikeext.dll
14:26:49.0350 0x0d80 IKEEXT - ok
14:26:49.0490 0x0d80 [ EDE3314F64B012302A9AB2319FCE81FE, B9F25FC6A2D9CEC4617C84BC7F18432CAE1699CD08F4F20DB340510558C334CF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
14:26:49.0553 0x0d80 IntcAzAudAddService - ok
14:26:49.0599 0x0d80 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
14:26:49.0599 0x0d80 intelide - ok
14:26:49.0631 0x0d80 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:26:49.0631 0x0d80 intelppm - ok
14:26:49.0662 0x0d80 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:26:49.0662 0x0d80 IPBusEnum - ok
14:26:49.0693 0x0d80 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:26:49.0693 0x0d80 IpFilterDriver - ok
14:26:49.0740 0x0d80 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:26:49.0771 0x0d80 iphlpsvc - ok
14:26:49.0787 0x0d80 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
14:26:49.0802 0x0d80 IPMIDRV - ok
14:26:49.0802 0x0d80 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
14:26:49.0818 0x0d80 IPNAT - ok
14:26:49.0849 0x0d80 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:26:49.0849 0x0d80 IRENUM - ok
14:26:49.0865 0x0d80 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:26:49.0865 0x0d80 isapnp - ok
14:26:49.0896 0x0d80 [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
14:26:49.0911 0x0d80 iScsiPrt - ok
14:26:49.0943 0x0d80 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:26:49.0943 0x0d80 kbdclass - ok
14:26:49.0974 0x0d80 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
14:26:49.0974 0x0d80 kbdhid - ok
14:26:49.0989 0x0d80 [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] KeyIso C:\Windows\system32\lsass.exe
14:26:50.0005 0x0d80 KeyIso - ok
14:26:50.0036 0x0d80 [ B7895B4182C0D16F6EFADEB8081E8D36, BAC3BAD22207C8826125FD7721C96F2C7A238960FD9398A3D4573E14648E9DB9 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:26:50.0036 0x0d80 KSecDD - ok
14:26:50.0067 0x0d80 [ 5FE1ABF1AF591A3458C9CF24ED9A4D35, CD50885B37F66EFEAE82158EC78AE1D0B58D1F6901E16A1B27D061DE266A09EF ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
14:26:50.0067 0x0d80 KSecPkg - ok
14:26:50.0099 0x0d80 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
14:26:50.0114 0x0d80 KtmRm - ok
14:26:50.0130 0x0d80 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\System32\srvsvc.dll
14:26:50.0145 0x0d80 LanmanServer - ok
14:26:50.0177 0x0d80 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:26:50.0177 0x0d80 LanmanWorkstation - ok
14:26:50.0239 0x0d80 [ F8A7212D0864EF5E9185FB95E6623F4D, 277EAA06BD3D1CB31E6CD7B9ECD3A4B7D4AB7A369DB5FFF04EC7D749DF26E3D2 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
14:26:50.0239 0x0d80 lirsgt - ok
14:26:50.0270 0x0d80 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:26:50.0270 0x0d80 lltdio - ok
14:26:50.0301 0x0d80 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:26:50.0317 0x0d80 lltdsvc - ok
14:26:50.0333 0x0d80 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:26:50.0333 0x0d80 lmhosts - ok
14:26:50.0364 0x0d80 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
14:26:50.0364 0x0d80 LSI_FC - ok
14:26:50.0379 0x0d80 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
14:26:50.0379 0x0d80 LSI_SAS - ok
14:26:50.0395 0x0d80 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:26:50.0395 0x0d80 LSI_SAS2 - ok
14:26:50.0411 0x0d80 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:26:50.0411 0x0d80 LSI_SCSI - ok
14:26:50.0426 0x0d80 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
14:26:50.0426 0x0d80 luafv - ok
14:26:50.0457 0x0d80 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:26:50.0457 0x0d80 Mcx2Svc - ok
14:26:50.0473 0x0d80 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
14:26:50.0473 0x0d80 megasas - ok
14:26:50.0489 0x0d80 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
14:26:50.0504 0x0d80 MegaSR - ok
14:26:50.0520 0x0d80 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
14:26:50.0535 0x0d80 MMCSS - ok
14:26:50.0535 0x0d80 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
14:26:50.0535 0x0d80 Modem - ok
14:26:50.0551 0x0d80 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:26:50.0567 0x0d80 monitor - ok
14:26:50.0582 0x0d80 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:26:50.0582 0x0d80 mouclass - ok
14:26:50.0629 0x0d80 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:26:50.0629 0x0d80 mouhid - ok
14:26:50.0660 0x0d80 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
14:26:50.0660 0x0d80 mountmgr - ok
14:26:50.0676 0x0d80 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
14:26:50.0691 0x0d80 mpio - ok
14:26:50.0707 0x0d80 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:26:50.0707 0x0d80 mpsdrv - ok
14:26:50.0754 0x0d80 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:26:50.0769 0x0d80 MpsSvc - ok
14:26:50.0816 0x0d80 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:26:50.0816 0x0d80 MRxDAV - ok
14:26:50.0847 0x0d80 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:26:50.0847 0x0d80 mrxsmb - ok
14:26:50.0863 0x0d80 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:26:50.0879 0x0d80 mrxsmb10 - ok
14:26:50.0894 0x0d80 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:26:50.0894 0x0d80 mrxsmb20 - ok
14:26:50.0925 0x0d80 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
14:26:50.0925 0x0d80 msahci - ok
14:26:50.0957 0x0d80 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:26:50.0957 0x0d80 msdsm - ok
14:26:50.0972 0x0d80 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
14:26:50.0988 0x0d80 MSDTC - ok
14:26:51.0019 0x0d80 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:26:51.0019 0x0d80 Msfs - ok
14:26:51.0035 0x0d80 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
14:26:51.0035 0x0d80 mshidkmdf - ok
14:26:51.0066 0x0d80 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:26:51.0066 0x0d80 msisadrv - ok
14:26:51.0097 0x0d80 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:26:51.0113 0x0d80 MSiSCSI - ok
14:26:51.0113 0x0d80 msiserver - ok
14:26:51.0144 0x0d80 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:26:51.0144 0x0d80 MSKSSRV - ok
14:26:51.0191 0x0d80 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:26:51.0191 0x0d80 MSPCLOCK - ok
14:26:51.0191 0x0d80 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:26:51.0191 0x0d80 MSPQM - ok
14:26:51.0206 0x0d80 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:26:51.0222 0x0d80 MsRPC - ok
14:26:51.0253 0x0d80 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
14:26:51.0253 0x0d80 mssmbios - ok
14:26:51.0269 0x0d80 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:26:51.0269 0x0d80 MSTEE - ok
14:26:51.0284 0x0d80 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
14:26:51.0284 0x0d80 MTConfig - ok
14:26:51.0284 0x0d80 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
14:26:51.0284 0x0d80 Mup - ok
14:26:51.0331 0x0d80 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
14:26:51.0331 0x0d80 napagent - ok
14:26:51.0378 0x0d80 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:26:51.0393 0x0d80 NativeWifiP - ok
14:26:51.0425 0x0d80 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:26:51.0440 0x0d80 NDIS - ok
14:26:51.0471 0x0d80 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
14:26:51.0471 0x0d80 NdisCap - ok
14:26:51.0487 0x0d80 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:26:51.0487 0x0d80 NdisTapi - ok
14:26:51.0518 0x0d80 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:26:51.0518 0x0d80 Ndisuio - ok
14:26:51.0549 0x0d80 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:26:51.0549 0x0d80 NdisWan - ok
14:26:51.0581 0x0d80 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:26:51.0581 0x0d80 NDProxy - ok
14:26:51.0612 0x0d80 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:26:51.0612 0x0d80 NetBIOS - ok
14:26:51.0643 0x0d80 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
14:26:51.0643 0x0d80 NetBT - ok
14:26:51.0659 0x0d80 [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] Netlogon C:\Windows\system32\lsass.exe
14:26:51.0659 0x0d80 Netlogon - ok
14:26:51.0705 0x0d80 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
14:26:51.0705 0x0d80 Netman - ok
14:26:51.0737 0x0d80 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:26:51.0752 0x0d80 NetMsmqActivator - ok
14:26:51.0752 0x0d80 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:26:51.0768 0x0d80 NetPipeActivator - ok
14:26:51.0783 0x0d80 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
14:26:51.0799 0x0d80 netprofm - ok
14:26:51.0846 0x0d80 [ 652881F65B35564575255A0E05E23C55, 6F77B2BD9362D7593B5B2A8AEAE834463CB32B006ABE2188A5A36C9469896960 ] netr28 C:\Windows\system32\DRIVERS\netr28.sys
14:26:51.0861 0x0d80 netr28 - ok
14:26:51.0877 0x0d80 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:26:51.0877 0x0d80 NetTcpActivator - ok
14:26:51.0893 0x0d80 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:26:51.0893 0x0d80 NetTcpPortSharing - ok

[Ryo]

14:26:51.0908 0x0d80 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
14:26:51.0908 0x0d80 nfrd960 - ok
14:26:51.0939 0x0d80 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:26:51.0955 0x0d80 NlaSvc - ok
14:26:51.0971 0x0d80 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:26:51.0971 0x0d80 Npfs - ok
14:26:52.0002 0x0d80 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
14:26:52.0002 0x0d80 nsi - ok
14:26:52.0002 0x0d80 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:26:52.0002 0x0d80 nsiproxy - ok
14:26:52.0095 0x0d80 [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:26:52.0111 0x0d80 Ntfs - ok
14:26:52.0142 0x0d80 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
14:26:52.0142 0x0d80 Null - ok
14:26:52.0158 0x0d80 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:26:52.0158 0x0d80 nvraid - ok
14:26:52.0236 0x0d80 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:26:52.0251 0x0d80 nvstor - ok
14:26:52.0251 0x0d80 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:26:52.0267 0x0d80 nv_agp - ok
14:26:52.0283 0x0d80 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:26:52.0283 0x0d80 ohci1394 - ok
14:26:52.0329 0x0d80 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:26:52.0329 0x0d80 ose - ok
14:26:52.0563 0x0d80 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:26:52.0735 0x0d80 osppsvc - ok
14:26:52.0813 0x0d80 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
14:26:52.0813 0x0d80 p2pimsvc - ok
14:26:52.0844 0x0d80 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
14:26:52.0860 0x0d80 p2psvc - ok
14:26:52.0891 0x0d80 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
14:26:52.0891 0x0d80 Parport - ok
14:26:52.0922 0x0d80 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:26:52.0922 0x0d80 partmgr - ok
14:26:52.0938 0x0d80 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
14:26:52.0938 0x0d80 Parvdm - ok
14:26:52.0953 0x0d80 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
14:26:52.0953 0x0d80 PcaSvc - ok
14:26:52.0969 0x0d80 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
14:26:52.0985 0x0d80 pci - ok
14:26:53.0016 0x0d80 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
14:26:53.0016 0x0d80 pciide - ok
14:26:53.0031 0x0d80 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
14:26:53.0047 0x0d80 pcmcia - ok
14:26:53.0047 0x0d80 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
14:26:53.0047 0x0d80 pcw - ok
14:26:53.0094 0x0d80 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:26:53.0109 0x0d80 PEAUTH - ok
14:26:53.0203 0x0d80 [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
14:26:53.0250 0x0d80 PeerDistSvc - ok
14:26:53.0343 0x0d80 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
14:26:53.0406 0x0d80 pla - ok
14:26:53.0453 0x0d80 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:26:53.0468 0x0d80 PlugPlay - ok
14:26:53.0484 0x0d80 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
14:26:53.0484 0x0d80 PNRPAutoReg - ok
14:26:53.0499 0x0d80 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
14:26:53.0515 0x0d80 PNRPsvc - ok
14:26:53.0546 0x0d80 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:26:53.0562 0x0d80 PolicyAgent - ok
14:26:53.0609 0x0d80 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
14:26:53.0609 0x0d80 Power - ok
14:26:53.0640 0x0d80 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:26:53.0655 0x0d80 PptpMiniport - ok
14:26:53.0671 0x0d80 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
14:26:53.0671 0x0d80 Processor - ok
14:26:53.0718 0x0d80 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
14:26:53.0718 0x0d80 ProfSvc - ok
14:26:53.0733 0x0d80 [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] ProtectedStorage C:\Windows\system32\lsass.exe
14:26:53.0733 0x0d80 ProtectedStorage - ok
14:26:53.0780 0x0d80 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
14:26:53.0780 0x0d80 Psched - ok
14:26:53.0843 0x0d80 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
14:26:53.0874 0x0d80 ql2300 - ok
14:26:53.0905 0x0d80 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
14:26:53.0905 0x0d80 ql40xx - ok
14:26:53.0936 0x0d80 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
14:26:53.0952 0x0d80 QWAVE - ok
14:26:53.0967 0x0d80 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:26:53.0967 0x0d80 QWAVEdrv - ok
14:26:53.0983 0x0d80 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:26:53.0983 0x0d80 RasAcd - ok
14:26:54.0014 0x0d80 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
14:26:54.0014 0x0d80 RasAgileVpn - ok
14:26:54.0014 0x0d80 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
14:26:54.0030 0x0d80 RasAuto - ok
14:26:54.0045 0x0d80 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:26:54.0045 0x0d80 Rasl2tp - ok
14:26:54.0077 0x0d80 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
14:26:54.0092 0x0d80 RasMan - ok
14:26:54.0092 0x0d80 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:26:54.0092 0x0d80 RasPppoe - ok
14:26:54.0108 0x0d80 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:26:54.0108 0x0d80 RasSstp - ok
14:26:54.0139 0x0d80 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:26:54.0139 0x0d80 rdbss - ok
14:26:54.0155 0x0d80 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
14:26:54.0155 0x0d80 rdpbus - ok
14:26:54.0170 0x0d80 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:26:54.0170 0x0d80 RDPCDD - ok
14:26:54.0201 0x0d80 [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
14:26:54.0201 0x0d80 RDPDR - ok
14:26:54.0233 0x0d80 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:26:54.0233 0x0d80 RDPENCDD - ok
14:26:54.0248 0x0d80 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
14:26:54.0248 0x0d80 RDPREFMP - ok
14:26:54.0295 0x0d80 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:26:54.0295 0x0d80 RdpVideoMiniport - ok
14:26:54.0326 0x0d80 [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:26:54.0342 0x0d80 RDPWD - ok
14:26:54.0373 0x0d80 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
14:26:54.0373 0x0d80 rdyboost - ok
14:26:54.0404 0x0d80 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
14:26:54.0420 0x0d80 RemoteAccess - ok
14:26:54.0451 0x0d80 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:26:54.0451 0x0d80 RemoteRegistry - ok
14:26:54.0467 0x0d80 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
14:26:54.0482 0x0d80 RpcEptMapper - ok
14:26:54.0498 0x0d80 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
14:26:54.0513 0x0d80 RpcLocator - ok
14:26:54.0545 0x0d80 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
14:26:54.0545 0x0d80 RpcSs - ok
14:26:54.0591 0x0d80 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:26:54.0591 0x0d80 rspndr - ok
14:26:54.0654 0x0d80 [ 48D63848FEBB5FF52F8244C5D1C72397, A0871509158D8564DA062374DF1F4485E01F201244607B0380BABD4E207E7ED1 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
14:26:54.0654 0x0d80 RtkAudioService - ok
14:26:54.0685 0x0d80 [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap C:\Windows\system32\drivers\vms3cap.sys
14:26:54.0685 0x0d80 s3cap - ok
14:26:54.0701 0x0d80 [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] SamSs C:\Windows\system32\lsass.exe
14:26:54.0701 0x0d80 SamSs - ok
14:26:54.0732 0x0d80 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:26:54.0732 0x0d80 sbp2port - ok
14:26:54.0763 0x0d80 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:26:54.0763 0x0d80 SCardSvr - ok
14:26:54.0794 0x0d80 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
14:26:54.0794 0x0d80 scfilter - ok
14:26:54.0841 0x0d80 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
14:26:54.0872 0x0d80 Schedule - ok
14:26:54.0903 0x0d80 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
14:26:54.0903 0x0d80 SCPolicySvc - ok
14:26:54.0919 0x0d80 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:26:54.0935 0x0d80 SDRSVC - ok
14:26:54.0966 0x0d80 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:26:54.0966 0x0d80 secdrv - ok
14:26:54.0981 0x0d80 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
14:26:54.0997 0x0d80 seclogon - ok
14:26:54.0997 0x0d80 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\system32\sens.dll
14:26:54.0997 0x0d80 SENS - ok
14:26:55.0013 0x0d80 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
14:26:55.0013 0x0d80 SensrSvc - ok
14:26:55.0028 0x0d80 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
14:26:55.0044 0x0d80 Serenum - ok
14:26:55.0044 0x0d80 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
14:26:55.0044 0x0d80 Serial - ok
14:26:55.0075 0x0d80 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
14:26:55.0075 0x0d80 sermouse - ok
14:26:55.0106 0x0d80 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
14:26:55.0122 0x0d80 SessionEnv - ok
14:26:55.0137 0x0d80 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:26:55.0137 0x0d80 sffdisk - ok
14:26:55.0153 0x0d80 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:26:55.0153 0x0d80 sffp_mmc - ok
14:26:55.0169 0x0d80 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:26:55.0169 0x0d80 sffp_sd - ok
14:26:55.0184 0x0d80 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
14:26:55.0184 0x0d80 sfloppy - ok
14:26:55.0231 0x0d80 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:26:55.0231 0x0d80 SharedAccess - ok
14:26:55.0262 0x0d80 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:26:55.0278 0x0d80 ShellHWDetection - ok
14:26:55.0293 0x0d80 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
14:26:55.0309 0x0d80 sisagp - ok
14:26:55.0340 0x0d80 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:26:55.0340 0x0d80 SiSRaid2 - ok
14:26:55.0356 0x0d80 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
14:26:55.0356 0x0d80 SiSRaid4 - ok
14:26:55.0371 0x0d80 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:26:55.0371 0x0d80 Smb - ok
14:26:55.0403 0x0d80 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:26:55.0418 0x0d80 SNMPTRAP - ok
14:26:55.0434 0x0d80 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
14:26:55.0434 0x0d80 spldr - ok
14:26:55.0481 0x0d80 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
14:26:55.0496 0x0d80 Spooler - ok
14:26:55.0652 0x0d80 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
14:26:55.0730 0x0d80 sppsvc - ok
14:26:55.0777 0x0d80 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
14:26:55.0777 0x0d80 sppuinotify - ok
14:26:55.0839 0x0d80 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
14:26:55.0839 0x0d80 srv - ok
14:26:55.0871 0x0d80 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:26:55.0886 0x0d80 srv2 - ok
14:26:55.0917 0x0d80 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:26:55.0917 0x0d80 srvnet - ok
14:26:55.0949 0x0d80 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:26:55.0949 0x0d80 SSDPSRV - ok
14:26:55.0964 0x0d80 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:26:55.0964 0x0d80 SstpSvc - ok
14:26:55.0995 0x0d80 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
14:26:55.0995 0x0d80 stexstor - ok
14:26:56.0027 0x0d80 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
14:26:56.0058 0x0d80 StiSvc - ok
14:26:56.0073 0x0d80 [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt C:\Windows\system32\drivers\vmstorfl.sys
14:26:56.0089 0x0d80 storflt - ok
14:26:56.0120 0x0d80 [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc C:\Windows\system32\drivers\storvsc.sys
14:26:56.0120 0x0d80 storvsc - ok
14:26:56.0136 0x0d80 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
14:26:56.0136 0x0d80 swenum - ok
14:26:56.0183 0x0d80 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
14:26:56.0198 0x0d80 swprv - ok
14:26:56.0229 0x0d80 Synth3dVsc - ok
14:26:56.0292 0x0d80 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
14:26:56.0354 0x0d80 SysMain - ok
14:26:56.0370 0x0d80 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
14:26:56.0385 0x0d80 TabletInputService - ok
14:26:56.0417 0x0d80 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
14:26:56.0417 0x0d80 TapiSrv - ok
14:26:56.0432 0x0d80 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
14:26:56.0448 0x0d80 TBS - ok
14:26:56.0510 0x0d80 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:26:56.0541 0x0d80 Tcpip - ok
14:26:56.0619 0x0d80 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
14:26:56.0651 0x0d80 TCPIP6 - ok
14:26:56.0682 0x0d80 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:26:56.0682 0x0d80 tcpipreg - ok
14:26:56.0713 0x0d80 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:26:56.0713 0x0d80 TDPIPE - ok
14:26:56.0744 0x0d80 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:26:56.0744 0x0d80 TDTCP - ok
14:26:56.0775 0x0d80 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:26:56.0775 0x0d80 tdx - ok
14:26:56.0807 0x0d80 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
14:26:56.0807 0x0d80 TermDD - ok
14:26:56.0838 0x0d80 [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
14:26:56.0869 0x0d80 TermService - ok
14:26:56.0885 0x0d80 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
14:26:56.0885 0x0d80 Themes - ok
14:26:56.0900 0x0d80 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
14:26:56.0916 0x0d80 THREADORDER - ok
14:26:56.0947 0x0d80 [ 5AD05191DC8B444A7BA4D79B76C42A30, 6166E939A5A240388EBA5AF7FF335DC413F2BBCF74C2E1D310F4BE2A5454A610 ] TPM C:\Windows\system32\drivers\tpm.sys
14:26:56.0947 0x0d80 TPM - ok
14:26:56.0963 0x0d80 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
14:26:56.0963 0x0d80 TrkWks - ok
14:26:57.0009 0x0d80 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:26:57.0025 0x0d80 TrustedInstaller - ok
14:26:57.0056 0x0d80 [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:26:57.0056 0x0d80 tssecsrv - ok
14:26:57.0072 0x0d80 [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
14:26:57.0072 0x0d80 TsUsbFlt - ok
14:26:57.0087 0x0d80 tsusbhub - ok
14:26:57.0119 0x0d80 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:26:57.0134 0x0d80 tunnel - ok
14:26:57.0150 0x0d80 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
14:26:57.0150 0x0d80 uagp35 - ok
14:26:57.0181 0x0d80 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:26:57.0197 0x0d80 udfs - ok
14:26:57.0228 0x0d80 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:26:57.0228 0x0d80 UI0Detect - ok
14:26:57.0243 0x0d80 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:26:57.0243 0x0d80 uliagpkx - ok
14:26:57.0275 0x0d80 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
14:26:57.0275 0x0d80 umbus - ok
14:26:57.0306 0x0d80 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
14:26:57.0306 0x0d80 UmPass - ok
14:26:57.0337 0x0d80 [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService C:\Windows\System32\umrdp.dll
14:26:57.0337 0x0d80 UmRdpService - ok
14:26:57.0384 0x0d80 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
14:26:57.0384 0x0d80 upnphost - ok
14:26:57.0415 0x0d80 [ 71D97F1A3CC47A56728F7A400A3F8295, ED3FDB73D8A98D9BAF702C0F5C7AD79D525D19DCE1487D442536913BEA5C7F15 ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
14:26:57.0415 0x0d80 usbccgp - ok
14:26:57.0462 0x0d80 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:26:57.0462 0x0d80 usbcir - ok
14:26:57.0477 0x0d80 [ C4FB8E7ADEA9B5CEEA885A1B504B7E40, 3E0AE5D236890452F2EA33504309A7E5FE49C567FF6F68A83A5987F05ED01BF0 ] usbehci C:\Windows\system32\drivers\usbehci.sys
14:26:57.0477 0x0d80 usbehci - ok
14:26:57.0509 0x0d80 [ 86AA95ACB611001E26CD2C0145F2225A, 584D26E8C9407A4E717DCBF2D3819DB441C2D455B5FDA6654FBA3794E19B4D51 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:26:57.0524 0x0d80 usbhub - ok
14:26:57.0540 0x0d80 [ DCDF9855145A14DFCA0AB32308871961, 9A21013AD032195D54CE655DE5363E78BB74CC55C40B889520B478892F4BA40A ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:26:57.0540 0x0d80 usbohci - ok
14:26:57.0571 0x0d80 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:26:57.0571 0x0d80 usbprint - ok
14:26:57.0587 0x0d80 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:26:57.0602 0x0d80 USBSTOR - ok
14:26:57.0618 0x0d80 [ 8E51D04175BAA14C4F79AA5F6D248770, 6CE2E45E272734A5D1D0C4CE2BD7B61C61C7538903E87203E376495D198EFBD0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
14:26:57.0618 0x0d80 usbuhci - ok
14:26:57.0649 0x0d80 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
14:26:57.0649 0x0d80 UxSms - ok
14:26:57.0665 0x0d80 [ 81951F51E318AECC2D68559E47485CC4, ACF76395EF4A2ED03AB919A9DA04D3A4C03B4D0EDC60BE123B3BE1AFE78BC71B ] VaultSvc C:\Windows\system32\lsass.exe
14:26:57.0665 0x0d80 VaultSvc - ok
14:26:57.0696 0x0d80 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
14:26:57.0696 0x0d80 vdrvroot - ok
14:26:57.0743 0x0d80 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
14:26:57.0758 0x0d80 vds - ok
14:26:57.0805 0x0d80 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:26:57.0805 0x0d80 vga - ok
14:26:57.0836 0x0d80 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
14:26:57.0836 0x0d80 VgaSave - ok
14:26:57.0852 0x0d80 VGPU - ok
14:26:57.0914 0x0d80 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
14:26:57.0914 0x0d80 vhdmp - ok
14:26:57.0961 0x0d80 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
14:26:57.0977 0x0d80 viaagp - ok
14:26:57.0992 0x0d80 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
14:26:57.0992 0x0d80 ViaC7 - ok
14:26:58.0023 0x0d80 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
14:26:58.0023 0x0d80 viaide - ok
14:26:58.0055 0x0d80 [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus C:\Windows\system32\drivers\vmbus.sys
14:26:58.0055 0x0d80 vmbus - ok
14:26:58.0086 0x0d80 [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
14:26:58.0086 0x0d80 VMBusHID - ok
14:26:58.0117 0x0d80 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:26:58.0117 0x0d80 volmgr - ok
14:26:58.0148 0x0d80 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:26:58.0164 0x0d80 volmgrx - ok
14:26:58.0179 0x0d80 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:26:58.0179 0x0d80 volsnap - ok
14:26:58.0211 0x0d80 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
14:26:58.0211 0x0d80 vsmraid - ok
14:26:58.0273 0x0d80 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
14:26:58.0320 0x0d80 VSS - ok
14:26:58.0335 0x0d80 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
14:26:58.0335 0x0d80 vwifibus - ok
14:26:58.0351 0x0d80 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
14:26:58.0351 0x0d80 vwififlt - ok
14:26:58.0382 0x0d80 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
14:26:58.0398 0x0d80 W32Time - ok
14:26:58.0429 0x0d80 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
14:26:58.0429 0x0d80 WacomPen - ok
14:26:58.0445 0x0d80 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
14:26:58.0460 0x0d80 WANARP - ok
14:26:58.0460 0x0d80 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:26:58.0460 0x0d80 Wanarpv6 - ok
14:26:58.0569 0x0d80 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
14:26:58.0632 0x0d80 WatAdminSvc - ok
14:26:58.0694 0x0d80 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
14:26:58.0757 0x0d80 wbengine - ok
14:26:58.0788 0x0d80 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
14:26:58.0788 0x0d80 WbioSrvc - ok
14:26:58.0835 0x0d80 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:26:58.0835 0x0d80 wcncsvc - ok
14:26:58.0850 0x0d80 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:26:58.0850 0x0d80 WcsPlugInService - ok
14:26:58.0866 0x0d80 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
14:26:58.0866 0x0d80 Wd - ok
14:26:58.0913 0x0d80 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:26:58.0928 0x0d80 Wdf01000 - ok
14:26:58.0928 0x0d80 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:26:58.0944 0x0d80 WdiServiceHost - ok
14:26:58.0944 0x0d80 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:26:58.0959 0x0d80 WdiSystemHost - ok
14:26:58.0991 0x0d80 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
14:26:58.0991 0x0d80 WebClient - ok
14:26:59.0006 0x0d80 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:26:59.0022 0x0d80 Wecsvc - ok
14:26:59.0022 0x0d80 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:26:59.0037 0x0d80 wercplsupport - ok
14:26:59.0053 0x0d80 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
14:26:59.0069 0x0d80 WerSvc - ok
14:26:59.0100 0x0d80 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
14:26:59.0100 0x0d80 WfpLwf - ok
14:26:59.0115 0x0d80 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
14:26:59.0115 0x0d80 WIMMount - ok
14:26:59.0178 0x0d80 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
14:26:59.0193 0x0d80 WinDefend - ok
14:26:59.0225 0x0d80 WinHttpAutoProxySvc - ok
14:26:59.0271 0x0d80 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:26:59.0287 0x0d80 Winmgmt - ok
14:26:59.0303 0x0d80 WinRing0_1_2_0 - ok
14:26:59.0381 0x0d80 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
14:26:59.0427 0x0d80 WinRM - ok
14:26:59.0474 0x0d80 [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
14:26:59.0474 0x0d80 WinUsb - ok
14:26:59.0521 0x0d80 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:26:59.0568 0x0d80 Wlansvc - ok
14:26:59.0599 0x0d80 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:26:59.0599 0x0d80 WmiAcpi - ok
14:26:59.0646 0x0d80 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:26:59.0646 0x0d80 wmiApSrv - ok
14:26:59.0739 0x0d80 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
14:26:59.0771 0x0d80 WMPNetworkSvc - ok
14:26:59.0802 0x0d80 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:26:59.0817 0x0d80 WPCSvc - ok
14:26:59.0849 0x0d80 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:26:59.0849 0x0d80 WPDBusEnum - ok
14:26:59.0895 0x0d80 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:26:59.0895 0x0d80 ws2ifsl - ok
14:26:59.0911 0x0d80 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\system32\wscsvc.dll
14:26:59.0927 0x0d80 wscsvc - ok
14:26:59.0942 0x0d80 WSearch - ok
14:27:00.0036 0x0d80 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
14:27:00.0114 0x0d80 wuauserv - ok
14:27:00.0145 0x0d80 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:27:00.0145 0x0d80 WudfPf - ok
14:27:00.0176 0x0d80 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:27:00.0176 0x0d80 WUDFRd - ok
14:27:00.0207 0x0d80 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:27:00.0223 0x0d80 wudfsvc - ok
14:27:00.0239 0x0d80 [ 3C5E51C05BE9B56EAFF4E388C3AB25E4, 10D9FDEDAB1FB2E76D54661AFA5C1A6B1B0980525F38F5D061537077841C6AEE ] WwanSvc C:\Windows\System32\wwansvc.dll
14:27:00.0254 0x0d80 WwanSvc - ok
14:27:00.0270 0x0d80 ================ Scan global ===============================
14:27:00.0301 0x0d80 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
14:27:00.0332 0x0d80 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
14:27:00.0363 0x0d80 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
14:27:00.0395 0x0d80 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
14:27:00.0410 0x0d80 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
14:27:00.0426 0x0d80 [ Global ] - ok
14:27:00.0426 0x0d80 ================ Scan MBR ==================================
14:27:00.0426 0x0d80 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:27:01.0003 0x0d80 \Device\Harddisk0\DR0 - ok
14:27:01.0003 0x0d80 ================ Scan VBR ==================================
14:27:01.0003 0x0d80 [ D28E19E946B080F2DE61602BA54C4478 ] \Device\Harddisk0\DR0\Partition1
14:27:01.0019 0x0d80 \Device\Harddisk0\DR0\Partition1 - ok
14:27:01.0019 0x0d80 [ DF38D230B44326A8893A9A16107BB433 ] \Device\Harddisk0\DR0\Partition2
14:27:01.0019 0x0d80 \Device\Harddisk0\DR0\Partition2 - ok
14:27:01.0019 0x0d80 Waiting for KSN requests completion. In queue: 318
14:27:02.0033 0x0d80 Waiting for KSN requests completion. In queue: 318
14:27:03.0047 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:04.0061 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:05.0075 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:06.0089 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:07.0103 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:08.0117 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:09.0131 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:10.0145 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:11.0159 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:12.0173 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:13.0187 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:14.0201 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:15.0215 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:16.0229 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:17.0243 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:18.0257 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:19.0271 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:20.0285 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:21.0299 0x0d80 Waiting for KSN requests completion. In queue: 6
14:27:22.0313 0x0d80 Win FW state via NFP2: enabled
14:27:28.0802 0x0d80 ============================================================
14:27:28.0802 0x0d80 Scan finished
14:27:28.0802 0x0d80 ============================================================
14:27:28.0802 0x0f20 Detected object count: 0
14:27:28.0802 0x0f20 Actual detected object count: 0

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[Ryo]

ComboFix 13-11-07.01 - HP 09.11.2013 13:38:08.3.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3055.2218 [GMT 1:00]
Spuštěný z: c:\users\HP\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-10-09 do 2013-11-09 )))))))))))))))))))))))))))))))
.
.
2013-11-08 23:04 . 2013-11-08 23:04 -------- d-----w- C:\swsetup
2013-11-08 22:36 . 2013-11-08 22:36 -------- d-----w- c:\programdata\SystemRequirementsLab
2013-11-08 22:36 . 2013-11-08 22:36 -------- d-----w- c:\program files\SystemRequirementsLab
2013-11-08 15:56 . 2013-10-14 06:39 7796464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9B8CB4F1-FE6B-4601-B900-4F3B5C75A0E6}\mpengine.dll
2013-11-08 15:49 . 2013-11-08 15:49 -------- d-----w- c:\programdata\ProductData
2013-11-08 15:48 . 2013-11-08 15:48 -------- d-----w- c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2013-11-07 18:12 . 2013-11-07 18:12 388096 ----a-r- c:\users\HP\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2013-11-07 17:19 . 2013-11-07 17:19 -------- d-----w- c:\users\HP\AppData\Roaming\Malwarebytes
2013-11-07 17:19 . 2013-11-07 17:19 -------- d-----w- c:\programdata\Malwarebytes
2013-11-07 17:19 . 2013-11-07 17:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2013-11-07 17:19 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-11-06 21:56 . 2013-11-06 22:05 -------- d-----w- c:\users\HP\AppData\Local\CatalinaGroup
2013-11-05 20:14 . 2013-11-05 20:14 -------- d-----w- c:\program files\Rockstar Games
2013-11-05 20:10 . 2004-10-22 01:13 32768 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2013-11-05 20:10 . 2004-10-22 01:18 749568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2013-11-05 20:10 . 2004-10-22 01:17 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2013-11-05 20:10 . 2004-10-22 01:17 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2013-11-05 20:10 . 2004-10-22 01:16 180224 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2013-11-05 20:10 . 2004-10-22 01:16 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2013-11-05 20:10 . 2013-11-05 20:10 323716 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2013-11-05 20:10 . 2013-11-05 20:10 192644 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2013-11-01 18:05 . 2013-11-01 18:14 -------- d-----w- c:\users\HP\AppData\Roaming\BSplayer
2013-11-01 18:05 . 2013-11-01 18:05 -------- d-----w- c:\users\HP\AppData\Roaming\BSplayer Pro
2013-11-01 18:05 . 2013-11-01 18:05 -------- d-----w- c:\program files\Webteh
2013-10-30 22:46 . 2013-10-30 22:46 -------- d-----w- c:\users\HP\AppData\Local\TeamSpeak 3 Client
2013-10-20 16:08 . 2013-10-20 18:22 -------- d-----w- c:\users\HP\AppData\Local\NFS Underground 2
2013-10-19 22:49 . 2013-10-19 22:49 -------- d-----w- c:\program files\Common Files\Java
2013-10-19 22:49 . 2013-10-19 22:48 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-10-16 17:12 . 2013-10-16 17:15 -------- d-----w- c:\users\HP\AppData\Roaming\Audacity
2013-10-14 14:14 . 2013-10-14 14:32 -------- d-----w- c:\users\HP\AppData\Roaming\TeamViewer
2013-10-11 19:39 . 2013-10-11 19:39 -------- d-----w- c:\users\HP\AppData\Roaming\InstallShield Installation Information
2013-10-11 19:30 . 2013-10-11 19:30 243128 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-10-11 19:30 . 2013-10-20 16:10 -------- d-----w- c:\users\HP\AppData\Roaming\DAEMON Tools Lite
2013-10-11 19:30 . 2013-10-11 19:30 -------- d-----w- c:\program files\DAEMON Tools Lite
2013-10-11 18:33 . 2013-10-11 18:32 317752 ----a-w- c:\windows\system32\PROUnstl.exe
2013-10-11 18:32 . 2013-10-11 18:32 83808 ----a-w- c:\windows\system32\NicInE6.dll
2013-10-11 18:32 . 2013-10-11 18:32 28792 ----a-w- c:\windows\system32\NicCo36.dll
2013-10-11 18:32 . 2013-10-11 18:32 232312 ----a-w- c:\windows\system32\drivers\e1e6232.sys
2013-10-11 18:32 . 2013-10-11 18:32 121440 ----a-w- c:\windows\system32\e1000msg.dll
2013-10-11 18:30 . 2013-10-11 18:30 -------- d-----w- c:\windows\system32\SRSLabs
2013-10-11 18:30 . 2013-10-11 18:30 -------- d-----w- c:\windows\system32\RTCOM
2013-10-11 18:30 . 2013-10-11 18:30 -------- d-----w- c:\program files\Realtek
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-10-08 20:25 . 2013-10-08 20:25 530432 ----a-w- c:\windows\system32\comctl32.dll
2013-10-08 20:25 . 2013-10-08 20:25 81920 ----a-w- c:\windows\system32\davclnt.dll
2013-10-08 20:25 . 2013-10-08 20:25 205824 ----a-w- c:\windows\system32\WebClnt.dll
2013-10-08 20:25 . 2013-10-08 20:25 115712 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2013-10-08 20:25 . 2013-10-08 20:25 640512 ----a-w- c:\windows\system32\advapi32.dll
2013-10-08 20:25 . 2013-10-08 20:25 619520 ----a-w- c:\windows\system32\tdh.dll
2013-10-08 20:25 . 2013-10-08 20:25 3969472 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-10-08 20:25 . 2013-10-08 20:25 3914176 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-10-08 20:25 . 2013-10-08 20:25 1289096 ----a-w- c:\windows\system32\ntdll.dll
2013-10-08 20:24 . 2013-10-08 20:24 434688 ----a-w- c:\windows\system32\scavengeui.dll
2013-10-08 20:23 . 2013-10-08 20:23 86016 ----a-w- c:\windows\system32\drivers\usbcir.sys
2013-10-08 20:22 . 2013-10-08 20:22 527064 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-10-08 20:22 . 2013-10-08 20:22 55808 ----a-w- c:\windows\system32\drivers\hidclass.sys
2013-10-08 20:22 . 2013-10-08 20:22 25728 ----a-w- c:\windows\system32\drivers\hidparse.sys
2013-10-08 20:21 . 2013-10-08 20:21 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-10-08 20:21 . 2013-10-08 20:21 6016 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-10-08 20:21 . 2013-10-08 20:21 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-10-08 20:21 . 2013-10-08 20:21 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-10-08 20:21 . 2013-10-08 20:21 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-10-08 20:21 . 2013-10-08 20:21 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-10-08 20:21 . 2013-10-08 20:21 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-10-08 20:21 . 2013-10-08 20:21 70656 ----a-w- c:\windows\system32\fontsub.dll
2013-10-08 20:21 . 2013-10-08 20:21 34304 ----a-w- c:\windows\system32\atmlib.dll
2013-10-08 20:21 . 2013-10-08 20:21 295424 ----a-w- c:\windows\system32\atmfd.dll
2013-10-08 20:21 . 2013-10-08 20:21 26112 ----a-w- c:\windows\system32\lpk.dll
2013-10-08 20:21 . 2013-10-08 20:21 10240 ----a-w- c:\windows\system32\dciman32.dll
2013-10-08 20:20 . 2013-10-08 20:20 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-10-08 20:20 . 2013-10-08 20:20 61440 ----a-w- c:\windows\system32\iesetup.dll
2013-10-08 20:20 . 2013-10-08 20:20 2876928 ----a-w- c:\windows\system32\jscript9.dll
2013-10-08 20:20 . 2013-10-08 20:20 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-10-08 20:20 . 2013-10-08 20:20 1767936 ----a-w- c:\windows\system32\wininet.dll
2013-10-08 20:20 . 2013-10-08 20:20 109056 ----a-w- c:\windows\system32\iesysprep.dll
2013-10-08 20:20 . 2013-10-08 20:20 729024 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-10-08 20:17 . 2013-10-08 20:17 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-08 20:17 . 2013-10-08 20:17 2348544 ----a-w- c:\windows\system32\win32k.sys
2013-10-08 20:16 . 2013-10-08 20:16 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2013-10-08 20:16 . 2013-10-08 20:16 1294272 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-10-08 20:16 . 2013-10-08 20:16 231424 ----a-w- c:\windows\system32\mswsock.dll
2013-10-01 19:27 . 2013-10-01 19:27 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2013-10-01 19:27 . 2013-10-01 19:27 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2013-09-26 15:48 . 2013-09-26 15:48 108144 ----a-w- c:\windows\system32\CmdLineExt.dll
2013-09-21 13:35 . 2013-09-21 13:35 718712 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{41EE5DD3-4E5C-496F-871C-1FE19601C784}\gapaengine.dll
2013-09-10 19:55 . 2013-09-10 19:55 25280 ----a-w- c:\windows\system32\drivers\hamachi.sys
2013-09-04 20:02 . 2013-09-21 14:08 7328304 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2BD38B79-79D3-4231-96CC-7DC1D04648BD}\mpengine.dll
2013-09-03 12:35 . 2013-08-26 11:02 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-08-30 07:47 . 2013-09-21 19:34 229648 ----a-w- c:\windows\system32\aswBoot.exe
2013-08-28 07:40 . 2013-08-28 07:40 745472 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-08-28 07:40 . 2013-08-28 07:40 185344 ----a-w- c:\windows\system32\elshyph.dll
2013-08-28 07:40 . 2013-08-28 07:40 158720 ----a-w- c:\windows\system32\msls31.dll
2013-08-28 07:40 . 2013-08-28 07:40 150528 ----a-w- c:\windows\system32\iexpress.exe
2013-08-28 07:40 . 2013-08-28 07:40 138752 ----a-w- c:\windows\system32\wextract.exe
2013-08-28 07:40 . 2013-08-28 07:40 523264 ----a-w- c:\windows\system32\vbscript.dll
2013-08-28 07:40 . 2013-08-28 07:40 38400 ----a-w- c:\windows\system32\imgutil.dll
2013-08-28 07:40 . 2013-08-28 07:40 137216 ----a-w- c:\windows\system32\ieUnatt.exe
2013-08-28 07:40 . 2013-08-28 07:40 12800 ----a-w- c:\windows\system32\mshta.exe
2013-08-28 07:40 . 2013-08-28 07:40 73728 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-08-28 07:40 . 2013-08-28 07:40 61952 ----a-w- c:\windows\system32\tdc.ocx
2013-08-28 07:40 . 2013-08-28 07:40 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-08-28 07:40 . 2013-08-28 07:40 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-08-28 07:40 . 2013-08-28 07:40 361984 ----a-w- c:\windows\system32\html.iec
2013-08-28 07:40 . 2013-08-28 07:40 719360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-08-28 07:40 . 2013-08-28 07:40 23040 ----a-w- c:\windows\system32\licmgr10.dll
2013-08-28 07:40 . 2013-08-28 07:40 1441280 ----a-w- c:\windows\system32\inetcpl.cpl
2013-08-28 07:38 . 2013-08-28 07:38 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 1158144 ----a-w- c:\windows\system32\XpsPrint.dll
2013-08-28 07:38 . 2013-08-28 07:38 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-08-28 07:38 . 2013-08-28 07:38 364544 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-08-28 07:38 . 2013-08-28 07:38 417792 ----a-w- c:\windows\system32\WMPhoto.dll
2013-08-28 07:38 . 2013-08-28 07:38 2284544 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-08-28 07:38 . 2013-08-28 07:38 906240 ----a-w- c:\windows\system32\FntCache.dll
2013-08-28 07:38 . 2013-08-28 07:38 604160 ----a-w- c:\windows\system32\d3d10level9.dll
2013-08-28 07:38 . 2013-08-28 07:38 249856 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-08-28 07:38 . 2013-08-28 07:38 220160 ----a-w- c:\windows\system32\d3d10core.dll
2013-08-28 07:38 . 2013-08-28 07:38 207872 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-08-28 07:38 . 2013-08-28 07:38 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2013-08-28 07:38 . 2013-08-28 07:38 1080832 ----a-w- c:\windows\system32\d3d10.dll
2013-08-28 07:38 . 2013-08-28 07:38 3419136 ----a-w- c:\windows\system32\d2d1.dll
2013-08-28 07:38 . 2013-08-28 07:38 293376 ----a-w- c:\windows\system32\dxgi.dll
2013-08-28 07:38 . 2013-08-28 07:38 1988096 ----a-w- c:\windows\system32\d3d10warp.dll
2013-08-28 07:38 . 2013-08-28 07:38 187392 ----a-w- c:\windows\system32\UIAnimation.dll
2013-08-26 10:03 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2013-11-08 15:49 752448 ----a-w- c:\program files\IObit\IObit Uninstaller\UninstallExplorer32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 15\Program32\ZPSTRAY.EXE" [2012-10-18 752736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-10-02 141848]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-10-02 150552]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2013-10-11 11947080]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SPReview"="c:\windows\System32\SPReview\SPReview.exe" [2013-08-26 280576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 6
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2013-08-01 13:13 3673696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2009-10-02 13:34 173592 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate]
2012-10-18 15:56 752736 ----a-w- c:\program files\Zoner\Photo Studio 15\Program32\ZPSTray.exe
.
R3 netr28;Ralink 802.11n – bezdrátový ovladač pro systém Windows Vista;c:\windows\system32\DRIVERS\netr28.sys [2009-07-13 530944]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-08-25 1343400]
R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files\IObit\Advanced SystemCare 7\ASCService.exe [2013-10-25 878368]
S2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [2013-10-25 2151200]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService.exe [2013-10-11 150600]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-10-11 243128]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-10-19 14:50 1185744 ----a-w- c:\program files\Google\Chrome\Application\30.0.1599.101\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-11-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-08-25 10:36]
.
2013-11-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-08-25 10:36]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 93.91.144.100 192.168.0.1
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Realtek\Audio\HDA\RtHDVBg.exe
c:\windows\system32\taskhost.exe
c:\program files\Google\Update\1.3.21.165\GoogleCrashHandler.exe
c:\windows\system32\conhost.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\IObit\Advanced SystemCare 7\RealTimeProtector.exe
c:\windows\system32\sppsvc.exe
.
**************************************************************************
.
Celkový čas: 2013-11-09 13:48:52 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-11-09 12:48
.
Před spuštěním: Volných bajtů: 48 780 791 808
Po spuštění: Volných bajtů: 48 657 600 512
.
- - End Of File - - 5DAD60530CF0EC84287343F59A2E1317
A36C5E4F47E84449FF07ED3517B43A31

[memphisto]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

+ Nový log z HJT

Jak se chová PC?