Zdravím, zhruba před měsícem se mi "záhadným" způsobem zpomalil počítač, postupně to došlo do stavu, kdy se mi seká každé video a stránky na netu se načítají zběsile pomalu. Stejně tak mám poslední dobou problém s internetovým připojením, které se občas jakoby vypne.... Log přikládám, předem děkuji.
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:05:00, on 9.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Windows\Explorer.EXE
C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Windows\System32\WScript.exe
C:\Windows\inf\msnrnhsqt\msnrnhsqt.exe
C:\Windows\system32\conhost.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Users\mnouckk\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files\Holdem Manager 2\HoldemManager.exe
C:\Program Files\Holdem Manager 2\HudFuncsApp.exe
C:\Program Files\Holdem Manager 2\ThirtyTwoBitIPC.exe
C:\Windows\system32\conhost.exe
D:\Poker\Betfair.com Poker\widgetbar\PTContainerOle.exe
C:\Windows\system32\taskhost.exe
D:\Poker\Betfair.com Poker\casino.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\HiJack\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: DeviceVM Url Search Hook - {0063BF63-BFFF-4B8F-9D26-4267DF7F17DD} - C:\Windows\System32\dvmurl.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared files\brs.exe
O4 - HKLM\..\Run: [Windows Services for Processes] C:\Users\mnouckk\AppData\Roaming\svchost.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Nvtmru] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
O4 - HKLM\..\Run: [ShadowPlay] C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [NvBackend] "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
O4 - HKLM\..\Run: [msuhebSrv] "C:\Windows\system32\msuheb.vbe" msokcd msqkoluv
O4 - HKLM\..\Run: [mshnpmisSrv] C:\Windows\inf\mshnpmis.vbe
O4 - HKCU\..\Run: [Windows Services for Processes] C:\Users\mnouckk\AppData\Roaming\svchost.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [uTorrent] "C:\Users\mnouckk\AppData\Roaming\uTorrent\utorrent.exe"
O4 - HKLM\..\Policies\Explorer\Run: [Windows Services for Processes] C:\Users\mnouckk\AppData\Roaming\svchost.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-1195113856-586066616-2882415649-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'postgres')
O4 - HKUS\S-1-5-21-1195113856-586066616-2882415649-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'postgres')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Bitcoin.lnk = C:\Program Files\Bitcoin\bitcoin-qt.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/s ... wflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: postgresql-8.4 - PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - c:/postgreSQL/bin/pg_ctl.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
--
End of file - 8000 bytes
prosím o kontrolu Vyřešeno
-
fredik
- člen Security týmu
-
Master Level 7
- Příspěvky: 4680
- Registrován: červenec 06
- Pohlaví:
- Stav:
Offline
Re: prosím o kontrolu
Stáhni AdwCleaner (by Xplode)
Ulož si ho na plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovém disku jako AdwCleaner[R?].txt), celý jeho obsah sem vlož.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
Ulož si ho na plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovém disku jako AdwCleaner[R?].txt), celý jeho obsah sem vlož.
Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.
It may take a while to get a response, because the "HJT Team" are very busy. Please, be patient, these people are volunteers. They will help you out, as soon as possible.
Pokud máte nějaký problém, tak mi neposílejte SZ/PM zprávy s logy a dejte je do fóra. Na tyto SZ není možno odpovědět
Pokud máte nějaký problém, tak mi neposílejte SZ/PM zprávy s logy a dejte je do fóra. Na tyto SZ není možno odpovědět
Re: prosím o kontrolu
Adw log:
# AdwCleaner v3.016 - Report created 09/01/2014 at 23:20:31
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : mnouckk - MNOUCKK-PC
# Running from : C:\Users\mnouckk\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\mnouckk\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ File : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [943 octets] - [09/01/2014 23:20:31]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1002 octets] ##########
# AdwCleaner v3.016 - Report created 09/01/2014 at 23:20:31
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : mnouckk - MNOUCKK-PC
# Running from : C:\Users\mnouckk\Desktop\adwcleaner.exe
# Option : Scan
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\mnouckk\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ File : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [943 octets] - [09/01/2014 23:20:31]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1002 octets] ##########
Re: prosím o kontrolu
Malwarebytes log
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.09.09
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
mnouckk :: MNOUCKK-PC [administrátor]
Ochrana: Povolena
9.1.2014 23:29:42
MBAM-log-2014-01-09 (23-36-38).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 273536
Uplynulý čas: 6 minut, 29 sekund
Nalezené procesy v paměti: 1
C:\Windows\inf\msnrnhsqt\msnrnhsqt.exe (BitcoinMiner) -> 3976 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Nebyla provedena žádná instrukce.
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|msuhebSrv (Trojan.Script) -> Data: "C:\Windows\system32\msuheb.vbe" msokcd msqkoluv -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 3
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 10
C:\Windows\inf\msnrnhsqt\msnrnhsqt.exe (BitcoinMiner) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\prym.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\winirliy.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\winpeofhb.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\winxlavmy.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\dawt.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Windows\System32\msokcd.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Windows\System32\msqkoluv.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Windows\System32\msuheb.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Roaming\per.bat (Malware.Trace) -> Nebyla provedena žádná instrukce.
(konec)
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.09.09
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
mnouckk :: MNOUCKK-PC [administrátor]
Ochrana: Povolena
9.1.2014 23:29:42
MBAM-log-2014-01-09 (23-36-38).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 273536
Uplynulý čas: 6 minut, 29 sekund
Nalezené procesy v paměti: 1
C:\Windows\inf\msnrnhsqt\msnrnhsqt.exe (BitcoinMiner) -> 3976 -> Nebyla provedena žádná instrukce.
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Nebyla provedena žádná instrukce.
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Nebyla provedena žádná instrukce.
Nalezené hodnoty v registru: 4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|msuhebSrv (Trojan.Script) -> Data: "C:\Windows\system32\msuheb.vbe" msokcd msqkoluv -> Nebyla provedena žádná instrukce.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Nebyla provedena žádná instrukce.
Nalezené datové položky v registru: 3
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Nebyla provedena žádná instrukce.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 10
C:\Windows\inf\msnrnhsqt\msnrnhsqt.exe (BitcoinMiner) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\prym.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\winirliy.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\winpeofhb.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\winxlavmy.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Local\Temp\dawt.exe (Trojan.Agent.UX) -> Nebyla provedena žádná instrukce.
C:\Windows\System32\msokcd.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Windows\System32\msqkoluv.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Windows\System32\msuheb.vbe (Trojan.Script) -> Nebyla provedena žádná instrukce.
C:\Users\mnouckk\AppData\Roaming\per.bat (Malware.Trace) -> Nebyla provedena žádná instrukce.
(konec)
-
fredik
- člen Security týmu
-
Master Level 7
- Příspěvky: 4680
- Registrován: červenec 06
- Pohlaví:
- Stav:
Offline
Re: prosím o kontrolu
Spusť znovu AdwCleaner jako správce.
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
Spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Spusť program RogueKiller.exe jako správce.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
- Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ a celý obsah logu sem zkopíruj.
Klikni na „ Vymazat-Clean“
Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
Spusť znovu MbAM a dej Scan
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Ukaž výsledky
- ujisti se že máš zatrhnuté všechny vypsané nálezy a klikni na tlačítko Odstranit označené
- když skončí odstraňování tak se ti zobrazí log, tak ho sem dej.
- pak zvol v programu OK a pak program ukonči přes Exit
Můžeš sem pak vložit nový log z MbAM.
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Spusť program RogueKiller.exe jako správce.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
- Zkontroluj , zda máš zaškrtnuto:
Kontrola MBR
Kontrola Faked
Antirootkit
- Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“ a celý obsah logu sem zkopíruj.
It may take a while to get a response, because the "HJT Team" are very busy. Please, be patient, these people are volunteers. They will help you out, as soon as possible.
Pokud máte nějaký problém, tak mi neposílejte SZ/PM zprávy s logy a dejte je do fóra. Na tyto SZ není možno odpovědět
Pokud máte nějaký problém, tak mi neposílejte SZ/PM zprávy s logy a dejte je do fóra. Na tyto SZ není možno odpovědět
Re: prosím o kontrolu
Adw:
# AdwCleaner v3.016 - Report created 10/01/2014 at 08:29:40
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : mnouckk - MNOUCKK-PC
# Running from : C:\Users\mnouckk\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\mnouckk\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ File : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1082 octets] - [09/01/2014 23:20:31]
AdwCleaner[R1].txt - [985 octets] - [10/01/2014 08:28:31]
AdwCleaner[S0].txt - [1148 octets] - [09/01/2014 23:22:02]
AdwCleaner[S1].txt - [907 octets] - [10/01/2014 08:29:40]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [966 octets] ##########
# AdwCleaner v3.016 - Report created 10/01/2014 at 08:29:40
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : mnouckk - MNOUCKK-PC
# Running from : C:\Users\mnouckk\Desktop\adwcleaner.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Google Chrome v31.0.1650.63
[ File : C:\Users\mnouckk\AppData\Local\Google\Chrome\User Data\Default\preferences ]
[ File : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [1082 octets] - [09/01/2014 23:20:31]
AdwCleaner[R1].txt - [985 octets] - [10/01/2014 08:28:31]
AdwCleaner[S0].txt - [1148 octets] - [09/01/2014 23:22:02]
AdwCleaner[S1].txt - [907 octets] - [10/01/2014 08:29:40]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [966 octets] ##########
Re: prosím o kontrolu
MbAM:
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.09.09
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
mnouckk :: MNOUCKK-PC [administrátor]
Ochrana: Povolena
10.1.2014 8:33:18
mbam-log-2014-01-10 (08-33-18).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 273242
Uplynulý čas: 6 minut, 20 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Přesun do karantény a smazání se zdařilo.
Nalezené hodnoty v registru: 4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|msuhebSrv (Trojan.Script) -> Data: "C:\Windows\system32\msuheb.vbe" msokcd msqkoluv -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Přesun do karantény a smazání se zdařilo.
Nalezené datové položky v registru: 3
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 8
C:\Users\mnouckk\AppData\Local\Temp\prym.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\winirliy.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\winpeofhb.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\winxlavmy.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\dawt.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Windows\System32\msqkoluv.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.
C:\Windows\System32\msuheb.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Roaming\per.bat (Malware.Trace) -> Přesun do karantény a smazání se zdařilo.
(konec)
Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org
Verze: v2014.01.09.09
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
mnouckk :: MNOUCKK-PC [administrátor]
Ochrana: Povolena
10.1.2014 8:33:18
mbam-log-2014-01-10 (08-33-18).txt
Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 273242
Uplynulý čas: 6 minut, 20 sekund
Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené klíče v registru: 3
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Active Setup\Installed Components\{E45C7ECB-AF0B-B6DD-B6D2-CECDBFAD2ACE} (Backdoor.Agent) -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Přesun do karantény a smazání se zdařilo.
Nalezené hodnoty v registru: 4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|msuhebSrv (Trojan.Script) -> Data: "C:\Windows\system32\msuheb.vbe" msokcd msqkoluv -> Přesun do karantény a smazání se zdařilo.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Windows Services for Processes (Trojan.Agent) -> Data: C:\Users\mnouckk\AppData\Roaming\svchost.exe -> Přesun do karantény a smazání se zdařilo.
Nalezené datové položky v registru: 3
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Špatný: (1) Dobrý: (0) -> Přesun do karantény a opravení se zdařilo.
Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)
Nalezené soubory: 8
C:\Users\mnouckk\AppData\Local\Temp\prym.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\winirliy.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\winpeofhb.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\winxlavmy.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Local\Temp\dawt.exe (Trojan.Agent.UX) -> Přesun do karantény a smazání se zdařilo.
C:\Windows\System32\msqkoluv.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.
C:\Windows\System32\msuheb.vbe (Trojan.Script) -> Přesun do karantény a smazání se zdařilo.
C:\Users\mnouckk\AppData\Roaming\per.bat (Malware.Trace) -> Přesun do karantény a smazání se zdařilo.
(konec)
Re: prosím o kontrolu
Rogue Killer:
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : mnouckk [Práva správce]
Mód : Kontrola -- Datum : 01/10/2014 08:47:10
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : uTorrent ("C:\Users\mnouckk\AppData\Roaming\uTorrent\utorrent.exe" [-]) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0xc0000033] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 vscan.novirusthanks.org
127.0.0.1 irusscan.jotti.org
127.0.0.1 www.virus-trap.org
127.0.0.1 www.filterbit.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKS-00A7B2 ATA Device +++++
--- User ---
[MBR] 380082919f634c0e747d5dc7ab06dfa1
[BSP] a075c10f0a5cdcaf1ebbcf7d2419366c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 99998 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 204796620 | Size: 376931 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_01102014_084710.txt >>
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : mnouckk [Práva správce]
Mód : Kontrola -- Datum : 01/10/2014 08:47:10
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 8 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : uTorrent ("C:\Users\mnouckk\AppData\Roaming\uTorrent\utorrent.exe" [-]) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> NALEZENO
[HJ POL][PUM] HKLM\[...]\System : EnableLUA (0) -> NALEZENO
[HJ SMENU][PUM] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NALEZENO
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> NALEZENO
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0xc0000033] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 vscan.novirusthanks.org
127.0.0.1 irusscan.jotti.org
127.0.0.1 www.virus-trap.org
127.0.0.1 www.filterbit.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKS-00A7B2 ATA Device +++++
--- User ---
[MBR] 380082919f634c0e747d5dc7ab06dfa1
[BSP] a075c10f0a5cdcaf1ebbcf7d2419366c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 99998 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 204796620 | Size: 376931 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_S_01102014_084710.txt >>
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: prosím o kontrolu
Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
Prosím, odpoj všechny USB nebo externí disky z počítače před spuštěním tohoto programu.
Spusť RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Počkej, dokud status okno zobrazuje "Prohledat "
- Klikni na "Smazat"
- Počkej, dokud Status box zobrazuje " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller
Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: prosím o kontrolu
RogueKiller V8.8.0 [Dec 27 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : mnouckk [Práva správce]
Mód : Odebrat -- Datum : 01/10/2014 11:55:50
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : uTorrent ("C:\Users\mnouckk\AppData\Roaming\uTorrent\utorrent.exe" [-]) -> VYMAZÁNO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0xc0000033] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 vscan.novirusthanks.org
127.0.0.1 irusscan.jotti.org
127.0.0.1 www.virus-trap.org
127.0.0.1 www.filterbit.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKS-00A7B2 ATA Device +++++
--- User ---
[MBR] 380082919f634c0e747d5dc7ab06dfa1
[BSP] a075c10f0a5cdcaf1ebbcf7d2419366c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 99998 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 204796620 | Size: 376931 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_01102014_115550.txt >>
RKreport[0]_S_01102014_115335.txt
mail : tigzyRK<at>gmail<dot>com
Podpora : http://www.adlice.com/forum/
Webové stránky : http://www.adlice.com/softwares/roguekiller/
: http://www.adlice.com
Operační systém : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Spuštěno v : Normální režim
Uživatel : mnouckk [Práva správce]
Mód : Odebrat -- Datum : 01/10/2014 11:55:50
| ARK || FAK || MBR |
¤¤¤ Škodlivé procesy: : 0 ¤¤¤
¤¤¤ ¤¤¤ Záznamy Registrů: : 3 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : uTorrent ("C:\Users\mnouckk\AppData\Roaming\uTorrent\utorrent.exe" [-]) -> VYMAZÁNO
[HJ DESK][PUM] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
[HJ DESK][PUM] HKCU\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> NAHRAZENO (0)
¤¤¤ naplánované úlohy : 0 ¤¤¤
¤¤¤ spuštění položky : 0 ¤¤¤
¤¤¤ Webové prohlížeče : 0 ¤¤¤
¤¤¤ Browser Addons : 0 ¤¤¤
¤¤¤ Zvláštní soubory / Složky: ¤¤¤
¤¤¤ Ovladač : [NENAHRÁNO 0xc0000033] ¤¤¤
¤¤¤ Externí včelstvo: ¤¤¤
¤¤¤ Nákaza : ¤¤¤
¤¤¤ Soubor HOSTS: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
127.0.0.1 vscan.novirusthanks.org
127.0.0.1 irusscan.jotti.org
127.0.0.1 www.virus-trap.org
127.0.0.1 www.filterbit.com
¤¤¤ Kontrola MBR: ¤¤¤
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD5000AAKS-00A7B2 ATA Device +++++
--- User ---
[MBR] 380082919f634c0e747d5dc7ab06dfa1
[BSP] a075c10f0a5cdcaf1ebbcf7d2419366c : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 99998 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 204796620 | Size: 376931 Mo
User = LL1 ... OK!
User = LL2 ... OK!
Dokončeno : << RKreport[0]_D_01102014_115550.txt >>
RKreport[0]_S_01102014_115335.txt
Re: prosím o kontrolu
11:57:19.0256 4660 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:57:21.0815 4660 Perform update action was selected
11:57:21.0815 3628 Deinitialize success
pak tam je ještě jeden log, ale ten mi nejde vložit, neb je moc dlouhý (má moc znaků)....
11:57:21.0815 4660 Perform update action was selected
11:57:21.0815 3628 Deinitialize success
pak tam je ještě jeden log, ale ten mi nejde vložit, neb je moc dlouhý (má moc znaků)....
Re: prosím o kontrolu
11:57:46.0628 0x1044 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
11:57:49.0499 0x1044 ============================================================
11:57:49.0499 0x1044 Current date / time: 2014/01/10 11:57:49.0499
11:57:49.0499 0x1044 SystemInfo:
11:57:49.0499 0x1044
11:57:49.0499 0x1044 OS Version: 6.1.7601 ServicePack: 1.0
11:57:49.0499 0x1044 Product type: Workstation
11:57:49.0499 0x1044 ComputerName: MNOUCKK-PC
11:57:49.0499 0x1044 UserName: mnouckk
11:57:49.0499 0x1044 Windows directory: C:\Windows
11:57:49.0499 0x1044 System windows directory: C:\Windows
11:57:49.0499 0x1044 Processor architecture: Intel x86
11:57:49.0499 0x1044 Number of processors: 4
11:57:49.0499 0x1044 Page size: 0x1000
11:57:49.0499 0x1044 Boot type: Normal boot
11:57:49.0499 0x1044 ============================================================
11:57:51.0043 0x1044 KLMD registered as C:\Windows\system32\drivers\32359525.sys
11:57:51.0105 0x1044 System UUID: {964ADC58-73FF-0527-E282-0E880009BF52}
11:57:51.0589 0x1044 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:57:51.0620 0x1044 ============================================================
11:57:51.0620 0x1044 \Device\Harddisk0\DR0:
11:57:51.0620 0x1044 MBR partitions:
11:57:51.0620 0x1044 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
11:57:51.0636 0x1044 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x2E031A75
11:57:51.0636 0x1044 ============================================================
11:57:51.0651 0x1044 C: <-> \Device\Harddisk0\DR0\Partition1
11:57:51.0667 0x1044 D: <-> \Device\Harddisk0\DR0\Partition2
11:57:51.0667 0x1044 ============================================================
11:57:51.0667 0x1044 Initialize success
11:57:51.0667 0x1044 ============================================================
11:58:05.0660 0x0ef8 ============================================================
11:58:05.0660 0x0ef8 Scan started
11:58:05.0660 0x0ef8 Mode: Manual;
11:58:05.0660 0x0ef8 ============================================================
11:58:05.0660 0x0ef8 KSN ping started
11:58:19.0341 0x0ef8 KSN ping finished: true
11:58:19.0809 0x0ef8 ================ Scan system memory ========================
11:58:19.0809 0x0ef8 System memory - ok
11:58:19.0825 0x0ef8 ================ Scan services =============================
11:58:19.0965 0x0ef8 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:58:19.0981 0x0ef8 1394ohci - ok
11:58:20.0028 0x0ef8 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:58:20.0028 0x0ef8 ACPI - ok
11:58:20.0059 0x0ef8 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:58:20.0059 0x0ef8 AcpiPmi - ok
11:58:20.0121 0x0ef8 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:58:20.0121 0x0ef8 AdobeARMservice - ok
11:58:20.0168 0x0ef8 [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:58:20.0168 0x0ef8 AdobeFlashPlayerUpdateSvc - ok
11:58:20.0231 0x0ef8 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:58:20.0246 0x0ef8 adp94xx - ok
11:58:20.0262 0x0ef8 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:58:20.0277 0x0ef8 adpahci - ok
11:58:20.0293 0x0ef8 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:58:20.0293 0x0ef8 adpu320 - ok
11:58:20.0324 0x0ef8 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:58:20.0324 0x0ef8 AeLookupSvc - ok
11:58:20.0355 0x0ef8 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
11:58:20.0355 0x0ef8 AFD - ok
11:58:20.0371 0x0ef8 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
11:58:20.0371 0x0ef8 agp440 - ok
11:58:20.0402 0x0ef8 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
11:58:20.0402 0x0ef8 aic78xx - ok
11:58:20.0418 0x0ef8 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
11:58:20.0418 0x0ef8 ALG - ok
11:58:20.0449 0x0ef8 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
11:58:20.0449 0x0ef8 aliide - ok
11:58:20.0465 0x0ef8 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:58:20.0465 0x0ef8 amdagp - ok
11:58:20.0480 0x0ef8 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
11:58:20.0480 0x0ef8 amdide - ok
11:58:20.0496 0x0ef8 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:58:20.0496 0x0ef8 AmdK8 - ok
11:58:20.0511 0x0ef8 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:58:20.0511 0x0ef8 AmdPPM - ok
11:58:20.0543 0x0ef8 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:58:20.0543 0x0ef8 amdsata - ok
11:58:20.0574 0x0ef8 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:58:20.0589 0x0ef8 amdsbs - ok
11:58:20.0605 0x0ef8 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:58:20.0605 0x0ef8 amdxata - ok
11:58:20.0636 0x0ef8 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
11:58:20.0636 0x0ef8 AppID - ok
11:58:20.0652 0x0ef8 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:58:20.0652 0x0ef8 AppIDSvc - ok
11:58:20.0683 0x0ef8 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
11:58:20.0683 0x0ef8 Appinfo - ok
11:58:20.0714 0x0ef8 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:58:20.0730 0x0ef8 AppMgmt - ok
11:58:20.0745 0x0ef8 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
11:58:20.0745 0x0ef8 arc - ok
11:58:20.0761 0x0ef8 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:58:20.0761 0x0ef8 arcsas - ok
11:58:20.0839 0x0ef8 [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:58:20.0839 0x0ef8 aspnet_state - ok
11:58:20.0855 0x0ef8 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:58:20.0855 0x0ef8 AsyncMac - ok
11:58:20.0870 0x0ef8 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
11:58:20.0870 0x0ef8 atapi - ok
11:58:20.0917 0x0ef8 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:58:20.0948 0x0ef8 AudioEndpointBuilder - ok
11:58:20.0979 0x0ef8 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:58:20.0995 0x0ef8 Audiosrv - ok
11:58:21.0026 0x0ef8 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:58:21.0026 0x0ef8 AxInstSV - ok
11:58:21.0073 0x0ef8 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
11:58:21.0089 0x0ef8 b06bdrv - ok
11:58:21.0104 0x0ef8 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
11:58:21.0120 0x0ef8 b57nd60x - ok
11:58:21.0151 0x0ef8 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
11:58:21.0151 0x0ef8 BDESVC - ok
11:58:21.0151 0x0ef8 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
11:58:21.0167 0x0ef8 Beep - ok
11:58:21.0198 0x0ef8 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
11:58:21.0229 0x0ef8 BFE - ok
11:58:21.0260 0x0ef8 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
11:58:21.0291 0x0ef8 BITS - ok
11:58:21.0307 0x0ef8 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:58:21.0307 0x0ef8 blbdrive - ok
11:58:21.0338 0x0ef8 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:58:21.0338 0x0ef8 bowser - ok
11:58:21.0354 0x0ef8 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:58:21.0354 0x0ef8 BrFiltLo - ok
11:58:21.0369 0x0ef8 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:58:21.0385 0x0ef8 BrFiltUp - ok
11:58:21.0401 0x0ef8 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
11:58:21.0416 0x0ef8 Browser - ok
11:58:21.0447 0x0ef8 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:58:21.0447 0x0ef8 Brserid - ok
11:58:21.0463 0x0ef8 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:58:21.0463 0x0ef8 BrSerWdm - ok
11:58:21.0479 0x0ef8 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:58:21.0479 0x0ef8 BrUsbMdm - ok
11:58:21.0494 0x0ef8 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:58:21.0494 0x0ef8 BrUsbSer - ok
11:58:21.0494 0x0ef8 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:58:21.0494 0x0ef8 BTHMODEM - ok
11:58:21.0525 0x0ef8 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
11:58:21.0525 0x0ef8 bthserv - ok
11:58:21.0557 0x0ef8 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:58:21.0557 0x0ef8 cdfs - ok
11:58:21.0603 0x0ef8 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:58:21.0603 0x0ef8 cdrom - ok
11:58:21.0635 0x0ef8 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
11:58:21.0635 0x0ef8 CertPropSvc - ok
11:58:21.0650 0x0ef8 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:58:21.0666 0x0ef8 circlass - ok
11:58:21.0681 0x0ef8 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
11:58:21.0697 0x0ef8 CLFS - ok
11:58:21.0728 0x0ef8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:58:21.0744 0x0ef8 clr_optimization_v2.0.50727_32 - ok
11:58:21.0775 0x0ef8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:58:21.0806 0x0ef8 clr_optimization_v4.0.30319_32 - ok
11:58:21.0822 0x0ef8 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:58:21.0822 0x0ef8 CmBatt - ok
11:58:21.0853 0x0ef8 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:58:21.0853 0x0ef8 cmdide - ok
11:58:21.0884 0x0ef8 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
11:58:21.0900 0x0ef8 CNG - ok
11:58:21.0915 0x0ef8 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:58:21.0915 0x0ef8 Compbatt - ok
11:58:21.0931 0x0ef8 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:58:21.0931 0x0ef8 CompositeBus - ok
11:58:21.0947 0x0ef8 COMSysApp - ok
11:58:21.0962 0x0ef8 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:58:21.0962 0x0ef8 crcdisk - ok
11:58:21.0978 0x0ef8 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:58:21.0978 0x0ef8 CryptSvc - ok
11:58:22.0009 0x0ef8 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
11:58:22.0009 0x0ef8 CSC - ok
11:58:22.0040 0x0ef8 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
11:58:22.0087 0x0ef8 CscService - ok
11:58:22.0149 0x0ef8 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
11:58:22.0165 0x0ef8 DcomLaunch - ok
11:58:22.0196 0x0ef8 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
11:58:22.0212 0x0ef8 defragsvc - ok
11:58:22.0243 0x0ef8 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:58:22.0243 0x0ef8 DfsC - ok
11:58:22.0274 0x0ef8 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:58:22.0290 0x0ef8 Dhcp - ok
11:58:22.0290 0x0ef8 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
11:58:22.0290 0x0ef8 discache - ok
11:58:22.0305 0x0ef8 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:58:22.0305 0x0ef8 Disk - ok
11:58:22.0337 0x0ef8 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:58:22.0337 0x0ef8 Dnscache - ok
11:58:22.0368 0x0ef8 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
11:58:22.0383 0x0ef8 dot3svc - ok
11:58:22.0399 0x0ef8 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
11:58:22.0399 0x0ef8 DPS - ok
11:58:22.0430 0x0ef8 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:58:22.0430 0x0ef8 drmkaud - ok
11:58:22.0461 0x0ef8 [ E6B7D1B24E16FB24CE1FEA964E144EBC, 30F81E0A017163A1AB463FE3A13B5CC2905B973E782AEBC1EB63759BF2470658 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:58:22.0477 0x0ef8 dtsoftbus01 - ok
11:58:22.0539 0x0ef8 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:58:22.0555 0x0ef8 DXGKrnl - ok
11:58:22.0586 0x0ef8 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
11:58:22.0586 0x0ef8 EapHost - ok
11:58:22.0727 0x0ef8 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
11:58:22.0805 0x0ef8 ebdrv - ok
11:58:22.0820 0x0ef8 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS C:\Windows\System32\lsass.exe
11:58:22.0820 0x0ef8 EFS - ok
11:58:22.0883 0x0ef8 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:58:22.0898 0x0ef8 ehRecvr - ok
11:58:22.0914 0x0ef8 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
11:58:22.0929 0x0ef8 ehSched - ok
11:58:22.0961 0x0ef8 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:58:22.0961 0x0ef8 elxstor - ok
11:58:22.0992 0x0ef8 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:58:22.0992 0x0ef8 ErrDev - ok
11:58:23.0023 0x0ef8 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
11:58:23.0039 0x0ef8 EventSystem - ok
11:58:23.0054 0x0ef8 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
11:58:23.0054 0x0ef8 exfat - ok
11:58:23.0070 0x0ef8 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:58:23.0070 0x0ef8 fastfat - ok
11:58:23.0101 0x0ef8 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
11:58:23.0117 0x0ef8 Fax - ok
11:58:23.0117 0x0ef8 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:58:23.0117 0x0ef8 fdc - ok
11:58:23.0132 0x0ef8 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
11:58:23.0132 0x0ef8 fdPHost - ok
11:58:23.0148 0x0ef8 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
11:58:23.0148 0x0ef8 FDResPub - ok
11:58:23.0163 0x0ef8 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:58:23.0163 0x0ef8 FileInfo - ok
11:58:23.0163 0x0ef8 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:58:23.0163 0x0ef8 Filetrace - ok
11:58:23.0179 0x0ef8 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:58:23.0179 0x0ef8 flpydisk - ok
11:58:23.0179 0x0ef8 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:58:23.0179 0x0ef8 FltMgr - ok
11:58:23.0257 0x0ef8 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
11:58:23.0319 0x0ef8 FontCache - ok
11:58:23.0351 0x0ef8 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:58:23.0351 0x0ef8 FontCache3.0.0.0 - ok
11:58:23.0366 0x0ef8 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:58:23.0366 0x0ef8 FsDepends - ok
11:58:23.0382 0x0ef8 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:58:23.0382 0x0ef8 Fs_Rec - ok
11:58:23.0413 0x0ef8 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:58:23.0413 0x0ef8 fvevol - ok
11:58:23.0429 0x0ef8 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:58:23.0429 0x0ef8 gagp30kx - ok
11:58:23.0460 0x0ef8 [ 5C230948DD6652228F88CA7AE6CB276C, EDEC6E6B9E2B0CDB6934460EF473FBEAC290DF4A33536A47B3EB1786BDCA197B ] gdrv C:\Windows\gdrv.sys
11:58:23.0460 0x0ef8 gdrv - ok
11:58:23.0460 0x0ef8 GMSIPCI - ok
11:58:23.0507 0x0ef8 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
11:58:23.0538 0x0ef8 gpsvc - ok
11:58:23.0553 0x0ef8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:58:23.0553 0x0ef8 gupdate - ok
11:58:23.0569 0x0ef8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:58:23.0569 0x0ef8 gupdatem - ok
11:58:23.0585 0x0ef8 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:58:23.0585 0x0ef8 hcw85cir - ok
11:58:23.0631 0x0ef8 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:58:23.0647 0x0ef8 HdAudAddService - ok
11:58:23.0663 0x0ef8 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:58:23.0663 0x0ef8 HDAudBus - ok
11:58:23.0678 0x0ef8 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:58:23.0678 0x0ef8 HidBatt - ok
11:58:23.0678 0x0ef8 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:58:23.0694 0x0ef8 HidBth - ok
11:58:23.0694 0x0ef8 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:58:23.0694 0x0ef8 HidIr - ok
11:58:23.0725 0x0ef8 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\system32\hidserv.dll
11:58:23.0725 0x0ef8 hidserv - ok
11:58:23.0756 0x0ef8 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:58:23.0756 0x0ef8 HidUsb - ok
11:58:23.0772 0x0ef8 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
11:58:23.0772 0x0ef8 hkmsvc - ok
11:58:23.0787 0x0ef8 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:58:23.0803 0x0ef8 HomeGroupListener - ok
11:58:23.0834 0x0ef8 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:58:23.0834 0x0ef8 HomeGroupProvider - ok
11:58:23.0850 0x0ef8 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:58:23.0850 0x0ef8 HpSAMD - ok
11:58:23.0897 0x0ef8 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:58:23.0912 0x0ef8 HTTP - ok
11:58:23.0959 0x0ef8 [ 4745A8B2BE115B054F31A86B0E64BB01, 58A44A1F10FB40BC578BCA2A1C9186B9AA0F22667A2C027619EE678BB90054AA ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO32.SYS
11:58:23.0959 0x0ef8 HWiNFO32 - ok
11:58:23.0959 0x0ef8 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:58:23.0975 0x0ef8 hwpolicy - ok
11:58:23.0990 0x0ef8 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:58:23.0990 0x0ef8 i8042prt - ok
11:58:24.0021 0x0ef8 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:58:24.0037 0x0ef8 iaStorV - ok
11:58:24.0131 0x0ef8 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:58:24.0146 0x0ef8 idsvc - ok
11:58:24.0177 0x0ef8 IEEtwCollectorService - ok
11:58:24.0209 0x0ef8 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:58:24.0209 0x0ef8 iirsp - ok
11:58:24.0255 0x0ef8 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
11:58:24.0287 0x0ef8 IKEEXT - ok
11:58:24.0411 0x0ef8 [ 5D26CCB06E1F3B5C26E863DF3F4F2611, E6253E00F4EA2A57F270594A47879AA4B58053ABEFBC98A3DCC92289F67F26CB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:58:24.0474 0x0ef8 IntcAzAudAddService - ok
11:58:24.0489 0x0ef8 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
11:58:24.0489 0x0ef8 intelide - ok
11:58:24.0505 0x0ef8 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:58:24.0505 0x0ef8 intelppm - ok
11:58:24.0536 0x0ef8 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:58:24.0536 0x0ef8 IPBusEnum - ok
11:58:24.0552 0x0ef8 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:58:24.0552 0x0ef8 IpFilterDriver - ok
11:58:24.0583 0x0ef8 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:58:24.0614 0x0ef8 iphlpsvc - ok
11:58:24.0645 0x0ef8 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:58:24.0645 0x0ef8 IPMIDRV - ok
11:58:24.0661 0x0ef8 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:58:24.0661 0x0ef8 IPNAT - ok
11:58:24.0677 0x0ef8 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:58:24.0677 0x0ef8 IRENUM - ok
11:58:24.0692 0x0ef8 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:58:24.0692 0x0ef8 isapnp - ok
11:58:24.0708 0x0ef8 [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:58:24.0708 0x0ef8 iScsiPrt - ok
11:58:24.0723 0x0ef8 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:58:24.0723 0x0ef8 kbdclass - ok
11:58:24.0739 0x0ef8 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:58:24.0739 0x0ef8 kbdhid - ok
11:58:24.0739 0x0ef8 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso C:\Windows\system32\lsass.exe
11:58:24.0739 0x0ef8 KeyIso - ok
11:58:24.0770 0x0ef8 [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:58:24.0770 0x0ef8 KSecDD - ok
11:58:24.0786 0x0ef8 [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:58:24.0786 0x0ef8 KSecPkg - ok
11:58:24.0817 0x0ef8 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:58:24.0833 0x0ef8 KtmRm - ok
11:58:24.0848 0x0ef8 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:58:24.0848 0x0ef8 LanmanServer - ok
11:58:24.0864 0x0ef8 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:58:24.0879 0x0ef8 LanmanWorkstation - ok
11:58:24.0879 0x0ef8 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:58:24.0895 0x0ef8 lltdio - ok
11:58:24.0911 0x0ef8 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:58:24.0911 0x0ef8 lltdsvc - ok
11:58:24.0926 0x0ef8 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:58:24.0926 0x0ef8 lmhosts - ok
11:58:24.0942 0x0ef8 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:58:24.0942 0x0ef8 LSI_FC - ok
11:58:24.0942 0x0ef8 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:58:24.0957 0x0ef8 LSI_SAS - ok
11:58:24.0957 0x0ef8 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:58:24.0957 0x0ef8 LSI_SAS2 - ok
11:58:24.0957 0x0ef8 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:58:24.0973 0x0ef8 LSI_SCSI - ok
11:58:24.0989 0x0ef8 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
11:58:24.0989 0x0ef8 luafv - ok
11:58:25.0004 0x0ef8 [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:58:25.0020 0x0ef8 MBAMProtector - ok
11:58:25.0082 0x0ef8 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:58:25.0098 0x0ef8 MBAMScheduler - ok
11:58:25.0129 0x0ef8 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:58:25.0145 0x0ef8 MBAMService - ok
11:58:25.0176 0x0ef8 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:58:25.0176 0x0ef8 Mcx2Svc - ok
11:58:25.0176 0x0ef8 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:58:25.0191 0x0ef8 megasas - ok
11:58:25.0191 0x0ef8 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:58:25.0207 0x0ef8 MegaSR - ok
11:58:25.0254 0x0ef8 Microsoft SharePoint Workspace Audit Service - ok
11:58:25.0269 0x0ef8 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
11:58:25.0269 0x0ef8 MMCSS - ok
11:58:25.0285 0x0ef8 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
11:58:25.0285 0x0ef8 Modem - ok
11:58:25.0301 0x0ef8 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:58:25.0301 0x0ef8 monitor - ok
11:58:25.0316 0x0ef8 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\drivers\mouclass.sys
11:58:25.0316 0x0ef8 mouclass - ok
11:58:25.0332 0x0ef8 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:58:25.0332 0x0ef8 mouhid - ok
11:58:25.0363 0x0ef8 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:58:25.0363 0x0ef8 mountmgr - ok
11:58:25.0394 0x0ef8 [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:58:25.0410 0x0ef8 MpFilter - ok
11:58:25.0425 0x0ef8 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
11:58:25.0425 0x0ef8 mpio - ok
11:58:25.0488 0x0ef8 [ 06D4F934E09C359B0EFBFB3146F1D910, 484F57CD6F8757137F3B3491B8AC8ECF6C6385A666CD1671833DDD9E962AAB4A ] MpKsl00d22954 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9DC42C17-97A6-4D67-9006-3377A082F7AE}\MpKsl00d22954.sys
11:58:25.0488 0x0ef8 MpKsl00d22954 - ok
11:58:25.0503 0x0ef8 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:58:25.0503 0x0ef8 mpsdrv - ok
11:58:25.0566 0x0ef8 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:58:25.0597 0x0ef8 MpsSvc - ok
11:58:25.0628 0x0ef8 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:58:25.0628 0x0ef8 MRxDAV - ok
11:58:25.0659 0x0ef8 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:58:25.0659 0x0ef8 mrxsmb - ok
11:58:25.0675 0x0ef8 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:58:25.0691 0x0ef8 mrxsmb10 - ok
11:58:25.0706 0x0ef8 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:58:25.0706 0x0ef8 mrxsmb20 - ok
11:58:25.0737 0x0ef8 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
11:58:25.0737 0x0ef8 msahci - ok
11:58:25.0753 0x0ef8 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:58:25.0753 0x0ef8 msdsm - ok
11:58:25.0769 0x0ef8 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
11:58:25.0769 0x0ef8 MSDTC - ok
11:58:25.0784 0x0ef8 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:58:25.0784 0x0ef8 Msfs - ok
11:58:25.0815 0x0ef8 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:58:25.0815 0x0ef8 mshidkmdf - ok
11:58:25.0831 0x0ef8 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:58:25.0831 0x0ef8 msisadrv - ok
11:58:25.0862 0x0ef8 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:58:25.0878 0x0ef8 MSiSCSI - ok
11:58:25.0878 0x0ef8 msiserver - ok
11:58:25.0893 0x0ef8 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:58:25.0909 0x0ef8 MSKSSRV - ok
11:58:25.0940 0x0ef8 [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:58:25.0956 0x0ef8 MsMpSvc - ok
11:58:25.0971 0x0ef8 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:58:25.0971 0x0ef8 MSPCLOCK - ok
11:58:25.0971 0x0ef8 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:58:25.0971 0x0ef8 MSPQM - ok
11:58:25.0987 0x0ef8 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:58:26.0003 0x0ef8 MsRPC - ok
11:58:26.0018 0x0ef8 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:58:26.0018 0x0ef8 mssmbios - ok
11:58:26.0034 0x0ef8 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:58:26.0034 0x0ef8 MSTEE - ok
11:58:26.0034 0x0ef8 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:58:26.0034 0x0ef8 MTConfig - ok
11:58:26.0049 0x0ef8 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
11:58:26.0049 0x0ef8 Mup - ok
11:58:26.0096 0x0ef8 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
11:58:26.0112 0x0ef8 napagent - ok
11:58:26.0127 0x0ef8 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:58:26.0143 0x0ef8 NativeWifiP - ok
11:58:26.0190 0x0ef8 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:58:26.0205 0x0ef8 NDIS - ok
11:58:26.0237 0x0ef8 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:58:26.0237 0x0ef8 NdisCap - ok
11:58:26.0237 0x0ef8 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:58:26.0237 0x0ef8 NdisTapi - ok
11:58:26.0268 0x0ef8 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:58:26.0268 0x0ef8 Ndisuio - ok
11:58:26.0283 0x0ef8 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:58:26.0299 0x0ef8 NdisWan - ok
11:58:26.0315 0x0ef8 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:58:26.0315 0x0ef8 NDProxy - ok
11:58:26.0330 0x0ef8 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:58:26.0330 0x0ef8 NetBIOS - ok
11:58:26.0361 0x0ef8 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:58:26.0377 0x0ef8 NetBT - ok
11:58:26.0377 0x0ef8 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon C:\Windows\system32\lsass.exe
11:58:26.0393 0x0ef8 Netlogon - ok
11:58:26.0408 0x0ef8 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
11:58:26.0439 0x0ef8 Netman - ok
11:58:26.0455 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0455 0x0ef8 NetMsmqActivator - ok
11:58:26.0471 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0471 0x0ef8 NetPipeActivator - ok
11:58:26.0502 0x0ef8 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
11:58:26.0517 0x0ef8 netprofm - ok
11:58:26.0517 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0517 0x0ef8 NetTcpActivator - ok
11:58:26.0533 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0533 0x0ef8 NetTcpPortSharing - ok
11:58:26.0549 0x0ef8 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:58:26.0549 0x0ef8 nfrd960 - ok
11:58:26.0564 0x0ef8 [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:58:26.0580 0x0ef8 NisDrv - ok
11:58:26.0611 0x0ef8 [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
11:58:26.0627 0x0ef8 NisSrv - ok
11:58:26.0658 0x0ef8 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:58:26.0673 0x0ef8 NlaSvc - ok
11:58:26.0689 0x0ef8 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:58:26.0689 0x0ef8 Npfs - ok
11:58:26.0689 0x0ef8 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
11:58:26.0705 0x0ef8 nsi - ok
11:58:26.0705 0x0ef8 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:58:26.0705 0x0ef8 nsiproxy - ok
11:58:26.0767 0x0ef8 [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:58:26.0798 0x0ef8 Ntfs - ok
11:58:26.0814 0x0ef8 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
11:58:26.0814 0x0ef8 Null - ok
11:58:27.0219 0x0ef8 [ 50199B0578F7A4ADD5E16A42946CF34B, D4CB42C4FC42355BE007088FBB60B2B773188AB81FB9111861C0682DBCD79EFD ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:58:27.0453 0x0ef8 nvlddmkm - ok
11:58:27.0594 0x0ef8 [ 1C7C6D7481CABD4EF38A81F5B68F02E8, C4FBE81B8A3F280EEAC282D76626E849197EDEEC8C755B7B12E3594776390DE7 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
11:58:27.0625 0x0ef8 NvNetworkService - ok
11:58:27.0656 0x0ef8 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:58:27.0656 0x0ef8 nvraid - ok
11:58:27.0672 0x0ef8 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:58:27.0672 0x0ef8 nvstor - ok
11:58:28.0218 0x0ef8 [ 47BE5424331F159AEE96B0EBBBE4ACB3, 7A14B48A4D885385C22E55C45DCA0696E4A7FE404BB290C18F402819A9A9A43E ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
11:58:28.0561 0x0ef8 NvStreamSvc - ok
11:58:28.0639 0x0ef8 [ 4BD107E339C9955708FA35A96BB8A8A8, 540A2C12B844491F5089CAEDA0EA57DAE03471081866AE1A08C5E65E592F772B ] nvsvc C:\Windows\system32\nvvsvc.exe
11:58:28.0670 0x0ef8 nvsvc - ok
11:58:28.0670 0x0ef8 [ DAC9726D9C90631D6A1C0ECAA0226021, 3865071ED01F948680613C7E52399EF7091C2AB4E33BE41A1979297D9DBA9A51 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad32v.sys
11:58:28.0670 0x0ef8 nvvad_WaveExtensible - ok
11:58:28.0701 0x0ef8 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:57:49.0499 0x1044 ============================================================
11:57:49.0499 0x1044 Current date / time: 2014/01/10 11:57:49.0499
11:57:49.0499 0x1044 SystemInfo:
11:57:49.0499 0x1044
11:57:49.0499 0x1044 OS Version: 6.1.7601 ServicePack: 1.0
11:57:49.0499 0x1044 Product type: Workstation
11:57:49.0499 0x1044 ComputerName: MNOUCKK-PC
11:57:49.0499 0x1044 UserName: mnouckk
11:57:49.0499 0x1044 Windows directory: C:\Windows
11:57:49.0499 0x1044 System windows directory: C:\Windows
11:57:49.0499 0x1044 Processor architecture: Intel x86
11:57:49.0499 0x1044 Number of processors: 4
11:57:49.0499 0x1044 Page size: 0x1000
11:57:49.0499 0x1044 Boot type: Normal boot
11:57:49.0499 0x1044 ============================================================
11:57:51.0043 0x1044 KLMD registered as C:\Windows\system32\drivers\32359525.sys
11:57:51.0105 0x1044 System UUID: {964ADC58-73FF-0527-E282-0E880009BF52}
11:57:51.0589 0x1044 Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:57:51.0620 0x1044 ============================================================
11:57:51.0620 0x1044 \Device\Harddisk0\DR0:
11:57:51.0620 0x1044 MBR partitions:
11:57:51.0620 0x1044 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
11:57:51.0636 0x1044 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x2E031A75
11:57:51.0636 0x1044 ============================================================
11:57:51.0651 0x1044 C: <-> \Device\Harddisk0\DR0\Partition1
11:57:51.0667 0x1044 D: <-> \Device\Harddisk0\DR0\Partition2
11:57:51.0667 0x1044 ============================================================
11:57:51.0667 0x1044 Initialize success
11:57:51.0667 0x1044 ============================================================
11:58:05.0660 0x0ef8 ============================================================
11:58:05.0660 0x0ef8 Scan started
11:58:05.0660 0x0ef8 Mode: Manual;
11:58:05.0660 0x0ef8 ============================================================
11:58:05.0660 0x0ef8 KSN ping started
11:58:19.0341 0x0ef8 KSN ping finished: true
11:58:19.0809 0x0ef8 ================ Scan system memory ========================
11:58:19.0809 0x0ef8 System memory - ok
11:58:19.0825 0x0ef8 ================ Scan services =============================
11:58:19.0965 0x0ef8 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:58:19.0981 0x0ef8 1394ohci - ok
11:58:20.0028 0x0ef8 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:58:20.0028 0x0ef8 ACPI - ok
11:58:20.0059 0x0ef8 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:58:20.0059 0x0ef8 AcpiPmi - ok
11:58:20.0121 0x0ef8 [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:58:20.0121 0x0ef8 AdobeARMservice - ok
11:58:20.0168 0x0ef8 [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:58:20.0168 0x0ef8 AdobeFlashPlayerUpdateSvc - ok
11:58:20.0231 0x0ef8 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:58:20.0246 0x0ef8 adp94xx - ok
11:58:20.0262 0x0ef8 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:58:20.0277 0x0ef8 adpahci - ok
11:58:20.0293 0x0ef8 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:58:20.0293 0x0ef8 adpu320 - ok
11:58:20.0324 0x0ef8 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:58:20.0324 0x0ef8 AeLookupSvc - ok
11:58:20.0355 0x0ef8 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
11:58:20.0355 0x0ef8 AFD - ok
11:58:20.0371 0x0ef8 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
11:58:20.0371 0x0ef8 agp440 - ok
11:58:20.0402 0x0ef8 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
11:58:20.0402 0x0ef8 aic78xx - ok
11:58:20.0418 0x0ef8 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
11:58:20.0418 0x0ef8 ALG - ok
11:58:20.0449 0x0ef8 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
11:58:20.0449 0x0ef8 aliide - ok
11:58:20.0465 0x0ef8 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:58:20.0465 0x0ef8 amdagp - ok
11:58:20.0480 0x0ef8 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
11:58:20.0480 0x0ef8 amdide - ok
11:58:20.0496 0x0ef8 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:58:20.0496 0x0ef8 AmdK8 - ok
11:58:20.0511 0x0ef8 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:58:20.0511 0x0ef8 AmdPPM - ok
11:58:20.0543 0x0ef8 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:58:20.0543 0x0ef8 amdsata - ok
11:58:20.0574 0x0ef8 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:58:20.0589 0x0ef8 amdsbs - ok
11:58:20.0605 0x0ef8 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:58:20.0605 0x0ef8 amdxata - ok
11:58:20.0636 0x0ef8 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
11:58:20.0636 0x0ef8 AppID - ok
11:58:20.0652 0x0ef8 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:58:20.0652 0x0ef8 AppIDSvc - ok
11:58:20.0683 0x0ef8 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
11:58:20.0683 0x0ef8 Appinfo - ok
11:58:20.0714 0x0ef8 [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:58:20.0730 0x0ef8 AppMgmt - ok
11:58:20.0745 0x0ef8 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
11:58:20.0745 0x0ef8 arc - ok
11:58:20.0761 0x0ef8 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:58:20.0761 0x0ef8 arcsas - ok
11:58:20.0839 0x0ef8 [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:58:20.0839 0x0ef8 aspnet_state - ok
11:58:20.0855 0x0ef8 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:58:20.0855 0x0ef8 AsyncMac - ok
11:58:20.0870 0x0ef8 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
11:58:20.0870 0x0ef8 atapi - ok
11:58:20.0917 0x0ef8 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:58:20.0948 0x0ef8 AudioEndpointBuilder - ok
11:58:20.0979 0x0ef8 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:58:20.0995 0x0ef8 Audiosrv - ok
11:58:21.0026 0x0ef8 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:58:21.0026 0x0ef8 AxInstSV - ok
11:58:21.0073 0x0ef8 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
11:58:21.0089 0x0ef8 b06bdrv - ok
11:58:21.0104 0x0ef8 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
11:58:21.0120 0x0ef8 b57nd60x - ok
11:58:21.0151 0x0ef8 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
11:58:21.0151 0x0ef8 BDESVC - ok
11:58:21.0151 0x0ef8 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
11:58:21.0167 0x0ef8 Beep - ok
11:58:21.0198 0x0ef8 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
11:58:21.0229 0x0ef8 BFE - ok
11:58:21.0260 0x0ef8 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\System32\qmgr.dll
11:58:21.0291 0x0ef8 BITS - ok
11:58:21.0307 0x0ef8 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:58:21.0307 0x0ef8 blbdrive - ok
11:58:21.0338 0x0ef8 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:58:21.0338 0x0ef8 bowser - ok
11:58:21.0354 0x0ef8 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:58:21.0354 0x0ef8 BrFiltLo - ok
11:58:21.0369 0x0ef8 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:58:21.0385 0x0ef8 BrFiltUp - ok
11:58:21.0401 0x0ef8 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
11:58:21.0416 0x0ef8 Browser - ok
11:58:21.0447 0x0ef8 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:58:21.0447 0x0ef8 Brserid - ok
11:58:21.0463 0x0ef8 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:58:21.0463 0x0ef8 BrSerWdm - ok
11:58:21.0479 0x0ef8 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:58:21.0479 0x0ef8 BrUsbMdm - ok
11:58:21.0494 0x0ef8 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:58:21.0494 0x0ef8 BrUsbSer - ok
11:58:21.0494 0x0ef8 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:58:21.0494 0x0ef8 BTHMODEM - ok
11:58:21.0525 0x0ef8 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
11:58:21.0525 0x0ef8 bthserv - ok
11:58:21.0557 0x0ef8 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:58:21.0557 0x0ef8 cdfs - ok
11:58:21.0603 0x0ef8 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:58:21.0603 0x0ef8 cdrom - ok
11:58:21.0635 0x0ef8 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
11:58:21.0635 0x0ef8 CertPropSvc - ok
11:58:21.0650 0x0ef8 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:58:21.0666 0x0ef8 circlass - ok
11:58:21.0681 0x0ef8 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
11:58:21.0697 0x0ef8 CLFS - ok
11:58:21.0728 0x0ef8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:58:21.0744 0x0ef8 clr_optimization_v2.0.50727_32 - ok
11:58:21.0775 0x0ef8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:58:21.0806 0x0ef8 clr_optimization_v4.0.30319_32 - ok
11:58:21.0822 0x0ef8 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:58:21.0822 0x0ef8 CmBatt - ok
11:58:21.0853 0x0ef8 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:58:21.0853 0x0ef8 cmdide - ok
11:58:21.0884 0x0ef8 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
11:58:21.0900 0x0ef8 CNG - ok
11:58:21.0915 0x0ef8 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:58:21.0915 0x0ef8 Compbatt - ok
11:58:21.0931 0x0ef8 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:58:21.0931 0x0ef8 CompositeBus - ok
11:58:21.0947 0x0ef8 COMSysApp - ok
11:58:21.0962 0x0ef8 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:58:21.0962 0x0ef8 crcdisk - ok
11:58:21.0978 0x0ef8 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:58:21.0978 0x0ef8 CryptSvc - ok
11:58:22.0009 0x0ef8 [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC C:\Windows\system32\drivers\csc.sys
11:58:22.0009 0x0ef8 CSC - ok
11:58:22.0040 0x0ef8 [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService C:\Windows\System32\cscsvc.dll
11:58:22.0087 0x0ef8 CscService - ok
11:58:22.0149 0x0ef8 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
11:58:22.0165 0x0ef8 DcomLaunch - ok
11:58:22.0196 0x0ef8 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
11:58:22.0212 0x0ef8 defragsvc - ok
11:58:22.0243 0x0ef8 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:58:22.0243 0x0ef8 DfsC - ok
11:58:22.0274 0x0ef8 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:58:22.0290 0x0ef8 Dhcp - ok
11:58:22.0290 0x0ef8 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
11:58:22.0290 0x0ef8 discache - ok
11:58:22.0305 0x0ef8 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:58:22.0305 0x0ef8 Disk - ok
11:58:22.0337 0x0ef8 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:58:22.0337 0x0ef8 Dnscache - ok
11:58:22.0368 0x0ef8 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
11:58:22.0383 0x0ef8 dot3svc - ok
11:58:22.0399 0x0ef8 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
11:58:22.0399 0x0ef8 DPS - ok
11:58:22.0430 0x0ef8 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:58:22.0430 0x0ef8 drmkaud - ok
11:58:22.0461 0x0ef8 [ E6B7D1B24E16FB24CE1FEA964E144EBC, 30F81E0A017163A1AB463FE3A13B5CC2905B973E782AEBC1EB63759BF2470658 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:58:22.0477 0x0ef8 dtsoftbus01 - ok
11:58:22.0539 0x0ef8 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:58:22.0555 0x0ef8 DXGKrnl - ok
11:58:22.0586 0x0ef8 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
11:58:22.0586 0x0ef8 EapHost - ok
11:58:22.0727 0x0ef8 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
11:58:22.0805 0x0ef8 ebdrv - ok
11:58:22.0820 0x0ef8 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS C:\Windows\System32\lsass.exe
11:58:22.0820 0x0ef8 EFS - ok
11:58:22.0883 0x0ef8 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:58:22.0898 0x0ef8 ehRecvr - ok
11:58:22.0914 0x0ef8 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
11:58:22.0929 0x0ef8 ehSched - ok
11:58:22.0961 0x0ef8 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:58:22.0961 0x0ef8 elxstor - ok
11:58:22.0992 0x0ef8 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:58:22.0992 0x0ef8 ErrDev - ok
11:58:23.0023 0x0ef8 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
11:58:23.0039 0x0ef8 EventSystem - ok
11:58:23.0054 0x0ef8 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
11:58:23.0054 0x0ef8 exfat - ok
11:58:23.0070 0x0ef8 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:58:23.0070 0x0ef8 fastfat - ok
11:58:23.0101 0x0ef8 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
11:58:23.0117 0x0ef8 Fax - ok
11:58:23.0117 0x0ef8 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:58:23.0117 0x0ef8 fdc - ok
11:58:23.0132 0x0ef8 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
11:58:23.0132 0x0ef8 fdPHost - ok
11:58:23.0148 0x0ef8 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
11:58:23.0148 0x0ef8 FDResPub - ok
11:58:23.0163 0x0ef8 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:58:23.0163 0x0ef8 FileInfo - ok
11:58:23.0163 0x0ef8 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:58:23.0163 0x0ef8 Filetrace - ok
11:58:23.0179 0x0ef8 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:58:23.0179 0x0ef8 flpydisk - ok
11:58:23.0179 0x0ef8 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:58:23.0179 0x0ef8 FltMgr - ok
11:58:23.0257 0x0ef8 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
11:58:23.0319 0x0ef8 FontCache - ok
11:58:23.0351 0x0ef8 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:58:23.0351 0x0ef8 FontCache3.0.0.0 - ok
11:58:23.0366 0x0ef8 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:58:23.0366 0x0ef8 FsDepends - ok
11:58:23.0382 0x0ef8 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:58:23.0382 0x0ef8 Fs_Rec - ok
11:58:23.0413 0x0ef8 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:58:23.0413 0x0ef8 fvevol - ok
11:58:23.0429 0x0ef8 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:58:23.0429 0x0ef8 gagp30kx - ok
11:58:23.0460 0x0ef8 [ 5C230948DD6652228F88CA7AE6CB276C, EDEC6E6B9E2B0CDB6934460EF473FBEAC290DF4A33536A47B3EB1786BDCA197B ] gdrv C:\Windows\gdrv.sys
11:58:23.0460 0x0ef8 gdrv - ok
11:58:23.0460 0x0ef8 GMSIPCI - ok
11:58:23.0507 0x0ef8 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
11:58:23.0538 0x0ef8 gpsvc - ok
11:58:23.0553 0x0ef8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:58:23.0553 0x0ef8 gupdate - ok
11:58:23.0569 0x0ef8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:58:23.0569 0x0ef8 gupdatem - ok
11:58:23.0585 0x0ef8 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:58:23.0585 0x0ef8 hcw85cir - ok
11:58:23.0631 0x0ef8 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:58:23.0647 0x0ef8 HdAudAddService - ok
11:58:23.0663 0x0ef8 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:58:23.0663 0x0ef8 HDAudBus - ok
11:58:23.0678 0x0ef8 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:58:23.0678 0x0ef8 HidBatt - ok
11:58:23.0678 0x0ef8 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:58:23.0694 0x0ef8 HidBth - ok
11:58:23.0694 0x0ef8 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:58:23.0694 0x0ef8 HidIr - ok
11:58:23.0725 0x0ef8 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\system32\hidserv.dll
11:58:23.0725 0x0ef8 hidserv - ok
11:58:23.0756 0x0ef8 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:58:23.0756 0x0ef8 HidUsb - ok
11:58:23.0772 0x0ef8 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
11:58:23.0772 0x0ef8 hkmsvc - ok
11:58:23.0787 0x0ef8 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:58:23.0803 0x0ef8 HomeGroupListener - ok
11:58:23.0834 0x0ef8 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:58:23.0834 0x0ef8 HomeGroupProvider - ok
11:58:23.0850 0x0ef8 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:58:23.0850 0x0ef8 HpSAMD - ok
11:58:23.0897 0x0ef8 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:58:23.0912 0x0ef8 HTTP - ok
11:58:23.0959 0x0ef8 [ 4745A8B2BE115B054F31A86B0E64BB01, 58A44A1F10FB40BC578BCA2A1C9186B9AA0F22667A2C027619EE678BB90054AA ] HWiNFO32 C:\Windows\system32\drivers\HWiNFO32.SYS
11:58:23.0959 0x0ef8 HWiNFO32 - ok
11:58:23.0959 0x0ef8 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:58:23.0975 0x0ef8 hwpolicy - ok
11:58:23.0990 0x0ef8 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:58:23.0990 0x0ef8 i8042prt - ok
11:58:24.0021 0x0ef8 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:58:24.0037 0x0ef8 iaStorV - ok
11:58:24.0131 0x0ef8 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:58:24.0146 0x0ef8 idsvc - ok
11:58:24.0177 0x0ef8 IEEtwCollectorService - ok
11:58:24.0209 0x0ef8 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:58:24.0209 0x0ef8 iirsp - ok
11:58:24.0255 0x0ef8 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
11:58:24.0287 0x0ef8 IKEEXT - ok
11:58:24.0411 0x0ef8 [ 5D26CCB06E1F3B5C26E863DF3F4F2611, E6253E00F4EA2A57F270594A47879AA4B58053ABEFBC98A3DCC92289F67F26CB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:58:24.0474 0x0ef8 IntcAzAudAddService - ok
11:58:24.0489 0x0ef8 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
11:58:24.0489 0x0ef8 intelide - ok
11:58:24.0505 0x0ef8 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:58:24.0505 0x0ef8 intelppm - ok
11:58:24.0536 0x0ef8 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:58:24.0536 0x0ef8 IPBusEnum - ok
11:58:24.0552 0x0ef8 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:58:24.0552 0x0ef8 IpFilterDriver - ok
11:58:24.0583 0x0ef8 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:58:24.0614 0x0ef8 iphlpsvc - ok
11:58:24.0645 0x0ef8 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:58:24.0645 0x0ef8 IPMIDRV - ok
11:58:24.0661 0x0ef8 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:58:24.0661 0x0ef8 IPNAT - ok
11:58:24.0677 0x0ef8 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:58:24.0677 0x0ef8 IRENUM - ok
11:58:24.0692 0x0ef8 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:58:24.0692 0x0ef8 isapnp - ok
11:58:24.0708 0x0ef8 [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:58:24.0708 0x0ef8 iScsiPrt - ok
11:58:24.0723 0x0ef8 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:58:24.0723 0x0ef8 kbdclass - ok
11:58:24.0739 0x0ef8 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:58:24.0739 0x0ef8 kbdhid - ok
11:58:24.0739 0x0ef8 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso C:\Windows\system32\lsass.exe
11:58:24.0739 0x0ef8 KeyIso - ok
11:58:24.0770 0x0ef8 [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:58:24.0770 0x0ef8 KSecDD - ok
11:58:24.0786 0x0ef8 [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:58:24.0786 0x0ef8 KSecPkg - ok
11:58:24.0817 0x0ef8 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:58:24.0833 0x0ef8 KtmRm - ok
11:58:24.0848 0x0ef8 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:58:24.0848 0x0ef8 LanmanServer - ok
11:58:24.0864 0x0ef8 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:58:24.0879 0x0ef8 LanmanWorkstation - ok
11:58:24.0879 0x0ef8 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:58:24.0895 0x0ef8 lltdio - ok
11:58:24.0911 0x0ef8 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:58:24.0911 0x0ef8 lltdsvc - ok
11:58:24.0926 0x0ef8 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:58:24.0926 0x0ef8 lmhosts - ok
11:58:24.0942 0x0ef8 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:58:24.0942 0x0ef8 LSI_FC - ok
11:58:24.0942 0x0ef8 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:58:24.0957 0x0ef8 LSI_SAS - ok
11:58:24.0957 0x0ef8 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:58:24.0957 0x0ef8 LSI_SAS2 - ok
11:58:24.0957 0x0ef8 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:58:24.0973 0x0ef8 LSI_SCSI - ok
11:58:24.0989 0x0ef8 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
11:58:24.0989 0x0ef8 luafv - ok
11:58:25.0004 0x0ef8 [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:58:25.0020 0x0ef8 MBAMProtector - ok
11:58:25.0082 0x0ef8 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:58:25.0098 0x0ef8 MBAMScheduler - ok
11:58:25.0129 0x0ef8 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:58:25.0145 0x0ef8 MBAMService - ok
11:58:25.0176 0x0ef8 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:58:25.0176 0x0ef8 Mcx2Svc - ok
11:58:25.0176 0x0ef8 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:58:25.0191 0x0ef8 megasas - ok
11:58:25.0191 0x0ef8 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:58:25.0207 0x0ef8 MegaSR - ok
11:58:25.0254 0x0ef8 Microsoft SharePoint Workspace Audit Service - ok
11:58:25.0269 0x0ef8 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
11:58:25.0269 0x0ef8 MMCSS - ok
11:58:25.0285 0x0ef8 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
11:58:25.0285 0x0ef8 Modem - ok
11:58:25.0301 0x0ef8 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:58:25.0301 0x0ef8 monitor - ok
11:58:25.0316 0x0ef8 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\drivers\mouclass.sys
11:58:25.0316 0x0ef8 mouclass - ok
11:58:25.0332 0x0ef8 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:58:25.0332 0x0ef8 mouhid - ok
11:58:25.0363 0x0ef8 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:58:25.0363 0x0ef8 mountmgr - ok
11:58:25.0394 0x0ef8 [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:58:25.0410 0x0ef8 MpFilter - ok
11:58:25.0425 0x0ef8 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
11:58:25.0425 0x0ef8 mpio - ok
11:58:25.0488 0x0ef8 [ 06D4F934E09C359B0EFBFB3146F1D910, 484F57CD6F8757137F3B3491B8AC8ECF6C6385A666CD1671833DDD9E962AAB4A ] MpKsl00d22954 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9DC42C17-97A6-4D67-9006-3377A082F7AE}\MpKsl00d22954.sys
11:58:25.0488 0x0ef8 MpKsl00d22954 - ok
11:58:25.0503 0x0ef8 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:58:25.0503 0x0ef8 mpsdrv - ok
11:58:25.0566 0x0ef8 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:58:25.0597 0x0ef8 MpsSvc - ok
11:58:25.0628 0x0ef8 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:58:25.0628 0x0ef8 MRxDAV - ok
11:58:25.0659 0x0ef8 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:58:25.0659 0x0ef8 mrxsmb - ok
11:58:25.0675 0x0ef8 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:58:25.0691 0x0ef8 mrxsmb10 - ok
11:58:25.0706 0x0ef8 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:58:25.0706 0x0ef8 mrxsmb20 - ok
11:58:25.0737 0x0ef8 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
11:58:25.0737 0x0ef8 msahci - ok
11:58:25.0753 0x0ef8 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:58:25.0753 0x0ef8 msdsm - ok
11:58:25.0769 0x0ef8 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
11:58:25.0769 0x0ef8 MSDTC - ok
11:58:25.0784 0x0ef8 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:58:25.0784 0x0ef8 Msfs - ok
11:58:25.0815 0x0ef8 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:58:25.0815 0x0ef8 mshidkmdf - ok
11:58:25.0831 0x0ef8 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:58:25.0831 0x0ef8 msisadrv - ok
11:58:25.0862 0x0ef8 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:58:25.0878 0x0ef8 MSiSCSI - ok
11:58:25.0878 0x0ef8 msiserver - ok
11:58:25.0893 0x0ef8 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:58:25.0909 0x0ef8 MSKSSRV - ok
11:58:25.0940 0x0ef8 [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:58:25.0956 0x0ef8 MsMpSvc - ok
11:58:25.0971 0x0ef8 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:58:25.0971 0x0ef8 MSPCLOCK - ok
11:58:25.0971 0x0ef8 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:58:25.0971 0x0ef8 MSPQM - ok
11:58:25.0987 0x0ef8 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:58:26.0003 0x0ef8 MsRPC - ok
11:58:26.0018 0x0ef8 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:58:26.0018 0x0ef8 mssmbios - ok
11:58:26.0034 0x0ef8 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:58:26.0034 0x0ef8 MSTEE - ok
11:58:26.0034 0x0ef8 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:58:26.0034 0x0ef8 MTConfig - ok
11:58:26.0049 0x0ef8 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
11:58:26.0049 0x0ef8 Mup - ok
11:58:26.0096 0x0ef8 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
11:58:26.0112 0x0ef8 napagent - ok
11:58:26.0127 0x0ef8 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:58:26.0143 0x0ef8 NativeWifiP - ok
11:58:26.0190 0x0ef8 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:58:26.0205 0x0ef8 NDIS - ok
11:58:26.0237 0x0ef8 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:58:26.0237 0x0ef8 NdisCap - ok
11:58:26.0237 0x0ef8 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:58:26.0237 0x0ef8 NdisTapi - ok
11:58:26.0268 0x0ef8 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:58:26.0268 0x0ef8 Ndisuio - ok
11:58:26.0283 0x0ef8 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:58:26.0299 0x0ef8 NdisWan - ok
11:58:26.0315 0x0ef8 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:58:26.0315 0x0ef8 NDProxy - ok
11:58:26.0330 0x0ef8 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:58:26.0330 0x0ef8 NetBIOS - ok
11:58:26.0361 0x0ef8 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:58:26.0377 0x0ef8 NetBT - ok
11:58:26.0377 0x0ef8 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon C:\Windows\system32\lsass.exe
11:58:26.0393 0x0ef8 Netlogon - ok
11:58:26.0408 0x0ef8 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
11:58:26.0439 0x0ef8 Netman - ok
11:58:26.0455 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0455 0x0ef8 NetMsmqActivator - ok
11:58:26.0471 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0471 0x0ef8 NetPipeActivator - ok
11:58:26.0502 0x0ef8 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
11:58:26.0517 0x0ef8 netprofm - ok
11:58:26.0517 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0517 0x0ef8 NetTcpActivator - ok
11:58:26.0533 0x0ef8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:58:26.0533 0x0ef8 NetTcpPortSharing - ok
11:58:26.0549 0x0ef8 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:58:26.0549 0x0ef8 nfrd960 - ok
11:58:26.0564 0x0ef8 [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:58:26.0580 0x0ef8 NisDrv - ok
11:58:26.0611 0x0ef8 [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
11:58:26.0627 0x0ef8 NisSrv - ok
11:58:26.0658 0x0ef8 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:58:26.0673 0x0ef8 NlaSvc - ok
11:58:26.0689 0x0ef8 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:58:26.0689 0x0ef8 Npfs - ok
11:58:26.0689 0x0ef8 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
11:58:26.0705 0x0ef8 nsi - ok
11:58:26.0705 0x0ef8 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:58:26.0705 0x0ef8 nsiproxy - ok
11:58:26.0767 0x0ef8 [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:58:26.0798 0x0ef8 Ntfs - ok
11:58:26.0814 0x0ef8 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
11:58:26.0814 0x0ef8 Null - ok
11:58:27.0219 0x0ef8 [ 50199B0578F7A4ADD5E16A42946CF34B, D4CB42C4FC42355BE007088FBB60B2B773188AB81FB9111861C0682DBCD79EFD ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:58:27.0453 0x0ef8 nvlddmkm - ok
11:58:27.0594 0x0ef8 [ 1C7C6D7481CABD4EF38A81F5B68F02E8, C4FBE81B8A3F280EEAC282D76626E849197EDEEC8C755B7B12E3594776390DE7 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
11:58:27.0625 0x0ef8 NvNetworkService - ok
11:58:27.0656 0x0ef8 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:58:27.0656 0x0ef8 nvraid - ok
11:58:27.0672 0x0ef8 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:58:27.0672 0x0ef8 nvstor - ok
11:58:28.0218 0x0ef8 [ 47BE5424331F159AEE96B0EBBBE4ACB3, 7A14B48A4D885385C22E55C45DCA0696E4A7FE404BB290C18F402819A9A9A43E ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
11:58:28.0561 0x0ef8 NvStreamSvc - ok
11:58:28.0639 0x0ef8 [ 4BD107E339C9955708FA35A96BB8A8A8, 540A2C12B844491F5089CAEDA0EA57DAE03471081866AE1A08C5E65E592F772B ] nvsvc C:\Windows\system32\nvvsvc.exe
11:58:28.0670 0x0ef8 nvsvc - ok
11:58:28.0670 0x0ef8 [ DAC9726D9C90631D6A1C0ECAA0226021, 3865071ED01F948680613C7E52399EF7091C2AB4E33BE41A1979297D9DBA9A51 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad32v.sys
11:58:28.0670 0x0ef8 nvvad_WaveExtensible - ok
11:58:28.0701 0x0ef8 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 105 hostů