Prosím o kontolu logu - počítač je zasekanej

[lakcod]

Dobrý den, prosím o kontolu logu, počítač je strašně pomalej, nezvládá plynule ani prohlížení internetu. Tuto možnost zkouším poprvé tak snad to bude ok.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:03:17, on 29.7.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\PC Tools Security\pctsGui.exe
C:\Program Files\PC Tools Security\BDT\FGuard.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Inbox Toolbar\Inbox.exe
C:\Program Files\Guard-ICQ\GuardICQ.exe
C:\Program Files\Fighters\Tray\FightersTray.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
C:\Program Files\ICQ7M\ICQ.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_268.exe
C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_3_300_268.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www2.inbox.com/search/dispatcher ... p=aus&qkw=%s&tbid=%tb_id&%language
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\PROGRA~1\INBOXT~1\Inbox.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Lexmark Panel nástrojů - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\PROGRA~1\INBOXT~1\Inbox.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Lexmark Panel nástrojů - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O3 - Toolbar: PC Tools Browser Guard - {472734EA-242A-422B-ADF8-83D1E48CC825} - C:\Program Files\PC Tools Security\BDT\PCTBrowserDefender.dll
O3 - Toolbar: &Inbox Toolbar - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - C:\PROGRA~1\INBOXT~1\Inbox.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\PC Tools Security\pctsGui.exe" /hideGUI
O4 - HKLM\..\Run: [PCTools FGuard] C:\Program Files\PC Tools Security\BDT\FGuard.exe
O4 - HKLM\..\Run: [LXCRCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [InboxToolbar] "C:\PROGRA~1\INBOXT~1\Inbox.exe" /STARTUP
O4 - HKLM\..\Run: [Guard.Mail.ru.gui] "C:\Program Files\Guard-ICQ\GuardICQ.exe" /gui
O4 - HKLM\..\Run: [CommonToolkitTray] C:\Program Files\Fighters\Tray\FightersTray.exe
O4 - HKCU\..\Run: [ICQ] "C:\Program Files\ICQ7M\ICQ.exe" silent loginmode=4
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7M - {781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - C:\Program Files\ICQ7M\ICQ.exe
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O18 - Protocol: inbox - {37540F19-DD4C-478B-B2DF-C19281BCAF27} - C:\PROGRA~1\INBOXT~1\Inbox.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Browser Defender Update Service - Unknown owner - C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
O23 - Service: Guard.Mail.ru - Unknown owner - C:\Program Files\Guard-ICQ\GuardICQ.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: ICQ Service - Unknown owner - C:\PROGRA~1\ICQ6TO~1\ICQSER~1.EXE
O23 - Service: lxcr_device - - C:\Windows\system32\lxcrcoms.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\PC Tools Security\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\PC Tools Security\pctsSvc.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\PC Tools Security\TFEngine\TFService.exe

--
End of file - 8340 bytes

[Reklama]

[memphisto]

odinstaluj:
ICQ Toolbar
Inbox Toolbar

v logu fixni:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www2.inbox.com/search/dispatcher ... p=aus&qkw=%s&tbid=%tb_id&%language
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\PROGRA~1\INBOXT~1\Inbox.dll
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: Lexmark Panel nástrojů - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Inbox Toolbar - {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - C:\PROGRA~1\INBOXT~1\Inbox.dll
O3 - Toolbar: Lexmark Panel nástrojů - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll
O3 - Toolbar: &Inbox Toolbar - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - C:\PROGRA~1\INBOXT~1\Inbox.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [InboxToolbar] "C:\PROGRA~1\INBOXT~1\Inbox.exe" /STARTUP
O4 - HKLM\..\Run: [Guard.Mail.ru.gui] "C:\Program Files\Guard-ICQ\GuardICQ.exe" /gui
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Provést rychlý sken a klikni na tlačítko Skenovat
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Zobrazit výsledky
- pak zvol možnost uložit log a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

Pokud budou problémy , spusť v nouz. režimu.

[lakcod]

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Verze databáze: v2012.07.30.06

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Dočkalovic :: DOČKALOVIC-PC [administrátor]

30.7.2012 16:12:06
mbam-log-2012-07-30 (16-12-06).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 180308
Uplynulý čas: 14 minut, 47 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

[jaro3]

Stáhni si TDSSKiller

Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller.2.2.7.1._(datum)_log.txt , vlož sem prosím celý obsah logu.

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[lakcod]

18:06:29.0156 0744 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
18:06:29.0594 0744 ============================================================
18:06:29.0595 0744 Current date / time: 2012/08/01 18:06:29.0594
18:06:29.0595 0744 SystemInfo:
18:06:29.0595 0744
18:06:29.0596 0744 OS Version: 6.1.7601 ServicePack: 1.0
18:06:29.0596 0744 Product type: Workstation
18:06:29.0597 0744 ComputerName: DOČKALOVIC-PC
18:06:29.0600 0744 UserName: Dočkalovic
18:06:29.0600 0744 Windows directory: C:\Windows
18:06:29.0600 0744 System windows directory: C:\Windows
18:06:29.0601 0744 Processor architecture: Intel x86
18:06:29.0601 0744 Number of processors: 1
18:06:29.0601 0744 Page size: 0x1000
18:06:29.0601 0744 Boot type: Normal boot
18:06:29.0601 0744 ============================================================
18:06:32.0178 0744 Drive \Device\Harddisk0\DR0 - Size: 0x12A1E0DE00 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
18:06:32.0185 0744 ============================================================
18:06:32.0185 0744 \Device\Harddisk0\DR0:
18:06:32.0186 0744 MBR partitions:
18:06:32.0186 0744 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:06:32.0186 0744 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x94DC000
18:06:32.0186 0744 ============================================================
18:06:32.0220 0744 C: <-> \Device\Harddisk0\DR0\Partition1
18:06:32.0220 0744 ============================================================
18:06:32.0220 0744 Initialize success
18:06:32.0221 0744 ============================================================
18:06:44.0920 2332 ============================================================
18:06:44.0921 2332 Scan started
18:06:44.0921 2332 Mode: Manual;
18:06:44.0921 2332 ============================================================
18:06:46.0033 2332 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
18:06:46.0071 2332 1394ohci - ok
18:06:46.0191 2332 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
18:06:46.0217 2332 ACDaemon - ok
18:06:46.0313 2332 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
18:06:46.0333 2332 ACPI - ok
18:06:46.0406 2332 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
18:06:46.0411 2332 AcpiPmi - ok
18:06:46.0509 2332 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:06:46.0515 2332 AdobeARMservice - ok
18:06:46.0655 2332 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:06:46.0662 2332 AdobeFlashPlayerUpdateSvc - ok
18:06:46.0759 2332 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
18:06:46.0784 2332 adp94xx - ok
18:06:46.0875 2332 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
18:06:46.0896 2332 adpahci - ok
18:06:46.0964 2332 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
18:06:46.0982 2332 adpu320 - ok
18:06:47.0047 2332 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
18:06:47.0055 2332 AeLookupSvc - ok
18:06:47.0140 2332 AF9035BDA (66b9ba926435fc930e6371d64766c982) C:\Windows\system32\Drivers\AF9035BDA.sys
18:06:47.0160 2332 AF9035BDA - ok
18:06:47.0246 2332 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
18:06:47.0269 2332 AFD - ok
18:06:47.0317 2332 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
18:06:47.0327 2332 agp440 - ok
18:06:47.0398 2332 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
18:06:47.0405 2332 aic78xx - ok
18:06:47.0475 2332 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
18:06:47.0483 2332 ALG - ok
18:06:47.0535 2332 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
18:06:47.0542 2332 aliide - ok
18:06:47.0585 2332 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
18:06:47.0594 2332 amdagp - ok
18:06:47.0647 2332 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
18:06:47.0652 2332 amdide - ok
18:06:47.0713 2332 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
18:06:47.0719 2332 AmdK8 - ok
18:06:47.0761 2332 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
18:06:47.0766 2332 AmdPPM - ok
18:06:47.0831 2332 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
18:06:47.0837 2332 amdsata - ok
18:06:47.0911 2332 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
18:06:47.0921 2332 amdsbs - ok
18:06:47.0968 2332 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
18:06:47.0974 2332 amdxata - ok
18:06:48.0062 2332 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
18:06:48.0068 2332 AppID - ok
18:06:48.0126 2332 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
18:06:48.0130 2332 AppIDSvc - ok
18:06:48.0223 2332 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
18:06:48.0228 2332 Appinfo - ok
18:06:48.0301 2332 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
18:06:48.0312 2332 AppMgmt - ok
18:06:48.0378 2332 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
18:06:48.0386 2332 arc - ok
18:06:48.0448 2332 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
18:06:48.0455 2332 arcsas - ok
18:06:48.0503 2332 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
18:06:48.0538 2332 AsyncMac - ok
18:06:48.0618 2332 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
18:06:48.0623 2332 atapi - ok
18:06:50.0376 2332 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:06:50.0421 2332 AudioEndpointBuilder - ok
18:06:50.0458 2332 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:06:50.0473 2332 Audiosrv - ok
18:06:50.0874 2332 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
18:06:50.0907 2332 AxInstSV - ok
18:06:52.0221 2332 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
18:06:52.0258 2332 b06bdrv - ok
18:06:53.0072 2332 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:06:53.0103 2332 b57nd60x - ok
18:06:53.0447 2332 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
18:06:53.0480 2332 BDESVC - ok
18:06:53.0581 2332 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
18:06:53.0600 2332 Beep - ok
18:06:55.0443 2332 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
18:06:55.0488 2332 BFE - ok
18:06:56.0733 2332 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
18:06:56.0793 2332 BITS - ok
18:06:56.0960 2332 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
18:06:56.0975 2332 blbdrive - ok
18:06:57.0257 2332 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
18:06:57.0275 2332 bowser - ok
18:06:57.0380 2332 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:06:57.0392 2332 BrFiltLo - ok
18:06:57.0459 2332 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:06:57.0482 2332 BrFiltUp - ok
18:06:57.0617 2332 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
18:06:57.0669 2332 Browser - ok
18:06:58.0476 2332 Browser Defender Update Service (f2dddf1e0c0c9c1122e45d1993cf92c9) C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
18:06:58.0530 2332 Browser Defender Update Service - ok
18:06:59.0281 2332 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
18:06:59.0337 2332 Brserid - ok
18:06:59.0575 2332 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
18:06:59.0589 2332 BrSerWdm - ok
18:06:59.0654 2332 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:06:59.0666 2332 BrUsbMdm - ok
18:06:59.0751 2332 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
18:06:59.0765 2332 BrUsbSer - ok
18:06:59.0962 2332 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
18:07:00.0007 2332 BTHMODEM - ok
18:07:00.0328 2332 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
18:07:00.0362 2332 bthserv - ok
18:07:00.0689 2332 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
18:07:00.0709 2332 cdfs - ok
18:07:01.0186 2332 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
18:07:01.0209 2332 cdrom - ok
18:07:01.0533 2332 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:07:01.0558 2332 CertPropSvc - ok
18:07:01.0776 2332 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
18:07:01.0794 2332 circlass - ok
18:07:02.0160 2332 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
18:07:02.0216 2332 CLFS - ok
18:07:02.0446 2332 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:07:02.0528 2332 clr_optimization_v2.0.50727_32 - ok
18:07:02.0733 2332 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:07:02.0810 2332 clr_optimization_v4.0.30319_32 - ok
18:07:02.0886 2332 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
18:07:02.0904 2332 CmBatt - ok
18:07:02.0962 2332 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
18:07:03.0005 2332 cmdide - ok
18:07:03.0088 2332 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
18:07:03.0116 2332 CNG - ok
18:07:03.0166 2332 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
18:07:03.0171 2332 Compbatt - ok
18:07:03.0241 2332 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
18:07:03.0250 2332 CompositeBus - ok
18:07:03.0300 2332 COMSysApp - ok
18:07:03.0354 2332 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
18:07:03.0361 2332 crcdisk - ok
18:07:03.0464 2332 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
18:07:03.0480 2332 CryptSvc - ok
18:07:03.0582 2332 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
18:07:03.0606 2332 CSC - ok
18:07:03.0690 2332 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
18:07:03.0714 2332 CscService - ok
18:07:03.0831 2332 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:07:03.0867 2332 DcomLaunch - ok
18:07:03.0932 2332 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
18:07:03.0948 2332 defragsvc - ok
18:07:04.0063 2332 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
18:07:04.0069 2332 DfsC - ok
18:07:04.0175 2332 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
18:07:04.0193 2332 Dhcp - ok
18:07:04.0244 2332 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
18:07:04.0250 2332 discache - ok
18:07:04.0320 2332 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
18:07:04.0327 2332 Disk - ok
18:07:04.0384 2332 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
18:07:04.0402 2332 Dnscache - ok
18:07:04.0495 2332 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
18:07:04.0509 2332 dot3svc - ok
18:07:04.0591 2332 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
18:07:04.0604 2332 DPS - ok
18:07:04.0664 2332 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
18:07:04.0671 2332 drmkaud - ok
18:07:04.0770 2332 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
18:07:04.0801 2332 DXGKrnl - ok
18:07:04.0875 2332 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
18:07:04.0883 2332 EapHost - ok
18:07:05.0284 2332 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
18:07:05.0393 2332 ebdrv - ok
18:07:05.0506 2332 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
18:07:05.0513 2332 EFS - ok
18:07:05.0648 2332 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
18:07:05.0670 2332 ehRecvr - ok
18:07:05.0728 2332 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
18:07:05.0770 2332 ehSched - ok
18:07:05.0917 2332 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
18:07:05.0945 2332 elxstor - ok
18:07:06.0000 2332 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
18:07:06.0008 2332 ErrDev - ok
18:07:06.0127 2332 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
18:07:06.0152 2332 EventSystem - ok
18:07:06.0224 2332 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
18:07:06.0236 2332 exfat - ok
18:07:06.0288 2332 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
18:07:06.0308 2332 fastfat - ok
18:07:06.0431 2332 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
18:07:06.0456 2332 Fax - ok
18:07:06.0512 2332 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
18:07:06.0517 2332 fdc - ok
18:07:06.0567 2332 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
18:07:06.0574 2332 fdPHost - ok
18:07:06.0614 2332 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
18:07:06.0620 2332 FDResPub - ok
18:07:06.0698 2332 FETND6V (403bedad0226653ba8d05aefc3f04a0c) C:\Windows\system32\DRIVERS\fetnd6v.sys
18:07:06.0704 2332 FETND6V - ok
18:07:06.0769 2332 FETNDIS (f5cb6cb6d12f495516be27cffccde4bf) C:\Windows\system32\DRIVERS\fetnd6.sys
18:07:06.0776 2332 FETNDIS - ok
18:07:06.0827 2332 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
18:07:06.0833 2332 FileInfo - ok
18:07:06.0885 2332 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
18:07:06.0891 2332 Filetrace - ok
18:07:06.0943 2332 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
18:07:06.0949 2332 flpydisk - ok
18:07:07.0029 2332 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
18:07:07.0046 2332 FltMgr - ok
18:07:07.0150 2332 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
18:07:07.0186 2332 FontCache - ok
18:07:07.0295 2332 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:07:07.0302 2332 FontCache3.0.0.0 - ok
18:07:07.0349 2332 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
18:07:07.0355 2332 FsDepends - ok
18:07:07.0403 2332 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
18:07:07.0408 2332 Fs_Rec - ok
18:07:07.0504 2332 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
18:07:07.0524 2332 fvevol - ok
18:07:07.0584 2332 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:07:07.0590 2332 gagp30kx - ok
18:07:07.0700 2332 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
18:07:07.0746 2332 gpsvc - ok
18:07:07.0957 2332 Guard.Mail.ru (e859ca020ed61899f3c74a8d0032d05c) C:\Program Files\Guard-ICQ\GuardICQ.exe
18:07:08.0018 2332 Guard.Mail.ru - ok
18:07:08.0130 2332 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:07:08.0135 2332 gupdate - ok
18:07:08.0176 2332 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:07:08.0185 2332 gupdatem - ok
18:07:08.0360 2332 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
18:07:08.0370 2332 hcw85cir - ok
18:07:08.0427 2332 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
18:07:08.0440 2332 HDAudBus - ok
18:07:08.0494 2332 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
18:07:08.0501 2332 HidBatt - ok
18:07:08.0554 2332 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
18:07:08.0561 2332 HidBth - ok
18:07:08.0601 2332 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
18:07:08.0607 2332 HidIr - ok
18:07:08.0667 2332 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
18:07:08.0674 2332 hidserv - ok
18:07:08.0750 2332 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
18:07:08.0756 2332 HidUsb - ok
18:07:08.0836 2332 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
18:07:08.0844 2332 hkmsvc - ok
18:07:08.0927 2332 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
18:07:08.0944 2332 HomeGroupListener - ok
18:07:08.0996 2332 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
18:07:09.0016 2332 HomeGroupProvider - ok
18:07:09.0091 2332 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
18:07:09.0098 2332 HpSAMD - ok
18:07:09.0203 2332 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
18:07:09.0229 2332 HTTP - ok
18:07:09.0278 2332 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
18:07:09.0283 2332 hwpolicy - ok
18:07:09.0357 2332 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
18:07:09.0364 2332 i8042prt - ok
18:07:09.0445 2332 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
18:07:09.0467 2332 iaStorV - ok
18:07:09.0645 2332 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:07:09.0684 2332 idsvc - ok
18:07:09.0749 2332 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
18:07:09.0758 2332 iirsp - ok
18:07:09.0892 2332 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
18:07:09.0924 2332 IKEEXT - ok
18:07:10.0032 2332 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
18:07:10.0038 2332 intelide - ok
18:07:10.0125 2332 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
18:07:10.0130 2332 intelppm - ok
18:07:10.0192 2332 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
18:07:10.0201 2332 IPBusEnum - ok
18:07:10.0258 2332 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:07:10.0264 2332 IpFilterDriver - ok
18:07:10.0397 2332 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
18:07:10.0425 2332 iphlpsvc - ok
18:07:10.0481 2332 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
18:07:10.0488 2332 IPMIDRV - ok
18:07:10.0537 2332 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
18:07:10.0550 2332 IPNAT - ok
18:07:10.0615 2332 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
18:07:10.0621 2332 IRENUM - ok
18:07:10.0680 2332 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
18:07:10.0686 2332 isapnp - ok
18:07:10.0761 2332 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
18:07:10.0777 2332 iScsiPrt - ok
18:07:10.0846 2332 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:07:10.0852 2332 kbdclass - ok
18:07:10.0923 2332 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
18:07:10.0930 2332 kbdhid - ok
18:07:10.0976 2332 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:07:10.0982 2332 KeyIso - ok
18:07:11.0039 2332 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
18:07:11.0044 2332 KSecDD - ok
18:07:11.0109 2332 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
18:07:11.0121 2332 KSecPkg - ok
18:07:11.0208 2332 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
18:07:11.0233 2332 KtmRm - ok
18:07:11.0325 2332 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
18:07:11.0343 2332 LanmanServer - ok
18:07:11.0425 2332 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
18:07:11.0447 2332 LanmanWorkstation - ok
18:07:11.0543 2332 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
18:07:11.0549 2332 lltdio - ok
18:07:11.0624 2332 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
18:07:11.0639 2332 lltdsvc - ok
18:07:11.0686 2332 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
18:07:11.0693 2332 lmhosts - ok
18:07:11.0783 2332 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:07:11.0790 2332 LSI_FC - ok
18:07:11.0837 2332 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:07:11.0847 2332 LSI_SAS - ok
18:07:11.0905 2332 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:07:11.0911 2332 LSI_SAS2 - ok
18:07:11.0964 2332 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:07:11.0972 2332 LSI_SCSI - ok
18:07:12.0035 2332 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
18:07:12.0041 2332 luafv - ok
18:07:12.0080 2332 lxcr_device - ok
18:07:12.0158 2332 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
18:07:12.0171 2332 Mcx2Svc - ok
18:07:12.0228 2332 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
18:07:12.0235 2332 megasas - ok
18:07:12.0321 2332 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
18:07:12.0336 2332 MegaSR - ok
18:07:12.0453 2332 Microsoft SharePoint Workspace Audit Service - ok
18:07:12.0515 2332 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:07:12.0534 2332 MMCSS - ok
18:07:12.0582 2332 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
18:07:12.0587 2332 Modem - ok
18:07:12.0651 2332 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
18:07:12.0656 2332 monitor - ok
18:07:12.0721 2332 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
18:07:12.0727 2332 mouclass - ok
18:07:12.0804 2332 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
18:07:12.0810 2332 mouhid - ok
18:07:12.0889 2332 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
18:07:12.0896 2332 mountmgr - ok
18:07:13.0000 2332 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:07:13.0013 2332 MozillaMaintenance - ok
18:07:13.0086 2332 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
18:07:13.0098 2332 mpio - ok
18:07:13.0153 2332 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
18:07:13.0160 2332 mpsdrv - ok
18:07:13.0270 2332 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
18:07:13.0294 2332 MpsSvc - ok
18:07:13.0371 2332 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
18:07:13.0383 2332 MRxDAV - ok
18:07:13.0455 2332 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:07:13.0467 2332 mrxsmb - ok
18:07:13.0527 2332 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:07:13.0541 2332 mrxsmb10 - ok
18:07:13.0605 2332 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:07:13.0612 2332 mrxsmb20 - ok
18:07:13.0675 2332 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
18:07:13.0683 2332 msahci - ok
18:07:13.0749 2332 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
18:07:13.0758 2332 msdsm - ok
18:07:13.0821 2332 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
18:07:13.0839 2332 MSDTC - ok
18:07:13.0936 2332 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
18:07:13.0942 2332 Msfs - ok
18:07:13.0986 2332 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
18:07:13.0992 2332 mshidkmdf - ok
18:07:14.0042 2332 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
18:07:14.0048 2332 msisadrv - ok
18:07:14.0143 2332 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
18:07:14.0155 2332 MSiSCSI - ok
18:07:14.0186 2332 msiserver - ok
18:07:14.0247 2332 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
18:07:14.0255 2332 MSKSSRV - ok
18:07:14.0289 2332 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
18:07:14.0294 2332 MSPCLOCK - ok
18:07:14.0331 2332 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
18:07:14.0339 2332 MSPQM - ok
18:07:14.0414 2332 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
18:07:14.0447 2332 MsRPC - ok
18:07:14.0530 2332 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
18:07:14.0535 2332 mssmbios - ok
18:07:14.0587 2332 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
18:07:14.0593 2332 MSTEE - ok
18:07:14.0626 2332 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
18:07:14.0631 2332 MTConfig - ok
18:07:14.0693 2332 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
18:07:14.0699 2332 Mup - ok
18:07:14.0782 2332 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
18:07:14.0801 2332 napagent - ok
18:07:14.0875 2332 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
18:07:14.0891 2332 NativeWifiP - ok
18:07:15.0009 2332 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
18:07:15.0038 2332 NDIS - ok
18:07:15.0167 2332 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
18:07:15.0208 2332 NdisCap - ok
18:07:15.0268 2332 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
18:07:15.0277 2332 NdisTapi - ok
18:07:15.0326 2332 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
18:07:15.0335 2332 Ndisuio - ok
18:07:15.0412 2332 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
18:07:15.0424 2332 NdisWan - ok
18:07:15.0477 2332 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
18:07:15.0484 2332 NDProxy - ok
18:07:15.0552 2332 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
18:07:15.0558 2332 NetBIOS - ok
18:07:15.0643 2332 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
18:07:15.0662 2332 NetBT - ok
18:07:15.0721 2332 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:07:15.0731 2332 Netlogon - ok
18:07:15.0814 2332 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
18:07:15.0837 2332 Netman - ok
18:07:15.0902 2332 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
18:07:15.0928 2332 netprofm - ok
18:07:16.0066 2332 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:07:16.0080 2332 NetTcpPortSharing - ok
18:07:16.0146 2332 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
18:07:16.0154 2332 nfrd960 - ok
18:07:16.0247 2332 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
18:07:16.0267 2332 NlaSvc - ok
18:07:16.0333 2332 nmwcd (b0a67de1a128389aea4d42c5a56215fd) C:\Windows\system32\drivers\ccdcmb.sys
18:07:16.0337 2332 nmwcd - ok
18:07:16.0395 2332 nmwcdc (025c54f9f8c8bc1894ea38529c742c54) C:\Windows\system32\drivers\ccdcmbo.sys
18:07:16.0401 2332 nmwcdc - ok
18:07:16.0480 2332 nmwcdnsu (4f0de685a96dc843ccc8a861b3fac12d) C:\Windows\system32\drivers\nmwcdnsu.sys
18:07:16.0491 2332 nmwcdnsu - ok
18:07:16.0559 2332 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
18:07:16.0565 2332 Npfs - ok
18:07:16.0619 2332 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
18:07:16.0626 2332 nsi - ok
18:07:16.0668 2332 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
18:07:16.0673 2332 nsiproxy - ok
18:07:16.0853 2332 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
18:07:16.0895 2332 Ntfs - ok
18:07:16.0950 2332 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
18:07:16.0955 2332 Null - ok
18:07:17.0347 2332 nvlddmkm (d37174e8014da46be1a81e7b02237ac0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:07:17.0482 2332 nvlddmkm - ok
18:07:17.0656 2332 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
18:07:17.0668 2332 nvraid - ok
18:07:17.0723 2332 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
18:07:17.0734 2332 nvstor - ok
18:07:17.0795 2332 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
18:07:17.0810 2332 nv_agp - ok
18:07:17.0871 2332 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
18:07:17.0877 2332 ohci1394 - ok
18:07:17.0975 2332 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:07:17.0992 2332 ose - ok
18:07:18.0430 2332 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:07:18.0572 2332 osppsvc - ok
18:07:18.0752 2332 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:07:18.0776 2332 p2pimsvc - ok
18:07:18.0852 2332 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
18:07:18.0874 2332 p2psvc - ok
18:07:18.0979 2332 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
18:07:18.0987 2332 Parport - ok
18:07:19.0041 2332 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
18:07:19.0048 2332 partmgr - ok
18:07:19.0098 2332 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
18:07:19.0106 2332 Parvdm - ok
18:07:19.0178 2332 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
18:07:19.0197 2332 PcaSvc - ok
18:07:19.0263 2332 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
18:07:19.0275 2332 pci - ok
18:07:19.0322 2332 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
18:07:19.0328 2332 pciide - ok
18:07:19.0391 2332 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
18:07:19.0411 2332 pcmcia - ok
18:07:19.0496 2332 PCTCore (995e6bc3bb92bb4a9eb49a663c43b6cb) C:\Windows\system32\drivers\PCTCore.sys
18:07:19.0511 2332 PCTCore - ok
18:07:19.0585 2332 pctDS (f820b4c61d1e591325b679d479d4eea4) C:\Windows\system32\drivers\pctDS.sys
18:07:19.0608 2332 pctDS - ok
18:07:19.0712 2332 pctEFA (acc8c15f3d59f17c5d903ff1de3b43d3) C:\Windows\system32\drivers\pctEFA.sys
18:07:19.0740 2332 pctEFA - ok
18:07:19.0831 2332 pctgntdi (5be722c8c9bba995693c8cd524d83b27) C:\Windows\System32\drivers\pctgntdi.sys
18:07:19.0845 2332 pctgntdi - ok
18:07:19.0904 2332 pctplsg (1ea4b41d30f28ff5e186a49b4a1d36d9) C:\Windows\System32\drivers\pctplsg.sys
18:07:19.0909 2332 pctplsg - ok
18:07:19.0975 2332 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
18:07:19.0981 2332 pcw - ok
18:07:20.0068 2332 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
18:07:20.0094 2332 PEAUTH - ok
18:07:20.0241 2332 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
18:07:20.0304 2332 PeerDistSvc - ok
18:07:20.0564 2332 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
18:07:20.0618 2332 pla - ok
18:07:20.0786 2332 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
18:07:20.0812 2332 PlugPlay - ok
18:07:20.0867 2332 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
18:07:20.0877 2332 PNRPAutoReg - ok
18:07:20.0949 2332 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:07:20.0962 2332 PNRPsvc - ok
18:07:21.0060 2332 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
18:07:21.0085 2332 PolicyAgent - ok
18:07:21.0182 2332 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
18:07:21.0204 2332 Power - ok
18:07:21.0303 2332 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
18:07:21.0313 2332 PptpMiniport - ok
18:07:21.0366 2332 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
18:07:21.0372 2332 Processor - ok
18:07:21.0445 2332 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
18:07:21.0464 2332 ProfSvc - ok
18:07:21.0522 2332 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:07:21.0532 2332 ProtectedStorage - ok
18:07:21.0605 2332 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
18:07:21.0618 2332 Psched - ok
18:07:21.0768 2332 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
18:07:21.0820 2332 ql2300 - ok
18:07:21.0996 2332 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
18:07:22.0008 2332 ql40xx - ok
18:07:22.0072 2332 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
18:07:22.0118 2332 QWAVE - ok
18:07:22.0158 2332 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
18:07:22.0166 2332 QWAVEdrv - ok
18:07:22.0208 2332 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
18:07:22.0216 2332 RasAcd - ok
18:07:22.0289 2332 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:07:22.0294 2332 RasAgileVpn - ok
18:07:22.0354 2332 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
18:07:22.0376 2332 RasAuto - ok
18:07:22.0454 2332 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:07:22.0460 2332 Rasl2tp - ok
18:07:22.0556 2332 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
18:07:22.0581 2332 RasMan - ok
18:07:22.0643 2332 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
18:07:22.0654 2332 RasPppoe - ok
18:07:22.0724 2332 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
18:07:22.0731 2332 RasSstp - ok
18:07:22.0819 2332 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
18:07:22.0832 2332 rdbss - ok
18:07:22.0885 2332 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
18:07:22.0902 2332 rdpbus - ok
18:07:22.0970 2332 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:07:22.0976 2332 RDPCDD - ok
18:07:23.0063 2332 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
18:07:23.0076 2332 RDPDR - ok
18:07:23.0150 2332 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
18:07:23.0196 2332 RDPENCDD - ok
18:07:23.0253 2332 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
18:07:23.0291 2332 RDPREFMP - ok
18:07:23.0440 2332 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
18:07:23.0445 2332 RdpVideoMiniport - ok
18:07:23.0515 2332 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
18:07:23.0532 2332 RDPWD - ok
18:07:23.0621 2332 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
18:07:23.0640 2332 rdyboost - ok
18:07:23.0707 2332 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
18:07:23.0716 2332 RemoteAccess - ok
18:07:23.0781 2332 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
18:07:23.0800 2332 RemoteRegistry - ok
18:07:23.0865 2332 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
18:07:23.0875 2332 RpcEptMapper - ok
18:07:23.0921 2332 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
18:07:23.0930 2332 RpcLocator - ok
18:07:24.0025 2332 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:07:24.0038 2332 RpcSs - ok
18:07:24.0109 2332 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
18:07:24.0116 2332 rspndr - ok
18:07:24.0174 2332 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
18:07:24.0180 2332 s3cap - ok
18:07:24.0245 2332 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:07:24.0251 2332 SamSs - ok
18:07:24.0323 2332 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
18:07:24.0330 2332 sbp2port - ok
18:07:24.0389 2332 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
18:07:24.0410 2332 SCardSvr - ok
18:07:24.0479 2332 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
18:07:24.0485 2332 scfilter - ok
18:07:24.0611 2332 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
18:07:24.0647 2332 Schedule - ok
18:07:24.0695 2332 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:07:24.0700 2332 SCPolicySvc - ok
18:07:24.0818 2332 sdAuxService (a1089ac7683826e6c7c9fab9723dd80f) C:\Program Files\PC Tools Security\pctsAuxs.exe
18:07:24.0827 2332 sdAuxService - ok
18:07:24.0952 2332 sdCoreService (ed6c2efeb47524bff4d5e5109fb1a2bb) C:\Program Files\PC Tools Security\pctsSvc.exe
18:07:24.0967 2332 sdCoreService - ok
18:07:25.0145 2332 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
18:07:25.0166 2332 SDRSVC - ok
18:07:25.0259 2332 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:07:25.0265 2332 secdrv - ok
18:07:25.0411 2332 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
18:07:25.0431 2332 seclogon - ok
18:07:25.0486 2332 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
18:07:25.0498 2332 SENS - ok
18:07:25.0545 2332 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
18:07:25.0555 2332 SensrSvc - ok
18:07:25.0629 2332 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
18:07:25.0635 2332 Serenum - ok
18:07:25.0680 2332 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
18:07:25.0687 2332 Serial - ok
18:07:25.0744 2332 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
18:07:25.0750 2332 sermouse - ok
18:07:25.0895 2332 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
18:07:25.0911 2332 SessionEnv - ok
18:07:25.0967 2332 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
18:07:25.0972 2332 sffdisk - ok
18:07:26.0021 2332 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
18:07:26.0027 2332 sffp_mmc - ok
18:07:26.0083 2332 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
18:07:26.0088 2332 sffp_sd - ok
18:07:26.0151 2332 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
18:07:26.0156 2332 sfloppy - ok
18:07:26.0237 2332 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
18:07:26.0260 2332 SharedAccess - ok
18:07:26.0357 2332 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
18:07:26.0386 2332 ShellHWDetection - ok
18:07:26.0449 2332 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
18:07:26.0456 2332 sisagp - ok
18:07:26.0525 2332 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:07:26.0535 2332 SiSRaid2 - ok
18:07:26.0587 2332 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
18:07:26.0594 2332 SiSRaid4 - ok
18:07:26.0653 2332 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
18:07:26.0660 2332 Smb - ok
18:07:26.0758 2332 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
18:07:26.0769 2332 SNMPTRAP - ok
18:07:26.0833 2332 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
18:07:26.0838 2332 spldr - ok
18:07:26.0932 2332 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
18:07:26.0959 2332 Spooler - ok
18:07:27.0268 2332 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
18:07:27.0371 2332 sppsvc - ok
18:07:27.0530 2332 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
18:07:27.0541 2332 sppuinotify - ok
18:07:27.0640 2332 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys

[lakcod]

18:07:27.0660 2332 srv - ok
18:07:27.0734 2332 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
18:07:27.0753 2332 srv2 - ok
18:07:27.0822 2332 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
18:07:27.0838 2332 srvnet - ok
18:07:27.0910 2332 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
18:07:27.0933 2332 SSDPSRV - ok
18:07:27.0989 2332 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
18:07:28.0001 2332 SstpSvc - ok
18:07:28.0060 2332 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
18:07:28.0066 2332 stexstor - ok
18:07:28.0166 2332 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
18:07:28.0192 2332 StiSvc - ok
18:07:28.0250 2332 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
18:07:28.0259 2332 storflt - ok
18:07:28.0311 2332 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
18:07:28.0317 2332 storvsc - ok
18:07:28.0366 2332 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
18:07:28.0375 2332 swenum - ok
18:07:28.0459 2332 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
18:07:28.0483 2332 swprv - ok
18:07:28.0516 2332 Synth3dVsc - ok
18:07:28.0663 2332 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
18:07:28.0708 2332 SysMain - ok
18:07:28.0787 2332 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
18:07:28.0798 2332 TabletInputService - ok
18:07:28.0883 2332 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
18:07:28.0906 2332 TapiSrv - ok
18:07:28.0972 2332 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
18:07:28.0983 2332 TBS - ok
18:07:29.0165 2332 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
18:07:29.0212 2332 Tcpip - ok
18:07:29.0274 2332 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
18:07:29.0291 2332 TCPIP6 - ok
18:07:29.0392 2332 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
18:07:29.0398 2332 tcpipreg - ok
18:07:29.0482 2332 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
18:07:29.0489 2332 TDPIPE - ok
18:07:29.0551 2332 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
18:07:29.0558 2332 TDTCP - ok
18:07:29.0630 2332 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
18:07:29.0637 2332 tdx - ok
18:07:29.0697 2332 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
18:07:29.0704 2332 TermDD - ok
18:07:29.0810 2332 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
18:07:29.0837 2332 TermService - ok
18:07:29.0903 2332 TfFsMon (1c7be4e77d42a93e6cd82ef742a50524) C:\Windows\system32\drivers\TfFsMon.sys
18:07:29.0912 2332 TfFsMon - ok
18:07:29.0973 2332 TfNetMon (40d1ad5741204ea83661e1b4d3d0d0c5) C:\Windows\system32\drivers\TfNetMon.sys
18:07:29.0978 2332 TfNetMon - ok
18:07:30.0026 2332 TFSysMon (5d30e224ac2183357cb478b5cb73bd31) C:\Windows\system32\drivers\TfSysMon.sys
18:07:30.0033 2332 TFSysMon - ok
18:07:30.0102 2332 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
18:07:30.0114 2332 Themes - ok
18:07:30.0170 2332 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:07:30.0180 2332 THREADORDER - ok
18:07:30.0270 2332 ThreatFire - ok
18:07:30.0339 2332 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
18:07:30.0353 2332 TrkWks - ok
18:07:30.0485 2332 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
18:07:30.0497 2332 TrustedInstaller - ok
18:07:30.0581 2332 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:07:30.0586 2332 tssecsrv - ok
18:07:30.0632 2332 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
18:07:30.0638 2332 TsUsbFlt - ok
18:07:30.0671 2332 tsusbhub - ok
18:07:30.0777 2332 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
18:07:30.0791 2332 tunnel - ok
18:07:30.0847 2332 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
18:07:30.0854 2332 uagp35 - ok
18:07:30.0932 2332 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
18:07:30.0950 2332 udfs - ok
18:07:31.0047 2332 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
18:07:31.0058 2332 UI0Detect - ok
18:07:31.0121 2332 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
18:07:31.0126 2332 uliagpkx - ok
18:07:31.0207 2332 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
18:07:31.0212 2332 umbus - ok
18:07:31.0270 2332 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
18:07:31.0276 2332 UmPass - ok
18:07:31.0372 2332 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
18:07:31.0391 2332 UmRdpService - ok
18:07:31.0473 2332 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
18:07:31.0496 2332 upnphost - ok
18:07:31.0570 2332 upperdev (78b74af8727a28c128e164e9b53a5413) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
18:07:31.0575 2332 upperdev - ok
18:07:31.0643 2332 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
18:07:31.0650 2332 usbccgp - ok
18:07:31.0710 2332 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
18:07:31.0718 2332 usbcir - ok
18:07:31.0769 2332 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
18:07:31.0775 2332 usbehci - ok
18:07:31.0857 2332 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
18:07:31.0879 2332 usbhub - ok
18:07:31.0937 2332 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
18:07:31.0943 2332 usbohci - ok
18:07:32.0001 2332 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
18:07:32.0007 2332 usbprint - ok
18:07:32.0097 2332 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
18:07:32.0108 2332 usbscan - ok
18:07:32.0197 2332 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\Windows\system32\drivers\usbser.sys
18:07:32.0206 2332 usbser - ok
18:07:32.0253 2332 UsbserFilt (4f8fbc51a1c0a17310846b417a447f91) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
18:07:32.0258 2332 UsbserFilt - ok
18:07:32.0322 2332 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:07:32.0329 2332 USBSTOR - ok
18:07:32.0388 2332 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:07:32.0394 2332 usbuhci - ok
18:07:32.0445 2332 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
18:07:32.0458 2332 UxSms - ok
18:07:32.0510 2332 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:07:32.0517 2332 VaultSvc - ok
18:07:32.0587 2332 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
18:07:32.0593 2332 vdrvroot - ok
18:07:32.0705 2332 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
18:07:32.0737 2332 vds - ok
18:07:32.0791 2332 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
18:07:32.0796 2332 vga - ok
18:07:32.0839 2332 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
18:07:32.0845 2332 VgaSave - ok
18:07:32.0878 2332 VGPU - ok
18:07:32.0957 2332 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
18:07:32.0968 2332 vhdmp - ok
18:07:33.0041 2332 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
18:07:33.0048 2332 viaagp - ok
18:07:33.0104 2332 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
18:07:33.0111 2332 ViaC7 - ok
18:07:33.0206 2332 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
18:07:33.0211 2332 viaide - ok
18:07:33.0288 2332 VIAudio (2e1ffc794290d9b16f1db1084583e655) C:\Windows\system32\drivers\vinyl97.sys
18:07:33.0298 2332 VIAudio - ok
18:07:33.0360 2332 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
18:07:33.0376 2332 vmbus - ok
18:07:33.0425 2332 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
18:07:33.0431 2332 VMBusHID - ok
18:07:33.0497 2332 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
18:07:33.0502 2332 volmgr - ok
18:07:33.0576 2332 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
18:07:33.0590 2332 volmgrx - ok
18:07:33.0672 2332 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
18:07:33.0688 2332 volsnap - ok
18:07:33.0763 2332 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
18:07:33.0781 2332 vsmraid - ok
18:07:33.0928 2332 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
18:07:33.0971 2332 VSS - ok
18:07:34.0020 2332 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
18:07:34.0029 2332 vwifibus - ok
18:07:34.0114 2332 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
18:07:34.0136 2332 W32Time - ok
18:07:34.0209 2332 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
18:07:34.0215 2332 WacomPen - ok
18:07:34.0300 2332 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:07:34.0310 2332 WANARP - ok
18:07:34.0341 2332 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:07:34.0347 2332 Wanarpv6 - ok
18:07:34.0522 2332 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
18:07:34.0574 2332 WatAdminSvc - ok
18:07:34.0731 2332 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
18:07:34.0783 2332 wbengine - ok
18:07:34.0852 2332 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
18:07:34.0872 2332 WbioSrvc - ok
18:07:34.0967 2332 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
18:07:34.0989 2332 wcncsvc - ok
18:07:35.0049 2332 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
18:07:35.0061 2332 WcsPlugInService - ok
18:07:35.0146 2332 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
18:07:35.0153 2332 Wd - ok
18:07:35.0224 2332 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
18:07:35.0252 2332 Wdf01000 - ok
18:07:35.0317 2332 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:07:35.0328 2332 WdiServiceHost - ok
18:07:35.0372 2332 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:07:35.0384 2332 WdiSystemHost - ok
18:07:35.0570 2332 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
18:07:35.0600 2332 WebClient - ok
18:07:35.0672 2332 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
18:07:35.0690 2332 Wecsvc - ok
18:07:35.0734 2332 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
18:07:35.0745 2332 wercplsupport - ok
18:07:35.0809 2332 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
18:07:35.0823 2332 WerSvc - ok
18:07:35.0875 2332 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
18:07:35.0899 2332 WfpLwf - ok
18:07:35.0944 2332 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
18:07:35.0955 2332 WIMMount - ok
18:07:36.0101 2332 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
18:07:36.0146 2332 WinDefend - ok
18:07:36.0208 2332 WinHttpAutoProxySvc - ok
18:07:36.0310 2332 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
18:07:36.0322 2332 Winmgmt - ok
18:07:36.0491 2332 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
18:07:36.0542 2332 WinRM - ok
18:07:36.0671 2332 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\drivers\WinUsb.sys
18:07:36.0678 2332 WinUsb - ok
18:07:36.0792 2332 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
18:07:36.0835 2332 Wlansvc - ok
18:07:36.0888 2332 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
18:07:36.0893 2332 WmiAcpi - ok
18:07:37.0009 2332 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
18:07:37.0020 2332 wmiApSrv - ok
18:07:37.0220 2332 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
18:07:37.0270 2332 WMPNetworkSvc - ok
18:07:37.0334 2332 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
18:07:37.0345 2332 WPCSvc - ok
18:07:37.0416 2332 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
18:07:37.0427 2332 WPDBusEnum - ok
18:07:37.0516 2332 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
18:07:37.0525 2332 ws2ifsl - ok
18:07:37.0585 2332 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
18:07:37.0596 2332 wscsvc - ok
18:07:37.0629 2332 WSearch - ok
18:07:37.0882 2332 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
18:07:37.0973 2332 wuauserv - ok
18:07:38.0168 2332 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
18:07:38.0177 2332 WudfPf - ok
18:07:38.0266 2332 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:07:38.0279 2332 WUDFRd - ok
18:07:38.0344 2332 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
18:07:38.0355 2332 wudfsvc - ok
18:07:38.0425 2332 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
18:07:38.0451 2332 WwanSvc - ok
18:07:38.0524 2332 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:07:39.0144 2332 \Device\Harddisk0\DR0 - ok
18:07:39.0169 2332 Boot (0x1200) (61e481194655c5d53d22a34092ea3ac9) \Device\Harddisk0\DR0\Partition0
18:07:39.0171 2332 \Device\Harddisk0\DR0\Partition0 - ok
18:07:39.0205 2332 Boot (0x1200) (759604db19335d909966cbd70ac112cd) \Device\Harddisk0\DR0\Partition1
18:07:39.0210 2332 \Device\Harddisk0\DR0\Partition1 - ok
18:07:39.0221 2332 ============================================================
18:07:39.0222 2332 Scan finished
18:07:39.0222 2332 ============================================================
18:07:39.0273 1680 Detected object count: 0
18:07:39.0276 1680 Actual detected object count: 0
18:10:48.0017 2144 ============================================================
18:10:48.0017 2144 Scan started
18:10:48.0018 2144 Mode: Manual;
18:10:48.0018 2144 ============================================================
18:10:48.0745 2144 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
18:10:48.0751 2144 1394ohci - ok
18:10:48.0879 2144 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
18:10:48.0885 2144 ACDaemon - ok
18:10:48.0955 2144 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
18:10:48.0961 2144 ACPI - ok
18:10:49.0017 2144 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
18:10:49.0061 2144 AcpiPmi - ok
18:10:49.0134 2144 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:10:49.0138 2144 AdobeARMservice - ok
18:10:49.0227 2144 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:10:49.0234 2144 AdobeFlashPlayerUpdateSvc - ok
18:10:49.0332 2144 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
18:10:49.0340 2144 adp94xx - ok
18:10:49.0411 2144 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
18:10:49.0421 2144 adpahci - ok
18:10:49.0471 2144 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
18:10:49.0477 2144 adpu320 - ok
18:10:49.0548 2144 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
18:10:49.0552 2144 AeLookupSvc - ok
18:10:49.0641 2144 AF9035BDA (66b9ba926435fc930e6371d64766c982) C:\Windows\system32\Drivers\AF9035BDA.sys
18:10:49.0647 2144 AF9035BDA - ok
18:10:49.0725 2144 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
18:10:49.0733 2144 AFD - ok
18:10:49.0788 2144 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
18:10:49.0791 2144 agp440 - ok
18:10:49.0857 2144 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
18:10:49.0861 2144 aic78xx - ok
18:10:49.0920 2144 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
18:10:49.0925 2144 ALG - ok
18:10:49.0985 2144 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
18:10:49.0989 2144 aliide - ok
18:10:50.0039 2144 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
18:10:50.0042 2144 amdagp - ok
18:10:50.0088 2144 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
18:10:50.0125 2144 amdide - ok
18:10:50.0190 2144 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
18:10:50.0194 2144 AmdK8 - ok
18:10:50.0231 2144 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
18:10:50.0238 2144 AmdPPM - ok
18:10:50.0297 2144 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
18:10:50.0302 2144 amdsata - ok
18:10:50.0375 2144 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
18:10:50.0381 2144 amdsbs - ok
18:10:50.0427 2144 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
18:10:50.0431 2144 amdxata - ok
18:10:50.0496 2144 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
18:10:50.0500 2144 AppID - ok
18:10:50.0560 2144 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
18:10:50.0565 2144 AppIDSvc - ok
18:10:50.0640 2144 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
18:10:50.0644 2144 Appinfo - ok
18:10:50.0706 2144 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
18:10:50.0711 2144 AppMgmt - ok
18:10:50.0767 2144 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
18:10:50.0772 2144 arc - ok
18:10:50.0818 2144 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
18:10:50.0823 2144 arcsas - ok
18:10:50.0873 2144 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
18:10:50.0876 2144 AsyncMac - ok
18:10:50.0932 2144 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
18:10:50.0936 2144 atapi - ok
18:10:51.0041 2144 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:10:51.0051 2144 AudioEndpointBuilder - ok
18:10:51.0090 2144 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
18:10:51.0101 2144 Audiosrv - ok
18:10:51.0147 2144 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
18:10:51.0152 2144 AxInstSV - ok
18:10:51.0244 2144 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
18:10:51.0252 2144 b06bdrv - ok
18:10:51.0315 2144 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
18:10:51.0322 2144 b57nd60x - ok
18:10:51.0396 2144 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
18:10:51.0401 2144 BDESVC - ok
18:10:51.0468 2144 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
18:10:51.0475 2144 Beep - ok
18:10:51.0578 2144 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
18:10:51.0588 2144 BFE - ok
18:10:51.0695 2144 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
18:10:51.0708 2144 BITS - ok
18:10:51.0766 2144 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
18:10:51.0770 2144 blbdrive - ok
18:10:51.0827 2144 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
18:10:51.0832 2144 bowser - ok
18:10:51.0882 2144 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:10:51.0886 2144 BrFiltLo - ok
18:10:51.0918 2144 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:10:51.0922 2144 BrFiltUp - ok
18:10:52.0001 2144 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
18:10:52.0006 2144 Browser - ok
18:10:52.0145 2144 Browser Defender Update Service (f2dddf1e0c0c9c1122e45d1993cf92c9) C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
18:10:52.0152 2144 Browser Defender Update Service - ok
18:10:52.0225 2144 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
18:10:52.0233 2144 Brserid - ok
18:10:52.0271 2144 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
18:10:52.0279 2144 BrSerWdm - ok
18:10:52.0313 2144 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:10:52.0317 2144 BrUsbMdm - ok
18:10:52.0352 2144 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
18:10:52.0356 2144 BrUsbSer - ok
18:10:52.0398 2144 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
18:10:52.0402 2144 BTHMODEM - ok
18:10:52.0469 2144 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
18:10:52.0482 2144 bthserv - ok
18:10:52.0538 2144 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
18:10:52.0541 2144 cdfs - ok
18:10:52.0603 2144 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
18:10:52.0608 2144 cdrom - ok
18:10:52.0673 2144 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:10:52.0680 2144 CertPropSvc - ok
18:10:52.0732 2144 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
18:10:52.0736 2144 circlass - ok
18:10:52.0810 2144 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
18:10:52.0817 2144 CLFS - ok
18:10:52.0900 2144 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:10:52.0906 2144 clr_optimization_v2.0.50727_32 - ok
18:10:52.0988 2144 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:10:52.0993 2144 clr_optimization_v4.0.30319_32 - ok
18:10:53.0042 2144 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
18:10:53.0049 2144 CmBatt - ok
18:10:53.0110 2144 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
18:10:53.0117 2144 cmdide - ok
18:10:53.0198 2144 CNG (247b4ce2dab1160cd422d532d5241e1f) C:\Windows\system32\Drivers\cng.sys
18:10:53.0206 2144 CNG - ok
18:10:53.0263 2144 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
18:10:53.0267 2144 Compbatt - ok
18:10:53.0321 2144 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
18:10:53.0325 2144 CompositeBus - ok
18:10:53.0357 2144 COMSysApp - ok
18:10:53.0418 2144 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
18:10:53.0422 2144 crcdisk - ok
18:10:53.0497 2144 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
18:10:53.0502 2144 CryptSvc - ok
18:10:53.0597 2144 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
18:10:53.0606 2144 CSC - ok
18:10:53.0705 2144 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
18:10:53.0714 2144 CscService - ok
18:10:53.0821 2144 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:10:53.0860 2144 DcomLaunch - ok
18:10:53.0943 2144 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
18:10:53.0951 2144 defragsvc - ok
18:10:54.0059 2144 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
18:10:54.0064 2144 DfsC - ok
18:10:54.0125 2144 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
18:10:54.0133 2144 Dhcp - ok
18:10:54.0192 2144 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
18:10:54.0197 2144 discache - ok
18:10:54.0249 2144 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
18:10:54.0252 2144 Disk - ok
18:10:54.0312 2144 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
18:10:54.0319 2144 Dnscache - ok
18:10:54.0405 2144 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
18:10:54.0413 2144 dot3svc - ok
18:10:54.0497 2144 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
18:10:54.0503 2144 DPS - ok
18:10:54.0553 2144 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
18:10:54.0557 2144 drmkaud - ok
18:10:54.0662 2144 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
18:10:54.0672 2144 DXGKrnl - ok
18:10:54.0732 2144 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
18:10:54.0742 2144 EapHost - ok
18:10:55.0032 2144 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
18:10:55.0077 2144 ebdrv - ok
18:10:55.0211 2144 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
18:10:55.0218 2144 EFS - ok
18:10:55.0348 2144 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
18:10:55.0358 2144 ehRecvr - ok
18:10:55.0416 2144 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
18:10:55.0421 2144 ehSched - ok
18:10:55.0547 2144 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
18:10:55.0558 2144 elxstor - ok
18:10:55.0615 2144 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
18:10:55.0618 2144 ErrDev - ok
18:10:55.0718 2144 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
18:10:55.0727 2144 EventSystem - ok
18:10:55.0808 2144 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
18:10:55.0814 2144 exfat - ok
18:10:55.0870 2144 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
18:10:55.0876 2144 fastfat - ok
18:10:55.0983 2144 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
18:10:55.0994 2144 Fax - ok
18:10:56.0058 2144 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
18:10:56.0063 2144 fdc - ok
18:10:56.0124 2144 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
18:10:56.0128 2144 fdPHost - ok
18:10:56.0169 2144 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
18:10:56.0182 2144 FDResPub - ok
18:10:56.0237 2144 FETND6V (403bedad0226653ba8d05aefc3f04a0c) C:\Windows\system32\DRIVERS\fetnd6v.sys
18:10:56.0245 2144 FETND6V - ok
18:10:56.0300 2144 FETNDIS (f5cb6cb6d12f495516be27cffccde4bf) C:\Windows\system32\DRIVERS\fetnd6.sys
18:10:56.0304 2144 FETNDIS - ok
18:10:56.0361 2144 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
18:10:56.0366 2144 FileInfo - ok
18:10:56.0416 2144 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
18:10:56.0429 2144 Filetrace - ok
18:10:56.0479 2144 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
18:10:56.0498 2144 flpydisk - ok
18:10:56.0556 2144 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
18:10:56.0570 2144 FltMgr - ok
18:10:56.0702 2144 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
18:10:56.0715 2144 FontCache - ok
18:10:56.0833 2144 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:10:56.0846 2144 FontCache3.0.0.0 - ok
18:10:56.0898 2144 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
18:10:56.0941 2144 FsDepends - ok
18:10:56.0997 2144 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
18:10:57.0022 2144 Fs_Rec - ok
18:10:57.0109 2144 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
18:10:57.0123 2144 fvevol - ok
18:10:57.0191 2144 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:10:57.0219 2144 gagp30kx - ok
18:10:57.0375 2144 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
18:10:57.0393 2144 gpsvc - ok
18:10:57.0578 2144 Guard.Mail.ru (e859ca020ed61899f3c74a8d0032d05c) C:\Program Files\Guard-ICQ\GuardICQ.exe
18:10:57.0597 2144 Guard.Mail.ru - ok
18:10:57.0694 2144 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:10:57.0703 2144 gupdate - ok
18:10:57.0731 2144 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
18:10:57.0736 2144 gupdatem - ok
18:10:57.0900 2144 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
18:10:57.0904 2144 hcw85cir - ok
18:10:57.0971 2144 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
18:10:57.0975 2144 HDAudBus - ok
18:10:58.0035 2144 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
18:10:58.0039 2144 HidBatt - ok
18:10:58.0078 2144 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
18:10:58.0093 2144 HidBth - ok
18:10:58.0128 2144 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
18:10:58.0136 2144 HidIr - ok
18:10:58.0190 2144 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
18:10:58.0196 2144 hidserv - ok
18:10:58.0253 2144 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
18:10:58.0257 2144 HidUsb - ok
18:10:58.0326 2144 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
18:10:58.0335 2144 hkmsvc - ok
18:10:58.0425 2144 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
18:10:58.0434 2144 HomeGroupListener - ok
18:10:58.0504 2144 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
18:10:58.0515 2144 HomeGroupProvider - ok
18:10:58.0567 2144 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
18:10:58.0572 2144 HpSAMD - ok
18:10:58.0673 2144 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
18:10:58.0684 2144 HTTP - ok
18:10:58.0794 2144 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
18:10:58.0802 2144 hwpolicy - ok
18:10:58.0939 2144 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
18:10:58.0943 2144 i8042prt - ok
18:10:59.0024 2144 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
18:10:59.0032 2144 iaStorV - ok
18:10:59.0199 2144 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:10:59.0212 2144 idsvc - ok
18:10:59.0288 2144 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
18:10:59.0291 2144 iirsp - ok
18:10:59.0409 2144 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
18:10:59.0422 2144 IKEEXT - ok
18:10:59.0530 2144 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
18:10:59.0545 2144 intelide - ok
18:10:59.0608 2144 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
18:10:59.0613 2144 intelppm - ok
18:10:59.0674 2144 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
18:10:59.0680 2144 IPBusEnum - ok
18:10:59.0760 2144 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:10:59.0764 2144 IpFilterDriver - ok
18:10:59.0874 2144 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
18:10:59.0893 2144 iphlpsvc - ok
18:10:59.0954 2144 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
18:10:59.0958 2144 IPMIDRV - ok
18:11:00.0000 2144 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
18:11:00.0009 2144 IPNAT - ok
18:11:00.0070 2144 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
18:11:00.0077 2144 IRENUM - ok
18:11:00.0144 2144 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
18:11:00.0149 2144 isapnp - ok
18:11:00.0218 2144 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
18:11:00.0225 2144 iScsiPrt - ok
18:11:00.0277 2144 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:11:00.0282 2144 kbdclass - ok
18:11:00.0333 2144 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
18:11:00.0340 2144 kbdhid - ok
18:11:00.0392 2144 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:11:00.0399 2144 KeyIso - ok
18:11:00.0452 2144 KSecDD (b7895b4182c0d16f6efadeb8081e8d36) C:\Windows\system32\Drivers\ksecdd.sys
18:11:00.0457 2144 KSecDD - ok
18:11:00.0523 2144 KSecPkg (d30159ac9237519fbc62c6ec247d2d46) C:\Windows\system32\Drivers\ksecpkg.sys
18:11:00.0529 2144 KSecPkg - ok
18:11:00.0622 2144 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
18:11:00.0670 2144 KtmRm - ok
18:11:00.0748 2144 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
18:11:00.0765 2144 LanmanServer - ok
18:11:00.0832 2144 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
18:11:00.0841 2144 LanmanWorkstation - ok
18:11:00.0915 2144 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
18:11:00.0918 2144 lltdio - ok
18:11:00.0995 2144 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
18:11:01.0003 2144 lltdsvc - ok
18:11:01.0050 2144 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
18:11:01.0057 2144 lmhosts - ok
18:11:01.0131 2144 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:11:01.0136 2144 LSI_FC - ok
18:11:01.0200 2144 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:11:01.0205 2144 LSI_SAS - ok
18:11:01.0252 2144 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:11:01.0256 2144 LSI_SAS2 - ok
18:11:01.0310 2144 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:11:01.0314 2144 LSI_SCSI - ok
18:11:01.0375 2144 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
18:11:01.0379 2144 luafv - ok
18:11:01.0411 2144 lxcr_device - ok
18:11:01.0483 2144 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
18:11:01.0490 2144 Mcx2Svc - ok
18:11:01.0548 2144 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
18:11:01.0552 2144 megasas - ok
18:11:01.0610 2144 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
18:11:01.0617 2144 MegaSR - ok
18:11:01.0735 2144 Microsoft SharePoint Workspace Audit Service - ok
18:11:01.0797 2144 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:11:01.0804 2144 MMCSS - ok
18:11:01.0853 2144 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
18:11:01.0858 2144 Modem - ok
18:11:01.0908 2144 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
18:11:01.0915 2144 monitor - ok
18:11:01.0972 2144 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
18:11:01.0976 2144 mouclass - ok
18:11:02.0036 2144 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
18:11:02.0040 2144 mouhid - ok
18:11:02.0113 2144 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
18:11:02.0118 2144 mountmgr - ok
18:11:02.0190 2144 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:11:02.0196 2144 MozillaMaintenance - ok
18:11:02.0259 2144 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
18:11:02.0264 2144 mpio - ok
18:11:02.0319 2144 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
18:11:02.0323 2144 mpsdrv - ok
18:11:02.0435 2144 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
18:11:02.0449 2144 MpsSvc - ok
18:11:02.0529 2144 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
18:11:02.0534 2144 MRxDAV - ok
18:11:02.0603 2144 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:11:02.0608 2144 mrxsmb - ok
18:11:02.0667 2144 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:11:02.0673 2144 mrxsmb10 - ok
18:11:02.0719 2144 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:11:02.0724 2144 mrxsmb20 - ok
18:11:02.0785 2144 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
18:11:02.0792 2144 msahci - ok
18:11:02.0852 2144 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
18:11:02.0857 2144 msdsm - ok
18:11:02.0919 2144 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
18:11:02.0927 2144 MSDTC - ok
18:11:03.0019 2144 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
18:11:03.0023 2144 Msfs - ok
18:11:03.0063 2144 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
18:11:03.0075 2144 mshidkmdf - ok
18:11:03.0134 2144 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
18:11:03.0139 2144 msisadrv - ok
18:11:03.0196 2144 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
18:11:03.0204 2144 MSiSCSI - ok
18:11:03.0236 2144 msiserver - ok
18:11:03.0303 2144 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
18:11:03.0307 2144 MSKSSRV - ok
18:11:03.0340 2144 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
18:11:03.0344 2144 MSPCLOCK - ok
18:11:03.0380 2144 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
18:11:03.0387 2144 MSPQM - ok
18:11:03.0446 2144 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
18:11:03.0453 2144 MsRPC - ok
18:11:03.0540 2144 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
18:11:03.0543 2144 mssmbios - ok
18:11:03.0594 2144 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
18:11:03.0598 2144 MSTEE - ok
18:11:03.0637 2144 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
18:11:03.0641 2144 MTConfig - ok
18:11:03.0691 2144 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
18:11:03.0696 2144 Mup - ok
18:11:03.0790 2144 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
18:11:03.0813 2144 napagent - ok
18:11:03.0885 2144 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
18:11:03.0892 2144 NativeWifiP - ok
18:11:04.0035 2144 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
18:11:04.0046 2144 NDIS - ok
18:11:04.0108 2144 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
18:11:04.0112 2144 NdisCap - ok
18:11:04.0166 2144 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
18:11:04.0170 2144 NdisTapi - ok
18:11:04.0221 2144 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
18:11:04.0230 2144 Ndisuio - ok
18:11:04.0301 2144 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
18:11:04.0306 2144 NdisWan - ok
18:11:04.0358 2144 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
18:11:04.0363 2144 NDProxy - ok
18:11:04.0417 2144 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
18:11:04.0421 2144 NetBIOS - ok
18:11:04.0508 2144 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
18:11:04.0514 2144 NetBT - ok
18:11:04.0569 2144 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:11:04.0579 2144 Netlogon - ok
18:11:04.0657 2144 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
18:11:04.0667 2144 Netman - ok
18:11:04.0728 2144 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
18:11:04.0740 2144 netprofm - ok
18:11:04.0892 2144 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:11:04.0897 2144 NetTcpPortSharing - ok
18:11:04.0945 2144 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
18:11:04.0949 2144 nfrd960 - ok
18:11:05.0035 2144 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
18:11:05.0044 2144 NlaSvc - ok
18:11:05.0106 2144 nmwcd (b0a67de1a128389aea4d42c5a56215fd) C:\Windows\system32\drivers\ccdcmb.sys
18:11:05.0110 2144 nmwcd - ok
18:11:05.0185 2144 nmwcdc (025c54f9f8c8bc1894ea38529c742c54) C:\Windows\system32\drivers\ccdcmbo.sys
18:11:05.0189 2144 nmwcdc - ok
18:11:05.0252 2144 nmwcdnsu (4f0de685a96dc843ccc8a861b3fac12d) C:\Windows\system32\drivers\nmwcdnsu.sys
18:11:05.0258 2144 nmwcdnsu - ok
18:11:05.0327 2144 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
18:11:05.0331 2144 Npfs - ok
18:11:05.0383 2144 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
18:11:05.0391 2144 nsi - ok
18:11:05.0443 2144 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
18:11:05.0447 2144 nsiproxy - ok
18:11:05.0614 2144 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
18:11:05.0630 2144 Ntfs - ok
18:11:05.0682 2144 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
18:11:05.0686 2144 Null - ok
18:11:06.0117 2144 nvlddmkm (d37174e8014da46be1a81e7b02237ac0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:11:06.0179 2144 nvlddmkm - ok
18:11:06.0349 2144 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
18:11:06.0354 2144 nvraid - ok
18:11:06.0405 2144 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
18:11:06.0411 2144 nvstor - ok
18:11:06.0462 2144 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
18:11:06.0467 2144 nv_agp - ok
18:11:06.0537 2144 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
18:11:06.0541 2144 ohci1394 - ok
18:11:06.0623 2144 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:11:06.0628 2144 ose - ok
18:11:07.0057 2144 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:11:07.0113 2144 osppsvc - ok
18:11:07.0283 2144 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:11:07.0293 2144 p2pimsvc - ok
18:11:07.0369 2144 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
18:11:07.0380 2144 p2psvc - ok
18:11:07.0471 2144 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
18:11:07.0476 2144 Parport - ok
18:11:07.0536 2144 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
18:11:07.0541 2144 partmgr - ok
18:11:07.0602 2144 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
18:11:07.0606 2144 Parvdm - ok
18:11:07.0673 2144 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
18:11:07.0683 2144 PcaSvc - ok
18:11:07.0746 2144 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
18:11:07.0751 2144 pci - ok
18:11:07.0804 2144 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
18:11:07.0808 2144 pciide - ok
18:11:07.0883 2144 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
18:11:07.0890 2144 pcmcia - ok
18:11:07.0959 2144 PCTCore (995e6bc3bb92bb4a9eb49a663c43b6cb) C:\Windows\system32\drivers\PCTCore.sys
18:11:07.0966 2144 PCTCore - ok
18:11:08.0043 2144 pctDS (f820b4c61d1e591325b679d479d4eea4) C:\Windows\system32\drivers\pctDS.sys
18:11:08.0052 2144 pctDS - ok
18:11:08.0174 2144 pctEFA (acc8c15f3d59f17c5d903ff1de3b43d3) C:\Windows\system32\drivers\pctEFA.sys
18:11:08.0185 2144 pctEFA - ok
18:11:08.0255 2144 pctgntdi (5be722c8c9bba995693c8cd524d83b27) C:\Windows\System32\drivers\pctgntdi.sys
18:11:08.0263 2144 pctgntdi - ok
18:11:08.0322 2144 pctplsg (1ea4b41d30f28ff5e186a49b4a1d36d9) C:\Windows\System32\drivers\pctplsg.sys
18:11:08.0327 2144 pctplsg - ok
18:11:08.0389 2144 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
18:11:08.0393 2144 pcw - ok
18:11:08.0484 2144 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
18:11:08.0494 2144 PEAUTH - ok
18:11:08.0623 2144 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
18:11:08.0640 2144 PeerDistSvc - ok
18:11:08.0882 2144 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
18:11:08.0909 2144 pla - ok
18:11:09.0181 2144 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
18:11:09.0193 2144 PlugPlay - ok
18:11:09.0262 2144 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
18:11:09.0272 2144 PNRPAutoReg - ok
18:11:09.0336 2144 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
18:11:09.0347 2144 PNRPsvc - ok
18:11:09.0438 2144 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll

[lakcod]

18:11:09.0448 2144 PolicyAgent - ok
18:11:09.0540 2144 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
18:11:09.0550 2144 Power - ok
18:11:09.0631 2144 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
18:11:09.0636 2144 PptpMiniport - ok
18:11:09.0697 2144 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
18:11:09.0701 2144 Processor - ok
18:11:09.0761 2144 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
18:11:09.0771 2144 ProfSvc - ok
18:11:09.0830 2144 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:11:09.0836 2144 ProtectedStorage - ok
18:11:09.0896 2144 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
18:11:09.0901 2144 Psched - ok
18:11:10.0052 2144 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
18:11:10.0088 2144 ql2300 - ok
18:11:10.0252 2144 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
18:11:10.0257 2144 ql40xx - ok
18:11:10.0339 2144 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
18:11:10.0353 2144 QWAVE - ok
18:11:10.0393 2144 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
18:11:10.0398 2144 QWAVEdrv - ok
18:11:10.0443 2144 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
18:11:10.0448 2144 RasAcd - ok
18:11:10.0500 2144 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:11:10.0503 2144 RasAgileVpn - ok
18:11:10.0568 2144 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
18:11:10.0577 2144 RasAuto - ok
18:11:10.0644 2144 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:11:10.0649 2144 Rasl2tp - ok
18:11:10.0731 2144 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
18:11:10.0743 2144 RasMan - ok
18:11:10.0791 2144 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
18:11:10.0796 2144 RasPppoe - ok
18:11:10.0857 2144 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
18:11:10.0866 2144 RasSstp - ok
18:11:10.0958 2144 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
18:11:10.0965 2144 rdbss - ok
18:11:11.0015 2144 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
18:11:11.0020 2144 rdpbus - ok
18:11:11.0086 2144 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:11:11.0090 2144 RDPCDD - ok
18:11:11.0183 2144 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
18:11:11.0188 2144 RDPDR - ok
18:11:11.0250 2144 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
18:11:11.0253 2144 RDPENCDD - ok
18:11:11.0303 2144 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
18:11:11.0307 2144 RDPREFMP - ok
18:11:11.0437 2144 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
18:11:11.0441 2144 RdpVideoMiniport - ok
18:11:11.0521 2144 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
18:11:11.0528 2144 RDPWD - ok
18:11:11.0615 2144 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
18:11:11.0621 2144 rdyboost - ok
18:11:11.0685 2144 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
18:11:11.0704 2144 RemoteAccess - ok
18:11:11.0771 2144 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
18:11:11.0781 2144 RemoteRegistry - ok
18:11:11.0823 2144 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
18:11:11.0834 2144 RpcEptMapper - ok
18:11:11.0887 2144 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
18:11:11.0894 2144 RpcLocator - ok
18:11:11.0988 2144 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
18:11:12.0001 2144 RpcSs - ok
18:11:12.0065 2144 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
18:11:12.0070 2144 rspndr - ok
18:11:12.0133 2144 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
18:11:12.0137 2144 s3cap - ok
18:11:12.0194 2144 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:11:12.0204 2144 SamSs - ok
18:11:12.0269 2144 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
18:11:12.0274 2144 sbp2port - ok
18:11:12.0342 2144 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
18:11:12.0352 2144 SCardSvr - ok
18:11:12.0420 2144 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
18:11:12.0424 2144 scfilter - ok
18:11:12.0551 2144 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
18:11:12.0567 2144 Schedule - ok
18:11:12.0620 2144 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
18:11:12.0625 2144 SCPolicySvc - ok
18:11:12.0771 2144 sdAuxService (a1089ac7683826e6c7c9fab9723dd80f) C:\Program Files\PC Tools Security\pctsAuxs.exe
18:11:12.0779 2144 sdAuxService - ok
18:11:12.0910 2144 sdCoreService (ed6c2efeb47524bff4d5e5109fb1a2bb) C:\Program Files\PC Tools Security\pctsSvc.exe
18:11:12.0925 2144 sdCoreService - ok
18:11:13.0105 2144 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
18:11:13.0115 2144 SDRSVC - ok
18:11:13.0199 2144 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:11:13.0207 2144 secdrv - ok
18:11:13.0283 2144 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
18:11:13.0293 2144 seclogon - ok
18:11:13.0344 2144 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
18:11:13.0353 2144 SENS - ok
18:11:13.0393 2144 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
18:11:13.0404 2144 SensrSvc - ok
18:11:13.0459 2144 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
18:11:13.0464 2144 Serenum - ok
18:11:13.0544 2144 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
18:11:13.0549 2144 Serial - ok
18:11:13.0611 2144 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
18:11:13.0615 2144 sermouse - ok
18:11:13.0739 2144 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
18:11:13.0748 2144 SessionEnv - ok
18:11:13.0818 2144 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
18:11:13.0826 2144 sffdisk - ok
18:11:13.0874 2144 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
18:11:13.0877 2144 sffp_mmc - ok
18:11:13.0934 2144 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
18:11:13.0939 2144 sffp_sd - ok
18:11:13.0993 2144 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
18:11:13.0997 2144 sfloppy - ok
18:11:14.0086 2144 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
18:11:14.0104 2144 SharedAccess - ok
18:11:14.0218 2144 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
18:11:14.0231 2144 ShellHWDetection - ok
18:11:14.0288 2144 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
18:11:14.0295 2144 sisagp - ok
18:11:14.0359 2144 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:11:14.0363 2144 SiSRaid2 - ok
18:11:14.0418 2144 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
18:11:14.0425 2144 SiSRaid4 - ok
18:11:14.0472 2144 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
18:11:14.0481 2144 Smb - ok
18:11:14.0567 2144 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
18:11:14.0576 2144 SNMPTRAP - ok
18:11:14.0649 2144 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
18:11:14.0653 2144 spldr - ok
18:11:14.0738 2144 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
18:11:14.0751 2144 Spooler - ok
18:11:15.0098 2144 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
18:11:15.0175 2144 sppsvc - ok
18:11:15.0339 2144 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
18:11:15.0348 2144 sppuinotify - ok
18:11:15.0472 2144 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
18:11:15.0487 2144 srv - ok
18:11:15.0552 2144 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
18:11:15.0560 2144 srv2 - ok
18:11:15.0624 2144 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
18:11:15.0629 2144 srvnet - ok
18:11:15.0697 2144 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
18:11:15.0708 2144 SSDPSRV - ok
18:11:15.0752 2144 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
18:11:15.0762 2144 SstpSvc - ok
18:11:15.0813 2144 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
18:11:15.0818 2144 stexstor - ok
18:11:15.0945 2144 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
18:11:15.0968 2144 StiSvc - ok
18:11:16.0023 2144 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
18:11:16.0028 2144 storflt - ok
18:11:16.0078 2144 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
18:11:16.0093 2144 storvsc - ok
18:11:16.0133 2144 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
18:11:16.0137 2144 swenum - ok
18:11:16.0223 2144 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
18:11:16.0238 2144 swprv - ok
18:11:16.0271 2144 Synth3dVsc - ok
18:11:16.0413 2144 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
18:11:16.0433 2144 SysMain - ok
18:11:16.0513 2144 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
18:11:16.0522 2144 TabletInputService - ok
18:11:16.0616 2144 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
18:11:16.0627 2144 TapiSrv - ok
18:11:16.0683 2144 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
18:11:16.0692 2144 TBS - ok
18:11:16.0864 2144 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
18:11:16.0881 2144 Tcpip - ok
18:11:16.0936 2144 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
18:11:16.0954 2144 TCPIP6 - ok
18:11:17.0047 2144 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
18:11:17.0052 2144 tcpipreg - ok
18:11:17.0141 2144 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
18:11:17.0145 2144 TDPIPE - ok
18:11:17.0203 2144 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
18:11:17.0208 2144 TDTCP - ok
18:11:17.0281 2144 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
18:11:17.0289 2144 tdx - ok
18:11:17.0347 2144 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
18:11:17.0352 2144 TermDD - ok
18:11:17.0460 2144 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
18:11:17.0474 2144 TermService - ok
18:11:17.0539 2144 TfFsMon (1c7be4e77d42a93e6cd82ef742a50524) C:\Windows\system32\drivers\TfFsMon.sys
18:11:17.0542 2144 TfFsMon - ok
18:11:17.0582 2144 TfNetMon (40d1ad5741204ea83661e1b4d3d0d0c5) C:\Windows\system32\drivers\TfNetMon.sys
18:11:17.0589 2144 TfNetMon - ok
18:11:17.0632 2144 TFSysMon (5d30e224ac2183357cb478b5cb73bd31) C:\Windows\system32\drivers\TfSysMon.sys
18:11:17.0640 2144 TFSysMon - ok
18:11:17.0706 2144 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
18:11:17.0722 2144 Themes - ok
18:11:17.0778 2144 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
18:11:17.0785 2144 THREADORDER - ok
18:11:17.0887 2144 ThreatFire - ok
18:11:17.0942 2144 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
18:11:17.0952 2144 TrkWks - ok
18:11:18.0059 2144 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
18:11:18.0070 2144 TrustedInstaller - ok
18:11:18.0164 2144 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:11:18.0168 2144 tssecsrv - ok
18:11:18.0247 2144 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
18:11:18.0250 2144 TsUsbFlt - ok
18:11:18.0284 2144 tsusbhub - ok
18:11:18.0367 2144 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
18:11:18.0375 2144 tunnel - ok
18:11:18.0436 2144 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
18:11:18.0441 2144 uagp35 - ok
18:11:18.0526 2144 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
18:11:18.0534 2144 udfs - ok
18:11:18.0625 2144 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
18:11:18.0650 2144 UI0Detect - ok
18:11:18.0717 2144 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
18:11:18.0748 2144 uliagpkx - ok
18:11:18.0810 2144 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
18:11:18.0823 2144 umbus - ok
18:11:18.0879 2144 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
18:11:18.0897 2144 UmPass - ok
18:11:19.0033 2144 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
18:11:19.0075 2144 UmRdpService - ok
18:11:19.0150 2144 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
18:11:19.0164 2144 upnphost - ok
18:11:19.0245 2144 upperdev (78b74af8727a28c128e164e9b53a5413) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
18:11:19.0273 2144 upperdev - ok
18:11:19.0361 2144 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
18:11:19.0365 2144 usbccgp - ok
18:11:19.0419 2144 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
18:11:19.0425 2144 usbcir - ok
18:11:19.0481 2144 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
18:11:19.0485 2144 usbehci - ok
18:11:19.0550 2144 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
18:11:19.0564 2144 usbhub - ok
18:11:19.0613 2144 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
18:11:19.0617 2144 usbohci - ok
18:11:19.0675 2144 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
18:11:19.0679 2144 usbprint - ok
18:11:19.0745 2144 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
18:11:19.0750 2144 usbscan - ok
18:11:19.0805 2144 usbser (31181de6190b39fc8007dffd1a48ffd6) C:\Windows\system32\drivers\usbser.sys
18:11:19.0813 2144 usbser - ok
18:11:19.0863 2144 UsbserFilt (4f8fbc51a1c0a17310846b417a447f91) C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
18:11:19.0867 2144 UsbserFilt - ok
18:11:19.0922 2144 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:11:19.0928 2144 USBSTOR - ok
18:11:19.0981 2144 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:11:19.0985 2144 usbuhci - ok
18:11:20.0047 2144 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
18:11:20.0056 2144 UxSms - ok
18:11:20.0119 2144 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
18:11:20.0125 2144 VaultSvc - ok
18:11:20.0179 2144 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
18:11:20.0184 2144 vdrvroot - ok
18:11:20.0291 2144 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
18:11:20.0309 2144 vds - ok
18:11:20.0366 2144 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
18:11:20.0371 2144 vga - ok
18:11:20.0416 2144 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
18:11:20.0419 2144 VgaSave - ok
18:11:20.0453 2144 VGPU - ok
18:11:20.0525 2144 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
18:11:20.0532 2144 vhdmp - ok
18:11:20.0592 2144 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
18:11:20.0597 2144 viaagp - ok
18:11:20.0652 2144 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
18:11:20.0656 2144 ViaC7 - ok
18:11:20.0732 2144 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
18:11:20.0737 2144 viaide - ok
18:11:20.0807 2144 VIAudio (2e1ffc794290d9b16f1db1084583e655) C:\Windows\system32\drivers\vinyl97.sys
18:11:20.0814 2144 VIAudio - ok
18:11:20.0882 2144 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
18:11:20.0889 2144 vmbus - ok
18:11:20.0934 2144 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
18:11:20.0938 2144 VMBusHID - ok
18:11:20.0988 2144 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
18:11:20.0992 2144 volmgr - ok
18:11:21.0077 2144 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
18:11:21.0085 2144 volmgrx - ok
18:11:21.0166 2144 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
18:11:21.0174 2144 volsnap - ok
18:11:21.0237 2144 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
18:11:21.0242 2144 vsmraid - ok
18:11:21.0401 2144 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
18:11:21.0421 2144 VSS - ok
18:11:21.0468 2144 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
18:11:21.0473 2144 vwifibus - ok
18:11:21.0568 2144 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
18:11:21.0581 2144 W32Time - ok
18:11:21.0657 2144 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
18:11:21.0661 2144 WacomPen - ok
18:11:21.0743 2144 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:11:21.0748 2144 WANARP - ok
18:11:21.0778 2144 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
18:11:21.0787 2144 Wanarpv6 - ok
18:11:21.0954 2144 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
18:11:21.0972 2144 WatAdminSvc - ok
18:11:22.0149 2144 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
18:11:22.0225 2144 wbengine - ok
18:11:22.0294 2144 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
18:11:22.0318 2144 WbioSrvc - ok
18:11:22.0418 2144 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
18:11:22.0431 2144 wcncsvc - ok
18:11:22.0492 2144 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
18:11:22.0501 2144 WcsPlugInService - ok
18:11:22.0581 2144 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
18:11:22.0584 2144 Wd - ok
18:11:22.0671 2144 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
18:11:22.0681 2144 Wdf01000 - ok
18:11:22.0748 2144 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:11:22.0760 2144 WdiServiceHost - ok
18:11:22.0791 2144 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
18:11:22.0799 2144 WdiSystemHost - ok
18:11:22.0884 2144 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
18:11:22.0896 2144 WebClient - ok
18:11:22.0955 2144 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
18:11:22.0965 2144 Wecsvc - ok
18:11:23.0023 2144 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
18:11:23.0033 2144 wercplsupport - ok
18:11:23.0083 2144 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
18:11:23.0095 2144 WerSvc - ok
18:11:23.0133 2144 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
18:11:23.0141 2144 WfpLwf - ok
18:11:23.0184 2144 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
18:11:23.0192 2144 WIMMount - ok
18:11:23.0348 2144 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
18:11:23.0359 2144 WinDefend - ok
18:11:23.0407 2144 WinHttpAutoProxySvc - ok
18:11:23.0512 2144 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
18:11:23.0519 2144 Winmgmt - ok
18:11:23.0673 2144 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
18:11:23.0696 2144 WinRM - ok
18:11:23.0821 2144 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\drivers\WinUsb.sys
18:11:23.0833 2144 WinUsb - ok
18:11:23.0947 2144 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
18:11:23.0964 2144 Wlansvc - ok
18:11:24.0013 2144 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
18:11:24.0018 2144 WmiAcpi - ok
18:11:24.0139 2144 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
18:11:24.0148 2144 wmiApSrv - ok
18:11:24.0336 2144 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
18:11:24.0353 2144 WMPNetworkSvc - ok
18:11:24.0427 2144 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
18:11:24.0436 2144 WPCSvc - ok
18:11:24.0508 2144 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
18:11:24.0518 2144 WPDBusEnum - ok
18:11:24.0596 2144 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
18:11:24.0600 2144 ws2ifsl - ok
18:11:24.0666 2144 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
18:11:24.0676 2144 wscsvc - ok
18:11:24.0708 2144 WSearch - ok
18:11:24.0919 2144 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
18:11:24.0949 2144 wuauserv - ok
18:11:25.0145 2144 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
18:11:25.0150 2144 WudfPf - ok
18:11:25.0205 2144 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:11:25.0209 2144 WUDFRd - ok
18:11:25.0267 2144 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
18:11:25.0277 2144 wudfsvc - ok
18:11:25.0346 2144 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
18:11:25.0358 2144 WwanSvc - ok
18:11:25.0425 2144 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:11:26.0043 2144 \Device\Harddisk0\DR0 - ok
18:11:26.0073 2144 Boot (0x1200) (61e481194655c5d53d22a34092ea3ac9) \Device\Harddisk0\DR0\Partition0
18:11:26.0075 2144 \Device\Harddisk0\DR0\Partition0 - ok
18:11:26.0118 2144 Boot (0x1200) (759604db19335d909966cbd70ac112cd) \Device\Harddisk0\DR0\Partition1
18:11:26.0121 2144 \Device\Harddisk0\DR0\Partition1 - ok
18:11:26.0135 2144 ============================================================
18:11:26.0135 2144 Scan finished
18:11:26.0135 2144 ============================================================
18:11:26.0180 2216 Detected object count: 0
18:11:26.0181 2216 Actual detected object count: 0
18:11:31.0091 1280 Deinitialize success

[lakcod]

ComboFix 12-07-31.03 - Dočkalovic 01.08.2012 18:32:23.1.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2048.1491 [GMT 2:00]
Spuštěný z: c:\users\DoŔkalovic\Desktop\ComboFix.exe
AV: Spyware Doctor with AntiVirus *Disabled/Updated* {2F668A56-D5E0-2DF1-A0AE-CB1284F42AB2}
SP: Spyware Doctor *Disabled/Updated* {94076BB2-F3DA-227F-9A1E-F060FF73600F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\IsUn0405.exe
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-01 do 2012-08-01 )))))))))))))))))))))))))))))))
.
.
2012-08-01 16:59 . 2012-08-01 16:59 -------- d-----w- c:\users\Dočkalovic\AppData\Local\temp
2012-08-01 16:59 . 2012-08-01 16:59 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-07-30 14:09 . 2012-07-30 14:09 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\Malwarebytes
2012-07-30 14:08 . 2012-07-30 14:08 -------- d-----w- c:\programdata\Malwarebytes
2012-07-30 14:08 . 2012-07-30 14:08 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-30 14:08 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-29 10:15 . 2012-07-29 10:15 -------- d-----w- c:\program files\Lavalys
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-29 10:00 . 2012-07-29 10:00 -------- d-----w- c:\program files\Trend Micro
2012-07-20 06:18 . 2012-07-20 06:18 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\ICQ Search
2012-07-20 06:17 . 2012-07-20 06:17 -------- d-----w- c:\program files\ICQ6Toolbar
2012-07-20 06:17 . 2012-07-20 06:17 -------- d-----w- c:\program files\Guard-ICQ
2012-07-20 06:16 . 2012-07-20 06:17 -------- d-----w- c:\programdata\ICQ
2012-07-20 06:15 . 2012-07-30 10:32 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\ICQ
2012-07-20 06:15 . 2012-07-20 06:27 -------- d-----w- c:\program files\ICQ7M
2012-07-11 17:56 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-27 14:59 . 2012-04-15 16:35 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-27 14:59 . 2011-10-20 10:41 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-02 22:19 . 2012-06-21 10:21 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 10:21 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 10:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 10:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-21 10:21 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-21 10:21 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-21 10:19 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-21 10:18 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-21 10:18 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 04:40 . 2012-07-11 12:48 225280 ----a-w- c:\windows\system32\schannel.dll
2012-05-15 03:03 . 2012-06-14 13:19 981504 ----a-w- c:\windows\system32\wininet.dll
2012-07-19 15:16 . 2012-06-22 14:52 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ICQ"="c:\program files\ICQ7M\ICQ.exe" [2012-07-20 127040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PCTools FGuard"="c:\program files\PC Tools Security\BDT\FGuard.exe" [2011-01-07 108496]
"LXCRCATS"="c:\windows\system32\spool\DRIVERS\W32X86\3\LXCRtime.dll" [2006-02-24 65536]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2006-10-09 90191]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-09 7741440]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-09 81920]
.
c:\users\Dočkalovic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2011-9-2 227712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Software Kodak EasyShare.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Software Kodak EasyShare.lnk
backup=c:\windows\pss\Software Kodak EasyShare.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
2010-10-27 18:17 207424 ----a-w- c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
2010-03-13 12:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzPrint]
2006-02-07 05:10 98304 ----a-w- c:\program files\Lexmark 2400 Series\ezprint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer]
2006-02-02 08:11 290816 ----a-w- c:\program files\Lexmark Fax Solutions\fm3032.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxcrmon.exe]
2006-03-06 17:48 286720 ----a-w- c:\program files\Lexmark 2400 Series\lxcrmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2008-05-27 09:50 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
.
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 AF9035BDA;AF9035 BDA Devices;c:\windows\system32\Drivers\AF9035BDA.sys [x]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 pctplsg;pctplsg;c:\windows\System32\drivers\pctplsg.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 sdAuxService;PC Tools Auxiliary Service;c:\program files\PC Tools Security\pctsAuxs.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [x]
R3 ThreatFire;ThreatFire;c:\program files\PC Tools Security\TFEngine\TFService.exe service [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [x]
S0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [x]
S0 pctEFA;PC Tools Extended File Attributes;c:\windows\system32\drivers\pctEFA.sys [x]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [x]
S0 TFSysMon;TFSysMon;c:\windows\system32\drivers\TfSysMon.sys [x]
S1 pctgntdi;pctgntdi;c:\windows\System32\drivers\pctgntdi.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\PC Tools Security\BDT\BDTUpdateService.exe [x]
S2 Guard.Mail.ru;Guard.Mail.ru;c:\program files\Guard-ICQ\GuardICQ.exe [x]
S3 FETND6V;VIA Rhine Family Fast Ethernet Adapter Driver;c:\windows\system32\DRIVERS\fetnd6v.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-01 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-15 14:59]
.
2012-08-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-08 23:05]
.
2012-08-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-08 23:05]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files\ICQ7M\ICQ.exe
LSP: c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
TCP: DhcpNameServer = 84.16.96.129 84.16.96.2
FF - ProfilePath - c:\users\Dočkalovic\AppData\Roaming\Mozilla\Firefox\Profiles\4o8uis3i.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.5.3&q=
pref('extensions.shownSelectionUI',true);
pref('extensions.autoDisableScopes',0);
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-08-01 19:08:40
ComboFix-quarantined-files.txt 2012-08-01 17:08
.
Před spuštěním: Volných bajtů: 45 704 880 128
Po spuštění: Volných bajtů: 45 742 579 712
.
- - End Of File - - F27D852FABD56B94D6E69AC24E0C7FEB

[Žbeky]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
c:\users\Dočkalovic\AppData\Roaming\ICQ Search
c:\program files\ICQ6Toolbar
c:\program files\Guard-ICQ
c:\program files\Google\Update

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Driver::
gupdate
gupdatem
Guard.Mail.ru

Firefox::
FF - ProfilePath - c:\users\Dočkalovic\AppData\Roaming\Mozilla\Firefox\Profiles\4o8uis3i.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.5.3&q=

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

RegNull::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[lakcod]

ComboFix 12-07-31.03 - Dočkalovic 02.08.2012 15:42:32.2.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2048.1340 [GMT 2:00]
Spuštěný z: c:\users\DoŔkalovic\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\DoŔkalovic\Desktop\CFScript.txt
AV: Spyware Doctor with AntiVirus *Disabled/Updated* {2F668A56-D5E0-2DF1-A0AE-CB1284F42AB2}
SP: Spyware Doctor *Disabled/Updated* {94076BB2-F3DA-227F-9A1E-F060FF73600F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-02 do 2012-08-02 )))))))))))))))))))))))))))))))
.
.
2012-08-02 14:09 . 2012-08-02 14:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-01 17:08 . 2012-08-02 14:09 -------- d-----w- c:\users\Dočkalovic\AppData\Local\temp
2012-07-30 14:09 . 2012-07-30 14:09 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\Malwarebytes
2012-07-30 14:08 . 2012-07-30 14:08 -------- d-----w- c:\programdata\Malwarebytes
2012-07-30 14:08 . 2012-07-30 14:08 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-30 14:08 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-29 10:15 . 2012-07-29 10:15 -------- d-----w- c:\program files\Lavalys
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-29 10:00 . 2012-07-29 10:00 -------- d-----w- c:\program files\Trend Micro
2012-07-20 06:18 . 2012-07-20 06:18 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\ICQ Search
2012-07-20 06:17 . 2012-07-20 06:17 -------- d-----w- c:\program files\ICQ6Toolbar
2012-07-20 06:17 . 2012-07-20 06:17 -------- d-----w- c:\program files\Guard-ICQ
2012-07-20 06:16 . 2012-07-20 06:17 -------- d-----w- c:\programdata\ICQ
2012-07-20 06:15 . 2012-07-30 10:32 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\ICQ
2012-07-20 06:15 . 2012-07-20 06:27 -------- d-----w- c:\program files\ICQ7M
2012-07-11 17:56 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-27 14:59 . 2012-04-15 16:35 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-27 14:59 . 2011-10-20 10:41 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-02 22:19 . 2012-06-21 10:21 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 10:21 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 10:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 10:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-21 10:21 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-21 10:21 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-21 10:19 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-21 10:18 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-21 10:18 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 04:40 . 2012-07-11 12:48 225280 ----a-w- c:\windows\system32\schannel.dll
2012-05-15 03:03 . 2012-06-14 13:19 981504 ----a-w- c:\windows\system32\wininet.dll
2012-07-19 15:16 . 2012-06-22 14:52 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ICQ"="c:\program files\ICQ7M\ICQ.exe" [2012-07-20 127040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PCTools FGuard"="c:\program files\PC Tools Security\BDT\FGuard.exe" [2011-01-07 108496]
"LXCRCATS"="c:\windows\system32\spool\DRIVERS\W32X86\3\LXCRtime.dll" [2006-02-24 65536]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2006-10-09 90191]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-09 7741440]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-09 81920]
.
c:\users\Dočkalovic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2011-9-2 227712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Software Kodak EasyShare.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Software Kodak EasyShare.lnk
backup=c:\windows\pss\Software Kodak EasyShare.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
2010-10-27 18:17 207424 ----a-w- c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
2010-03-13 12:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzPrint]
2006-02-07 05:10 98304 ----a-w- c:\program files\Lexmark 2400 Series\ezprint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer]
2006-02-02 08:11 290816 ----a-w- c:\program files\Lexmark Fax Solutions\fm3032.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxcrmon.exe]
2006-03-06 17:48 286720 ----a-w- c:\program files\Lexmark 2400 Series\lxcrmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2008-05-27 09:50 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
.
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 AF9035BDA;AF9035 BDA Devices;c:\windows\system32\Drivers\AF9035BDA.sys [x]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 pctplsg;pctplsg;c:\windows\System32\drivers\pctplsg.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 sdAuxService;PC Tools Auxiliary Service;c:\program files\PC Tools Security\pctsAuxs.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 ThreatFire;ThreatFire;c:\program files\PC Tools Security\TFEngine\TFService.exe service [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [x]
S0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [x]
S0 pctEFA;PC Tools Extended File Attributes;c:\windows\system32\drivers\pctEFA.sys [x]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [x]
S0 TFSysMon;TFSysMon;c:\windows\system32\drivers\TfSysMon.sys [x]
S1 pctgntdi;pctgntdi;c:\windows\System32\drivers\pctgntdi.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\PC Tools Security\BDT\BDTUpdateService.exe [x]
S2 Guard.Mail.ru;Guard.Mail.ru;c:\program files\Guard-ICQ\GuardICQ.exe [x]
S3 FETND6V;VIA Rhine Family Fast Ethernet Adapter Driver;c:\windows\system32\DRIVERS\fetnd6v.sys [x]
S3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - PCTSDInjDriver32
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-15 14:59]
.
2012-08-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-08 23:05]
.
2012-08-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-08 23:05]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files\ICQ7M\ICQ.exe
LSP: c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
TCP: DhcpNameServer = 84.16.96.129 84.16.96.2
FF - ProfilePath - c:\users\Dočkalovic\AppData\Roaming\Mozilla\Firefox\Profiles\4o8uis3i.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.5.3&q=
pref('extensions.shownSelectionUI',true);
pref('extensions.autoDisableScopes',0);
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-08-02 17:58:29
ComboFix-quarantined-files.txt 2012-08-02 15:58
ComboFix2.txt 2012-08-01 17:08
.
Před spuštěním: Volných bajtů: 45 690 134 528
Po spuštění: Volných bajtů: 45 644 812 288
.
- - End Of File - - 4952DDCC38EC0EE60436FCC496914536

[Žbeky]

Nic se neprovedlo, zkus to v nouzovém režimu

[lakcod]

Tak ted v nouzovém režimu:

ComboFix 12-07-31.03 - Dočkalovic 04.08.2012 10:47:19.3.1 - x86 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2048.1415 [GMT 2:00]
Spuštěný z: c:\users\DoŔkalovic\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\DoŔkalovic\Desktop\CFScript.txt
AV: Spyware Doctor with AntiVirus *Disabled/Updated* {2F668A56-D5E0-2DF1-A0AE-CB1284F42AB2}
SP: Spyware Doctor *Disabled/Updated* {94076BB2-F3DA-227F-9A1E-F060FF73600F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-07-04 do 2012-08-04 )))))))))))))))))))))))))))))))
.
.
2012-08-04 09:01 . 2012-08-04 09:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-01 17:08 . 2012-08-04 09:01 -------- d-----w- c:\users\Dočkalovic\AppData\Local\temp
2012-07-30 14:09 . 2012-07-30 14:09 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\Malwarebytes
2012-07-30 14:08 . 2012-07-30 14:08 -------- d-----w- c:\programdata\Malwarebytes
2012-07-30 14:08 . 2012-07-30 14:08 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-07-30 14:08 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-29 10:15 . 2012-07-29 10:15 -------- d-----w- c:\program files\Lavalys
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-29 10:00 . 2012-07-29 10:00 -------- d-----w- c:\program files\Trend Micro
2012-07-20 06:18 . 2012-07-20 06:18 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\ICQ Search
2012-07-20 06:17 . 2012-07-20 06:17 -------- d-----w- c:\program files\ICQ6Toolbar
2012-07-20 06:17 . 2012-07-20 06:17 -------- d-----w- c:\program files\Guard-ICQ
2012-07-20 06:16 . 2012-07-20 06:17 -------- d-----w- c:\programdata\ICQ
2012-07-20 06:15 . 2012-07-30 10:32 -------- d-----w- c:\users\Dočkalovic\AppData\Roaming\ICQ
2012-07-20 06:15 . 2012-07-20 06:27 -------- d-----w- c:\program files\ICQ7M
2012-07-11 17:56 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-29 10:00 . 2012-07-29 10:00 388096 ----a-r- c:\users\Dočkalovic\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-07-27 14:59 . 2012-04-15 16:35 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-27 14:59 . 2011-10-20 10:41 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-02 22:19 . 2012-06-21 10:21 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2012-06-21 10:21 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2012-06-21 10:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2012-06-21 10:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2012-06-21 10:21 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:12 . 2012-06-21 10:21 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-06-02 22:12 . 2012-06-21 10:19 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-06-02 13:19 . 2012-06-21 10:18 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-06-02 13:12 . 2012-06-21 10:18 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-06-02 04:40 . 2012-07-11 12:48 225280 ----a-w- c:\windows\system32\schannel.dll
2012-05-15 03:03 . 2012-06-14 13:19 981504 ----a-w- c:\windows\system32\wininet.dll
2012-07-19 15:16 . 2012-06-22 14:52 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ICQ"="c:\program files\ICQ7M\ICQ.exe" [2012-07-20 127040]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PCTools FGuard"="c:\program files\PC Tools Security\BDT\FGuard.exe" [2011-01-07 108496]
"LXCRCATS"="c:\windows\system32\spool\DRIVERS\W32X86\3\LXCRtime.dll" [2006-02-24 65536]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2006-10-09 90191]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-09 7741440]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2006-10-09 81920]
.
c:\users\Dočkalovic\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2011-9-2 227712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Software Kodak EasyShare.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Software Kodak EasyShare.lnk
backup=c:\windows\pss\Software Kodak EasyShare.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]
2010-10-27 18:17 207424 ----a-w- c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
2010-03-13 12:54 91520 ----a-w- c:\program files\Microsoft Office\Office14\BCSSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EzPrint]
2006-02-07 05:10 98304 ----a-w- c:\program files\Lexmark 2400 Series\ezprint.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FaxCenterServer]
2006-02-02 08:11 290816 ----a-w- c:\program files\Lexmark Fax Solutions\fm3032.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxcrmon.exe]
2006-03-06 17:48 286720 ----a-w- c:\program files\Lexmark 2400 Series\lxcrmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2008-05-27 09:50 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
.
R1 pctgntdi;pctgntdi;c:\windows\System32\drivers\pctgntdi.sys [x]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
R2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\PC Tools Security\BDT\BDTUpdateService.exe [x]
R2 Guard.Mail.ru;Guard.Mail.ru;c:\program files\Guard-ICQ\GuardICQ.exe [x]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 AF9035BDA;AF9035 BDA Devices;c:\windows\system32\Drivers\AF9035BDA.sys [x]
R3 FETND6V;VIA Rhine Family Fast Ethernet Adapter Driver;c:\windows\system32\DRIVERS\fetnd6v.sys [x]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 pctplsg;pctplsg;c:\windows\System32\drivers\pctplsg.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 sdAuxService;PC Tools Auxiliary Service;c:\program files\PC Tools Security\pctsAuxs.exe [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [x]
R3 ThreatFire;ThreatFire;c:\program files\PC Tools Security\TFEngine\TFService.exe service [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [x]
S0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [x]
S0 pctEFA;PC Tools Extended File Attributes;c:\windows\system32\drivers\pctEFA.sys [x]
S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [x]
S0 TFSysMon;TFSysMon;c:\windows\system32\drivers\TfSysMon.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-08-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-15 14:59]
.
2012-08-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-08 23:05]
.
2012-08-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-08 23:05]
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files\ICQ7M\ICQ.exe
LSP: c:\program files\Common Files\PC Tools\Lsp\PCTLsp.dll
TCP: DhcpNameServer = 84.16.96.129 84.16.96.2
FF - ProfilePath - c:\users\Dočkalovic\AppData\Roaming\Mozilla\Firefox\Profiles\4o8uis3i.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.5.3&q=
pref('extensions.shownSelectionUI',true);
pref('extensions.autoDisableScopes',0);
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-08-04 11:05:21
ComboFix-quarantined-files.txt 2012-08-04 09:05
ComboFix2.txt 2012-08-02 15:58
ComboFix3.txt 2012-08-01 17:08
.
Před spuštěním: Volných bajtů: 44 547 735 552
Po spuštění: Volných bajtů: 44 689 498 112
.
- - End Of File - - 51BCBE85D1303C8C4EE54667CA78DC06