Prosze o sprawdzenie Loga OTL

[donosr]

Dostępne tylko dla zarejestrowanych użytkowników
Dostępne tylko dla zarejestrowanych użytkowników

[kominekl]

Reasumacja.

Jakieś problemy?

Logi.

Uruchom OTL -> w oknie Własne opcje skanowania/skrypt wklej:

:OTL

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}&FORM=IE8SRC
IE - HKU\S-1-5-21-227227063-680060081-2817858706-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_268.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
O3 - HKU\S-1-5-21-227227063-680060081-2817858706-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
[2012-08-06 19:52:14 | 000,000,000 | ---D | C] -- C:\Users\Czonsi\AppData\Local\Temp

:Files
C:\Windows\tasks\*.*

:Commands
[emptyflash]
[clearallrestorepoints]
[emptytemp]

Klikasz Wykonaj skrypt. Dajesz log z usuwania. Następnie podajesz nowe logi z OTL + log z TDSSKiller -> http://www.hotfix.pl/instrukcja-obslugi ... r-a341.htm.

[donosr]

nie mam jak na razie żadnych problemów nie dawno robiłem system
a wcześniej avast wykrywał mi wirusa ,,sality" i chciałem sprawdzić czy wszystko w porządku ...

[kominekl]

a wcześniej avast wykrywał mi wirusa ,,sality" i chciałem sprawdzić czy wszystko w porządku ...

Infekcja plików wykonywalnych. Sprawdzimy to jeszcze . Na razie wykonaj do jutra wszelkie podane przeze Mnie instrukcje.

[donosr]

23:00:03.0176 4040 TDSS rootkit removing tool 2.7.22.0 Mar 21 2012 17:40:00
23:00:05.0189 4040 ============================================================
23:00:05.0189 4040 Current date / time: 2012/08/08 23:00:05.0189
23:00:05.0189 4040 SystemInfo:
23:00:05.0189 4040
23:00:05.0189 4040 OS Version: 6.1.7600 ServicePack: 0.0
23:00:05.0189 4040 Product type: Workstation
23:00:05.0189 4040 ComputerName: CZONSI-KOMPUTER
23:00:05.0189 4040 UserName: Czonsi
23:00:05.0189 4040 Windows directory: C:\Windows
23:00:05.0189 4040 System windows directory: C:\Windows
23:00:05.0189 4040 Running under WOW64
23:00:05.0189 4040 Processor architecture: Intel x64
23:00:05.0189 4040 Number of processors: 2
23:00:05.0189 4040 Page size: 0x1000
23:00:05.0189 4040 Boot type: Normal boot
23:00:05.0189 4040 ============================================================
23:00:06.0405 4040 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:00:06.0405 4040 \Device\Harddisk0\DR0:
23:00:06.0405 4040 MBR used
23:00:06.0405 4040 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:00:06.0405 4040 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x280A000
23:00:06.0405 4040 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x283C800, BlocksNum 0x101DC800
23:00:06.0468 4040 Initialize success
23:00:06.0468 4040 ============================================================
23:00:09.0884 3892 ============================================================
23:00:09.0884 3892 Scan started
23:00:09.0884 3892 Mode: Manual;
23:00:09.0884 3892 ============================================================
23:00:10.0867 3892 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
23:00:10.0883 3892 1394ohci - ok
23:00:10.0929 3892 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
23:00:10.0929 3892 ACPI - ok
23:00:10.0976 3892 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
23:00:10.0976 3892 AcpiPmi - ok
23:00:11.0070 3892 AdobeFlashPlayerUpdateSvc (6c40d5ed8951ab7b90d08af655224ee4) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:00:11.0085 3892 AdobeFlashPlayerUpdateSvc - ok
23:00:11.0148 3892 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
23:00:11.0163 3892 adp94xx - ok
23:00:11.0210 3892 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
23:00:11.0226 3892 adpahci - ok
23:00:11.0257 3892 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
23:00:11.0273 3892 adpu320 - ok
23:00:11.0319 3892 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
23:00:11.0319 3892 AeLookupSvc - ok
23:00:11.0382 3892 AFD (b9384e03479d2506bc924c16a3db87bc) C:\Windows\system32\drivers\afd.sys
23:00:11.0382 3892 AFD - ok
23:00:11.0413 3892 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
23:00:11.0413 3892 ALG - ok
23:00:11.0444 3892 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
23:00:11.0444 3892 aliide - ok
23:00:11.0475 3892 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
23:00:11.0475 3892 amdide - ok
23:00:11.0522 3892 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
23:00:11.0522 3892 AmdK8 - ok
23:00:11.0538 3892 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
23:00:11.0553 3892 AmdPPM - ok
23:00:11.0600 3892 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys
23:00:11.0600 3892 amdsata - ok
23:00:11.0647 3892 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
23:00:11.0647 3892 amdsbs - ok
23:00:11.0678 3892 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys
23:00:11.0678 3892 amdxata - ok
23:00:11.0725 3892 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
23:00:11.0725 3892 AppID - ok
23:00:11.0772 3892 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
23:00:11.0772 3892 AppIDSvc - ok
23:00:11.0803 3892 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
23:00:11.0803 3892 Appinfo - ok
23:00:11.0865 3892 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
23:00:11.0865 3892 AppMgmt - ok
23:00:11.0897 3892 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
23:00:11.0897 3892 arc - ok
23:00:11.0928 3892 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
23:00:11.0928 3892 arcsas - ok
23:00:11.0975 3892 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
23:00:11.0975 3892 AsyncMac - ok
23:00:12.0006 3892 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
23:00:12.0021 3892 atapi - ok
23:00:12.0115 3892 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
23:00:12.0131 3892 athr - ok
23:00:12.0209 3892 AudioEndpointBuilder (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
23:00:12.0209 3892 AudioEndpointBuilder - ok
23:00:12.0302 3892 AudioSrv (07721a77180edd4d39ccb865bf63c7fd) C:\Windows\System32\Audiosrv.dll
23:00:12.0318 3892 AudioSrv - ok
23:00:12.0427 3892 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
23:00:12.0427 3892 AxInstSV - ok
23:00:12.0505 3892 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
23:00:12.0505 3892 b06bdrv - ok
23:00:12.0599 3892 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
23:00:12.0599 3892 b57nd60a - ok
23:00:12.0661 3892 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
23:00:12.0661 3892 BDESVC - ok
23:00:12.0677 3892 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
23:00:12.0677 3892 Beep - ok
23:00:12.0755 3892 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
23:00:12.0770 3892 BFE - ok
23:00:12.0848 3892 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
23:00:12.0848 3892 BITS - ok
23:00:12.0911 3892 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
23:00:12.0911 3892 blbdrive - ok
23:00:12.0942 3892 bowser (91ce0d3dc57dd377e690a2d324022b08) C:\Windows\system32\DRIVERS\bowser.sys
23:00:12.0957 3892 bowser - ok
23:00:12.0989 3892 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:00:12.0989 3892 BrFiltLo - ok
23:00:13.0020 3892 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:00:13.0020 3892 BrFiltUp - ok
23:00:13.0067 3892 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
23:00:13.0067 3892 Browser - ok
23:00:13.0113 3892 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
23:00:13.0113 3892 Brserid - ok
23:00:13.0145 3892 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
23:00:13.0160 3892 BrSerWdm - ok
23:00:13.0176 3892 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:00:13.0176 3892 BrUsbMdm - ok
23:00:13.0207 3892 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
23:00:13.0207 3892 BrUsbSer - ok
23:00:13.0254 3892 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
23:00:13.0254 3892 BTHMODEM - ok
23:00:13.0332 3892 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
23:00:13.0347 3892 bthserv - ok
23:00:13.0379 3892 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
23:00:13.0379 3892 cdfs - ok
23:00:13.0441 3892 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
23:00:13.0441 3892 cdrom - ok
23:00:13.0659 3892 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
23:00:13.0659 3892 CertPropSvc - ok
23:00:13.0737 3892 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
23:00:13.0737 3892 circlass - ok
23:00:13.0800 3892 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
23:00:13.0800 3892 CLFS - ok
23:00:13.0862 3892 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:00:13.0862 3892 clr_optimization_v2.0.50727_32 - ok
23:00:13.0940 3892 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:00:13.0940 3892 clr_optimization_v2.0.50727_64 - ok
23:00:14.0049 3892 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
23:00:14.0049 3892 CmBatt - ok
23:00:14.0081 3892 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
23:00:14.0081 3892 cmdide - ok
23:00:14.0127 3892 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
23:00:14.0127 3892 CNG - ok
23:00:14.0159 3892 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
23:00:14.0174 3892 Compbatt - ok
23:00:14.0205 3892 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
23:00:14.0205 3892 CompositeBus - ok
23:00:14.0237 3892 COMSysApp - ok
23:00:14.0330 3892 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
23:00:14.0330 3892 crcdisk - ok
23:00:14.0393 3892 CryptSvc (8c57411b66282c01533cb776f98ad384) C:\Windows\system32\cryptsvc.dll
23:00:14.0393 3892 CryptSvc - ok
23:00:14.0439 3892 CSC (4a6173c2279b498cd8f57cae504564cb) C:\Windows\system32\drivers\csc.sys
23:00:14.0455 3892 CSC - ok
23:00:14.0502 3892 CscService (873fbf927c06e5cee04dec617502f8fd) C:\Windows\System32\cscsvc.dll
23:00:14.0517 3892 CscService - ok
23:00:14.0595 3892 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
23:00:14.0595 3892 DcomLaunch - ok
23:00:14.0705 3892 DCService.exe (cc8b5c964b777f4ec3e89f13b4b5ff0f) C:\ProgramData\DatacardService\DCService.exe
23:00:14.0720 3892 DCService.exe - ok
23:00:14.0783 3892 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
23:00:14.0798 3892 defragsvc - ok
23:00:14.0876 3892 DfsC (3f1dc527070acb87e40afe46ef6da749) C:\Windows\system32\Drivers\dfsc.sys
23:00:14.0876 3892 DfsC - ok
23:00:14.0939 3892 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
23:00:14.0954 3892 Dhcp - ok
23:00:14.0985 3892 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
23:00:14.0985 3892 discache - ok
23:00:15.0001 3892 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
23:00:15.0017 3892 Disk - ok
23:00:15.0048 3892 Dnscache (676108c4e3aa6f6b34633748bd0bebd9) C:\Windows\System32\dnsrslvr.dll
23:00:15.0048 3892 Dnscache - ok
23:00:15.0079 3892 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
23:00:15.0095 3892 dot3svc - ok
23:00:15.0110 3892 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
23:00:15.0126 3892 DPS - ok
23:00:15.0173 3892 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
23:00:15.0173 3892 drmkaud - ok
23:00:15.0219 3892 DXGKrnl (7cb7d2b73813ce05c7bc0f5f95d27cec) C:\Windows\System32\drivers\dxgkrnl.sys
23:00:15.0235 3892 DXGKrnl - ok
23:00:15.0282 3892 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
23:00:15.0282 3892 EapHost - ok
23:00:15.0422 3892 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
23:00:15.0453 3892 ebdrv - ok
23:00:15.0516 3892 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
23:00:15.0516 3892 EFS - ok
23:00:15.0641 3892 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
23:00:15.0656 3892 elxstor - ok
23:00:15.0687 3892 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
23:00:15.0687 3892 ErrDev - ok
23:00:15.0750 3892 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
23:00:15.0750 3892 EventSystem - ok
23:00:15.0812 3892 ewusbnet (da7cef9ffbbd6498df106bcab84eb10a) C:\Windows\system32\DRIVERS\ewusbnet.sys
23:00:15.0828 3892 ewusbnet - ok
23:00:15.0875 3892 ew_hwusbdev (e2cbb821c7cae0ef8b56de28ed85c740) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
23:00:15.0875 3892 ew_hwusbdev - ok
23:00:15.0921 3892 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
23:00:15.0921 3892 exfat - ok
23:00:15.0953 3892 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
23:00:15.0953 3892 fastfat - ok
23:00:15.0968 3892 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
23:00:15.0968 3892 fdc - ok
23:00:16.0031 3892 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
23:00:16.0031 3892 fdPHost - ok
23:00:16.0062 3892 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
23:00:16.0062 3892 FDResPub - ok
23:00:16.0093 3892 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
23:00:16.0093 3892 FileInfo - ok
23:00:16.0124 3892 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
23:00:16.0124 3892 Filetrace - ok
23:00:16.0140 3892 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
23:00:16.0155 3892 flpydisk - ok
23:00:16.0202 3892 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
23:00:16.0202 3892 FltMgr - ok
23:00:16.0265 3892 FontCache (8ac4cb4ea61e41009fae9ae7b2b5da3a) C:\Windows\system32\FntCache.dll
23:00:16.0265 3892 FontCache - ok
23:00:16.0296 3892 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
23:00:16.0296 3892 FsDepends - ok
23:00:16.0327 3892 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
23:00:16.0327 3892 Fs_Rec - ok
23:00:16.0358 3892 fvevol (b8b2a6e1558f8f5de5ce431c5b2c7b09) C:\Windows\system32\DRIVERS\fvevol.sys
23:00:16.0358 3892 fvevol - ok
23:00:16.0389 3892 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:00:16.0389 3892 gagp30kx - ok
23:00:16.0436 3892 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
23:00:16.0452 3892 gpsvc - ok
23:00:16.0483 3892 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
23:00:16.0483 3892 hcw85cir - ok
23:00:16.0561 3892 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
23:00:16.0561 3892 HdAudAddService - ok
23:00:16.0592 3892 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
23:00:16.0592 3892 HDAudBus - ok
23:00:16.0623 3892 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
23:00:16.0623 3892 HidBatt - ok
23:00:16.0655 3892 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
23:00:16.0655 3892 HidBth - ok
23:00:16.0670 3892 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
23:00:16.0670 3892 HidIr - ok
23:00:16.0686 3892 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
23:00:16.0686 3892 hidserv - ok
23:00:16.0733 3892 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
23:00:16.0733 3892 HidUsb - ok
23:00:16.0764 3892 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
23:00:16.0779 3892 hkmsvc - ok
23:00:16.0811 3892 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
23:00:16.0826 3892 HomeGroupListener - ok
23:00:16.0857 3892 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
23:00:16.0857 3892 HomeGroupProvider - ok
23:00:16.0920 3892 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
23:00:16.0920 3892 HpSAMD - ok
23:00:16.0982 3892 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
23:00:16.0982 3892 HTTP - ok
23:00:17.0029 3892 huawei_enumerator (6dbd08bc1331c78548298e82c4b667c5) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
23:00:17.0045 3892 huawei_enumerator - ok
23:00:17.0107 3892 hwdatacard (1701e3b3c1386219094d5c9017ef857b) C:\Windows\system32\DRIVERS\ewusbmdm.sys
23:00:17.0123 3892 hwdatacard - ok
23:00:17.0154 3892 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
23:00:17.0154 3892 hwpolicy - ok
23:00:17.0201 3892 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
23:00:17.0201 3892 i8042prt - ok
23:00:17.0263 3892 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys
23:00:17.0263 3892 iaStorV - ok
23:00:17.0279 3892 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
23:00:17.0294 3892 iirsp - ok
23:00:17.0357 3892 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
23:00:17.0372 3892 IKEEXT - ok
23:00:17.0481 3892 IntcAzAudAddService (b3fb479a7c0626499eb5989bc087cf8d) C:\Windows\system32\drivers\RTKVHD64.sys
23:00:17.0497 3892 IntcAzAudAddService - ok
23:00:17.0513 3892 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
23:00:17.0513 3892 intelide - ok
23:00:17.0559 3892 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
23:00:17.0559 3892 intelppm - ok
23:00:17.0606 3892 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
23:00:17.0606 3892 IPBusEnum - ok
23:00:17.0637 3892 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:00:17.0637 3892 IpFilterDriver - ok
23:00:17.0684 3892 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
23:00:17.0700 3892 iphlpsvc - ok
23:00:17.0700 3892 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
23:00:17.0715 3892 IPMIDRV - ok
23:00:17.0731 3892 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
23:00:17.0747 3892 IPNAT - ok
23:00:17.0778 3892 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
23:00:17.0778 3892 IRENUM - ok
23:00:17.0809 3892 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
23:00:17.0809 3892 isapnp - ok
23:00:17.0840 3892 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
23:00:17.0840 3892 iScsiPrt - ok
23:00:17.0856 3892 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
23:00:17.0856 3892 kbdclass - ok
23:00:17.0903 3892 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
23:00:17.0903 3892 kbdhid - ok
23:00:17.0949 3892 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
23:00:17.0949 3892 KeyIso - ok
23:00:17.0981 3892 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
23:00:17.0981 3892 KSecDD - ok
23:00:18.0012 3892 KSecPkg (bbe1bf6d9b661c354d4857d5fadb943b) C:\Windows\system32\Drivers\ksecpkg.sys
23:00:18.0012 3892 KSecPkg - ok
23:00:18.0059 3892 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
23:00:18.0059 3892 ksthunk - ok
23:00:18.0090 3892 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
23:00:18.0090 3892 KtmRm - ok
23:00:18.0137 3892 LanmanServer (c926920b8978de6acfe9e15c709e9b57) C:\Windows\system32\srvsvc.dll
23:00:18.0137 3892 LanmanServer - ok
23:00:18.0168 3892 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
23:00:18.0183 3892 LanmanWorkstation - ok
23:00:18.0261 3892 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
23:00:18.0277 3892 lltdio - ok
23:00:18.0324 3892 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
23:00:18.0324 3892 lltdsvc - ok
23:00:18.0339 3892 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
23:00:18.0355 3892 lmhosts - ok
23:00:18.0417 3892 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:00:18.0417 3892 LSI_FC - ok
23:00:18.0464 3892 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:00:18.0464 3892 LSI_SAS - ok
23:00:18.0495 3892 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:00:18.0495 3892 LSI_SAS2 - ok
23:00:18.0527 3892 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:00:18.0527 3892 LSI_SCSI - ok
23:00:18.0558 3892 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
23:00:18.0558 3892 luafv - ok
23:00:18.0620 3892 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
23:00:18.0620 3892 MBAMProtector - ok
23:00:18.0698 3892 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
23:00:18.0698 3892 MBAMService - ok
23:00:18.0714 3892 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
23:00:18.0714 3892 megasas - ok
23:00:18.0745 3892 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
23:00:18.0761 3892 MegaSR - ok
23:00:18.0823 3892 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
23:00:18.0823 3892 MMCSS - ok
23:00:18.0839 3892 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
23:00:18.0839 3892 Modem - ok
23:00:18.0885 3892 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
23:00:18.0885 3892 monitor - ok
23:00:18.0917 3892 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
23:00:18.0917 3892 mouclass - ok
23:00:18.0979 3892 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
23:00:18.0979 3892 mouhid - ok
23:00:19.0010 3892 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
23:00:19.0010 3892 mountmgr - ok
23:00:19.0041 3892 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
23:00:19.0041 3892 mpio - ok
23:00:19.0057 3892 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
23:00:19.0073 3892 mpsdrv - ok
23:00:19.0135 3892 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
23:00:19.0151 3892 MpsSvc - ok
23:00:19.0166 3892 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
23:00:19.0182 3892 MRxDAV - ok
23:00:19.0197 3892 mrxsmb (cfdcd8ca87c2a657debc150ac35b5e08) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:00:19.0197 3892 mrxsmb - ok
23:00:19.0244 3892 mrxsmb10 (1bee517b220b7f024f411aec1571dd5a) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:00:19.0244 3892 mrxsmb10 - ok
23:00:19.0260 3892 mrxsmb20 (6b2d5fef385828b6e485c1c90afb8195) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:00:19.0260 3892 mrxsmb20 - ok
23:00:19.0291 3892 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
23:00:19.0291 3892 msahci - ok
23:00:19.0307 3892 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
23:00:19.0322 3892 msdsm - ok
23:00:19.0338 3892 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
23:00:19.0353 3892 MSDTC - ok
23:00:19.0369 3892 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
23:00:19.0385 3892 Msfs - ok
23:00:19.0416 3892 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
23:00:19.0416 3892 mshidkmdf - ok
23:00:19.0463 3892 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
23:00:19.0463 3892 msisadrv - ok
23:00:19.0541 3892 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
23:00:19.0541 3892 MSiSCSI - ok
23:00:19.0556 3892 msiserver - ok
23:00:19.0603 3892 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
23:00:19.0603 3892 MSKSSRV - ok
23:00:19.0634 3892 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
23:00:19.0634 3892 MSPCLOCK - ok
23:00:19.0665 3892 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
23:00:19.0665 3892 MSPQM - ok
23:00:19.0712 3892 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
23:00:19.0712 3892 MsRPC - ok
23:00:19.0743 3892 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
23:00:19.0743 3892 mssmbios - ok
23:00:19.0775 3892 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
23:00:19.0775 3892 MSTEE - ok
23:00:19.0806 3892 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
23:00:19.0806 3892 MTConfig - ok
23:00:19.0853 3892 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
23:00:19.0853 3892 Mup - ok
23:00:19.0915 3892 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
23:00:19.0931 3892 napagent - ok
23:00:19.0962 3892 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
23:00:19.0977 3892 NativeWifiP - ok
23:00:20.0040 3892 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
23:00:20.0055 3892 NDIS - ok
23:00:20.0102 3892 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
23:00:20.0102 3892 NdisCap - ok
23:00:20.0149 3892 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
23:00:20.0149 3892 NdisTapi - ok
23:00:20.0180 3892 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
23:00:20.0180 3892 Ndisuio - ok
23:00:20.0196 3892 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
23:00:20.0211 3892 NdisWan - ok
23:00:20.0227 3892 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
23:00:20.0227 3892 NDProxy - ok
23:00:20.0274 3892 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
23:00:20.0274 3892 NetBIOS - ok
23:00:20.0321 3892 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
23:00:20.0321 3892 NetBT - ok
23:00:20.0383 3892 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
23:00:20.0383 3892 Netlogon - ok
23:00:20.0430 3892 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
23:00:20.0430 3892 Netman - ok
23:00:20.0477 3892 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
23:00:20.0477 3892 netprofm - ok
23:00:20.0523 3892 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
23:00:20.0523 3892 nfrd960 - ok
23:00:20.0586 3892 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
23:00:20.0586 3892 NlaSvc - ok
23:00:20.0601 3892 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
23:00:20.0617 3892 Npfs - ok
23:00:20.0648 3892 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
23:00:20.0648 3892 nsi - ok
23:00:20.0679 3892 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
23:00:20.0679 3892 nsiproxy - ok
23:00:20.0773 3892 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys
23:00:20.0804 3892 Ntfs - ok
23:00:20.0835 3892 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
23:00:20.0835 3892 Null - ok
23:00:20.0882 3892 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys
23:00:20.0882 3892 nvraid - ok
23:00:20.0913 3892 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys
23:00:20.0913 3892 nvstor - ok
23:00:20.0945 3892 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
23:00:20.0945 3892 nv_agp - ok
23:00:20.0976 3892 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
23:00:20.0976 3892 ohci1394 - ok
23:00:21.0069 3892 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
23:00:21.0085 3892 p2pimsvc - ok
23:00:21.0132 3892 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
23:00:21.0132 3892 p2psvc - ok
23:00:21.0163 3892 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
23:00:21.0163 3892 Parport - ok
23:00:21.0194 3892 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
23:00:21.0194 3892 partmgr - ok
23:00:21.0210 3892 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
23:00:21.0225 3892 PcaSvc - ok
23:00:21.0303 3892 pccsmcfd (bc0018c2d29f655188a0ed3fa94fdb24) C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
23:00:21.0303 3892 pccsmcfd - ok
23:00:21.0319 3892 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
23:00:21.0319 3892 pci - ok
23:00:21.0335 3892 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
23:00:21.0350 3892 pciide - ok
23:00:21.0397 3892 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
23:00:21.0397 3892 pcmcia - ok
23:00:21.0428 3892 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
23:00:21.0428 3892 pcw - ok
23:00:21.0475 3892 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
23:00:21.0475 3892 PEAUTH - ok
23:00:21.0615 3892 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
23:00:21.0631 3892 PeerDistSvc - ok
23:00:21.0693 3892 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
23:00:21.0709 3892 PerfHost - ok
23:00:21.0818 3892 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
23:00:21.0834 3892 pla - ok
23:00:21.0896 3892 PlugPlay (23157d583244400e1d7fbaee2e4b31b7) C:\Windows\system32\umpnpmgr.dll
23:00:21.0912 3892 PlugPlay - ok
23:00:21.0927 3892 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
23:00:21.0927 3892 PNRPAutoReg - ok
23:00:21.0974 3892 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
23:00:21.0974 3892 PNRPsvc - ok
23:00:22.0083 3892 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
23:00:22.0099 3892 PolicyAgent - ok
23:00:22.0146 3892 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
23:00:22.0146 3892 Power - ok
23:00:22.0239 3892 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
23:00:22.0255 3892 PptpMiniport - ok
23:00:22.0302 3892 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
23:00:22.0302 3892 Processor - ok
23:00:22.0380 3892 ProfSvc (f381975e1f4346de875cb07339ce8d3a) C:\Windows\system32\profsvc.dll
23:00:22.0395 3892 ProfSvc - ok
23:00:22.0442 3892 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
23:00:22.0442 3892 ProtectedStorage - ok
23:00:22.0489 3892 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
23:00:22.0489 3892 Psched - ok
23:00:22.0567 3892 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
23:00:22.0583 3892 ql2300 - ok
23:00:22.0598 3892 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
23:00:22.0614 3892 ql40xx - ok
23:00:22.0645 3892 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
23:00:22.0661 3892 QWAVE - ok
23:00:22.0676 3892 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
23:00:22.0676 3892 QWAVEdrv - ok
23:00:22.0707 3892 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
23:00:22.0707 3892 RasAcd - ok
23:00:22.0754 3892 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:00:22.0754 3892 RasAgileVpn - ok
23:00:22.0785 3892 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
23:00:22.0785 3892 RasAuto - ok
23:00:22.0817 3892 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:00:22.0817 3892 Rasl2tp - ok
23:00:22.0863 3892 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
23:00:22.0879 3892 RasMan - ok
23:00:22.0910 3892 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
23:00:22.0910 3892 RasPppoe - ok
23:00:22.0957 3892 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
23:00:22.0957 3892 RasSstp - ok
23:00:22.0988 3892 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
23:00:23.0004 3892 rdbss - ok
23:00:23.0019 3892 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
23:00:23.0019 3892 rdpbus - ok
23:00:23.0082 3892 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:00:23.0082 3892 RDPCDD - ok
23:00:23.0097 3892 RDPDR (9706b84dbabfc4b4ca46c5a82b14dfa3) C:\Windows\system32\drivers\rdpdr.sys
23:00:23.0113 3892 RDPDR - ok
23:00:23.0144 3892 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
23:00:23.0144 3892 RDPENCDD - ok
23:00:23.0175 3892 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
23:00:23.0191 3892 RDPREFMP - ok
23:00:23.0222 3892 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
23:00:23.0238 3892 RDPWD - ok
23:00:23.0253 3892 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
23:00:23.0269 3892 rdyboost - ok
23:00:23.0316 3892 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
23:00:23.0316 3892 RemoteAccess - ok
23:00:23.0363 3892 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
23:00:23.0378 3892 RemoteRegistry - ok
23:00:23.0409 3892 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
23:00:23.0409 3892 RpcEptMapper - ok
23:00:23.0456 3892 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
23:00:23.0456 3892 RpcLocator - ok
23:00:23.0487 3892 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
23:00:23.0503 3892 RpcSs - ok
23:00:23.0581 3892 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
23:00:23.0581 3892 rspndr - ok
23:00:23.0612 3892 s3cap (88af6e02ab19df7fd07ecdf9c91e9af6) C:\Windows\system32\DRIVERS\vms3cap.sys
23:00:23.0612 3892 s3cap - ok
23:00:23.0643 3892 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
23:00:23.0643 3892 SamSs - ok
23:00:23.0659 3892 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
23:00:23.0659 3892 sbp2port - ok
23:00:23.0706 3892 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
23:00:23.0721 3892 SCardSvr - ok
23:00:23.0737 3892 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
23:00:23.0753 3892 scfilter - ok
23:00:23.0799 3892 Schedule (ec56b171f85c7e855e7b0588ac503eea) C:\Windows\system32\schedsvc.dll
23:00:23.0815 3892 Schedule - ok
23:00:23.0862 3892 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
23:00:23.0862 3892 SCPolicySvc - ok
23:00:23.0877 3892 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
23:00:23.0893 3892 SDRSVC - ok
23:00:23.0924 3892 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
23:00:23.0924 3892 secdrv - ok
23:00:23.0955 3892 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
23:00:23.0955 3892 seclogon - ok
23:00:23.0987 3892 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
23:00:23.0987 3892 SENS - ok
23:00:24.0018 3892 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
23:00:24.0018 3892 SensrSvc - ok
23:00:24.0049 3892 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
23:00:24.0049 3892 Serenum - ok
23:00:24.0080 3892 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
23:00:24.0080 3892 Serial - ok
23:00:24.0111 3892 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
23:00:24.0111 3892 sermouse - ok
23:00:24.0236 3892 ServiceLayer (8c1f87f5fdd92229d1754b98f073913f) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
23:00:24.0252 3892 ServiceLayer - ok
23:00:24.0314 3892 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
23:00:24.0314 3892 SessionEnv - ok
23:00:24.0361 3892 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
23:00:24.0361 3892 sffdisk - ok
23:00:24.0392 3892 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
23:00:24.0392 3892 sffp_mmc - ok
23:00:24.0408 3892 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
23:00:24.0408 3892 sffp_sd - ok
23:00:24.0439 3892 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
23:00:24.0439 3892 sfloppy - ok
23:00:24.0501 3892 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
23:00:24.0501 3892 SharedAccess - ok
23:00:24.0548 3892 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
23:00:24.0564 3892 ShellHWDetection - ok
23:00:24.0657 3892 SiS6350 (43eaa1031dcd2d6be0f7d9624d5704cc) C:\Windows\system32\DRIVERS\SISGRKMD.sys
23:00:24.0657 3892 SiS6350 - ok
23:00:24.0735 3892 SISAGP (dcd65268f0a44e2062ed3fc86c39ca7e) C:\Windows\system32\DRIVERS\SISAGPX.sys
23:00:24.0735 3892 SISAGP - ok
23:00:24.0782 3892 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
23:00:24.0782 3892 SiSGbeLH - ok
23:00:24.0829 3892 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:00:24.0829 3892 SiSRaid2 - ok
23:00:24.0845 3892 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
23:00:24.0860 3892 SiSRaid4 - ok
23:00:24.0907 3892 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
23:00:24.0907 3892 Smb - ok
23:00:24.0969 3892 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
23:00:24.0985 3892 SNMPTRAP - ok
23:00:25.0001 3892 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
23:00:25.0001 3892 spldr - ok
23:00:25.0047 3892 Spooler (89e8550c5862999fcf482ea562b0e98e) C:\Windows\System32\spoolsv.exe
23:00:25.0047 3892 Spooler - ok
23:00:25.0219 3892 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
23:00:25.0250 3892 sppsvc - ok
23:00:25.0281 3892 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
23:00:25.0297 3892 sppuinotify - ok
23:00:25.0344 3892 srv (ec8f67289105bf270498095f14963464) C:\Windows\system32\DRIVERS\srv.sys
23:00:25.0344 3892 srv - ok
23:00:25.0375 3892 srv2 (f773d2ed090b7baa1c1a034f3ca476c8) C:\Windows\system32\DRIVERS\srv2.sys
23:00:25.0391 3892 srv2 - ok
23:00:25.0406 3892 srvnet (26e84d3649019c3244622e654dfcd75b) C:\Windows\system32\DRIVERS\srvnet.sys
23:00:25.0406 3892 srvnet - ok
23:00:25.0453 3892 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
23:00:25.0453 3892 SSDPSRV - ok
23:00:25.0484 3892 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
23:00:25.0500 3892 SstpSvc - ok
23:00:25.0515 3892 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
23:00:25.0531 3892 stexstor - ok
23:00:25.0578 3892 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
23:00:25.0578 3892 stisvc - ok
23:00:25.0640 3892 storflt (ffd7a6f15b14234b5b0e5d49e7961895) C:\Windows\system32\DRIVERS\vmstorfl.sys
23:00:25.0640 3892 storflt - ok
23:00:25.0749 3892 storvsc (8fccbefc5c440b3c23454656e551b09a) C:\Windows\system32\DRIVERS\storvsc.sys
23:00:25.0749 3892 storvsc - ok
23:00:25.0796 3892 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
23:00:25.0796 3892 swenum - ok
23:00:25.0859 3892 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
23:00:25.0859 3892 swprv - ok
23:00:25.0937 3892 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
23:00:25.0952 3892 SysMain - ok
23:00:25.0999 3892 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
23:00:25.0999 3892 TabletInputService - ok
23:00:26.0030 3892 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
23:00:26.0061 3892 TapiSrv - ok
23:00:26.0077 3892 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
23:00:26.0077 3892 TBS - ok
23:00:26.0186 3892 Tcpip (912107716bab424c7870e8e6af5e07e1) C:\Windows\system32\drivers\tcpip.sys
23:00:26.0202 3892 Tcpip - ok
23:00:26.0311 3892 TCPIP6 (912107716bab424c7870e8e6af5e07e1) C:\Windows\system32\DRIVERS\tcpip.sys
23:00:26.0327 3892 TCPIP6 - ok
23:00:26.0342 3892 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
23:00:26.0342 3892 tcpipreg - ok
23:00:26.0389 3892 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
23:00:26.0405 3892 TDPIPE - ok
23:00:26.0420 3892 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
23:00:26.0420 3892 TDTCP - ok
23:00:26.0451 3892 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
23:00:26.0467 3892 tdx - ok
23:00:26.0483 3892 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
23:00:26.0483 3892 TermDD - ok
23:00:26.0576 3892 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
23:00:26.0576 3892 TermService - ok
23:00:26.0654 3892 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
23:00:26.0654 3892 Themes - ok
23:00:26.0717 3892 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
23:00:26.0763 3892 THREADORDER - ok
23:00:26.0841 3892 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
23:00:26.0841 3892 TrkWks - ok
23:00:26.0951 3892 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
23:00:26.0966 3892 TrustedInstaller - ok
23:00:27.0060 3892 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:00:27.0060 3892 tssecsrv - ok
23:00:27.0091 3892 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
23:00:27.0091 3892 tunnel - ok
23:00:27.0122 3892 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
23:00:27.0122 3892 uagp35 - ok
23:00:27.0200 3892 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys
23:00:27.0200 3892 udfs - ok
23:00:27.0294 3892 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
23:00:27.0309 3892 UI0Detect - ok
23:00:27.0403 3892 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
23:00:27.0403 3892 uliagpkx - ok
23:00:27.0450 3892 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
23:00:27.0450 3892 umbus - ok
23:00:27.0481 3892 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
23:00:27.0497 3892 UmPass - ok
23:00:27.0543 3892 UmRdpService (af0ac98ee5077eb844413eb54287fde3) C:\Windows\System32\umrdp.dll
23:00:27.0543 3892 UmRdpService - ok
23:00:27.0590 3892 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
23:00:27.0606 3892 upnphost - ok
23:00:27.0637 3892 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys
23:00:27.0637 3892 usbccgp - ok
23:00:27.0684 3892 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
23:00:27.0684 3892 usbcir - ok
23:00:27.0746 3892 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys
23:00:27.0746 3892 usbehci - ok
23:00:27.0777 3892 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys
23:00:27.0777 3892 usbhub - ok
23:00:27.0809 3892 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
23:00:27.0809 3892 usbohci - ok
23:00:27.0871 3892 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
23:00:27.0871 3892 usbprint - ok
23:00:27.0902 3892 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:00:27.0902 3892 USBSTOR - ok
23:00:27.0918 3892 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
23:00:27.0918 3892 usbuhci - ok
23:00:27.0949 3892 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
23:00:27.0965 3892 UxSms - ok
23:00:28.0011 3892 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
23:00:28.0011 3892 VaultSvc - ok
23:00:28.0058 3892 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
23:00:28.0058 3892 vdrvroot - ok
23:00:28.0105 3892 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
23:00:28.0121 3892 vds - ok
23:00:28.0136 3892 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
23:00:28.0152 3892 vga - ok
23:00:28.0199 3892 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
23:00:28.0199 3892 VgaSave - ok
23:00:28.0230 3892 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
23:00:28.0245 3892 vhdmp - ok
23:00:28.0261 3892 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
23:00:28.0261 3892 viaide - ok
23:00:28.0308 3892 vmbus (1501699d7eda984abc4155a7da5738d1) C:\Windows\system32\DRIVERS\vmbus.sys
23:00:28.0323 3892 vmbus - ok
23:00:28.0370 3892 VMBusHID (ae10c35761889e65a6f7176937c5592c) C:\Windows\system32\DRIVERS\VMBusHID.sys
23:00:28.0370 3892 VMBusHID - ok
23:00:28.0464 3892 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
23:00:28.0464 3892 volmgr - ok
23:00:28.0557 3892 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
23:00:28.0557 3892 volmgrx - ok
23:00:28.0604 3892 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
23:00:28.0604 3892 volsnap - ok
23:00:28.0620 3892 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
23:00:28.0635 3892 vsmraid - ok
23:00:28.0823 3892 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
23:00:28.0854 3892 VSS - ok
23:00:28.0885 3892 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
23:00:28.0885 3892 vwifibus - ok
23:00:28.0947 3892 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
23:00:28.0947 3892 vwififlt - ok
23:00:28.0979 3892 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
23:00:28.0979 3892 W32Time - ok
23:00:29.0025 3892 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
23:00:29.0025 3892 WacomPen - ok
23:00:29.0088 3892 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
23:00:29.0088 3892 WANARP - ok
23:00:29.0119 3892 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
23:00:29.0119 3892 Wanarpv6 - ok
23:00:29.0181 3892 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
23:00:29.0213 3892 wbengine - ok
23:00:29.0275 3892 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
23:00:29.0275 3892 WbioSrvc - ok
23:00:29.0306 3892 wcncsvc (8321c2ca3b62b61b293cda3451984468) C:\Windows\System32\wcncsvc.dll
23:00:29.0322 3892 wcncsvc - ok
23:00:29.0353 3892 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
23:00:29.0353 3892 WcsPlugInService - ok
23:00:29.0384 3892 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
23:00:29.0384 3892 Wd - ok
23:00:29.0447 3892 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
23:00:29.0447 3892 Wdf01000 - ok
23:00:29.0509 3892 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
23:00:29.0509 3892 WdiServiceHost - ok
23:00:29.0525 3892 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
23:00:29.0525 3892 WdiSystemHost - ok
23:00:29.0571 3892 WebClient (8a438cbb8c032a0c798b0c642ffbe572) C:\Windows\System32\webclnt.dll
23:00:29.0571 3892 WebClient - ok
23:00:29.0618 3892 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
23:00:29.0618 3892 Wecsvc - ok
23:00:29.0665 3892 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
23:00:29.0681 3892 wercplsupport - ok
23:00:29.0743 3892 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
23:00:29.0743 3892 WerSvc - ok
23:00:29.0837 3892 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
23:00:29.0837 3892 WfpLwf - ok
23:00:29.0868 3892 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
23:00:29.0868 3892 WIMMount - ok
23:00:29.0915 3892 WinDefend - ok
23:00:29.0946 3892 WinHttpAutoProxySvc - ok
23:00:30.0055 3892 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
23:00:30.0055 3892 Winmgmt - ok
23:00:30.0164 3892 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
23:00:30.0180 3892 WinRM - ok
23:00:30.0289 3892 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
23:00:30.0305 3892 Wlansvc - ok
23:00:30.0383 3892 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
23:00:30.0383 3892 WmiAcpi - ok
23:00:30.0492 3892 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
23:00:30.0492 3892 wmiApSrv - ok
23:00:30.0554 3892 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
23:00:30.0570 3892 WPCSvc - ok
23:00:30.0632 3892 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
23:00:30.0632 3892 WPDBusEnum - ok
23:00:30.0679 3892 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
23:00:30.0679 3892 ws2ifsl - ok
23:00:30.0726 3892 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
23:00:30.0741 3892 wscsvc - ok
23:00:30.0757 3892 WSearch - ok
23:00:30.0897 3892 wuauserv (38340204a2d0228f1e87740fc5e554a7) C:\Windows\system32\wuaueng.dll
23:00:30.0944 3892 wuauserv - ok
23:00:31.0007 3892 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
23:00:31.0007 3892 WudfPf - ok
23:00:31.0069 3892 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:00:31.0069 3892 WUDFRd - ok
23:00:31.0100 3892 wudfsvc (b551d6637aa0e132c18ac6e504f7b79b) C:\Windows\System32\WUDFSvc.dll
23:00:31.0116 3892 wudfsvc - ok
23:00:31.0163 3892 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
23:00:31.0163 3892 WwanSvc - ok
23:00:31.0272 3892 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
23:00:31.0334 3892 \Device\Harddisk0\DR0 - ok
23:00:31.0334 3892 Boot (0x1200) (205b8bb09a98dd2fdf1b1e9f21ee954d) \Device\Harddisk0\DR0\Partition0
23:00:31.0350 3892 \Device\Harddisk0\DR0\Partition0 - ok
23:00:31.0365 3892 Boot (0x1200) (8bf02f7e5abbe10c77dab6502cbd1057) \Device\Harddisk0\DR0\Partition1
23:00:31.0365 3892 \Device\Harddisk0\DR0\Partition1 - ok
23:00:31.0397 3892 Boot (0x1200) (f44c20dc5aec520c12956ed8e39e0f77) \Device\Harddisk0\DR0\Partition2
23:00:31.0412 3892 \Device\Harddisk0\DR0\Partition2 - ok
23:00:31.0412 3892 ============================================================
23:00:31.0412 3892 Scan finished
23:00:31.0412 3892 ============================================================
23:00:31.0475 4080 Detected object count: 0
23:00:31.0475 4080 Actual detected object count: 0

[kominekl]

TDSSKiller.

OK.

[donosr]

Dostępne tylko dla zarejestrowanych użytkowników

Dostępne tylko dla zarejestrowanych użytkowników

[kominekl]

Ilość programów.

Zainstaluj sobie teraz to, co z góry wiesz, że będzie Ci jeszcze potrzebne, a następnie dorzuć log z Autoruns -> http://www.hotfix.pl/optymalizacja-auto ... s-a128.htm.

[donosr]

Dostępne tylko dla zarejestrowanych użytkowników

[kominekl]

W Autoruns odznacz, a następnie usuń (co się będzie dało):

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

RtHDVCpl
SiSTray
Skytel

HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run

Adobe ARM
Adobe Reader Speed Launcher
Malwarebytes' Anti-Malware
PC-Checkup

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components

Microsoft Windows

HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components

Microsoft Windows

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

PC Suite Tray

HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects

Wszystko.

HKLM\System\CurrentControlSet\Services

WinDefend

Logi.

Następnie podaj nowe logi z OTL.

[donosr]

Dostępne tylko dla zarejestrowanych użytkowników

Dostępne tylko dla zarejestrowanych użytkowników

[kominekl]

"{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1" = Panda USB Vaccine 1.0.1.4

Odinstaluj.

Logi.

Uruchom OTL -> w oknie Własne opcje skanowania/skrypt wklej:

:OTL

IE - HKU\S-1-5-21-227227063-680060081-2817858706-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Dostępne tylko dla zarejestrowanych użytkowników
IE - HKU\S-1-5-21-227227063-680060081-2817858706-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = Dostępne tylko dla zarejestrowanych użytkowników
IE - HKU\S-1-5-21-227227063-680060081-2817858706-1000\..\SearchScopes,DefaultScope = {24735BE4-9E1F-4FFD-B8F4-BBD05126FD2B}
IE - HKU\S-1-5-21-227227063-680060081-2817858706-1000\..\SearchScopes\{24735BE4-9E1F-4FFD-B8F4-BBD05126FD2B}: "URL" = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}&sa=Search+Here&client=pub-4642981363251965&forid=1&ie=ISO-8859-1&oe=ISO-8859-1&cof=GALT%3A%23008000%3BGL%3A1%3BDIV%3A%23336699%3BVLC%3A663399%3BAH%3Acenter%3BBGC%3AFFFFFF%3BLBGC%3A336699%3BALC%3A0000FF%3BLC%3A0000FF%3BT%3A000000%3BGF
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_3_300_270.dll File not found
[2012-08-09 13:31:30 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2012-08-09 13:31:21 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Panda USB Vaccine
[2012-08-09 12:34:01 | 000,000,000 | ---D | C] -- C:\Windows\Speeditup Free
[2012-08-09 12:34:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Speeditup Free
[2012-08-08 22:54:09 | 002,066,480 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Czonsi\Desktop\TDSSKiller.exe
[2012-08-08 22:48:04 | 000,000,000 | ---D | C] -- C:\Users\Czonsi\AppData\Local\Temp

:Files
C:\Windows\tasks\*.*
C:\Users\Czonsi\Documents\AutoRuns.rar
C:\Users\Czonsi\Documents\AutoRuns.arn

:Commands
[emptyflash]
[clearallrestorepoints]
[emptytemp]

Klikasz Wykonaj skrypt. Dajesz log z usuwania. Następnie podajesz nowe logi z OTL.

[donosr]

Dostępne tylko dla zarejestrowanych użytkowników

-- 10 sie 2012, 14:15 --

Dostępne tylko dla zarejestrowanych użytkowników

Dostępne tylko dla zarejestrowanych użytkowników

-- 10 sie 2012, 19:00 --

Sorki nie znam sie na tym podałem to co chciałeś ?

Dzięki za pomoc

[kominekl]

Logi.

W OTL -> Sprzątanie.

64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation

Zainstaluj SP1 -> Dostępne tylko dla zarejestrowanych użytkowników.

Internet Explorer (Version = 8.0.7600.16385)

Zaktualizuj IE do najnowszej wersji (nawet, jeśli Go nie używasz) -> Dostępne tylko dla zarejestrowanych użytkowników.

"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.0 - Polish

Odinstaluj i zainstaluj najnowszą wersję -> Dostępne tylko dla zarejestrowanych użytkowników.

"Windows 7 - Codec Pack" = Windows 7 Codec Pack 3.4.0

Odinstaluj i zainstaluj najnowszą wersję -> Dostępne tylko dla zarejestrowanych użytkowników.

"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)

Odinstaluj i zainstaluj najnowszą wersję -> Dostępne tylko dla zarejestrowanych użytkowników.

Kroki Finalizujące.

Przeczyść dysk i rejestr CCleaner`em -> Dostępne tylko dla zarejestrowanych użytkowników.
Wykonaj pełne skanowanie Malwarebytes`em Anti-Malware (nie gódź się na wersję testową) -> Dostępne tylko dla zarejestrowanych użytkowników, jeśli coś znajdzie usuń i daj raport.

[donosr]

a można inaczej bo korzystam z internetu na karte i pobranie tego pliku: Dostępne tylko dla zarejestrowanych użytkowników ... 32-X64.exe. kosztowało by mnie około 25zł tak że nie bardzo ;?(