Skocz do zawartości
WAŻNE - Użytkownicy uprawnieni do pomocy
WAŻNE - Zakładanie tematu: obowiązkowe logi
Nadchodzące zmiany w logowaniu

Trojan-Dropper.Agent!IK

exik

Przez exik
w Dział pomocy doraźnej

Rekomendowane odpowiedzi

exik

exik

Opublikowano
Opublikowano

Przeskanowałem hitmanem kompa i jeden ze skanerów wchodzących w skanery zawarte w hitmanie, a mianowicie - Ikarus znalazł Trojana.

Log:

HitmanPro 3.7.0.185
www.hitmanpro.com
  Computer name . . . . : GUCIU-AB0344915
  Windows . . . . . . . : 5.1.3.2600.X86/1
  User name . . . . . . : GUCIU-AB0344915\guciu
  License . . . . . . . : Free
  Scan date . . . . . . : 2013-01-04 12:56:06
  Scan mode . . . . . . : Normal
  Scan duration . . . . : 2m 11s
  Disk access mode  . . : Direct disk access (SRB)
  Cloud . . . . . . . . : Internet
  Reboot  . . . . . . . : No
  Threats . . . . . . . : 1
  Traces  . . . . . . . : 1
  Objects scanned . . . : 356 502
  Files scanned . . . . : 6 591
  Remnants scanned  . . : 55 113 files / 294 798 keys
Malware _____________________________________________________________________
  C:\WINDOWS\system32\sfdrvrem.exe
  Size . . . . . . . : 20 992 bytes
  Age  . . . . . . . : 11.7 days (2012-12-23 19:35:36)
  Entropy  . . . . . : 7.6
  SHA-256  . . . . . : 4E54DED7D153452E866309FBC1BFB273C974716854F5450FD64CAFC95544D0E2
  Product  . . . . . : StarForce Protection System
  Publisher  . . . . : Protection Technology
  Description  . . . : StarForce Protection Drivers Removal Tool
  Version  . . . . . : 0.0
  Copyright  . . . . : (c) Protection Technology, 2000-2004
> Ikarus . . . . . . : Trojan-Dropper.Agent!IK
  Fuzzy  . . . . . . : 113.0

 

 

Nie mogę nie wiem niestety czemu sprawdzić pliku na VT w celu testu na False Positive bo wyskakuje monit - Nie odnaleziono pliku. Znalazłem więc w necie jakiś temat w którym była w jakiś logach ścieżka c:\windows\system32\sfdrvrem.exe Skopiowałem ją na virustotal i mi przeskanowało

Raport VT: https://www.virustot...sis/1357302345/ + Raport jotti: http://virusscan.jot...3d68e22e22b020c

O dziwo tutaj Ikarus milczy, więc już nie wiem jak potraktować ten plik. A nie chce usunąć z systemu czegoś w ciemno ;/

Odnośnik do komentarza
Pomoc jest darmowa, ale proszę rozważ przekazanie dotacji na utrzymanie serwisu: klik.
jessica

jessica

Opublikowano
Opublikowano

Na Forum trafiłeś w bardzo złym momencie: @Picasso i @Landuss są na urlopach, a tu nie ma innych wyznaczonych osób do pomagania podczas ich nieobecności.

Nie wiem, kiedy tu się zjawią,

 

Przeskanowałeś na Virustotal ścieżkę, czy plik?

Skanowanie ścieżki nie ma sensu, musi być sam plik.

Na moje oko to Ikarus się myli.

Ale na wszelki wypadek daj log z TDSSKiller >http://www.fixitpc.p...3542#entry33542

Niczego niech TDSSKiller nie usuwa, tylko ma zrobić log (czyli jeśli coś wykryje, to daj na SKIP).

Jak z urlopu wróci @Picasso albo @Landuss, to oceni, czy to realne zagrożenie, czy też może tylko plik bez sygnatury.

.

Odnośnik do komentarza
exik

exik

Opublikowano
  • Autor
Opublikowano

Skan został przeprowadzony na standardowych opcjach tj. bez zaznaczonych

- Loaded modules

- Verifity file digital signatures

- TDFLS File system

 

Jak bedzie potrzebny pełniejszy skan to mam nadzieje że ktoś mnie nakieruje.

Póki co Raport skanu 'standard' (zagrożeń nie wykryto, jak coś)

22:17:00.0000 2100  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:17:00.0390 2100  ============================================================
22:17:00.0390 2100  Current date / time: 2013/01/04 22:17:00.0390
22:17:00.0390 2100  SystemInfo:
22:17:00.0390 2100
22:17:00.0390 2100  OS Version: 5.1.2600 ServicePack: 3.0
22:17:00.0390 2100  Product type: Workstation
22:17:00.0390 2100  ComputerName: GUCIU-AB0344915
22:17:00.0390 2100  UserName: guciu
22:17:00.0390 2100  Windows directory: C:\WINDOWS
22:17:00.0390 2100  System windows directory: C:\WINDOWS
22:17:00.0390 2100  Processor architecture: Intel x86
22:17:00.0390 2100  Number of processors: 1
22:17:00.0390 2100  Page size: 0x1000
22:17:00.0390 2100  Boot type: Normal boot
22:17:00.0390 2100  ============================================================
22:17:02.0484 2100  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:17:02.0484 2100  ============================================================
22:17:02.0484 2100  \Device\Harddisk0\DR0:
22:17:02.0484 2100  MBR partitions:
22:17:02.0484 2100  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x50014A7
22:17:02.0500 2100  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x5001525, BlocksNum 0xDA1759C
22:17:02.0500 2100  ============================================================
22:17:02.0515 2100  D: <-> \Device\Harddisk0\DR0\Partition2
22:17:02.0546 2100  C: <-> \Device\Harddisk0\DR0\Partition1
22:17:02.0546 2100  ============================================================
22:17:02.0546 2100  Initialize success
22:17:02.0546 2100  ============================================================
22:17:43.0796 2164  ============================================================
22:17:43.0796 2164  Scan started
22:17:43.0796 2164  Mode: Manual;
22:17:43.0796 2164  ============================================================
22:17:43.0953 2164  ================ Scan system memory ========================
22:17:43.0953 2164  System memory - ok
22:17:43.0968 2164  ================ Scan services =============================
22:17:44.0187 2164  Abiosdsk - ok
22:17:44.0218 2164  abp480n5 - ok
22:17:44.0281 2164  [ 05118282F5D039595A2B92B4A4AFE197 ] ACPI			C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:17:44.0296 2164  ACPI - ok
22:17:44.0359 2164  [ 66A42B7DB194E24B973BBCCE840A0F3F ] ACPIEC		  C:\WINDOWS\system32\drivers\ACPIEC.sys
22:17:44.0375 2164  ACPIEC - ok
22:17:44.0453 2164  [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:17:44.0500 2164  AdobeFlashPlayerUpdateSvc - ok
22:17:44.0531 2164  adpu160m - ok
22:17:44.0625 2164  [ 8BED39E3C35D6A489438B8141717A557 ] aec			 C:\WINDOWS\system32\drivers\aec.sys
22:17:44.0671 2164  aec - ok
22:17:44.0734 2164  [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD			 C:\WINDOWS\System32\drivers\afd.sys
22:17:44.0750 2164  AFD - ok
22:17:44.0796 2164  Aha154x - ok
22:17:44.0843 2164  aic78u2 - ok
22:17:44.0859 2164  aic78xx - ok
22:17:44.0921 2164  [ 27AF056D8C42F0AB3CF1DFDCBBEB3243 ] Alerter		 C:\WINDOWS\system32\alrsvc.dll
22:17:44.0937 2164  Alerter - ok
22:17:45.0000 2164  [ D1738DDDFF196C5CEE6D867C136AF745 ] ALG			 C:\WINDOWS\System32\alg.exe
22:17:45.0000 2164  ALG - ok
22:17:45.0046 2164  AliIde - ok
22:17:45.0062 2164  amsint - ok
22:17:45.0312 2164  [ D89562A6AE8E07A457452E5B5560EB43 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
22:17:45.0328 2164  AntiVirSchedulerService - ok
22:17:45.0359 2164  [ E953EB70B3C4F0BA108C35D45420B86B ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
22:17:45.0359 2164  AntiVirService - ok
22:17:45.0406 2164  [ 1561430DA2F2AB81CC0CE71AF95A778D ] AppMgmt		 C:\WINDOWS\System32\appmgmts.dll
22:17:45.0437 2164  AppMgmt - ok
22:17:45.0468 2164  asc - ok
22:17:45.0515 2164  asc3350p - ok
22:17:45.0546 2164  asc3550 - ok
22:17:45.0687 2164  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state	C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:17:45.0718 2164  aspnet_state - ok
22:17:45.0750 2164  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac		C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:17:45.0765 2164  AsyncMac - ok
22:17:45.0828 2164  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi		   C:\WINDOWS\system32\DRIVERS\atapi.sys
22:17:45.0843 2164  atapi - ok
22:17:45.0906 2164  Atdisk - ok
22:17:45.0937 2164  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc		 C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:17:45.0968 2164  Atmarpc - ok
22:17:46.0015 2164  [ 3A28D3E7BAD0EED3810CD918B2525B54 ] AudioSrv		C:\WINDOWS\System32\audiosrv.dll
22:17:46.0015 2164  AudioSrv - ok
22:17:46.0078 2164  [ D9F724AA26C010A217C97606B160ED68 ] audstub		 C:\WINDOWS\system32\DRIVERS\audstub.sys
22:17:46.0093 2164  audstub - ok
22:17:46.0171 2164  [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt		C:\WINDOWS\system32\DRIVERS\avgntflt.sys
22:17:46.0203 2164  avgntflt - ok
22:17:46.0250 2164  [ 0189056DDBF23C7DEF09D2B5999C5405 ] avipbb		  C:\WINDOWS\system32\DRIVERS\avipbb.sys
22:17:46.0281 2164  avipbb - ok
22:17:46.0343 2164  [ C304F287CE162CBA8AAF3CF1D31A64BD ] avkmgr		  C:\WINDOWS\system32\DRIVERS\avkmgr.sys
22:17:46.0359 2164  avkmgr - ok
22:17:46.0468 2164  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep			C:\WINDOWS\system32\drivers\Beep.sys
22:17:46.0484 2164  Beep - ok
22:17:46.0531 2164  [ 78200FAA6FD9C69394134C238C87FB7F ] BITS			C:\WINDOWS\system32\qmgr.dll
22:17:46.0578 2164  BITS - ok
22:17:46.0640 2164  [ 28CF58E8E2967275ECCCA577A4F2FEEF ] Browser		 C:\WINDOWS\System32\browser.dll
22:17:46.0640 2164  Browser - ok
22:17:46.0718 2164  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k		 C:\WINDOWS\system32\drivers\cbidf2k.sys
22:17:46.0718 2164  cbidf2k - ok
22:17:46.0765 2164  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE		C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:17:46.0765 2164  CCDECODE - ok
22:17:46.0796 2164  cd20xrnt - ok
22:17:46.0843 2164  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio		 C:\WINDOWS\system32\drivers\Cdaudio.sys
22:17:46.0859 2164  Cdaudio - ok
22:17:46.0921 2164  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs			C:\WINDOWS\system32\drivers\Cdfs.sys
22:17:46.0953 2164  Cdfs - ok
22:17:47.0015 2164  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom		   C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:17:47.0031 2164  Cdrom - ok
22:17:47.0062 2164  Changer - ok
22:17:47.0109 2164  [ 45B63DF2FB498D219FCBB4425CADE676 ] CiSvc		   C:\WINDOWS\system32\cisvc.exe
22:17:47.0125 2164  CiSvc - ok
22:17:47.0187 2164  [ C94F1B6F61858D6389C0FA06954FB9C4 ] ClipSrv		 C:\WINDOWS\system32\clipsrv.exe
22:17:47.0218 2164  ClipSrv - ok
22:17:47.0281 2164  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:17:47.0312 2164  clr_optimization_v2.0.50727_32 - ok
22:17:47.0406 2164  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:17:47.0437 2164  clr_optimization_v4.0.30319_32 - ok
22:17:47.0484 2164  CmdIde - ok
22:17:47.0515 2164  COMSysApp - ok
22:17:47.0593 2164  Cpqarray - ok
22:17:47.0656 2164  [ 6B105FE95F2E9F0B6346044BA59D41C9 ] CryptSvc		C:\WINDOWS\System32\cryptsvc.dll
22:17:47.0656 2164  CryptSvc - ok
22:17:47.0687 2164  dac2w2k - ok
22:17:47.0734 2164  dac960nt - ok
22:17:47.0796 2164  [ A37311D9D628C1042A2836731787F0F3 ] DcomLaunch	  C:\WINDOWS\system32\rpcss.dll
22:17:47.0812 2164  DcomLaunch - ok
22:17:47.0843 2164  [ 6B4AFE7C676CFF3EFF2DC06A4EE945F7 ] Dhcp			C:\WINDOWS\System32\dhcpcsvc.dll
22:17:47.0859 2164  Dhcp - ok
22:17:47.0906 2164  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk			C:\WINDOWS\system32\DRIVERS\disk.sys
22:17:47.0937 2164  Disk - ok
22:17:47.0968 2164  dmadmin - ok
22:17:48.0046 2164  [ BC9219ABC5696942E6F9AC8A9B28670F ] dmboot		  C:\WINDOWS\system32\drivers\dmboot.sys
22:17:48.0093 2164  dmboot - ok
22:17:48.0125 2164  [ 5FA232E3BA6E1346F9F5A7E519320CB0 ] dmio			C:\WINDOWS\system32\drivers\dmio.sys
22:17:48.0171 2164  dmio - ok
22:17:48.0234 2164  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload		  C:\WINDOWS\system32\drivers\dmload.sys
22:17:48.0250 2164  dmload - ok
22:17:48.0296 2164  [ D858920A05076914D34B0388E8D96CC0 ] dmserver		C:\WINDOWS\System32\dmserver.dll
22:17:48.0312 2164  dmserver - ok
22:17:48.0359 2164  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic		  C:\WINDOWS\system32\drivers\DMusic.sys
22:17:48.0375 2164  DMusic - ok
22:17:48.0406 2164  [ 4CE42967710BEB87AE805D9DA7A87499 ] Dnscache		C:\WINDOWS\System32\dnsrslvr.dll
22:17:48.0406 2164  Dnscache - ok
22:17:48.0453 2164  [ E0B7D66CF29D9ADCCF873C77821CD4CA ] Dot3svc		 C:\WINDOWS\System32\dot3svc.dll
22:17:48.0468 2164  Dot3svc - ok
22:17:48.0515 2164  dpti2o - ok
22:17:48.0578 2164  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud		 C:\WINDOWS\system32\drivers\drmkaud.sys
22:17:48.0578 2164  drmkaud - ok
22:17:48.0656 2164  [ 5F256C1AD50FEFDC442CD5AAB58C7DD8 ] EapHost		 C:\WINDOWS\System32\eapsvc.dll
22:17:48.0656 2164  EapHost - ok
22:17:48.0703 2164  [ ED1B71382C31FD2CF3CDC4672EFAD6EA ] ERSvc		   C:\WINDOWS\System32\ersvc.dll
22:17:48.0703 2164  ERSvc - ok
22:17:48.0781 2164  [ 02A467E27AF55F7064C5B251E587315F ] Eventlog		C:\WINDOWS\system32\services.exe
22:17:48.0781 2164  Eventlog - ok
22:17:48.0843 2164  [ 5BB3E442E43C7BB0F38203F23C920D3C ] EventSystem	 C:\WINDOWS\system32\es.dll
22:17:48.0843 2164  EventSystem - ok
22:17:48.0921 2164  [ 38D332A6D56AF32635675F132548343E ] Fastfat		 C:\WINDOWS\system32\drivers\Fastfat.sys
22:17:48.0953 2164  Fastfat - ok
22:17:49.0000 2164  [ 232D5719F86E05B7FE34F038D4FC84B2 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:17:49.0000 2164  FastUserSwitchingCompatibility - ok
22:17:49.0046 2164  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc			 C:\WINDOWS\system32\DRIVERS\fdc.sys
22:17:49.0062 2164  Fdc - ok
22:17:49.0125 2164  [ 09E2A4D33F81A06A8AAB2BA0A0B5D235 ] Fips			C:\WINDOWS\system32\drivers\Fips.sys
22:17:49.0156 2164  Fips - ok
22:17:49.0203 2164  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk		C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:17:49.0218 2164  Flpydisk - ok
22:17:49.0281 2164  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr		  C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:17:49.0312 2164  FltMgr - ok
22:17:49.0390 2164  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:17:49.0421 2164  FontCache3.0.0.0 - ok
22:17:49.0484 2164  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec		  C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:17:49.0500 2164  Fs_Rec - ok
22:17:49.0546 2164  [ ED6D921D8AB423138FB35BEEE6D6A6CB ] Ftdisk		  C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:17:49.0578 2164  Ftdisk - ok
22:17:49.0671 2164  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc			 C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:17:49.0671 2164  Gpc - ok
22:17:49.0750 2164  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus		C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:17:49.0750 2164  HDAudBus - ok
22:17:49.0828 2164  [ AF752014F7EB61542E3F35B9374D7E76 ] helpsvc		 C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:17:49.0828 2164  helpsvc - ok
22:17:49.0843 2164  HidServ - ok
22:17:49.0906 2164  [ F0273916DA6FB64CC88E0BD77619554F ] hkmsvc		  C:\WINDOWS\System32\kmsvc.dll
22:17:49.0937 2164  hkmsvc - ok
22:17:49.0984 2164  hpn - ok
22:17:50.0046 2164  [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412		C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:17:50.0046 2164  HPZid412 - ok
22:17:50.0125 2164  [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12		C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:17:50.0140 2164  HPZipr12 - ok
22:17:50.0187 2164  [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12		C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:17:50.0203 2164  HPZius12 - ok
22:17:50.0265 2164  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP			C:\WINDOWS\system32\Drivers\HTTP.sys
22:17:50.0281 2164  HTTP - ok
22:17:50.0343 2164  [ AA268079AC119F3A596E5E27AEE4BD17 ] HTTPFilter	  C:\WINDOWS\System32\w3ssl.dll
22:17:50.0343 2164  HTTPFilter - ok
22:17:50.0390 2164  i2omgmt - ok
22:17:50.0437 2164  i2omp - ok
22:17:50.0500 2164  [ 177B372AF55C4460D0968B5F1D02AA1C ] i8042prt		C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:17:50.0500 2164  i8042prt - ok
22:17:50.0593 2164  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc		   C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:17:50.0718 2164  idsvc - ok
22:17:50.0781 2164  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi		   C:\WINDOWS\system32\DRIVERS\imapi.sys
22:17:50.0812 2164  Imapi - ok
22:17:50.0859 2164  [ 9125AF650608A921F98A789E5C5BA864 ] ImapiService	C:\WINDOWS\system32\imapi.exe
22:17:50.0859 2164  ImapiService - ok
22:17:50.0953 2164  ini910u - ok
22:17:51.0125 2164  [ 284BCB80391783D328A8D8163E97FD58 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
22:17:51.0281 2164  IntcAzAudAddService - ok
22:17:51.0328 2164  IntelIde - ok
22:17:51.0375 2164  [ DA153EDC09DE8C4F846C085CAA39D1CC ] intelppm		C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:17:51.0390 2164  intelppm - ok
22:17:51.0421 2164  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw		   C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:17:51.0468 2164  Ip6Fw - ok
22:17:51.0531 2164  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:17:51.0546 2164  IpFilterDriver - ok
22:17:51.0609 2164  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp		  C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:17:51.0609 2164  IpInIp - ok
22:17:51.0671 2164  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat		   C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:17:51.0671 2164  IpNat - ok
22:17:51.0718 2164  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec		   C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:17:51.0750 2164  IPSec - ok
22:17:51.0812 2164  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM		  C:\WINDOWS\system32\DRIVERS\irenum.sys
22:17:51.0812 2164  IRENUM - ok
22:17:51.0890 2164  [ C8EEF2E93835B81BD335DE2123121283 ] isapnp		  C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:17:51.0906 2164  isapnp - ok
22:17:52.0000 2164  [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
22:17:52.0000 2164  JavaQuickStarterService - ok
22:17:52.0062 2164  [ C995C0E8B4503FAC38793BB0236AD246 ] JGOGO		   C:\WINDOWS\system32\DRIVERS\JGOGO.sys
22:17:52.0078 2164  JGOGO - ok
22:17:52.0125 2164  [ BD29E1A6FCDF66F5E3875DA88728FEB1 ] JRAID		   C:\WINDOWS\system32\DRIVERS\jraid.sys
22:17:52.0140 2164  JRAID - ok
22:17:52.0203 2164  [ 2AECA45D4AEAACBDCB77AD11184E4601 ] Kbdclass		C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:17:52.0203 2164  Kbdclass - ok
22:17:52.0250 2164  [ 692BCF44383D056AED41B045A323D378 ] kmixer		  C:\WINDOWS\system32\drivers\kmixer.sys
22:17:52.0296 2164  kmixer - ok
22:17:52.0375 2164  [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD		  C:\WINDOWS\system32\drivers\KSecDD.sys
22:17:52.0390 2164  KSecDD - ok
22:17:52.0453 2164  [ 061A4BB67C324AC8C176E0D77923B212 ] LanmanServer	C:\WINDOWS\System32\srvsvc.dll
22:17:52.0453 2164  LanmanServer - ok
22:17:52.0515 2164  [ 31D2FE1091E94354336B4E85DB818745 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:17:52.0531 2164  lanmanworkstation - ok
22:17:52.0593 2164  lbrtfdc - ok
22:17:52.0687 2164  [ 437AA83D68F9FAC234CA68DBD40DB705 ] LmHosts		 C:\WINDOWS\System32\lmhsvc.dll
22:17:52.0703 2164  LmHosts - ok
22:17:52.0750 2164  [ 36F3AB18B1BE303DA51DE90A67DE3942 ] Messenger	   C:\WINDOWS\System32\msgsvc.dll
22:17:52.0765 2164  Messenger - ok
22:17:52.0828 2164  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd		   C:\WINDOWS\system32\drivers\mnmdd.sys
22:17:52.0843 2164  mnmdd - ok
22:17:52.0906 2164  [ 845814A8CB9D704D030F076E1BCE83F3 ] mnmsrvc		 C:\WINDOWS\system32\mnmsrvc.exe
22:17:52.0921 2164  mnmsrvc - ok
22:17:52.0968 2164  [ 4A068DB7DC37D5AFEDB6512D2931D7B3 ] Modem		   C:\WINDOWS\system32\drivers\Modem.sys
22:17:52.0984 2164  Modem - ok
22:17:53.0046 2164  [ FBED3DF6B884F8CF00447B73507F2C48 ] Mouclass		C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:17:53.0062 2164  Mouclass - ok
22:17:53.0125 2164  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr		C:\WINDOWS\system32\drivers\MountMgr.sys
22:17:53.0156 2164  MountMgr - ok
22:17:53.0234 2164  [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:17:53.0250 2164  MozillaMaintenance - ok
22:17:53.0296 2164  mraid35x - ok
22:17:53.0375 2164  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV		  C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:17:53.0390 2164  MRxDAV - ok
22:17:53.0468 2164  [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb		  C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:17:53.0515 2164  MRxSmb - ok
22:17:53.0578 2164  [ A54C5EECC7D3424824410BAE0AA6C371 ] MSDTC		   C:\WINDOWS\system32\msdtc.exe
22:17:53.0609 2164  MSDTC - ok
22:17:53.0703 2164  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs			C:\WINDOWS\system32\drivers\Msfs.sys
22:17:53.0703 2164  Msfs - ok
22:17:53.0734 2164  MSIServer - ok
22:17:53.0781 2164  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV		 C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:17:53.0796 2164  MSKSSRV - ok
22:17:53.0859 2164  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK		C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:17:53.0859 2164  MSPCLOCK - ok
22:17:53.0906 2164  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM		   C:\WINDOWS\system32\drivers\MSPQM.sys
22:17:53.0921 2164  MSPQM - ok
22:17:54.0000 2164  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios		C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:17:54.0000 2164  mssmbios - ok
22:17:54.0062 2164  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE		   C:\WINDOWS\system32\drivers\MSTEE.sys
22:17:54.0093 2164  MSTEE - ok
22:17:54.0156 2164  [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor		C:\WINDOWS\system32\DRIVERS\ASACPI.sys
22:17:54.0171 2164  MTsensor - ok
22:17:54.0234 2164  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup			 C:\WINDOWS\system32\drivers\Mup.sys
22:17:54.0250 2164  Mup - ok
22:17:54.0312 2164  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC		C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:17:54.0328 2164  NABTSFEC - ok
22:17:54.0406 2164  [ 14CB8528E17D1221C50FC8CA88B1795F ] napagent		C:\WINDOWS\System32\qagentrt.dll
22:17:54.0437 2164  napagent - ok
22:17:54.0484 2164  [ 1DF7F42665C94B825322FAE71721130D ] NDIS			C:\WINDOWS\system32\drivers\NDIS.sys
22:17:54.0531 2164  NDIS - ok
22:17:54.0578 2164  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP		  C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:17:54.0593 2164  NdisIP - ok
22:17:54.0656 2164  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi		C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:17:54.0671 2164  NdisTapi - ok
22:17:54.0718 2164  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio		 C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:17:54.0750 2164  Ndisuio - ok
22:17:54.0828 2164  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan		 C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:17:54.0843 2164  NdisWan - ok
22:17:54.0890 2164  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy		 C:\WINDOWS\system32\drivers\NDProxy.sys
22:17:54.0906 2164  NDProxy - ok
22:17:54.0953 2164  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS		 C:\WINDOWS\system32\DRIVERS\netbios.sys
22:17:54.0968 2164  NetBIOS - ok
22:17:55.0015 2164  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT		   C:\WINDOWS\system32\DRIVERS\netbt.sys
22:17:55.0046 2164  NetBT - ok
22:17:55.0140 2164  [ CBB409B314309FCFFCE5E682E91338C6 ] NetDDE		  C:\WINDOWS\system32\netdde.exe
22:17:55.0156 2164  NetDDE - ok
22:17:55.0203 2164  [ CBB409B314309FCFFCE5E682E91338C6 ] NetDDEdsdm	  C:\WINDOWS\system32\netdde.exe
22:17:55.0203 2164  NetDDEdsdm - ok
22:17:55.0265 2164  [ 88296F7943F30A1EE3AF735440B92268 ] Netlogon		C:\WINDOWS\system32\lsass.exe
22:17:55.0265 2164  Netlogon - ok
22:17:55.0343 2164  [ 4FE97D0B1B182DF2A9BDD4C02155EF5E ] Netman		  C:\WINDOWS\System32\netman.dll
22:17:55.0343 2164  Netman - ok
22:17:55.0406 2164  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:17:55.0421 2164  NetTcpPortSharing - ok
22:17:55.0484 2164  [ BF80D884E1C60DED1C7CEA3EC6F9DC28 ] Nla			 C:\WINDOWS\System32\mswsock.dll
22:17:55.0484 2164  Nla - ok
22:17:55.0562 2164  [ 33A4B24A4C4DCF3C168E2C1151A62FC5 ] nmwcd		   C:\WINDOWS\system32\drivers\ccdcmb.sys
22:17:55.0562 2164  nmwcd - ok
22:17:55.0640 2164  [ A77265EF7BF998B8BB22A1A23E72B45D ] nmwcdc		  C:\WINDOWS\system32\drivers\ccdcmbo.sys
22:17:55.0656 2164  nmwcdc - ok
22:17:55.0718 2164  [ 62A8B306AACFC53D6FB08D8D36EAF61F ] nmwcdnsu		C:\WINDOWS\system32\drivers\nmwcdnsu.sys
22:17:55.0734 2164  nmwcdnsu - ok
22:17:55.0781 2164  [ C0AD13045C82CC9569595223C7568B7F ] nmwcdnsuc	   C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
22:17:55.0796 2164  nmwcdnsuc - ok
22:17:55.0859 2164  [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] npf			 C:\WINDOWS\system32\drivers\npf.sys
22:17:55.0890 2164  npf - ok
22:17:55.0937 2164  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs			C:\WINDOWS\system32\drivers\Npfs.sys
22:17:55.0953 2164  Npfs - ok
22:17:56.0015 2164  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs			C:\WINDOWS\system32\drivers\Ntfs.sys
22:17:56.0062 2164  Ntfs - ok
22:17:56.0109 2164  [ 88296F7943F30A1EE3AF735440B92268 ] NtLmSsp		 C:\WINDOWS\system32\lsass.exe
22:17:56.0109 2164  NtLmSsp - ok
22:17:56.0203 2164  [ 3FB5399DBB7001A80D58EDAD64C98225 ] NtmsSvc		 C:\WINDOWS\system32\ntmssvc.dll
22:17:56.0234 2164  NtmsSvc - ok
22:17:56.0296 2164  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null			C:\WINDOWS\system32\drivers\Null.sys
22:17:56.0312 2164  Null - ok
22:17:56.0609 2164  [ 9C35D1174D1BA71FB7949F418D566B68 ] nv			  C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:17:56.0906 2164  nv - ok
22:17:56.0984 2164  [ 97779B9580716DCB6B2392F51DD4D78B ] nvsvc		   C:\WINDOWS\system32\nvsvc32.exe
22:17:56.0984 2164  nvsvc - ok
22:17:57.0046 2164  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt		C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:17:57.0046 2164  NwlnkFlt - ok
22:17:57.0093 2164  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd		C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:17:57.0109 2164  NwlnkFwd - ok
22:17:57.0156 2164  [ 2D4CDAEBCED17743AA9E25D3016DC229 ] Parport		 C:\WINDOWS\system32\DRIVERS\parport.sys
22:17:57.0171 2164  Parport - ok
22:17:57.0234 2164  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr		 C:\WINDOWS\system32\drivers\PartMgr.sys
22:17:57.0250 2164  PartMgr - ok
22:17:57.0296 2164  [ 453EC2C2A20A1382F564541918520EEB ] ParVdm		  C:\WINDOWS\system32\drivers\ParVdm.sys
22:17:57.0312 2164  ParVdm - ok
22:17:57.0375 2164  [ F451DCACBAA67F3307305EBD4A39EA07 ] pccsmcfd		C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
22:17:57.0375 2164  pccsmcfd - ok
22:17:57.0437 2164  [ 6862C69168D787B85A7D95CCD33C694E ] PCI			 C:\WINDOWS\system32\DRIVERS\pci.sys
22:17:57.0453 2164  PCI - ok
22:17:57.0515 2164  PCIDump - ok
22:17:57.0562 2164  [ 548CF2D6369EAE441A4C6BAA75BC4F0A ] PCIIde		  C:\WINDOWS\system32\DRIVERS\pciide.sys
22:17:57.0578 2164  PCIIde - ok
22:17:57.0625 2164  [ 8DB27F1AE9593C94095485305A583862 ] Pcmcia		  C:\WINDOWS\system32\drivers\Pcmcia.sys
22:17:57.0640 2164  Pcmcia - ok
22:17:57.0671 2164  PDCOMP - ok
22:17:57.0703 2164  PDFRAME - ok
22:17:57.0750 2164  PDRELI - ok
22:17:57.0765 2164  PDRFRAME - ok
22:17:57.0812 2164  perc2 - ok
22:17:57.0859 2164  perc2hib - ok
22:17:57.0984 2164  [ 02A467E27AF55F7064C5B251E587315F ] PlugPlay		C:\WINDOWS\system32\services.exe
22:17:58.0000 2164  PlugPlay - ok
22:17:58.0046 2164  [ A38B3CE68E7F126190CDE4AA3FDF050F ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
22:17:58.0046 2164  Pml Driver HPZ12 - ok
22:17:58.0093 2164  [ 88296F7943F30A1EE3AF735440B92268 ] PolicyAgent	 C:\WINDOWS\system32\lsass.exe
22:17:58.0093 2164  PolicyAgent - ok
22:17:58.0156 2164  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport	C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:17:58.0171 2164  PptpMiniport - ok
22:17:58.0218 2164  [ 88296F7943F30A1EE3AF735440B92268 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:17:58.0218 2164  ProtectedStorage - ok
22:17:58.0281 2164  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched		  C:\WINDOWS\system32\DRIVERS\psched.sys
22:17:58.0312 2164  PSched - ok
22:17:58.0375 2164  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink		 C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:17:58.0390 2164  Ptilink - ok
22:17:58.0421 2164  ql1080 - ok
22:17:58.0468 2164  Ql10wnt - ok
22:17:58.0515 2164  ql12160 - ok
22:17:58.0578 2164  ql1240 - ok
22:17:58.0609 2164  ql1280 - ok
22:17:58.0671 2164  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd		  C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:17:58.0671 2164  RasAcd - ok
22:17:58.0718 2164  [ BC22C5E1238D4D36D65679E249C483C3 ] RasAuto		 C:\WINDOWS\System32\rasauto.dll
22:17:58.0734 2164  RasAuto - ok
22:17:58.0796 2164  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp		 C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:17:58.0828 2164  Rasl2tp - ok
22:17:58.0875 2164  [ 0C392E397B8D34AAAF19EC6119CBB788 ] RasMan		  C:\WINDOWS\System32\rasmans.dll
22:17:58.0890 2164  RasMan - ok
22:17:58.0937 2164  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe		C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:17:58.0953 2164  RasPppoe - ok
22:17:59.0000 2164  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti		  C:\WINDOWS\system32\DRIVERS\raspti.sys
22:17:59.0015 2164  Raspti - ok
22:17:59.0078 2164  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss		   C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:17:59.0140 2164  Rdbss - ok
22:17:59.0187 2164  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD		  C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:17:59.0203 2164  RDPCDD - ok
22:17:59.0296 2164  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr		   C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:17:59.0312 2164  rdpdr - ok
22:17:59.0390 2164  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD		   C:\WINDOWS\system32\drivers\RDPWD.sys
22:17:59.0421 2164  RDPWD - ok
22:17:59.0484 2164  [ F83907A9A038DB2E35329B039628D293 ] RDSessMgr	   C:\WINDOWS\system32\sessmgr.exe
22:17:59.0515 2164  RDSessMgr - ok
22:17:59.0578 2164  [ E0C7BBD18040B58651BAC700C804861D ] redbook		 C:\WINDOWS\system32\DRIVERS\redbook.sys
22:17:59.0593 2164  redbook - ok
22:17:59.0687 2164  [ B3F57E6115BCD4DBADE9874F300655E3 ] RemoteAccess	C:\WINDOWS\System32\mprdim.dll
22:17:59.0718 2164  RemoteAccess - ok
22:17:59.0750 2164  [ B472B59EF98469C91651B751D3442CB8 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
22:17:59.0750 2164  RemoteRegistry - ok
22:17:59.0796 2164  [ 6BC4D5A70F46EA27DDC14E5414C862A5 ] RpcLocator	  C:\WINDOWS\system32\locator.exe
22:17:59.0828 2164  RpcLocator - ok
22:17:59.0875 2164  [ A37311D9D628C1042A2836731787F0F3 ] RpcSs		   C:\WINDOWS\system32\rpcss.dll
22:17:59.0890 2164  RpcSs - ok
22:17:59.0937 2164  [ 9ACEE3313020A01235336C2A483AFD1A ] RSVP			C:\WINDOWS\system32\rsvp.exe
22:17:59.0968 2164  RSVP - ok
22:18:00.0031 2164  [ C8B370B2B520AC1B8BC66203FCEC73DB ] RTL8023xp	   C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
22:18:00.0046 2164  RTL8023xp - ok
22:18:00.0093 2164  [ 88296F7943F30A1EE3AF735440B92268 ] SamSs		   C:\WINDOWS\system32\lsass.exe
22:18:00.0093 2164  SamSs - ok
22:18:00.0156 2164  [ C6F479218E94896738C06AF5BA6AB3D3 ] SCardSvr		C:\WINDOWS\System32\SCardSvr.exe
22:18:00.0187 2164  SCardSvr - ok
22:18:00.0250 2164  [ DD73C11A5C4D14945846384B90A61A4B ] Schedule		C:\WINDOWS\system32\schedsvc.dll
22:18:00.0250 2164  Schedule - ok
22:18:00.0312 2164  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv		  C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:18:00.0328 2164  Secdrv - ok
22:18:00.0359 2164  [ 2AAD9026648120FFFE2A8D871BB2BBC7 ] seclogon		C:\WINDOWS\System32\seclogon.dll
22:18:00.0359 2164  seclogon - ok
22:18:00.0406 2164  [ 9D01E29D59723EB73B72107B208DAFE6 ] SENS			C:\WINDOWS\system32\sens.dll
22:18:00.0406 2164  SENS - ok
22:18:00.0437 2164  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum		 C:\WINDOWS\system32\DRIVERS\serenum.sys
22:18:00.0484 2164  serenum - ok
22:18:00.0531 2164  [ D07B02F88165E69B9F17162CF592C8A6 ] Serial		  C:\WINDOWS\system32\DRIVERS\serial.sys
22:18:00.0562 2164  Serial - ok
22:18:00.0656 2164  [ 9BDE8F1F5D060E912FCF9FB58B71CBC1 ] ServiceLayer	C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
22:18:00.0734 2164  ServiceLayer - ok
22:18:00.0937 2164  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy		 C:\WINDOWS\system32\drivers\Sfloppy.sys
22:18:00.0937 2164  Sfloppy - ok
22:18:01.0015 2164  [ 21A4C510AB071A10BCB638FE4254D101 ] sfsync04		C:\WINDOWS\system32\drivers\sfsync04.sys
22:18:01.0031 2164  sfsync04 - ok
22:18:01.0093 2164  [ 415E4EBF192A9D68C28DE0541BE48307 ] SharedAccess	C:\WINDOWS\System32\ipnathlp.dll
22:18:01.0093 2164  SharedAccess - ok
22:18:01.0156 2164  [ 232D5719F86E05B7FE34F038D4FC84B2 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:18:01.0156 2164  ShellHWDetection - ok
22:18:01.0203 2164  Simbad - ok
22:18:01.0281 2164  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP			C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:18:01.0296 2164  SLIP - ok
22:18:01.0375 2164  Sparrow - ok
22:18:01.0437 2164  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter		C:\WINDOWS\system32\drivers\splitter.sys
22:18:01.0437 2164  splitter - ok
22:18:01.0515 2164  [ 60784F891563FB1B767F70117FC2428F ] Spooler		 C:\WINDOWS\system32\spoolsv.exe
22:18:01.0531 2164  Spooler - ok
22:18:01.0593 2164  [ EB032822BE406EF220D546DDFFCF0002 ] sr			  C:\WINDOWS\system32\DRIVERS\sr.sys
22:18:01.0609 2164  sr - ok
22:18:01.0671 2164  [ 316D0E66074AE4CDE641C50D3A1C5148 ] srservice	   C:\WINDOWS\system32\srsvc.dll
22:18:01.0671 2164  srservice - ok
22:18:01.0750 2164  [ 9B390283569EA58D43D2586032B892F5 ] Srv			 C:\WINDOWS\system32\DRIVERS\srv.sys
22:18:01.0796 2164  Srv - ok
22:18:01.0843 2164  [ 2C0B1224AA36B4CA1753302BAA855882 ] SSDPSRV		 C:\WINDOWS\System32\ssdpsrv.dll
22:18:01.0859 2164  SSDPSRV - ok
22:18:01.0921 2164  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv		  C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
22:18:01.0937 2164  ssmdrv - ok
22:18:02.0000 2164  [ 41508EA375C97DC2B56E5F1AFC067187 ] stisvc		  C:\WINDOWS\system32\wiaservc.dll
22:18:02.0015 2164  stisvc - ok
22:18:02.0093 2164  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip		C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:18:02.0109 2164  streamip - ok
22:18:02.0156 2164  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum		  C:\WINDOWS\system32\DRIVERS\swenum.sys
22:18:02.0171 2164  swenum - ok
22:18:02.0234 2164  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi		  C:\WINDOWS\system32\drivers\swmidi.sys
22:18:02.0250 2164  swmidi - ok
22:18:02.0312 2164  SwPrv - ok
22:18:02.0375 2164  symc810 - ok
22:18:02.0421 2164  symc8xx - ok
22:18:02.0453 2164  sym_hi - ok
22:18:02.0500 2164  sym_u3 - ok
22:18:02.0546 2164  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio		C:\WINDOWS\system32\drivers\sysaudio.sys
22:18:02.0593 2164  sysaudio - ok
22:18:02.0656 2164  [ E42048198518F9162027A9984CBB7B5C ] SysmonLog	   C:\WINDOWS\system32\smlogsvc.exe
22:18:02.0671 2164  SysmonLog - ok
22:18:02.0734 2164  [ 2340E6977548038C88E39A9ECBB3FADC ] TapiSrv		 C:\WINDOWS\System32\tapisrv.dll
22:18:02.0734 2164  TapiSrv - ok
22:18:02.0796 2164  [ AD978A1B783B5719720CFF204B666C8E ] Tcpip		   C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:18:02.0875 2164  Tcpip - ok
22:18:02.0921 2164  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE		  C:\WINDOWS\system32\drivers\TDPIPE.sys
22:18:02.0937 2164  TDPIPE - ok
22:18:02.0968 2164  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP		   C:\WINDOWS\system32\drivers\TDTCP.sys
22:18:02.0984 2164  TDTCP - ok
22:18:03.0015 2164  [ 88155247177638048422893737429D9E ] TermDD		  C:\WINDOWS\system32\DRIVERS\termdd.sys
22:18:03.0046 2164  TermDD - ok
22:18:03.0093 2164  [ 652F3217E0EF16E628B6A74B140C118C ] TermService	 C:\WINDOWS\System32\termsrv.dll
22:18:03.0109 2164  TermService - ok
22:18:03.0156 2164  [ 232D5719F86E05B7FE34F038D4FC84B2 ] Themes		  C:\WINDOWS\System32\shsvcs.dll
22:18:03.0171 2164  Themes - ok
22:18:03.0218 2164  [ B17551AB6EAA71DCA530632C15FA3D9A ] TlntSvr		 C:\WINDOWS\system32\tlntsvr.exe
22:18:03.0250 2164  TlntSvr - ok
22:18:03.0265 2164  TosIde - ok
22:18:03.0328 2164  [ 9E70EB419D7785C286DC458A019BAB9B ] TrkWks		  C:\WINDOWS\system32\trkwks.dll
22:18:03.0328 2164  TrkWks - ok
22:18:03.0375 2164  [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35		  C:\WINDOWS\system32\DRIVERS\uagp35.sys
22:18:03.0406 2164  uagp35 - ok
22:18:03.0453 2164  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs			C:\WINDOWS\system32\drivers\Udfs.sys
22:18:03.0453 2164  Udfs - ok
22:18:03.0500 2164  ultra - ok
22:18:03.0562 2164  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update		  C:\WINDOWS\system32\DRIVERS\update.sys
22:18:03.0640 2164  Update - ok
22:18:03.0687 2164  [ E96A6BAEE0B2A14A38B45830D6E30697 ] upnphost		C:\WINDOWS\System32\upnphost.dll
22:18:03.0718 2164  upnphost - ok
22:18:03.0796 2164  [ B671514497DF7417F83919A6A5BD6BB9 ] upperdev		C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
22:18:03.0812 2164  upperdev - ok
22:18:03.0875 2164  [ EB90E28B28541EC845E5345609355CA7 ] UPS			 C:\WINDOWS\System32\ups.exe
22:18:03.0890 2164  UPS - ok
22:18:03.0953 2164  [ E919708DB44ED8543A7C017953148330 ] usbaudio		C:\WINDOWS\system32\drivers\usbaudio.sys
22:18:03.0984 2164  usbaudio - ok
22:18:04.0015 2164  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp		 C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:18:04.0031 2164  usbccgp - ok
22:18:04.0078 2164  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci		 C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:18:04.0093 2164  usbehci - ok
22:18:04.0140 2164  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub		  C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:18:04.0156 2164  usbhub - ok
22:18:04.0187 2164  [ A717C8721046828520C9EDF31288FC00 ] usbprint		C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:18:04.0203 2164  usbprint - ok
22:18:04.0234 2164  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan		 C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:18:04.0250 2164  usbscan - ok
22:18:04.0296 2164  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser		  C:\WINDOWS\system32\drivers\usbser.sys
22:18:04.0312 2164  usbser - ok
22:18:04.0375 2164  [ FF358FD3176B2E5605C4ACCD5026A5AC ] UsbserFilt	  C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
22:18:04.0390 2164  UsbserFilt - ok
22:18:04.0421 2164  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR		 C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:18:04.0437 2164  USBSTOR - ok
22:18:04.0468 2164  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci		 C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:18:04.0484 2164  usbuhci - ok
22:18:04.0546 2164  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo		C:\WINDOWS\system32\Drivers\usbvideo.sys
22:18:04.0578 2164  usbvideo - ok
22:18:04.0640 2164  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave		 C:\WINDOWS\System32\drivers\vga.sys
22:18:04.0656 2164  VgaSave - ok
22:18:04.0703 2164  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde		  C:\WINDOWS\system32\DRIVERS\viaide.sys
22:18:04.0718 2164  ViaIde - ok
22:18:04.0781 2164  [ C8EE49FA76EB7C41A9CDDFE58151A74E ] videX32		 C:\WINDOWS\system32\DRIVERS\videX32.sys
22:18:04.0796 2164  videX32 - ok
22:18:04.0843 2164  [ 56B191AC5FC0DF219949C95A6C87AFE7 ] VolSnap		 C:\WINDOWS\system32\drivers\VolSnap.sys
22:18:04.0859 2164  VolSnap - ok
22:18:04.0921 2164  [ 7F2D7BFFC4554E1C742DD3629FD1FB1B ] VSS			 C:\WINDOWS\System32\vssvc.exe
22:18:04.0984 2164  VSS - ok
22:18:05.0031 2164  [ DC5C15EBBEE3DC0A837C2D608A311C62 ] W32Time		 C:\WINDOWS\system32\w32time.dll
22:18:05.0031 2164  W32Time - ok
22:18:05.0109 2164  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp		  C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:18:05.0125 2164  Wanarp - ok
22:18:05.0203 2164  [ D918617B46457B9AC28027722E30F647 ] Wdf01000		C:\WINDOWS\system32\Drivers\wdf01000.sys
22:18:05.0265 2164  Wdf01000 - ok
22:18:05.0281 2164  WDICA - ok
22:18:05.0343 2164  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud		  C:\WINDOWS\system32\drivers\wdmaud.sys
22:18:05.0359 2164  wdmaud - ok
22:18:05.0421 2164  [ 81FB88B975E25D76E00B69879D8A434C ] WebClient	   C:\WINDOWS\System32\webclnt.dll
22:18:05.0421 2164  WebClient - ok
22:18:05.0515 2164  [ 70C22297534A88B0AD0568900AB5A6D9 ] winmgmt		 C:\WINDOWS\system32\wbem\WMIsvc.dll
22:18:05.0515 2164  winmgmt - ok
22:18:05.0640 2164  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN		C:\WINDOWS\system32\mspmsnsv.dll
22:18:05.0671 2164  WmdmPmSN - ok
22:18:05.0734 2164  [ AFCE55C392A9676BD24A287D5ED1C777 ] Wmi			 C:\WINDOWS\System32\advapi32.dll
22:18:05.0765 2164  Wmi - ok
22:18:05.0843 2164  [ A2B12D80A1670511B047A7D8BB647598 ] WmiApSrv		C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:18:05.0859 2164  WmiApSrv - ok
22:18:05.0937 2164  [ CDFA647AA82FDBA6C9C7A06155AFCB40 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
22:18:06.0031 2164  WMPNetworkSvc - ok
22:18:06.0140 2164  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:18:06.0203 2164  WPFFontCache_v0400 - ok
22:18:06.0312 2164  [ B6669F49D42E09BC0F9889FAA0F3336D ] wscsvc		  C:\WINDOWS\system32\wscsvc.dll
22:18:06.0312 2164  wscsvc - ok
22:18:06.0375 2164  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC		C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:18:06.0390 2164  WSTCODEC - ok
22:18:06.0421 2164  [ 04550D5EB7EE82C115DB547C01DF09FD ] wuauserv		C:\WINDOWS\system32\wuauserv.dll
22:18:06.0437 2164  wuauserv - ok
22:18:06.0484 2164  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf		  C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:18:06.0500 2164  WudfPf - ok
22:18:06.0578 2164  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd		  C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:18:06.0625 2164  WudfRd - ok
22:18:06.0687 2164  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc		 C:\WINDOWS\System32\WUDFSvc.dll
22:18:06.0687 2164  WudfSvc - ok
22:18:06.0750 2164  [ C2842273AAA77AC031EDB87FA19A2147 ] WZCSVC		  C:\WINDOWS\System32\wzcsvc.dll
22:18:06.0765 2164  WZCSVC - ok
22:18:06.0843 2164  [ FCBC27869092850CDB75139F3818653A ] xfilt		   C:\WINDOWS\system32\DRIVERS\xfilt.sys
22:18:06.0859 2164  xfilt - ok
22:18:06.0906 2164  [ 24ED6935771359A5AEF1FE8BF0C56F39 ] xmlprov		 C:\WINDOWS\System32\xmlprov.dll
22:18:06.0937 2164  xmlprov - ok
22:18:06.0968 2164  ================ Scan global ===============================
22:18:07.0031 2164  [ 65C782F8CFC1BEBCC58E1532F44B6408 ] C:\WINDOWS\system32\basesrv.dll
22:18:07.0093 2164  [ 19FEEF6CEDD18ADE51092B947DBBCB02 ] C:\WINDOWS\system32\winsrv.dll
22:18:07.0140 2164  [ 19FEEF6CEDD18ADE51092B947DBBCB02 ] C:\WINDOWS\system32\winsrv.dll
22:18:07.0187 2164  [ 02A467E27AF55F7064C5B251E587315F ] C:\WINDOWS\system32\services.exe
22:18:07.0187 2164  [Global] - ok
22:18:07.0203 2164  ================ Scan MBR ==================================
22:18:07.0234 2164  [ 32052574BF9F325AE309ABC7BFD04460 ] \Device\Harddisk0\DR0
22:18:07.0421 2164  \Device\Harddisk0\DR0 - ok
22:18:07.0437 2164  ================ Scan VBR ==================================
22:18:07.0453 2164  [ A633380F9D07C1585F16DC20C4581ED5 ] \Device\Harddisk0\DR0\Partition1
22:18:07.0453 2164  \Device\Harddisk0\DR0\Partition1 - ok
22:18:07.0500 2164  [ 14174F318E72EB11B013CF8589306F22 ] \Device\Harddisk0\DR0\Partition2
22:18:07.0500 2164  \Device\Harddisk0\DR0\Partition2 - ok
22:18:07.0500 2164  ============================================================
22:18:07.0500 2164  Scan finished
22:18:07.0500 2164  ============================================================
22:18:07.0578 2156  Detected object count: 0
22:18:07.0578 2156  Actual detected object count: 0

Odnośnik do komentarza
  • 5 tygodni później...
Gość
Ten temat został zamknięty. Brak możliwości dodania odpowiedzi.
Tematy

  • Ostatnio przeglądający   0 użytkowników

    • Brak zarejestrowanych użytkowników przeglądających tę stronę.
×
×
  • Dodaj nową pozycję...