Aiutamici Forum
Benvenuto Ospite Cerca | Topic Attivi | Utenti | | Log In | Registra

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Centro Sicurezza Pc Sparito

2 pages: [1] 2
Centro Sicurezza Pc Sparito Opzioni
Topic Precedente · Topic Sucessivo
kirk_69
Inviato: Friday, August 31, 2012 11:28:13 AM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
Ciao a tutti, mi sono portato avanti con il lavoro, seguendo altro topic con stesso problema,....vi allego le varie scansioni:







Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:24:33, on 31/08/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\System32\CtHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Windows\system32\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ilmattino.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: I&nvia a OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: Invia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: I&nvia a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Note collegate di OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} (Creative Software AutoUpdate 2) - http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 4548 bytes





10:55:16.0198 3568 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
10:55:17.0023 3568 ============================================================
10:55:17.0023 3568 Current date / time: 2012/08/31 10:55:17.0023
10:55:17.0023 3568 SystemInfo:
10:55:17.0023 3568
10:55:17.0023 3568 OS Version: 6.1.7601 ServicePack: 1.0
10:55:17.0023 3568 Product type: Workstation
10:55:17.0023 3568 ComputerName: WINDOWSSEVEN-PC
10:55:17.0024 3568 UserName: WindowsSeven
10:55:17.0024 3568 Windows directory: C:\Windows
10:55:17.0024 3568 System windows directory: C:\Windows
10:55:17.0024 3568 Processor architecture: Intel x86
10:55:17.0024 3568 Number of processors: 1
10:55:17.0024 3568 Page size: 0x1000
10:55:17.0024 3568 Boot type: Normal boot
10:55:17.0024 3568 ============================================================
10:55:24.0640 3568 Drive \Device\Harddisk1\DR1 - Size: 0x45DECD2000 (279.48 Gb), SectorSize: 0x200, Cylinders: 0x8E83, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:55:24.0651 3568 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:55:24.0715 3568 ============================================================
10:55:24.0716 3568 \Device\Harddisk1\DR1:
10:55:24.0716 3568 MBR partitions:
10:55:24.0716 3568 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x9C25FE
10:55:24.0716 3568 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x9C263D, BlocksNum 0xC7FE9C3
10:55:24.0716 3568 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0xD1C1000, BlocksNum 0x15D35000
10:55:24.0716 3568 \Device\Harddisk0\DR0:
10:55:24.0716 3568 MBR partitions:
10:55:24.0716 3568 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
10:55:24.0716 3568 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F2CC, BlocksNum 0x2E035975
10:55:24.0716 3568 ============================================================
10:55:24.0720 3568 C: <-> \Device\Harddisk0\DR0\Partition1
10:55:24.0762 3568 D: <-> \Device\Harddisk1\DR1\Partition2
10:55:24.0822 3568 E: <-> \Device\Harddisk0\DR0\Partition2
10:55:24.0823 3568 F: <-> \Device\Harddisk1\DR1\Partition1
10:55:24.0899 3568 G: <-> \Device\Harddisk1\DR1\Partition3
10:55:24.0899 3568 ============================================================
10:55:24.0899 3568 Initialize success
10:55:24.0899 3568 ============================================================
10:55:35.0967 3452 ============================================================
10:55:35.0967 3452 Scan started
10:55:35.0967 3452 Mode: Manual;
10:55:35.0967 3452 ============================================================
10:55:36.0724 3452 ================ Scan system memory ========================
10:55:36.0724 3452 System memory - ok
10:55:36.0733 3452 ================ Scan services =============================
10:55:36.0908 3452 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
10:55:36.0931 3452 1394ohci - ok
10:55:36.0949 3452 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:55:36.0956 3452 ACPI - ok
10:55:36.0970 3452 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:55:36.0989 3452 AcpiPmi - ok
10:55:37.0143 3452 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:55:37.0150 3452 AdobeFlashPlayerUpdateSvc - ok
10:55:37.0187 3452 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:55:37.0228 3452 adp94xx - ok
10:55:37.0249 3452 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:55:37.0283 3452 adpahci - ok
10:55:37.0299 3452 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:55:37.0322 3452 adpu320 - ok
10:55:37.0356 3452 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:55:37.0357 3452 AeLookupSvc - ok
10:55:37.0412 3452 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
10:55:37.0416 3452 AFD - ok
10:55:37.0437 3452 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
10:55:37.0438 3452 agp440 - ok
10:55:37.0460 3452 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
10:55:37.0461 3452 aic78xx - ok
10:55:37.0489 3452 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
10:55:37.0490 3452 ALG - ok
10:55:37.0504 3452 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
10:55:37.0504 3452 aliide - ok
10:55:37.0543 3452 [ B19505648F033393E907E2E419FDE8B3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:55:37.0546 3452 AMD External Events Utility - ok
10:55:37.0561 3452 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
10:55:37.0562 3452 amdagp - ok
10:55:37.0577 3452 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
10:55:37.0597 3452 amdide - ok
10:55:37.0612 3452 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:55:37.0613 3452 AmdK8 - ok
10:55:37.0628 3452 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
10:55:37.0629 3452 AmdPPM - ok
10:55:37.0666 3452 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:55:37.0686 3452 amdsata - ok
10:55:37.0703 3452 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
10:55:37.0707 3452 amdsbs - ok
10:55:37.0726 3452 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:55:37.0748 3452 amdxata - ok
10:55:37.0763 3452 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
10:55:37.0807 3452 AppID - ok
10:55:37.0833 3452 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:55:37.0836 3452 AppIDSvc - ok
10:55:37.0850 3452 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
10:55:37.0853 3452 Appinfo - ok
10:55:37.0870 3452 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
10:55:37.0872 3452 AppMgmt - ok
10:55:37.0888 3452 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
10:55:37.0889 3452 arc - ok
10:55:37.0905 3452 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:55:37.0924 3452 arcsas - ok
10:55:37.0949 3452 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:55:37.0970 3452 AsyncMac - ok
10:55:37.0983 3452 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
10:55:37.0984 3452 atapi - ok
10:55:38.0070 3452 [ CFE432E8EEACBCEA3DBF53EA76978A65 ] athr C:\Windows\system32\DRIVERS\athr.sys
10:55:38.0161 3452 athr - ok
10:55:38.0311 3452 [ 712D8A95E45B070114C5309ADA7358FF ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:55:38.0400 3452 atikmdag - ok
10:55:38.0433 3452 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:55:38.0442 3452 AudioEndpointBuilder - ok
10:55:38.0466 3452 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
10:55:38.0472 3452 Audiosrv - ok
10:55:38.0503 3452 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:55:38.0507 3452 AxInstSV - ok
10:55:38.0535 3452 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
10:55:38.0541 3452 b06bdrv - ok
10:55:38.0571 3452 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
10:55:38.0617 3452 b57nd60x - ok
10:55:38.0648 3452 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
10:55:38.0650 3452 BDESVC - ok
10:55:38.0663 3452 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
10:55:38.0683 3452 Beep - ok
10:55:38.0713 3452 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
10:55:38.0723 3452 BFE - ok
10:55:38.0757 3452 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
10:55:38.0770 3452 BITS - ok
10:55:38.0783 3452 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:55:38.0804 3452 blbdrive - ok
10:55:38.0837 3452 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:55:38.0860 3452 bowser - ok
10:55:38.0874 3452 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
10:55:38.0877 3452 BrFiltLo - ok
10:55:38.0891 3452 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
10:55:38.0893 3452 BrFiltUp - ok
10:55:38.0937 3452 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
10:55:38.0940 3452 Browser - ok
10:55:38.0958 3452 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:55:38.0963 3452 Brserid - ok
10:55:38.0977 3452 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:55:38.0978 3452 BrSerWdm - ok
10:55:38.0992 3452 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:55:38.0996 3452 BrUsbMdm - ok
10:55:39.0009 3452 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:55:39.0012 3452 BrUsbSer - ok
10:55:39.0027 3452 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:55:39.0048 3452 BTHMODEM - ok
10:55:39.0076 3452 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
10:55:39.0079 3452 bthserv - ok
10:55:39.0098 3452 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:55:39.0122 3452 cdfs - ok
10:55:39.0142 3452 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:55:39.0182 3452 cdrom - ok
10:55:39.0208 3452 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
10:55:39.0208 3452 CertPropSvc - ok
10:55:39.0223 3452 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
10:55:39.0224 3452 circlass - ok
10:55:39.0250 3452 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
10:55:39.0255 3452 CLFS - ok
10:55:39.0309 3452 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:55:39.0313 3452 clr_optimization_v2.0.50727_32 - ok
10:55:39.0326 3452 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
10:55:39.0327 3452 CmBatt - ok
10:55:39.0342 3452 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:55:39.0343 3452 cmdide - ok
10:55:39.0375 3452 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
10:55:39.0386 3452 CNG - ok
10:55:39.0419 3452 [ EF44C32B1AEF62380426B260BF2C66F1 ] COMMONFX C:\Windows\system32\drivers\COMMONFX.SYS
10:55:39.0433 3452 COMMONFX - ok
10:55:39.0458 3452 COMMONFX.DLL - ok
10:55:39.0479 3452 [ EF44C32B1AEF62380426B260BF2C66F1 ] COMMONFX.SYS C:\Windows\System32\drivers\COMMONFX.SYS
10:55:39.0480 3452 COMMONFX.SYS - ok
10:55:39.0495 3452 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\drivers\compbatt.sys
10:55:39.0496 3452 Compbatt - ok
10:55:39.0510 3452 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:55:39.0514 3452 CompositeBus - ok
10:55:39.0530 3452 COMSysApp - ok
10:55:39.0543 3452 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:55:39.0564 3452 crcdisk - ok
10:55:39.0641 3452 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
10:55:39.0644 3452 Creative Audio Engine Licensing Service - ok
10:55:39.0700 3452 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:55:39.0702 3452 CryptSvc - ok
10:55:39.0721 3452 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
10:55:39.0768 3452 CSC - ok
10:55:39.0808 3452 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
10:55:39.0820 3452 CscService - ok
10:55:39.0843 3452 [ 6191A973461852A09D643609E1D5F7C6 ] CT20XUT.DLL C:\Windows\system32\CT20XUT.DLL
10:55:39.0846 3452 CT20XUT.DLL - ok
10:55:39.0889 3452 [ 357C534B38019B597F51C8BF7186C118 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
10:55:39.0921 3452 ctac32k - ok
10:55:39.0953 3452 [ 691F8259A1F9C983356D8DB2CDE8043C ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
10:55:39.0987 3452 ctaud2k - ok
10:55:40.0018 3452 [ 7FC78AA6521EF3D9F16E51EFAB0BF13B ] CTAUDFX C:\Windows\system32\drivers\CTAUDFX.SYS
10:55:40.0026 3452 CTAUDFX - ok
10:55:40.0041 3452 CTAUDFX.DLL - ok
10:55:40.0070 3452 [ 7FC78AA6521EF3D9F16E51EFAB0BF13B ] CTAUDFX.SYS C:\Windows\System32\drivers\CTAUDFX.SYS
10:55:40.0074 3452 CTAUDFX.SYS - ok
10:55:40.0137 3452 [ 5CE3D0E1D1B3832EE052CFC442EEE0FA ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
10:55:40.0144 3452 CTAudSvcService - ok
10:55:40.0182 3452 [ 8545D70B0335A05498F34E7E3F8CA9A2 ] ctdvda2k C:\Windows\system32\drivers\ctdvda2k.sys
10:55:40.0188 3452 ctdvda2k - ok
10:55:40.0212 3452 [ 6A57F82009563AEE8826F117E1D3C72C ] CTEAPSFX.DLL C:\Windows\system32\CTEAPSFX.DLL
10:55:40.0217 3452 CTEAPSFX.DLL - ok
10:55:40.0236 3452 [ C8AC1FFAEADD655193D7B1811A572D8D ] CTEDSPFX.DLL C:\Windows\system32\CTEDSPFX.DLL
10:55:40.0243 3452 CTEDSPFX.DLL - ok
10:55:40.0260 3452 [ 44495D9DAF675257D00B25B041EE6667 ] CTEDSPIO.DLL C:\Windows\system32\CTEDSPIO.DLL
10:55:40.0262 3452 CTEDSPIO.DLL - ok
10:55:40.0282 3452 [ 8E90B1762CB42E2FC76DAC9210C83C66 ] CTEDSPSY.DLL C:\Windows\system32\CTEDSPSY.DLL
10:55:40.0290 3452 CTEDSPSY.DLL - ok
10:55:40.0311 3452 [ 16F448354067914E7DEAEA709011BD60 ] CTERFXFX C:\Windows\system32\drivers\CTERFXFX.SYS
10:55:40.0312 3452 CTERFXFX - ok
10:55:40.0327 3452 CTERFXFX.DLL - ok
10:55:40.0342 3452 [ 16F448354067914E7DEAEA709011BD60 ] CTERFXFX.SYS C:\Windows\System32\drivers\CTERFXFX.SYS
10:55:40.0343 3452 CTERFXFX.SYS - ok
10:55:40.0383 3452 [ 2C48E9D8CA703964463F27AE341115B7 ] CTEXFIFX.DLL C:\Windows\system32\CTEXFIFX.DLL
10:55:40.0407 3452 CTEXFIFX.DLL - ok
10:55:40.0431 3452 [ F7657C598E7C29C6683C1E4A8DD68884 ] CTHWIUT.DLL C:\Windows\system32\CTHWIUT.DLL
10:55:40.0434 3452 CTHWIUT.DLL - ok
10:55:40.0451 3452 [ 4D71541283AEA28FB839007BE90B5FC7 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
10:55:40.0470 3452 ctprxy2k - ok
10:55:40.0494 3452 [ 64C83684661BE137023F5186A612CF34 ] CTSBLFX C:\Windows\system32\drivers\CTSBLFX.SYS
10:55:40.0501 3452 CTSBLFX - ok
10:55:40.0514 3452 CTSBLFX.DLL - ok
10:55:40.0540 3452 [ 64C83684661BE137023F5186A612CF34 ] CTSBLFX.SYS C:\Windows\System32\drivers\CTSBLFX.SYS
10:55:40.0544 3452 CTSBLFX.SYS - ok
10:55:40.0574 3452 [ 632194572EBDE8D461728CF382A7E964 ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
10:55:40.0599 3452 ctsfm2k - ok
10:55:40.0637 3452 [ A522912EDB7900E09FA8F65ABC3E8C90 ] dc21x4vm C:\Windows\system32\DRIVERS\dc21x4vm.sys
10:55:40.0638 3452 dc21x4vm - ok
10:55:40.0677 3452 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
10:55:40.0683 3452 DcomLaunch - ok
10:55:40.0729 3452 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
10:55:40.0732 3452 defragsvc - ok
10:55:40.0758 3452 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:55:40.0780 3452 DfsC - ok
10:55:40.0819 3452 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
10:55:40.0822 3452 Dhcp - ok
10:55:40.0837 3452 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
10:55:40.0860 3452 discache - ok
10:55:40.0876 3452 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
10:55:40.0877 3452 Disk - ok
10:55:40.0892 3452 [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
10:55:40.0893 3452 dmvsc - ok
10:55:40.0921 3452 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:55:40.0923 3452 Dnscache - ok
10:55:40.0952 3452 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
10:55:40.0957 3452 dot3svc - ok
10:55:40.0976 3452 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
10:55:40.0979 3452 DPS - ok
10:55:41.0017 3452 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:55:41.0018 3452 drmkaud - ok
10:55:41.0044 3452 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:55:41.0184 3452 DXGKrnl - ok
10:55:41.0221 3452 [ AF82DC664E3D8E2CBA3B95E68F6448A7 ] eamon C:\Windows\system32\DRIVERS\eamon.sys
10:55:41.0228 3452 eamon - ok
10:55:41.0247 3452 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
10:55:41.0252 3452 EapHost - ok
10:55:41.0333 3452 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
10:55:41.0415 3452 ebdrv - ok
10:55:41.0450 3452 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
10:55:41.0457 3452 EFS - ok
10:55:41.0629 3452 [ 686A799C1BF1B18941994DAF9F45DB06 ] ehdrv C:\Windows\system32\DRIVERS\ehdrv.sys
10:55:41.0666 3452 ehdrv - ok
10:55:41.0874 3452 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:55:41.0879 3452 ehRecvr - ok
10:55:41.0906 3452 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
10:55:41.0907 3452 ehSched - ok
10:55:41.0954 3452 [ 9329BA45C8B97485926A171E34C2ABB8 ] EhttpSrv C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
10:55:41.0958 3452 EhttpSrv - ok
10:55:41.0989 3452 [ 3543C6195D5ED4EDA0316D3E1BA0E6EE ] ekrn C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
10:55:41.0998 3452 ekrn - ok
10:55:42.0049 3452 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:55:42.0099 3452 elxstor - ok
10:55:42.0126 3452 [ BACD9CC06D7A787E529E7EBF56B671AA ] emupia C:\Windows\system32\drivers\emupia2k.sys
10:55:42.0149 3452 emupia - ok
10:55:42.0170 3452 [ 8700EADC8BDFA27D948FCC43EE0AE434 ] epfwwfpr C:\Windows\system32\DRIVERS\epfwwfpr.sys
10:55:42.0192 3452 epfwwfpr - ok
10:55:42.0211 3452 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:55:42.0232 3452 ErrDev - ok
10:55:42.0290 3452 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
10:55:42.0296 3452 EventSystem - ok
10:55:42.0321 3452 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
10:55:42.0346 3452 exfat - ok
10:55:42.0361 3452 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:55:42.0385 3452 fastfat - ok
10:55:42.0413 3452 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
10:55:42.0418 3452 Fax - ok
10:55:42.0433 3452 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys
10:55:42.0473 3452 fdc - ok
10:55:42.0496 3452 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
10:55:42.0500 3452 fdPHost - ok
10:55:42.0513 3452 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
10:55:42.0519 3452 FDResPub - ok
10:55:42.0533 3452 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:55:42.0557 3452 FileInfo - ok
10:55:42.0572 3452 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:55:42.0593 3452 Filetrace - ok
10:55:42.0606 3452 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
10:55:42.0608 3452 flpydisk - ok
10:55:42.0625 3452 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:55:42.0652 3452 FltMgr - ok
10:55:42.0690 3452 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
10:55:42.0698 3452 FontCache - ok
10:55:42.0755 3452 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:55:42.0771 3452 FontCache3.0.0.0 - ok
10:55:42.0787 3452 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:55:42.0807 3452 FsDepends - ok
10:55:42.0847 3452 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:55:42.0866 3452 Fs_Rec - ok
10:55:42.0883 3452 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:55:42.0887 3452 fvevol - ok
10:55:42.0903 3452 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:55:42.0922 3452 gagp30kx - ok
10:55:42.0958 3452 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
10:55:42.0968 3452 gpsvc - ok
10:55:43.0013 3452 [ 70606233F3ED0E53CB3EA17F846D6A4F ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys
10:55:43.0055 3452 ha10kx2k - ok
10:55:43.0083 3452 [ A0C69AD2A61E576B0207ACDD9626E167 ] hap16v2k C:\Windows\system32\drivers\hap16v2k.sys
10:55:43.0107 3452 hap16v2k - ok
10:55:43.0136 3452 [ 2EE89452C574D259ADA4FC9FC1C07243 ] hap17v2k C:\Windows\system32\drivers\hap17v2k.sys
10:55:43.0139 3452 hap17v2k - ok
10:55:43.0163 3452 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:55:43.0164 3452 hcw85cir - ok
10:55:43.0191 3452 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:55:43.0195 3452 HDAudBus - ok
10:55:43.0209 3452 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
10:55:43.0210 3452 HidBatt - ok
10:55:43.0226 3452 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:55:43.0253 3452 HidBth - ok
10:55:43.0275 3452 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
10:55:43.0296 3452 HidIr - ok
10:55:43.0317 3452 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
10:55:43.0321 3452 hidserv - ok
10:55:43.0337 3452 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:55:43.0359 3452 HidUsb - ok
10:55:43.0387 3452 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:55:43.0389 3452 hkmsvc - ok
10:55:43.0412 3452 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:55:43.0416 3452 HomeGroupListener - ok
10:55:43.0440 3452 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:55:43.0447 3452 HomeGroupProvider - ok
10:55:43.0460 3452 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:55:43.0505 3452 HpSAMD - ok
10:55:43.0529 3452 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:55:43.0539 3452 HTTP - ok
10:55:43.0553 3452 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:55:43.0554 3452 hwpolicy - ok
10:55:43.0570 3452 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:55:43.0591 3452 i8042prt - ok
10:55:43.0623 3452 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:55:43.0647 3452 iaStorV - ok
10:55:43.0708 3452 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:55:43.0717 3452 idsvc - ok
10:55:43.0745 3452 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:55:43.0771 3452 iirsp - ok
10:55:43.0808 3452 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
10:55:43.0815 3452 IKEEXT - ok
10:55:43.0834 3452 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
10:55:43.0835 3452 intelide - ok
10:55:43.0851 3452 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\drivers\intelppm.sys
10:55:43.0852 3452 intelppm - ok
10:55:43.0872 3452 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:55:43.0877 3452 IPBusEnum - ok
10:55:43.0892 3452 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:55:43.0914 3452 IpFilterDriver - ok
10:55:43.0946 3452 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:55:43.0954 3452 iphlpsvc - ok
10:55:43.0969 3452 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:55:43.0970 3452 IPMIDRV - ok
10:55:43.0988 3452 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:55:43.0990 3452 IPNAT - ok
10:55:44.0010 3452 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:55:44.0032 3452 IRENUM - ok
10:55:44.0044 3452 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:55:44.0082 3452 isapnp - ok
10:55:44.0107 3452 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:55:44.0134 3452 iScsiPrt - ok
10:55:44.0156 3452 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:55:44.0178 3452 kbdclass - ok
10:55:44.0192 3452 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:55:44.0212 3452 kbdhid - ok
10:55:44.0233 3452 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
10:55:44.0236 3452 KeyIso - ok
10:55:44.0266 3452 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:55:44.0268 3452 KSecDD - ok
10:55:44.0285 3452 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:55:44.0322 3452 KSecPkg - ok
10:55:44.0357 3452 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
10:55:44.0366 3452 KtmRm - ok
10:55:44.0416 3452 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
10:55:44.0421 3452 LanmanServer - ok
10:55:44.0447 3452 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:55:44.0455 3452 LanmanWorkstation - ok
10:55:44.0487 3452 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:55:44.0509 3452 lltdio - ok
10:55:44.0540 3452 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:55:44.0546 3452 lltdsvc - ok
10:55:44.0559 3452 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
10:55:44.0563 3452 lmhosts - ok
10:55:44.0588 3452 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:55:44.0609 3452 LSI_FC - ok
10:55:44.0625 3452 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:55:44.0647 3452 LSI_SAS - ok
10:55:44.0667 3452 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
10:55:44.0706 3452 LSI_SAS2 - ok
10:55:44.0722 3452 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:55:44.0750 3452 LSI_SCSI - ok
10:55:44.0765 3452 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
10:55:44.0791 3452 luafv - ok
10:55:44.0816 3452 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:55:44.0820 3452 Mcx2Svc - ok
10:55:44.0834 3452 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
10:55:44.0836 3452 megasas - ok
10:55:44.0855 3452 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
10:55:44.0859 3452 MegaSR - ok
10:55:44.0879 3452 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
10:55:44.0885 3452 MMCSS - ok
10:55:44.0901 3452 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
10:55:44.0923 3452 Modem - ok
10:55:44.0938 3452 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:55:44.0975 3452 monitor - ok
10:55:44.0991 3452 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:55:45.0012 3452 mouclass - ok
10:55:45.0027 3452 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:55:45.0055 3452 mouhid - ok
10:55:45.0071 3452 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:55:45.0073 3452 mountmgr - ok
10:55:45.0089 3452 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
10:55:45.0128 3452 mpio - ok
10:55:45.0144 3452 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:55:45.0166 3452 mpsdrv - ok
10:55:45.0196 3452 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:55:45.0208 3452 MpsSvc - ok
10:55:45.0224 3452 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:55:45.0226 3452 MRxDAV - ok
10:55:45.0262 3452 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:55:45.0285 3452 mrxsmb - ok
10:55:45.0308 3452 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:55:45.0333 3452 mrxsmb10 - ok
10:55:45.0350 3452 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:55:45.0372 3452 mrxsmb20 - ok
10:55:45.0393 3452 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
10:55:45.0416 3452 msahci - ok
10:55:45.0432 3452 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:55:45.0454 3452 msdsm - ok
10:55:45.0478 3452 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
10:55:45.0483 3452 MSDTC - ok
10:55:45.0502 3452 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:55:45.0523 3452 Msfs - ok
10:55:45.0538 3452 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:55:45.0562 3452 mshidkmdf - ok
10:55:45.0577 3452 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:55:45.0599 3452 msisadrv - ok
10:55:45.0647 3452 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:55:45.0651 3452 MSiSCSI - ok
10:55:45.0664 3452 msiserver - ok
10:55:45.0687 3452 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:55:45.0690 3452 MSKSSRV - ok
10:55:45.0704 3452 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:55:45.0724 3452 MSPCLOCK - ok
10:55:45.0740 3452 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:55:45.0741 3452 MSPQM - ok
10:55:45.0758 3452 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:55:45.0762 3452 MsRPC - ok
10:55:45.0790 3452 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:55:45.0830 3452 mssmbios - ok
10:55:45.0842 3452 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:55:45.0862 3452 MSTEE - ok
10:55:45.0875 3452 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
10:55:45.0875 3452 MTConfig - ok
10:55:45.0891 3452 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
10:55:45.0896 3452 Mup - ok
10:55:46.0043 3452 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
10:55:46.0054 3452 napagent - ok
10:55:46.0229 3452 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:55:46.0262 3452 NativeWifiP - ok
10:55:46.0290 3452 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:55:46.0337 3452 NDIS - ok
10:55:46.0353 3452 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:55:46.0375 3452 NdisCap - ok
10:55:46.0390 3452 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:55:46.0393 3452 NdisTapi - ok
10:55:46.0410 3452 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:55:46.0430 3452 Ndisuio - ok
10:55:46.0445 3452 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:55:46.0467 3452 NdisWan - ok
10:55:46.0483 3452 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:55:46.0520 3452 NDProxy - ok
10:55:46.0535 3452 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:55:46.0574 3452 NetBIOS - ok
10:55:46.0596 3452 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:55:46.0619 3452 NetBT - ok
10:55:46.0641 3452 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
10:55:46.0643 3452 Netlogon - ok
10:55:46.0692 3452 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
10:55:46.0700 3452 Netman - ok
10:55:46.0719 3452 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
10:55:46.0729 3452 netprofm - ok
10:55:46.0756 3452 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:55:46.0758 3452 NetTcpPortSharing - ok
10:55:46.0779 3452 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:55:46.0806 3452 nfrd960 - ok
10:55:46.0835 3452 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:55:46.0842 3452 NlaSvc - ok
10:55:46.0860 3452 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:55:46.0882 3452 Npfs - ok
10:55:46.0901 3452 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
10:55:46.0906 3452 nsi - ok
10:55:46.0920 3452 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:55:46.0921 3452 nsiproxy - ok
10:55:46.0973 3452 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:55:47.0001 3452 Ntfs - ok
10:55:47.0028 3452 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
10:55:47.0046 3452 Null - ok
10:55:47.0071 3452 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:55:47.0091 3452 nvraid - ok
10:55:47.0128 3452 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:55:47.0131 3452 nvstor - ok
10:55:47.0149 3452 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:55:47.0150 3452 nv_agp - ok
10:55:47.0169 3452 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:55:47.0173 3452 ohci1394 - ok
10:55:47.0246 3452 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:55:47.0248 3452 ose - ok
10:55:47.0409 3452 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:55:47.0443 3452 osppsvc - ok
10:55:47.0466 3452 [ AE896073E1BBF98FEFC2EC52F62C0FBA ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
10:55:47.0488 3452 ossrv - ok
10:55:47.0520 3452 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:55:47.0524 3452 p2pimsvc - ok
10:55:47.0548 3452 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
10:55:47.0555 3452 p2psvc - ok
10:55:47.0573 3452 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:55:47.0596 3452 Parport - ok
10:55:47.0628 3452 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:55:47.0666 3452 partmgr - ok
10:55:47.0679 3452 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
10:55:47.0701 3452 Parvdm - ok
10:55:47.0716 3452 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:55:47.0720 3452 PcaSvc - ok
10:55:47.0743 3452 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
10:55:47.0765 3452 pci - ok
10:55:47.0779 3452 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
10:55:47.0799 3452 pciide - ok
10:55:47.0818 3452 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:55:47.0841 3452 pcmcia - ok
10:55:47.0857 3452 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
10:55:47.0859 3452 pcw - ok
10:55:47.0896 3452 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:55:47.0909 3452 PEAUTH - ok
10:55:47.0954 3452 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
10:55:47.0979 3452 PeerDistSvc - ok
10:55:48.0049 3452 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
10:55:48.0063 3452 pla - ok
10:55:48.0096 3452 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:55:48.0102 3452 PlugPlay - ok
10:55:48.0123 3452 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:55:48.0127 3452 PNRPAutoReg - ok
10:55:48.0150 3452 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:55:48.0156 3452 PNRPsvc - ok
10:55:48.0187 3452 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:55:48.0194 3452 PolicyAgent - ok
10:55:48.0229 3452 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
10:55:48.0233 3452 Power - ok
10:55:48.0249 3452 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:55:48.0272 3452 PptpMiniport - ok
10:55:48.0292 3452 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys
10:55:48.0313 3452 Processor - ok
10:55:48.0344 3452 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
10:55:48.0348 3452 ProfSvc - ok
10:55:48.0367 3452 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:55:48.0369 3452 ProtectedStorage - ok
10:55:48.0396 3452 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:55:48.0418 3452 Psched - ok
10:55:48.0457 3452 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:55:48.0479 3452 ql2300 - ok
10:55:48.0494 3452 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:55:48.0516 3452 ql40xx - ok
10:55:48.0542 3452 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
10:55:48.0552 3452 QWAVE - ok
10:55:48.0567 3452 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:55:48.0568 3452 QWAVEdrv - ok
10:55:48.0583 3452 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:55:48.0583 3452 RasAcd - ok
10:55:48.0608 3452 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:55:48.0629 3452 RasAgileVpn - ok
10:55:48.0643 3452 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
10:55:48.0651 3452 RasAuto - ok
10:55:48.0666 3452 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:55:48.0688 3452 Rasl2tp - ok
10:55:48.0717 3452 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
10:55:48.0724 3452 RasMan - ok
10:55:48.0740 3452 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:55:48.0764 3452 RasPppoe - ok
10:55:48.0779 3452 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:55:48.0827 3452 RasSstp - ok
10:55:48.0848 3452 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:55:48.0889 3452 rdbss - ok
10:55:48.0910 3452 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:55:48.0931 3452 rdpbus - ok
10:55:48.0944 3452 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:55:48.0945 3452 RDPCDD - ok
10:55:48.0970 3452 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
10:55:48.0977 3452 RDPDR - ok
10:55:49.0000 3452 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:55:49.0019 3452 RDPENCDD - ok
10:55:49.0040 3452 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:55:49.0040 3452 RDPREFMP - ok
10:55:49.0084 3452 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:55:49.0084 3452 RdpVideoMiniport - ok
10:55:49.0119 3452 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:55:49.0142 3452 RDPWD - ok
10:55:49.0159 3452 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:55:49.0184 3452 rdyboost - ok
10:55:49.0224 3452 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
10:55:49.0229 3452 RemoteAccess - ok
10:55:49.0253 3452 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:55:49.0260 3452 RemoteRegistry - ok
10:55:49.0278 3452 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:55:49.0285 3452 RpcEptMapper - ok
10:55:49.0311 3452 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
10:55:49.0316 3452 RpcLocator - ok
10:55:49.0340 3452 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
10:55:49.0347 3452 RpcSs - ok
10:55:49.0362 3452 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:55:49.0438 3452 rspndr - ok
10:55:49.0471 3452 [ 4A9F49D1B7E67F7AB9595B61126E81FD ] RTL8023xp C:\Windows\system32\DRIVERS\Rtnicxp.sys
10:55:49.0491 3452 RTL8023xp - ok
10:55:49.0518 3452 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
10:55:49.0537 3452 s3cap - ok
10:55:49.0558 3452 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
10:55:49.0560 3452 SamSs - ok
10:55:49.0583 3452 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:55:49.0584 3452 sbp2port - ok
10:55:49.0608 3452 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:55:49.0616 3452 SCardSvr - ok
10:55:49.0628 3452 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:55:49.0634 3452 scfilter - ok
10:55:49.0672 3452 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
10:55:49.0680 3452 Schedule - ok
10:55:49.0699 3452 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:55:49.0701 3452 SCPolicySvc - ok
10:55:49.0726 3452 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:55:49.0732 3452 SDRSVC - ok
10:55:49.0757 3452 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:55:49.0778 3452 secdrv - ok
10:55:49.0791 3452 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
10:55:49.0797 3452 seclogon - ok
10:55:49.0821 3452 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
10:55:49.0828 3452 SENS - ok
10:55:49.0847 3452 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:55:49.0852 3452 SensrSvc - ok
10:55:49.0872 3452 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\drivers\serenum.sys
10:55:49.0873 3452 Serenum - ok
10:55:49.0889 3452 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\drivers\serial.sys
10:55:49.0890 3452 Serial - ok
10:55:49.0906 3452 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:55:49.0907 3452 sermouse - ok
10:55:49.0943 3452 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
10:55:49.0952 3452 SessionEnv - ok
10:55:49.0966 3452 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:55:49.0986 3452 sffdisk - ok
10:55:50.0000 3452 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:55:50.0021 3452 sffp_mmc - ok
10:55:50.0036 3452 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:55:50.0037 3452 sffp_sd - ok
10:55:50.0051 3452 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:55:50.0052 3452 sfloppy - ok
10:55:50.0077 3452 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:55:50.0085 3452 SharedAccess - ok
10:55:50.0116 3452 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:55:50.0132 3452 ShellHWDetection - ok
10:55:50.0152 3452 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
10:55:50.0153 3452 sisagp - ok
10:55:50.0168 3452 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
10:55:50.0206 3452 SiSRaid2 - ok
10:55:50.0222 3452 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:55:50.0262 3452 SiSRaid4 - ok
10:55:50.0556 3452 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
10:55:50.0601 3452 SkypeUpdate - ok
10:55:50.0618 3452 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:55:50.0643 3452 Smb - ok
10:55:50.0671 3452 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:55:50.0677 3452 SNMPTRAP - ok
10:55:50.0690 3452 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
10:55:50.0693 3452 spldr - ok
10:55:50.0716 3452 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
10:55:50.0724 3452 Spooler - ok
10:55:50.0802 3452 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
10:55:50.0830 3452 sppsvc - ok
10:55:50.0852 3452 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:55:50.0856 3452 sppuinotify - ok
10:55:50.0882 3452 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:55:50.0922 3452 srv - ok
10:55:50.0966 3452 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:55:51.0000 3452 srv2 - ok
10:55:51.0037 3452 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:55:51.0074 3452 srvnet - ok
10:55:51.0100 3452 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:55:51.0107 3452 SSDPSRV - ok
10:55:51.0124 3452 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:55:51.0131 3452 SstpSvc - ok
10:55:51.0153 3452 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys
10:55:51.0174 3452 stexstor - ok
10:55:51.0225 3452 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
10:55:51.0236 3452 StiSvc - ok
10:55:51.0260 3452 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
10:55:51.0261 3452 storflt - ok
10:55:51.0280 3452 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
10:55:51.0282 3452 storvsc - ok
10:55:51.0294 3452 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:55:51.0299 3452 swenum - ok
10:55:51.0327 3452 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
10:55:51.0333 3452 swprv - ok
10:55:51.0364 3452 [ F2AD8960812FD111E20E84659EF19D43 ] Synth3dVsc C:\Windows\system32\drivers\Synth3dVsc.sys
10:55:51.0366 3452 Synth3dVsc - ok
10:55:51.0414 3452 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
10:55:51.0443 3452 SysMain - ok
10:55:51.0476 3452 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:55:51.0479 3452 TabletInputService - ok
10:55:51.0498 3452 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
10:55:51.0504 3452 TapiSrv - ok
10:55:51.0526 3452 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
10:55:51.0532 3452 TBS - ok
10:55:51.0584 3452 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:55:51.0654 3452 Tcpip - ok
10:55:51.0697 3452 [ 7FA2E0F8B072BD04B77B421480B6CC22 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:55:51.0708 3452 TCPIP6 - ok
10:55:51.0740 3452 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:55:51.0776 3452 tcpipreg - ok
10:55:51.0794 3452 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:55:51.0838 3452 TDPIPE - ok
10:55:51.0870 3452 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:55:51.0889 3452 TDTCP - ok
10:55:51.0906 3452 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:55:51.0951 3452 tdx - ok
10:55:51.0966 3452 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:55:51.0987 3452 TermDD - ok
10:55:52.0002 3452 [ 052306FD76793D5D5AB5D9891FD1ADBB ] terminpt C:\Windows\system32\drivers\terminpt.sys
10:55:52.0041 3452 terminpt - ok
10:55:52.0070 3452 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
10:55:52.0079 3452 TermService - ok
10:55:52.0098 3452 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
10:55:52.0104 3452 Themes - ok
10:55:52.0130 3452 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
10:55:52.0135 3452 THREADORDER - ok
10:55:52.0164 3452 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
10:55:52.0169 3452 TrkWks - ok
10:55:52.0217 3452 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:55:52.0222 3452 TrustedInstaller - ok
10:55:52.0245 3452 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:55:52.0300 3452 tssecsrv - ok
10:55:52.0315 3452 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:55:52.0336 3452 TsUsbFlt - ok
10:55:52.0352 3452 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
10:55:52.0356 3452 TsUsbGD - ok
10:55:52.0373 3452 [ 045ACB987C650D8186C6B4A692223860 ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys
10:55:52.0374 3452 tsusbhub - ok
10:55:52.0399 3452 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:55:52.0422 3452 tunnel - ok
10:55:52.0443 3452 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:55:52.0464 3452 uagp35 - ok
10:55:52.0482 3452 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:55:52.0522 3452 udfs - ok
10:55:52.0559 3452 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:55:52.0567 3452 UI0Detect - ok
10:55:52.0583 3452 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:55:52.0584 3452 uliagpkx - ok
10:55:52.0601 3452 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:55:52.0623 3452 umbus - ok
10:55:52.0647 3452 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys
10:55:52.0666 3452 UmPass - ok
10:55:52.0691 3452 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
10:55:52.0704 3452 UmRdpService - ok
10:55:52.0724 3452 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
10:55:52.0732 3452 upnphost - ok
10:55:52.0774 3452 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:55:52.0778 3452 usbaudio - ok
10:55:52.0813 3452 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:55:52.0850 3452 usbccgp - ok
10:55:52.0873 3452 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:55:52.0874 3452 usbcir - ok
10:55:52.0902 3452 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:55:52.0903 3452 usbehci - ok
10:55:52.0931 3452 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:55:52.0964 3452 usbhub - ok
10:55:52.0983 3452 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:55:53.0002 3452 usbohci - ok
10:55:53.0018 3452 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\drivers\usbprint.sys
10:55:53.0039 3452 usbprint - ok
10:55:53.0054 3452 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
10:55:53.0079 3452 USBSTOR - ok
10:55:53.0092 3452 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:55:53.0114 3452 usbuhci - ok
10:55:53.0140 3452 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
10:55:53.0146 3452 UxSms - ok
10:55:53.0166 3452 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
10:55:53.0172 3452 VaultSvc - ok
10:55:53.0188 3452 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:55:53.0216 3452 vdrvroot - ok
10:55:53.0251 3452 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
10:55:53.0264 3452 vds - ok
10:55:53.0278 3452 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:55:53.0298 3452 vga - ok
10:55:53.0313 3452 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
10:55:53.0348 3452 VgaSave - ok
10:55:53.0367 3452 VGPU - ok
10:55:53.0388 3452 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:55:53.0409 3452 vhdmp - ok
10:55:53.0427 3452 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
10:55:53.0449 3452 viaagp - ok
10:55:53.0470 3452 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
10:55:53.0471 3452 ViaC7 - ok
10:55:53.0487 3452 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
10:55:53.0507 3452 viaide - ok
10:55:53.0524 3452 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
10:55:53.0530 3452 vmbus - ok
10:55:53.0543 3452 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
10:55:53.0544 3452 VMBusHID - ok
10:55:53.0561 3452 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:55:53.0599 3452 volmgr - ok
10:55:53.0621 3452 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:55:53.0659 3452 volmgrx - ok
10:55:53.0676 3452 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:55:53.0681 3452 volsnap - ok
10:55:53.0704 3452 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:55:53.0733 3452 vsmraid - ok
10:55:53.0777 3452 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
10:55:53.0790 3452 VSS - ok
10:55:53.0807 3452 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:55:53.0829 3452 vwifibus - ok
10:55:53.0842 3452 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:55:53.0880 3452 vwififlt - ok
10:55:53.0900 3452 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
10:55:53.0910 3452 W32Time - ok
10:55:53.0930 3452 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:55:53.0950 3452 WacomPen - ok
10:55:53.0966 3452 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:55:53.0992 3452 WANARP - ok
10:55:54.0004 3452 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:55:54.0006 3452 Wanarpv6 - ok
10:55:54.0046 3452 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
10:55:54.0062 3452 wbengine - ok
10:55:54.0078 3452 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:55:54.0085 3452 WbioSrvc - ok
10:55:54.0106 3452 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:55:54.0111 3452 wcncsvc - ok
10:55:54.0127 3452 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:55:54.0135 3452 WcsPlugInService - ok
10:55:54.0152 3452 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\drivers\wd.sys
10:55:54.0153 3452 Wd - ok
10:55:54.0176 3452 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:55:54.0237 3452 Wdf01000 - ok
10:55:54.0263 3452 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:55:54.0268 3452 WdiServiceHost - ok
10:55:54.0282 3452 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:55:54.0287 3452 WdiSystemHost - ok
10:55:54.0304 3452 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
10:55:54.0313 3452 WebClient - ok
10:55:54.0333 3452 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:55:54.0338 3452 Wecsvc - ok
10:55:54.0356 3452 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:55:54.0360 3452 wercplsupport - ok
10:55:54.0392 3452 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
10:55:54.0400 3452 WerSvc - ok
10:55:54.0416 3452 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:55:54.0434 3452 WfpLwf - ok
10:55:54.0450 3452 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:55:54.0471 3452 WIMMount - ok
10:55:54.0523 3452 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
10:55:54.0534 3452 WinDefend - ok
10:55:54.0552 3452 WinHttpAutoProxySvc - ok
10:55:54.0694 3452 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:55:54.0704 3452 Winmgmt - ok
10:55:54.0809 3452 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
10:55:54.0840 3452 WinRM - ok
10:55:54.0909 3452 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:55:54.0976 3452 Wlansvc - ok
10:55:55.0043 3452 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:55:55.0057 3452 wlidsvc - ok
10:55:55.0081 3452 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:55:55.0100 3452 WmiAcpi - ok
10:55:55.0133 3452 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:55:55.0140 3452 wmiApSrv - ok
10:55:55.0199 3452 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
10:55:55.0208 3452 WMPNetworkSvc - ok
10:55:55.0231 3452 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:55:55.0237 3452 WPCSvc - ok
10:55:55.0258 3452 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:55:55.0266 3452 WPDBusEnum - ok
10:55:55.0281 3452 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:55:55.0299 3452 ws2ifsl - ok
10:55:55.0321 3452 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
10:55:55.0328 3452 wscsvc - ok
10:55:55.0340 3452 WSearch - ok
10:55:55.0414 3452 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
10:55:55.0432 3452 wuauserv - ok
10:55:55.0450 3452 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:55:55.0472 3452 WudfPf - ok
10:55:55.0500 3452 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:55:55.0503 3452 WUDFRd - ok
10:55:55.0532 3452 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:55:55.0538 3452 wudfsvc - ok
10:55:55.0563 3452 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
10:55:55.0571 3452 WwanSvc - ok
10:55:55.0602 3452 ================ Scan global ===============================
10:55:55.0637 3452 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
10:55:55.0664 3452 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
10:55:55.0688 3452 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
10:55:55.0718 3452 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
10:55:55.0742 3452 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
10:55:55.0749 3452 [Global] - ok
10:55:55.0753 3452 ================ Scan MBR ==================================
10:55:55.0779 3452 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
10:55:56.0270 3452 \Device\Harddisk1\DR1 - ok
10:55:56.0289 3452 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:55:56.0359 3452 \Device\Harddisk0\DR0 - ok
10:55:56.0367 3452 ================ Scan VBR ==================================
10:55:56.0376 3452 [ 42B5D01ACD7E1B4F3DF998FB3A490425 ] \Device\Harddisk1\DR1\Partition1
10:55:56.0380 3452 \Device\Harddisk1\DR1\Partition1 - ok
10:55:56.0410 3452 [ AEDCA55B2D279152840559EDF38519DB ] \Device\Harddisk1\DR1\Partition2
10:55:56.0416 3452 \Device\Harddisk1\DR1\Partition2 - ok
10:55:56.0453 3452 [ 86C5BB54BF9A89C7355A54C99577411F ] \Device\Harddisk1\DR1\Partition3
10:55:56.0455 3452 \Device\Harddisk1\DR1\Partition3 - ok
10:55:56.0466 3452 [ 0A7567D54E5BB459759ED7137111973D ] \Device\Harddisk0\DR0\Partition1
10:55:56.0468 3452 \Device\Harddisk0\DR0\Partition1 - ok
10:55:56.0494 3452 [ 162960BC70469789A408B5D9315476A3 ] \Device\Harddisk0\DR0\Partition2
10:55:56.0497 3452 \Device\Harddisk0\DR0\Partition2 - ok
10:55:56.0501 3452 ============================================================
10:55:56.0501 3452 Scan finished
10:55:56.0501 3452 ============================================================
10:55:56.0523 3972 Detected object count: 0
10:55:56.0523 3972 Actual detected object count: 0
10:57:26.0372 3768 Deinitialize success




ComboFix 12-08-30.05 - WindowsSeven 31/08/2012 11:02:16.1.1 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.39.1040.18.2047.1324 [GMT 2:00]
Eseguito da: c:\users\WindowsSeven\Downloads\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
SP: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Creato nuovo punto di ripristino
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
F:\Autorun.inf
.
.
((((((((((((((((((((((((( Files Creati Da 2012-07-28 al 2012-08-31 )))))))))))))))))))))))))))))))))))
.
.
2012-08-30 12:46 . 2012-08-30 12:46 -------- d-----w- c:\program files\Trend Micro
2012-08-29 11:48 . 2012-06-29 00:00 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-29 11:48 . 2012-06-29 01:00 140920 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
2012-08-29 11:48 . 2012-06-29 00:06 194560 ----a-w- c:\program files\Internet Explorer\ieproxy.dll
2012-08-29 11:48 . 2012-06-29 00:06 194048 ----a-w- c:\program files\Internet Explorer\IEShims.dll
2012-08-29 11:48 . 2012-06-29 00:04 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-29 11:47 . 2012-06-29 00:09 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-08-29 11:47 . 2012-06-29 00:16 1800704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-29 11:47 . 2012-06-29 01:00 748664 ----a-w- c:\program files\Internet Explorer\iexplore.exe
2012-08-29 11:47 . 2012-06-29 00:10 387584 ----a-w- c:\program files\Internet Explorer\jsdbgui.dll
2012-08-29 11:47 . 2012-06-29 00:10 678912 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2012-08-29 11:47 . 2012-06-29 00:08 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-29 11:46 . 2012-07-18 17:47 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-08-29 11:46 . 2012-05-14 04:33 769024 ----a-w- c:\windows\system32\localspl.dll
2012-08-29 11:46 . 2012-07-04 21:14 102912 ----a-w- c:\windows\system32\browser.dll
2012-08-29 11:46 . 2012-07-04 21:14 41984 ----a-w- c:\windows\system32\browcli.dll
2012-08-29 10:21 . 2012-08-29 10:21 -------- d-----w- c:\programdata\Malwarebytes
2012-08-29 10:21 . 2012-08-29 10:21 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-08-29 10:21 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-08-27 11:09 . 2012-08-27 11:09 -------- d-----w- c:\program files\Lavalys
2012-08-26 08:49 . 2012-08-26 08:49 -------- d-----w- c:\program files\KaraFun
2012-08-26 08:49 . 2012-08-26 08:49 -------- d-----w- c:\programdata\Recisio
2012-08-25 22:20 . 2012-08-25 22:20 -------- d-----w- c:\program files\SopCast
2012-08-25 18:07 . 2012-08-25 18:07 -------- d-----w- c:\programdata\Creative
2012-08-25 18:02 . 2012-08-25 18:04 -------- d-----w- c:\windows\system32\Defaults
2012-08-25 18:02 . 2003-06-12 21:25 7062 ----a-w- c:\windows\system32\audiopid.vxd
2012-08-25 18:02 . 2012-08-25 18:02 -------- d-----w- c:\program files\Common Files\Creative Labs Shared
2012-08-25 18:01 . 2012-08-25 18:01 -------- d-----w- c:\program files\OpenAL
2012-08-25 18:01 . 2012-08-25 18:01 445016 ----a-w- c:\windows\system32\wrap_oal.dll
2012-08-25 18:01 . 2012-08-25 18:01 109144 ----a-w- c:\windows\system32\OpenAL32.dll
2012-08-25 18:01 . 2009-03-26 12:46 148480 ----a-w- c:\windows\system32\APOMngr.DLL
2012-08-25 18:01 . 2009-02-06 16:52 73728 ----a-w- c:\windows\system32\CmdRtr.DLL
2012-08-25 18:00 . 2005-06-21 10:03 12288 ----a-w- c:\windows\CTDCRITA.DLL
2012-08-25 18:00 . 2004-07-30 12:48 20480 ----a-w- c:\windows\INRESITA.DLL
2012-08-25 18:00 . 2012-08-25 18:02 -------- d-----w- c:\program files\Creative
2012-08-25 17:37 . 2012-08-25 17:37 -------- d-----w- c:\program files\Microsoft Synchronization Services
2012-08-25 17:37 . 2012-08-25 17:37 -------- d-----w- c:\program files\Microsoft.NET
2012-08-25 17:37 . 2012-08-25 17:37 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2012-08-25 17:36 . 2012-08-25 17:36 -------- d-----w- c:\program files\Microsoft Analysis Services
2012-08-25 17:35 . 2012-08-25 17:41 -------- d-----w- c:\programdata\Microsoft Help
2012-08-25 17:35 . 2012-08-25 17:35 -------- d-----r- C:\MSOCache
2012-08-25 16:25 . 2012-08-25 16:25 -------- d-----w- c:\program files\VideoLAN
2012-08-25 16:04 . 2012-08-25 16:04 -------- d-----w- c:\program files\Common Files\Skype
2012-08-25 16:04 . 2012-08-25 16:04 -------- d-----r- c:\program files\Skype
2012-08-25 16:04 . 2012-08-25 16:04 -------- d-----w- c:\programdata\Skype
2012-08-25 15:55 . 2012-08-25 15:55 -------- d-----w- c:\windows\PCHEALTH
2012-08-25 15:54 . 2012-08-25 15:56 -------- d-----w- c:\program files\Windows Live
2012-08-25 15:53 . 2012-08-25 15:53 -------- d-----w- c:\program files\Microsoft Silverlight
2012-08-25 15:52 . 2012-08-25 15:52 -------- d-----w- c:\program files\Common Files\Windows Live
2012-08-25 15:00 . 2012-08-25 15:00 73416 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-25 15:00 . 2012-08-25 15:00 696520 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-25 15:00 . 2012-08-25 15:00 -------- d-----w- c:\windows\system32\Macromed
2012-08-14 08:49 . 2012-08-25 18:01 -------- d-----w- c:\windows\system32\data
2012-08-14 08:38 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-08-14 08:37 . 2012-05-01 04:44 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-08-14 08:26 . 2012-08-14 08:26 -------- d-----w- c:\windows\system32\wbem\en-US
2012-08-14 08:23 . 2012-07-16 00:41 6891424 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A571DF56-F9D7-4123-BED2-BE3F13E0608A}\mpengine.dll
2012-08-14 08:13 . 2012-03-01 05:46 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2012-08-14 08:13 . 2012-03-01 05:37 172544 ----a-w- c:\windows\system32\wintrust.dll
2012-08-14 08:13 . 2012-03-01 05:33 159232 ----a-w- c:\windows\system32\imagehlp.dll
2012-08-14 08:13 . 2012-03-01 05:29 5120 ----a-w- c:\windows\system32\wmi.dll
2012-08-14 08:11 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-08-14 08:09 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-08-14 08:09 . 2011-11-19 14:01 67072 ----a-w- c:\windows\system32\packager.dll
2012-08-14 08:07 . 2011-10-01 04:37 708608 ----a-w- c:\program files\Common Files\System\wab32.dll
2012-08-14 08:04 . 2012-04-26 04:45 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-08-14 08:04 . 2012-04-26 04:41 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-08-14 08:04 . 2012-04-26 04:45 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-08-14 08:04 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2012-08-14 08:04 . 2012-03-03 05:31 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-08-14 08:04 . 2012-03-17 07:27 56176 ----a-w- c:\windows\system32\drivers\partmgr.sys
2012-08-14 08:04 . 2011-06-15 08:55 86016 ----a-w- c:\windows\system32\odbccu32.dll
2012-08-14 08:04 . 2011-06-15 08:55 81920 ----a-w- c:\windows\system32\odbccr32.dll
2012-08-14 08:04 . 2011-06-15 08:55 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2012-08-14 08:04 . 2011-06-15 08:55 122880 ----a-w- c:\windows\system32\odbccp32.dll
2012-08-14 08:04 . 2011-06-15 08:55 163840 ----a-w- c:\windows\system32\odbctrac.dll
2012-08-14 08:04 . 2011-06-15 08:54 94208 ----a-w- c:\program files\Common Files\System\Ole DB\msdaosp.dll
2012-08-14 08:04 . 2011-03-11 05:33 1137664 ----a-w- c:\windows\system32\mfc42.dll
2012-08-14 08:03 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2012-08-14 08:03 . 2011-02-23 04:47 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2012-08-14 08:03 . 2011-12-16 07:52 690688 ----a-w- c:\windows\system32\msvcrt.dll
2012-08-14 07:50 . 2012-08-14 07:50 -------- d-----w- c:\program files\ESET
2012-08-14 07:50 . 2012-08-30 13:03 -------- d-sh--w- c:\windows\Installer
2012-08-14 07:49 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-08-14 07:49 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll
2012-08-14 07:49 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll
2012-08-14 07:49 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-08-14 07:49 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll
2012-08-14 07:49 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-08-14 07:49 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll
2012-08-14 07:49 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll
2012-08-14 07:49 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe
2012-08-14 07:43 . 2009-07-23 20:02 43008 ----a-w- c:\windows\system32\drivers\Rtnicxp.sys
2012-08-14 07:43 . 2009-07-20 18:07 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2012-08-14 07:42 . 2012-08-25 18:02 -------- d--h--w- c:\program files\InstallShield Installation Information
2012-08-14 07:42 . 2012-08-25 16:44 -------- d-----w- c:\program files\Common Files\InstallShield
2012-08-14 07:42 . 2012-08-14 07:42 -------- d-----w- C:\ATI
2012-08-14 07:23 . 2012-08-25 16:00 -------- d-----w- c:\users\WindowsSeven
2012-08-14 07:17 . 2012-08-14 07:17 0 ----a-w- c:\windows\ativpsrm.bin
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-25 15:54 . 2011-03-28 16:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-06-20 07:43 . 2012-06-20 07:43 2957312 ----a-w- c:\windows\system32\drivers\athr.sys
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-11-16 2054360]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-04-09 19968]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"CTHelper"="CTHELPER.EXE" [2010-03-18 19456]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.SYS [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.SYS [x]
R3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\System32\drivers\CTERFXFX.SYS [x]
R3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.SYS [x]
R3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.SYS [x]
R3 dc21x4vm;dc21x4vm;c:\windows\system32\DRIVERS\dc21x4vm.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver;c:\windows\system32\drivers\Synth3dVsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;%TsUsbGD.DeviceDesc.Generic%;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 tsusbhub;Remote Deskotop USB Hub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\System32\drivers\COMMONFX.SYS [x]
S3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\System32\drivers\CTAUDFX.SYS [x]
S3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\System32\drivers\CTSBLFX.SYS [x]
.
.
--- Altri Servizi/Drivers In Memoria ---
.
*NewlyCreated* - 51873570
*Deregistered* - 51873570
.
Contenuto della cartella 'Scheduled Tasks'
.
2012-08-31 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-25 15:00]
.
2012-08-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1925800810-127486270-1081687994-1001Core.job
- c:\users\WindowsSeven\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-25 15:21]
.
2012-08-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1925800810-127486270-1081687994-1001UA.job
- c:\users\WindowsSeven\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-25 15:21]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.msn.it/
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: I&nvia a OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.254
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
.
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2012-08-31 11:12:47
ComboFix-quarantined-files.txt 2012-08-31 09:12
.
Pre-Run: 88.900.464.640 byte disponibili
Post-Run: 88.955.908.096 byte disponibili
.
- - End Of File - - D62436549B502F114367BF761A876B27


Grazie.
Torna in alto
 
Sponsor
Inviato: Friday, August 31, 2012 11:28:13 AM

 
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 11:38:08 AM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164

ciao scusa ma perche' esegui gli stessi passaggi che ho consigliato all'altro utente, aspetta prima di fare scansioni a casaccio

combofix ha rilevato l'autorun ora prova ad andare nei servizi e vedi se riesci ad attivarlo se non ti riesce da Start -> Esegui digita Wscui.Cpl e batti Ok dimmi cosa vedi
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 11:55:12 AM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
shapiro ha scritto:

ciao scusa ma perche' esegui gli stessi passaggi che ho consigliato all'altro utente, aspetta prima di fare scansioni a casaccio

combofix ha rilevato l'autorun ora prova ad andare nei servizi e vedi se riesci ad attivarlo se non ti riesce da Start -> Esegui digita Wscui.Cpl e batti Ok dimmi cosa vedi



Chiedo scusa se ho eseguito le scansioni, credevo di aiutare aiutandomi...comunque, ho dovuto ripristinare il pc al punto ripristino creato da combofix, in quanto, non riuscivo più a collegarmi a internet, anche provando a eseguire la diagnosi, riavviare il router e mettere gli IP manualmente.
Ora, a seguito del ripristino, devo eseguire i tuoi consigli?

Grazie.
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 11:58:34 AM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164


era meglio se lo dicevi che non ti collegavi avremmo risolto (chissa') non vorrei che l'infezione e' tornata al posto suo.....prova a seguire i due passaggi che ti ho detto nel post precedente
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 12:00:14 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
shapiro ha scritto:


era meglio se lo dicevi che non ti collegavi avremmo risolto (chissa') non vorrei che l'infezione e' tornata al posto suo.....prova a seguire i due passaggi che ti ho detto nel post precedente

Eseguendo Wscui.Cpl mi si apre la pagina "Centro Operativo". Nei servizi nessuna traccia del centro sicurezza.
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 12:02:48 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
Commenta:
Eseguendo Wscui.Cpl mi si apre la pagina "Centro Operativo".


centro sicurezza pc lo v edi?...come sarebbe scomparso controlla meglio
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 12:07:44 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
shapiro ha scritto:
Commenta:
Eseguendo Wscui.Cpl mi si apre la pagina "Centro Operativo".


centro sicurezza pc lo v edi?...come sarebbe scomparso controlla meglio


Si apre questa finestra: http://img594.imageshack.us/img594/6457/centrooperativo.png
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 12:10:34 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164


dice che windows update non e' attivo...ne sai qualcosa? prova a controllare
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 12:11:58 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
shapiro ha scritto:


dice che windows update non e' attivo...ne sai qualcosa? prova a controllare


E' stato disattivato da me...odio che il pc faccia quello che vuole lui...ho comunque tutto aggiornato in Windows.
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 12:15:13 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164


controlla se nella cartella system32 c'e' il file rundll32.exe
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 12:18:49 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
shapiro ha scritto:


controlla se nella cartella system32 c'e' il file rundll32.exe


Ho un file con quel nome di 44Kb
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 12:23:35 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
io voglio sapere se c'e' e non quanto pesa

vai sulle proprieta' del file >>> proprieta' >>> tab versione e vedi la societa' al quale appartiene, con quel nome c'e' solo lui
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 12:27:44 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
shapiro ha scritto:
io voglio sapere se c'e' e non quanto pesa

vai sulle proprieta' del file >>> proprieta' >>> tab versione e vedi la societa' al quale appartiene, con quel nome c'e' solo lui


Eccolo: http://img546.imageshack.us/img546/4169/run32.png
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 12:32:35 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
per non creare confusione ti pregherei di non quotare

grazie

prova a riattivare windows update poi vai nei servizi e vedi se riesci ad attivare il centro sicurezza...se vai nel centro sicurezza vedi le icone verdi oppure no
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 12:38:57 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
Scusa per i quote...
Ho riattivato update ma nei servizi non appare il centro sicurezza e neanche nel pannello di controllo.
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 12:52:16 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
da start esegui digita mrt e dai ok accetta l'aggiornamento se te lo chiede e fai una scansione completa, elimina se rileva qualche infezione

edit

fai anche una scansione con malwarebytes
Aggiornalo: clicca sulla scheda "aggiornamenti" => "controlla aggiornamenti"
Esegui una "scansione completa" (seleziona l'opzione)
A scansione completa, fai clic su OK => Mostra i Risultati.
Assicurarti che tutto sia selezionato e clicca clic su Rimuovi selezionati.
Se ti chiede di riavviare, riavvia per completare il processo di pulizia.
Posta il rapporto .
Torna in alto
 
kirk_69
Inviato: Friday, August 31, 2012 3:17:10 PM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
MRT non ha rilevato nulla sul disco C: ...la scansione non è ancora terminata, ho altre quattro partizioni in cui una ho Xp + Dati (HDD secondario)...credo che possa annullare il processo, o no? Altrimenti neanche per stasera sarà terminata la scansione...MalwareBytes l'ho già lanciato e non mi ha rilevato nulla.

Posso interrompere la scansione? ora sta verificando il disco D:
Torna in alto
 
shapiro
Inviato: Friday, August 31, 2012 9:30:58 PM

Rank: AiutAmico

Iscritto dal : 8/24/2008
Posts: 4,164
quando avrai verificato i settori prova a leggerti questa discussione
Torna in alto
 
kirk_69
Inviato: Saturday, September 01, 2012 1:02:19 AM

Rank: AiutAmico

Iscritto dal : 3/12/2005
Posts: 440
Andiamo bene...io è da lì che provengo...già avevo letto quella discussione..e già avevo provato e i due comandi dos e non hanno risolto nulla...
Torna in alto
 
Utenti presenti in questo topic
Guest

2 pages: [1] 2

Aiutamici Forum » FORUM - Istruzioni e Guide » Sicurezza VIRUS » Centro Sicurezza Pc Sparito


Salta al Forum
Aggiunta nuovi Topic disabilitata in questo forum.
Risposte disabilitate in questo forum.
Eliminazione tuoi Post disabilitata in questo forum.
Modifica dei tuoi post disabilitata in questo forum.
Creazione Sondaggi disabilitata in questo forum.
Voto ai sondaggi disabilitato in questo forum.

Main Forum RSS : RSS

Aiutamici Theme
Powered by Yet Another Forum.net versione 1.9.1.8 (NET v2.0) - 3/29/2008
Copyright © 2003-2008 Yet Another Forum.net. All rights reserved.