Valutazione 4.87/ 5 (100.00%) 5838 voti

Condividi:        

Non si accende il computer, help :(

Come rimuovere virus e spyware? Le carte di credito sono davvero sicure in rete? È possibile navigare anonimi? Con quali programmi tutelare la propria privacy? Come proteggere i file importanti? Se volete una risposta a queste e altre domande questo è il luogo giusto!

Moderatori: kadosh, Luke57

Non si accende il computer, help :(

Postdi marie » 01/09/12 10:59

ciao,volevo chiedervi aiuto per il mio pc :(. Da ieri mi sta capitando che accendo il pc inserisco la password e invece di caricare il desktop lo schermo diventa nero e non va avanti,resta così..una volta su cinque si accende, impiegando un sacco di tempo, ma non si collega alla rete e per caricare un qualsiasi programma ci mette un'eternità...in modalità provvisoria riesco però ad accedere...potete aiutarmi per favore?!?!!?ma mica ho preso un virus?!?! io non sono proprio cosa fare..:(( grazie tantissimooooo
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Sponsor
 

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 01/09/12 12:57

dalla modalità provvisoria prova ad eseguire combofix:
Scarica ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
● posiziona il file scaricato sul Desktop
disattiva l'Antivirus in uso, dall'icona presente sulla Traybar (accanto all'orologio di Windows)
disattiva il Firewall eventualmente installato, dall'icona presente sulla Traybar (accanto all'orologio di Windows)

Eseguiti i passaggi indicati sopra:
● lancia ComboFix con un doppio click
● una volta avviato clicca il pulsante Accetto: conferma cliccando Ok due volte
● segui le istruzioni che verranno rilasciate per eseguire la scansione:
"Tipicamente non impiega più di 10 minuti
Su pc molto infetti il tempo di scansione può raddoppiare facilmente"
● nel caso tu abbia Windows XP, verrà richiesta l'installazione della Console di ripristino di emergenza: non la installare (clicca il pulsante No)
senza eseguire nessuna altra operazione, lascia che il tool completi il suo lavoro

Note - durante la scansione:
● potrebbero comparire alcuni file sul Desktop, e poi eliminati
● spariranno, per un attimo, tutte le icone presenti sul Desktop: nulla di cui preoccuparsi
● potrebbe venire rilasciato un messaggio in relazione all'Antivirus in uso: prosegui ignorando il messaggio
● il firewall potrebbe rilasciare un avviso circa la rimozione di alcuni driver: consenti
● potrebbe apparire sul Desktop l'icona di Internet Explorer

Quando ComboFix avrà concluso l'operazione di scansione:
● il sistema verrà riavviato automaticamente: in caso contrario, riavvialo te
● vai in Disco Locale C:, cerca il file di testo dal nome ComboFix.txt ed allegalo

Nota - riguardo al programma:
● per eseguire correttamente ComboFix su Windows Vista e Windows Seven, clicca con il tasto destro del mouse sull'icona del programma e, dal menù contestuale, scegli la voce Esegui come Amministratore
sUBs, la software house che distribuisce ComboFix, non è responsabile di qualsiasi danno causato dopo l'utilizzo del programma stesso.
Esso non dovrebbe essere utilizzato a meno che non venga espressamente richiesto da un esperto
ComboFix disabilita l'esecuzione automatica delle unità USB (Chiavette, Hard Disk Esterni, Lettori MP3...) per prevenire future minacce: quando inserisci una Pendrive, dovrai avviarla manualmente dalle Risorse del computer.
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 01/09/12 13:22

Ti ho risposto sopra!
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 14:26

ho lanciato combofix e quando ha finito ho riavviato entrando nella modalità normale..la schermata nera è apparsa lo stesso,ma è durata all'incirca 6-7 minuti e anche per caricare i programmi e lo stesso broser ci mette molto, ho addirittura difficoltà a scriverti perchè digito i tasti e il pc completa le parole una decina di secondi dopo :(
questo comunque è il log di combofix:




ComboFix 12-08-31.08 - Nadridra 01/09/2012 13:39:14.1.4 - x64 NETWORK
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.39.1040.18.4023.3233 [GMT 2:00]
Eseguito da: c:\users\Nadridra\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Creato nuovo punto di ripristino
.
.
((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\users\Nadridra\AppData\Local\Temp\BunndleOfferManager.dll
c:\users\Nadridra\AppData\Local\Temp\cacaonew4fefd5.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonew550402.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonew63ccd9.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonew6d19e9.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonew880a4a.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonewb2fb28.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonewb400d2.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonewca6f14.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonewd68c8b.exe
c:\users\Nadridra\AppData\Local\Temp\cacaonewde4063.exe
c:\users\Nadridra\AppData\Local\Temp\CCIS\ccsqlh.exe
c:\users\Nadridra\AppData\Local\Temp\CCIS\sqlite3.dll
c:\users\Nadridra\AppData\Local\Temp\GoogleUpdateSetup.exe23fe71f
c:\users\Nadridra\AppData\Local\Temp\GoogleUpdateSetup.exe509f8e9
c:\users\Nadridra\AppData\Local\Temp\IminentSetup{2.q1q3SnVP.1}-20120103.exe
c:\users\Nadridra\AppData\Local\Temp\installhelper.dll
c:\users\Nadridra\AppData\Local\Temp\MSNE689.exe
c:\users\Nadridra\AppData\Local\Temp\nsvDB09.tmp.exe
c:\users\Nadridra\AppData\Local\Temp\RarSFX0\IminentSetup{2.85X3G7VP.1}.exe
c:\users\Nadridra\AppData\Local\Temp\SetupDataMngr_jZip.exe
c:\users\Nadridra\AppData\Local\Temp\SkypeSetup.exe
c:\users\Nadridra\AppData\Local\Temp\SRAssetsHelper.dll
c:\users\Nadridra\AppData\Roaming\2520.bat
c:\users\Nadridra\AppData\Roaming\Adobe\plugs
c:\users\Nadridra\AppData\Roaming\cacaoweb
c:\users\Nadridra\AppData\Roaming\cacaoweb\cacaoweb.exe
c:\users\Nadridra\AppData\Roaming\cacaoweb\npdfile.dat
c:\users\Nadridra\AppData\Roaming\cacaoweb\storage.db
c:\users\Nadridra\AppData\Roaming\completescan
c:\users\Nadridra\AppData\Roaming\install
c:\users\Nadridra\AppData\Roaming\Lyvebe
c:\users\Nadridra\AppData\Roaming\Lyvebe\tiyvt.imy
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\chrome.manifest
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\funmoods.css
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\funmoods.xul
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\arwDwn.gif
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ae.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\bg.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ch.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\cn.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\cz.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\de.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\eg.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\en.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\es.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\fr.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\gr.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\he.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\il.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\it.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ja.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\jp.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\nl.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\no.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\pl.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\pt.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ro.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ru.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\sa.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\se.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\sv.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\tr.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ua.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\us.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\help_16.gif
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\home.gif
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\logo.png
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\privecy_16_hot.gif
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\imgs\tellafriend.gif
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\loader.xul
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\mtstart.js
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\tmplt.js
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\content\uninsthk.js
c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\extensions\ffxtlbr@funmoods.com\install.rdf
c:\users\Nadridra\AppData\Roaming\OfferBox
c:\users\Nadridra\AppData\Roaming\OfferBox\config.xml
c:\users\Nadridra\AppData\Roaming\OfferBox\http_app.offerbox.com\country.sxe
c:\users\Nadridra\AppData\Roaming\OfferBox\http_app.offerbox.com\history.db
c:\users\Nadridra\AppData\Roaming\OfferBox\http_app.offerbox.com\profile.sxe
c:\users\Nadridra\AppData\Roaming\OfferBox\http_app.offerbox.com\update.sxe
c:\users\Nadridra\AppData\Roaming\OfferBox\http_app.offerbox.com\update.xml
.
.
((((((((((((((((((((((((( Files Creati Da 2012-08-01 al 2012-09-01 )))))))))))))))))))))))))))))))))))
.
.
2012-09-01 12:40 . 2012-09-01 12:40 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-01 12:40 . 2012-09-01 12:40 -------- d-----w- c:\users\ADMINI~1\AppData\Local\temp
2012-09-01 11:46 . 2012-09-01 11:46 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{75E2B9ED-F616-49C9-86A3-4251DE848EFA}\offreg.dll
2012-08-31 23:25 . 2012-09-01 10:07 -------- d-----w- c:\users\Nadridra\AppData\Local\ElevatedDiagnostics
2012-08-31 11:38 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{75E2B9ED-F616-49C9-86A3-4251DE848EFA}\mpengine.dll
2012-08-16 22:44 . 2012-06-29 04:55 17809920 ----a-w- c:\windows\system32\mshtml.dll
2012-08-16 22:44 . 2012-06-29 04:09 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-08-16 08:15 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-16 08:15 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-16 08:14 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-08-16 08:14 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-08-16 08:14 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-16 08:14 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-08-16 08:14 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-08-16 08:14 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
2012-08-16 08:14 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
2012-08-16 08:14 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-08-16 08:14 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-08-16 08:10 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-22 09:36 . 2010-10-23 12:56 848 --sha-w- c:\programdata\KGyGaAvL.sys
2012-08-16 22:41 . 2010-03-06 09:30 62134624 ----a-w- c:\windows\system32\MRT.exe
2012-07-11 12:22 . 2012-06-01 07:24 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-07-11 12:22 . 2012-07-11 12:22 375632 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-06-12 11:35 . 2012-06-12 11:35 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-06-09 05:43 . 2012-07-11 02:35 14172672 ----a-w- c:\windows\system32\shell32.dll
2012-06-06 06:06 . 2012-07-11 02:35 2004480 ----a-w- c:\windows\system32\msxml6.dll
2012-06-06 06:06 . 2012-07-11 02:35 1881600 ----a-w- c:\windows\system32\msxml3.dll
2012-06-06 06:02 . 2012-07-11 02:34 1133568 ----a-w- c:\windows\system32\cdosys.dll
2012-06-06 05:05 . 2012-07-11 02:35 1390080 ----a-w- c:\windows\SysWow64\msxml6.dll
2012-06-06 05:05 . 2012-07-11 02:35 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
2012-06-06 05:03 . 2012-07-11 02:35 805376 ----a-w- c:\windows\SysWow64\cdosys.dll
.
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="c:\users\Nadridra\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-11 138096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Corel File Shell Monitor"="c:\program files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe" [2009-08-25 15544]
"HPCam_Menu"="c:\program files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]
"QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-08-20 322104]
"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2009-09-02 60464]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]
"WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-05-07 834544]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe [2009-03-03 89600]
R2 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
R2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2009-07-14 27136]
R2 gupdate;Servizio di Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-01 133104]
R2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [2009-07-08 30520]
R2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-01-19 3027840]
R3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-06-06 1436424]
R3 gupdatem;Servizio Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-01 133104]
R3 hwusbdev;Huawei DataCard USB PNP Device;c:\windows\system32\DRIVERS\ewusbdev.sys [x]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-13 151040]
R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2009-07-21 140712]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [2009-08-22 84512]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-10-03 258560]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-11 1255736]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-06-10 389120]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2009-06-29 70656]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-08-20 12:24 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contenuto della cartella 'Scheduled Tasks'
.
2012-08-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3729714334-1737674838-1189698650-1000Core.job
- c:\users\Nadridra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-03 23:06]
.
2012-08-31 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3729714334-1737674838-1189698650-1000UA.job
- c:\users\Nadridra\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-03 23:06]
.
2012-09-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-01 12:41]
.
2012-09-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-01 12:41]
.
2012-08-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3729714334-1737674838-1189698650-1000Core.job
- c:\users\Nadridra\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-26 18:23]
.
2012-09-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3729714334-1737674838-1189698650-1000UA.job
- c:\users\Nadridra\AppData\Local\Google\Update\GoogleUpdate.exe [2011-10-26 18:23]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-11-28 16395880]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2009-10-21 487424]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2009-08-25 610872]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.searchnu.com/102
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
TCP: DhcpNameServer = 10.0.0.1
FF - ProfilePath - c:\users\Nadridra\AppData\Roaming\Mozilla\Firefox\Profiles\2harkgn3.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: keyword.URL - hxxp://dts.search-results.com/sr?src=ff ... 02&sr=0&q=
FF - user.js: extensions.funmoods_i.newTab - false
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=aed&q=
FF - user.js: extensions.funmoods_i.id - 8acc3162000000000000c417fe38b182
FF - user.js: extensions.funmoods_i.instlDay - 15395
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1617:53
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - aed
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false
.
- - - - CHIAVI ORFANE RIMOSSE - - - -
.
Toolbar-10 - (no file)
Wow6432Node-HKCU-Run-cacaoweb - c:\users\Nadridra\AppData\Roaming\cacaoweb\cacaoweb.exe
Toolbar-10 - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe
.
.
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Ora fine scansione: 2012-09-01 15:01:10
ComboFix-quarantined-files.txt 2012-09-01 13:01
.
Pre-Run: 482.337.165.312 byte disponibili
Post-Run: 486.208.393.216 byte disponibili
.
- - End Of File - - 8B3FC046D809CF5D8C5FDB4CF206268B




ora cosa devo fare!?!?comunque grazie mille per il tuo aiuto :)
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 01/09/12 15:51

Scarica Kaspersky TDSS Killer: http://support.kaspersky.com/downloads/ ... killer.exe
● posiziona il file scaricato sul Desktop
● clicca due volte sul file TDSSKiller.exe per avviare l'applicazione
● successivamente premi il pulsante Start scan

Nota - riguardo al programma:
● non cliccare sul pulsante Stop scan per nessun motivo, la scansione si interromperebbe

Giunti a questo punto, inizia la scansione del sistema alla ricerca di software malevolo:
● se viene trovato un file infetto, l'azione di default sarà Cure: clicca quindi su Continua
● se viene trovato un file sospetto, l'azione di default sarà Skip: clicca quindi su Continua
● se non viene rilevato nulla, chiudi semplicemente il programma al termine della scansione

Una volta terminata la scansione, si presenterà una di queste due opzioni:
non è necessario il riavvio del sistema: allega il Report situato nel Disco Locale C:\, di nome TDSSKiller.[Version]_[Date]_[Time]_log.txt
● è necessario riavviare il sistema: clicca su Riavvia ora, infine allega il risultato della scansione (si trova nello stesso percorso menzionato poco fa')
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 17:13

non mi è uscita alcuna finestra che mi diceva di riavviare il computer.
ecco il report di tdsskiller:





18:10:51.0868 2716 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
18:10:53.0871 2716 ============================================================
18:10:53.0871 2716 Current date / time: 2012/09/01 18:10:53.0871
18:10:53.0871 2716 SystemInfo:
18:10:53.0871 2716
18:10:53.0871 2716 OS Version: 6.1.7601 ServicePack: 1.0
18:10:53.0871 2716 Product type: Workstation
18:10:53.0871 2716 ComputerName: CIUPPICINO
18:10:53.0871 2716 UserName: Nadridra
18:10:53.0871 2716 Windows directory: C:\Windows
18:10:53.0871 2716 System windows directory: C:\Windows
18:10:53.0871 2716 Running under WOW64
18:10:53.0871 2716 Processor architecture: Intel x64
18:10:53.0871 2716 Number of processors: 4
18:10:53.0871 2716 Page size: 0x1000
18:10:53.0871 2716 Boot type: Normal boot
18:10:53.0871 2716 ============================================================
18:10:54.0604 2716 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:10:54.0613 2716 ============================================================
18:10:54.0613 2716 \Device\Harddisk0\DR0:
18:10:54.0613 2716 MBR partitions:
18:10:54.0613 2716 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:10:54.0613 2716 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x48690000
18:10:54.0613 2716 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x486F4000, BlocksNum 0x2130000
18:10:54.0613 2716 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x4A824000, BlocksNum 0x33AB0
18:10:54.0613 2716 ============================================================
18:10:54.0639 2716 C: <-> \Device\Harddisk0\DR0\Partition2
18:10:54.0697 2716 D: <-> \Device\Harddisk0\DR0\Partition3
18:10:54.0710 2716 E: <-> \Device\Harddisk0\DR0\Partition4
18:10:54.0711 2716 ============================================================
18:10:54.0711 2716 Initialize success
18:10:54.0711 2716 ============================================================
18:11:05.0024 2264 ============================================================
18:11:05.0024 2264 Scan started
18:11:05.0024 2264 Mode: Manual;
18:11:05.0024 2264 ============================================================
18:11:05.0329 2264 ================ Scan system memory ========================
18:11:05.0329 2264 System memory - ok
18:11:05.0329 2264 ================ Scan services =============================
18:11:05.0515 2264 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:11:05.0518 2264 1394ohci - ok
18:11:05.0565 2264 [ 1CFFE9C06E66A57DAE1452E449A58240 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
18:11:05.0566 2264 Accelerometer - ok
18:11:05.0619 2264 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:11:05.0624 2264 ACPI - ok
18:11:05.0669 2264 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:11:05.0670 2264 AcpiPmi - ok
18:11:05.0720 2264 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:11:05.0729 2264 adp94xx - ok
18:11:05.0794 2264 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:11:05.0800 2264 adpahci - ok
18:11:05.0825 2264 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:11:05.0829 2264 adpu320 - ok
18:11:05.0861 2264 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:11:05.0863 2264 AeLookupSvc - ok
18:11:05.0975 2264 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\AESTSr64.exe
18:11:05.0976 2264 AESTFilters - ok
18:11:06.0033 2264 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:11:06.0040 2264 AFD - ok
18:11:06.0082 2264 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:11:06.0084 2264 agp440 - ok
18:11:06.0109 2264 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:11:06.0111 2264 ALG - ok
18:11:06.0146 2264 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:11:06.0147 2264 aliide - ok
18:11:06.0153 2264 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:11:06.0155 2264 amdide - ok
18:11:06.0188 2264 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:11:06.0190 2264 AmdK8 - ok
18:11:06.0206 2264 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:11:06.0208 2264 AmdPPM - ok
18:11:06.0253 2264 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:11:06.0255 2264 amdsata - ok
18:11:06.0290 2264 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:11:06.0293 2264 amdsbs - ok
18:11:06.0304 2264 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:11:06.0306 2264 amdxata - ok
18:11:06.0359 2264 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:11:06.0361 2264 AppID - ok
18:11:06.0391 2264 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:11:06.0393 2264 AppIDSvc - ok
18:11:06.0429 2264 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:11:06.0431 2264 Appinfo - ok
18:11:06.0499 2264 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:11:06.0501 2264 arc - ok
18:11:06.0524 2264 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:11:06.0527 2264 arcsas - ok
18:11:06.0557 2264 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:11:06.0559 2264 AsyncMac - ok
18:11:06.0610 2264 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:11:06.0611 2264 atapi - ok
18:11:06.0665 2264 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:11:06.0676 2264 AudioEndpointBuilder - ok
18:11:06.0717 2264 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:11:06.0724 2264 AudioSrv - ok
18:11:06.0797 2264 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:11:06.0799 2264 AxInstSV - ok
18:11:06.0853 2264 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:11:06.0860 2264 b06bdrv - ok
18:11:06.0924 2264 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:11:06.0930 2264 b57nd60a - ok
18:11:07.0082 2264 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
18:11:07.0085 2264 BBSvc - ok
18:11:07.0150 2264 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
18:11:07.0153 2264 BBUpdate - ok
18:11:07.0243 2264 [ 7B6EAAA086DDE01D4C7FF215720987C6 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
18:11:07.0269 2264 BCM43XX - ok
18:11:07.0320 2264 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:11:07.0323 2264 BDESVC - ok
18:11:07.0365 2264 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:11:07.0366 2264 Beep - ok
18:11:07.0432 2264 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:11:07.0442 2264 BFE - ok
18:11:07.0509 2264 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
18:11:07.0526 2264 BITS - ok
18:11:07.0560 2264 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:11:07.0561 2264 blbdrive - ok
18:11:07.0615 2264 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:11:07.0617 2264 bowser - ok
18:11:07.0651 2264 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:11:07.0653 2264 BrFiltLo - ok
18:11:07.0666 2264 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:11:07.0667 2264 BrFiltUp - ok
18:11:07.0707 2264 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:11:07.0709 2264 BridgeMP - ok
18:11:07.0781 2264 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:11:07.0783 2264 Browser - ok
18:11:07.0828 2264 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:11:07.0833 2264 Brserid - ok
18:11:07.0865 2264 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:11:07.0866 2264 BrSerWdm - ok
18:11:07.0899 2264 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:11:07.0901 2264 BrUsbMdm - ok
18:11:07.0920 2264 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:11:07.0921 2264 BrUsbSer - ok
18:11:07.0955 2264 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:11:07.0957 2264 BTHMODEM - ok
18:11:08.0004 2264 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:11:08.0007 2264 bthserv - ok
18:11:08.0041 2264 catchme - ok
18:11:08.0070 2264 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:11:08.0073 2264 cdfs - ok
18:11:08.0136 2264 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
18:11:08.0139 2264 cdrom - ok
18:11:08.0188 2264 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:11:08.0190 2264 CertPropSvc - ok
18:11:08.0242 2264 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:11:08.0243 2264 circlass - ok
18:11:08.0273 2264 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:11:08.0279 2264 CLFS - ok
18:11:08.0343 2264 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:11:08.0349 2264 clr_optimization_v2.0.50727_32 - ok
18:11:08.0398 2264 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:11:08.0400 2264 clr_optimization_v2.0.50727_64 - ok
18:11:08.0523 2264 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:11:08.0556 2264 clr_optimization_v4.0.30319_32 - ok
18:11:08.0598 2264 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:11:08.0601 2264 clr_optimization_v4.0.30319_64 - ok
18:11:08.0626 2264 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:11:08.0627 2264 CmBatt - ok
18:11:08.0637 2264 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:11:08.0639 2264 cmdide - ok
18:11:08.0696 2264 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:11:08.0704 2264 CNG - ok
18:11:08.0801 2264 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:11:08.0804 2264 Com4QLBEx - ok
18:11:08.0842 2264 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:11:08.0844 2264 Compbatt - ok
18:11:08.0898 2264 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:11:08.0900 2264 CompositeBus - ok
18:11:08.0916 2264 COMSysApp - ok
18:11:08.0931 2264 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:11:08.0932 2264 crcdisk - ok
18:11:08.0988 2264 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:11:08.0991 2264 CryptSvc - ok
18:11:09.0043 2264 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:11:09.0052 2264 DcomLaunch - ok
18:11:09.0090 2264 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:11:09.0095 2264 defragsvc - ok
18:11:09.0139 2264 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:11:09.0141 2264 DfsC - ok
18:11:09.0188 2264 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:11:09.0193 2264 Dhcp - ok
18:11:09.0222 2264 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:11:09.0223 2264 discache - ok
18:11:09.0257 2264 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:11:09.0259 2264 Disk - ok
18:11:09.0301 2264 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:11:09.0304 2264 Dnscache - ok
18:11:09.0351 2264 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:11:09.0356 2264 dot3svc - ok
18:11:09.0395 2264 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:11:09.0399 2264 DPS - ok
18:11:09.0444 2264 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:11:09.0445 2264 drmkaud - ok
18:11:09.0503 2264 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:11:09.0512 2264 DXGKrnl - ok
18:11:09.0555 2264 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:11:09.0557 2264 EapHost - ok
18:11:09.0655 2264 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:11:09.0735 2264 ebdrv - ok
18:11:09.0782 2264 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:11:09.0783 2264 EFS - ok
18:11:09.0866 2264 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:11:09.0876 2264 ehRecvr - ok
18:11:09.0916 2264 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:11:09.0918 2264 ehSched - ok
18:11:09.0965 2264 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:11:09.0974 2264 elxstor - ok
18:11:10.0009 2264 [ 524C79054636D2E5751169005006460B ] enecir C:\Windows\system32\DRIVERS\enecir.sys
18:11:10.0011 2264 enecir - ok
18:11:10.0040 2264 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:11:10.0042 2264 ErrDev - ok
18:11:10.0089 2264 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:11:10.0096 2264 EventSystem - ok
18:11:10.0134 2264 ewusbnet - ok
18:11:10.0181 2264 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:11:10.0185 2264 exfat - ok
18:11:10.0225 2264 ezSharedSvc - ok
18:11:10.0251 2264 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:11:10.0254 2264 fastfat - ok
18:11:10.0306 2264 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:11:10.0317 2264 Fax - ok
18:11:10.0367 2264 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:11:10.0369 2264 fdc - ok
18:11:10.0395 2264 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:11:10.0397 2264 fdPHost - ok
18:11:10.0423 2264 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:11:10.0425 2264 FDResPub - ok
18:11:10.0466 2264 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:11:10.0468 2264 FileInfo - ok
18:11:10.0490 2264 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:11:10.0491 2264 Filetrace - ok
18:11:10.0616 2264 [ A4297244D4F817278A6AE45B1899CA9C ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
18:11:10.0661 2264 FLEXnet Licensing Service 64 - ok
18:11:10.0695 2264 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:11:10.0697 2264 flpydisk - ok
18:11:10.0748 2264 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:11:10.0753 2264 FltMgr - ok
18:11:10.0813 2264 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:11:10.0849 2264 FontCache - ok
18:11:10.0927 2264 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:11:10.0929 2264 FontCache3.0.0.0 - ok
18:11:10.0966 2264 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:11:10.0968 2264 FsDepends - ok
18:11:11.0004 2264 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:11:11.0005 2264 Fs_Rec - ok
18:11:11.0065 2264 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:11:11.0068 2264 fvevol - ok
18:11:11.0099 2264 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:11:11.0100 2264 gagp30kx - ok
18:11:11.0189 2264 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
18:11:11.0194 2264 GameConsoleService - ok
18:11:11.0257 2264 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:11:11.0273 2264 gpsvc - ok
18:11:11.0357 2264 [ 626A24ED1228580B9518C01930936DF9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:11:11.0359 2264 gupdate - ok
18:11:11.0386 2264 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:11:11.0388 2264 gupdatem - ok
18:11:11.0415 2264 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:11:11.0417 2264 hcw85cir - ok
18:11:11.0469 2264 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:11:11.0475 2264 HdAudAddService - ok
18:11:11.0520 2264 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:11:11.0521 2264 HDAudBus - ok
18:11:11.0535 2264 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:11:11.0537 2264 HidBatt - ok
18:11:11.0558 2264 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:11:11.0561 2264 HidBth - ok
18:11:11.0602 2264 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:11:11.0604 2264 HidIr - ok
18:11:11.0640 2264 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:11:11.0642 2264 hidserv - ok
18:11:11.0688 2264 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
18:11:11.0690 2264 HidUsb - ok
18:11:11.0731 2264 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:11:11.0735 2264 hkmsvc - ok
18:11:11.0771 2264 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:11:11.0776 2264 HomeGroupListener - ok
18:11:11.0821 2264 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:11:11.0825 2264 HomeGroupProvider - ok
18:11:11.0890 2264 [ C84BCC03858DAEAC4DB1E95EFCCE1934 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
18:11:11.0892 2264 HP Health Check Service - ok
18:11:11.0910 2264 [ 05712FDDBD45A5864EB326FAABC6A4E3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
18:11:11.0912 2264 hpdskflt - ok
18:11:11.0952 2264 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:11:11.0953 2264 HpqKbFiltr - ok
18:11:12.0001 2264 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
18:11:12.0004 2264 hpqwmiex - ok
18:11:12.0054 2264 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:11:12.0057 2264 HpSAMD - ok
18:11:12.0066 2264 [ AA036CC5F5221D9B915F4D4DCE74BA9A ] hpsrv C:\Windows\system32\Hpservice.exe
18:11:12.0068 2264 hpsrv - ok
18:11:12.0123 2264 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:11:12.0139 2264 HTTP - ok
18:11:12.0173 2264 hwdatacard - ok
18:11:12.0224 2264 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:11:12.0224 2264 hwpolicy - ok
18:11:12.0233 2264 hwusbdev - ok
18:11:12.0283 2264 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:11:12.0285 2264 i8042prt - ok
18:11:12.0314 2264 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:11:12.0318 2264 iaStor - ok
18:11:12.0373 2264 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:11:12.0380 2264 iaStorV - ok
18:11:12.0472 2264 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:11:12.0490 2264 idsvc - ok
18:11:12.0655 2264 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:11:12.0807 2264 igfx - ok
18:11:12.0849 2264 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:11:12.0850 2264 iirsp - ok
18:11:12.0906 2264 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:11:12.0924 2264 IKEEXT - ok
18:11:12.0954 2264 [ 4FF8A2082D78255D2EB169F986BCC981 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
18:11:12.0957 2264 Impcd - ok
18:11:13.0016 2264 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:11:13.0019 2264 intelide - ok
18:11:13.0048 2264 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:11:13.0049 2264 intelppm - ok
18:11:13.0085 2264 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:11:13.0088 2264 IPBusEnum - ok
18:11:13.0122 2264 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:11:13.0124 2264 IpFilterDriver - ok
18:11:13.0189 2264 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:11:13.0199 2264 iphlpsvc - ok
18:11:13.0235 2264 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:11:13.0237 2264 IPMIDRV - ok
18:11:13.0279 2264 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:11:13.0282 2264 IPNAT - ok
18:11:13.0307 2264 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:11:13.0308 2264 IRENUM - ok
18:11:13.0330 2264 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:11:13.0331 2264 isapnp - ok
18:11:13.0365 2264 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:11:13.0369 2264 iScsiPrt - ok
18:11:13.0420 2264 [ F8844B00C10E386C704C610E95A9847D ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
18:11:13.0421 2264 JMCR - ok
18:11:13.0440 2264 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:11:13.0441 2264 kbdclass - ok
18:11:13.0473 2264 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:11:13.0474 2264 kbdhid - ok
18:11:13.0493 2264 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:11:13.0494 2264 KeyIso - ok
18:11:13.0539 2264 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:11:13.0542 2264 KSecDD - ok
18:11:13.0581 2264 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:11:13.0584 2264 KSecPkg - ok
18:11:13.0612 2264 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:11:13.0613 2264 ksthunk - ok
18:11:13.0650 2264 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:11:13.0658 2264 KtmRm - ok
18:11:13.0712 2264 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:11:13.0718 2264 LanmanServer - ok
18:11:13.0753 2264 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:11:13.0758 2264 LanmanWorkstation - ok
18:11:13.0801 2264 [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
18:11:13.0803 2264 LightScribeService - ok
18:11:13.0831 2264 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:11:13.0833 2264 lltdio - ok
18:11:13.0866 2264 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:11:13.0872 2264 lltdsvc - ok
18:11:13.0897 2264 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:11:13.0899 2264 lmhosts - ok
18:11:13.0942 2264 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:11:13.0945 2264 LSI_FC - ok
18:11:13.0956 2264 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:11:13.0959 2264 LSI_SAS - ok
18:11:13.0979 2264 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:11:13.0981 2264 LSI_SAS2 - ok
18:11:13.0991 2264 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:11:13.0995 2264 LSI_SCSI - ok
18:11:14.0015 2264 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:11:14.0017 2264 luafv - ok
18:11:14.0078 2264 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:11:14.0082 2264 Mcx2Svc - ok
18:11:14.0108 2264 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:11:14.0110 2264 megasas - ok
18:11:14.0146 2264 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:11:14.0151 2264 MegaSR - ok
18:11:14.0184 2264 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:11:14.0187 2264 MMCSS - ok
18:11:14.0214 2264 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:11:14.0216 2264 Modem - ok
18:11:14.0231 2264 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:11:14.0231 2264 monitor - ok
18:11:14.0269 2264 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:11:14.0270 2264 mouclass - ok
18:11:14.0303 2264 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:11:14.0305 2264 mouhid - ok
18:11:14.0350 2264 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:11:14.0351 2264 mountmgr - ok
18:11:14.0401 2264 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:11:14.0404 2264 mpio - ok
18:11:14.0437 2264 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:11:14.0439 2264 mpsdrv - ok
18:11:14.0503 2264 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:11:14.0519 2264 MpsSvc - ok
18:11:14.0581 2264 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:11:14.0584 2264 MRxDAV - ok
18:11:14.0616 2264 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:11:14.0619 2264 mrxsmb - ok
18:11:14.0656 2264 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:11:14.0660 2264 mrxsmb10 - ok
18:11:14.0678 2264 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:11:14.0680 2264 mrxsmb20 - ok
18:11:14.0709 2264 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:11:14.0711 2264 msahci - ok
18:11:14.0723 2264 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:11:14.0726 2264 msdsm - ok
18:11:14.0751 2264 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:11:14.0755 2264 MSDTC - ok
18:11:14.0796 2264 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:11:14.0797 2264 Msfs - ok
18:11:14.0816 2264 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:11:14.0817 2264 mshidkmdf - ok
18:11:14.0856 2264 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:11:14.0857 2264 msisadrv - ok
18:11:14.0895 2264 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:11:14.0899 2264 MSiSCSI - ok
18:11:14.0904 2264 msiserver - ok
18:11:14.0944 2264 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:11:14.0946 2264 MSKSSRV - ok
18:11:14.0962 2264 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:11:14.0964 2264 MSPCLOCK - ok
18:11:14.0983 2264 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:11:14.0985 2264 MSPQM - ok
18:11:15.0022 2264 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:11:15.0028 2264 MsRPC - ok
18:11:15.0070 2264 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:11:15.0071 2264 mssmbios - ok
18:11:15.0108 2264 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:11:15.0110 2264 MSTEE - ok
18:11:15.0136 2264 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:11:15.0138 2264 MTConfig - ok
18:11:15.0154 2264 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:11:15.0156 2264 Mup - ok
18:11:15.0204 2264 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:11:15.0213 2264 napagent - ok
18:11:15.0265 2264 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:11:15.0270 2264 NativeWifiP - ok
18:11:15.0309 2264 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
18:11:15.0326 2264 NDIS - ok
18:11:15.0353 2264 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:11:15.0354 2264 NdisCap - ok
18:11:15.0382 2264 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:11:15.0383 2264 NdisTapi - ok
18:11:15.0446 2264 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:11:15.0447 2264 Ndisuio - ok
18:11:15.0490 2264 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:11:15.0492 2264 NdisWan - ok
18:11:15.0529 2264 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:11:15.0530 2264 NDProxy - ok
18:11:15.0549 2264 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:11:15.0550 2264 NetBIOS - ok
18:11:15.0591 2264 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:11:15.0595 2264 NetBT - ok
18:11:15.0615 2264 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:11:15.0616 2264 Netlogon - ok
18:11:15.0658 2264 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:11:15.0665 2264 Netman - ok
18:11:15.0688 2264 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:11:15.0696 2264 netprofm - ok
18:11:15.0720 2264 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:11:15.0722 2264 NetTcpPortSharing - ok
18:11:15.0879 2264 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
18:11:16.0017 2264 netw5v64 - ok
18:11:16.0044 2264 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:11:16.0046 2264 nfrd960 - ok
18:11:16.0097 2264 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:11:16.0103 2264 NlaSvc - ok
18:11:16.0149 2264 [ 985A3F046DFCD58E26D3A95283BB8F1D ] nmwcd C:\Windows\system32\drivers\ccdcmbx64.sys
18:11:16.0150 2264 nmwcd - ok
18:11:16.0199 2264 [ 5EB41A9656388DC21119CCC33F0EE22A ] nmwcdc C:\Windows\system32\drivers\ccdcmbox64.sys
18:11:16.0201 2264 nmwcdc - ok
18:11:16.0234 2264 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:11:16.0235 2264 Npfs - ok
18:11:16.0259 2264 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:11:16.0261 2264 nsi - ok
18:11:16.0271 2264 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:11:16.0271 2264 nsiproxy - ok
18:11:16.0361 2264 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:11:16.0430 2264 Ntfs - ok
18:11:16.0467 2264 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:11:16.0468 2264 Null - ok
18:11:16.0525 2264 [ AD37248BD442D41C9A896E53EB8A85EE ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
18:11:16.0526 2264 NVHDA - ok
18:11:16.0808 2264 [ D1DB65FDDA7AF4853EF0994BB111D778 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:11:16.0915 2264 nvlddmkm - ok
18:11:17.0056 2264 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:11:17.0060 2264 nvraid - ok
18:11:17.0079 2264 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:11:17.0082 2264 nvstor - ok
18:11:17.0120 2264 [ 8F9C2A5F96810467D50687AE00465424 ] nvsvc C:\Windows\system32\nvvsvc.exe
18:11:17.0127 2264 nvsvc - ok
18:11:17.0169 2264 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:11:17.0172 2264 nv_agp - ok
18:11:17.0210 2264 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:11:17.0213 2264 ohci1394 - ok
18:11:17.0247 2264 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:11:17.0253 2264 p2pimsvc - ok
18:11:17.0287 2264 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:11:17.0296 2264 p2psvc - ok
18:11:17.0333 2264 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:11:17.0336 2264 Parport - ok
18:11:17.0375 2264 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:11:17.0377 2264 partmgr - ok
18:11:17.0402 2264 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:11:17.0407 2264 PcaSvc - ok
18:11:17.0470 2264 [ BC0018C2D29F655188A0ED3FA94FDB24 ] pccsmcfd C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
18:11:17.0471 2264 pccsmcfd - ok
18:11:17.0512 2264 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:11:17.0516 2264 pci - ok
18:11:17.0553 2264 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:11:17.0555 2264 pciide - ok
18:11:17.0583 2264 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:11:17.0586 2264 pcmcia - ok
18:11:17.0622 2264 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:11:17.0624 2264 pcw - ok
18:11:17.0654 2264 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:11:17.0664 2264 PEAUTH - ok
18:11:17.0747 2264 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:11:17.0749 2264 PerfHost - ok
18:11:17.0815 2264 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:11:17.0872 2264 pla - ok
18:11:17.0944 2264 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:11:17.0952 2264 PlugPlay - ok
18:11:17.0979 2264 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:11:17.0982 2264 PNRPAutoReg - ok
18:11:18.0013 2264 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:11:18.0018 2264 PNRPsvc - ok
18:11:18.0072 2264 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:11:18.0081 2264 PolicyAgent - ok
18:11:18.0103 2264 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:11:18.0108 2264 Power - ok
18:11:18.0139 2264 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:11:18.0141 2264 PptpMiniport - ok
18:11:18.0166 2264 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:11:18.0168 2264 Processor - ok
18:11:18.0203 2264 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:11:18.0208 2264 ProfSvc - ok
18:11:18.0226 2264 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 17:15

18:11:18.0227 2264 ProtectedStorage - ok
18:11:18.0273 2264 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:11:18.0275 2264 Psched - ok
18:11:18.0305 2264 [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
18:11:18.0307 2264 PSI_SVC_2 - ok
18:11:18.0364 2264 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:11:18.0419 2264 ql2300 - ok
18:11:18.0440 2264 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:11:18.0443 2264 ql40xx - ok
18:11:18.0475 2264 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:11:18.0481 2264 QWAVE - ok
18:11:18.0508 2264 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:11:18.0510 2264 QWAVEdrv - ok
18:11:18.0523 2264 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:11:18.0525 2264 RasAcd - ok
18:11:18.0575 2264 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:11:18.0576 2264 RasAgileVpn - ok
18:11:18.0599 2264 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:11:18.0602 2264 RasAuto - ok
18:11:18.0643 2264 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:11:18.0645 2264 Rasl2tp - ok
18:11:18.0699 2264 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:11:18.0706 2264 RasMan - ok
18:11:18.0725 2264 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:11:18.0726 2264 RasPppoe - ok
18:11:18.0760 2264 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:11:18.0762 2264 RasSstp - ok
18:11:18.0794 2264 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:11:18.0799 2264 rdbss - ok
18:11:18.0813 2264 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:11:18.0815 2264 rdpbus - ok
18:11:18.0849 2264 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:11:18.0849 2264 RDPCDD - ok
18:11:18.0865 2264 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:11:18.0866 2264 RDPENCDD - ok
18:11:18.0887 2264 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:11:18.0888 2264 RDPREFMP - ok
18:11:18.0923 2264 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:11:18.0927 2264 RDPWD - ok
18:11:18.0961 2264 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:11:18.0965 2264 rdyboost - ok
18:11:18.0999 2264 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:11:19.0003 2264 RemoteAccess - ok
18:11:19.0034 2264 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:11:19.0038 2264 RemoteRegistry - ok
18:11:19.0114 2264 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:11:19.0117 2264 RichVideo - ok
18:11:19.0140 2264 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:11:19.0144 2264 RpcEptMapper - ok
18:11:19.0172 2264 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:11:19.0174 2264 RpcLocator - ok
18:11:19.0220 2264 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:11:19.0227 2264 RpcSs - ok
18:11:19.0265 2264 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:11:19.0267 2264 rspndr - ok
18:11:19.0309 2264 [ 5B04929EF24F87E239B880FAAE410E3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:11:19.0313 2264 RTL8167 - ok
18:11:19.0325 2264 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:11:19.0327 2264 SamSs - ok
18:11:19.0363 2264 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:11:19.0365 2264 sbp2port - ok
18:11:19.0392 2264 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:11:19.0397 2264 SCardSvr - ok
18:11:19.0431 2264 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:11:19.0433 2264 scfilter - ok
18:11:19.0493 2264 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:11:19.0539 2264 Schedule - ok
18:11:19.0587 2264 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:11:19.0589 2264 SCPolicySvc - ok
18:11:19.0659 2264 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:11:19.0661 2264 sdbus - ok
18:11:19.0701 2264 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:11:19.0706 2264 SDRSVC - ok
18:11:19.0746 2264 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:11:19.0747 2264 secdrv - ok
18:11:19.0782 2264 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:11:19.0785 2264 seclogon - ok
18:11:19.0825 2264 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:11:19.0828 2264 SENS - ok
18:11:19.0860 2264 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:11:19.0864 2264 SensrSvc - ok
18:11:19.0900 2264 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:11:19.0901 2264 Serenum - ok
18:11:19.0930 2264 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:11:19.0932 2264 Serial - ok
18:11:19.0953 2264 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:11:19.0955 2264 sermouse - ok
18:11:20.0066 2264 [ 7D3903AF48E6C1DC2704EAFCB608D031 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
18:11:20.0076 2264 ServiceLayer - ok
18:11:20.0125 2264 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:11:20.0129 2264 SessionEnv - ok
18:11:20.0170 2264 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:11:20.0172 2264 sffdisk - ok
18:11:20.0188 2264 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:11:20.0190 2264 sffp_mmc - ok
18:11:20.0207 2264 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:11:20.0208 2264 sffp_sd - ok
18:11:20.0252 2264 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:11:20.0254 2264 sfloppy - ok
18:11:20.0292 2264 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:11:20.0299 2264 SharedAccess - ok
18:11:20.0345 2264 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:11:20.0353 2264 ShellHWDetection - ok
18:11:20.0393 2264 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:11:20.0395 2264 SiSRaid2 - ok
18:11:20.0429 2264 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:11:20.0431 2264 SiSRaid4 - ok
18:11:20.0467 2264 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:11:20.0470 2264 Smb - ok
18:11:20.0526 2264 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:11:20.0529 2264 SNMPTRAP - ok
18:11:20.0544 2264 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:11:20.0546 2264 spldr - ok
18:11:20.0598 2264 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:11:20.0608 2264 Spooler - ok
18:11:20.0725 2264 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:11:20.0759 2264 sppsvc - ok
18:11:20.0793 2264 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:11:20.0797 2264 sppuinotify - ok
18:11:20.0871 2264 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
18:11:20.0872 2264 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
18:11:20.0874 2264 sptd ( LockedFile.Multi.Generic ) - warning
18:11:20.0874 2264 sptd - detected LockedFile.Multi.Generic (1)
18:11:20.0925 2264 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:11:20.0932 2264 srv - ok
18:11:20.0959 2264 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:11:20.0966 2264 srv2 - ok
18:11:21.0007 2264 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:11:21.0012 2264 SrvHsfHDA - ok
18:11:21.0060 2264 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:11:21.0105 2264 SrvHsfV92 - ok
18:11:21.0139 2264 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:11:21.0150 2264 SrvHsfWinac - ok
18:11:21.0193 2264 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:11:21.0196 2264 srvnet - ok
18:11:21.0233 2264 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:11:21.0239 2264 SSDPSRV - ok
18:11:21.0258 2264 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:11:21.0262 2264 SstpSvc - ok
18:11:21.0378 2264 [ 57BEB4500716DD30B65DFA85A35CC3D7 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\STacSV64.exe
18:11:21.0382 2264 STacSV - ok
18:11:21.0403 2264 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:11:21.0404 2264 stexstor - ok
18:11:21.0463 2264 [ 1FEDF8D130CE221521B9BAD6703B92DE ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
18:11:21.0471 2264 STHDA - ok
18:11:21.0525 2264 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:11:21.0537 2264 stisvc - ok
18:11:21.0577 2264 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:11:21.0577 2264 swenum - ok
18:11:21.0616 2264 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:11:21.0626 2264 swprv - ok
18:11:21.0680 2264 [ 924D711941956F7420A4925592BE8253 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:11:21.0683 2264 SynTP - ok
18:11:21.0749 2264 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:11:21.0818 2264 SysMain - ok
18:11:21.0860 2264 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:11:21.0865 2264 TabletInputService - ok
18:11:21.0907 2264 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:11:21.0914 2264 TapiSrv - ok
18:11:21.0933 2264 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:11:21.0937 2264 TBS - ok
18:11:22.0021 2264 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:11:22.0078 2264 Tcpip - ok
18:11:22.0123 2264 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:11:22.0141 2264 TCPIP6 - ok
18:11:22.0182 2264 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:11:22.0183 2264 tcpipreg - ok
18:11:22.0213 2264 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:11:22.0214 2264 TDPIPE - ok
18:11:22.0250 2264 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:11:22.0252 2264 TDTCP - ok
18:11:22.0288 2264 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:11:22.0291 2264 tdx - ok
18:11:22.0460 2264 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:11:22.0528 2264 TeamViewer7 - ok
18:11:22.0592 2264 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:11:22.0593 2264 TermDD - ok
18:11:22.0649 2264 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:11:22.0666 2264 TermService - ok
18:11:22.0689 2264 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:11:22.0693 2264 Themes - ok
18:11:22.0728 2264 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:11:22.0730 2264 THREADORDER - ok
18:11:22.0745 2264 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:11:22.0749 2264 TrkWks - ok
18:11:22.0816 2264 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:11:22.0819 2264 TrustedInstaller - ok
18:11:22.0856 2264 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:11:22.0858 2264 tssecsrv - ok
18:11:22.0904 2264 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:11:22.0906 2264 TsUsbFlt - ok
18:11:22.0963 2264 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:11:22.0965 2264 tunnel - ok
18:11:23.0012 2264 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:11:23.0014 2264 uagp35 - ok
18:11:23.0056 2264 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:11:23.0062 2264 udfs - ok
18:11:23.0117 2264 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:11:23.0120 2264 UI0Detect - ok
18:11:23.0167 2264 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:11:23.0169 2264 uliagpkx - ok
18:11:23.0207 2264 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:11:23.0208 2264 umbus - ok
18:11:23.0246 2264 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:11:23.0248 2264 UmPass - ok
18:11:23.0273 2264 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:11:23.0280 2264 upnphost - ok
18:11:23.0353 2264 [ AFA3A0937B7044A8322D8BC91722C53B ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
18:11:23.0354 2264 upperdev - ok
18:11:23.0404 2264 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:11:23.0406 2264 usbccgp - ok
18:11:23.0443 2264 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:11:23.0445 2264 usbcir - ok
18:11:23.0475 2264 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:11:23.0476 2264 usbehci - ok
18:11:23.0522 2264 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:11:23.0527 2264 usbhub - ok
18:11:23.0558 2264 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:11:23.0561 2264 usbohci - ok
18:11:23.0592 2264 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:11:23.0594 2264 usbprint - ok
18:11:23.0656 2264 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\drivers\usbser.sys
18:11:23.0657 2264 usbser - ok
18:11:23.0702 2264 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:11:23.0704 2264 USBSTOR - ok
18:11:23.0756 2264 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:11:23.0758 2264 usbuhci - ok
18:11:23.0814 2264 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:11:23.0817 2264 usbvideo - ok
18:11:23.0847 2264 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:11:23.0850 2264 UxSms - ok
18:11:23.0859 2264 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:11:23.0861 2264 VaultSvc - ok
18:11:23.0899 2264 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:11:23.0900 2264 vdrvroot - ok
18:11:23.0942 2264 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:11:23.0953 2264 vds - ok
18:11:23.0992 2264 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:11:23.0993 2264 vga - ok
18:11:24.0005 2264 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:11:24.0007 2264 VgaSave - ok
18:11:24.0047 2264 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:11:24.0052 2264 vhdmp - ok
18:11:24.0099 2264 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:11:24.0100 2264 viaide - ok
18:11:24.0119 2264 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:11:24.0121 2264 volmgr - ok
18:11:24.0167 2264 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:11:24.0172 2264 volmgrx - ok
18:11:24.0188 2264 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:11:24.0193 2264 volsnap - ok
18:11:24.0236 2264 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:11:24.0239 2264 vsmraid - ok
18:11:24.0313 2264 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:11:24.0370 2264 VSS - ok
18:11:24.0399 2264 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:11:24.0401 2264 vwifibus - ok
18:11:24.0430 2264 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:11:24.0431 2264 vwififlt - ok
18:11:24.0472 2264 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:11:24.0480 2264 W32Time - ok
18:11:24.0505 2264 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:11:24.0507 2264 WacomPen - ok
18:11:24.0559 2264 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:11:24.0561 2264 WANARP - ok
18:11:24.0566 2264 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:11:24.0569 2264 Wanarpv6 - ok
18:11:24.0651 2264 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:11:24.0685 2264 WatAdminSvc - ok
18:11:24.0755 2264 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:11:24.0811 2264 wbengine - ok
18:11:24.0842 2264 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:11:24.0848 2264 WbioSrvc - ok
18:11:24.0900 2264 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:11:24.0908 2264 wcncsvc - ok
18:11:24.0939 2264 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:11:24.0942 2264 WcsPlugInService - ok
18:11:24.0962 2264 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:11:24.0963 2264 Wd - ok
18:11:25.0002 2264 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:11:25.0011 2264 Wdf01000 - ok
18:11:25.0029 2264 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:11:25.0033 2264 WdiServiceHost - ok
18:11:25.0039 2264 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:11:25.0043 2264 WdiSystemHost - ok
18:11:25.0074 2264 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:11:25.0080 2264 WebClient - ok
18:11:25.0108 2264 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:11:25.0114 2264 Wecsvc - ok
18:11:25.0136 2264 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:11:25.0140 2264 wercplsupport - ok
18:11:25.0167 2264 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:11:25.0171 2264 WerSvc - ok
18:11:25.0190 2264 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:11:25.0191 2264 WfpLwf - ok
18:11:25.0212 2264 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:11:25.0213 2264 WIMMount - ok
18:11:25.0260 2264 WinDefend - ok
18:11:25.0267 2264 WinHttpAutoProxySvc - ok
18:11:25.0315 2264 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:11:25.0319 2264 Winmgmt - ok
18:11:25.0402 2264 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:11:25.0472 2264 WinRM - ok
18:11:25.0565 2264 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:11:25.0567 2264 WinUsb - ok
18:11:25.0618 2264 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:11:25.0638 2264 Wlansvc - ok
18:11:25.0816 2264 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:11:25.0881 2264 wlidsvc - ok
18:11:25.0911 2264 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:11:25.0912 2264 WmiAcpi - ok
18:11:25.0947 2264 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:11:25.0951 2264 wmiApSrv - ok
18:11:25.0979 2264 WMPNetworkSvc - ok
18:11:26.0007 2264 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:11:26.0011 2264 WPCSvc - ok
18:11:26.0047 2264 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:11:26.0052 2264 WPDBusEnum - ok
18:11:26.0079 2264 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:11:26.0081 2264 ws2ifsl - ok
18:11:26.0123 2264 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:11:26.0126 2264 wscsvc - ok
18:11:26.0131 2264 WSearch - ok
18:11:26.0214 2264 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:11:26.0289 2264 wuauserv - ok
18:11:26.0319 2264 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:11:26.0321 2264 WudfPf - ok
18:11:26.0363 2264 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:11:26.0367 2264 WUDFRd - ok
18:11:26.0396 2264 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:11:26.0400 2264 wudfsvc - ok
18:11:26.0440 2264 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:11:26.0446 2264 WwanSvc - ok
18:11:26.0501 2264 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:11:26.0508 2264 yukonw7 - ok
18:11:26.0541 2264 ================ Scan global ===============================
18:11:26.0569 2264 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:11:26.0607 2264 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
18:11:26.0620 2264 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
18:11:26.0652 2264 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:11:26.0686 2264 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:11:26.0693 2264 [Global] - ok
18:11:26.0693 2264 ================ Scan MBR ==================================
18:11:26.0704 2264 [ 8113C00544AE449BAE269616C2906DAB ] \Device\Harddisk0\DR0
18:11:27.0001 2264 \Device\Harddisk0\DR0 - ok
18:11:27.0002 2264 ================ Scan VBR ==================================
18:11:27.0006 2264 [ 3E959D505650FCCFB88E8A195EFCECAA ] \Device\Harddisk0\DR0\Partition1
18:11:27.0008 2264 \Device\Harddisk0\DR0\Partition1 - ok
18:11:27.0025 2264 [ DC5A50BDC56AE9478F5450B5304E5A75 ] \Device\Harddisk0\DR0\Partition2
18:11:27.0027 2264 \Device\Harddisk0\DR0\Partition2 - ok
18:11:27.0060 2264 [ 427F7F153830A32BACC17330877C7892 ] \Device\Harddisk0\DR0\Partition3
18:11:27.0063 2264 \Device\Harddisk0\DR0\Partition3 - ok
18:11:27.0077 2264 [ C1CCFFA7516A2D087780219ABEB3EDB3 ] \Device\Harddisk0\DR0\Partition4
18:11:27.0078 2264 \Device\Harddisk0\DR0\Partition4 - ok
18:11:27.0079 2264 ============================================================
18:11:27.0079 2264 Scan finished
18:11:27.0079 2264 ============================================================
18:11:27.0095 3892 Detected object count: 1
18:11:27.0095 3892 Actual detected object count: 1
18:12:43.0554 3892 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:12:43.0554 3892 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
18:16:04.0367 4048 Deinitialize success



ps:ti ho separato il report in due pezzi perchè non me lo faceva inviare con una sola mail.
ora che devo fare!?!?!? :)
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 17:16

18:11:18.0227 2264 ProtectedStorage - ok
18:11:18.0273 2264 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:11:18.0275 2264 Psched - ok
18:11:18.0305 2264 [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
18:11:18.0307 2264 PSI_SVC_2 - ok
18:11:18.0364 2264 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:11:18.0419 2264 ql2300 - ok
18:11:18.0440 2264 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:11:18.0443 2264 ql40xx - ok
18:11:18.0475 2264 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:11:18.0481 2264 QWAVE - ok
18:11:18.0508 2264 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:11:18.0510 2264 QWAVEdrv - ok
18:11:18.0523 2264 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:11:18.0525 2264 RasAcd - ok
18:11:18.0575 2264 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:11:18.0576 2264 RasAgileVpn - ok
18:11:18.0599 2264 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:11:18.0602 2264 RasAuto - ok
18:11:18.0643 2264 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:11:18.0645 2264 Rasl2tp - ok
18:11:18.0699 2264 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:11:18.0706 2264 RasMan - ok
18:11:18.0725 2264 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:11:18.0726 2264 RasPppoe - ok
18:11:18.0760 2264 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:11:18.0762 2264 RasSstp - ok
18:11:18.0794 2264 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:11:18.0799 2264 rdbss - ok
18:11:18.0813 2264 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:11:18.0815 2264 rdpbus - ok
18:11:18.0849 2264 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:11:18.0849 2264 RDPCDD - ok
18:11:18.0865 2264 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:11:18.0866 2264 RDPENCDD - ok
18:11:18.0887 2264 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:11:18.0888 2264 RDPREFMP - ok
18:11:18.0923 2264 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:11:18.0927 2264 RDPWD - ok
18:11:18.0961 2264 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:11:18.0965 2264 rdyboost - ok
18:11:18.0999 2264 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:11:19.0003 2264 RemoteAccess - ok
18:11:19.0034 2264 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:11:19.0038 2264 RemoteRegistry - ok
18:11:19.0114 2264 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:11:19.0117 2264 RichVideo - ok
18:11:19.0140 2264 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:11:19.0144 2264 RpcEptMapper - ok
18:11:19.0172 2264 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:11:19.0174 2264 RpcLocator - ok
18:11:19.0220 2264 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:11:19.0227 2264 RpcSs - ok
18:11:19.0265 2264 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:11:19.0267 2264 rspndr - ok
18:11:19.0309 2264 [ 5B04929EF24F87E239B880FAAE410E3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:11:19.0313 2264 RTL8167 - ok
18:11:19.0325 2264 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:11:19.0327 2264 SamSs - ok
18:11:19.0363 2264 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:11:19.0365 2264 sbp2port - ok
18:11:19.0392 2264 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:11:19.0397 2264 SCardSvr - ok
18:11:19.0431 2264 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:11:19.0433 2264 scfilter - ok
18:11:19.0493 2264 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:11:19.0539 2264 Schedule - ok
18:11:19.0587 2264 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:11:19.0589 2264 SCPolicySvc - ok
18:11:19.0659 2264 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:11:19.0661 2264 sdbus - ok
18:11:19.0701 2264 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:11:19.0706 2264 SDRSVC - ok
18:11:19.0746 2264 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:11:19.0747 2264 secdrv - ok
18:11:19.0782 2264 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:11:19.0785 2264 seclogon - ok
18:11:19.0825 2264 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:11:19.0828 2264 SENS - ok
18:11:19.0860 2264 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:11:19.0864 2264 SensrSvc - ok
18:11:19.0900 2264 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:11:19.0901 2264 Serenum - ok
18:11:19.0930 2264 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:11:19.0932 2264 Serial - ok
18:11:19.0953 2264 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:11:19.0955 2264 sermouse - ok
18:11:20.0066 2264 [ 7D3903AF48E6C1DC2704EAFCB608D031 ] ServiceLayer C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
18:11:20.0076 2264 ServiceLayer - ok
18:11:20.0125 2264 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:11:20.0129 2264 SessionEnv - ok
18:11:20.0170 2264 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:11:20.0172 2264 sffdisk - ok
18:11:20.0188 2264 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:11:20.0190 2264 sffp_mmc - ok
18:11:20.0207 2264 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:11:20.0208 2264 sffp_sd - ok
18:11:20.0252 2264 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:11:20.0254 2264 sfloppy - ok
18:11:20.0292 2264 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:11:20.0299 2264 SharedAccess - ok
18:11:20.0345 2264 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:11:20.0353 2264 ShellHWDetection - ok
18:11:20.0393 2264 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:11:20.0395 2264 SiSRaid2 - ok
18:11:20.0429 2264 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:11:20.0431 2264 SiSRaid4 - ok
18:11:20.0467 2264 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:11:20.0470 2264 Smb - ok
18:11:20.0526 2264 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:11:20.0529 2264 SNMPTRAP - ok
18:11:20.0544 2264 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:11:20.0546 2264 spldr - ok
18:11:20.0598 2264 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:11:20.0608 2264 Spooler - ok
18:11:20.0725 2264 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:11:20.0759 2264 sppsvc - ok
18:11:20.0793 2264 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:11:20.0797 2264 sppuinotify - ok
18:11:20.0871 2264 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
18:11:20.0872 2264 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
18:11:20.0874 2264 sptd ( LockedFile.Multi.Generic ) - warning
18:11:20.0874 2264 sptd - detected LockedFile.Multi.Generic (1)
18:11:20.0925 2264 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:11:20.0932 2264 srv - ok
18:11:20.0959 2264 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:11:20.0966 2264 srv2 - ok
18:11:21.0007 2264 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:11:21.0012 2264 SrvHsfHDA - ok
18:11:21.0060 2264 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:11:21.0105 2264 SrvHsfV92 - ok
18:11:21.0139 2264 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:11:21.0150 2264 SrvHsfWinac - ok
18:11:21.0193 2264 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:11:21.0196 2264 srvnet - ok
18:11:21.0233 2264 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:11:21.0239 2264 SSDPSRV - ok
18:11:21.0258 2264 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:11:21.0262 2264 SstpSvc - ok
18:11:21.0378 2264 [ 57BEB4500716DD30B65DFA85A35CC3D7 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_d15ed671de43d681\STacSV64.exe
18:11:21.0382 2264 STacSV - ok
18:11:21.0403 2264 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:11:21.0404 2264 stexstor - ok
18:11:21.0463 2264 [ 1FEDF8D130CE221521B9BAD6703B92DE ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
18:11:21.0471 2264 STHDA - ok
18:11:21.0525 2264 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:11:21.0537 2264 stisvc - ok
18:11:21.0577 2264 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:11:21.0577 2264 swenum - ok
18:11:21.0616 2264 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:11:21.0626 2264 swprv - ok
18:11:21.0680 2264 [ 924D711941956F7420A4925592BE8253 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:11:21.0683 2264 SynTP - ok
18:11:21.0749 2264 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:11:21.0818 2264 SysMain - ok
18:11:21.0860 2264 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:11:21.0865 2264 TabletInputService - ok
18:11:21.0907 2264 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:11:21.0914 2264 TapiSrv - ok
18:11:21.0933 2264 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:11:21.0937 2264 TBS - ok
18:11:22.0021 2264 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:11:22.0078 2264 Tcpip - ok
18:11:22.0123 2264 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:11:22.0141 2264 TCPIP6 - ok
18:11:22.0182 2264 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:11:22.0183 2264 tcpipreg - ok
18:11:22.0213 2264 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:11:22.0214 2264 TDPIPE - ok
18:11:22.0250 2264 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:11:22.0252 2264 TDTCP - ok
18:11:22.0288 2264 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:11:22.0291 2264 tdx - ok
18:11:22.0460 2264 [ 3E85BDD019E3DB66D9471DAD7FD6A887 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
18:11:22.0528 2264 TeamViewer7 - ok
18:11:22.0592 2264 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:11:22.0593 2264 TermDD - ok
18:11:22.0649 2264 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:11:22.0666 2264 TermService - ok
18:11:22.0689 2264 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:11:22.0693 2264 Themes - ok
18:11:22.0728 2264 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:11:22.0730 2264 THREADORDER - ok
18:11:22.0745 2264 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:11:22.0749 2264 TrkWks - ok
18:11:22.0816 2264 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:11:22.0819 2264 TrustedInstaller - ok
18:11:22.0856 2264 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:11:22.0858 2264 tssecsrv - ok
18:11:22.0904 2264 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:11:22.0906 2264 TsUsbFlt - ok
18:11:22.0963 2264 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:11:22.0965 2264 tunnel - ok
18:11:23.0012 2264 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:11:23.0014 2264 uagp35 - ok
18:11:23.0056 2264 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:11:23.0062 2264 udfs - ok
18:11:23.0117 2264 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:11:23.0120 2264 UI0Detect - ok
18:11:23.0167 2264 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:11:23.0169 2264 uliagpkx - ok
18:11:23.0207 2264 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:11:23.0208 2264 umbus - ok
18:11:23.0246 2264 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:11:23.0248 2264 UmPass - ok
18:11:23.0273 2264 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:11:23.0280 2264 upnphost - ok
18:11:23.0353 2264 [ AFA3A0937B7044A8322D8BC91722C53B ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
18:11:23.0354 2264 upperdev - ok
18:11:23.0404 2264 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:11:23.0406 2264 usbccgp - ok
18:11:23.0443 2264 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:11:23.0445 2264 usbcir - ok
18:11:23.0475 2264 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:11:23.0476 2264 usbehci - ok
18:11:23.0522 2264 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:11:23.0527 2264 usbhub - ok
18:11:23.0558 2264 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:11:23.0561 2264 usbohci - ok
18:11:23.0592 2264 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:11:23.0594 2264 usbprint - ok
18:11:23.0656 2264 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\Windows\system32\drivers\usbser.sys
18:11:23.0657 2264 usbser - ok
18:11:23.0702 2264 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:11:23.0704 2264 USBSTOR - ok
18:11:23.0756 2264 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:11:23.0758 2264 usbuhci - ok
18:11:23.0814 2264 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:11:23.0817 2264 usbvideo - ok
18:11:23.0847 2264 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:11:23.0850 2264 UxSms - ok
18:11:23.0859 2264 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:11:23.0861 2264 VaultSvc - ok
18:11:23.0899 2264 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:11:23.0900 2264 vdrvroot - ok
18:11:23.0942 2264 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:11:23.0953 2264 vds - ok
18:11:23.0992 2264 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:11:23.0993 2264 vga - ok
18:11:24.0005 2264 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:11:24.0007 2264 VgaSave - ok
18:11:24.0047 2264 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:11:24.0052 2264 vhdmp - ok
18:11:24.0099 2264 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:11:24.0100 2264 viaide - ok
18:11:24.0119 2264 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:11:24.0121 2264 volmgr - ok
18:11:24.0167 2264 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:11:24.0172 2264 volmgrx - ok
18:11:24.0188 2264 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:11:24.0193 2264 volsnap - ok
18:11:24.0236 2264 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:11:24.0239 2264 vsmraid - ok
18:11:24.0313 2264 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:11:24.0370 2264 VSS - ok
18:11:24.0399 2264 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:11:24.0401 2264 vwifibus - ok
18:11:24.0430 2264 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:11:24.0431 2264 vwififlt - ok
18:11:24.0472 2264 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:11:24.0480 2264 W32Time - ok
18:11:24.0505 2264 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:11:24.0507 2264 WacomPen - ok
18:11:24.0559 2264 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:11:24.0561 2264 WANARP - ok
18:11:24.0566 2264 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:11:24.0569 2264 Wanarpv6 - ok
18:11:24.0651 2264 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:11:24.0685 2264 WatAdminSvc - ok
18:11:24.0755 2264 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:11:24.0811 2264 wbengine - ok
18:11:24.0842 2264 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:11:24.0848 2264 WbioSrvc - ok
18:11:24.0900 2264 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:11:24.0908 2264 wcncsvc - ok
18:11:24.0939 2264 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:11:24.0942 2264 WcsPlugInService - ok
18:11:24.0962 2264 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:11:24.0963 2264 Wd - ok
18:11:25.0002 2264 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:11:25.0011 2264 Wdf01000 - ok
18:11:25.0029 2264 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:11:25.0033 2264 WdiServiceHost - ok
18:11:25.0039 2264 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:11:25.0043 2264 WdiSystemHost - ok
18:11:25.0074 2264 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:11:25.0080 2264 WebClient - ok
18:11:25.0108 2264 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:11:25.0114 2264 Wecsvc - ok
18:11:25.0136 2264 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:11:25.0140 2264 wercplsupport - ok
18:11:25.0167 2264 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:11:25.0171 2264 WerSvc - ok
18:11:25.0190 2264 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:11:25.0191 2264 WfpLwf - ok
18:11:25.0212 2264 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:11:25.0213 2264 WIMMount - ok
18:11:25.0260 2264 WinDefend - ok
18:11:25.0267 2264 WinHttpAutoProxySvc - ok
18:11:25.0315 2264 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:11:25.0319 2264 Winmgmt - ok
18:11:25.0402 2264 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:11:25.0472 2264 WinRM - ok
18:11:25.0565 2264 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:11:25.0567 2264 WinUsb - ok
18:11:25.0618 2264 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:11:25.0638 2264 Wlansvc - ok
18:11:25.0816 2264 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:11:25.0881 2264 wlidsvc - ok
18:11:25.0911 2264 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:11:25.0912 2264 WmiAcpi - ok
18:11:25.0947 2264 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:11:25.0951 2264 wmiApSrv - ok
18:11:25.0979 2264 WMPNetworkSvc - ok
18:11:26.0007 2264 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:11:26.0011 2264 WPCSvc - ok
18:11:26.0047 2264 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:11:26.0052 2264 WPDBusEnum - ok
18:11:26.0079 2264 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:11:26.0081 2264 ws2ifsl - ok
18:11:26.0123 2264 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:11:26.0126 2264 wscsvc - ok
18:11:26.0131 2264 WSearch - ok
18:11:26.0214 2264 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:11:26.0289 2264 wuauserv - ok
18:11:26.0319 2264 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:11:26.0321 2264 WudfPf - ok
18:11:26.0363 2264 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:11:26.0367 2264 WUDFRd - ok
18:11:26.0396 2264 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:11:26.0400 2264 wudfsvc - ok
18:11:26.0440 2264 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:11:26.0446 2264 WwanSvc - ok
18:11:26.0501 2264 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:11:26.0508 2264 yukonw7 - ok
18:11:26.0541 2264 ================ Scan global ===============================
18:11:26.0569 2264 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:11:26.0607 2264 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
18:11:26.0620 2264 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
18:11:26.0652 2264 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:11:26.0686 2264 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:11:26.0693 2264 [Global] - ok
18:11:26.0693 2264 ================ Scan MBR ==================================
18:11:26.0704 2264 [ 8113C00544AE449BAE269616C2906DAB ] \Device\Harddisk0\DR0
18:11:27.0001 2264 \Device\Harddisk0\DR0 - ok
18:11:27.0002 2264 ================ Scan VBR ==================================
18:11:27.0006 2264 [ 3E959D505650FCCFB88E8A195EFCECAA ] \Device\Harddisk0\DR0\Partition1
18:11:27.0008 2264 \Device\Harddisk0\DR0\Partition1 - ok
18:11:27.0025 2264 [ DC5A50BDC56AE9478F5450B5304E5A75 ] \Device\Harddisk0\DR0\Partition2
18:11:27.0027 2264 \Device\Harddisk0\DR0\Partition2 - ok
18:11:27.0060 2264 [ 427F7F153830A32BACC17330877C7892 ] \Device\Harddisk0\DR0\Partition3
18:11:27.0063 2264 \Device\Harddisk0\DR0\Partition3 - ok
18:11:27.0077 2264 [ C1CCFFA7516A2D087780219ABEB3EDB3 ] \Device\Harddisk0\DR0\Partition4
18:11:27.0078 2264 \Device\Harddisk0\DR0\Partition4 - ok
18:11:27.0079 2264 ============================================================
18:11:27.0079 2264 Scan finished
18:11:27.0079 2264 ============================================================
18:11:27.0095 3892 Detected object count: 1
18:11:27.0095 3892 Actual detected object count: 1
18:12:43.0554 3892 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:12:43.0554 3892 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
18:16:04.0367 4048 Deinitialize success



ps:ti ho separato il report in due pezzi perchè non me lo faceva inviare con una sola mail.
ora che devo fare!?!?!? :)
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 17:19

ps: la seconda parte del report te l'ho inviata due volte...è stato un errore,credevo non l'avesse inviata, scusamiii
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 18:02

ho riavviato il pc per vedere se era cambiato qualcosa....beh il problema persiste :((( stavolta è uscita la schermata nera ma dopo 3-4 minuti è uscita l'immagine del desktop con la barra dei comandi ma tutto inutilizzabile,cioè ancora in fase di caricamento...poi dopo un altro paio di minuti sono uscite anche le icone...ma perchè fa così?!?!!?
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi marie » 01/09/12 18:50

però la schermata nera è durata meno rispetto a prima...e comunque le finestre le apre più velocemente
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 02/09/12 09:11

Esegui la procedura descritta, rigorosamente nel suo ordine, al fine di:
guadagnare spazio su disco
ottimizzare le prestazioni del sistema
mantenere il corretto funzionamento di Windows

Ottimizzazione - post rimozione malware

Il mio consiglio è quello di stampare questa procedura, perché tornerà senz'altro utile in futuro, a te ed ai tuoi conoscenti: condividila pure con loro, non ha controindicazioni di alcun genere ed andrebbe eseguita dopo aver rimosso tutte le infezione presenti nel sistema.
Queste operazioni infatti, andrebbero eseguite almeno una volta al mese (per utilizzatori di Computer assidui il tempo è ridotto a due settimane, eccetto per lo Scandisk, punto 13. della procedura).

Tieni presente che la maggior parte delle chiavi di registro corrotte e danneggiate non si possono ripristinare e riparare correttamente, e l'installazione e la disinstallazione continua dei programmi può causare crash di sistema e fastidiose schermate blu.

Una formattazione consente di ottenere dei massimi benefici, in termini di velocità, stabilità e prestazioni: questa procedura si avvicina maggiormente ai risultati ottenuti tramite una formattazione del disco fisso.

2. Disinstalla i programmi inutilizzati, e tutte le Toolbar

Procedura per Windows XP:
● clicca sul pulsante Start
● apri il Pannello di controllo
● clicca su Installazione applicazioni
● seleziona il programma da disinstallare, e clicca sul tasto Cambia/Rimuovi: partirà la procedura di disinstallazione

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● apri il Pannello di controllo
● clicca su Programmi, e su Programmi e funzionalità
● seleziona il programma da disinstallare, e clicca sul tasto Cambia/Disinstalla: partirà la procedura di disinstallazione

******************************

3. Disinstalla dal Pannello di controllo, in particolare, le seguenti applicazioni:
Adobe Flash Player
Adobe Reader
Java (tutte le versioni installate)

Scarica ed installa, dai siti proposti, le versioni aggiornate dei programmi appena disinstallati:
Adobe Flash Player: http://get.adobe.com/it/flashplayer
Adobe Reader : http://get.adobe.com/it/reader
Java: http://java.com/it/download/index.jsp

Note - riguardo alla procedura:
non consentire l'installazione di componenti aggiuntivi (Toolbar in particolare): non installarne alcuno, quindi togli la spunta alla relativa voce
● alternativamente ad Abobe Reader, software pesante e soprattutto soggetto a vulnerabilità sfruttabili dai malware presenti nella rete per infettare il sistema, puoi scaricare il veloce e leggerissimo Sumatra PDF Reader, che nulla ha da invidiare al prodotto di casa Adobe: http://blog.kowalczyk.info/software/sum ... eader.html

******************************

4. Disattiva il Ripristino Configurazione di Sistema

Procedura per Windows XP:
● clicca sul pulsante Start
● tasto destro del mouse sull'icona Risorse del computer
● seleziona, dal menù a tendina, la voce Proprietà
● apri la scheda Ripristino configurazione di sistema
● metti la spunta alla voce Disattiva Ripristino configurazione di sistema su tutte le unità
● conferma la modifica, con Applica e OK
riavvia il sistema

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● tasto destro del mouse sull'icona Computer
● seleziona, dal menù a tendina, la voce Proprietà
● clicca, nel menù a sinistra, su Protezione sistema; compare un avviso relativo al Controllo Account Utente: clicca su Continua
● deseleziona la casella di controllo visualizzata accanto al Disco Locale C:
● clicca sul pulsante OK
● conferma la modifica apportata, cliccando sul pulsante Applica e OK
riavvia il sistema

******************************

5. Svuota del suo contenuto la cartella Prefetch

Procedura per Windows XP:
● clicca sul pulsante Start
● clicca su Risorse del computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella Prefetch
elimina tutte le voci conservate al suo interno: fai attenzione però, a non eliminare la cartella

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● clicca su Computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella Prefetch
elimina tutte le voci conservate al suo interno, tranne il file Layout.ini: fai attenzione però, a non eliminare la cartella

Nota - riguardo alla procedura:
● la cartella Prefetch contiene i file che il sistema operativo esegue; un'operazione di prefetch consiste nel rendere immediatamente disponibili, nella memoria cache, i file utilizzati più spesso e quelli necessari per il processo di avvio del personal computer.
Il riavvio successivo sarà un po' lento, ma quelli seguenti saranno senza dubbio più veloci

******************************

6. Svuota del suo contenuto la cartella Download

Procedura per Windows XP:
● clicca sul pulsante Start
● clicca su Risorse del computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella SoftwareDistribution
● individua ed apri la cartella Download
elimina tutte le voci conservate al suo interno: fai attenzione però, a non eliminare la cartella

Procedura per Windows Vista e Windows Seven:
● clicca sul pulsante Start
● clicca su Computer
● apri il Disco locale C:
● individua ed apri la cartella Windows
● individua ed apri la cartella SoftwareDistribution
● individua ed apri la cartella Download
elimina tutte le voci conservate al suo interno: fai attenzione però, a non eliminare la cartella

Nota - riguardo alla procedura:
● la cartella Download contiene i file di installazione degli aggiornamenti di Windows, che possono essere eliminati senza problemi per recuperare spazio su disco e risolvere fastidiosi problemi di aggiornamenti

******************************

7. Scarica TFC by OldTimer: http://oldtimer.geekstogo.com/TFC.exe
● posiziona il tool sul Desktop
termina tutti i programmi attivi, comprese le pagine Internet
● avvia il tool con un doppio click
● clicca, in basso a sinistra, sul pulsante Start
scomparirà, per qualche istante, il Desktop: nulla di cui preoccuparsi
● attendi pazientemente il termine delle operazioni
● clicca, in basso a destra, sul pulsante Exit
● una volta terminate le operazioni, chiudi il programma

Nota: per eseguire correttamente TFC by OldTimer su Windows Vista e Windows Seven, clicca con il tasto destro del mouse sull'icona del programma e, dal menù contestuale, scegli la voce Esegui come Amministratore: conferma la richiesta proposta

******************************

8. Scarica ed installa CCleaner: http://www.piriform.com/ccleaner/download
Nota - durante l'installazione: non consentire l'installazione di componenti aggiuntivi (Toolbar in particolare): non installarne alcuno, quindi togli la spunta alla relativa voce

Una volta installato ed avviato, esegui queste operazioni:
● nel menù di sinistra, clicca su Opzioni
● nella finestra successiva, clicca su Impostazioni
● spunta la voce Tipo cancellazione: Sicura (lenta) e nel menù a tendina seleziona la voce DOD 5220.22-M (3 passaggi)
● clicca su Avanzate
● togli la spunta alla voce Cancella file in Windows Temp solo se più vecchi di 24 ore e alla voce Chiedi se salvare un backup dei problemi del registro
● clicca, nel menù a sinistra, su Pulizia: nella sezione Avanzate, metti la spunta alle voci Vecchi dati Prefetch, Disinstallatori Aggiornamenti di Windows e File Log IIS
● apri, in alto, il tab Applicazioni: spunta tutte le voci presenti
termina tutti i programmi attivi, comprese le pagine Internet
● clicca, in basso a sinistra, sul bottone Analizza, per cercare i file temporanei
● clicca, in basso a destra, sul bottone Avvia Pulizia, per avviare la pulizia dei file temporanei
● nella finestra che compare, metti la spunta alla voce Non mostrare più questo messaggio, e conferma cliccando sul pulsante OK
● terminata la pulizia, nel menù a sinistra, clicca sulla voce Registro
● clicca sul bottone Trova Problemi, per avviare la ricerca delle voci di registro corrotte e danneggiate
● clicca sul bottone Ripara selezionati... e prosegui con la riparazione: la pulizia del registro ripetila più volte, fino a quando non verranno più rilevati problemi da correggere
● una volta terminate le operazioni, chiudi il programma

Nota: in Windows Seven, manca la voce Disinstallatori Aggiornamenti di Windows, e la voce Tipo cancellazione: Sicura (lenta) DOD 5220.22-M (3 passaggi) è stata sostituita dalla dicitura Sovrascrittura avanzata 83 passaggi

******************************

9. Lancia Hijackthis e pulisci gli ADS (esclusivamente su partizioni formattate in NTFS):
● clicca sulla voce Open the Misc Tools section
● clicca su Open ADS Spy..., nel tab System tools
● in alto, togli la spunta alla voce Quick scan (Windows base folder only)
● clicca, in basso, sul pulsante Scan
● attendi pazientemente il termine della scansione
● se venissero rilevati molti ADS, clicca con il tasto destro sulla prima casellina, e scegli la voce Select all
● clicca, in basso, sul pulsante Remove selected: conferma con
● una volta terminate le operazioni, chiudi il programma

Nota - riguardo al programma:
● in caso avessi un sistema operativo a 64 Bit, tralascia la procedura. Fai click qui per scoprire se il tuo sistema operativo è a 32 o 64 Bit: http://support.microsoft.com/kb/827218/it

******************************

10. Scarica OTC by OldTimer: http://oldtimer.geekstogo.com/OTC.exe
● posiziona il tool sul Desktop
● chiudi tutti i programmi attivi
● avvia il tool con un doppio click
● clicca sul pulsante CleanUp!
● il programma chiede di riavviare il sistema: consenti, cliccando su Yes per due volte

Note - riguardo al programma:
OTC by OldTimer va eseguito solamente nel caso tu abbia utilizzato in precedenza particolari programmi che richiedono una particolare procedura di disinstallazione, come ComboFix, FindAWF, GMER, RSIT e TDSS Killer.
● per eseguire correttamente OTC by OldTimer su Windows Vista e Windows Seven, clicca con il tasto destro del mouse sull'icona del programma e, dal menù contestuale, scegli la voce Esegui come Amministratore: conferma la richiesta proposta

******************************

11. Riabilita il Ripristino Configurazione di Sistema, seguendo la procedura inversa al punto 4

******************************

12. Scarica ed installa Defraggler: http://www.piriform.com/defraggler/download

Nota - durante l'installazione:
non consentire l'installazione di componenti aggiuntivi (Toolbar in particolare): non installarne alcuno, quindi togli la spunta alla relativa voce

Una volta installato, esegui queste operazioni:
● avvia il programma con un doppio click
● seleziona con il tasto sinistro del mouse l'unità Disco Locale C:
● clicca, in basso a sinistra, sul bottone Deframmenta
● attendi pazientemente il termine delle operazioni

******************************

13. Controlla l'Hard Disk per eventuali errori


Procedura per Windows XP:
● clicca sul pulsante Start
● clicca su Esegui
● nello spazio bianco, copia ed incolla questa riga:
cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"
● clicca sul pulsante OK
● attendi pazientemente il termine delle operazioni
● una finestra DOS vuota si aprirà sul Desktop, per poi chiudersi automaticamente: nulla di cui preoccuparsi
● allega il file checkhd.txt presente sul Desktop per un controllo

Procedura per Windows Vista e Windows Seven:


● clicca sul pulsante Start
● scegli la voce Tutti i programmi
● clicca su Accessori
● clicca con il tasto destro sull'icona Prompt dei comandi, e scegli la voce Esegui come amministratore
● nello spazio nero, copia ed incolla questa riga:
cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"
● clicca sul pulsante OK
● attendi pazientemente il termine delle operazioni; digita ora exit, sempre nello spazio nero, per uscire dal Prompt dei comandi, e quindi premi il pulsante Invio
● una finestra DOS vuota potrebbe aprirsi sul Desktop, per poi chiudersi automaticamente: nulla di cui preoccuparsi
● allega il file checkhd.txt presente sul Desktop per un controllo

******************************

Note - al termine della procedura:
riavvia il sistema
allega un nuovo log di HijackThis
● comunica come funziona il sistema, e quali problemi riscontri attualmente
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Non si accende il computer, help :(

Postdi marie » 03/09/12 17:15

scusami.. al punto 4 ho dei problemi.. su mio vista non c'è alcuna casella di controllo visualizzata accanto al Disco Locale C... accanto trovo solo protezione attivata e non fa cambiare.. cosa faccio??

grazie mille :)
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 03/09/12 19:42

Lascia invariata la voce, si vede che ho sbagliato nella guida.
Provvedo ad aggiornarla a dovere, grazie della segnalazione.
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Non si accende il computer, help :(

Postdi marie » 03/09/12 20:25

nuovi problemi:

- carica per qualche minuto e poi "impossibile accedere a C:\Windows\Prefetch. Impossibile eseguirela richiesta a causa di un errore di dispositivo I/O"
- ma il punto 14 quindi anche lo salto?
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 04/09/12 08:29

Se ti riferisci al CheckDisk, fallo, è importante.

Per quanto riguarda la cartella Prefetch, vai avanti, lasciala stare.
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53

Re: Non si accende il computer, help :(

Postdi marie » 04/09/12 09:40

intendeviìo: "11. Riabilita il Ripristino Configurazione di Sistema, seguendo la procedura inversa al punto 4"
marie
Utente Junior
 
Post: 11
Iscritto il: 01/09/12 10:25

Re: Non si accende il computer, help :(

Postdi FrancescoFDAC » 04/09/12 09:41

Fai come è scritto.
FrancescoFDAC
Utente Senior
 
Post: 1048
Iscritto il: 13/08/11 09:53


Torna a Sicurezza e Privacy


Topic correlati a "Non si accende il computer, help :(":


Chi c’è in linea

Visitano il forum: Nessuno e 11 ospiti