| |
| |||||||
Log-Analyse und Auswertung: Problem mit Trojaner Sirefef und Small und Rootkit.0AccessWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
| |
24.06.2012, 14:55
| #1 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Problem mit Trojaner Sirefef und Small und Rootkit.0Access Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C  nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
24.06.2012, 15:53
| #2 |
 | Problem mit Trojaner Sirefef und Small und Rootkit.0Access Hier die Log.
__________________Code:
ATTFilter 16:50:46.0188 3560 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
16:50:46.0283 3560 ============================================================
16:50:46.0283 3560 Current date / time: 2012/06/24 16:50:46.0283
16:50:46.0283 3560 SystemInfo:
16:50:46.0283 3560
16:50:46.0284 3560 OS Version: 6.1.7601 ServicePack: 1.0
16:50:46.0284 3560 Product type: Workstation
16:50:46.0284 3560 ComputerName: ROESCH-PC
16:50:46.0284 3560 UserName: Roesch
16:50:46.0284 3560 Windows directory: C:\Windows
16:50:46.0284 3560 System windows directory: C:\Windows
16:50:46.0284 3560 Processor architecture: Intel x86
16:50:46.0284 3560 Number of processors: 2
16:50:46.0284 3560 Page size: 0x1000
16:50:46.0284 3560 Boot type: Normal boot
16:50:46.0285 3560 ============================================================
16:50:47.0436 3560 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:50:47.0438 3560 ============================================================
16:50:47.0438 3560 \Device\Harddisk0\DR0:
16:50:47.0438 3560 MBR partitions:
16:50:47.0438 3560 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:50:47.0438 3560 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6176000
16:50:47.0438 3560 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x61A8800, BlocksNum 0x1388000
16:50:47.0438 3560 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x7530800, BlocksNum 0x1DEFD800
16:50:47.0438 3560 ============================================================
16:50:47.0454 3560 C: <-> \Device\Harddisk0\DR0\Partition1
16:50:47.0485 3560 D: <-> \Device\Harddisk0\DR0\Partition2
16:50:47.0517 3560 E: <-> \Device\Harddisk0\DR0\Partition3
16:50:47.0517 3560 ============================================================
16:50:47.0517 3560 Initialize success
16:50:47.0517 3560 ============================================================
16:50:54.0510 0492 ============================================================
16:50:54.0510 0492 Scan started
16:50:54.0510 0492 Mode: Manual; SigCheck; TDLFS;
16:50:54.0510 0492 ============================================================
16:50:55.0248 0492 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
16:50:55.0325 0492 1394ohci - ok
16:50:55.0365 0492 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
16:50:55.0381 0492 ACPI - ok
16:50:55.0409 0492 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
16:50:55.0423 0492 AcpiPmi - ok
16:50:55.0482 0492 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
16:50:55.0500 0492 adp94xx - ok
16:50:55.0541 0492 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
16:50:55.0557 0492 adpahci - ok
16:50:55.0583 0492 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
16:50:55.0596 0492 adpu320 - ok
16:50:55.0628 0492 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
16:50:55.0641 0492 AeLookupSvc - ok
16:50:55.0707 0492 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
16:50:55.0728 0492 AFD - ok
16:50:55.0766 0492 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
16:50:55.0798 0492 agp440 - ok
16:50:55.0829 0492 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
16:50:55.0846 0492 aic78xx - ok
16:50:55.0865 0492 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
16:50:55.0878 0492 ALG - ok
16:50:55.0893 0492 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
16:50:55.0904 0492 aliide - ok
16:50:55.0913 0492 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
16:50:55.0925 0492 amdagp - ok
16:50:55.0937 0492 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
16:50:55.0949 0492 amdide - ok
16:50:55.0982 0492 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
16:50:55.0995 0492 AmdK8 - ok
16:50:56.0015 0492 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
16:50:56.0028 0492 AmdPPM - ok
16:50:56.0069 0492 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
16:50:56.0099 0492 amdsata - ok
16:50:56.0122 0492 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
16:50:56.0135 0492 amdsbs - ok
16:50:56.0151 0492 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
16:50:56.0162 0492 amdxata - ok
16:50:56.0281 0492 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:50:56.0310 0492 AntiVirSchedulerService - ok
16:50:56.0624 0492 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:50:56.0634 0492 AntiVirService - ok
16:50:56.0662 0492 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
16:50:56.0686 0492 AppID - ok
16:50:56.0715 0492 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
16:50:56.0738 0492 AppIDSvc - ok
16:50:56.0767 0492 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
16:50:56.0791 0492 Appinfo - ok
16:50:56.0855 0492 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:50:56.0878 0492 Apple Mobile Device - ok
16:50:56.0924 0492 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
16:50:56.0942 0492 AppMgmt - ok
16:50:56.0970 0492 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
16:50:56.0987 0492 arc - ok
16:50:57.0008 0492 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
16:50:57.0020 0492 arcsas - ok
16:50:57.0046 0492 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
16:50:57.0071 0492 AsyncMac - ok
16:50:57.0097 0492 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
16:50:57.0109 0492 atapi - ok
16:50:57.0185 0492 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
16:50:57.0249 0492 AudioEndpointBuilder - ok
16:50:57.0257 0492 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
16:50:57.0288 0492 Audiosrv - ok
16:50:57.0344 0492 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
16:50:57.0367 0492 avgntflt - ok
16:50:57.0396 0492 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
16:50:57.0407 0492 avipbb - ok
16:50:57.0434 0492 avkmgr (53e56450da16a1a7f0d002f511113f67) C:\Windows\system32\DRIVERS\avkmgr.sys
16:50:57.0444 0492 avkmgr - ok
16:50:57.0530 0492 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
16:50:57.0552 0492 AxInstSV - ok
16:50:57.0612 0492 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
16:50:57.0633 0492 b06bdrv - ok
16:50:57.0669 0492 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
16:50:57.0688 0492 b57nd60x - ok
16:50:57.0795 0492 BBSvc (0d1ea7509f394d8b705b239ee71f5118) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
16:50:57.0821 0492 BBSvc - ok
16:50:57.0845 0492 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
16:50:57.0858 0492 BDESVC - ok
16:50:57.0869 0492 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
16:50:57.0893 0492 Beep - ok
16:50:57.0952 0492 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
16:50:57.0982 0492 BITS - ok
16:50:57.0998 0492 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
16:50:58.0010 0492 blbdrive - ok
16:50:58.0058 0492 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
16:50:58.0070 0492 bowser - ok
16:50:58.0081 0492 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:50:58.0094 0492 BrFiltLo - ok
16:50:58.0112 0492 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:50:58.0126 0492 BrFiltUp - ok
16:50:58.0355 0492 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
16:50:58.0400 0492 Browser - ok
16:50:58.0431 0492 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
16:50:58.0451 0492 Brserid - ok
16:50:58.0464 0492 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
16:50:58.0482 0492 BrSerWdm - ok
16:50:58.0485 0492 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:50:58.0499 0492 BrUsbMdm - ok
16:50:58.0502 0492 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
16:50:58.0515 0492 BrUsbSer - ok
16:50:58.0647 0492 BstHdAndroidSvc (52d8866f682a7fc210446930b3201eeb) C:\Program Files\BlueStacks\HD-Service.exe
16:50:58.0681 0492 BstHdAndroidSvc - ok
16:50:58.0728 0492 BstHdDrv (75203ff9fcf67b7f7ac5007e3c61cfe9) C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys
16:50:58.0740 0492 BstHdDrv - ok
16:50:58.0806 0492 BstHdLogRotatorSvc (cce8303fc02e2a47e15d1b794c5e0bb8) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
16:50:58.0846 0492 BstHdLogRotatorSvc - ok
16:50:58.0881 0492 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\drivers\BthEnum.sys
16:50:58.0897 0492 BthEnum - ok
16:50:58.0916 0492 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
16:50:58.0935 0492 BTHMODEM - ok
16:50:58.0968 0492 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys
16:50:58.0982 0492 BthPan - ok
16:50:59.0021 0492 BTHPORT (c2fbf6d271d9a94d839c416bf186ead9) C:\Windows\System32\Drivers\BTHport.sys
16:50:59.0036 0492 BTHPORT - ok
16:50:59.0071 0492 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
16:50:59.0113 0492 bthserv - ok
16:50:59.0123 0492 BTHUSB (c81e9413a25a439f436b1d4b6a0cf9e9) C:\Windows\System32\Drivers\BTHUSB.sys
16:50:59.0134 0492 BTHUSB - ok
16:50:59.0160 0492 btusbflt (f549c3fb145a4928e40bb1518b2034dc) C:\Windows\system32\drivers\btusbflt.sys
16:50:59.0169 0492 btusbflt - ok
16:50:59.0189 0492 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
16:50:59.0214 0492 cdfs - ok
16:50:59.0278 0492 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
16:50:59.0295 0492 cdrom - ok
16:50:59.0338 0492 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
16:50:59.0381 0492 CertPropSvc - ok
16:50:59.0408 0492 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
16:50:59.0422 0492 circlass - ok
16:50:59.0451 0492 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
16:50:59.0466 0492 CLFS - ok
16:50:59.0557 0492 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:50:59.0589 0492 clr_optimization_v2.0.50727_32 - ok
16:50:59.0681 0492 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:50:59.0705 0492 clr_optimization_v4.0.30319_32 - ok
16:50:59.0746 0492 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
16:50:59.0762 0492 CmBatt - ok
16:50:59.0787 0492 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
16:50:59.0802 0492 cmdide - ok
16:50:59.0860 0492 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
16:50:59.0892 0492 CNG - ok
16:50:59.0917 0492 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
16:50:59.0928 0492 Compbatt - ok
16:50:59.0963 0492 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
16:50:59.0994 0492 CompositeBus - ok
16:51:00.0009 0492 COMSysApp - ok
16:51:00.0070 0492 cpuz135 - ok
16:51:00.0094 0492 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
16:51:00.0120 0492 crcdisk - ok
16:51:00.0181 0492 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
16:51:00.0213 0492 CryptSvc - ok
16:51:00.0271 0492 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
16:51:00.0302 0492 CSC - ok
16:51:00.0341 0492 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
16:51:00.0358 0492 CscService - ok
16:51:00.0390 0492 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
16:51:00.0418 0492 DcomLaunch - ok
16:51:00.0445 0492 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
16:51:00.0472 0492 defragsvc - ok
16:51:00.0526 0492 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
16:51:00.0564 0492 DfsC - ok
16:51:00.0617 0492 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
16:51:00.0672 0492 Dhcp - ok
16:51:00.0692 0492 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
16:51:00.0724 0492 discache - ok
16:51:00.0763 0492 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
16:51:00.0775 0492 Disk - ok
16:51:00.0825 0492 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
16:51:00.0848 0492 Dnscache - ok
16:51:00.0891 0492 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
16:51:00.0926 0492 dot3svc - ok
16:51:00.0960 0492 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
16:51:00.0984 0492 DPS - ok
16:51:01.0018 0492 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
16:51:01.0050 0492 drmkaud - ok
16:51:01.0089 0492 dsNcAdpt (b2c3f71b86e25c3df78339ddb40a7562) C:\Windows\system32\DRIVERS\dsNcAdpt.sys
16:51:01.0111 0492 dsNcAdpt - ok
16:51:01.0222 0492 dsNcService (60ae3d932bc594ff9cdc91f7cd2c2015) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
16:51:01.0247 0492 dsNcService - ok
16:51:01.0322 0492 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
16:51:01.0349 0492 dtsoftbus01 - ok
16:51:01.0434 0492 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
16:51:01.0476 0492 DXGKrnl - ok
16:51:01.0527 0492 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
16:51:01.0578 0492 EapHost - ok
16:51:01.0830 0492 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
16:51:01.0874 0492 ebdrv - ok
16:51:01.0972 0492 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
16:51:02.0007 0492 EFS - ok
16:51:02.0094 0492 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
16:51:02.0133 0492 ehRecvr - ok
16:51:02.0165 0492 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
16:51:02.0178 0492 ehSched - ok
16:51:02.0238 0492 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
16:51:02.0280 0492 elxstor - ok
16:51:02.0315 0492 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
16:51:02.0327 0492 ErrDev - ok
16:51:02.0366 0492 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
16:51:02.0394 0492 EventSystem - ok
16:51:02.0423 0492 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
16:51:02.0448 0492 exfat - ok
16:51:02.0541 0492 Fabs - ok
16:51:02.0574 0492 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
16:51:02.0621 0492 fastfat - ok
16:51:02.0685 0492 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
16:51:02.0710 0492 Fax - ok
16:51:02.0727 0492 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
16:51:02.0739 0492 fdc - ok
16:51:02.0745 0492 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
16:51:02.0771 0492 fdPHost - ok
16:51:02.0780 0492 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
16:51:02.0806 0492 FDResPub - ok
16:51:02.0824 0492 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
16:51:02.0835 0492 FileInfo - ok
16:51:02.0845 0492 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
16:51:02.0870 0492 Filetrace - ok
16:51:03.0122 0492 FirebirdServerMAGIXInstance (fff1130f7c9fa01d093a1edfc5cce8fc) C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe
16:51:03.0172 0492 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - warning
16:51:03.0172 0492 FirebirdServerMAGIXInstance - detected UnsignedFile.Multi.Generic (1)
16:51:03.0263 0492 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
16:51:03.0280 0492 flpydisk - ok
16:51:03.0309 0492 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
16:51:03.0328 0492 FltMgr - ok
16:51:03.0450 0492 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
16:51:03.0488 0492 FontCache - ok
16:51:03.0535 0492 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:51:03.0558 0492 FontCache3.0.0.0 - ok
16:51:03.0571 0492 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
16:51:03.0587 0492 FsDepends - ok
16:51:03.0632 0492 fssfltr (bfaaa92861526bb0adcd01e964ab6609) C:\Windows\system32\DRIVERS\fssfltr.sys
16:51:03.0644 0492 fssfltr - ok
16:51:03.0809 0492 fsssvc (40cdfad174b3d5e80f95dda003c0b97f) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
16:51:03.0855 0492 fsssvc - ok
16:51:03.0968 0492 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
16:51:03.0993 0492 Fs_Rec - ok
16:51:04.0048 0492 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
16:51:04.0094 0492 fvevol - ok
16:51:04.0128 0492 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:51:04.0144 0492 gagp30kx - ok
16:51:04.0174 0492 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:51:04.0185 0492 GEARAspiWDM - ok
16:51:04.0259 0492 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
16:51:04.0296 0492 gpsvc - ok
16:51:04.0403 0492 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:51:04.0430 0492 gupdate - ok
16:51:04.0438 0492 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:51:04.0448 0492 gupdatem - ok
16:51:04.0465 0492 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
16:51:04.0478 0492 hcw85cir - ok
16:51:04.0534 0492 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
16:51:04.0565 0492 HdAudAddService - ok
16:51:04.0595 0492 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
16:51:04.0609 0492 HDAudBus - ok
16:51:04.0632 0492 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
16:51:04.0644 0492 HidBatt - ok
16:51:04.0664 0492 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
16:51:04.0679 0492 HidBth - ok
16:51:04.0707 0492 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
16:51:04.0720 0492 HidIr - ok
16:51:04.0754 0492 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
16:51:04.0780 0492 hidserv - ok
16:51:04.0837 0492 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
16:51:04.0863 0492 HidUsb - ok
16:51:04.0893 0492 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
16:51:04.0927 0492 hkmsvc - ok
16:51:04.0953 0492 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
16:51:04.0973 0492 HomeGroupListener - ok
16:51:05.0021 0492 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
16:51:05.0049 0492 HomeGroupProvider - ok
16:51:05.0086 0492 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
16:51:05.0103 0492 HpSAMD - ok
16:51:05.0276 0492 hshld (b7cfe93627e7796624004687125a729f) C:\Program Files\Hotspot Shield\bin\openvpnas.exe
16:51:05.0312 0492 hshld - ok
16:51:05.0325 0492 HssDrv (4f28652ec514fa1ba473bc1a695a5c98) C:\Windows\system32\DRIVERS\HssDrv.sys
16:51:05.0333 0492 HssDrv - ok
16:51:05.0419 0492 HssSrv (2cfea9c337b699aca38487e8a7438f35) C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe
16:51:05.0454 0492 HssSrv - ok
16:51:05.0498 0492 HssTrayService (b3c6eeeff5c5ea3235b7d84317c1fb3f) C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
16:51:05.0507 0492 HssTrayService - ok
16:51:05.0514 0492 HssWd - ok
16:51:05.0583 0492 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
16:51:05.0611 0492 HTTP - ok
16:51:05.0647 0492 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
16:51:05.0658 0492 hwpolicy - ok
16:51:05.0711 0492 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
16:51:05.0750 0492 i8042prt - ok
16:51:05.0821 0492 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
16:51:05.0855 0492 iaStorV - ok
16:51:05.0977 0492 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:51:06.0015 0492 idsvc - ok
16:51:06.0037 0492 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
16:51:06.0048 0492 iirsp - ok
16:51:06.0116 0492 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
16:51:06.0166 0492 IKEEXT - ok
16:51:06.0184 0492 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
16:51:06.0195 0492 intelide - ok
16:51:06.0223 0492 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
16:51:06.0235 0492 intelppm - ok
16:51:06.0259 0492 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
16:51:06.0285 0492 IPBusEnum - ok
16:51:06.0300 0492 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:51:06.0325 0492 IpFilterDriver - ok
16:51:06.0358 0492 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
16:51:06.0389 0492 IPMIDRV - ok
16:51:06.0408 0492 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
16:51:06.0434 0492 IPNAT - ok
16:51:06.0550 0492 iPod Service (b84a28b3984185eda8867541af14cddb) C:\Program Files\iPod\bin\iPodService.exe
16:51:06.0579 0492 iPod Service - ok
16:51:06.0610 0492 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
16:51:06.0624 0492 IRENUM - ok
16:51:06.0653 0492 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
16:51:06.0664 0492 isapnp - ok
16:51:06.0687 0492 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
16:51:06.0701 0492 iScsiPrt - ok
16:51:06.0723 0492 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
16:51:06.0735 0492 kbdclass - ok
16:51:06.0754 0492 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
16:51:06.0766 0492 kbdhid - ok
16:51:06.0795 0492 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:51:06.0807 0492 KeyIso - ok
16:51:06.0817 0492 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
16:51:06.0829 0492 KSecDD - ok
16:51:06.0864 0492 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
16:51:06.0896 0492 KSecPkg - ok
16:51:06.0943 0492 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
16:51:06.0983 0492 KtmRm - ok
16:51:07.0020 0492 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
16:51:07.0064 0492 LanmanServer - ok
16:51:07.0091 0492 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
16:51:07.0117 0492 LanmanWorkstation - ok
16:51:07.0152 0492 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
16:51:07.0177 0492 lltdio - ok
16:51:07.0208 0492 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
16:51:07.0235 0492 lltdsvc - ok
16:51:07.0248 0492 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
16:51:07.0272 0492 lmhosts - ok
16:51:07.0294 0492 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:51:07.0306 0492 LSI_FC - ok
16:51:07.0327 0492 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:51:07.0339 0492 LSI_SAS - ok
16:51:07.0356 0492 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:51:07.0368 0492 LSI_SAS2 - ok
16:51:07.0385 0492 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:51:07.0398 0492 LSI_SCSI - ok
16:51:07.0410 0492 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
16:51:07.0435 0492 luafv - ok
16:51:07.0483 0492 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\Windows\system32\drivers\mbam.sys
16:51:07.0505 0492 MBAMProtector - ok
16:51:07.0652 0492 MBAMService (ba400ed640bca1eae5c727ae17c10207) E:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
16:51:07.0689 0492 MBAMService - ok
16:51:07.0726 0492 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
16:51:07.0745 0492 Mcx2Svc - ok
16:51:07.0775 0492 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
16:51:07.0791 0492 megasas - ok
16:51:07.0829 0492 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
16:51:07.0849 0492 MegaSR - ok
16:51:07.0923 0492 Microsoft SharePoint Workspace Audit Service - ok
16:51:07.0974 0492 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
16:51:08.0027 0492 MMCSS - ok
16:51:08.0039 0492 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
16:51:08.0064 0492 Modem - ok
16:51:08.0086 0492 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
16:51:08.0099 0492 monitor - ok
16:51:08.0149 0492 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
16:51:08.0166 0492 mouclass - ok
16:51:08.0224 0492 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
16:51:08.0253 0492 mouhid - ok
16:51:08.0402 0492 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
16:51:08.0430 0492 mountmgr - ok
16:51:08.0468 0492 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
16:51:08.0481 0492 mpio - ok
16:51:08.0494 0492 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
16:51:08.0517 0492 mpsdrv - ok
16:51:08.0548 0492 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
16:51:08.0564 0492 MRxDAV - ok
16:51:08.0606 0492 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:51:08.0638 0492 mrxsmb - ok
16:51:08.0673 0492 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:51:08.0687 0492 mrxsmb10 - ok
16:51:08.0698 0492 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:51:08.0711 0492 mrxsmb20 - ok
16:51:08.0748 0492 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
16:51:08.0760 0492 msahci - ok
16:51:08.0784 0492 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
16:51:08.0796 0492 msdsm - ok
16:51:08.0820 0492 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
16:51:08.0834 0492 MSDTC - ok
16:51:08.0869 0492 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
16:51:08.0894 0492 Msfs - ok
16:51:08.0904 0492 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
16:51:08.0929 0492 mshidkmdf - ok
16:51:08.0944 0492 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
16:51:08.0955 0492 msisadrv - ok
16:51:08.0994 0492 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
16:51:09.0043 0492 MSiSCSI - ok
16:51:09.0046 0492 msiserver - ok
16:51:09.0072 0492 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
16:51:09.0100 0492 MSKSSRV - ok
16:51:09.0107 0492 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
16:51:09.0134 0492 MSPCLOCK - ok
16:51:09.0138 0492 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
16:51:09.0164 0492 MSPQM - ok
16:51:09.0181 0492 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
16:51:09.0195 0492 MsRPC - ok
16:51:09.0224 0492 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
16:51:09.0235 0492 mssmbios - ok
16:51:09.0238 0492 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
16:51:09.0263 0492 MSTEE - ok
16:51:09.0271 0492 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
16:51:09.0283 0492 MTConfig - ok
16:51:09.0293 0492 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
16:51:09.0305 0492 Mup - ok
16:51:09.0351 0492 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
16:51:09.0378 0492 napagent - ok
16:51:09.0430 0492 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
16:51:09.0447 0492 NativeWifiP - ok
16:51:09.0502 0492 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
16:51:09.0523 0492 NDIS - ok
16:51:09.0542 0492 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
16:51:09.0567 0492 NdisCap - ok
16:51:09.0595 0492 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
16:51:09.0618 0492 NdisTapi - ok
16:51:09.0651 0492 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
16:51:09.0675 0492 Ndisuio - ok
16:51:09.0711 0492 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
16:51:09.0735 0492 NdisWan - ok
16:51:09.0768 0492 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
16:51:09.0792 0492 NDProxy - ok
16:51:09.0805 0492 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
16:51:09.0830 0492 NetBIOS - ok
16:51:09.0870 0492 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
16:51:09.0912 0492 NetBT - ok
16:51:09.0940 0492 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:51:09.0952 0492 Netlogon - ok
16:51:09.0998 0492 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
16:51:10.0047 0492 Netman - ok
16:51:10.0082 0492 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
16:51:10.0111 0492 netprofm - ok
16:51:10.0158 0492 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:51:10.0169 0492 NetTcpPortSharing - ok
16:51:10.0662 0492 NETw5s32 (5b2dfa9c5c02ddf2a113cc0f551b59df) C:\Windows\system32\DRIVERS\NETw5s32.sys
16:51:10.0743 0492 NETw5s32 - ok
16:51:11.0162 0492 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
16:51:11.0218 0492 netw5v32 - ok
16:51:11.0297 0492 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
16:51:11.0329 0492 nfrd960 - ok
16:51:11.0380 0492 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
16:51:11.0406 0492 NlaSvc - ok
16:51:11.0421 0492 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
16:51:11.0447 0492 Npfs - ok
16:51:11.0475 0492 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
16:51:11.0502 0492 nsi - ok
16:51:11.0513 0492 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
16:51:11.0538 0492 nsiproxy - ok
16:51:11.0643 0492 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
16:51:11.0678 0492 Ntfs - ok
16:51:11.0690 0492 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
16:51:11.0714 0492 Null - ok
16:51:12.0386 0492 nvlddmkm (519d5e6b7fa9542c42437b2dfdcfafd1) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:51:12.0499 0492 nvlddmkm - ok
16:51:12.0665 0492 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
16:51:12.0694 0492 nvraid - ok
16:51:12.0713 0492 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
16:51:12.0732 0492 nvstor - ok
16:51:12.0760 0492 nvsvc (d9295d59e8c69537b87d0dc638f61b76) C:\Windows\system32\nvvsvc.exe
16:51:12.0772 0492 nvsvc - ok
16:51:12.0803 0492 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
16:51:12.0816 0492 nv_agp - ok
16:51:12.0831 0492 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
16:51:12.0843 0492 ohci1394 - ok
16:51:12.0929 0492 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:51:12.0956 0492 ose - ok
16:51:13.0356 0492 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:51:13.0438 0492 osppsvc - ok
16:51:13.0639 0492 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
16:51:13.0660 0492 p2pimsvc - ok
16:51:13.0697 0492 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
16:51:13.0719 0492 p2psvc - ok
16:51:13.0770 0492 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
16:51:13.0800 0492 Parport - ok
16:51:13.0829 0492 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
16:51:13.0841 0492 partmgr - ok
16:51:13.0851 0492 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
16:51:13.0863 0492 Parvdm - ok
16:51:13.0884 0492 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
16:51:13.0901 0492 PcaSvc - ok
16:51:13.0945 0492 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
16:51:13.0958 0492 pci - ok
16:51:13.0970 0492 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
16:51:13.0982 0492 pciide - ok
16:51:14.0000 0492 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
16:51:14.0014 0492 pcmcia - ok
16:51:14.0024 0492 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
16:51:14.0036 0492 pcw - ok
16:51:14.0088 0492 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
16:51:14.0119 0492 PEAUTH - ok
16:51:14.0201 0492 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
16:51:14.0234 0492 PeerDistSvc - ok
16:51:14.0370 0492 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
16:51:14.0418 0492 pla - ok
16:51:14.0545 0492 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
16:51:14.0570 0492 PlugPlay - ok
16:51:14.0590 0492 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
16:51:14.0602 0492 PNRPAutoReg - ok
16:51:14.0627 0492 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
16:51:14.0642 0492 PNRPsvc - ok
16:51:14.0676 0492 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
16:51:14.0703 0492 PolicyAgent - ok
16:51:14.0799 0492 postgresql-8.4 - ok
16:51:14.0845 0492 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
16:51:14.0897 0492 Power - ok
16:51:14.0961 0492 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
16:51:15.0010 0492 PptpMiniport - ok
16:51:15.0030 0492 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
16:51:15.0043 0492 Processor - ok
16:51:15.0084 0492 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
16:51:15.0098 0492 ProfSvc - ok
16:51:15.0130 0492 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:51:15.0143 0492 ProtectedStorage - ok
16:51:15.0163 0492 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
16:51:15.0189 0492 Psched - ok
16:51:15.0286 0492 PSI_SVC_2 (0b6dea0a1662cab8f2bf339dc0752ef4) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
16:51:15.0314 0492 PSI_SVC_2 - ok
16:51:15.0404 0492 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
16:51:15.0438 0492 ql2300 - ok
16:51:15.0562 0492 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
16:51:15.0597 0492 ql40xx - ok
16:51:15.0622 0492 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
16:51:15.0639 0492 QWAVE - ok
16:51:15.0652 0492 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
16:51:15.0667 0492 QWAVEdrv - ok
16:51:15.0675 0492 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
16:51:15.0700 0492 RasAcd - ok
16:51:15.0738 0492 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:51:15.0761 0492 RasAgileVpn - ok
16:51:15.0778 0492 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
16:51:15.0805 0492 RasAuto - ok
16:51:15.0815 0492 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:51:15.0841 0492 Rasl2tp - ok
16:51:15.0889 0492 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
16:51:15.0916 0492 RasMan - ok
16:51:15.0928 0492 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
16:51:15.0953 0492 RasPppoe - ok
16:51:15.0972 0492 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
16:51:15.0995 0492 RasSstp - ok
16:51:16.0036 0492 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
16:51:16.0061 0492 rdbss - ok
16:51:16.0075 0492 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
16:51:16.0089 0492 rdpbus - ok
16:51:16.0119 0492 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:51:16.0143 0492 RDPCDD - ok
16:51:16.0163 0492 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
16:51:16.0175 0492 RDPDR - ok
16:51:16.0194 0492 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
16:51:16.0218 0492 RDPENCDD - ok
16:51:16.0224 0492 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
16:51:16.0248 0492 RDPREFMP - ok
16:51:16.0292 0492 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
16:51:16.0321 0492 RDPWD - ok
16:51:16.0366 0492 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
16:51:16.0379 0492 rdyboost - ok
16:51:16.0403 0492 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
16:51:16.0428 0492 RemoteAccess - ok
16:51:16.0454 0492 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
16:51:16.0482 0492 RemoteRegistry - ok
16:51:16.0516 0492 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys
16:51:16.0531 0492 RFCOMM - ok
16:51:16.0553 0492 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
16:51:16.0580 0492 RpcEptMapper - ok
16:51:16.0603 0492 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
16:51:16.0616 0492 RpcLocator - ok
16:51:16.0783 0492 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
16:51:16.0829 0492 RpcSs - ok
16:51:16.0857 0492 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
16:51:16.0882 0492 rspndr - ok
16:51:16.0907 0492 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
16:51:16.0919 0492 s3cap - ok
16:51:16.0942 0492 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:51:16.0954 0492 SamSs - ok
16:51:16.0986 0492 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
16:51:16.0998 0492 sbp2port - ok
16:51:17.0041 0492 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
16:51:17.0067 0492 SCardSvr - ok
16:51:17.0089 0492 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
16:51:17.0113 0492 scfilter - ok
16:51:17.0181 0492 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
16:51:17.0225 0492 Schedule - ok
16:51:17.0252 0492 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
16:51:17.0275 0492 SCPolicySvc - ok
16:51:17.0317 0492 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
16:51:17.0347 0492 SDRSVC - ok
16:51:17.0474 0492 SeaPort (78779ee07231c658b483b1f38b5088df) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
16:51:17.0500 0492 SeaPort - ok
16:51:17.0536 0492 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
16:51:17.0570 0492 secdrv - ok
16:51:17.0945 0492 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
16:51:17.0993 0492 seclogon - ok
16:51:18.0022 0492 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
16:51:18.0048 0492 SENS - ok
16:51:18.0091 0492 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
16:51:18.0121 0492 SensrSvc - ok
16:51:18.0134 0492 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
16:51:18.0146 0492 Serenum - ok
16:51:18.0158 0492 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
16:51:18.0172 0492 Serial - ok
16:51:18.0203 0492 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
16:51:18.0216 0492 sermouse - ok
16:51:18.0260 0492 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
16:51:18.0286 0492 SessionEnv - ok
16:51:18.0319 0492 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
16:51:18.0333 0492 sffdisk - ok
16:51:18.0341 0492 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
16:51:18.0354 0492 sffp_mmc - ok
16:51:18.0360 0492 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
16:51:18.0374 0492 sffp_sd - ok
16:51:18.0392 0492 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
16:51:18.0405 0492 sfloppy - ok
16:51:18.0459 0492 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
16:51:18.0523 0492 ShellHWDetection - ok
16:51:18.0540 0492 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
16:51:18.0553 0492 sisagp - ok
16:51:18.0584 0492 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:51:18.0596 0492 SiSRaid2 - ok
16:51:18.0605 0492 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
16:51:18.0617 0492 SiSRaid4 - ok
16:51:18.0692 0492 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) E:\Program Files\Skype\Updater\Updater.exe
16:51:18.0706 0492 SkypeUpdate - ok
16:51:18.0745 0492 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
16:51:18.0809 0492 Smb - ok
16:51:18.0847 0492 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
16:51:18.0861 0492 SNMPTRAP - ok
16:51:18.0880 0492 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
16:51:18.0893 0492 spldr - ok
16:51:18.0942 0492 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
16:51:19.0003 0492 Spooler - ok
16:51:19.0376 0492 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
16:51:19.0441 0492 sppsvc - ok
16:51:19.0598 0492 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
16:51:19.0643 0492 sppuinotify - ok
16:51:19.0713 0492 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
16:51:19.0742 0492 srv - ok
16:51:19.0766 0492 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
16:51:19.0780 0492 srv2 - ok
16:51:19.0799 0492 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
16:51:19.0812 0492 srvnet - ok
16:51:19.0852 0492 ssadbus (64e44acd8c238fcbbb78f0ba4bdc4b05) C:\Windows\system32\DRIVERS\ssadbus.sys
16:51:19.0866 0492 ssadbus - ok
16:51:19.0915 0492 ssadmdfl (bb2c84a15c765da89fd832b0e73f26ce) C:\Windows\system32\DRIVERS\ssadmdfl.sys
16:51:19.0944 0492 ssadmdfl - ok
16:51:19.0988 0492 ssadmdm (6d0d132ddc6f43eda00dced6d8b1ca31) C:\Windows\system32\DRIVERS\ssadmdm.sys
16:51:20.0006 0492 ssadmdm - ok
16:51:20.0045 0492 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
16:51:20.0079 0492 SSDPSRV - ok
16:51:20.0105 0492 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
16:51:20.0114 0492 ssmdrv - ok
16:51:20.0133 0492 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
16:51:20.0158 0492 SstpSvc - ok
16:51:20.0176 0492 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
16:51:20.0188 0492 stexstor - ok
16:51:20.0243 0492 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
16:51:20.0264 0492 StiSvc - ok
16:51:20.0289 0492 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
16:51:20.0301 0492 storflt - ok
16:51:20.0330 0492 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
16:51:20.0343 0492 StorSvc - ok
16:51:20.0374 0492 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
16:51:20.0386 0492 storvsc - ok
16:51:20.0394 0492 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
16:51:20.0406 0492 swenum - ok
16:51:20.0431 0492 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
16:51:20.0460 0492 swprv - ok
16:51:20.0571 0492 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
16:51:20.0611 0492 SysMain - ok
16:51:20.0635 0492 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
16:51:20.0652 0492 TabletInputService - ok
16:51:20.0717 0492 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys
16:51:20.0733 0492 taphss - ok
16:51:20.0769 0492 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
16:51:20.0807 0492 TapiSrv - ok
16:51:20.0849 0492 tapoas (827c8058c284ff0013e4462efe2591a3) C:\Windows\system32\DRIVERS\tapoas.sys
16:51:20.0874 0492 tapoas - ok
16:51:20.0907 0492 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
16:51:20.0972 0492 TBS - ok
16:51:21.0089 0492 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
16:51:21.0127 0492 Tcpip - ok
16:51:21.0147 0492 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
16:51:21.0177 0492 TCPIP6 - ok
16:51:21.0216 0492 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
16:51:21.0239 0492 tcpipreg - ok
16:51:21.0278 0492 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
16:51:21.0290 0492 TDPIPE - ok
16:51:21.0323 0492 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
16:51:21.0350 0492 TDTCP - ok
16:51:21.0394 0492 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
16:51:21.0424 0492 tdx - ok
16:51:21.0459 0492 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
16:51:21.0472 0492 TermDD - ok
16:51:21.0532 0492 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
16:51:21.0584 0492 TermService - ok
16:51:21.0612 0492 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
16:51:21.0629 0492 Themes - ok
16:51:21.0654 0492 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
16:51:21.0680 0492 THREADORDER - ok
16:51:21.0701 0492 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
16:51:21.0728 0492 TrkWks - ok
16:51:21.0786 0492 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
16:51:21.0830 0492 TrustedInstaller - ok
16:51:21.0844 0492 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:51:21.0867 0492 tssecsrv - ok
16:51:21.0901 0492 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
16:51:21.0913 0492 TsUsbFlt - ok
16:51:21.0970 0492 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
16:51:22.0011 0492 tunnel - ok
16:51:22.0033 0492 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
16:51:22.0045 0492 uagp35 - ok
16:51:22.0089 0492 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
16:51:22.0145 0492 udfs - ok
16:51:22.0186 0492 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
16:51:22.0200 0492 UI0Detect - ok
16:51:22.0234 0492 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
16:51:22.0246 0492 uliagpkx - ok
16:51:22.0277 0492 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
16:51:22.0289 0492 umbus - ok
16:51:22.0311 0492 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
16:51:22.0324 0492 UmPass - ok
16:51:22.0363 0492 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
16:51:22.0378 0492 UmRdpService - ok
16:51:22.0408 0492 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
16:51:22.0437 0492 upnphost - ok
16:51:22.0472 0492 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
16:51:22.0482 0492 USBAAPL - ok
16:51:22.0523 0492 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
16:51:22.0535 0492 usbccgp - ok
16:51:22.0571 0492 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
16:51:22.0586 0492 usbcir - ok
16:51:22.0602 0492 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
16:51:22.0614 0492 usbehci - ok
16:51:22.0647 0492 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
16:51:22.0662 0492 usbhub - ok
16:51:22.0672 0492 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
16:51:22.0684 0492 usbohci - ok
16:51:22.0712 0492 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
16:51:22.0726 0492 usbprint - ok
16:51:22.0766 0492 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
16:51:22.0799 0492 usbscan - ok
16:51:22.0812 0492 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:51:22.0824 0492 USBSTOR - ok
16:51:22.0835 0492 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
16:51:22.0847 0492 usbuhci - ok
16:51:22.0871 0492 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
16:51:22.0885 0492 usbvideo - ok
16:51:22.0907 0492 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
16:51:22.0932 0492 UxSms - ok
16:51:22.0979 0492 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
16:51:23.0009 0492 VaultSvc - ok
16:51:23.0046 0492 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
16:51:23.0058 0492 vdrvroot - ok
16:51:23.0116 0492 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
16:51:23.0161 0492 vds - ok
16:51:23.0172 0492 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
16:51:23.0186 0492 vga - ok
16:51:23.0202 0492 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
16:51:23.0227 0492 VgaSave - ok
16:51:23.0250 0492 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
16:51:23.0263 0492 vhdmp - ok
16:51:23.0292 0492 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
16:51:23.0304 0492 viaagp - ok
16:51:23.0323 0492 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
16:51:23.0335 0492 ViaC7 - ok
16:51:23.0353 0492 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
16:51:23.0364 0492 viaide - ok
16:51:23.0391 0492 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
16:51:23.0404 0492 vmbus - ok
16:51:23.0425 0492 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
16:51:23.0436 0492 VMBusHID - ok
16:51:23.0453 0492 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
16:51:23.0465 0492 volmgr - ok
16:51:23.0496 0492 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
16:51:23.0511 0492 volmgrx - ok
16:51:23.0539 0492 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
16:51:23.0554 0492 volsnap - ok
16:51:23.0595 0492 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
16:51:23.0608 0492 vsmraid - ok
16:51:23.0717 0492 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
16:51:23.0758 0492 VSS - ok
16:51:23.0773 0492 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
16:51:23.0787 0492 vwifibus - ok
16:51:23.0832 0492 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
16:51:23.0859 0492 vwififlt - ok
16:51:23.0902 0492 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
16:51:23.0941 0492 W32Time - ok
16:51:23.0951 0492 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
16:51:23.0963 0492 WacomPen - ok
16:51:24.0004 0492 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:51:24.0061 0492 WANARP - ok
16:51:24.0064 0492 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
16:51:24.0088 0492 Wanarpv6 - ok
16:51:24.0164 0492 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
16:51:24.0189 0492 wbengine - ok
16:51:24.0213 0492 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
16:51:24.0231 0492 WbioSrvc - ok
16:51:24.0277 0492 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
16:51:24.0328 0492 wcncsvc - ok
16:51:24.0348 0492 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
16:51:24.0362 0492 WcsPlugInService - ok
16:51:24.0403 0492 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
16:51:24.0415 0492 Wd - ok
16:51:24.0460 0492 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
16:51:24.0495 0492 Wdf01000 - ok
16:51:24.0507 0492 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
16:51:24.0524 0492 WdiServiceHost - ok
16:51:24.0526 0492 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
16:51:24.0543 0492 WdiSystemHost - ok
16:51:24.0586 0492 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
16:51:24.0605 0492 WebClient - ok
16:51:24.0630 0492 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
16:51:24.0659 0492 Wecsvc - ok
16:51:24.0677 0492 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
16:51:24.0702 0492 wercplsupport - ok
16:51:24.0727 0492 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
16:51:24.0754 0492 WerSvc - ok
16:51:24.0784 0492 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
16:51:24.0809 0492 WfpLwf - ok
16:51:24.0820 0492 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
16:51:24.0832 0492 WIMMount - ok
16:51:24.0837 0492 WinHttpAutoProxySvc - ok
16:51:24.0920 0492 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
16:51:24.0957 0492 Winmgmt - ok
16:51:25.0070 0492 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
16:51:25.0111 0492 WinRM - ok
16:51:25.0164 0492 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
16:51:25.0178 0492 WinUsb - ok
16:51:25.0239 0492 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
16:51:25.0263 0492 Wlansvc - ok
16:51:25.0376 0492 wlcrasvc (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:51:25.0401 0492 wlcrasvc - ok
16:51:25.0589 0492 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:51:25.0633 0492 wlidsvc - ok
16:51:25.0754 0492 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
16:51:25.0788 0492 WmiAcpi - ok
16:51:25.0860 0492 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
16:51:25.0897 0492 wmiApSrv - ok
16:51:26.0025 0492 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
16:51:26.0057 0492 WMPNetworkSvc - ok
16:51:26.0085 0492 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
16:51:26.0099 0492 WPCSvc - ok
16:51:26.0128 0492 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
16:51:26.0144 0492 WPDBusEnum - ok
16:51:26.0171 0492 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
16:51:26.0195 0492 ws2ifsl - ok
16:51:26.0198 0492 WSearch - ok
16:51:26.0366 0492 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
16:51:26.0426 0492 wuauserv - ok
16:51:26.0542 0492 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
16:51:26.0577 0492 WudfPf - ok
16:51:26.0607 0492 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:51:26.0631 0492 WUDFRd - ok
16:51:26.0677 0492 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
16:51:26.0703 0492 wudfsvc - ok
16:51:26.0734 0492 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
16:51:26.0752 0492 WwanSvc - ok
16:51:26.0796 0492 yukonw7 (30b73eb97218a16cbc6de535782a1b35) C:\Windows\system32\DRIVERS\yk62x86.sys
16:51:26.0826 0492 yukonw7 - ok
16:51:26.0867 0492 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
16:51:27.0173 0492 \Device\Harddisk0\DR0 - ok
16:51:27.0180 0492 Boot (0x1200) (8bb26dcaa996da5e4ee8beda2e3f3072) \Device\Harddisk0\DR0\Partition0
16:51:27.0183 0492 \Device\Harddisk0\DR0\Partition0 - ok
16:51:27.0219 0492 Boot (0x1200) (fd13bb7b1022e18db08e31eaa176c303) \Device\Harddisk0\DR0\Partition1
16:51:27.0221 0492 \Device\Harddisk0\DR0\Partition1 - ok
16:51:27.0246 0492 Boot (0x1200) (6c43e54634c482c6bfc2c8b870f02a61) \Device\Harddisk0\DR0\Partition2
16:51:27.0249 0492 \Device\Harddisk0\DR0\Partition2 - ok
16:51:27.0269 0492 Boot (0x1200) (50b5fd583633c88a0c8776cea3aaf5d8) \Device\Harddisk0\DR0\Partition3
16:51:27.0272 0492 \Device\Harddisk0\DR0\Partition3 - ok
16:51:27.0273 0492 ============================================================
16:51:27.0273 0492 Scan finished
16:51:27.0273 0492 ============================================================
16:51:27.0341 0572 Detected object count: 1
16:51:27.0342 0572 Actual detected object count: 1
16:51:32.0382 0572 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - skipped by user
16:51:32.0382 0572 FirebirdServerMAGIXInstance ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
| Themen zu Problem mit Trojaner Sirefef und Small und Rootkit.0Access |
| 80000000.@, 800000cb.@, administrator, antivir, autorun, avira, bho, bingbar, bluestacks, desktop, device driver, document, entfernen, excel, explorer, firefox, format, google earth, helper, hotspot, hotspot shield, hängen, installation, langs, launch, locker, logfile, plug-in, problem, registry, safer networking, searchscopes, senden, services.exe, software, system, temp, trojaner, trojaner sirefef, usb, version=1.0, visual studio, zugriff verweigert |
Hybrid-Darstellung
