| |
| |||||||
Log-Analyse und Auswertung: TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
31.08.2012, 10:43
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
FF - user.js - File not found
IE - HKU\S-1-5-21-2997147131-3722969446-1398420775-1000\..\URLSearchHook: {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - No CLSID value found
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2997147131-3722969446-1398420775-1000\..\Toolbar\WebBrowser: (no name) - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No CLSID value found.
O3 - HKU\S-1-5-21-2997147131-3722969446-1398420775-1000\..\Toolbar\WebBrowser: (no name) - {FC2B76FC-2132-4D80-A9A3-1F5C6E49066B} - No CLSID value found.
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011.10.24 11:35:04 | 000,161,070 | R--- | M] () - E:\autorun.ico -- [ UDF ]
O32 - AutoRun File - [2011.10.24 11:34:22 | 000,000,047 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{3f6b7d66-40c9-11e0-af8e-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{3f6b7d66-40c9-11e0-af8e-806e6f6e6963}\Shell\AutoRun\command - "" = E:\Setup.exe -- [2011.10.24 11:35:04 | 000,378,144 | R--- | M] (Microsoft Corporation)
@Alternate Data Stream - 112 bytes -> C:\ProgramData\Temp:8CE646EE
:Files
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\U
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\l
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\n
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\@
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\l
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\u
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\n
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\@
C:\ProgramData\FullRemove.exe
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache
:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
31.08.2012, 15:21
| #17 |
 | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Hier kommt die OTL nach dem FIX. Ich muss zugeben das "All processes killed" schockt im ersten Moment doch etwas ;-)
__________________Code:
ATTFilter All processes killed
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-2997147131-3722969446-1398420775-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-2997147131-3722969446-1398420775-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107}\ not found.
Registry value HKEY_USERS\S-1-5-21-2997147131-3722969446-1398420775-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}\ not found.
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
File move failed. E:\autorun.ico scheduled to be moved on reboot.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f6b7d66-40c9-11e0-af8e-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3f6b7d66-40c9-11e0-af8e-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3f6b7d66-40c9-11e0-af8e-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3f6b7d66-40c9-11e0-af8e-806e6f6e6963}\ not found.
File move failed. E:\Setup.exe scheduled to be moved on reboot.
ADS C:\ProgramData\Temp:8CE646EE deleted successfully.
========== FILES ==========
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\U folder moved successfully.
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\L folder moved successfully.
File\Folder C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\n not found.
C:\Windows\Installer\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\@ moved successfully.
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\L folder moved successfully.
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\U folder moved successfully.
File\Folder C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\n not found.
C:\Users\TelRon\AppData\Local\{31d5c272-799f-95d6-f953-c8b6c68b66b8}\@ moved successfully.
C:\ProgramData\FullRemove.exe moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\tmp folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\muffin folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\host folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache\6.0 folder moved successfully.
C:\Users\TelRon\AppData\LocalLow\Sun\Java\Deployment\cache folder moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
User: TelRon
->Temp folder emptied: 188717 bytes
->Temporary Internet Files folder emptied: 4829203 bytes
->FireFox cache emptied: 148126129 bytes
->Flash cache emptied: 1455 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 401408 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 54813673 bytes
RecycleBin emptied: 40917953 bytes
Total Files Cleaned = 238,00 mb
[EMPTYFLASH]
User: All Users
User: Default
User: Default User
User: Public
User: TelRon
->Flash cache emptied: 0 bytes
Total Flash Files Cleaned = 0,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.59.1 log created on 08312012_160827
Files\Folders moved on Reboot...
File move failed. E:\autorun.ico scheduled to be moved on reboot.
File move failed. E:\autorun.inf scheduled to be moved on reboot.
File move failed. E:\Setup.exe scheduled to be moved on reboot.
C:\Users\TelRon\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
31.08.2012, 16:05
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html
__________________Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ |
|
01.09.2012, 06:12
| #19 |
| | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Hier ist die TDSSKiller-Datei Code:
ATTFilter 20:40:23.0388 2512 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
20:40:23.0466 2512 ============================================================
20:40:23.0466 2512 Current date / time: 2012/08/31 20:40:23.0466
20:40:23.0466 2512 SystemInfo:
20:40:23.0466 2512
20:40:23.0466 2512 OS Version: 6.1.7601 ServicePack: 1.0
20:40:23.0466 2512 Product type: Workstation
20:40:23.0466 2512 ComputerName: TELRON-PC
20:40:23.0466 2512 UserName: TelRon
20:40:23.0466 2512 Windows directory: C:\Windows
20:40:23.0466 2512 System windows directory: C:\Windows
20:40:23.0466 2512 Running under WOW64
20:40:23.0466 2512 Processor architecture: Intel x64
20:40:23.0466 2512 Number of processors: 6
20:40:23.0466 2512 Page size: 0x1000
20:40:23.0466 2512 Boot type: Normal boot
20:40:23.0466 2512 ============================================================
20:40:25.0478 2512 Drive \Device\Harddisk0\DR0 - Size: 0xE8DCDB0000 (931.45 Gb), SectorSize: 0x200, Cylinders: 0x1DAF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:40:25.0525 2512 ============================================================
20:40:25.0525 2512 \Device\Harddisk0\DR0:
20:40:25.0525 2512 MBR partitions:
20:40:25.0525 2512 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
20:40:25.0525 2512 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x390E7000
20:40:25.0525 2512 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B519800, BlocksNum 0x391EC800
20:40:25.0525 2512 ============================================================
20:40:25.0572 2512 C: <-> \Device\Harddisk0\DR0\Partition2
20:40:25.0634 2512 D: <-> \Device\Harddisk0\DR0\Partition3
20:40:25.0634 2512 ============================================================
20:40:25.0634 2512 Initialize success
20:40:25.0634 2512 ============================================================
20:41:17.0634 3284 ============================================================
20:41:17.0634 3284 Scan started
20:41:17.0634 3284 Mode: Manual; SigCheck; TDLFS;
20:41:17.0634 3284 ============================================================
20:41:18.0040 3284 ================ Scan services =============================
20:41:18.0149 3284 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:41:18.0414 3284 1394ohci - ok
20:41:18.0461 3284 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:41:18.0508 3284 ACPI - ok
20:41:18.0539 3284 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:41:18.0601 3284 AcpiPmi - ok
20:41:18.0664 3284 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
20:41:18.0679 3284 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
20:41:18.0679 3284 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
20:41:18.0757 3284 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:41:18.0788 3284 AdobeFlashPlayerUpdateSvc - ok
20:41:18.0835 3284 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:41:18.0898 3284 adp94xx - ok
20:41:18.0913 3284 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:41:18.0944 3284 adpahci - ok
20:41:18.0976 3284 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:41:19.0007 3284 adpu320 - ok
20:41:19.0038 3284 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:41:19.0178 3284 AeLookupSvc - ok
20:41:19.0225 3284 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:41:19.0288 3284 AFD - ok
20:41:19.0319 3284 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:41:19.0350 3284 agp440 - ok
20:41:19.0381 3284 [ 37FA0F874BA8ECD5851D44A7F1C9700E ] ahcix64s C:\Windows\system32\DRIVERS\ahcix64s.sys
20:41:19.0459 3284 ahcix64s - ok
20:41:19.0490 3284 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:41:19.0537 3284 ALG - ok
20:41:19.0568 3284 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:41:19.0600 3284 aliide - ok
20:41:19.0600 3284 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:41:19.0631 3284 amdide - ok
20:41:19.0662 3284 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:41:19.0693 3284 AmdK8 - ok
20:41:19.0724 3284 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:41:19.0756 3284 AmdPPM - ok
20:41:19.0787 3284 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:41:19.0818 3284 amdsata - ok
20:41:19.0834 3284 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:41:19.0865 3284 amdsbs - ok
20:41:19.0896 3284 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:41:19.0912 3284 amdxata - ok
20:41:19.0974 3284 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:41:20.0005 3284 AntiVirSchedulerService - ok
20:41:20.0021 3284 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:41:20.0052 3284 AntiVirService - ok
20:41:20.0083 3284 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:41:20.0239 3284 AppID - ok
20:41:20.0255 3284 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:41:20.0364 3284 AppIDSvc - ok
20:41:20.0411 3284 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:41:20.0504 3284 Appinfo - ok
20:41:20.0520 3284 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:41:20.0551 3284 arc - ok
20:41:20.0567 3284 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:41:20.0598 3284 arcsas - ok
20:41:20.0614 3284 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:41:20.0723 3284 AsyncMac - ok
20:41:20.0754 3284 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:41:20.0785 3284 atapi - ok
20:41:20.0801 3284 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
20:41:20.0832 3284 AtiPcie - ok
20:41:20.0879 3284 [ 4AEF9EC86818375495FB78CA58DF4E18 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
20:41:20.0926 3284 atksgt ( UnsignedFile.Multi.Generic ) - warning
20:41:20.0926 3284 atksgt - detected UnsignedFile.Multi.Generic (1)
20:41:20.0972 3284 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:41:21.0097 3284 AudioEndpointBuilder - ok
20:41:21.0113 3284 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:41:21.0206 3284 AudioSrv - ok
20:41:21.0253 3284 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:41:21.0284 3284 avgntflt - ok
20:41:21.0331 3284 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:41:21.0362 3284 avipbb - ok
20:41:21.0378 3284 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:41:21.0425 3284 avkmgr - ok
20:41:21.0456 3284 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:41:21.0503 3284 AxInstSV - ok
20:41:21.0534 3284 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:41:21.0596 3284 b06bdrv - ok
20:41:21.0628 3284 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:41:21.0674 3284 b57nd60a - ok
20:41:21.0706 3284 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:41:21.0737 3284 BDESVC - ok
20:41:21.0768 3284 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:41:21.0877 3284 Beep - ok
20:41:21.0893 3284 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:41:21.0940 3284 blbdrive - ok
20:41:21.0971 3284 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:41:22.0018 3284 bowser - ok
20:41:22.0033 3284 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:41:22.0064 3284 BrFiltLo - ok
20:41:22.0080 3284 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:41:22.0111 3284 BrFiltUp - ok
20:41:22.0142 3284 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:41:22.0174 3284 Browser - ok
20:41:22.0189 3284 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:41:22.0252 3284 Brserid - ok
20:41:22.0252 3284 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:41:22.0298 3284 BrSerWdm - ok
20:41:22.0298 3284 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:41:22.0376 3284 BrUsbMdm - ok
20:41:22.0392 3284 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:41:22.0423 3284 BrUsbSer - ok
20:41:22.0439 3284 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:41:22.0470 3284 BTHMODEM - ok
20:41:22.0517 3284 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:41:22.0610 3284 bthserv - ok
20:41:22.0626 3284 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:41:22.0720 3284 cdfs - ok
20:41:22.0766 3284 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:41:22.0798 3284 cdrom - ok
20:41:22.0844 3284 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:41:22.0938 3284 CertPropSvc - ok
20:41:22.0969 3284 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:41:23.0016 3284 circlass - ok
20:41:23.0047 3284 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:41:23.0094 3284 CLFS - ok
20:41:23.0141 3284 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:41:23.0172 3284 clr_optimization_v2.0.50727_32 - ok
20:41:23.0203 3284 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:41:23.0234 3284 clr_optimization_v2.0.50727_64 - ok
20:41:23.0297 3284 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:41:23.0359 3284 clr_optimization_v4.0.30319_32 - ok
20:41:23.0390 3284 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:41:23.0422 3284 clr_optimization_v4.0.30319_64 - ok
20:41:23.0437 3284 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:41:23.0484 3284 CmBatt - ok
20:41:23.0500 3284 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:41:23.0531 3284 cmdide - ok
20:41:23.0562 3284 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:41:23.0640 3284 CNG - ok
20:41:23.0656 3284 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:41:23.0687 3284 Compbatt - ok
20:41:23.0702 3284 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:41:23.0749 3284 CompositeBus - ok
20:41:23.0765 3284 COMSysApp - ok
20:41:23.0780 3284 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:41:23.0812 3284 crcdisk - ok
20:41:23.0843 3284 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:41:23.0921 3284 CryptSvc - ok
20:41:23.0968 3284 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:41:24.0061 3284 DcomLaunch - ok
20:41:24.0108 3284 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:41:24.0217 3284 defragsvc - ok
20:41:24.0248 3284 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:41:24.0342 3284 DfsC - ok
20:41:24.0389 3284 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:41:24.0514 3284 Dhcp - ok
20:41:24.0529 3284 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:41:24.0623 3284 discache - ok
20:41:24.0638 3284 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:41:24.0670 3284 Disk - ok
20:41:24.0685 3284 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:41:24.0732 3284 Dnscache - ok
20:41:24.0763 3284 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:41:24.0872 3284 dot3svc - ok
20:41:24.0904 3284 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:41:24.0997 3284 DPS - ok
20:41:25.0013 3284 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:41:25.0060 3284 drmkaud - ok
20:41:25.0122 3284 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:41:25.0184 3284 DXGKrnl - ok
20:41:25.0200 3284 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:41:25.0294 3284 EapHost - ok
20:41:25.0387 3284 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:41:25.0528 3284 ebdrv - ok
20:41:25.0559 3284 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:41:25.0606 3284 EFS - ok
20:41:25.0668 3284 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:41:25.0715 3284 ehRecvr - ok
20:41:25.0730 3284 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:41:25.0777 3284 ehSched - ok
20:41:25.0808 3284 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:41:25.0871 3284 elxstor - ok
20:41:25.0886 3284 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:41:25.0918 3284 ErrDev - ok
20:41:25.0964 3284 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:41:26.0074 3284 EventSystem - ok
20:41:26.0089 3284 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:41:26.0183 3284 exfat - ok
20:41:26.0214 3284 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:41:26.0308 3284 fastfat - ok
20:41:26.0354 3284 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:41:26.0417 3284 Fax - ok
20:41:26.0432 3284 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:41:26.0464 3284 fdc - ok
20:41:26.0479 3284 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:41:26.0573 3284 fdPHost - ok
20:41:26.0588 3284 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:41:26.0682 3284 FDResPub - ok
20:41:26.0713 3284 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:41:26.0744 3284 FileInfo - ok
20:41:26.0760 3284 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:41:26.0854 3284 Filetrace - ok
20:41:26.0869 3284 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:41:26.0900 3284 flpydisk - ok
20:41:26.0932 3284 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:41:26.0978 3284 FltMgr - ok
20:41:27.0041 3284 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:41:27.0103 3284 FontCache - ok
20:41:27.0166 3284 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:41:27.0181 3284 FontCache3.0.0.0 - ok
20:41:27.0212 3284 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:41:27.0244 3284 FsDepends - ok
20:41:27.0275 3284 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:41:27.0306 3284 Fs_Rec - ok
20:41:27.0337 3284 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:41:27.0384 3284 fvevol - ok
20:41:27.0400 3284 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:41:27.0431 3284 gagp30kx - ok
20:41:27.0478 3284 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:41:27.0587 3284 gpsvc - ok
20:41:27.0649 3284 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
20:41:27.0680 3284 GREGService - ok
20:41:27.0696 3284 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:41:27.0727 3284 hcw85cir - ok
20:41:27.0774 3284 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:41:27.0836 3284 HdAudAddService - ok
20:41:27.0868 3284 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:41:27.0899 3284 HDAudBus - ok
20:41:27.0914 3284 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:41:27.0961 3284 HidBatt - ok
20:41:27.0961 3284 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:41:28.0008 3284 HidBth - ok
20:41:28.0024 3284 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:41:28.0055 3284 HidIr - ok
20:41:28.0086 3284 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:41:28.0180 3284 hidserv - ok
20:41:28.0226 3284 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:41:28.0258 3284 HidUsb - ok
20:41:28.0289 3284 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:41:28.0382 3284 hkmsvc - ok
20:41:28.0429 3284 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:41:28.0460 3284 HomeGroupListener - ok
20:41:28.0492 3284 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:41:28.0538 3284 HomeGroupProvider - ok
20:41:28.0570 3284 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:41:28.0601 3284 HpSAMD - ok
20:41:28.0632 3284 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:41:28.0757 3284 HTTP - ok
20:41:28.0772 3284 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:41:28.0788 3284 hwpolicy - ok
20:41:28.0819 3284 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:41:28.0850 3284 i8042prt - ok
20:41:28.0882 3284 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:41:28.0928 3284 iaStorV - ok
20:41:28.0991 3284 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:41:29.0038 3284 idsvc - ok
20:41:29.0069 3284 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:41:29.0100 3284 iirsp - ok
20:41:29.0147 3284 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:41:29.0272 3284 IKEEXT - ok
20:41:29.0350 3284 [ 6FECEB88CBB6E761E9194F5711F02102 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:41:29.0474 3284 IntcAzAudAddService - ok
20:41:29.0506 3284 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:41:29.0521 3284 intelide - ok
20:41:29.0552 3284 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:41:29.0599 3284 intelppm - ok
20:41:29.0615 3284 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:41:29.0724 3284 IPBusEnum - ok
20:41:29.0755 3284 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:41:29.0849 3284 IpFilterDriver - ok
20:41:29.0880 3284 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:41:29.0911 3284 IPMIDRV - ok
20:41:29.0927 3284 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:41:30.0036 3284 IPNAT - ok
20:41:30.0052 3284 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:41:30.0098 3284 IRENUM - ok
20:41:30.0114 3284 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:41:30.0130 3284 isapnp - ok
20:41:30.0161 3284 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:41:30.0192 3284 iScsiPrt - ok
20:41:30.0208 3284 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:41:30.0239 3284 kbdclass - ok
20:41:30.0270 3284 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:41:30.0301 3284 kbdhid - ok
20:41:30.0317 3284 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:41:30.0348 3284 KeyIso - ok
20:41:30.0364 3284 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:41:30.0395 3284 KSecDD - ok
20:41:30.0410 3284 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:41:30.0442 3284 KSecPkg - ok
20:41:30.0457 3284 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:41:30.0566 3284 ksthunk - ok
20:41:30.0598 3284 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:41:30.0707 3284 KtmRm - ok
20:41:30.0754 3284 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:41:30.0847 3284 LanmanServer - ok
20:41:30.0878 3284 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:41:30.0972 3284 LanmanWorkstation - ok
20:41:31.0112 3284 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
20:41:31.0159 3284 LBTServ - ok
20:41:31.0190 3284 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
20:41:31.0237 3284 LHidFilt - ok
20:41:31.0284 3284 [ B658B7076B1ACAA5876524595630F183 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
20:41:31.0300 3284 lirsgt ( UnsignedFile.Multi.Generic ) - warning
20:41:31.0300 3284 lirsgt - detected UnsignedFile.Multi.Generic (1)
20:41:31.0331 3284 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:41:31.0424 3284 lltdio - ok
20:41:31.0456 3284 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:41:31.0565 3284 lltdsvc - ok
20:41:31.0565 3284 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:41:31.0658 3284 lmhosts - ok
20:41:31.0690 3284 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
20:41:31.0721 3284 LMouFilt - ok
20:41:31.0752 3284 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:41:31.0783 3284 LSI_FC - ok
20:41:31.0814 3284 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:41:31.0846 3284 LSI_SAS - ok
20:41:31.0846 3284 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:41:31.0877 3284 LSI_SAS2 - ok
20:41:31.0892 3284 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:41:31.0924 3284 LSI_SCSI - ok
20:41:31.0939 3284 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:41:32.0048 3284 luafv - ok
20:41:32.0080 3284 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:41:32.0126 3284 Mcx2Svc - ok
20:41:32.0142 3284 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:41:32.0173 3284 megasas - ok
20:41:32.0189 3284 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:41:32.0220 3284 MegaSR - ok
20:41:32.0251 3284 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:41:32.0345 3284 MMCSS - ok
20:41:32.0360 3284 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:41:32.0454 3284 Modem - ok
20:41:32.0470 3284 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:41:32.0501 3284 monitor - ok
20:41:32.0532 3284 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:41:32.0563 3284 mouclass - ok
20:41:32.0594 3284 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:41:32.0626 3284 mouhid - ok
20:41:32.0657 3284 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:41:32.0688 3284 mountmgr - ok
20:41:32.0735 3284 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:41:32.0766 3284 MozillaMaintenance - ok
20:41:32.0782 3284 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:41:32.0813 3284 mpio - ok
20:41:32.0844 3284 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:41:32.0938 3284 mpsdrv - ok
20:41:32.0969 3284 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:41:33.0016 3284 MRxDAV - ok
20:41:33.0047 3284 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:41:33.0094 3284 mrxsmb - ok
20:41:33.0125 3284 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:41:33.0172 3284 mrxsmb10 - ok
20:41:33.0187 3284 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:41:33.0218 3284 mrxsmb20 - ok
20:41:33.0250 3284 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:41:33.0281 3284 msahci - ok
20:41:33.0312 3284 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:41:33.0343 3284 msdsm - ok
20:41:33.0359 3284 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:41:33.0374 3284 MSDTC - ok
20:41:33.0406 3284 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:41:33.0452 3284 Msfs - ok
20:41:33.0468 3284 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:41:33.0515 3284 mshidkmdf - ok
20:41:33.0530 3284 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:41:33.0546 3284 msisadrv - ok
20:41:33.0577 3284 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:41:33.0640 3284 MSiSCSI - ok
20:41:33.0655 3284 msiserver - ok
20:41:33.0671 3284 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:41:33.0718 3284 MSKSSRV - ok
20:41:33.0733 3284 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:41:33.0780 3284 MSPCLOCK - ok
20:41:33.0780 3284 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:41:33.0842 3284 MSPQM - ok
20:41:33.0874 3284 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:41:33.0889 3284 MsRPC - ok
20:41:33.0920 3284 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:41:33.0936 3284 mssmbios - ok
20:41:33.0952 3284 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:41:33.0998 3284 MSTEE - ok
20:41:34.0014 3284 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:41:34.0045 3284 MTConfig - ok
20:41:34.0045 3284 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:41:34.0061 3284 Mup - ok
20:41:34.0076 3284 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
20:41:34.0108 3284 mwlPSDFilter - ok
20:41:34.0108 3284 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
20:41:34.0139 3284 mwlPSDNServ - ok
20:41:34.0139 3284 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
20:41:34.0170 3284 mwlPSDVDisk - ok
20:41:34.0201 3284 [ 3E5E20817259F7328C8F3BE5421F35B9 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
20:41:34.0217 3284 MWLService - ok
20:41:34.0264 3284 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:41:34.0326 3284 napagent - ok
20:41:34.0357 3284 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:41:34.0420 3284 NativeWifiP - ok
20:41:34.0466 3284 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:41:34.0529 3284 NDIS - ok
20:41:34.0544 3284 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:41:34.0638 3284 NdisCap - ok
20:41:34.0654 3284 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:41:34.0747 3284 NdisTapi - ok
20:41:34.0778 3284 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:41:34.0872 3284 Ndisuio - ok
20:41:34.0919 3284 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:41:35.0012 3284 NdisWan - ok
20:41:35.0044 3284 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:41:35.0137 3284 NDProxy - ok
20:41:35.0231 3284 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:41:35.0309 3284 Nero BackItUp Scheduler 4.0 - ok
20:41:35.0356 3284 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:41:35.0449 3284 NetBIOS - ok
20:41:35.0496 3284 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:41:35.0574 3284 NetBT - ok
20:41:35.0590 3284 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:41:35.0621 3284 Netlogon - ok
20:41:35.0652 3284 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:41:35.0761 3284 Netman - ok
20:41:35.0792 3284 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:41:35.0902 3284 netprofm - ok
20:41:35.0917 3284 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:41:35.0948 3284 NetTcpPortSharing - ok
20:41:35.0980 3284 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:41:36.0011 3284 nfrd960 - ok
20:41:36.0042 3284 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:41:36.0151 3284 NlaSvc - ok
20:41:36.0338 3284 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:41:36.0510 3284 NOBU - ok
20:41:36.0526 3284 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:41:36.0619 3284 Npfs - ok
20:41:36.0635 3284 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:41:36.0728 3284 nsi - ok
20:41:36.0744 3284 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:41:36.0838 3284 nsiproxy - ok
20:41:36.0916 3284 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:41:37.0009 3284 Ntfs - ok
20:41:37.0009 3284 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:41:37.0118 3284 Null - ok
20:41:37.0150 3284 [ E20ABD5B229760158F753CA90B97E090 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:41:37.0181 3284 NVHDA - ok
20:41:37.0727 3284 [ 9C1996DD3C0469BC8933321F15709F5A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:41:38.0226 3284 nvlddmkm - ok
20:41:38.0257 3284 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:41:38.0273 3284 nvraid - ok
20:41:38.0304 3284 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:41:38.0320 3284 nvstor - ok
20:41:38.0351 3284 [ 382A8E95FAB1E301762B120E16FE807D ] nvsvc C:\Windows\system32\nvvsvc.exe
20:41:38.0382 3284 nvsvc - ok
20:41:38.0413 3284 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:41:38.0444 3284 nv_agp - ok
20:41:38.0460 3284 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:41:38.0491 3284 ohci1394 - ok
20:41:38.0538 3284 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:41:38.0569 3284 ose - ok
20:41:38.0600 3284 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:41:38.0647 3284 p2pimsvc - ok
20:41:38.0663 3284 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:41:38.0710 3284 p2psvc - ok
20:41:38.0725 3284 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:41:38.0756 3284 Parport - ok
20:41:38.0788 3284 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:41:38.0819 3284 partmgr - ok
20:41:38.0834 3284 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:41:38.0897 3284 PcaSvc - ok
20:41:38.0928 3284 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:41:38.0959 3284 pci - ok
20:41:38.0975 3284 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:41:39.0006 3284 pciide - ok
20:41:39.0037 3284 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:41:39.0068 3284 pcmcia - ok
20:41:39.0084 3284 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:41:39.0115 3284 pcw - ok
20:41:39.0131 3284 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:41:39.0256 3284 PEAUTH - ok
20:41:39.0318 3284 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:41:39.0365 3284 PerfHost - ok
20:41:39.0427 3284 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:41:39.0568 3284 pla - ok
20:41:39.0614 3284 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:41:39.0646 3284 PlugPlay - ok
20:41:39.0661 3284 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:41:39.0708 3284 PNRPAutoReg - ok
20:41:39.0724 3284 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:41:39.0755 3284 PNRPsvc - ok
20:41:39.0802 3284 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:41:39.0911 3284 PolicyAgent - ok
20:41:39.0958 3284 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:41:40.0051 3284 Power - ok
20:41:40.0082 3284 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:41:40.0176 3284 PptpMiniport - ok
20:41:40.0192 3284 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:41:40.0223 3284 Processor - ok
20:41:40.0254 3284 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:41:40.0301 3284 ProfSvc - ok
20:41:40.0316 3284 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:41:40.0332 3284 ProtectedStorage - ok
20:41:40.0379 3284 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:41:40.0472 3284 Psched - ok
20:41:40.0519 3284 [ 225D3660F926FE761BC8CE10C512AA02 ] PTSimBus C:\Windows\system32\DRIVERS\PTSimBus.sys
20:41:40.0566 3284 PTSimBus - ok
20:41:40.0597 3284 [ BD2194786ABAF4860F41118C0C103E7B ] PTSimHid C:\Windows\system32\DRIVERS\PTSimHid.sys
20:41:40.0644 3284 PTSimHid - ok
20:41:40.0691 3284 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:41:40.0784 3284 ql2300 - ok
20:41:40.0800 3284 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:41:40.0831 3284 ql40xx - ok
20:41:40.0862 3284 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:41:40.0909 3284 QWAVE - ok
20:41:40.0925 3284 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:41:40.0972 3284 QWAVEdrv - ok
20:41:41.0143 3284 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:41:41.0252 3284 RasAcd - ok
20:41:41.0268 3284 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:41:41.0346 3284 RasAgileVpn - ok
20:41:41.0393 3284 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:41:41.0486 3284 RasAuto - ok
20:41:41.0518 3284 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:41:41.0627 3284 Rasl2tp - ok
20:41:41.0642 3284 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:41:41.0736 3284 RasMan - ok
20:41:41.0767 3284 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:41:41.0861 3284 RasPppoe - ok
20:41:41.0876 3284 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:41:41.0970 3284 RasSstp - ok
20:41:42.0001 3284 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:41:42.0110 3284 rdbss - ok
20:41:42.0126 3284 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:41:42.0173 3284 rdpbus - ok
20:41:42.0188 3284 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:41:42.0282 3284 RDPCDD - ok
20:41:42.0298 3284 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:41:42.0391 3284 RDPENCDD - ok
20:41:42.0422 3284 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:41:42.0500 3284 RDPREFMP - ok
20:41:42.0532 3284 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:41:42.0578 3284 RDPWD - ok
20:41:42.0625 3284 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:41:42.0656 3284 rdyboost - ok
20:41:42.0688 3284 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:41:42.0781 3284 RemoteAccess - ok
20:41:42.0797 3284 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:41:42.0906 3284 RemoteRegistry - ok
20:41:42.0937 3284 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
20:41:42.0968 3284 RichVideo ( UnsignedFile.Multi.Generic ) - warning
20:41:42.0968 3284 RichVideo - detected UnsignedFile.Multi.Generic (1)
20:41:42.0984 3284 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:41:43.0078 3284 RpcEptMapper - ok
20:41:43.0109 3284 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:41:43.0140 3284 RpcLocator - ok
20:41:43.0171 3284 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:41:43.0265 3284 RpcSs - ok
20:41:43.0312 3284 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:41:43.0405 3284 rspndr - ok
20:41:43.0452 3284 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:41:43.0483 3284 RTL8167 - ok
20:41:43.0499 3284 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:41:43.0530 3284 SamSs - ok
20:41:43.0561 3284 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:41:43.0593 3284 sbp2port - ok
20:41:43.0608 3284 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:41:43.0717 3284 SCardSvr - ok
20:41:43.0733 3284 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:41:43.0827 3284 scfilter - ok
20:41:43.0873 3284 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:41:43.0998 3284 Schedule - ok
20:41:44.0029 3284 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:41:44.0123 3284 SCPolicySvc - ok
20:41:44.0139 3284 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:41:44.0170 3284 SDRSVC - ok
20:41:44.0185 3284 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:41:44.0279 3284 secdrv - ok
20:41:44.0295 3284 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:41:44.0388 3284 seclogon - ok
20:41:44.0435 3284 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:41:44.0513 3284 SENS - ok
20:41:44.0529 3284 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:41:44.0560 3284 SensrSvc - ok
20:41:44.0591 3284 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:41:44.0622 3284 Serenum - ok
20:41:44.0638 3284 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:41:44.0669 3284 Serial - ok
20:41:44.0700 3284 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:41:44.0731 3284 sermouse - ok
20:41:44.0778 3284 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:41:44.0872 3284 SessionEnv - ok
20:41:44.0903 3284 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:41:44.0934 3284 sffdisk - ok
20:41:44.0934 3284 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:41:44.0981 3284 sffp_mmc - ok
20:41:44.0981 3284 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:41:45.0028 3284 sffp_sd - ok
20:41:45.0043 3284 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:41:45.0090 3284 sfloppy - ok
20:41:45.0137 3284 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:41:45.0231 3284 ShellHWDetection - ok
20:41:45.0262 3284 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:41:45.0293 3284 SiSRaid2 - ok
20:41:45.0293 3284 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:41:45.0324 3284 SiSRaid4 - ok
20:41:45.0387 3284 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:41:45.0418 3284 SkypeUpdate - ok
20:41:45.0433 3284 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:41:45.0527 3284 Smb - ok
20:41:45.0558 3284 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:41:45.0589 3284 SNMPTRAP - ok
20:41:45.0621 3284 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:41:45.0636 3284 spldr - ok
20:41:45.0683 3284 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:41:45.0730 3284 Spooler - ok
20:41:45.0855 3284 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:41:46.0042 3284 sppsvc - ok
20:41:46.0073 3284 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:41:46.0167 3284 sppuinotify - ok
20:41:46.0229 3284 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:41:46.0276 3284 srv - ok
20:41:46.0307 3284 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:41:46.0354 3284 srv2 - ok
20:41:46.0369 3284 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:41:46.0416 3284 srvnet - ok
20:41:46.0447 3284 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:41:46.0541 3284 SSDPSRV - ok
20:41:46.0572 3284 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:41:46.0650 3284 SstpSvc - ok
20:41:46.0681 3284 Steam Client Service - ok
20:41:46.0728 3284 [ 6DFE2838759B05F9A24E47C7518D02F8 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:41:46.0759 3284 Stereo Service - ok
20:41:46.0791 3284 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:41:46.0806 3284 stexstor - ok
20:41:46.0853 3284 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:41:46.0931 3284 stisvc - ok
20:41:46.0947 3284 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:41:46.0978 3284 swenum - ok
20:41:47.0009 3284 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:41:47.0118 3284 swprv - ok
20:41:47.0196 3284 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:41:47.0290 3284 SysMain - ok
20:41:47.0337 3284 Tablet2k - ok
20:41:47.0368 3284 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:41:47.0415 3284 TabletInputService - ok
20:41:47.0430 3284 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:41:47.0539 3284 TapiSrv - ok
20:41:47.0555 3284 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:41:47.0649 3284 TBS - ok
20:41:47.0680 3284 [ 530A7F0966493DD437E4342F12CCD63B ] TClass2k C:\Windows\system32\DRIVERS\TClass2k.sys
20:41:47.0711 3284 TClass2k - ok
20:41:47.0789 3284 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:41:47.0898 3284 Tcpip - ok
20:41:47.0945 3284 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:41:48.0039 3284 TCPIP6 - ok
20:41:48.0070 3284 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:41:48.0163 3284 tcpipreg - ok
20:41:48.0210 3284 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:41:48.0226 3284 TDPIPE - ok
20:41:48.0257 3284 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:41:48.0304 3284 TDTCP - ok
20:41:48.0351 3284 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:41:48.0429 3284 tdx - ok
20:41:48.0460 3284 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:41:48.0491 3284 TermDD - ok
20:41:48.0522 3284 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:41:48.0631 3284 TermService - ok
20:41:48.0647 3284 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:41:48.0694 3284 Themes - ok
20:41:48.0709 3284 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:41:48.0803 3284 THREADORDER - ok
20:41:48.0850 3284 [ 3199A477F0F06EEDE41BD55179F8EB05 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
20:41:48.0881 3284 TomTomHOMEService - ok
20:41:48.0897 3284 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:41:48.0990 3284 TrkWks - ok
20:41:49.0037 3284 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:41:49.0131 3284 TrustedInstaller - ok
20:41:49.0162 3284 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:41:49.0255 3284 tssecsrv - ok
20:41:49.0287 3284 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:41:49.0318 3284 TsUsbFlt - ok
20:41:49.0365 3284 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:41:49.0458 3284 tunnel - ok
20:41:49.0489 3284 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:41:49.0521 3284 uagp35 - ok
20:41:49.0536 3284 [ 01662B4865FDB282677B11CF416757CE ] UCTblHid C:\Windows\system32\DRIVERS\UCTblHid.sys
20:41:49.0567 3284 UCTblHid - ok
20:41:49.0599 3284 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:41:49.0708 3284 udfs - ok
20:41:49.0755 3284 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:41:49.0786 3284 UI0Detect - ok
20:41:49.0801 3284 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:41:49.0833 3284 uliagpkx - ok
20:41:49.0864 3284 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:41:49.0895 3284 umbus - ok
20:41:49.0926 3284 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:41:49.0957 3284 UmPass - ok
20:41:49.0989 3284 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
20:41:50.0035 3284 Updater Service - ok
20:41:50.0067 3284 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:41:50.0160 3284 upnphost - ok
20:41:50.0191 3284 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:41:50.0223 3284 usbccgp - ok
20:41:50.0269 3284 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:41:50.0301 3284 usbcir - ok
20:41:50.0316 3284 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:41:50.0347 3284 usbehci - ok
20:41:50.0379 3284 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:41:50.0410 3284 usbhub - ok
20:41:50.0441 3284 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:41:50.0472 3284 usbohci - ok
20:41:50.0503 3284 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:41:50.0550 3284 usbprint - ok
20:41:50.0566 3284 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:41:50.0597 3284 USBSTOR - ok
20:41:50.0613 3284 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:41:50.0644 3284 usbuhci - ok
20:41:50.0675 3284 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:41:50.0753 3284 UxSms - ok
20:41:50.0784 3284 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:41:50.0800 3284 VaultSvc - ok
20:41:50.0815 3284 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:41:50.0847 3284 vdrvroot - ok
20:41:50.0893 3284 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:41:51.0003 3284 vds - ok
20:41:51.0018 3284 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:41:51.0065 3284 vga - ok
20:41:51.0081 3284 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:41:51.0174 3284 VgaSave - ok
20:41:51.0205 3284 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:41:51.0237 3284 vhdmp - ok
20:41:51.0252 3284 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:41:51.0283 3284 viaide - ok
20:41:51.0299 3284 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:41:51.0330 3284 volmgr - ok
20:41:51.0377 3284 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:41:51.0408 3284 volmgrx - ok
20:41:51.0424 3284 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:41:51.0471 3284 volsnap - ok
20:41:51.0502 3284 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:41:51.0533 3284 vsmraid - ok
20:41:51.0595 3284 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:41:51.0736 3284 VSS - ok
20:41:51.0751 3284 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:41:51.0798 3284 vwifibus - ok
20:41:51.0814 3284 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:41:51.0923 3284 W32Time - ok
20:41:51.0954 3284 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:41:51.0970 3284 WacomPen - ok
20:41:52.0017 3284 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:41:52.0110 3284 WANARP - ok
20:41:52.0110 3284 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:41:52.0204 3284 Wanarpv6 - ok
20:41:52.0266 3284 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:41:52.0329 3284 wbengine - ok
20:41:52.0360 3284 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:41:52.0407 3284 WbioSrvc - ok
20:41:52.0438 3284 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:41:52.0500 3284 wcncsvc - ok
20:41:52.0516 3284 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:41:52.0547 3284 WcsPlugInService - ok
20:41:52.0563 3284 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:41:52.0594 3284 Wd - ok
20:41:52.0625 3284 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:41:52.0672 3284 Wdf01000 - ok
20:41:52.0703 3284 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:41:52.0750 3284 WdiServiceHost - ok
20:41:52.0765 3284 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:41:52.0797 3284 WdiSystemHost - ok
20:41:52.0828 3284 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:41:52.0890 3284 WebClient - ok
20:41:52.0906 3284 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:41:53.0015 3284 Wecsvc - ok
20:41:53.0031 3284 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:41:53.0124 3284 wercplsupport - ok
20:41:53.0140 3284 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:41:53.0249 3284 WerSvc - ok
20:41:53.0280 3284 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:41:53.0358 3284 WfpLwf - ok
20:41:53.0374 3284 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:41:53.0405 3284 WIMMount - ok
20:41:53.0405 3284 WinHttpAutoProxySvc - ok
20:41:53.0467 3284 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:41:53.0561 3284 Winmgmt - ok
20:41:53.0639 3284 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:41:53.0795 3284 WinRM - ok
20:41:53.0857 3284 [ 935471EC43505CB23DA16600562EE19A ] WinTabService C:\Windows\System32\Drivers\WTSRV.EXE
20:41:53.0873 3284 WinTabService ( UnsignedFile.Multi.Generic ) - warning
20:41:53.0873 3284 WinTabService - detected UnsignedFile.Multi.Generic (1)
20:41:53.0920 3284 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:41:53.0982 3284 Wlansvc - ok
20:41:54.0013 3284 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:41:54.0045 3284 wlcrasvc - ok
20:41:54.0138 3284 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:41:54.0263 3284 wlidsvc - ok
20:41:54.0279 3284 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:41:54.0310 3284 WmiAcpi - ok
20:41:54.0357 3284 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:41:54.0388 3284 wmiApSrv - ok
20:41:54.0419 3284 WMPNetworkSvc - ok
20:41:54.0450 3284 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:41:54.0481 3284 WPCSvc - ok
20:41:54.0513 3284 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:41:54.0544 3284 WPDBusEnum - ok
20:41:54.0575 3284 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:41:54.0669 3284 ws2ifsl - ok
20:41:54.0669 3284 WSearch - ok
20:41:54.0715 3284 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:41:54.0793 3284 WudfPf - ok
20:41:54.0809 3284 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:41:54.0918 3284 WUDFRd - ok
20:41:54.0934 3284 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:41:55.0012 3284 wudfsvc - ok
20:41:55.0043 3284 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:41:55.0090 3284 WwanSvc - ok
20:41:55.0105 3284 ================ Scan global ===============================
20:41:55.0137 3284 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:41:55.0152 3284 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:41:55.0168 3284 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:41:55.0183 3284 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:41:55.0215 3284 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe
20:41:55.0230 3284 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
20:41:55.0230 3284 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
20:41:55.0230 3284 ================ Scan MBR ==================================
20:41:55.0246 3284 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:41:55.0449 3284 \Device\Harddisk0\DR0 - ok
20:41:55.0449 3284 ================ Scan VBR ==================================
20:41:55.0449 3284 [ EEFDBBAC7FAF458110056B798F753946 ] \Device\Harddisk0\DR0\Partition1
20:41:55.0449 3284 \Device\Harddisk0\DR0\Partition1 - ok
20:41:55.0464 3284 [ 89B4F087145C20AAD0422484B17F0DA6 ] \Device\Harddisk0\DR0\Partition2
20:41:55.0464 3284 \Device\Harddisk0\DR0\Partition2 - ok
20:41:55.0480 3284 [ 0F824EFA10FFC1C91987F7D1FFA5BAC2 ] \Device\Harddisk0\DR0\Partition3
20:41:55.0480 3284 \Device\Harddisk0\DR0\Partition3 - ok
20:41:55.0480 3284 ============================================================
20:41:55.0480 3284 Scan finished
20:41:55.0480 3284 ============================================================
20:41:55.0542 1916 Detected object count: 6
20:41:55.0542 1916 Actual detected object count: 6
20:42:37.0678 1916 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:42:37.0678 1916 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:42:37.0678 1916 atksgt ( UnsignedFile.Multi.Generic ) - skipped by user
20:42:37.0678 1916 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:42:37.0678 1916 lirsgt ( UnsignedFile.Multi.Generic ) - skipped by user
20:42:37.0678 1916 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:42:37.0678 1916 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
20:42:37.0678 1916 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:42:37.0693 1916 WinTabService ( UnsignedFile.Multi.Generic ) - skipped by user
20:42:37.0693 1916 WinTabService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:42:37.0693 1916 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - skipped by user
20:42:37.0693 1916 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Skip
|
|
01.09.2012, 12:02
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Diesen Eintrag => ( Virus.Win64.ZAccess.b ) <= bitte mit dem TDSS-Killer fixen. Aber bitte nur diesen Eintrag! Starte Windows danach neu und mach wieder ein komplett neues Log mit dem TDSS-Killer. Wie immer wieder in CODE-Tags posten.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
02.09.2012, 09:54
| #21 |
| | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Da ich zwei Logs gefunden habe poste ich vorsichtshalber mal beide. Hier die erste Datei: Code:
ATTFilter 22:22:55.0251 4004 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:22:55.0282 4004 ============================================================
22:22:55.0282 4004 Current date / time: 2012/09/01 22:22:55.0282
22:22:55.0282 4004 SystemInfo:
22:22:55.0282 4004
22:22:55.0282 4004 OS Version: 6.1.7601 ServicePack: 1.0
22:22:55.0282 4004 Product type: Workstation
22:22:55.0282 4004 ComputerName: TELRON-PC
22:22:55.0282 4004 UserName: TelRon
22:22:55.0282 4004 Windows directory: C:\Windows
22:22:55.0282 4004 System windows directory: C:\Windows
22:22:55.0282 4004 Running under WOW64
22:22:55.0282 4004 Processor architecture: Intel x64
22:22:55.0282 4004 Number of processors: 6
22:22:55.0282 4004 Page size: 0x1000
22:22:55.0282 4004 Boot type: Normal boot
22:22:55.0282 4004 ============================================================
22:22:55.0984 4004 Drive \Device\Harddisk0\DR0 - Size: 0xE8DCDB0000 (931.45 Gb), SectorSize: 0x200, Cylinders: 0x1DAF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:22:56.0031 4004 ============================================================
22:22:56.0031 4004 \Device\Harddisk0\DR0:
22:22:56.0031 4004 MBR partitions:
22:22:56.0031 4004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
22:22:56.0031 4004 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x390E7000
22:22:56.0031 4004 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B519800, BlocksNum 0x391EC800
22:22:56.0031 4004 ============================================================
22:22:56.0047 4004 C: <-> \Device\Harddisk0\DR0\Partition2
22:22:56.0093 4004 D: <-> \Device\Harddisk0\DR0\Partition3
22:22:56.0093 4004 ============================================================
22:22:56.0093 4004 Initialize success
22:22:56.0093 4004 ============================================================
22:23:38.0432 2252 ============================================================
22:23:38.0432 2252 Scan started
22:23:38.0432 2252 Mode: Manual; SigCheck; TDLFS;
22:23:38.0432 2252 ============================================================
22:23:38.0635 2252 ================ Scan services =============================
22:23:38.0791 2252 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:23:39.0056 2252 1394ohci - ok
22:23:39.0103 2252 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:23:39.0150 2252 ACPI - ok
22:23:39.0181 2252 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:23:39.0243 2252 AcpiPmi - ok
22:23:39.0306 2252 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
22:23:39.0321 2252 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
22:23:39.0321 2252 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
22:23:39.0415 2252 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:23:39.0446 2252 AdobeFlashPlayerUpdateSvc - ok
22:23:39.0493 2252 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:23:39.0540 2252 adp94xx - ok
22:23:39.0555 2252 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:23:39.0602 2252 adpahci - ok
22:23:39.0618 2252 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:23:39.0664 2252 adpu320 - ok
22:23:39.0680 2252 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:23:39.0836 2252 AeLookupSvc - ok
22:23:39.0867 2252 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:23:39.0930 2252 AFD - ok
22:23:39.0976 2252 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:23:40.0008 2252 agp440 - ok
22:23:40.0023 2252 [ 37FA0F874BA8ECD5851D44A7F1C9700E ] ahcix64s C:\Windows\system32\DRIVERS\ahcix64s.sys
22:23:40.0101 2252 ahcix64s - ok
22:23:40.0132 2252 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:23:40.0164 2252 ALG - ok
22:23:40.0210 2252 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:23:40.0226 2252 aliide - ok
22:23:40.0242 2252 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:23:40.0273 2252 amdide - ok
22:23:40.0304 2252 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:23:40.0335 2252 AmdK8 - ok
22:23:40.0366 2252 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:23:40.0398 2252 AmdPPM - ok
22:23:40.0429 2252 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:23:40.0460 2252 amdsata - ok
22:23:40.0476 2252 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:23:40.0507 2252 amdsbs - ok
22:23:40.0538 2252 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:23:40.0554 2252 amdxata - ok
22:23:40.0616 2252 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
22:23:40.0647 2252 AntiVirSchedulerService - ok
22:23:40.0663 2252 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
22:23:40.0678 2252 AntiVirService - ok
22:23:40.0710 2252 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:23:40.0866 2252 AppID - ok
22:23:40.0897 2252 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:23:40.0990 2252 AppIDSvc - ok
22:23:41.0037 2252 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:23:41.0131 2252 Appinfo - ok
22:23:41.0162 2252 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:23:41.0193 2252 arc - ok
22:23:41.0193 2252 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:23:41.0224 2252 arcsas - ok
22:23:41.0240 2252 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:23:41.0334 2252 AsyncMac - ok
22:23:41.0380 2252 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:23:41.0412 2252 atapi - ok
22:23:41.0427 2252 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
22:23:41.0458 2252 AtiPcie - ok
22:23:41.0505 2252 [ 4AEF9EC86818375495FB78CA58DF4E18 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
22:23:41.0552 2252 atksgt ( UnsignedFile.Multi.Generic ) - warning
22:23:41.0552 2252 atksgt - detected UnsignedFile.Multi.Generic (1)
22:23:41.0599 2252 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:23:41.0708 2252 AudioEndpointBuilder - ok
22:23:41.0739 2252 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:23:41.0833 2252 AudioSrv - ok
22:23:41.0880 2252 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
22:23:41.0911 2252 avgntflt - ok
22:23:41.0942 2252 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
22:23:41.0989 2252 avipbb - ok
22:23:42.0004 2252 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
22:23:42.0036 2252 avkmgr - ok
22:23:42.0067 2252 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:23:42.0129 2252 AxInstSV - ok
22:23:42.0160 2252 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:23:42.0207 2252 b06bdrv - ok
22:23:42.0223 2252 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:23:42.0285 2252 b57nd60a - ok
22:23:42.0316 2252 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:23:42.0348 2252 BDESVC - ok
22:23:42.0379 2252 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:23:42.0504 2252 Beep - ok
22:23:42.0550 2252 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:23:42.0722 2252 blbdrive - ok
22:23:42.0800 2252 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:23:42.0831 2252 bowser - ok
22:23:42.0862 2252 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:23:42.0925 2252 BrFiltLo - ok
22:23:42.0925 2252 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:23:42.0956 2252 BrFiltUp - ok
22:23:43.0018 2252 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:23:43.0081 2252 Browser - ok
22:23:43.0190 2252 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:23:43.0299 2252 Brserid - ok
22:23:43.0315 2252 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:23:43.0362 2252 BrSerWdm - ok
22:23:43.0377 2252 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:23:43.0440 2252 BrUsbMdm - ok
22:23:43.0455 2252 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:23:43.0486 2252 BrUsbSer - ok
22:23:43.0486 2252 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:23:43.0533 2252 BTHMODEM - ok
22:23:43.0564 2252 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:23:43.0658 2252 bthserv - ok
22:23:43.0674 2252 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:23:43.0767 2252 cdfs - ok
22:23:43.0814 2252 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
22:23:43.0861 2252 cdrom - ok
22:23:43.0908 2252 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:23:44.0001 2252 CertPropSvc - ok
22:23:44.0048 2252 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:23:44.0095 2252 circlass - ok
22:23:44.0142 2252 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:23:44.0188 2252 CLFS - ok
22:23:44.0251 2252 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:23:44.0282 2252 clr_optimization_v2.0.50727_32 - ok
22:23:44.0313 2252 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:23:44.0344 2252 clr_optimization_v2.0.50727_64 - ok
22:23:44.0407 2252 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:23:44.0485 2252 clr_optimization_v4.0.30319_32 - ok
22:23:44.0516 2252 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:23:44.0547 2252 clr_optimization_v4.0.30319_64 - ok
22:23:44.0563 2252 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:23:44.0610 2252 CmBatt - ok
22:23:44.0625 2252 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:23:44.0656 2252 cmdide - ok
22:23:44.0703 2252 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:23:44.0781 2252 CNG - ok
22:23:44.0812 2252 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:23:44.0844 2252 Compbatt - ok
22:23:44.0859 2252 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:23:44.0922 2252 CompositeBus - ok
22:23:44.0922 2252 COMSysApp - ok
22:23:44.0937 2252 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:23:44.0968 2252 crcdisk - ok
22:23:45.0000 2252 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:23:45.0078 2252 CryptSvc - ok
22:23:45.0124 2252 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:23:45.0234 2252 DcomLaunch - ok
22:23:45.0280 2252 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:23:45.0592 2252 defragsvc - ok
22:23:45.0904 2252 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:23:45.0998 2252 DfsC - ok
22:23:46.0092 2252 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:23:46.0185 2252 Dhcp - ok
22:23:46.0216 2252 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:23:46.0294 2252 discache - ok
22:23:46.0310 2252 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:23:46.0341 2252 Disk - ok
22:23:46.0372 2252 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:23:46.0419 2252 Dnscache - ok
22:23:46.0450 2252 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:23:46.0560 2252 dot3svc - ok
22:23:46.0606 2252 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:23:46.0700 2252 DPS - ok
22:23:46.0731 2252 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:23:46.0778 2252 drmkaud - ok
22:23:46.0840 2252 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:23:46.0903 2252 DXGKrnl - ok
22:23:46.0934 2252 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:23:47.0028 2252 EapHost - ok
22:23:47.0168 2252 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:23:47.0246 2252 ebdrv - ok
22:23:47.0277 2252 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:23:47.0308 2252 EFS - ok
22:23:47.0386 2252 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:23:47.0433 2252 ehRecvr - ok
22:23:47.0449 2252 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:23:47.0464 2252 ehSched - ok
22:23:47.0542 2252 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:23:47.0574 2252 elxstor - ok
22:23:47.0605 2252 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:23:47.0636 2252 ErrDev - ok
22:23:47.0683 2252 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:23:47.0745 2252 EventSystem - ok
22:23:47.0776 2252 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:23:47.0870 2252 exfat - ok
22:23:47.0917 2252 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:23:48.0010 2252 fastfat - ok
22:23:48.0088 2252 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:23:48.0151 2252 Fax - ok
22:23:48.0166 2252 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:23:48.0213 2252 fdc - ok
22:23:48.0260 2252 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:23:48.0369 2252 fdPHost - ok
22:23:48.0385 2252 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:23:48.0478 2252 FDResPub - ok
22:23:48.0510 2252 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:23:48.0541 2252 FileInfo - ok
22:23:48.0556 2252 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:23:48.0650 2252 Filetrace - ok
22:23:48.0666 2252 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:23:48.0697 2252 flpydisk - ok
22:23:48.0728 2252 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:23:48.0759 2252 FltMgr - ok
22:23:48.0884 2252 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:23:48.0946 2252 FontCache - ok
22:23:48.0993 2252 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:23:49.0024 2252 FontCache3.0.0.0 - ok
22:23:49.0056 2252 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:23:49.0087 2252 FsDepends - ok
22:23:49.0118 2252 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:23:49.0149 2252 Fs_Rec - ok
22:23:49.0196 2252 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:23:49.0243 2252 fvevol - ok
22:23:49.0258 2252 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:23:49.0290 2252 gagp30kx - ok
22:23:49.0336 2252 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:23:49.0446 2252 gpsvc - ok
22:23:49.0508 2252 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
22:23:49.0539 2252 GREGService - ok
22:23:49.0555 2252 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:23:49.0586 2252 hcw85cir - ok
22:23:49.0633 2252 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:23:49.0680 2252 HdAudAddService - ok
22:23:49.0726 2252 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:23:49.0773 2252 HDAudBus - ok
22:23:49.0789 2252 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:23:49.0836 2252 HidBatt - ok
22:23:49.0836 2252 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:23:49.0882 2252 HidBth - ok
22:23:49.0914 2252 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:23:49.0945 2252 HidIr - ok
22:23:49.0992 2252 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:23:50.0085 2252 hidserv - ok
22:23:50.0132 2252 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:23:50.0163 2252 HidUsb - ok
22:23:50.0194 2252 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:23:50.0304 2252 hkmsvc - ok
22:23:50.0335 2252 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:23:50.0382 2252 HomeGroupListener - ok
22:23:50.0413 2252 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:23:50.0444 2252 HomeGroupProvider - ok
22:23:50.0475 2252 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:23:50.0506 2252 HpSAMD - ok
22:23:50.0553 2252 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:23:50.0662 2252 HTTP - ok
22:23:50.0694 2252 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:23:50.0725 2252 hwpolicy - ok
22:23:50.0756 2252 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:23:50.0787 2252 i8042prt - ok
22:23:50.0818 2252 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:23:50.0865 2252 iaStorV - ok
22:23:50.0912 2252 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:23:50.0974 2252 idsvc - ok
22:23:50.0990 2252 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:23:51.0021 2252 iirsp - ok
22:23:51.0084 2252 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:23:51.0193 2252 IKEEXT - ok
22:23:51.0271 2252 [ 6FECEB88CBB6E761E9194F5711F02102 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:23:51.0396 2252 IntcAzAudAddService - ok
22:23:51.0427 2252 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:23:51.0458 2252 intelide - ok
22:23:51.0474 2252 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:23:51.0520 2252 intelppm - ok
22:23:51.0536 2252 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:23:51.0645 2252 IPBusEnum - ok
22:23:51.0676 2252 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:23:51.0770 2252 IpFilterDriver - ok
22:23:51.0801 2252 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:23:51.0848 2252 IPMIDRV - ok
22:23:51.0879 2252 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:23:51.0988 2252 IPNAT - ok
22:23:52.0004 2252 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:23:52.0035 2252 IRENUM - ok
22:23:52.0051 2252 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:23:52.0082 2252 isapnp - ok
22:23:52.0113 2252 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:23:52.0160 2252 iScsiPrt - ok
22:23:52.0176 2252 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:23:52.0207 2252 kbdclass - ok
22:23:52.0207 2252 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:23:52.0238 2252 kbdhid - ok
22:23:52.0269 2252 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:23:52.0285 2252 KeyIso - ok
22:23:52.0316 2252 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:23:52.0347 2252 KSecDD - ok
22:23:52.0363 2252 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:23:52.0394 2252 KSecPkg - ok
22:23:52.0410 2252 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:23:52.0519 2252 ksthunk - ok
22:23:52.0534 2252 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:23:52.0644 2252 KtmRm - ok
22:23:52.0690 2252 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:23:52.0784 2252 LanmanServer - ok
22:23:52.0815 2252 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:23:52.0924 2252 LanmanWorkstation - ok
22:23:53.0143 2252 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
22:23:53.0205 2252 LBTServ - ok
22:23:53.0268 2252 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
22:23:53.0299 2252 LHidFilt - ok
22:23:53.0361 2252 [ B658B7076B1ACAA5876524595630F183 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
22:23:53.0377 2252 lirsgt ( UnsignedFile.Multi.Generic ) - warning
22:23:53.0377 2252 lirsgt - detected UnsignedFile.Multi.Generic (1)
22:23:53.0392 2252 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:23:53.0502 2252 lltdio - ok
22:23:53.0548 2252 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:23:53.0658 2252 lltdsvc - ok
22:23:53.0673 2252 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:23:53.0751 2252 lmhosts - ok
22:23:53.0814 2252 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
22:23:53.0845 2252 LMouFilt - ok
22:23:53.0970 2252 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:23:54.0016 2252 LSI_FC - ok
22:23:54.0094 2252 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:23:54.0157 2252 LSI_SAS - ok
22:23:54.0219 2252 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:23:54.0282 2252 LSI_SAS2 - ok
22:23:54.0360 2252 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:23:54.0391 2252 LSI_SCSI - ok
22:23:54.0438 2252 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:23:54.0531 2252 luafv - ok
22:23:54.0578 2252 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:23:54.0625 2252 Mcx2Svc - ok
22:23:54.0672 2252 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:23:54.0703 2252 megasas - ok
22:23:54.0718 2252 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:23:54.0765 2252 MegaSR - ok
22:23:54.0781 2252 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:23:54.0874 2252 MMCSS - ok
22:23:54.0874 2252 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:23:54.0921 2252 Modem - ok
22:23:54.0952 2252 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:23:54.0984 2252 monitor - ok
22:23:54.0999 2252 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:23:55.0015 2252 mouclass - ok
22:23:55.0030 2252 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:23:55.0062 2252 mouhid - ok
22:23:55.0093 2252 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:23:55.0108 2252 mountmgr - ok
22:23:55.0171 2252 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:23:55.0186 2252 MozillaMaintenance - ok
22:23:55.0202 2252 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:23:55.0218 2252 mpio - ok
22:23:55.0249 2252 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:23:55.0296 2252 mpsdrv - ok
22:23:55.0327 2252 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:23:55.0342 2252 MRxDAV - ok
22:23:55.0374 2252 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:23:55.0420 2252 mrxsmb - ok
22:23:55.0452 2252 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:23:55.0498 2252 mrxsmb10 - ok
22:23:55.0530 2252 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:23:55.0561 2252 mrxsmb20 - ok
22:23:55.0576 2252 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:23:55.0608 2252 msahci - ok
22:23:55.0639 2252 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:23:55.0670 2252 msdsm - ok
22:23:55.0686 2252 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:23:55.0717 2252 MSDTC - ok
22:23:55.0764 2252 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:23:55.0842 2252 Msfs - ok
22:23:55.0857 2252 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:23:55.0966 2252 mshidkmdf - ok
22:23:55.0982 2252 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:23:55.0998 2252 msisadrv - ok
22:23:56.0044 2252 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:23:56.0138 2252 MSiSCSI - ok
22:23:56.0154 2252 msiserver - ok
22:23:56.0185 2252 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:23:56.0263 2252 MSKSSRV - ok
22:23:56.0278 2252 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:23:56.0356 2252 MSPCLOCK - ok
22:23:56.0372 2252 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:23:56.0466 2252 MSPQM - ok
22:23:56.0497 2252 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:23:56.0544 2252 MsRPC - ok
22:23:56.0575 2252 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:23:56.0606 2252 mssmbios - ok
22:23:56.0622 2252 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:23:56.0715 2252 MSTEE - ok
22:23:56.0731 2252 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:23:56.0762 2252 MTConfig - ok
22:23:56.0778 2252 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:23:56.0809 2252 Mup - ok
22:23:56.0824 2252 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
22:23:56.0856 2252 mwlPSDFilter - ok
22:23:56.0871 2252 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
22:23:56.0902 2252 mwlPSDNServ - ok
22:23:56.0918 2252 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
22:23:56.0949 2252 mwlPSDVDisk - ok
22:23:56.0980 2252 [ 3E5E20817259F7328C8F3BE5421F35B9 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
22:23:57.0027 2252 MWLService - ok
22:23:57.0058 2252 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:23:57.0168 2252 napagent - ok
22:23:57.0199 2252 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:23:57.0261 2252 NativeWifiP - ok
22:23:57.0292 2252 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:23:57.0355 2252 NDIS - ok
22:23:57.0370 2252 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:23:57.0464 2252 NdisCap - ok
22:23:57.0480 2252 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:23:57.0558 2252 NdisTapi - ok
22:23:57.0604 2252 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:23:57.0698 2252 Ndisuio - ok
22:23:57.0729 2252 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:23:57.0823 2252 NdisWan - ok
22:23:57.0854 2252 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:23:57.0948 2252 NDProxy - ok
22:23:58.0010 2252 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
22:23:58.0072 2252 Nero BackItUp Scheduler 4.0 - ok
22:23:58.0088 2252 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:23:58.0182 2252 NetBIOS - ok
22:23:58.0228 2252 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:23:58.0306 2252 NetBT - ok
22:23:58.0322 2252 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:23:58.0353 2252 Netlogon - ok
22:23:58.0384 2252 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:23:58.0478 2252 Netman - ok
22:23:58.0509 2252 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:23:58.0618 2252 netprofm - ok
22:23:58.0650 2252 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:23:58.0665 2252 NetTcpPortSharing - ok
22:23:58.0696 2252 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:23:58.0728 2252 nfrd960 - ok
22:23:58.0774 2252 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:23:58.0868 2252 NlaSvc - ok
22:23:58.0962 2252 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
22:23:59.0086 2252 NOBU - ok
22:23:59.0102 2252 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:23:59.0180 2252 Npfs - ok
22:23:59.0211 2252 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:23:59.0274 2252 nsi - ok
22:23:59.0289 2252 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:23:59.0336 2252 nsiproxy - ok
22:23:59.0383 2252 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:23:59.0445 2252 Ntfs - ok
22:23:59.0445 2252 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:23:59.0508 2252 Null - ok
22:23:59.0539 2252 [ E20ABD5B229760158F753CA90B97E090 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
22:23:59.0570 2252 NVHDA - ok
22:23:59.0882 2252 [ 9C1996DD3C0469BC8933321F15709F5A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:24:00.0412 2252 nvlddmkm - ok
22:24:00.0444 2252 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:24:00.0459 2252 nvraid - ok
22:24:00.0490 2252 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:24:00.0506 2252 nvstor - ok
22:24:00.0522 2252 [ 382A8E95FAB1E301762B120E16FE807D ] nvsvc C:\Windows\system32\nvvsvc.exe
22:24:00.0553 2252 nvsvc - ok
22:24:00.0584 2252 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:24:00.0615 2252 nv_agp - ok
22:24:00.0631 2252 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:24:00.0662 2252 ohci1394 - ok
22:24:00.0709 2252 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:24:00.0724 2252 ose - ok
22:24:00.0771 2252 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:24:00.0818 2252 p2pimsvc - ok
22:24:00.0834 2252 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:24:00.0880 2252 p2psvc - ok
22:24:00.0896 2252 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:24:00.0927 2252 Parport - ok
22:24:00.0958 2252 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:24:00.0990 2252 partmgr - ok
22:24:01.0005 2252 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:24:01.0052 2252 PcaSvc - ok
22:24:01.0083 2252 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:24:01.0114 2252 pci - ok
22:24:01.0130 2252 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:24:01.0161 2252 pciide - ok
22:24:01.0177 2252 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:24:01.0224 2252 pcmcia - ok
22:24:01.0224 2252 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:24:01.0255 2252 pcw - ok
22:24:01.0286 2252 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:24:01.0395 2252 PEAUTH - ok
22:24:01.0473 2252 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:24:01.0504 2252 PerfHost - ok
22:24:01.0582 2252 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:24:01.0707 2252 pla - ok
22:24:01.0754 2252 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:24:01.0801 2252 PlugPlay - ok
22:24:01.0816 2252 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:24:01.0848 2252 PNRPAutoReg - ok
22:24:01.0879 2252 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:24:01.0910 2252 PNRPsvc - ok
22:24:01.0957 2252 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:24:02.0050 2252 PolicyAgent - ok
22:24:02.0097 2252 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:24:02.0191 2252 Power - ok
22:24:02.0222 2252 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:24:02.0316 2252 PptpMiniport - ok
22:24:02.0331 2252 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:24:02.0362 2252 Processor - ok
22:24:02.0394 2252 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:24:02.0440 2252 ProfSvc - ok
22:24:02.0456 2252 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:24:02.0472 2252 ProtectedStorage - ok
22:24:02.0518 2252 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:24:02.0612 2252 Psched - ok
22:24:02.0659 2252 [ 225D3660F926FE761BC8CE10C512AA02 ] PTSimBus C:\Windows\system32\DRIVERS\PTSimBus.sys
22:24:02.0721 2252 PTSimBus - ok
22:24:02.0737 2252 [ BD2194786ABAF4860F41118C0C103E7B ] PTSimHid C:\Windows\system32\DRIVERS\PTSimHid.sys
22:24:02.0784 2252 PTSimHid - ok
22:24:02.0830 2252 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:24:02.0924 2252 ql2300 - ok
22:24:02.0940 2252 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:24:02.0971 2252 ql40xx - ok
22:24:03.0002 2252 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:24:03.0049 2252 QWAVE - ok
22:24:03.0064 2252 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:24:03.0111 2252 QWAVEdrv - ok
22:24:03.0111 2252 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:24:03.0205 2252 RasAcd - ok
22:24:03.0236 2252 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:24:03.0314 2252 RasAgileVpn - ok
22:24:03.0345 2252 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:24:03.0439 2252 RasAuto - ok
22:24:03.0470 2252 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:24:03.0564 2252 Rasl2tp - ok
22:24:03.0595 2252 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:24:03.0688 2252 RasMan - ok
22:24:03.0720 2252 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:24:03.0798 2252 RasPppoe - ok
22:24:03.0813 2252 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:24:03.0907 2252 RasSstp - ok
22:24:03.0938 2252 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:24:04.0032 2252 rdbss - ok
22:24:04.0032 2252 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:24:04.0078 2252 rdpbus - ok
22:24:04.0094 2252 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:24:04.0172 2252 RDPCDD - ok
22:24:04.0188 2252 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:24:04.0281 2252 RDPENCDD - ok
22:24:04.0297 2252 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:24:04.0375 2252 RDPREFMP - ok
22:24:04.0422 2252 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:24:04.0468 2252 RDPWD - ok
22:24:04.0515 2252 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:24:04.0546 2252 rdyboost - ok
22:24:04.0578 2252 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:24:04.0671 2252 RemoteAccess - ok
22:24:04.0687 2252 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:24:04.0796 2252 RemoteRegistry - ok
22:24:04.0843 2252 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
22:24:04.0858 2252 RichVideo ( UnsignedFile.Multi.Generic ) - warning
22:24:04.0858 2252 RichVideo - detected UnsignedFile.Multi.Generic (1)
22:24:04.0874 2252 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:24:04.0968 2252 RpcEptMapper - ok
22:24:04.0999 2252 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:24:05.0030 2252 RpcLocator - ok
22:24:05.0061 2252 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:24:05.0170 2252 RpcSs - ok
22:24:05.0202 2252 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:24:05.0295 2252 rspndr - ok
22:24:05.0342 2252 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:24:05.0373 2252 RTL8167 - ok
22:24:05.0389 2252 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:24:05.0420 2252 SamSs - ok
22:24:05.0451 2252 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:24:05.0482 2252 sbp2port - ok
22:24:05.0498 2252 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:24:05.0607 2252 SCardSvr - ok
22:24:05.0623 2252 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:24:05.0716 2252 scfilter - ok
22:24:05.0779 2252 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:24:05.0888 2252 Schedule - ok
22:24:05.0919 2252 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:24:06.0013 2252 SCPolicySvc - ok
22:24:06.0028 2252 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:24:06.0060 2252 SDRSVC - ok
22:24:06.0091 2252 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:24:06.0184 2252 secdrv - ok
22:24:06.0184 2252 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:24:06.0278 2252 seclogon - ok
22:24:06.0309 2252 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:24:06.0403 2252 SENS - ok
22:24:06.0418 2252 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:24:06.0450 2252 SensrSvc - ok
22:24:06.0465 2252 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:24:06.0496 2252 Serenum - ok
22:24:06.0528 2252 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:24:06.0559 2252 Serial - ok
22:24:06.0590 2252 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:24:06.0621 2252 sermouse - ok
22:24:06.0668 2252 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:24:06.0762 2252 SessionEnv - ok
22:24:06.0777 2252 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:24:06.0808 2252 sffdisk - ok
22:24:06.0808 2252 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:24:06.0840 2252 sffp_mmc - ok
22:24:06.0855 2252 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:24:06.0886 2252 sffp_sd - ok
22:24:06.0918 2252 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:24:06.0949 2252 sfloppy - ok
22:24:06.0996 2252 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:24:07.0105 2252 ShellHWDetection - ok
22:24:07.0120 2252 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:24:07.0152 2252 SiSRaid2 - ok
22:24:07.0167 2252 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:24:07.0198 2252 SiSRaid4 - ok
22:24:07.0245 2252 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:24:07.0276 2252 SkypeUpdate - ok
22:24:07.0292 2252 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:24:07.0386 2252 Smb - ok
22:24:07.0417 2252 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:24:07.0464 2252 SNMPTRAP - ok
22:24:07.0479 2252 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:24:07.0510 2252 spldr - ok
22:24:07.0542 2252 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:24:07.0604 2252 Spooler - ok
22:24:07.0729 2252 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:24:07.0932 2252 sppsvc - ok
22:24:07.0947 2252 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:24:08.0041 2252 sppuinotify - ok
22:24:08.0088 2252 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:24:08.0150 2252 srv - ok
22:24:08.0181 2252 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:24:08.0228 2252 srv2 - ok
22:24:08.0244 2252 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:24:08.0275 2252 srvnet - ok
22:24:08.0306 2252 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:24:08.0400 2252 SSDPSRV - ok
22:24:08.0415 2252 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:24:08.0509 2252 SstpSvc - ok
22:24:08.0524 2252 Steam Client Service - ok
22:24:08.0587 2252 [ 6DFE2838759B05F9A24E47C7518D02F8 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:24:08.0618 2252 Stereo Service - ok
22:24:08.0649 2252 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:24:08.0665 2252 stexstor - ok
22:24:08.0712 2252 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:24:08.0790 2252 stisvc - ok
22:24:08.0805 2252 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:24:08.0836 2252 swenum - ok
22:24:08.0868 2252 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:24:08.0977 2252 swprv - ok
22:24:09.0055 2252 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:24:09.0148 2252 SysMain - ok
22:24:09.0180 2252 Tablet2k - ok
22:24:09.0211 2252 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:24:09.0258 2252 TabletInputService - ok
22:24:09.0273 2252 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:24:09.0367 2252 TapiSrv - ok
22:24:09.0398 2252 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:24:09.0476 2252 TBS - ok
22:24:09.0523 2252 [ 530A7F0966493DD437E4342F12CCD63B ] TClass2k C:\Windows\system32\DRIVERS\TClass2k.sys
22:24:09.0554 2252 TClass2k - ok
22:24:09.0632 2252 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:24:09.0741 2252 Tcpip - ok
22:24:09.0788 2252 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:24:09.0882 2252 TCPIP6 - ok
22:24:09.0928 2252 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:24:10.0006 2252 tcpipreg - ok
22:24:10.0038 2252 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:24:10.0069 2252 TDPIPE - ok
22:24:10.0100 2252 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:24:10.0131 2252 TDTCP - ok
22:24:10.0162 2252 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:24:10.0240 2252 tdx - ok
22:24:10.0287 2252 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:24:10.0318 2252 TermDD - ok
22:24:10.0350 2252 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:24:10.0459 2252 TermService - ok
22:24:10.0490 2252 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:24:10.0537 2252 Themes - ok
22:24:10.0552 2252 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:24:10.0630 2252 THREADORDER - ok
22:24:10.0677 2252 [ 3199A477F0F06EEDE41BD55179F8EB05 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
22:24:10.0708 2252 TomTomHOMEService - ok
22:24:10.0724 2252 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:24:10.0833 2252 TrkWks - ok
22:24:10.0880 2252 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:24:10.0974 2252 TrustedInstaller - ok
22:24:11.0005 2252 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:24:11.0083 2252 tssecsrv - ok
22:24:11.0130 2252 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:24:11.0161 2252 TsUsbFlt - ok
22:24:11.0208 2252 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:24:11.0301 2252 tunnel - ok
22:24:11.0332 2252 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:24:11.0364 2252 uagp35 - ok
22:24:11.0379 2252 [ 01662B4865FDB282677B11CF416757CE ] UCTblHid C:\Windows\system32\DRIVERS\UCTblHid.sys
22:24:11.0410 2252 UCTblHid - ok
22:24:11.0442 2252 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:24:11.0535 2252 udfs - ok
22:24:11.0582 2252 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:24:11.0613 2252 UI0Detect - ok
22:24:11.0629 2252 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:24:11.0660 2252 uliagpkx - ok
22:24:11.0707 2252 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:24:11.0738 2252 umbus - ok
22:24:11.0754 2252 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:24:11.0785 2252 UmPass - ok
22:24:11.0832 2252 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
22:24:11.0863 2252 Updater Service - ok
22:24:11.0894 2252 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:24:12.0003 2252 upnphost - ok
22:24:12.0034 2252 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:24:12.0066 2252 usbccgp - ok
22:24:12.0081 2252 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:24:12.0128 2252 usbcir - ok
22:24:12.0144 2252 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:24:12.0175 2252 usbehci - ok
22:24:12.0206 2252 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:24:12.0237 2252 usbhub - ok
22:24:12.0268 2252 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
22:24:12.0300 2252 usbohci - ok
22:24:12.0331 2252 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:24:12.0362 2252 usbprint - ok
22:24:12.0378 2252 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:24:12.0424 2252 USBSTOR - ok
22:24:12.0440 2252 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:24:12.0471 2252 usbuhci - ok
22:24:12.0502 2252 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:24:12.0580 2252 UxSms - ok
22:24:12.0596 2252 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:24:12.0627 2252 VaultSvc - ok
22:24:12.0643 2252 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:24:12.0674 2252 vdrvroot - ok
22:24:12.0705 2252 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:24:12.0830 2252 vds - ok
22:24:12.0846 2252 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:24:12.0877 2252 vga - ok
22:24:12.0892 2252 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:24:12.0986 2252 VgaSave - ok
22:24:13.0017 2252 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:24:13.0048 2252 vhdmp - ok
22:24:13.0064 2252 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:24:13.0095 2252 viaide - ok
22:24:13.0111 2252 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:24:13.0142 2252 volmgr - ok
22:24:13.0189 2252 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:24:13.0236 2252 volmgrx - ok
22:24:13.0251 2252 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:24:13.0282 2252 volsnap - ok
22:24:13.0314 2252 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:24:13.0345 2252 vsmraid - ok
22:24:13.0407 2252 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:24:13.0548 2252 VSS - ok
22:24:13.0563 2252 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
22:24:13.0610 2252 vwifibus - ok
22:24:13.0641 2252 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:24:13.0735 2252 W32Time - ok
22:24:13.0766 2252 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:24:13.0797 2252 WacomPen - ok
22:24:13.0828 2252 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:24:13.0922 2252 WANARP - ok
22:24:13.0938 2252 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:24:14.0016 2252 Wanarpv6 - ok
22:24:14.0062 2252 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:24:14.0140 2252 wbengine - ok
22:24:14.0172 2252 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:24:14.0218 2252 WbioSrvc - ok
22:24:14.0250 2252 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:24:14.0312 2252 wcncsvc - ok
22:24:14.0328 2252 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:24:14.0359 2252 WcsPlugInService - ok
22:24:14.0374 2252 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:24:14.0406 2252 Wd - ok
22:24:14.0437 2252 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:24:14.0484 2252 Wdf01000 - ok
22:24:14.0499 2252 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:24:14.0562 2252 WdiServiceHost - ok
22:24:14.0562 2252 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:24:14.0608 2252 WdiSystemHost - ok
22:24:14.0640 2252 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:24:14.0686 2252 WebClient - ok
22:24:14.0718 2252 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:24:14.0827 2252 Wecsvc - ok
22:24:14.0842 2252 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:24:14.0936 2252 wercplsupport - ok
22:24:14.0952 2252 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:24:15.0045 2252 WerSvc - ok
22:24:15.0076 2252 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:24:15.0170 2252 WfpLwf - ok
22:24:15.0186 2252 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:24:15.0201 2252 WIMMount - ok
22:24:15.0217 2252 WinHttpAutoProxySvc - ok
22:24:15.0264 2252 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:24:15.0373 2252 Winmgmt - ok
22:24:15.0451 2252 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:24:15.0607 2252 WinRM - ok
22:24:15.0669 2252 [ 935471EC43505CB23DA16600562EE19A ] WinTabService C:\Windows\System32\Drivers\WTSRV.EXE
22:24:15.0685 2252 WinTabService ( UnsignedFile.Multi.Generic ) - warning
22:24:15.0685 2252 WinTabService - detected UnsignedFile.Multi.Generic (1)
22:24:15.0732 2252 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:24:15.0794 2252 Wlansvc - ok
22:24:15.0825 2252 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:24:15.0856 2252 wlcrasvc - ok
22:24:15.0950 2252 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:24:16.0075 2252 wlidsvc - ok
22:24:16.0090 2252 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:24:16.0137 2252 WmiAcpi - ok
22:24:16.0168 2252 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:24:16.0215 2252 wmiApSrv - ok
22:24:16.0231 2252 WMPNetworkSvc - ok
22:24:16.0262 2252 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:24:16.0293 2252 WPCSvc - ok
22:24:16.0324 2252 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:24:16.0356 2252 WPDBusEnum - ok
22:24:16.0371 2252 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:24:16.0465 2252 ws2ifsl - ok
22:24:16.0480 2252 WSearch - ok
22:24:16.0512 2252 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:24:16.0621 2252 WudfPf - ok
22:24:16.0636 2252 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:24:16.0730 2252 WUDFRd - ok
22:24:16.0761 2252 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:24:16.0855 2252 wudfsvc - ok
22:24:16.0870 2252 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:24:16.0933 2252 WwanSvc - ok
22:24:16.0948 2252 ================ Scan global ===============================
22:24:16.0964 2252 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:24:16.0995 2252 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:24:16.0995 2252 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:24:17.0026 2252 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:24:17.0058 2252 [ 014A9CB92514E27C0107614DF764BC06 ] C:\Windows\system32\services.exe
22:24:17.0058 2252 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - infected
22:24:17.0058 2252 C:\Windows\system32\services.exe - detected Virus.Win64.ZAccess.b (0)
22:24:17.0058 2252 ================ Scan MBR ==================================
22:24:17.0073 2252 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:24:17.0276 2252 \Device\Harddisk0\DR0 - ok
22:24:17.0276 2252 ================ Scan VBR ==================================
22:24:17.0292 2252 [ EEFDBBAC7FAF458110056B798F753946 ] \Device\Harddisk0\DR0\Partition1
22:24:17.0292 2252 \Device\Harddisk0\DR0\Partition1 - ok
22:24:17.0307 2252 [ 89B4F087145C20AAD0422484B17F0DA6 ] \Device\Harddisk0\DR0\Partition2
22:24:17.0307 2252 \Device\Harddisk0\DR0\Partition2 - ok
22:24:17.0338 2252 [ 0F824EFA10FFC1C91987F7D1FFA5BAC2 ] \Device\Harddisk0\DR0\Partition3
22:24:17.0338 2252 \Device\Harddisk0\DR0\Partition3 - ok
22:24:17.0338 2252 ============================================================
22:24:17.0338 2252 Scan finished
22:24:17.0338 2252 ============================================================
22:24:17.0354 2244 Detected object count: 6
22:24:17.0354 2244 Actual detected object count: 6
22:26:50.0181 2244 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:26:50.0181 2244 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:26:50.0181 2244 atksgt ( UnsignedFile.Multi.Generic ) - skipped by user
22:26:50.0181 2244 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:26:50.0181 2244 lirsgt ( UnsignedFile.Multi.Generic ) - skipped by user
22:26:50.0181 2244 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:26:50.0197 2244 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
22:26:50.0197 2244 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:26:50.0197 2244 WinTabService ( UnsignedFile.Multi.Generic ) - skipped by user
22:26:50.0197 2244 WinTabService ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:26:50.0228 2244 C:\Windows\system32\services.exe - copied to quarantine
22:27:12.0911 2244 Backup copy found, using it..
22:27:13.0020 2244 C:\Windows\system32\services.exe - will be cured on reboot
22:27:13.0020 2244 C:\Windows\system32\services.exe ( Virus.Win64.ZAccess.b ) - User select action: Cure
22:27:16.0889 4000 Deinitialize success
Code:
ATTFilter 22:28:26.0905 2616 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:28:26.0999 2616 ============================================================
22:28:26.0999 2616 Current date / time: 2012/09/01 22:28:26.0999
22:28:26.0999 2616 SystemInfo:
22:28:26.0999 2616
22:28:26.0999 2616 OS Version: 6.1.7601 ServicePack: 1.0
22:28:26.0999 2616 Product type: Workstation
22:28:26.0999 2616 ComputerName: TELRON-PC
22:28:26.0999 2616 UserName: TelRon
22:28:26.0999 2616 Windows directory: C:\Windows
22:28:26.0999 2616 System windows directory: C:\Windows
22:28:26.0999 2616 Running under WOW64
22:28:26.0999 2616 Processor architecture: Intel x64
22:28:26.0999 2616 Number of processors: 6
22:28:26.0999 2616 Page size: 0x1000
22:28:26.0999 2616 Boot type: Normal boot
22:28:26.0999 2616 ============================================================
22:28:27.0264 2616 BG loaded
22:28:28.0513 2616 Drive \Device\Harddisk0\DR0 - Size: 0xE8DCDB0000 (931.45 Gb), SectorSize: 0x200, Cylinders: 0x1DAF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:28:28.0563 2616 ============================================================
22:28:28.0563 2616 \Device\Harddisk0\DR0:
22:28:28.0683 2616 MBR partitions:
22:28:28.0683 2616 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
22:28:28.0683 2616 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x390E7000
22:28:28.0683 2616 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B519800, BlocksNum 0x391EC800
22:28:28.0683 2616 ============================================================
22:28:28.0743 2616 C: <-> \Device\Harddisk0\DR0\Partition2
22:28:28.0903 2616 D: <-> \Device\Harddisk0\DR0\Partition3
22:28:28.0903 2616 ============================================================
22:28:28.0903 2616 Initialize success
22:28:28.0903 2616 ============================================================
|
|
03.09.2012, 18:46
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Entweder hast du nach dem Neustart keinen neuen Durchlauf gemacht oder du hast das Log unvollständig gepostet
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.09.2012, 20:00
| #23 |
| | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen OK das mit dem komplett neuen Report machen nachdem er fertig ist habe ich überlesen. Grad frisch gemacht: Code:
ATTFilter 20:54:29.0226 3204 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
20:54:29.0242 3204 ============================================================
20:54:29.0242 3204 Current date / time: 2012/09/03 20:54:29.0242
20:54:29.0242 3204 SystemInfo:
20:54:29.0242 3204
20:54:29.0242 3204 OS Version: 6.1.7601 ServicePack: 1.0
20:54:29.0242 3204 Product type: Workstation
20:54:29.0242 3204 ComputerName: TELRON-PC
20:54:29.0242 3204 UserName: TelRon
20:54:29.0242 3204 Windows directory: C:\Windows
20:54:29.0242 3204 System windows directory: C:\Windows
20:54:29.0242 3204 Running under WOW64
20:54:29.0242 3204 Processor architecture: Intel x64
20:54:29.0242 3204 Number of processors: 6
20:54:29.0242 3204 Page size: 0x1000
20:54:29.0242 3204 Boot type: Normal boot
20:54:29.0242 3204 ============================================================
20:54:29.0819 3204 Drive \Device\Harddisk0\DR0 - Size: 0xE8DCDB0000 (931.45 Gb), SectorSize: 0x200, Cylinders: 0x1DAF9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:54:29.0866 3204 ============================================================
20:54:29.0866 3204 \Device\Harddisk0\DR0:
20:54:29.0866 3204 MBR partitions:
20:54:29.0866 3204 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
20:54:29.0866 3204 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x390E7000
20:54:29.0866 3204 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B519800, BlocksNum 0x391EC800
20:54:29.0866 3204 ============================================================
20:54:29.0881 3204 C: <-> \Device\Harddisk0\DR0\Partition2
20:54:30.0022 3204 D: <-> \Device\Harddisk0\DR0\Partition3
20:54:30.0022 3204 ============================================================
20:54:30.0022 3204 Initialize success
20:54:30.0022 3204 ============================================================
20:54:45.0091 3608 ============================================================
20:54:45.0091 3608 Scan started
20:54:45.0091 3608 Mode: Manual; SigCheck; TDLFS;
20:54:45.0091 3608 ============================================================
20:54:45.0700 3608 ================ Scan services =============================
20:54:45.0856 3608 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:54:46.0043 3608 1394ohci - ok
20:54:46.0090 3608 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:54:46.0136 3608 ACPI - ok
20:54:46.0152 3608 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:54:46.0230 3608 AcpiPmi - ok
20:54:46.0292 3608 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
20:54:46.0308 3608 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
20:54:46.0308 3608 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
20:54:46.0402 3608 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:54:46.0448 3608 AdobeFlashPlayerUpdateSvc - ok
20:54:46.0495 3608 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:54:46.0558 3608 adp94xx - ok
20:54:46.0573 3608 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:54:46.0604 3608 adpahci - ok
20:54:46.0636 3608 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:54:46.0667 3608 adpu320 - ok
20:54:46.0698 3608 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:54:46.0838 3608 AeLookupSvc - ok
20:54:46.0885 3608 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:54:46.0948 3608 AFD - ok
20:54:46.0979 3608 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:54:47.0010 3608 agp440 - ok
20:54:47.0041 3608 [ 37FA0F874BA8ECD5851D44A7F1C9700E ] ahcix64s C:\Windows\system32\DRIVERS\ahcix64s.sys
20:54:47.0119 3608 ahcix64s - ok
20:54:47.0150 3608 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:54:47.0213 3608 ALG - ok
20:54:47.0244 3608 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:54:47.0275 3608 aliide - ok
20:54:47.0275 3608 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:54:47.0306 3608 amdide - ok
20:54:47.0322 3608 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:54:47.0369 3608 AmdK8 - ok
20:54:47.0384 3608 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:54:47.0416 3608 AmdPPM - ok
20:54:47.0447 3608 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:54:47.0478 3608 amdsata - ok
20:54:47.0494 3608 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:54:47.0525 3608 amdsbs - ok
20:54:47.0540 3608 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:54:47.0572 3608 amdxata - ok
20:54:47.0634 3608 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:54:47.0665 3608 AntiVirSchedulerService - ok
20:54:47.0696 3608 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:54:47.0712 3608 AntiVirService - ok
20:54:47.0743 3608 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:54:47.0899 3608 AppID - ok
20:54:47.0915 3608 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:54:48.0024 3608 AppIDSvc - ok
20:54:48.0055 3608 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:54:48.0149 3608 Appinfo - ok
20:54:48.0180 3608 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:54:48.0211 3608 arc - ok
20:54:48.0227 3608 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:54:48.0258 3608 arcsas - ok
20:54:48.0274 3608 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:54:48.0367 3608 AsyncMac - ok
20:54:48.0414 3608 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:54:48.0445 3608 atapi - ok
20:54:48.0476 3608 [ C07A040D6B5A42DD41EE386CF90974C8 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
20:54:48.0508 3608 AtiPcie - ok
20:54:48.0554 3608 [ 4AEF9EC86818375495FB78CA58DF4E18 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
20:54:48.0586 3608 atksgt ( UnsignedFile.Multi.Generic ) - warning
20:54:48.0586 3608 atksgt - detected UnsignedFile.Multi.Generic (1)
20:54:48.0648 3608 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:54:48.0773 3608 AudioEndpointBuilder - ok
20:54:48.0788 3608 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:54:48.0898 3608 AudioSrv - ok
20:54:48.0944 3608 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:54:48.0976 3608 avgntflt - ok
20:54:49.0022 3608 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:54:49.0054 3608 avipbb - ok
20:54:49.0069 3608 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:54:49.0100 3608 avkmgr - ok
20:54:49.0132 3608 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:54:49.0225 3608 AxInstSV - ok
20:54:49.0272 3608 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:54:49.0334 3608 b06bdrv - ok
20:54:49.0366 3608 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:54:49.0412 3608 b57nd60a - ok
20:54:49.0444 3608 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:54:49.0490 3608 BDESVC - ok
20:54:49.0506 3608 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:54:49.0615 3608 Beep - ok
20:54:49.0631 3608 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:54:49.0662 3608 blbdrive - ok
20:54:49.0693 3608 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:54:49.0740 3608 bowser - ok
20:54:49.0771 3608 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:54:49.0818 3608 BrFiltLo - ok
20:54:49.0834 3608 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:54:49.0865 3608 BrFiltUp - ok
20:54:49.0896 3608 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:54:49.0943 3608 Browser - ok
20:54:49.0974 3608 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:54:50.0021 3608 Brserid - ok
20:54:50.0036 3608 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:54:50.0068 3608 BrSerWdm - ok
20:54:50.0083 3608 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:54:50.0146 3608 BrUsbMdm - ok
20:54:50.0161 3608 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:54:50.0192 3608 BrUsbSer - ok
20:54:50.0208 3608 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:54:50.0255 3608 BTHMODEM - ok
20:54:50.0286 3608 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:54:50.0364 3608 bthserv - ok
20:54:50.0380 3608 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:54:50.0442 3608 cdfs - ok
20:54:50.0489 3608 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:54:50.0504 3608 cdrom - ok
20:54:50.0551 3608 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:54:50.0660 3608 CertPropSvc - ok
20:54:50.0692 3608 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:54:50.0738 3608 circlass - ok
20:54:50.0770 3608 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:54:50.0816 3608 CLFS - ok
20:54:50.0879 3608 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:54:50.0910 3608 clr_optimization_v2.0.50727_32 - ok
20:54:50.0941 3608 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:54:50.0972 3608 clr_optimization_v2.0.50727_64 - ok
20:54:51.0035 3608 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:54:51.0097 3608 clr_optimization_v4.0.30319_32 - ok
20:54:51.0128 3608 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:54:51.0144 3608 clr_optimization_v4.0.30319_64 - ok
20:54:51.0175 3608 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:54:51.0206 3608 CmBatt - ok
20:54:51.0222 3608 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:54:51.0253 3608 cmdide - ok
20:54:51.0300 3608 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:54:51.0378 3608 CNG - ok
20:54:51.0394 3608 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:54:51.0425 3608 Compbatt - ok
20:54:51.0456 3608 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:54:51.0503 3608 CompositeBus - ok
20:54:51.0518 3608 COMSysApp - ok
20:54:51.0518 3608 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:54:51.0550 3608 crcdisk - ok
20:54:51.0596 3608 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:54:51.0659 3608 CryptSvc - ok
20:54:51.0706 3608 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:54:51.0862 3608 DcomLaunch - ok
20:54:51.0908 3608 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:54:52.0002 3608 defragsvc - ok
20:54:52.0033 3608 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:54:52.0142 3608 DfsC - ok
20:54:52.0189 3608 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:54:52.0330 3608 Dhcp - ok
20:54:52.0361 3608 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:54:52.0439 3608 discache - ok
20:54:52.0470 3608 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:54:52.0501 3608 Disk - ok
20:54:52.0548 3608 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:54:52.0595 3608 Dnscache - ok
20:54:52.0642 3608 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:54:52.0735 3608 dot3svc - ok
20:54:52.0782 3608 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:54:52.0876 3608 DPS - ok
20:54:52.0907 3608 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:54:52.0954 3608 drmkaud - ok
20:54:53.0032 3608 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:54:53.0110 3608 DXGKrnl - ok
20:54:53.0125 3608 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:54:53.0219 3608 EapHost - ok
20:54:53.0531 3608 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:54:53.0702 3608 ebdrv - ok
20:54:53.0718 3608 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:54:53.0780 3608 EFS - ok
20:54:53.0827 3608 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:54:53.0905 3608 ehRecvr - ok
20:54:53.0921 3608 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:54:53.0983 3608 ehSched - ok
20:54:54.0014 3608 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:54:54.0061 3608 elxstor - ok
20:54:54.0092 3608 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:54:54.0124 3608 ErrDev - ok
20:54:54.0170 3608 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:54:54.0280 3608 EventSystem - ok
20:54:54.0311 3608 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:54:54.0373 3608 exfat - ok
20:54:54.0404 3608 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:54:54.0467 3608 fastfat - ok
20:54:54.0514 3608 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:54:54.0560 3608 Fax - ok
20:54:54.0592 3608 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:54:54.0623 3608 fdc - ok
20:54:54.0638 3608 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:54:54.0732 3608 fdPHost - ok
20:54:54.0732 3608 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:54:54.0841 3608 FDResPub - ok
20:54:54.0857 3608 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:54:54.0888 3608 FileInfo - ok
20:54:54.0904 3608 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:54:54.0997 3608 Filetrace - ok
20:54:55.0013 3608 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:54:55.0044 3608 flpydisk - ok
20:54:55.0075 3608 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:54:55.0122 3608 FltMgr - ok
20:54:55.0184 3608 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:54:55.0278 3608 FontCache - ok
20:54:55.0309 3608 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:54:55.0340 3608 FontCache3.0.0.0 - ok
20:54:55.0356 3608 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:54:55.0387 3608 FsDepends - ok
20:54:55.0418 3608 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:54:55.0450 3608 Fs_Rec - ok
20:54:55.0481 3608 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:54:55.0528 3608 fvevol - ok
20:54:55.0559 3608 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:54:55.0590 3608 gagp30kx - ok
20:54:55.0637 3608 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:54:55.0746 3608 gpsvc - ok
20:54:55.0793 3608 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
20:54:55.0840 3608 GREGService - ok
20:54:55.0855 3608 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:54:55.0886 3608 hcw85cir - ok
20:54:55.0933 3608 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:54:55.0996 3608 HdAudAddService - ok
20:54:56.0027 3608 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:54:56.0074 3608 HDAudBus - ok
20:54:56.0105 3608 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:54:56.0136 3608 HidBatt - ok
20:54:56.0152 3608 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:54:56.0183 3608 HidBth - ok
20:54:56.0198 3608 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:54:56.0230 3608 HidIr - ok
20:54:56.0261 3608 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:54:56.0354 3608 hidserv - ok
20:54:56.0401 3608 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:54:56.0432 3608 HidUsb - ok
20:54:56.0464 3608 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:54:56.0573 3608 hkmsvc - ok
20:54:56.0620 3608 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:54:56.0666 3608 HomeGroupListener - ok
20:54:56.0713 3608 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:54:56.0760 3608 HomeGroupProvider - ok
20:54:56.0791 3608 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:54:56.0822 3608 HpSAMD - ok
20:54:56.0885 3608 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:54:57.0010 3608 HTTP - ok
20:54:57.0041 3608 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:54:57.0072 3608 hwpolicy - ok
20:54:57.0103 3608 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:54:57.0134 3608 i8042prt - ok
20:54:57.0166 3608 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:54:57.0197 3608 iaStorV - ok
20:54:57.0259 3608 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:54:57.0322 3608 idsvc - ok
20:54:57.0353 3608 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:54:57.0384 3608 iirsp - ok
20:54:57.0415 3608 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:54:57.0540 3608 IKEEXT - ok
20:54:57.0634 3608 [ 6FECEB88CBB6E761E9194F5711F02102 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:54:57.0774 3608 IntcAzAudAddService - ok
20:54:57.0821 3608 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:54:57.0852 3608 intelide - ok
20:54:57.0883 3608 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:54:57.0914 3608 intelppm - ok
20:54:57.0946 3608 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:54:58.0039 3608 IPBusEnum - ok
20:54:58.0070 3608 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:54:58.0180 3608 IpFilterDriver - ok
20:54:58.0226 3608 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:54:58.0273 3608 IPMIDRV - ok
20:54:58.0304 3608 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:54:58.0414 3608 IPNAT - ok
20:54:58.0429 3608 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:54:58.0492 3608 IRENUM - ok
20:54:58.0507 3608 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:54:58.0523 3608 isapnp - ok
20:54:58.0570 3608 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:54:58.0601 3608 iScsiPrt - ok
20:54:58.0632 3608 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:54:58.0663 3608 kbdclass - ok
20:54:58.0679 3608 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:54:58.0710 3608 kbdhid - ok
20:54:58.0726 3608 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:54:58.0757 3608 KeyIso - ok
20:54:58.0788 3608 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:54:58.0819 3608 KSecDD - ok
20:54:58.0835 3608 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:54:58.0866 3608 KSecPkg - ok
20:54:58.0897 3608 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:54:58.0991 3608 ksthunk - ok
20:54:59.0038 3608 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:54:59.0147 3608 KtmRm - ok
20:54:59.0194 3608 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:54:59.0287 3608 LanmanServer - ok
20:54:59.0334 3608 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:54:59.0428 3608 LanmanWorkstation - ok
20:54:59.0568 3608 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
20:54:59.0630 3608 LBTServ - ok
20:54:59.0662 3608 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
20:54:59.0708 3608 LHidFilt - ok
20:54:59.0755 3608 [ B658B7076B1ACAA5876524595630F183 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
20:54:59.0771 3608 lirsgt ( UnsignedFile.Multi.Generic ) - warning
20:54:59.0771 3608 lirsgt - detected UnsignedFile.Multi.Generic (1)
20:54:59.0786 3608 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:54:59.0896 3608 lltdio - ok
20:54:59.0927 3608 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:55:00.0020 3608 lltdsvc - ok
20:55:00.0036 3608 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:55:00.0145 3608 lmhosts - ok
20:55:00.0192 3608 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
20:55:00.0223 3608 LMouFilt - ok
20:55:00.0254 3608 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:55:00.0286 3608 LSI_FC - ok
20:55:00.0301 3608 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:55:00.0332 3608 LSI_SAS - ok
20:55:00.0348 3608 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:55:00.0379 3608 LSI_SAS2 - ok
20:55:00.0379 3608 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:55:00.0410 3608 LSI_SCSI - ok
20:55:00.0442 3608 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:55:00.0535 3608 luafv - ok
20:55:00.0566 3608 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:55:00.0613 3608 Mcx2Svc - ok
20:55:00.0629 3608 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:55:00.0660 3608 megasas - ok
20:55:00.0676 3608 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:55:00.0722 3608 MegaSR - ok
20:55:00.0754 3608 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:55:00.0847 3608 MMCSS - ok
20:55:00.0847 3608 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:55:00.0941 3608 Modem - ok
20:55:00.0956 3608 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:55:01.0003 3608 monitor - ok
20:55:01.0034 3608 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:55:01.0066 3608 mouclass - ok
20:55:01.0081 3608 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:55:01.0112 3608 mouhid - ok
20:55:01.0144 3608 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:55:01.0175 3608 mountmgr - ok
20:55:01.0237 3608 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:55:01.0268 3608 MozillaMaintenance - ok
20:55:01.0284 3608 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:55:01.0315 3608 mpio - ok
20:55:01.0346 3608 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:55:01.0440 3608 mpsdrv - ok
20:55:01.0502 3608 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:55:01.0549 3608 MRxDAV - ok
20:55:01.0596 3608 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:55:01.0658 3608 mrxsmb - ok
20:55:01.0674 3608 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:55:01.0721 3608 mrxsmb10 - ok
20:55:01.0736 3608 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:55:01.0768 3608 mrxsmb20 - ok
20:55:01.0799 3608 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:55:01.0814 3608 msahci - ok
20:55:01.0861 3608 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:55:01.0892 3608 msdsm - ok
20:55:01.0908 3608 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:55:01.0939 3608 MSDTC - ok
20:55:01.0986 3608 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:55:02.0080 3608 Msfs - ok
20:55:02.0095 3608 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:55:02.0189 3608 mshidkmdf - ok
20:55:02.0236 3608 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:55:02.0267 3608 msisadrv - ok
20:55:02.0298 3608 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:55:02.0392 3608 MSiSCSI - ok
20:55:02.0407 3608 msiserver - ok
20:55:02.0438 3608 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:55:02.0516 3608 MSKSSRV - ok
20:55:02.0532 3608 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:55:02.0610 3608 MSPCLOCK - ok
20:55:02.0626 3608 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:55:02.0719 3608 MSPQM - ok
20:55:02.0782 3608 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:55:02.0828 3608 MsRPC - ok
20:55:02.0860 3608 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:55:02.0875 3608 mssmbios - ok
20:55:02.0906 3608 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:55:03.0000 3608 MSTEE - ok
20:55:03.0016 3608 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:55:03.0047 3608 MTConfig - ok
20:55:03.0062 3608 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:55:03.0094 3608 Mup - ok
20:55:03.0109 3608 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
20:55:03.0140 3608 mwlPSDFilter - ok
20:55:03.0156 3608 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
20:55:03.0187 3608 mwlPSDNServ - ok
20:55:03.0203 3608 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
20:55:03.0234 3608 mwlPSDVDisk - ok
20:55:03.0281 3608 [ 3E5E20817259F7328C8F3BE5421F35B9 ] MWLService C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe
20:55:03.0312 3608 MWLService - ok
20:55:03.0343 3608 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:55:03.0452 3608 napagent - ok
20:55:03.0484 3608 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:55:03.0546 3608 NativeWifiP - ok
20:55:03.0593 3608 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:55:03.0671 3608 NDIS - ok
20:55:03.0702 3608 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:55:03.0780 3608 NdisCap - ok
20:55:03.0811 3608 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:55:03.0889 3608 NdisTapi - ok
20:55:03.0936 3608 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:55:04.0030 3608 Ndisuio - ok
20:55:04.0061 3608 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:55:04.0170 3608 NdisWan - ok
20:55:04.0201 3608 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:55:04.0279 3608 NDProxy - ok
20:55:04.0404 3608 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:55:04.0482 3608 Nero BackItUp Scheduler 4.0 - ok
20:55:04.0513 3608 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:55:04.0607 3608 NetBIOS - ok
20:55:04.0638 3608 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:55:04.0732 3608 NetBT - ok
20:55:04.0747 3608 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:55:04.0778 3608 Netlogon - ok
20:55:04.0810 3608 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:55:04.0919 3608 Netman - ok
20:55:04.0934 3608 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:55:05.0059 3608 netprofm - ok
20:55:05.0075 3608 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:55:05.0106 3608 NetTcpPortSharing - ok
20:55:05.0137 3608 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:55:05.0168 3608 nfrd960 - ok
20:55:05.0215 3608 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:55:05.0309 3608 NlaSvc - ok
20:55:05.0621 3608 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:55:05.0761 3608 NOBU - ok
20:55:05.0777 3608 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:55:05.0886 3608 Npfs - ok
20:55:05.0917 3608 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:55:06.0011 3608 nsi - ok
20:55:06.0026 3608 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:55:06.0120 3608 nsiproxy - ok
20:55:06.0198 3608 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:55:06.0292 3608 Ntfs - ok
20:55:06.0323 3608 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:55:06.0385 3608 Null - ok
20:55:06.0416 3608 [ E20ABD5B229760158F753CA90B97E090 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:55:06.0448 3608 NVHDA - ok
20:55:07.0352 3608 [ 9C1996DD3C0469BC8933321F15709F5A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:55:07.0930 3608 nvlddmkm - ok
20:55:07.0961 3608 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:55:07.0976 3608 nvraid - ok
20:55:08.0008 3608 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:55:08.0039 3608 nvstor - ok
20:55:08.0070 3608 [ 382A8E95FAB1E301762B120E16FE807D ] nvsvc C:\Windows\system32\nvvsvc.exe
20:55:08.0086 3608 nvsvc - ok
20:55:08.0117 3608 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:55:08.0132 3608 nv_agp - ok
20:55:08.0148 3608 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:55:08.0179 3608 ohci1394 - ok
20:55:08.0226 3608 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:55:08.0257 3608 ose - ok
20:55:08.0304 3608 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:55:08.0351 3608 p2pimsvc - ok
20:55:08.0382 3608 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:55:08.0429 3608 p2psvc - ok
20:55:08.0460 3608 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:55:08.0491 3608 Parport - ok
20:55:08.0522 3608 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:55:08.0569 3608 partmgr - ok
20:55:08.0585 3608 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:55:08.0632 3608 PcaSvc - ok
20:55:08.0663 3608 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:55:08.0710 3608 pci - ok
20:55:08.0725 3608 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:55:08.0756 3608 pciide - ok
20:55:08.0788 3608 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:55:08.0819 3608 pcmcia - ok
20:55:08.0834 3608 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:55:08.0866 3608 pcw - ok
20:55:08.0881 3608 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:55:08.0990 3608 PEAUTH - ok
20:55:09.0053 3608 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:55:09.0100 3608 PerfHost - ok
20:55:09.0162 3608 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:55:09.0318 3608 pla - ok
20:55:09.0349 3608 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:55:09.0396 3608 PlugPlay - ok
20:55:09.0412 3608 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:55:09.0443 3608 PNRPAutoReg - ok
20:55:09.0474 3608 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:55:09.0505 3608 PNRPsvc - ok
20:55:09.0583 3608 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:55:09.0677 3608 PolicyAgent - ok
20:55:09.0708 3608 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:55:09.0802 3608 Power - ok
20:55:09.0848 3608 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:55:09.0926 3608 PptpMiniport - ok
20:55:09.0973 3608 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:55:10.0020 3608 Processor - ok
20:55:10.0051 3608 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:55:10.0098 3608 ProfSvc - ok
20:55:10.0114 3608 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:55:10.0145 3608 ProtectedStorage - ok
20:55:10.0176 3608 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:55:10.0285 3608 Psched - ok
20:55:10.0332 3608 [ 225D3660F926FE761BC8CE10C512AA02 ] PTSimBus C:\Windows\system32\DRIVERS\PTSimBus.sys
20:55:10.0394 3608 PTSimBus - ok
20:55:10.0426 3608 [ BD2194786ABAF4860F41118C0C103E7B ] PTSimHid C:\Windows\system32\DRIVERS\PTSimHid.sys
20:55:10.0472 3608 PTSimHid - ok
20:55:10.0535 3608 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:55:10.0644 3608 ql2300 - ok
20:55:10.0644 3608 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:55:10.0675 3608 ql40xx - ok
20:55:10.0706 3608 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:55:10.0753 3608 QWAVE - ok
20:55:10.0769 3608 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:55:10.0816 3608 QWAVEdrv - ok
20:55:10.0847 3608 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:55:10.0925 3608 RasAcd - ok
20:55:10.0956 3608 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:55:11.0034 3608 RasAgileVpn - ok
20:55:11.0081 3608 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:55:11.0174 3608 RasAuto - ok
20:55:11.0221 3608 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:55:11.0315 3608 Rasl2tp - ok
20:55:11.0346 3608 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:55:11.0455 3608 RasMan - ok
20:55:11.0486 3608 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:55:11.0580 3608 RasPppoe - ok
20:55:11.0580 3608 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:55:11.0689 3608 RasSstp - ok
20:55:11.0720 3608 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:55:11.0830 3608 rdbss - ok
20:55:11.0845 3608 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:55:11.0892 3608 rdpbus - ok
20:55:11.0908 3608 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:55:12.0001 3608 RDPCDD - ok
20:55:12.0017 3608 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:55:12.0110 3608 RDPENCDD - ok
20:55:12.0126 3608 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:55:12.0204 3608 RDPREFMP - ok
20:55:12.0251 3608 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:55:12.0298 3608 RDPWD - ok
20:55:12.0344 3608 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:55:12.0376 3608 rdyboost - ok
20:55:12.0407 3608 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:55:12.0500 3608 RemoteAccess - ok
20:55:12.0547 3608 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:55:12.0656 3608 RemoteRegistry - ok
20:55:12.0703 3608 [ F12A68ED55053940CADD59CA5E3468DD ] RichVideo C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
20:55:12.0719 3608 RichVideo ( UnsignedFile.Multi.Generic ) - warning
20:55:12.0719 3608 RichVideo - detected UnsignedFile.Multi.Generic (1)
20:55:12.0750 3608 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:55:12.0844 3608 RpcEptMapper - ok
20:55:12.0859 3608 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:55:12.0906 3608 RpcLocator - ok
20:55:12.0968 3608 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:55:13.0062 3608 RpcSs - ok
20:55:13.0093 3608 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:55:13.0202 3608 rspndr - ok
20:55:13.0234 3608 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:55:13.0280 3608 RTL8167 - ok
20:55:13.0312 3608 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:55:13.0327 3608 SamSs - ok
20:55:13.0358 3608 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:55:13.0390 3608 sbp2port - ok
20:55:13.0421 3608 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:55:13.0514 3608 SCardSvr - ok
20:55:13.0561 3608 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:55:13.0655 3608 scfilter - ok
20:55:13.0780 3608 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:55:13.0904 3608 Schedule - ok
20:55:13.0951 3608 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:55:14.0029 3608 SCPolicySvc - ok
20:55:14.0076 3608 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:55:14.0123 3608 SDRSVC - ok
20:55:14.0138 3608 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:55:14.0248 3608 secdrv - ok
20:55:14.0279 3608 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:55:14.0372 3608 seclogon - ok
20:55:14.0404 3608 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:55:14.0482 3608 SENS - ok
20:55:14.0497 3608 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:55:14.0544 3608 SensrSvc - ok
20:55:14.0560 3608 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:55:14.0591 3608 Serenum - ok
20:55:14.0622 3608 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:55:14.0653 3608 Serial - ok
20:55:14.0700 3608 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:55:14.0731 3608 sermouse - ok
20:55:14.0778 3608 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:55:14.0872 3608 SessionEnv - ok
20:55:14.0887 3608 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:55:14.0918 3608 sffdisk - ok
20:55:14.0934 3608 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:55:14.0965 3608 sffp_mmc - ok
20:55:14.0981 3608 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:55:15.0012 3608 sffp_sd - ok
20:55:15.0043 3608 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:55:15.0106 3608 sfloppy - ok
20:55:15.0277 3608 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:55:15.0418 3608 ShellHWDetection - ok
20:55:15.0449 3608 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:55:15.0480 3608 SiSRaid2 - ok
20:55:15.0511 3608 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:55:15.0542 3608 SiSRaid4 - ok
20:55:15.0620 3608 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:55:15.0652 3608 SkypeUpdate - ok
20:55:15.0698 3608 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:55:15.0776 3608 Smb - ok
20:55:15.0839 3608 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:55:15.0870 3608 SNMPTRAP - ok
20:55:15.0886 3608 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:55:15.0917 3608 spldr - ok
20:55:15.0948 3608 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:55:16.0026 3608 Spooler - ok
20:55:16.0432 3608 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:55:16.0666 3608 sppsvc - ok
20:55:16.0681 3608 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:55:16.0806 3608 sppuinotify - ok
20:55:16.0868 3608 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:55:16.0915 3608 srv - ok
20:55:16.0962 3608 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:55:17.0024 3608 srv2 - ok
20:55:17.0056 3608 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:55:17.0087 3608 srvnet - ok
20:55:17.0118 3608 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:55:17.0227 3608 SSDPSRV - ok
20:55:17.0243 3608 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:55:17.0336 3608 SstpSvc - ok
20:55:17.0368 3608 Steam Client Service - ok
20:55:17.0414 3608 [ 6DFE2838759B05F9A24E47C7518D02F8 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:55:17.0461 3608 Stereo Service - ok
20:55:17.0477 3608 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:55:17.0508 3608 stexstor - ok
20:55:17.0555 3608 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:55:17.0617 3608 stisvc - ok
20:55:17.0664 3608 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:55:17.0680 3608 swenum - ok
20:55:17.0726 3608 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:55:17.0836 3608 swprv - ok
20:55:17.0992 3608 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:55:18.0101 3608 SysMain - ok
20:55:18.0148 3608 Tablet2k - ok
20:55:18.0179 3608 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:55:18.0226 3608 TabletInputService - ok
20:55:18.0257 3608 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:55:18.0350 3608 TapiSrv - ok
20:55:18.0366 3608 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:55:18.0460 3608 TBS - ok
20:55:18.0506 3608 [ 530A7F0966493DD437E4342F12CCD63B ] TClass2k C:\Windows\system32\DRIVERS\TClass2k.sys
20:55:18.0553 3608 TClass2k - ok
20:55:18.0631 3608 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:55:18.0740 3608 Tcpip - ok
20:55:18.0787 3608 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:55:18.0881 3608 TCPIP6 - ok
20:55:18.0928 3608 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:55:19.0037 3608 tcpipreg - ok
20:55:19.0068 3608 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:55:19.0099 3608 TDPIPE - ok
20:55:19.0130 3608 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:55:19.0162 3608 TDTCP - ok
20:55:19.0193 3608 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:55:19.0286 3608 tdx - ok
20:55:19.0318 3608 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:55:19.0349 3608 TermDD - ok
20:55:19.0396 3608 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:55:19.0505 3608 TermService - ok
20:55:19.0520 3608 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:55:19.0567 3608 Themes - ok
20:55:19.0598 3608 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:55:19.0676 3608 THREADORDER - ok
20:55:19.0739 3608 [ 3199A477F0F06EEDE41BD55179F8EB05 ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
20:55:19.0770 3608 TomTomHOMEService - ok
20:55:19.0786 3608 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:55:19.0879 3608 TrkWks - ok
20:55:19.0942 3608 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:55:20.0051 3608 TrustedInstaller - ok
20:55:20.0066 3608 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:55:20.0160 3608 tssecsrv - ok
20:55:20.0207 3608 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:55:20.0254 3608 TsUsbFlt - ok
20:55:20.0285 3608 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:55:20.0378 3608 tunnel - ok
20:55:20.0410 3608 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:55:20.0441 3608 uagp35 - ok
20:55:20.0472 3608 [ 01662B4865FDB282677B11CF416757CE ] UCTblHid C:\Windows\system32\DRIVERS\UCTblHid.sys
20:55:20.0503 3608 UCTblHid - ok
20:55:20.0550 3608 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:55:20.0659 3608 udfs - ok
20:55:20.0690 3608 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:55:20.0737 3608 UI0Detect - ok
20:55:20.0753 3608 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:55:20.0784 3608 uliagpkx - ok
20:55:20.0815 3608 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:55:20.0846 3608 umbus - ok
20:55:20.0893 3608 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:55:20.0924 3608 UmPass - ok
20:55:20.0987 3608 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
20:55:21.0018 3608 Updater Service - ok
20:55:21.0049 3608 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:55:21.0158 3608 upnphost - ok
20:55:21.0190 3608 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:55:21.0236 3608 usbccgp - ok
20:55:21.0252 3608 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:55:21.0299 3608 usbcir - ok
20:55:21.0314 3608 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:55:21.0346 3608 usbehci - ok
20:55:21.0377 3608 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:55:21.0408 3608 usbhub - ok
20:55:21.0439 3608 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:55:21.0470 3608 usbohci - ok
20:55:21.0502 3608 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:55:21.0533 3608 usbprint - ok
20:55:21.0548 3608 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:55:21.0595 3608 USBSTOR - ok
20:55:21.0611 3608 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:55:21.0642 3608 usbuhci - ok
20:55:21.0658 3608 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:55:21.0751 3608 UxSms - ok
20:55:21.0767 3608 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:55:21.0798 3608 VaultSvc - ok
20:55:21.0814 3608 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:55:21.0845 3608 vdrvroot - ok
20:55:21.0892 3608 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:55:22.0001 3608 vds - ok
20:55:22.0016 3608 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:55:22.0048 3608 vga - ok
20:55:22.0079 3608 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:55:22.0157 3608 VgaSave - ok
20:55:22.0219 3608 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:55:22.0250 3608 vhdmp - ok
20:55:22.0266 3608 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:55:22.0297 3608 viaide - ok
20:55:22.0313 3608 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:55:22.0344 3608 volmgr - ok
20:55:22.0391 3608 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:55:22.0469 3608 volmgrx - ok
20:55:22.0516 3608 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:55:22.0562 3608 volsnap - ok
20:55:22.0594 3608 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:55:22.0625 3608 vsmraid - ok
20:55:22.0687 3608 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:55:22.0843 3608 VSS - ok
20:55:22.0859 3608 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:55:22.0906 3608 vwifibus - ok
20:55:22.0937 3608 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:55:23.0030 3608 W32Time - ok
20:55:23.0077 3608 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:55:23.0108 3608 WacomPen - ok
20:55:23.0155 3608 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:55:23.0249 3608 WANARP - ok
20:55:23.0249 3608 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:55:23.0342 3608 Wanarpv6 - ok
20:55:23.0467 3608 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:55:23.0576 3608 wbengine - ok
20:55:23.0608 3608 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:55:23.0654 3608 WbioSrvc - ok
20:55:23.0717 3608 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:55:23.0779 3608 wcncsvc - ok
20:55:23.0795 3608 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:55:23.0826 3608 WcsPlugInService - ok
20:55:23.0857 3608 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:55:23.0873 3608 Wd - ok
20:55:23.0904 3608 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:55:23.0966 3608 Wdf01000 - ok
20:55:23.0998 3608 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:55:24.0091 3608 WdiServiceHost - ok
20:55:24.0091 3608 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:55:24.0138 3608 WdiSystemHost - ok
20:55:24.0200 3608 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:55:24.0247 3608 WebClient - ok
20:55:24.0450 3608 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:55:24.0528 3608 Wecsvc - ok
20:55:24.0544 3608 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:55:24.0637 3608 wercplsupport - ok
20:55:24.0653 3608 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:55:24.0746 3608 WerSvc - ok
20:55:24.0793 3608 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:55:24.0871 3608 WfpLwf - ok
20:55:24.0902 3608 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:55:24.0934 3608 WIMMount - ok
20:55:24.0949 3608 WinHttpAutoProxySvc - ok
20:55:25.0012 3608 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:55:25.0121 3608 Winmgmt - ok
20:55:25.0214 3608 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:55:25.0370 3608 WinRM - ok
20:55:25.0433 3608 [ 935471EC43505CB23DA16600562EE19A ] WinTabService C:\Windows\System32\Drivers\WTSRV.EXE
20:55:25.0448 3608 WinTabService ( UnsignedFile.Multi.Generic ) - warning
20:55:25.0448 3608 WinTabService - detected UnsignedFile.Multi.Generic (1)
20:55:25.0495 3608 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:55:25.0573 3608 Wlansvc - ok
20:55:25.0604 3608 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:55:25.0620 3608 wlcrasvc - ok
20:55:25.0729 3608 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:55:25.0854 3608 wlidsvc - ok
20:55:25.0885 3608 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:55:25.0916 3608 WmiAcpi - ok
20:55:25.0948 3608 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:55:25.0994 3608 wmiApSrv - ok
20:55:26.0010 3608 WMPNetworkSvc - ok
20:55:26.0041 3608 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:55:26.0088 3608 WPCSvc - ok
20:55:26.0119 3608 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:55:26.0166 3608 WPDBusEnum - ok
20:55:26.0182 3608 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:55:26.0275 3608 ws2ifsl - ok
20:55:26.0291 3608 WSearch - ok
20:55:26.0322 3608 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:55:26.0416 3608 WudfPf - ok
20:55:26.0462 3608 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:55:26.0556 3608 WUDFRd - ok
20:55:26.0603 3608 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:55:26.0696 3608 wudfsvc - ok
20:55:26.0743 3608 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:55:26.0821 3608 WwanSvc - ok
20:55:26.0837 3608 ================ Scan global ===============================
20:55:26.0852 3608 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:55:26.0884 3608 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:55:26.0899 3608 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
20:55:26.0915 3608 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:55:26.0946 3608 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:55:26.0962 3608 [Global] - ok
20:55:26.0962 3608 ================ Scan MBR ==================================
20:55:26.0977 3608 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:55:28.0927 3608 \Device\Harddisk0\DR0 - ok
20:55:28.0927 3608 ================ Scan VBR ==================================
20:55:28.0943 3608 [ EEFDBBAC7FAF458110056B798F753946 ] \Device\Harddisk0\DR0\Partition1
20:55:28.0958 3608 \Device\Harddisk0\DR0\Partition1 - ok
20:55:28.0974 3608 [ 89B4F087145C20AAD0422484B17F0DA6 ] \Device\Harddisk0\DR0\Partition2
20:55:28.0974 3608 \Device\Harddisk0\DR0\Partition2 - ok
20:55:28.0990 3608 [ 0F824EFA10FFC1C91987F7D1FFA5BAC2 ] \Device\Harddisk0\DR0\Partition3
20:55:29.0005 3608 \Device\Harddisk0\DR0\Partition3 - ok
20:55:29.0005 3608 ============================================================
20:55:29.0005 3608 Scan finished
20:55:29.0005 3608 ============================================================
20:55:29.0146 2072 Detected object count: 5
20:55:29.0146 2072 Actual detected object count: 5
20:55:32.0921 2072 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:55:32.0921 2072 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:55:32.0936 2072 atksgt ( UnsignedFile.Multi.Generic ) - skipped by user
20:55:32.0936 2072 atksgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:55:32.0936 2072 lirsgt ( UnsignedFile.Multi.Generic ) - skipped by user
20:55:32.0936 2072 lirsgt ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:55:32.0936 2072 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
20:55:32.0936 2072 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:55:32.0936 2072 WinTabService ( UnsignedFile.Multi.Generic ) - skipped by user
20:55:32.0936 2072 WinTabService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:55:36.0056 3720 Deinitialize success
|
|
03.09.2012, 20:58
| #24 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen ja das ist gut Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.09.2012, 11:14
| #25 |
| | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Ok nun tut sich ein Problem auf. Ich habe den Antivir-Echtzeit-Scaner deaktiviert und trotzdem sagt mir ComboFix, dass es noch aktiv ist. In den Konfigurationsmöglichkeiten finde ich nichts das auf nem anderen Weg auszuschalten. Lt. CoboFix soll ich aber noch die Echtzeitscanner deaktiveren weil sonst Schäden entstehen. Was nun? Wenn ich im Warnfesnter auf OK klicke geht der Vorgang los. |
|
04.09.2012, 16:14
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Ignorieren! Wenn AntiVir deaktiviert ist stimmt diese Meldung nicht
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.09.2012, 17:42
| #27 |
| | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen So hier ist die LogDatei von ComboFix Code:
ATTFilter Combofix Logfile: |
|
04.09.2012, 19:27
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.09.2012, 20:51
| #29 |
| | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen So hier die Log-Dateien. Als erste die GMER-Datei: [CODE] GMER Logfile: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-09-04 21:02:44
Windows 6.1.7601 Service Pack 1
Running: ehjd22vc.exe
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Epoch@Epoch 604
Reg HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Epoch2@Epoch 1553
---- EOF - GMER 1.0.15 ----
Als nächstes die OSAM-Datei. Code:
ATTFilter OSAM Logfile: Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-04 21:14:33
-----------------------------
21:14:33.254 OS Version: Windows x64 6.1.7601 Service Pack 1
21:14:33.254 Number of processors: 6 586 0xA00
21:14:33.254 ComputerName: TELRON-PC UserName: TelRon
21:14:34.081 Initialize success
21:19:08.621 AVAST engine defs: 12090400
21:19:49.306 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000061
21:19:49.306 Disk 0 Vendor: Hitachi_ ST6O Size: 953805MB BusType: 8
21:19:49.321 Disk 0 MBR read successfully
21:19:49.321 Disk 0 MBR scan
21:19:49.337 Disk 0 Windows 7 default MBR code
21:19:49.368 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 18432 MB offset 2048
21:19:49.384 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 37750784
21:19:49.399 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 467406 MB offset 37955584
21:19:49.430 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 467929 MB offset 995203072
21:19:49.462 Disk 0 scanning C:\Windows\system32\drivers
21:20:05.654 Service scanning
21:20:29.148 Service Tablet2k C:\Windows\"%SystemRoot%\System32\Drivers\Tablet2k.sys" **LOCKED** 123
21:20:36.480 Modules scanning
21:20:36.496 Disk 0 trace - called modules:
21:20:36.511 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll ahcix64s.sys
21:20:36.527 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80055a4060]
21:20:36.542 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> \Device\00000061[0xfffffa80048cb9c0]
21:20:37.525 AVAST engine scan C:\Windows
21:20:41.987 AVAST engine scan C:\Windows\system32
21:26:26.981 AVAST engine scan C:\Windows\system32\drivers
21:26:43.564 AVAST engine scan C:\Users\TelRon
21:44:11.309 AVAST engine scan C:\ProgramData
21:47:28.618 Scan finished successfully
21:47:44.390 Disk 0 MBR has been saved successfully to "C:\Users\TelRon\Desktop\MBR.dat"
21:47:44.390 The log file has been saved successfully to "C:\Users\TelRon\Desktop\aswMBR.txt"
|
|
05.09.2012, 11:57
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu TR/ATRAPS.Gen2 und TR/Sirefef.16896 lässt sich nicht entfernen |
| anhang, anti-malware, datei, dateien, entferne, entfernen, extras, geklappt, hoffe, infizierte, infizierte dateien, konnte, liebe, lässt sich nicht entfernen, malwarebites, malwarebyte, melde, meldet, not, sofort, spring, springt, stunde, tagen, tr/atraps.gen, tr/atraps.gen2, tr/sirefef.16896, verwendung, viren |
Linear-Darstellung
