| |
| |||||||
Log-Analyse und Auswertung: Panda findet Hupigon.AZG und Trj/CI.A in diversen DateienWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
26.09.2012, 16:24
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Du hast das Windows von deinem Bekannten einfach so gelassen wie es war? 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
26.09.2012, 17:28
| #17 |
 | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Es war auf jeden Fall neu aufgesetzt und unberührt, also keine Daten von ihm drauf (soweit ich das beurteilen kann).
__________________Ich denke nicht, dass er mir da bewusst schadhafte Software untergejubelt hat. Was hab ich denn nun für ein Problem ? Ich bin ja wirklich dankbar für die Hilfe, aber diese ganzen Auswertungen sagen mir recht wenig und ich weiß nicht so wirklich wie ich mich jetzt weiter verhalten soll bzw. was ich mir da genau eingefangen habe. |
|
27.09.2012, 11:53
| #18 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen DateienZitat:
__________________ |
|
27.09.2012, 12:08
| #19 |
| | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Er wird da wohl seine Firmenlizenz verwendet haben... Ich kann das leider nicht genau beantworten, da ich wie gesagt das System so vorgefunden habe. |
|
27.09.2012, 16:17
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Er hat seine Firmenlizenz auf einem Privat-Rechner?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.09.2012, 17:24
| #21 |
| | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Wie bereits gesagt: Ich weiß es nicht. Das Thema ist eh bald hinfällig, da ich das System neu aufsetzen werde. Bis dahin wüsste ich zumindest gern, ob ich (angenommen mit Windows wäre alles ok) nun noch etwas tun kann/muss oder ob der Rechner sauber ist. Kann es z.B. sein, dass selbst wenn ich windows neu installiere noch Schädlingen vorhanden sind und das ganze von vorne beginnt ? Kann ich momentan unbesorgt online banking nutzen ? Würde mich wirklich freuen wenn wir hier weiter kommen könnten. PS: Ich kenne die Regeln hier und ich denke zu wissen worauf du hinaus willst. Ich kann guten gewissen behaupten zu keinem Zeitpunkt bewusst potentiell schadhafte oder illegale Software etc. installiert/verwendet zu haben.  |
|
27.09.2012, 20:23
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Warum willst du denn hier bereinigen wenn du den Rechner eh bald neu installieren willst? Und Onlinebanking würde ich mit einer verseuchten Kiste tunlichst sein lassen - wenn es unbedingt gemacht werden muss, dann mach es in unter einem Live-System wie Bankix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.09.2012, 20:31
| #23 |
| | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Ich habe das heute beschlossen, da ich absolut verunsichert bin ob das noch was gibt. Ich möchte dennoch vorher alles bereinigen, da ich im Moment wenig Zeit habe und der Rechner noch ein paar Tage/Wochen so bleiben wird. Weiterhin habe ich ja gesagt, dass ich nicht möchte, dass das System nach der Neuinstallation neu infitziert wird und wer weiß was auf den zahlreichen partitionen los ist. Ich werde lediglich c: formatieren. |
|
27.09.2012, 20:45
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
FF - user.js - File not found
IE - HKU\S-1-5-21-2460917813-4204335397-3809129294-1001\..\SearchScopes\{A1B19448-A883-494D-863B-F203823F0CE9}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=MYC-ST&o=102869&src=kw&q={searchTerms}&locale=&apn_ptnrs=5J&apn_dtid=YYYYYYYYDE&apn_uid=06d54a5e-60f0-459a-8d03-5d06a71cd673&apn_sauid=B502D06C-2DFF-4141-8ECC-DE8F4B1A3EE4
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 8118
FF - prefs.js..network.proxy.no_proxies_on: "127.0.0.1"
FF - prefs.js..network.proxy.socks: "127.0.0.1"
FF - prefs.js..network.proxy.socks_port: 9050
FF - prefs.js..network.proxy.socks_remote_dns: true
FF - prefs.js..network.proxy.ssl: "127.0.0.1"
FF - prefs.js..network.proxy.ssl_port: 8118
FF - prefs.js..network.proxy.type: 4
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found
O4 - Startup: C:\Users\c\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Computer - Shortcut.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O32 - HKLM CDRom: AutoRun - 1
:Files
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache
F:\Firefox DLs\SoftonicDownloader_fuer_nvidia-gpu-temp.exe
C:\Users\c\AppData\Roaming\{*
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.09.2012, 20:58
| #25 |
| | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Vielen Dank. Wärst du so nett kurz zu erläutern was da los war und wie sich sowas in Zukunft vermeiden lässt ? |
|
27.09.2012, 21:14
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Fragen werden später beantwortet wenn wir mit der Bereinigung durch sind! Mach bitte den OTL-Fix und poste das Log!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
27.09.2012, 21:46
| #27 |
| | Panda findet Hupigon.AZG und Trj/CI.A in diversen DateienCode:
ATTFilter All processes killed
========== OTL ==========
Registry key HKEY_USERS\S-1-5-21-2460917813-4204335397-3809129294-1001\Software\Microsoft\Internet Explorer\SearchScopes\{A1B19448-A883-494D-863B-F203823F0CE9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A1B19448-A883-494D-863B-F203823F0CE9}\ not found.
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: "127.0.0.1" removed from network.proxy.http
Prefs.js: 8118 removed from network.proxy.http_port
Prefs.js: "127.0.0.1" removed from network.proxy.no_proxies_on
Prefs.js: "127.0.0.1" removed from network.proxy.socks
Prefs.js: 9050 removed from network.proxy.socks_port
Prefs.js: true removed from network.proxy.socks_remote_dns
Prefs.js: "127.0.0.1" removed from network.proxy.ssl
Prefs.js: 8118 removed from network.proxy.ssl_port
Prefs.js: 4 removed from network.proxy.type
Registry value HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
Registry value HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce\\mctadmin deleted successfully.
C:\Users\c\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Computer - Shortcut.lnk moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
========== FILES ==========
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\tmp folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\muffin folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\host folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\62 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\60 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\50 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\f2cc42f-12cff6eb-n folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\25 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\23 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\20 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\15 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\1 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\0 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache\6.0 folder moved successfully.
C:\Users\c\AppData\LocalLow\Sun\Java\Deployment\cache folder moved successfully.
F:\Firefox DLs\SoftonicDownloader_fuer_nvidia-gpu-temp.exe moved successfully.
C:\Users\c\AppData\Roaming\{ca6389c2-28d2-40ef-ab3d-2221e06e372f} folder moved successfully.
C:\Users\c\AppData\Roaming\{cc5077cc-858c-4ac2-b258-d8f4b86979d3} folder moved successfully.
C:\Users\c\AppData\Roaming\{f71f39b3-d083-4fae-9b9e-dfeba90cb0e5} folder moved successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\c\Desktop\cmd.bat deleted successfully.
C:\Users\c\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: c
->Temp folder emptied: 35939200 bytes
->Temporary Internet Files folder emptied: 15061880 bytes
->FireFox cache emptied: 826712887 bytes
->Apple Safari cache emptied: 0 bytes
->Opera cache emptied: 8394283 bytes
->Flash cache emptied: 69194 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56468 bytes
User: UpdatusUser.c-PC
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 557056 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 113018 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 155938 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67630 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 749 bytes
RecycleBin emptied: 248479046 bytes
Total Files Cleaned = 1.083,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.68.0 log created on 09272012_223053
Files\Folders moved on Reboot...
C:\Users\c\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
28.09.2012, 10:23
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
29.09.2012, 12:32
| #29 |
| | Panda findet Hupigon.AZG und Trj/CI.A in diversen DateienCode:
ATTFilter 13:17:59.0293 3104 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:17:59.0467 3104 ============================================================
13:17:59.0467 3104 Current date / time: 2012/09/29 13:17:59.0467
13:17:59.0467 3104 SystemInfo:
13:17:59.0467 3104
13:17:59.0467 3104 OS Version: 6.1.7601 ServicePack: 1.0
13:17:59.0467 3104 Product type: Workstation
13:17:59.0467 3104 ComputerName: C-PC
13:17:59.0467 3104 UserName: c
13:17:59.0467 3104 Windows directory: C:\Windows
13:17:59.0467 3104 System windows directory: C:\Windows
13:17:59.0467 3104 Running under WOW64
13:17:59.0467 3104 Processor architecture: Intel x64
13:17:59.0467 3104 Number of processors: 4
13:17:59.0467 3104 Page size: 0x1000
13:17:59.0467 3104 Boot type: Normal boot
13:17:59.0467 3104 ============================================================
13:18:00.0280 3104 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:18:00.0297 3104 Drive \Device\Harddisk1\DR1 - Size: 0x5D27216000 (372.61 Gb), SectorSize: 0x200, Cylinders: 0xBE01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:18:00.0303 3104 ============================================================
13:18:00.0303 3104 \Device\Harddisk0\DR0:
13:18:00.0303 3104 MBR partitions:
13:18:00.0303 3104 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x61A7000
13:18:00.0308 3104 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x7148262, BlocksNum 0x61A7966
13:18:00.0308 3104 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xD2EFBC8, BlocksNum 0x3D5672F9
13:18:00.0308 3104 \Device\Harddisk1\DR1:
13:18:00.0308 3104 MBR partitions:
13:18:00.0308 3104 ============================================================
13:18:00.0321 3104 C: <-> \Device\Harddisk0\DR0\Partition1
13:18:00.0352 3104 E: <-> \Device\Harddisk0\DR0\Partition2
13:18:00.0378 3104 F: <-> \Device\Harddisk0\DR0\Partition3
13:18:00.0379 3104 ============================================================
13:18:00.0379 3104 Initialize success
13:18:00.0379 3104 ============================================================
13:26:34.0802 6124 ============================================================
13:26:34.0802 6124 Scan started
13:26:34.0802 6124 Mode: Manual; SigCheck; TDLFS;
13:26:34.0802 6124 ============================================================
13:26:35.0289 6124 ================ Scan system memory ========================
13:26:35.0289 6124 System memory - ok
13:26:35.0290 6124 ================ Scan services =============================
13:26:35.0356 6124 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
13:26:35.0405 6124 !SASCORE - ok
13:26:35.0532 6124 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
13:26:35.0561 6124 1394ohci - ok
13:26:35.0587 6124 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
13:26:35.0603 6124 ACPI - ok
13:26:35.0633 6124 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
13:26:35.0658 6124 AcpiPmi - ok
13:26:35.0681 6124 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:26:35.0702 6124 adp94xx - ok
13:26:35.0723 6124 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:26:35.0740 6124 adpahci - ok
13:26:35.0749 6124 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:26:35.0764 6124 adpu320 - ok
13:26:35.0787 6124 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:26:35.0844 6124 AeLookupSvc - ok
13:26:35.0889 6124 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
13:26:35.0928 6124 AFD - ok
13:26:35.0948 6124 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:26:35.0960 6124 agp440 - ok
13:26:35.0971 6124 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:26:35.0993 6124 ALG - ok
13:26:36.0010 6124 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
13:26:36.0022 6124 aliide - ok
13:26:36.0034 6124 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
13:26:36.0046 6124 amdide - ok
13:26:36.0054 6124 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:26:36.0082 6124 AmdK8 - ok
13:26:36.0089 6124 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:26:36.0103 6124 AmdPPM - ok
13:26:36.0151 6124 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:26:36.0169 6124 amdsata - ok
13:26:36.0186 6124 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:26:36.0208 6124 amdsbs - ok
13:26:36.0223 6124 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:26:36.0239 6124 amdxata - ok
13:26:36.0275 6124 [ 48CD7E6520D47D62EAB0E6CE3EC30C65 ] Andbus C:\Windows\system32\DRIVERS\lgandbus64.sys
13:26:36.0312 6124 Andbus - ok
13:26:36.0330 6124 [ 08CBACC00D15DCDBBAAE1A7C8F231C61 ] AndDiag C:\Windows\system32\DRIVERS\lganddiag64.sys
13:26:36.0344 6124 AndDiag - ok
13:26:36.0353 6124 [ CEA9A4CD6B3A83428CE8501240833668 ] AndGps C:\Windows\system32\DRIVERS\lgandgps64.sys
13:26:36.0371 6124 AndGps - ok
13:26:36.0399 6124 [ E2B5663E547FA5E756B253EFA8EC8286 ] ANDModem C:\Windows\system32\DRIVERS\lgandmodem64.sys
13:26:36.0432 6124 ANDModem - ok
13:26:36.0461 6124 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
13:26:36.0525 6124 AppID - ok
13:26:36.0542 6124 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:26:36.0589 6124 AppIDSvc - ok
13:26:36.0622 6124 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
13:26:36.0667 6124 Appinfo - ok
13:26:36.0737 6124 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:26:36.0752 6124 Apple Mobile Device - ok
13:26:36.0770 6124 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
13:26:36.0793 6124 AppMgmt - ok
13:26:36.0815 6124 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:26:36.0829 6124 arc - ok
13:26:36.0844 6124 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:26:36.0857 6124 arcsas - ok
13:26:36.0946 6124 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:26:36.0971 6124 aspnet_state - ok
13:26:36.0986 6124 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:26:37.0042 6124 AsyncMac - ok
13:26:37.0066 6124 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
13:26:37.0077 6124 atapi - ok
13:26:37.0118 6124 [ 940E5B876251E04FFFE058AD71FE0F1C ] AtcL001 C:\Windows\system32\DRIVERS\l160x64.sys
13:26:37.0144 6124 AtcL001 - ok
13:26:37.0194 6124 [ 788914C42AD8318F1DD7A565EAFFB049 ] athrusb C:\Windows\system32\DRIVERS\athrxusb.sys
13:26:37.0227 6124 athrusb - ok
13:26:37.0288 6124 [ BF8CE7FFCC0C2FFFFC9F59B9A8C4DC5C ] athrusb6 C:\Windows\system32\DRIVERS\G220Vista64.sys
13:26:37.0315 6124 athrusb6 - ok
13:26:37.0356 6124 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:26:37.0403 6124 AudioEndpointBuilder - ok
13:26:37.0414 6124 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:26:37.0452 6124 AudioSrv - ok
13:26:37.0488 6124 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:26:37.0515 6124 AxInstSV - ok
13:26:37.0549 6124 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:26:37.0568 6124 b06bdrv - ok
13:26:37.0595 6124 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:26:37.0620 6124 b57nd60a - ok
13:26:37.0657 6124 [ 145B2FCF11FDDA5C1D3C3DEC36402A0F ] bcd3000 C:\Windows\system32\DRIVERS\bcd3000_x64.sys
13:26:37.0675 6124 bcd3000 - ok
13:26:37.0698 6124 [ 3CE93283525FA3B9792FAFC1F06CDEC3 ] bcd3000wdm C:\Windows\system32\DRIVERS\bcd3000wdm_x64.sys
13:26:37.0707 6124 bcd3000wdm - ok
13:26:37.0721 6124 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:26:37.0745 6124 BDESVC - ok
13:26:37.0768 6124 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:26:37.0809 6124 Beep - ok
13:26:37.0863 6124 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
13:26:37.0915 6124 BFE - ok
13:26:37.0939 6124 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
13:26:37.0988 6124 BITS - ok
13:26:38.0007 6124 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:26:38.0028 6124 blbdrive - ok
13:26:38.0096 6124 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:26:38.0113 6124 Bonjour Service - ok
13:26:38.0169 6124 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:26:38.0182 6124 bowser - ok
13:26:38.0196 6124 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:26:38.0212 6124 BrFiltLo - ok
13:26:38.0223 6124 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:26:38.0239 6124 BrFiltUp - ok
13:26:38.0260 6124 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
13:26:38.0274 6124 Browser - ok
13:26:38.0293 6124 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:26:38.0323 6124 Brserid - ok
13:26:38.0335 6124 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:26:38.0356 6124 BrSerWdm - ok
13:26:38.0371 6124 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:26:38.0393 6124 BrUsbMdm - ok
13:26:38.0404 6124 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:26:38.0418 6124 BrUsbSer - ok
13:26:38.0434 6124 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:26:38.0460 6124 BTHMODEM - ok
13:26:38.0480 6124 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:26:38.0525 6124 bthserv - ok
13:26:38.0558 6124 [ AA3D1C7F0EE2B5FAFBE8FD88B409F61F ] Bulk C:\Windows\system32\Drivers\HDJBulk.sys
13:26:38.0575 6124 Bulk ( UnsignedFile.Multi.Generic ) - warning
13:26:38.0575 6124 Bulk - detected UnsignedFile.Multi.Generic (1)
13:26:38.0596 6124 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:26:38.0645 6124 cdfs - ok
13:26:38.0683 6124 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:26:38.0709 6124 cdrom - ok
13:26:38.0739 6124 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
13:26:38.0778 6124 CertPropSvc - ok
13:26:38.0792 6124 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:26:38.0807 6124 circlass - ok
13:26:38.0827 6124 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:26:38.0846 6124 CLFS - ok
13:26:38.0890 6124 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:26:38.0900 6124 clr_optimization_v2.0.50727_32 - ok
13:26:38.0926 6124 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:26:38.0937 6124 clr_optimization_v2.0.50727_64 - ok
13:26:39.0005 6124 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:26:39.0016 6124 clr_optimization_v4.0.30319_32 - ok
13:26:39.0038 6124 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:26:39.0076 6124 clr_optimization_v4.0.30319_64 - ok
13:26:39.0088 6124 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:26:39.0113 6124 CmBatt - ok
13:26:39.0134 6124 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:26:39.0146 6124 cmdide - ok
13:26:39.0180 6124 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
13:26:39.0205 6124 CNG - ok
13:26:39.0220 6124 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:26:39.0231 6124 Compbatt - ok
13:26:39.0254 6124 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
13:26:39.0269 6124 CompositeBus - ok
13:26:39.0279 6124 COMSysApp - ok
13:26:39.0290 6124 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:26:39.0302 6124 crcdisk - ok
13:26:39.0338 6124 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:26:39.0360 6124 CryptSvc - ok
13:26:39.0388 6124 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
13:26:39.0426 6124 CSC - ok
13:26:39.0456 6124 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
13:26:39.0489 6124 CscService - ok
13:26:39.0524 6124 [ 229E3B8F266ABDAFD54E4A372B9D5DDC ] CT20XUT C:\Windows\system32\drivers\CT20XUT.SYS
13:26:39.0537 6124 CT20XUT - ok
13:26:39.0565 6124 [ 229E3B8F266ABDAFD54E4A372B9D5DDC ] CT20XUT.SYS C:\Windows\System32\drivers\CT20XUT.SYS
13:26:39.0575 6124 CT20XUT.SYS - ok
13:26:39.0607 6124 [ EB3843A91A10150C9E05607CBCB44090 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
13:26:39.0627 6124 ctac32k - ok
13:26:39.0647 6124 [ BC06EFB59A2316537765462DFE40F764 ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
13:26:39.0668 6124 ctaud2k - ok
13:26:39.0700 6124 [ 63B2B6CE9D3EF182981FB64BD5433DA4 ] CTEXFIFX C:\Windows\system32\drivers\CTEXFIFX.SYS
13:26:39.0734 6124 CTEXFIFX - ok
13:26:39.0766 6124 [ 63B2B6CE9D3EF182981FB64BD5433DA4 ] CTEXFIFX.SYS C:\Windows\System32\drivers\CTEXFIFX.SYS
13:26:39.0793 6124 CTEXFIFX.SYS - ok
13:26:39.0805 6124 [ 6D115CC80873B85FD80DDA1C41F75A2C ] CTHWIUT C:\Windows\system32\drivers\CTHWIUT.SYS
13:26:39.0816 6124 CTHWIUT - ok
13:26:39.0820 6124 [ 6D115CC80873B85FD80DDA1C41F75A2C ] CTHWIUT.SYS C:\Windows\System32\drivers\CTHWIUT.SYS
13:26:39.0829 6124 CTHWIUT.SYS - ok
13:26:39.0842 6124 [ EBC9548EF5838CB5AA8F18B3AC28AF12 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
13:26:39.0851 6124 ctprxy2k - ok
13:26:39.0864 6124 [ 459BEE1682121842285C162E2D98D81A ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
13:26:39.0877 6124 ctsfm2k - ok
13:26:39.0918 6124 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:26:39.0969 6124 DcomLaunch - ok
13:26:40.0014 6124 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:26:40.0067 6124 defragsvc - ok
13:26:40.0111 6124 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
13:26:40.0122 6124 Desura Install Service - ok
13:26:40.0146 6124 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:26:40.0186 6124 DfsC - ok
13:26:40.0233 6124 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
13:26:40.0275 6124 Dhcp - ok
13:26:40.0291 6124 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:26:40.0331 6124 discache - ok
13:26:40.0359 6124 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:26:40.0370 6124 Disk - ok
13:26:40.0389 6124 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:26:40.0403 6124 Dnscache - ok
13:26:40.0426 6124 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
13:26:40.0468 6124 dot3svc - ok
13:26:40.0492 6124 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
13:26:40.0541 6124 DPS - ok
13:26:40.0566 6124 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:26:40.0581 6124 drmkaud - ok
13:26:40.0643 6124 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:26:40.0674 6124 DXGKrnl - ok
13:26:40.0704 6124 [ EDC6E9C057C9D7F83EEA22B4CEF5DCAD ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
13:26:40.0719 6124 E1G60 - ok
13:26:40.0738 6124 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:26:40.0779 6124 EapHost - ok
13:26:40.0848 6124 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:26:40.0932 6124 ebdrv - ok
13:26:40.0954 6124 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
13:26:40.0976 6124 EFS - ok
13:26:41.0011 6124 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:26:41.0045 6124 ehRecvr - ok
13:26:41.0065 6124 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:26:41.0087 6124 ehSched - ok
13:26:41.0118 6124 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:26:41.0139 6124 elxstor - ok
13:26:41.0148 6124 [ C26133B6165928FBD156C6FE570F9ED2 ] emupia C:\Windows\system32\drivers\emupia2k.sys
13:26:41.0158 6124 emupia - ok
13:26:41.0178 6124 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:26:41.0199 6124 ErrDev - ok
13:26:41.0225 6124 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:26:41.0262 6124 EventSystem - ok
13:26:41.0277 6124 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:26:41.0324 6124 exfat - ok
13:26:41.0343 6124 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:26:41.0379 6124 fastfat - ok
13:26:41.0420 6124 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
13:26:41.0455 6124 Fax - ok
13:26:41.0465 6124 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:26:41.0499 6124 fdc - ok
13:26:41.0509 6124 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:26:41.0553 6124 fdPHost - ok
13:26:41.0566 6124 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:26:41.0609 6124 FDResPub - ok
13:26:41.0619 6124 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:26:41.0631 6124 FileInfo - ok
13:26:41.0646 6124 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:26:41.0680 6124 Filetrace - ok
13:26:41.0685 6124 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:26:41.0698 6124 flpydisk - ok
13:26:41.0719 6124 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:26:41.0735 6124 FltMgr - ok
13:26:41.0776 6124 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
13:26:41.0799 6124 FontCache - ok
13:26:41.0839 6124 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:26:41.0853 6124 FontCache3.0.0.0 - ok
13:26:41.0870 6124 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:26:41.0882 6124 FsDepends - ok
13:26:41.0907 6124 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:26:41.0918 6124 Fs_Rec - ok
13:26:41.0953 6124 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:26:41.0971 6124 fvevol - ok
13:26:41.0983 6124 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:26:41.0996 6124 gagp30kx - ok
13:26:42.0034 6124 [ A05CA8FECCD58256FD0B964DEBD8858F ] gbxavs C:\Windows\system32\Drivers\gbxavs.sys
13:26:42.0048 6124 gbxavs - ok
13:26:42.0075 6124 [ 9562E036C2BC1ECF5399E07C2A6832AE ] gbxavs_x64 C:\Windows\system32\Drivers\gbxavs_x64.sys
13:26:42.0083 6124 gbxavs_x64 - ok
13:26:42.0104 6124 [ D7A02665FDC5D48E779C166466FA0849 ] gbxusb_svc C:\Windows\system32\Drivers\gbxusb.sys
13:26:42.0112 6124 gbxusb_svc - ok
13:26:42.0137 6124 [ C5F1BC6397BF3AC3026F9863620E5003 ] gbxusb_x64 C:\Windows\system32\Drivers\gbxusb_x64.sys
13:26:42.0150 6124 gbxusb_x64 - ok
13:26:42.0184 6124 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:26:42.0193 6124 GEARAspiWDM - ok
13:26:42.0225 6124 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
13:26:42.0274 6124 gpsvc - ok
13:26:42.0334 6124 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:26:42.0344 6124 gupdate - ok
13:26:42.0366 6124 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:26:42.0376 6124 gupdatem - ok
13:26:42.0419 6124 [ A3F010D5DBFB589A3B3288C05C2EA3F9 ] ha20x2k C:\Windows\system32\drivers\ha20x2k.sys
13:26:42.0461 6124 ha20x2k - ok
13:26:42.0490 6124 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
13:26:42.0499 6124 hamachi - ok
13:26:42.0615 6124 [ F10C3F2E002100BF8B797DCF283FEA7D ] Hamachi2Svc F:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
13:26:42.0673 6124 Hamachi2Svc - ok
13:26:42.0707 6124 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:26:42.0729 6124 hcw85cir - ok
13:26:42.0777 6124 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:26:42.0807 6124 HdAudAddService - ok
13:26:42.0835 6124 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:26:42.0862 6124 HDAudBus - ok
13:26:42.0912 6124 [ A90FF190094C89ADC057B975B0079135 ] HDJAsioK C:\Windows\system32\Drivers\HDJAsioK.sys
13:26:42.0926 6124 HDJAsioK ( UnsignedFile.Multi.Generic ) - warning
13:26:42.0926 6124 HDJAsioK - detected UnsignedFile.Multi.Generic (1)
13:26:42.0958 6124 [ 76808AABA9BB015E116E8796ABAC0C49 ] HDJMidi C:\Windows\system32\DRIVERS\HDJMidi.sys
13:26:42.0976 6124 HDJMidi ( UnsignedFile.Multi.Generic ) - warning
13:26:42.0976 6124 HDJMidi - detected UnsignedFile.Multi.Generic (1)
13:26:42.0992 6124 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:26:43.0012 6124 HidBatt - ok
13:26:43.0029 6124 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:26:43.0058 6124 HidBth - ok
13:26:43.0069 6124 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:26:43.0094 6124 HidIr - ok
13:26:43.0112 6124 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:26:43.0147 6124 hidserv - ok
13:26:43.0190 6124 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:26:43.0209 6124 HidUsb - ok
13:26:43.0231 6124 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:26:43.0279 6124 hkmsvc - ok
13:26:43.0306 6124 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:26:43.0334 6124 HomeGroupListener - ok
13:26:43.0355 6124 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:26:43.0382 6124 HomeGroupProvider - ok
13:26:43.0415 6124 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
13:26:43.0427 6124 HpSAMD - ok
13:26:43.0471 6124 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:26:43.0526 6124 HTTP - ok
13:26:43.0548 6124 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:26:43.0559 6124 hwpolicy - ok
13:26:43.0599 6124 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:26:43.0613 6124 i8042prt - ok
13:26:43.0640 6124 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:26:43.0660 6124 iaStorV - ok
13:26:43.0714 6124 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
13:26:43.0729 6124 IDriverT ( UnsignedFile.Multi.Generic ) - warning
13:26:43.0729 6124 IDriverT - detected UnsignedFile.Multi.Generic (1)
13:26:43.0758 6124 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:26:43.0783 6124 idsvc - ok
13:26:43.0800 6124 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:26:43.0813 6124 iirsp - ok
13:26:43.0835 6124 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
13:26:43.0887 6124 IKEEXT - ok
13:26:43.0966 6124 [ E8017F1662D9142F45CEAB694D013C00 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:26:44.0045 6124 IntcAzAudAddService - ok
13:26:44.0064 6124 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
13:26:44.0076 6124 intelide - ok
13:26:44.0097 6124 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:26:44.0116 6124 intelppm - ok
13:26:44.0135 6124 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:26:44.0182 6124 IPBusEnum - ok
13:26:44.0197 6124 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:26:44.0237 6124 IpFilterDriver - ok
13:26:44.0270 6124 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:26:44.0308 6124 iphlpsvc - ok
13:26:44.0326 6124 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
13:26:44.0351 6124 IPMIDRV - ok
13:26:44.0375 6124 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:26:44.0423 6124 IPNAT - ok
13:26:44.0488 6124 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:26:44.0514 6124 iPod Service - ok
13:26:44.0533 6124 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:26:44.0559 6124 IRENUM - ok
13:26:44.0583 6124 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:26:44.0595 6124 isapnp - ok
13:26:44.0626 6124 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
13:26:44.0642 6124 iScsiPrt - ok
13:26:44.0657 6124 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:26:44.0668 6124 kbdclass - ok
13:26:44.0690 6124 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:26:44.0712 6124 kbdhid - ok
13:26:44.0721 6124 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
13:26:44.0733 6124 KeyIso - ok
13:26:44.0764 6124 [ 07071C1E3CD8F0F9114AAC8B072CA1E5 ] KMWDFILTER C:\Windows\system32\DRIVERS\KMWDFILTER.sys
13:26:44.0773 6124 KMWDFILTER - ok
13:26:44.0806 6124 [ B3F33EAD5E5AD0704C4AE8D9CB2D4A2E ] KORGUMDS C:\Windows\system32\Drivers\KORGUM64.SYS
13:26:44.0816 6124 KORGUMDS - ok
13:26:44.0834 6124 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:26:44.0846 6124 KSecDD - ok
13:26:44.0873 6124 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:26:44.0887 6124 KSecPkg - ok
13:26:44.0896 6124 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:26:44.0936 6124 ksthunk - ok
13:26:44.0966 6124 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:26:45.0012 6124 KtmRm - ok
13:26:45.0043 6124 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:26:45.0092 6124 LanmanServer - ok
13:26:45.0114 6124 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:26:45.0158 6124 LanmanWorkstation - ok
13:26:45.0182 6124 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:26:45.0225 6124 lltdio - ok
13:26:45.0245 6124 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:26:45.0291 6124 lltdsvc - ok
13:26:45.0301 6124 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:26:45.0337 6124 lmhosts - ok
13:26:45.0359 6124 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:26:45.0372 6124 LSI_FC - ok
13:26:45.0387 6124 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:26:45.0400 6124 LSI_SAS - ok
13:26:45.0415 6124 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:26:45.0428 6124 LSI_SAS2 - ok
13:26:45.0439 6124 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:26:45.0453 6124 LSI_SCSI - ok
13:26:45.0458 6124 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:26:45.0506 6124 luafv - ok
13:26:45.0546 6124 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
13:26:45.0560 6124 LVRS64 - ok
13:26:45.0656 6124 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
13:26:45.0735 6124 LVUVC64 - ok
13:26:45.0778 6124 [ D33E2B74CF8B3A652BF0A9FBD068E87A ] ManyCam C:\Windows\system32\DRIVERS\ManyCam_x64.sys
13:26:45.0800 6124 ManyCam - ok
13:26:45.0850 6124 [ 8238E8824E68AB867205BCD664F76655 ] MAUSBFASTTRACKPRO C:\Windows\system32\DRIVERS\MAudioFastTrackPro.sys
13:26:45.0862 6124 MAUSBFASTTRACKPRO - ok
13:26:45.0888 6124 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:26:45.0914 6124 Mcx2Svc - ok
13:26:45.0924 6124 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:26:45.0937 6124 megasas - ok
13:26:45.0954 6124 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:26:45.0971 6124 MegaSR - ok
13:26:45.0993 6124 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:26:46.0043 6124 MMCSS - ok
13:26:46.0061 6124 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:26:46.0095 6124 Modem - ok
13:26:46.0116 6124 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:26:46.0142 6124 monitor - ok
13:26:46.0156 6124 motmodem - ok
13:26:46.0178 6124 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:26:46.0189 6124 mouclass - ok
13:26:46.0205 6124 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:26:46.0225 6124 mouhid - ok
13:26:46.0242 6124 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:26:46.0254 6124 mountmgr - ok
13:26:46.0318 6124 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:26:46.0329 6124 MozillaMaintenance - ok
13:26:46.0339 6124 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
13:26:46.0353 6124 mpio - ok
13:26:46.0362 6124 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:26:46.0396 6124 mpsdrv - ok
13:26:46.0443 6124 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
13:26:46.0484 6124 MpsSvc - ok
13:26:46.0514 6124 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:26:46.0544 6124 MRxDAV - ok
13:26:46.0563 6124 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:26:46.0582 6124 mrxsmb - ok
13:26:46.0606 6124 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:26:46.0631 6124 mrxsmb10 - ok
13:26:46.0649 6124 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:26:46.0676 6124 mrxsmb20 - ok
13:26:46.0694 6124 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
13:26:46.0706 6124 msahci - ok
13:26:46.0731 6124 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:26:46.0745 6124 msdsm - ok
13:26:46.0755 6124 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:26:46.0779 6124 MSDTC - ok
13:26:46.0801 6124 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:26:46.0836 6124 Msfs - ok
13:26:46.0845 6124 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:26:46.0879 6124 mshidkmdf - ok
13:26:46.0895 6124 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:26:46.0906 6124 msisadrv - ok
13:26:46.0931 6124 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:26:46.0981 6124 MSiSCSI - ok
13:26:46.0986 6124 msiserver - ok
13:26:47.0003 6124 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:26:47.0037 6124 MSKSSRV - ok
13:26:47.0056 6124 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:26:47.0090 6124 MSPCLOCK - ok
13:26:47.0101 6124 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:26:47.0143 6124 MSPQM - ok
13:26:47.0172 6124 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:26:47.0189 6124 MsRPC - ok
13:26:47.0200 6124 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
13:26:47.0211 6124 mssmbios - ok
13:26:47.0219 6124 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:26:47.0264 6124 MSTEE - ok
13:26:47.0274 6124 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:26:47.0298 6124 MTConfig - ok
13:26:47.0343 6124 [ 03B7145C889603537E9FFEABB1AD1089 ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
13:26:47.0365 6124 MTsensor - ok
13:26:47.0383 6124 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:26:47.0400 6124 Mup - ok
13:26:47.0452 6124 [ A830E59F98827943686E90BF79FC96FA ] NanoServiceMain C:\Program Files (x86)\Panda Security\Panda Cloud Antivirus\PSANHost.exe
13:26:47.0466 6124 NanoServiceMain - ok
13:26:47.0499 6124 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
13:26:47.0561 6124 napagent - ok
13:26:47.0587 6124 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:26:47.0614 6124 NativeWifiP - ok
13:26:47.0662 6124 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:26:47.0691 6124 NDIS - ok
13:26:47.0713 6124 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:26:47.0754 6124 NdisCap - ok
13:26:47.0770 6124 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:26:47.0815 6124 NdisTapi - ok
13:26:47.0834 6124 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:26:47.0876 6124 Ndisuio - ok
13:26:47.0901 6124 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:26:47.0946 6124 NdisWan - ok
13:26:47.0957 6124 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:26:48.0002 6124 NDProxy - ok
13:26:48.0016 6124 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:26:48.0063 6124 NetBIOS - ok
13:26:48.0090 6124 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:26:48.0146 6124 NetBT - ok
13:26:48.0163 6124 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
13:26:48.0175 6124 Netlogon - ok
13:26:48.0214 6124 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:26:48.0263 6124 Netman - ok
13:26:48.0305 6124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:26:48.0347 6124 NetMsmqActivator - ok
13:26:48.0351 6124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:26:48.0361 6124 NetPipeActivator - ok
13:26:48.0375 6124 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:26:48.0416 6124 netprofm - ok
13:26:48.0421 6124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:26:48.0431 6124 NetTcpActivator - ok
13:26:48.0435 6124 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:26:48.0444 6124 NetTcpPortSharing - ok
13:26:48.0461 6124 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:26:48.0473 6124 nfrd960 - ok
13:26:48.0638 6124 [ 93F304DEB07095BCF33BD1C17C2DB2A7 ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
13:26:48.0796 6124 NIHardwareService - ok
13:26:48.0824 6124 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:26:48.0871 6124 NlaSvc - ok
13:26:48.0889 6124 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:26:48.0932 6124 Npfs - ok
13:26:48.0949 6124 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:26:48.0984 6124 nsi - ok
13:26:48.0996 6124 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:26:49.0030 6124 nsiproxy - ok
13:26:49.0071 6124 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:26:49.0117 6124 Ntfs - ok
13:26:49.0154 6124 nTuneService - ok
13:26:49.0163 6124 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:26:49.0197 6124 Null - ok
13:26:49.0456 6124 [ BA0B4889C40380A01ECDF84C227A89C9 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:26:49.0665 6124 nvlddmkm - ok
13:26:49.0686 6124 [ 19E532E5348EC5B3CFCFE2A9F3B3643D ] NvnUsbAudio C:\Windows\system32\DRIVERS\nvnusbaudio.sys
13:26:49.0704 6124 NvnUsbAudio - ok
13:26:49.0731 6124 [ 241A095631570A9CEF4F126C87605C60 ] NVR0Dev C:\Windows\nvoclk64.sys
13:26:49.0740 6124 NVR0Dev - ok
13:26:49.0771 6124 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:26:49.0785 6124 nvraid - ok
13:26:49.0812 6124 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:26:49.0826 6124 nvstor - ok
13:26:49.0877 6124 [ 06633CF95BEA62164C3BFCA24BCE6B11 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:26:49.0899 6124 nvsvc - ok
13:26:49.0932 6124 [ 53B629CE436B110C5689C2F6439E567B ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
13:26:49.0965 6124 nvUpdatusService - ok
13:26:49.0993 6124 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:26:50.0007 6124 nv_agp - ok
13:26:50.0032 6124 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
13:26:50.0046 6124 ohci1394 - ok
13:26:50.0060 6124 [ 0E2DE427EBE106E7E5B52869D5C99F68 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
13:26:50.0072 6124 ossrv - ok
13:26:50.0091 6124 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:26:50.0114 6124 p2pimsvc - ok
13:26:50.0132 6124 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:26:50.0157 6124 p2psvc - ok
13:26:50.0189 6124 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:26:50.0203 6124 Parport - ok
13:26:50.0231 6124 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:26:50.0243 6124 partmgr - ok
13:26:50.0252 6124 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:26:50.0278 6124 PcaSvc - ok
13:26:50.0298 6124 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
13:26:50.0312 6124 pci - ok
13:26:50.0319 6124 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
13:26:50.0330 6124 pciide - ok
13:26:50.0344 6124 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:26:50.0360 6124 pcmcia - ok
13:26:50.0369 6124 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:26:50.0381 6124 pcw - ok
13:26:50.0398 6124 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:26:50.0451 6124 PEAUTH - ok
13:26:50.0480 6124 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
13:26:50.0519 6124 PeerDistSvc - ok
13:26:50.0575 6124 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:26:50.0603 6124 PerfHost - ok
13:26:50.0650 6124 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
13:26:50.0717 6124 pla - ok
13:26:50.0755 6124 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:26:50.0783 6124 PlugPlay - ok
13:26:50.0799 6124 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:26:50.0819 6124 PNRPAutoReg - ok
13:26:50.0833 6124 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:26:50.0849 6124 PNRPsvc - ok
13:26:50.0869 6124 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:26:50.0910 6124 PolicyAgent - ok
13:26:50.0956 6124 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:26:51.0014 6124 Power - ok
13:26:51.0049 6124 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:26:51.0088 6124 PptpMiniport - ok
13:26:51.0102 6124 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:26:51.0124 6124 Processor - ok
13:26:51.0149 6124 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
13:26:51.0176 6124 ProfSvc - ok
13:26:51.0188 6124 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:26:51.0200 6124 ProtectedStorage - ok
13:26:51.0228 6124 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:26:51.0270 6124 Psched - ok
13:26:51.0309 6124 [ BF6B640239BE2C28A6BB43ADC658FB7F ] PSINAflt C:\Windows\system32\DRIVERS\PSINAflt.sys
13:26:51.0319 6124 PSINAflt - ok
13:26:51.0362 6124 [ 2377F49C39725ED0021D75136FB0F746 ] PSINFile C:\Windows\system32\DRIVERS\PSINFile.sys
13:26:51.0371 6124 PSINFile - ok
13:26:51.0385 6124 [ A90F546B4F49122115768BC94BC81C04 ] PSINKNC C:\Windows\system32\DRIVERS\psinknc.sys
13:26:51.0395 6124 PSINKNC - ok
13:26:51.0414 6124 [ F8D7465CDD2A4ECAE761BA8A0577D151 ] PSINProc C:\Windows\system32\DRIVERS\PSINProc.sys
13:26:51.0423 6124 PSINProc - ok
13:26:51.0439 6124 [ 076254556B4B03ADE385619FF33E2F6B ] PSINProt C:\Windows\system32\DRIVERS\PSINProt.sys
13:26:51.0448 6124 PSINProt - ok
13:26:51.0489 6124 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:26:51.0533 6124 ql2300 - ok
13:26:51.0546 6124 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:26:51.0560 6124 ql40xx - ok
13:26:51.0582 6124 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:26:51.0602 6124 QWAVE - ok
13:26:51.0609 6124 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:26:51.0632 6124 QWAVEdrv - ok
13:26:51.0758 6124 [ 138F7963118EC710C348819C08F72230 ] Radio.fx E:\Tobit Radio.fx\Server\rfx-server.exe
13:26:51.0866 6124 Radio.fx - ok
13:26:51.0882 6124 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:26:51.0924 6124 RasAcd - ok
13:26:51.0950 6124 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:26:51.0989 6124 RasAgileVpn - ok
13:26:52.0008 6124 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:26:52.0053 6124 RasAuto - ok
13:26:52.0081 6124 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:26:52.0125 6124 Rasl2tp - ok
13:26:52.0157 6124 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
13:26:52.0196 6124 RasMan - ok
13:26:52.0214 6124 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:26:52.0261 6124 RasPppoe - ok
13:26:52.0282 6124 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:26:52.0325 6124 RasSstp - ok
13:26:52.0347 6124 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:26:52.0391 6124 rdbss - ok
13:26:52.0402 6124 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:26:52.0429 6124 rdpbus - ok
13:26:52.0443 6124 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:26:52.0483 6124 RDPCDD - ok
13:26:52.0507 6124 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
13:26:52.0533 6124 RDPDR - ok
13:26:52.0549 6124 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:26:52.0583 6124 RDPENCDD - ok
13:26:52.0591 6124 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:26:52.0631 6124 RDPREFMP - ok
13:26:52.0687 6124 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:26:52.0719 6124 RdpVideoMiniport - ok
13:26:52.0747 6124 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:26:52.0771 6124 RDPWD - ok
13:26:52.0798 6124 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:26:52.0813 6124 rdyboost - ok
13:26:52.0839 6124 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:26:52.0882 6124 RemoteAccess - ok
13:26:52.0910 6124 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:26:52.0953 6124 RemoteRegistry - ok
13:26:52.0966 6124 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:26:53.0013 6124 RpcEptMapper - ok
13:26:53.0033 6124 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:26:53.0054 6124 RpcLocator - ok
13:26:53.0084 6124 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
13:26:53.0122 6124 RpcSs - ok
13:26:53.0130 6124 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:26:53.0171 6124 rspndr - ok
13:26:53.0211 6124 [ 16D4E350420BAA7E63E16E3FC033E1F5 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
13:26:53.0227 6124 RTL8167 - ok
13:26:53.0248 6124 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
13:26:53.0275 6124 s3cap - ok
13:26:53.0287 6124 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
13:26:53.0302 6124 SamSs - ok
13:26:53.0358 6124 [ 5EFBBFCC6ADAC121C8E2FE76641ED329 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010.SP3\WNt500x64\Sandra.sys
13:26:53.0371 6124 SANDRA - ok
13:26:53.0387 6124 [ D307353C423C75D4A7EF5B25B43684DA ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2010.SP3\RpcAgentSrv.exe
13:26:53.0408 6124 SandraAgentSrv ( UnsignedFile.Multi.Generic ) - warning
13:26:53.0408 6124 SandraAgentSrv - detected UnsignedFile.Multi.Generic (1)
13:26:53.0459 6124 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
13:26:53.0471 6124 SASDIFSV - ok
13:26:53.0498 6124 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
13:26:53.0508 6124 SASKUTIL - ok
13:26:53.0530 6124 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:26:53.0549 6124 sbp2port - ok
13:26:53.0579 6124 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:26:53.0638 6124 SCardSvr - ok
13:26:53.0660 6124 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:26:53.0694 6124 scfilter - ok
13:26:53.0732 6124 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
13:26:53.0789 6124 Schedule - ok
13:26:53.0814 6124 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:26:53.0847 6124 SCPolicySvc - ok
13:26:53.0870 6124 [ 8B56BDCE6A303DDE63D63440D1CF9AD1 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
13:26:53.0879 6124 ScreamBAudioSvc - ok
13:26:53.0902 6124 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:26:53.0922 6124 SDRSVC - ok
13:26:53.0949 6124 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:26:53.0991 6124 secdrv - ok
13:26:54.0016 6124 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
13:26:54.0051 6124 seclogon - ok
13:26:54.0065 6124 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:26:54.0103 6124 SENS - ok
13:26:54.0112 6124 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:26:54.0134 6124 SensrSvc - ok
13:26:54.0150 6124 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:26:54.0176 6124 Serenum - ok
13:26:54.0189 6124 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:26:54.0208 6124 Serial - ok
13:26:54.0229 6124 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:26:54.0242 6124 sermouse - ok
13:26:54.0270 6124 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
13:26:54.0305 6124 SessionEnv - ok
13:26:54.0327 6124 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:26:54.0349 6124 sffdisk - ok
13:26:54.0358 6124 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:26:54.0371 6124 sffp_mmc - ok
13:26:54.0387 6124 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:26:54.0408 6124 sffp_sd - ok
13:26:54.0431 6124 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:26:54.0444 6124 sfloppy - ok
13:26:54.0475 6124 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:26:54.0514 6124 SharedAccess - ok
13:26:54.0539 6124 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:26:54.0586 6124 ShellHWDetection - ok
13:26:54.0600 6124 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:26:54.0612 6124 SiSRaid2 - ok
13:26:54.0620 6124 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:26:54.0633 6124 SiSRaid4 - ok
13:26:54.0691 6124 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:26:54.0702 6124 SkypeUpdate - ok
13:26:54.0723 6124 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:26:54.0763 6124 Smb - ok
13:26:54.0795 6124 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:26:54.0810 6124 SNMPTRAP - ok
13:26:54.0820 6124 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:26:54.0830 6124 spldr - ok
13:26:54.0861 6124 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
13:26:54.0882 6124 Spooler - ok
13:26:54.0955 6124 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
13:26:55.0034 6124 sppsvc - ok
13:26:55.0048 6124 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:26:55.0085 6124 sppuinotify - ok
13:26:55.0122 6124 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\System32\Drivers\sptd.sys
13:26:55.0146 6124 sptd - ok
13:26:55.0169 6124 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
13:26:55.0200 6124 srv - ok
13:26:55.0227 6124 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:26:55.0253 6124 srv2 - ok
13:26:55.0267 6124 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:26:55.0290 6124 srvnet - ok
13:26:55.0311 6124 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:26:55.0359 6124 SSDPSRV - ok
13:26:55.0373 6124 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:26:55.0409 6124 SstpSvc - ok
13:26:55.0445 6124 Steam Client Service - ok
13:26:55.0465 6124 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:26:55.0477 6124 stexstor - ok
13:26:55.0517 6124 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
13:26:55.0557 6124 stisvc - ok
13:26:55.0581 6124 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
13:26:55.0592 6124 storflt - ok
13:26:55.0603 6124 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
13:26:55.0627 6124 StorSvc - ok
13:26:55.0636 6124 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
13:26:55.0648 6124 storvsc - ok
13:26:55.0673 6124 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
13:26:55.0683 6124 swenum - ok
13:26:55.0707 6124 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:26:55.0757 6124 swprv - ok
13:26:55.0786 6124 [ 512231BA47975F3F1A67B11F271BB49D ] SynasUSB C:\Windows\system32\drivers\SynUSB64.sys
13:26:55.0796 6124 SynasUSB - ok
13:26:55.0800 6124 Synth3dVsc - ok
13:26:55.0842 6124 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
13:26:55.0888 6124 SysMain - ok
13:26:55.0917 6124 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:26:55.0943 6124 TabletInputService - ok
13:26:55.0977 6124 [ 024ADC7F69D1776D72CC5D031B41CE4F ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
13:26:55.0992 6124 tap0901 - ok
13:26:56.0034 6124 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
13:26:56.0044 6124 taphss - ok
13:26:56.0072 6124 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:26:56.0123 6124 TapiSrv - ok
13:26:56.0167 6124 [ 927D0CDB3F96EFC1E98FB1A2C9FB67AD ] tapoas C:\Windows\system32\DRIVERS\tapoas.sys
13:26:56.0189 6124 tapoas - ok
13:26:56.0203 6124 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:26:56.0238 6124 TBS - ok
13:26:56.0289 6124 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:26:56.0349 6124 Tcpip - ok
13:26:56.0378 6124 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:26:56.0415 6124 TCPIP6 - ok
13:26:56.0443 6124 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:26:56.0484 6124 tcpipreg - ok
13:26:56.0502 6124 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:26:56.0527 6124 TDPIPE - ok
13:26:56.0543 6124 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:26:56.0562 6124 TDTCP - ok
13:26:56.0581 6124 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:26:56.0623 6124 tdx - ok
13:26:56.0711 6124 [ DE09282B3ABEF632917EBEDC4DCDFB56 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
13:26:56.0762 6124 TeamViewer7 - ok
13:26:56.0787 6124 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
13:26:56.0798 6124 TermDD - ok
13:26:56.0828 6124 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
13:26:56.0878 6124 TermService - ok
13:26:56.0895 6124 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:26:56.0917 6124 Themes - ok
13:26:56.0934 6124 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:26:56.0969 6124 THREADORDER - ok
13:26:57.0028 6124 [ C676B0F52F2B6483AFB88F79CABB011E ] Tpkd C:\Windows\system32\drivers\Tpkd.sys
13:26:57.0038 6124 Tpkd - ok
13:26:57.0050 6124 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:26:57.0099 6124 TrkWks - ok
13:26:57.0145 6124 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:26:57.0184 6124 TrustedInstaller - ok
13:26:57.0213 6124 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:26:57.0255 6124 tssecsrv - ok
13:26:57.0274 6124 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
13:26:57.0296 6124 TsUsbFlt - ok
13:26:57.0299 6124 tsusbhub - ok
13:26:57.0333 6124 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:26:57.0375 6124 tunnel - ok
13:26:57.0399 6124 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:26:57.0412 6124 uagp35 - ok
13:26:57.0440 6124 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:26:57.0478 6124 udfs - ok
13:26:57.0494 6124 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:26:57.0509 6124 UI0Detect - ok
13:26:57.0518 6124 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:26:57.0530 6124 uliagpkx - ok
13:26:57.0567 6124 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
13:26:57.0587 6124 umbus - ok
13:26:57.0602 6124 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:26:57.0625 6124 UmPass - ok
13:26:57.0650 6124 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
13:26:57.0675 6124 UmRdpService - ok
13:26:57.0740 6124 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
13:26:57.0763 6124 UMVPFSrv - ok
13:26:57.0789 6124 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:26:57.0830 6124 upnphost - ok
13:26:57.0855 6124 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:26:57.0866 6124 USBAAPL64 - ok
13:26:57.0895 6124 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
13:26:57.0922 6124 usbaudio - ok
13:26:57.0949 6124 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:26:57.0971 6124 usbccgp - ok
13:26:58.0005 6124 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:26:58.0031 6124 usbcir - ok
13:26:58.0051 6124 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:26:58.0074 6124 usbehci - ok
13:26:58.0090 6124 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:26:58.0116 6124 usbhub - ok
13:26:58.0130 6124 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:26:58.0143 6124 usbohci - ok
13:26:58.0173 6124 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:26:58.0188 6124 usbprint - ok
13:26:58.0211 6124 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:26:58.0230 6124 USBSTOR - ok
13:26:58.0242 6124 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:26:58.0264 6124 usbuhci - ok
13:26:58.0295 6124 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:26:58.0320 6124 usbvideo - ok
13:26:58.0343 6124 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:26:58.0388 6124 UxSms - ok
13:26:58.0404 6124 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
13:26:58.0417 6124 VaultSvc - ok
13:26:58.0435 6124 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
13:26:58.0446 6124 vdrvroot - ok
13:26:58.0474 6124 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
13:26:58.0526 6124 vds - ok
13:26:58.0552 6124 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:26:58.0568 6124 vga - ok
13:26:58.0577 6124 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:26:58.0620 6124 VgaSave - ok
13:26:58.0623 6124 VGPU - ok
13:26:58.0667 6124 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
13:26:58.0689 6124 vhdmp - ok
13:26:58.0712 6124 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
13:26:58.0725 6124 viaide - ok
13:26:58.0749 6124 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
13:26:58.0764 6124 vmbus - ok
13:26:58.0776 6124 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
13:26:58.0796 6124 VMBusHID - ok
13:26:58.0813 6124 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:26:58.0825 6124 volmgr - ok
13:26:58.0854 6124 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:26:58.0871 6124 volmgrx - ok
13:26:58.0886 6124 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:26:58.0903 6124 volsnap - ok
13:26:58.0920 6124 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:26:58.0935 6124 vsmraid - ok
13:26:58.0984 6124 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
13:26:59.0052 6124 VSS - ok
13:26:59.0073 6124 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
13:26:59.0089 6124 vwifibus - ok
13:26:59.0115 6124 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:26:59.0168 6124 W32Time - ok
13:26:59.0180 6124 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:26:59.0194 6124 WacomPen - ok
13:26:59.0215 6124 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:26:59.0249 6124 WANARP - ok
13:26:59.0260 6124 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:26:59.0293 6124 Wanarpv6 - ok
13:26:59.0349 6124 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:26:59.0386 6124 WatAdminSvc - ok
13:26:59.0431 6124 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
13:26:59.0478 6124 wbengine - ok
13:26:59.0491 6124 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:26:59.0520 6124 WbioSrvc - ok
13:26:59.0549 6124 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:26:59.0584 6124 wcncsvc - ok
13:26:59.0600 6124 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:26:59.0621 6124 WcsPlugInService - ok
13:26:59.0637 6124 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:26:59.0649 6124 Wd - ok
13:26:59.0674 6124 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:26:59.0699 6124 Wdf01000 - ok
13:26:59.0711 6124 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:26:59.0737 6124 WdiServiceHost - ok
13:26:59.0741 6124 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:26:59.0761 6124 WdiSystemHost - ok
13:26:59.0780 6124 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
13:26:59.0804 6124 WebClient - ok
13:26:59.0818 6124 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:26:59.0869 6124 Wecsvc - ok
13:26:59.0885 6124 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:26:59.0934 6124 wercplsupport - ok
13:26:59.0951 6124 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:26:59.0990 6124 WerSvc - ok
13:27:00.0011 6124 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:27:00.0055 6124 WfpLwf - ok
13:27:00.0066 6124 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:27:00.0079 6124 WIMMount - ok
13:27:00.0098 6124 WinDefend - ok
13:27:00.0111 6124 WinHttpAutoProxySvc - ok
13:27:00.0154 6124 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:27:00.0197 6124 Winmgmt - ok
13:27:00.0244 6124 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
13:27:00.0328 6124 WinRM - ok
13:27:00.0361 6124 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:27:00.0390 6124 WinUsb - ok
13:27:00.0422 6124 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:27:00.0462 6124 Wlansvc - ok
13:27:00.0567 6124 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:27:00.0638 6124 wlidsvc - ok
13:27:00.0660 6124 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
13:27:00.0672 6124 WmiAcpi - ok
13:27:00.0691 6124 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:27:00.0721 6124 wmiApSrv - ok
13:27:00.0742 6124 WMPNetworkSvc - ok
13:27:00.0764 6124 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:27:00.0779 6124 WPCSvc - ok
13:27:00.0800 6124 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:27:00.0816 6124 WPDBusEnum - ok
13:27:00.0837 6124 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:27:00.0871 6124 ws2ifsl - ok
13:27:00.0879 6124 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
13:27:00.0910 6124 wscsvc - ok
13:27:00.0914 6124 WSearch - ok
13:27:00.0977 6124 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:27:01.0023 6124 wuauserv - ok
13:27:01.0039 6124 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:27:01.0074 6124 WudfPf - ok
13:27:01.0110 6124 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:27:01.0187 6124 WUDFRd - ok
13:27:01.0227 6124 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:27:01.0261 6124 wudfsvc - ok
13:27:01.0277 6124 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:27:01.0307 6124 WwanSvc - ok
13:27:01.0346 6124 X6va006 - ok
13:27:01.0383 6124 [ 7DD7A0AF2D8BAF809B47D67900945A54 ] XONE_2D C:\Windows\system32\Drivers\XONE_2D.sys
13:27:01.0398 6124 XONE_2D - ok
13:27:01.0413 6124 [ F71826073DEB4DB39647E87E277B70C7 ] XONE_2DM C:\Windows\system32\drivers\XONE_2dm.sys
13:27:01.0421 6124 XONE_2DM - ok
13:27:01.0436 6124 [ 93A90E2608A7D5A355895276BC3A0A75 ] XONE_2D_WDM C:\Windows\system32\drivers\XONE_2DW.sys
13:27:01.0444 6124 XONE_2D_WDM - ok
13:27:01.0479 6124 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
13:27:01.0496 6124 xusb21 - ok
13:27:01.0530 6124 ================ Scan global ===============================
13:27:01.0542 6124 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:27:01.0568 6124 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:27:01.0577 6124 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
13:27:01.0596 6124 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:27:01.0620 6124 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:27:01.0624 6124 [Global] - ok
13:27:01.0625 6124 ================ Scan MBR ==================================
13:27:01.0635 6124 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
13:27:01.0888 6124 \Device\Harddisk0\DR0 - ok
13:27:01.0892 6124 [ 84EC7EA34AF44C83E152105B37E7E6A7 ] \Device\Harddisk1\DR1
13:27:02.0306 6124 \Device\Harddisk1\DR1 - ok
13:27:02.0307 6124 ================ Scan VBR ==================================
13:27:02.0310 6124 [ 9E348423B2DF916FFCCE28267955C864 ] \Device\Harddisk0\DR0\Partition1
13:27:02.0312 6124 \Device\Harddisk0\DR0\Partition1 - ok
13:27:02.0322 6124 [ 1CC340021B83B45ACE95EC66D8E202CC ] \Device\Harddisk0\DR0\Partition2
13:27:02.0324 6124 \Device\Harddisk0\DR0\Partition2 - ok
13:27:02.0333 6124 [ 488963E587232C85132CFF0889734E1E ] \Device\Harddisk0\DR0\Partition3
13:27:02.0335 6124 \Device\Harddisk0\DR0\Partition3 - ok
13:27:02.0336 6124 ============================================================
13:27:02.0336 6124 Scan finished
13:27:02.0336 6124 ============================================================
13:27:02.0348 5164 Detected object count: 5
13:27:02.0348 5164 Actual detected object count: 5
13:29:27.0210 5164 Bulk ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:27.0210 5164 Bulk ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:27.0212 5164 HDJAsioK ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:27.0212 5164 HDJAsioK ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:27.0214 5164 HDJMidi ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:27.0214 5164 HDJMidi ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:27.0216 5164 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:27.0216 5164 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:29:27.0218 5164 SandraAgentSrv ( UnsignedFile.Multi.Generic ) - skipped by user
13:29:27.0218 5164 SandraAgentSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
01.10.2012, 11:41
| #30 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Panda findet Hupigon.AZG und Trj/CI.A in diversen Dateien |
| aktiviere, anleitung, anti, antivirus, center, dateien, dauernd, deaktivieren, deaktiviert, diverse, diverser, eingabeaufforderung, erledigt, euren, firefox, lahm, lahmt, panda, plötzlich, programm, schei, security, system, trj/ci.a, virus, windows |
Linear-Darstellung
