Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe

TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe


Plagegeister aller Art und deren Bekämpfung: TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 27.10.2012, 14:47   #3
Ritter84
 
TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe - Standard

TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe


Hallo Matthias!

Danke für die Hilfe! Hier meine Logs:

OTL Logfile:
Code:
ATTFilter
OTL logfile created on: 27.10.2012 15:13:25 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\NAME\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,90 Gb Total Physical Memory | 2,67 Gb Available Physical Memory | 68,43% Memory free
7,79 Gb Paging File | 6,45 Gb Available in Paging File | 82,72% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 246,99 Gb Total Space | 199,93 Gb Free Space | 80,95% Space Free | Partition Type: NTFS
Drive D: | 50,00 Gb Total Space | 29,20 Gb Free Space | 58,40% Space Free | Partition Type: NTFS
Drive I: | 7,45 Gb Total Space | 6,91 Gb Free Space | 92,80% Space Free | Partition Type: FAT32
 
Computer Name: NAME | User Name: Name2 | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
ActiveX:64bit: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX:64bit: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX:64bit: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX:64bit: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX:64bit: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX:64bit: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX:64bit: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX:64bit: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX:64bit: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX:64bit: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX:64bit: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX:64bit: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX:64bit: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX:64bit: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX:64bit: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX:64bit: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX:64bit: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX:64bit: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX:64bit: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX:64bit: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX:64bit: {FEBEF00C-046D-438D-8A88-BF94A6C9E703} - .NET Framework
ActiveX:64bit: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX:64bit: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX:64bit: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {25FFAAD0-F4A3-4164-95FF-4461E9F35D51} - .NET Framework
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles(x86)%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Webordner
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: {F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4} - .NET Framework
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\SysWOW64\rundll32.exe" "C:\Windows\SysWOW64\iedkcs32.dll",BrandIEActiveSetup SIGNUP
 
 
MsConfig:64bit - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk -  - File not found
MsConfig:64bit - StartUpReg: Adobe ARM - hkey= - key= - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
MsConfig:64bit - StartUpReg: ApnUpdater - hkey= - key= - C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
MsConfig:64bit - StartUpReg: BTMTrayAgent - hkey= - key= - C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
MsConfig:64bit - StartUpReg: CLMLServer - hkey= - key= - C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
MsConfig:64bit - StartUpReg: Dolby Advanced Audio v2 - hkey= - key= - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe (Dolby Laboratories Inc.)
MsConfig:64bit - StartUpReg: HotKeysCmds - hkey= - key= - C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
MsConfig:64bit - StartUpReg: IAStorIcon - hkey= - key= - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
MsConfig:64bit - StartUpReg: IgfxTray - hkey= - key= - C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
MsConfig:64bit - StartUpReg: Persistence - hkey= - key= - C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
MsConfig:64bit - StartUpReg: SynTPEnh - hkey= - key= - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated)
MsConfig:64bit - StartUpReg: USB3MON - hkey= - key= - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
MsConfig:64bit - State: "startup" - Reg Error: Key error.
 
Drivers32:64bit: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3acm - C:\Windows\SysWOW64\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3codecp - C:\Windows\SysWow64\l3codecp.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\SysWow64\iccvid.dll (Radius Inc.)
 
SafeBootMin:64bit: AppMgmt - Service
SafeBootMin:64bit: Base - Driver Group
SafeBootMin:64bit: Boot Bus Extender - Driver Group
SafeBootMin:64bit: Boot file system - Driver Group
SafeBootMin:64bit: File system - Driver Group
SafeBootMin:64bit: Filter - Driver Group
SafeBootMin:64bit: HelpSvc - Service
SafeBootMin:64bit: PCI Configuration - Driver Group
SafeBootMin:64bit: PNP Filter - Driver Group
SafeBootMin:64bit: Primary disk - Driver Group
SafeBootMin:64bit: sacsvr - Service
SafeBootMin:64bit: SCSI Class - Driver Group
SafeBootMin:64bit: System Bus Extender - Driver Group
SafeBootMin:64bit: vmms - Service
SafeBootMin:64bit: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootMin:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
SafeBootNet:64bit: AppMgmt - Service
SafeBootNet:64bit: Base - Driver Group
SafeBootNet:64bit: Boot Bus Extender - Driver Group
SafeBootNet:64bit: Boot file system - Driver Group
SafeBootNet:64bit: File system - Driver Group
SafeBootNet:64bit: Filter - Driver Group
SafeBootNet:64bit: HelpSvc - Service
SafeBootNet:64bit: Messenger - Service
SafeBootNet:64bit: NDIS Wrapper - Driver Group
SafeBootNet:64bit: NetBIOSGroup - Driver Group
SafeBootNet:64bit: NetDDEGroup - Driver Group
SafeBootNet:64bit: Network - Driver Group
SafeBootNet:64bit: NetworkProvider - Driver Group
SafeBootNet:64bit: PCI Configuration - Driver Group
SafeBootNet:64bit: PNP Filter - Driver Group
SafeBootNet:64bit: PNP_TDI - Driver Group
SafeBootNet:64bit: Primary disk - Driver Group
SafeBootNet:64bit: rdsessmgr - Service
SafeBootNet:64bit: sacsvr - Service
SafeBootNet:64bit: SCSI Class - Driver Group
SafeBootNet:64bit: Streams Drivers - Driver Group
SafeBootNet:64bit: System Bus Extender - Driver Group
SafeBootNet:64bit: TDI - Driver Group
SafeBootNet:64bit: vmms - Service
SafeBootNet:64bit: WinDefend - C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SafeBootNet:64bit: WudfUsbccidDriver - Driver
SafeBootNet:64bit: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:64bit: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:64bit: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:64bit: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:64bit: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:64bit: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:64bit: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:64bit: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:64bit: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:64bit: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:64bit: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:64bit: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:64bit: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:64bit: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:64bit: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:64bit: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:64bit: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:64bit: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:64bit: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:64bit: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:64bit: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:64bit: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point
 
========== Custom Scans ==========
 
< C:\Users\NAME\AppData\Roaming /S >

< End of report >
--- --- ---

aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-27 15:19:32
-----------------------------
15:19:32.551 OS Version: Windows x64 6.1.7601 Service Pack 1
15:19:32.551 Number of processors: 2 586 0x2A07
15:19:32.552 ComputerName: Name UserName: Name2
15:19:33.710 Initialize success
15:22:11.526 AVAST engine defs: 12102700
15:24:44.662 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
15:24:44.667 Disk 0 Vendor: ST320LM0 2AJ1 Size: 305245MB BusType: 3
15:24:44.684 Disk 0 MBR read successfully
15:24:44.687 Disk 0 MBR scan
15:24:44.718 Disk 0 unknown MBR code
15:24:44.736 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
15:24:44.758 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 252919 MB offset 206848
15:24:44.787 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 51200 MB offset 518184960
15:24:44.855 Disk 0 Partition 4 00 12 Compaq diag NTFS 1024 MB offset 623042560
15:24:44.929 Disk 0 scanning C:\Windows\system32\drivers
15:24:57.112 Service scanning
15:25:25.238 Modules scanning
15:25:25.256 Disk 0 trace - called modules:
15:25:25.281 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
15:25:25.286 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80046326f0]
15:25:25.291 3 CLASSPNP.SYS[fffff880015ce43f] -> nt!IofCallDriver -> [0xfffffa80045f8420]
15:25:25.297 5 ACPI.sys[fffff88000f817a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80045fb050]
15:25:26.024 AVAST engine scan C:\Windows
15:25:28.811 AVAST engine scan C:\Windows\system32
15:29:52.056 AVAST engine scan C:\Windows\system32\drivers
15:30:09.018 AVAST engine scan C:\Users\Name2
15:31:02.441 AVAST engine scan C:\ProgramData
15:32:20.776 Scan finished successfully
15:38:05.097 Disk 0 MBR has been saved successfully to "C:\Users\Name\Desktop\MBR.dat"
15:38:05.105 The log file has been saved successfully to "C:\Users\Name\Desktop\aswMBR.txt"


15:40:00.0026 0560 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
15:40:00.0404 0560 ============================================================
15:40:00.0404 0560 Current date / time: 2012/10/27 15:40:00.0404
15:40:00.0404 0560 SystemInfo:
15:40:00.0404 0560
15:40:00.0404 0560 OS Version: 6.1.7601 ServicePack: 1.0
15:40:00.0404 0560 Product type: Workstation
15:40:00.0405 0560 ComputerName: Name
15:40:00.0405 0560 UserName: Name2
15:40:00.0405 0560 Windows directory: C:\Windows
15:40:00.0405 0560 System windows directory: C:\Windows
15:40:00.0405 0560 Running under WOW64
15:40:00.0405 0560 Processor architecture: Intel x64
15:40:00.0405 0560 Number of processors: 2
15:40:00.0405 0560 Page size: 0x1000
15:40:00.0405 0560 Boot type: Normal boot
15:40:00.0405 0560 ============================================================
15:40:01.0186 0560 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:40:01.0192 0560 Drive \Device\Harddisk1\DR1 - Size: 0x1DD180000 (7.45 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:40:01.0273 0560 ============================================================
15:40:01.0273 0560 \Device\Harddisk0\DR0:
15:40:01.0273 0560 MBR partitions:
15:40:01.0273 0560 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:40:01.0273 0560 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1EDFB800
15:40:01.0273 0560 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1EE2E000, BlocksNum 0x6400000
15:40:01.0273 0560 \Device\Harddisk1\DR1:
15:40:01.0274 0560 MBR partitions:
15:40:01.0274 0560 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xEE8BE0
15:40:01.0274 0560 ============================================================
15:40:01.0324 0560 C: <-> \Device\Harddisk0\DR0\Partition2
15:40:01.0366 0560 D: <-> \Device\Harddisk0\DR0\Partition3
15:40:01.0366 0560 ============================================================
15:40:01.0366 0560 Initialize success
15:40:01.0366 0560 ============================================================
15:40:08.0538 1596 ============================================================
15:40:08.0538 1596 Scan started
15:40:08.0538 1596 Mode: Manual;
15:40:08.0538 1596 ============================================================
15:40:08.0981 1596 ================ Scan system memory ========================
15:40:08.0982 1596 System memory - ok
15:40:08.0983 1596 ================ Scan services =============================
15:40:09.0157 1596 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:40:09.0162 1596 1394ohci - ok
15:40:09.0197 1596 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:40:09.0205 1596 ACPI - ok
15:40:09.0255 1596 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:40:09.0256 1596 AcpiPmi - ok
15:40:09.0365 1596 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:40:09.0378 1596 AdobeARMservice - ok
15:40:09.0447 1596 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:40:09.0457 1596 adp94xx - ok
15:40:09.0508 1596 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:40:09.0516 1596 adpahci - ok
15:40:09.0553 1596 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:40:09.0557 1596 adpu320 - ok
15:40:09.0596 1596 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:40:09.0598 1596 AeLookupSvc - ok
15:40:09.0687 1596 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:40:09.0697 1596 AFD - ok
15:40:09.0757 1596 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:40:09.0759 1596 agp440 - ok
15:40:09.0794 1596 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:40:09.0796 1596 ALG - ok
15:40:09.0883 1596 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:40:09.0885 1596 aliide - ok
15:40:09.0935 1596 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:40:09.0937 1596 amdide - ok
15:40:09.0972 1596 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:40:09.0975 1596 AmdK8 - ok
15:40:10.0027 1596 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:40:10.0030 1596 AmdPPM - ok
15:40:10.0099 1596 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:40:10.0102 1596 amdsata - ok
15:40:10.0125 1596 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:40:10.0128 1596 amdsbs - ok
15:40:10.0138 1596 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:40:10.0139 1596 amdxata - ok
15:40:10.0244 1596 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:40:10.0260 1596 AntiVirSchedulerService - ok
15:40:10.0304 1596 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:40:10.0321 1596 AntiVirService - ok
15:40:10.0356 1596 [ 676894FA57B671FEC5C3F05F8929E03B ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
15:40:10.0374 1596 AntiVirWebService - ok
15:40:10.0412 1596 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:40:10.0414 1596 AppID - ok
15:40:10.0454 1596 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:40:10.0456 1596 AppIDSvc - ok
15:40:10.0481 1596 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:40:10.0484 1596 Appinfo - ok
15:40:10.0511 1596 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
15:40:10.0514 1596 arc - ok
15:40:10.0542 1596 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:40:10.0545 1596 arcsas - ok
15:40:10.0602 1596 [ EFD89582B55DD32DC79C1A4EB54612A1 ] ASLDRService C:\Program Files (x86)\PHotkey\ASLDRSrv.exe
15:40:10.0617 1596 ASLDRService - ok
15:40:10.0647 1596 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:10.0649 1596 AsyncMac - ok
15:40:10.0718 1596 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:40:10.0720 1596 atapi - ok
15:40:10.0776 1596 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:40:10.0790 1596 AudioEndpointBuilder - ok
15:40:10.0809 1596 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:40:10.0815 1596 AudioSrv - ok
15:40:10.0858 1596 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:40:10.0860 1596 avgntflt - ok
15:40:10.0881 1596 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:40:10.0883 1596 avipbb - ok
15:40:10.0930 1596 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:40:10.0933 1596 avkmgr - ok
15:40:10.0969 1596 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:40:10.0973 1596 AxInstSV - ok
15:40:11.0020 1596 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:40:11.0029 1596 b06bdrv - ok
15:40:11.0098 1596 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:40:11.0103 1596 b57nd60a - ok
15:40:11.0121 1596 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:40:11.0123 1596 BDESVC - ok
15:40:11.0135 1596 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:40:11.0137 1596 Beep - ok
15:40:11.0229 1596 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:40:11.0238 1596 BFE - ok
15:40:11.0282 1596 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:40:11.0292 1596 BITS - ok
15:40:11.0317 1596 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:40:11.0319 1596 blbdrive - ok
15:40:11.0418 1596 [ 05981C3E51D827ED6B8101A54B05E392 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
15:40:11.0471 1596 Bluetooth Device Monitor - ok
15:40:11.0509 1596 [ BBFAF63BF768047FE2441B4139E803E3 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
15:40:11.0518 1596 Bluetooth Media Service - ok
15:40:11.0582 1596 [ 41D8F56E6BBE0111244D87BE2FA90374 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
15:40:11.0608 1596 Bluetooth OBEX Service - ok
15:40:11.0667 1596 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:40:11.0670 1596 bowser - ok
15:40:11.0713 1596 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:40:11.0715 1596 BrFiltLo - ok
15:40:11.0747 1596 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:40:11.0749 1596 BrFiltUp - ok
15:40:11.0801 1596 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:40:11.0805 1596 Browser - ok
15:40:11.0831 1596 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:40:11.0836 1596 Brserid - ok
15:40:11.0859 1596 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:40:11.0860 1596 BrSerWdm - ok
15:40:11.0907 1596 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:40:11.0908 1596 BrUsbMdm - ok
15:40:11.0935 1596 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:40:11.0936 1596 BrUsbSer - ok
15:40:11.0975 1596 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
15:40:11.0977 1596 BthEnum - ok
15:40:12.0001 1596 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:40:12.0004 1596 BTHMODEM - ok
15:40:12.0047 1596 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:40:12.0050 1596 BthPan - ok
15:40:12.0081 1596 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
15:40:12.0089 1596 BTHPORT - ok
15:40:12.0123 1596 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:40:12.0125 1596 bthserv - ok
15:40:12.0157 1596 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
15:40:12.0159 1596 BTHUSB - ok
15:40:12.0201 1596 [ 988CC6CC49303665D3B2435C51505C3F ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
15:40:12.0203 1596 btmaux - ok
15:40:12.0254 1596 [ 2B4B508AFAC2A563931AF1FE875A5B16 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
15:40:12.0264 1596 btmhsf - ok
15:40:12.0301 1596 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:40:12.0303 1596 cdfs - ok
15:40:12.0367 1596 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:40:12.0370 1596 cdrom - ok
15:40:12.0409 1596 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:40:12.0412 1596 CertPropSvc - ok
15:40:12.0451 1596 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
15:40:12.0453 1596 circlass - ok
15:40:12.0475 1596 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:40:12.0481 1596 CLFS - ok
15:40:12.0540 1596 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:40:12.0543 1596 clr_optimization_v2.0.50727_32 - ok
15:40:12.0624 1596 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:40:12.0627 1596 clr_optimization_v2.0.50727_64 - ok
15:40:12.0682 1596 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:40:12.0685 1596 clr_optimization_v4.0.30319_32 - ok
15:40:12.0706 1596 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:40:12.0709 1596 clr_optimization_v4.0.30319_64 - ok
15:40:12.0779 1596 [ E13A438F9E51DD034730678E33B73290 ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
15:40:12.0780 1596 clwvd - ok
15:40:12.0828 1596 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:40:12.0829 1596 CmBatt - ok
15:40:12.0857 1596 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:40:12.0859 1596 cmdide - ok
15:40:12.0902 1596 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:40:12.0911 1596 CNG - ok
15:40:12.0976 1596 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:40:12.0977 1596 Compbatt - ok
15:40:13.0030 1596 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:40:13.0032 1596 CompositeBus - ok
15:40:13.0043 1596 COMSysApp - ok
15:40:13.0127 1596 [ DB84D759193FDEDF82144E565108037E ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
15:40:13.0133 1596 cphs - ok
15:40:13.0180 1596 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:40:13.0181 1596 crcdisk - ok
15:40:13.0233 1596 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:40:13.0237 1596 CryptSvc - ok
15:40:13.0292 1596 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:40:13.0305 1596 DcomLaunch - ok
15:40:13.0351 1596 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:40:13.0357 1596 defragsvc - ok
15:40:13.0423 1596 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:40:13.0426 1596 DfsC - ok
15:40:13.0453 1596 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:40:13.0461 1596 Dhcp - ok
15:40:13.0483 1596 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:40:13.0486 1596 discache - ok
15:40:13.0544 1596 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
15:40:13.0546 1596 Disk - ok
15:40:13.0577 1596 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:40:13.0579 1596 Dnscache - ok
15:40:13.0612 1596 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:40:13.0616 1596 dot3svc - ok
15:40:13.0636 1596 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:40:13.0639 1596 DPS - ok
15:40:13.0698 1596 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:40:13.0699 1596 drmkaud - ok
15:40:13.0785 1596 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:40:13.0805 1596 DXGKrnl - ok
15:40:13.0872 1596 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:40:13.0877 1596 EapHost - ok
15:40:13.0960 1596 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:40:13.0994 1596 ebdrv - ok
15:40:14.0018 1596 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:40:14.0020 1596 EFS - ok
15:40:14.0115 1596 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:40:14.0129 1596 ehRecvr - ok
15:40:14.0137 1596 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:40:14.0139 1596 ehSched - ok
15:40:14.0165 1596 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:40:14.0171 1596 elxstor - ok
15:40:14.0211 1596 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:40:14.0212 1596 ErrDev - ok
15:40:14.0244 1596 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:40:14.0249 1596 EventSystem - ok
15:40:14.0271 1596 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:40:14.0274 1596 exfat - ok
15:40:14.0333 1596 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:40:14.0339 1596 fastfat - ok
15:40:14.0386 1596 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:40:14.0402 1596 Fax - ok
15:40:14.0465 1596 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
15:40:14.0467 1596 fdc - ok
15:40:14.0498 1596 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:40:14.0501 1596 fdPHost - ok
15:40:14.0519 1596 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:40:14.0523 1596 FDResPub - ok
15:40:14.0545 1596 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:40:14.0546 1596 FileInfo - ok
15:40:14.0596 1596 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:40:14.0598 1596 Filetrace - ok
15:40:14.0606 1596 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:40:14.0608 1596 flpydisk - ok
15:40:14.0624 1596 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:40:14.0627 1596 FltMgr - ok
15:40:14.0676 1596 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:40:14.0686 1596 FontCache - ok
15:40:14.0730 1596 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:40:14.0731 1596 FontCache3.0.0.0 - ok
15:40:14.0757 1596 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:40:14.0758 1596 FsDepends - ok
15:40:14.0822 1596 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:40:14.0825 1596 Fs_Rec - ok
15:40:14.0858 1596 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:40:14.0862 1596 fvevol - ok
15:40:14.0898 1596 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:40:14.0900 1596 gagp30kx - ok
15:40:14.0951 1596 [ 4E1D0A246E10CFDDBF856432418DE404 ] GFNEXSrv C:\Program Files (x86)\PHotkey\GFNEXSrv.exe
15:40:14.0969 1596 GFNEXSrv - ok
15:40:15.0018 1596 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:40:15.0034 1596 gpsvc - ok
15:40:15.0104 1596 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:40:15.0107 1596 gupdate - ok
15:40:15.0115 1596 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:40:15.0119 1596 gupdatem - ok
15:40:15.0164 1596 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:40:15.0165 1596 hcw85cir - ok
15:40:15.0199 1596 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:40:15.0204 1596 HdAudAddService - ok
15:40:15.0237 1596 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:40:15.0240 1596 HDAudBus - ok
15:40:15.0259 1596 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:40:15.0260 1596 HidBatt - ok
15:40:15.0315 1596 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:40:15.0318 1596 HidBth - ok
15:40:15.0344 1596 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
15:40:15.0346 1596 HidIr - ok
15:40:15.0367 1596 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:40:15.0370 1596 hidserv - ok
15:40:15.0398 1596 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:40:15.0399 1596 HidUsb - ok
15:40:15.0435 1596 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:40:15.0438 1596 hkmsvc - ok
15:40:15.0455 1596 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:40:15.0460 1596 HomeGroupListener - ok
15:40:15.0481 1596 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:40:15.0485 1596 HomeGroupProvider - ok
15:40:15.0517 1596 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:40:15.0519 1596 HpSAMD - ok
15:40:15.0562 1596 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:40:15.0572 1596 HTTP - ok
15:40:15.0586 1596 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:40:15.0587 1596 hwpolicy - ok
15:40:15.0646 1596 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:40:15.0648 1596 i8042prt - ok
15:40:15.0687 1596 [ C224331A54571C8C9162F7714400BBBD ] iaStor C:\Windows\system32\drivers\iaStor.sys
15:40:15.0693 1596 iaStor - ok
15:40:15.0797 1596 [ 7D4B9A48430ED57ACA6373B71D5904CA ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
15:40:15.0799 1596 IAStorDataMgrSvc - ok
15:40:15.0831 1596 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:40:15.0836 1596 iaStorV - ok
15:40:15.0867 1596 [ 9E3D44CE737388F6BBBB6DD4A1C1847C ] ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
15:40:15.0868 1596 ibtfltcoex - ok
15:40:15.0919 1596 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:40:15.0937 1596 idsvc - ok
15:40:16.0256 1596 [ 54E37A4E66B2CA1C38E9728FAD5F9822 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:40:16.0545 1596 igfx - ok
15:40:16.0577 1596 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:40:16.0578 1596 iirsp - ok
15:40:16.0616 1596 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:40:16.0626 1596 IKEEXT - ok
15:40:16.0768 1596 [ F242E36CDA231701CFA702641C20FAEC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:40:16.0910 1596 IntcAzAudAddService - ok
15:40:16.0984 1596 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
15:40:16.0990 1596 IntcDAud - ok
15:40:17.0096 1596 [ 2D66067C7A8A0112156BCD1C0BAA7042 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:40:17.0121 1596 Intel(R) Capability Licensing Service Interface - ok
15:40:17.0163 1596 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:40:17.0165 1596 intelide - ok
15:40:17.0194 1596 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:40:17.0197 1596 intelppm - ok
15:40:17.0221 1596 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:40:17.0225 1596 IPBusEnum - ok
15:40:17.0250 1596 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:17.0253 1596 IpFilterDriver - ok
15:40:17.0286 1596 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:40:17.0298 1596 iphlpsvc - ok
15:40:17.0317 1596 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:40:17.0318 1596 IPMIDRV - ok
15:40:17.0330 1596 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:40:17.0332 1596 IPNAT - ok
15:40:17.0354 1596 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:40:17.0355 1596 IRENUM - ok
15:40:17.0395 1596 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:40:17.0396 1596 isapnp - ok
15:40:17.0431 1596 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:40:17.0434 1596 iScsiPrt - ok
15:40:17.0461 1596 [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs C:\Windows\system32\drivers\iusb3hcs.sys
15:40:17.0462 1596 iusb3hcs - ok
15:40:17.0488 1596 [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub C:\Windows\system32\drivers\iusb3hub.sys
15:40:17.0492 1596 iusb3hub - ok
15:40:17.0518 1596 [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc C:\Windows\system32\drivers\iusb3xhc.sys
15:40:17.0528 1596 iusb3xhc - ok
15:40:17.0606 1596 [ 3628933AF5305EAB8173949BFF912F04 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
15:40:17.0623 1596 jhi_service - ok
15:40:17.0659 1596 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:40:17.0661 1596 kbdclass - ok
15:40:17.0701 1596 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
15:40:17.0702 1596 kbdhid - ok
15:40:17.0723 1596 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:40:17.0726 1596 KeyIso - ok
15:40:17.0756 1596 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:40:17.0759 1596 KSecDD - ok
15:40:17.0776 1596 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:40:17.0780 1596 KSecPkg - ok
15:40:17.0807 1596 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:40:17.0809 1596 ksthunk - ok
15:40:17.0850 1596 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:40:17.0859 1596 KtmRm - ok
15:40:17.0894 1596 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:40:17.0901 1596 LanmanServer - ok
15:40:17.0942 1596 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:40:17.0947 1596 LanmanWorkstation - ok
15:40:17.0974 1596 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:40:17.0977 1596 lltdio - ok
15:40:18.0013 1596 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:40:18.0020 1596 lltdsvc - ok
15:40:18.0032 1596 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:40:18.0035 1596 lmhosts - ok
15:40:18.0077 1596 [ BF22ACF4CF3734D61357E67F0521BC03 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:40:18.0088 1596 LMS - ok
15:40:18.0142 1596 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:40:18.0147 1596 LSI_FC - ok
15:40:18.0183 1596 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:40:18.0186 1596 LSI_SAS - ok
15:40:18.0208 1596 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:40:18.0211 1596 LSI_SAS2 - ok
15:40:18.0229 1596 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:40:18.0231 1596 LSI_SCSI - ok
15:40:18.0263 1596 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:40:18.0266 1596 luafv - ok
15:40:18.0295 1596 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:40:18.0298 1596 Mcx2Svc - ok
15:40:18.0303 1596 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
15:40:18.0305 1596 megasas - ok
15:40:18.0341 1596 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:40:18.0345 1596 MegaSR - ok
15:40:18.0381 1596 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
15:40:18.0383 1596 MEIx64 - ok
15:40:18.0409 1596 [ 8A43D23ACE2E8C95A2D87B6E9599DEDA ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
15:40:18.0415 1596 MemeoBackgroundService - ok
15:40:18.0432 1596 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:40:18.0435 1596 MMCSS - ok
15:40:18.0452 1596 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:40:18.0453 1596 Modem - ok
15:40:18.0475 1596 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:40:18.0476 1596 monitor - ok
15:40:18.0508 1596 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:40:18.0509 1596 mouclass - ok
15:40:18.0549 1596 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:40:18.0550 1596 mouhid - ok
15:40:18.0587 1596 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:40:18.0589 1596 mountmgr - ok
15:40:18.0622 1596 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:40:18.0624 1596 mpio - ok
15:40:18.0637 1596 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:40:18.0639 1596 mpsdrv - ok
15:40:18.0684 1596 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:40:18.0696 1596 MpsSvc - ok
15:40:18.0711 1596 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:40:18.0713 1596 MRxDAV - ok
15:40:18.0737 1596 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:18.0739 1596 mrxsmb - ok
15:40:18.0774 1596 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:18.0778 1596 mrxsmb10 - ok
15:40:18.0811 1596 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:18.0813 1596 mrxsmb20 - ok
15:40:18.0839 1596 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:40:18.0841 1596 msahci - ok
15:40:18.0860 1596 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:40:18.0863 1596 msdsm - ok
15:40:18.0899 1596 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:40:18.0903 1596 MSDTC - ok
15:40:18.0929 1596 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:40:18.0931 1596 Msfs - ok
15:40:18.0949 1596 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:40:18.0950 1596 mshidkmdf - ok
15:40:18.0974 1596 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:40:18.0976 1596 msisadrv - ok
15:40:19.0016 1596 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:40:19.0019 1596 MSiSCSI - ok
15:40:19.0025 1596 msiserver - ok
15:40:19.0045 1596 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:40:19.0046 1596 MSKSSRV - ok
15:40:19.0059 1596 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:19.0060 1596 MSPCLOCK - ok
15:40:19.0078 1596 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:40:19.0079 1596 MSPQM - ok
15:40:19.0103 1596 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:40:19.0107 1596 MsRPC - ok
15:40:19.0132 1596 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:40:19.0133 1596 mssmbios - ok
15:40:19.0137 1596 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:40:19.0138 1596 MSTEE - ok
15:40:19.0152 1596 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:40:19.0153 1596 MTConfig - ok
15:40:19.0165 1596 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:40:19.0166 1596 Mup - ok
15:40:19.0197 1596 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:40:19.0203 1596 napagent - ok
15:40:19.0257 1596 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:40:19.0264 1596 NativeWifiP - ok
15:40:19.0317 1596 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:40:19.0329 1596 NDIS - ok
15:40:19.0361 1596 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:40:19.0362 1596 NdisCap - ok
15:40:19.0393 1596 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:19.0395 1596 NdisTapi - ok
15:40:19.0410 1596 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:19.0411 1596 Ndisuio - ok
15:40:19.0425 1596 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:19.0428 1596 NdisWan - ok
15:40:19.0434 1596 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:40:19.0436 1596 NDProxy - ok
15:40:19.0452 1596 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:40:19.0453 1596 NetBIOS - ok
15:40:19.0459 1596 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:40:19.0462 1596 NetBT - ok
15:40:19.0486 1596 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:40:19.0488 1596 Netlogon - ok
15:40:19.0524 1596 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:40:19.0529 1596 Netman - ok
15:40:19.0548 1596 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:40:19.0554 1596 netprofm - ok
15:40:19.0575 1596 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:40:19.0576 1596 NetTcpPortSharing - ok
15:40:19.0837 1596 [ B51E9AD4F4E4F8DBE0AB882756BC5DAB ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
15:40:20.0063 1596 NETwNs64 - ok
15:40:20.0101 1596 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:40:20.0101 1596 nfrd960 - ok
15:40:20.0144 1596 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:40:20.0153 1596 NlaSvc - ok
15:40:20.0181 1596 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:40:20.0183 1596 Npfs - ok
15:40:20.0200 1596 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:40:20.0202 1596 nsi - ok
15:40:20.0211 1596 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:40:20.0212 1596 nsiproxy - ok
15:40:20.0278 1596 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:40:20.0297 1596 Ntfs - ok
15:40:20.0319 1596 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:40:20.0320 1596 Null - ok
15:40:20.0363 1596 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
15:40:20.0368 1596 NVENETFD - ok
15:40:20.0617 1596 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:40:20.0834 1596 nvlddmkm - ok
15:40:20.0874 1596 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:40:20.0875 1596 nvraid - ok
15:40:20.0887 1596 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:40:20.0888 1596 nvstor - ok
15:40:20.0917 1596 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:40:20.0918 1596 nv_agp - ok
15:40:20.0937 1596 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:40:20.0938 1596 ohci1394 - ok
15:40:20.0964 1596 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:40:20.0968 1596 p2pimsvc - ok
15:40:20.0988 1596 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:40:20.0994 1596 p2psvc - ok
15:40:21.0022 1596 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
15:40:21.0023 1596 Parport - ok
15:40:21.0048 1596 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:40:21.0050 1596 partmgr - ok
15:40:21.0063 1596 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:40:21.0066 1596 PcaSvc - ok
15:40:21.0083 1596 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:40:21.0085 1596 pci - ok
15:40:21.0122 1596 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:40:21.0123 1596 pciide - ok
15:40:21.0135 1596 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:40:21.0137 1596 pcmcia - ok
15:40:21.0164 1596 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:40:21.0165 1596 pcw - ok
15:40:21.0191 1596 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:40:21.0198 1596 PEAUTH - ok
15:40:21.0216 1596 [ EE926C59CBD4DC4DC9FBB85014A2F1A5 ] PEGAGFN C:\Program Files (x86)\PHotkey\PEGAGFN.sys
15:40:21.0217 1596 PEGAGFN - ok
15:40:21.0274 1596 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:40:21.0275 1596 PerfHost - ok
15:40:21.0323 1596 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:40:21.0339 1596 pla - ok
15:40:21.0383 1596 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:40:21.0389 1596 PlugPlay - ok
15:40:21.0403 1596 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:40:21.0405 1596 PNRPAutoReg - ok
15:40:21.0430 1596 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:40:21.0434 1596 PNRPsvc - ok
15:40:21.0471 1596 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:40:21.0477 1596 PolicyAgent - ok
15:40:21.0498 1596 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:40:21.0502 1596 Power - ok
15:40:21.0522 1596 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:40:21.0524 1596 PptpMiniport - ok
15:40:21.0544 1596 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
15:40:21.0545 1596 Processor - ok
15:40:21.0579 1596 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:40:21.0583 1596 ProfSvc - ok
15:40:21.0605 1596 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:40:21.0607 1596 ProtectedStorage - ok
15:40:21.0651 1596 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:40:21.0653 1596 Psched - ok
15:40:21.0713 1596 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:40:21.0736 1596 ql2300 - ok
15:40:21.0763 1596 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:40:21.0765 1596 ql40xx - ok
15:40:21.0797 1596 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:40:21.0800 1596 QWAVE - ok
15:40:21.0823 1596 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:40:21.0824 1596 QWAVEdrv - ok
15:40:21.0836 1596 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:40:21.0837 1596 RasAcd - ok
15:40:21.0875 1596 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:40:21.0877 1596 RasAgileVpn - ok
15:40:21.0898 1596 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:40:21.0905 1596 RasAuto - ok
15:40:21.0921 1596 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:21.0924 1596 Rasl2tp - ok
15:40:21.0937 1596 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:40:21.0943 1596 RasMan - ok
15:40:21.0948 1596 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:21.0950 1596 RasPppoe - ok
15:40:21.0956 1596 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:40:21.0957 1596 RasSstp - ok
15:40:21.0968 1596 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:40:21.0972 1596 rdbss - ok
15:40:21.0984 1596 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:40:21.0985 1596 rdpbus - ok
15:40:22.0002 1596 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:22.0003 1596 RDPCDD - ok
15:40:22.0020 1596 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:40:22.0021 1596 RDPENCDD - ok
15:40:22.0041 1596 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:40:22.0041 1596 RDPREFMP - ok
15:40:22.0069 1596 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:40:22.0072 1596 RDPWD - ok
15:40:22.0096 1596 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:40:22.0098 1596 rdyboost - ok
15:40:22.0120 1596 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:40:22.0123 1596 RemoteAccess - ok
15:40:22.0146 1596 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:40:22.0149 1596 RemoteRegistry - ok
15:40:22.0188 1596 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:40:22.0190 1596 RFCOMM - ok
15:40:22.0201 1596 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:40:22.0203 1596 RpcEptMapper - ok
15:40:22.0229 1596 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:40:22.0231 1596 RpcLocator - ok
15:40:22.0251 1596 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:40:22.0257 1596 RpcSs - ok
15:40:22.0274 1596 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:40:22.0275 1596 rspndr - ok
15:40:22.0330 1596 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\System32\Drivers\RtsUStor.sys
15:40:22.0335 1596 RSUSBSTOR - ok
15:40:22.0392 1596 [ 9140DB0911DE035FED0A9A77A2D156EA ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:40:22.0404 1596 RTL8167 - ok
15:40:22.0467 1596 [ B3F36B4B3F192EA87DDC119F3A0B3E45 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
15:40:22.0479 1596 RTL8192su - ok
15:40:22.0492 1596 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:40:22.0495 1596 SamSs - ok
15:40:22.0512 1596 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:40:22.0514 1596 sbp2port - ok
15:40:22.0536 1596 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:40:22.0541 1596 SCardSvr - ok
15:40:22.0567 1596 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:40:22.0568 1596 scfilter - ok
15:40:22.0598 1596 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:40:22.0609 1596 Schedule - ok
15:40:22.0635 1596 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:40:22.0636 1596 SCPolicySvc - ok
15:40:22.0660 1596 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:40:22.0663 1596 SDRSVC - ok
15:40:22.0689 1596 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:40:22.0690 1596 secdrv - ok
15:40:22.0702 1596 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:40:22.0704 1596 seclogon - ok
15:40:22.0720 1596 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:40:22.0723 1596 SENS - ok
15:40:22.0748 1596 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:40:22.0750 1596 SensrSvc - ok
15:40:22.0780 1596 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
15:40:22.0781 1596 Serenum - ok
15:40:22.0824 1596 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
15:40:22.0826 1596 Serial - ok
15:40:22.0851 1596 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:40:22.0852 1596 sermouse - ok
15:40:22.0870 1596 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:40:22.0873 1596 SessionEnv - ok
15:40:22.0901 1596 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:40:22.0902 1596 sffdisk - ok
15:40:22.0911 1596 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:40:22.0912 1596 sffp_mmc - ok
15:40:22.0926 1596 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:40:22.0926 1596 sffp_sd - ok
15:40:22.0938 1596 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:40:22.0939 1596 sfloppy - ok
15:40:22.0960 1596 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:40:22.0965 1596 SharedAccess - ok
15:40:23.0001 1596 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:40:23.0005 1596 ShellHWDetection - ok
15:40:23.0022 1596 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:40:23.0023 1596 SiSRaid2 - ok
15:40:23.0055 1596 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:40:23.0056 1596 SiSRaid4 - ok
15:40:23.0085 1596 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:40:23.0087 1596 Smb - ok
15:40:23.0119 1596 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:40:23.0121 1596 SNMPTRAP - ok
15:40:23.0132 1596 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:40:23.0134 1596 spldr - ok
15:40:23.0162 1596 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:40:23.0167 1596 Spooler - ok
15:40:23.0269 1596 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:40:23.0377 1596 sppsvc - ok
15:40:23.0405 1596 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:40:23.0408 1596 sppuinotify - ok
15:40:23.0455 1596 [ B9657A0AFF28C1CB114ACC0CB93EE4BB ] sp_rsdrv2 C:\Windows\system32\DRIVERS\stflt.sys
15:40:23.0457 1596 sp_rsdrv2 - ok
15:40:23.0500 1596 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:40:23.0509 1596 srv - ok
15:40:23.0544 1596 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:40:23.0549 1596 srv2 - ok
15:40:23.0577 1596 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:40:23.0580 1596 srvnet - ok
15:40:23.0596 1596 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:40:23.0600 1596 SSDPSRV - ok
15:40:23.0610 1596 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:40:23.0613 1596 SstpSvc - ok
15:40:23.0712 1596 [ C504AF1A54EF90BA47D2F75D3C8D3F24 ] ST2012_Svc C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
15:40:23.0727 1596 ST2012_Svc - ok
15:40:23.0753 1596 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:40:23.0754 1596 stexstor - ok
15:40:23.0794 1596 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:40:23.0809 1596 stisvc - ok
15:40:23.0840 1596 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:40:23.0843 1596 swenum - ok
15:40:23.0883 1596 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:40:23.0888 1596 swprv - ok
15:40:23.0930 1596 [ E157A3A7A09BDBB74AFEAB352D5D76F1 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:40:23.0935 1596 SynTP - ok
15:40:23.0975 1596 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:40:23.0994 1596 SysMain - ok
15:40:24.0011 1596 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:40:24.0014 1596 TabletInputService - ok
15:40:24.0034 1596 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:40:24.0039 1596 TapiSrv - ok
15:40:24.0059 1596 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:40:24.0062 1596 TBS - ok
15:40:24.0121 1596 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:40:24.0140 1596 Tcpip - ok
15:40:24.0176 1596 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:40:24.0189 1596 TCPIP6 - ok
15:40:24.0209 1596 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:40:24.0210 1596 tcpipreg - ok
15:40:24.0227 1596 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:40:24.0228 1596 TDPIPE - ok
15:40:24.0246 1596 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:40:24.0247 1596 TDTCP - ok
15:40:24.0263 1596 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:40:24.0264 1596 tdx - ok
15:40:24.0292 1596 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:40:24.0294 1596 TermDD - ok
15:40:24.0320 1596 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:40:24.0332 1596 TermService - ok
15:40:24.0347 1596 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:40:24.0349 1596 Themes - ok
15:40:24.0367 1596 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:40:24.0369 1596 THREADORDER - ok
15:40:24.0388 1596 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:40:24.0391 1596 TrkWks - ok
15:40:24.0438 1596 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:40:24.0443 1596 TrustedInstaller - ok
15:40:24.0484 1596 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:24.0485 1596 tssecsrv - ok
15:40:24.0506 1596 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:40:24.0509 1596 TsUsbFlt - ok
15:40:24.0537 1596 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:40:24.0538 1596 TsUsbGD - ok
15:40:24.0564 1596 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:40:24.0566 1596 tunnel - ok
15:40:24.0597 1596 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:40:24.0598 1596 uagp35 - ok
15:40:24.0616 1596 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:40:24.0621 1596 udfs - ok
15:40:24.0649 1596 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:40:24.0651 1596 UI0Detect - ok
15:40:24.0691 1596 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:40:24.0692 1596 uliagpkx - ok
15:40:24.0727 1596 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:40:24.0729 1596 umbus - ok
15:40:24.0756 1596 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
15:40:24.0757 1596 UmPass - ok
15:40:24.0828 1596 [ B097EBA0E3FEB020BB65FE43AF5ECCFF ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
15:40:24.0835 1596 UNS - ok
15:40:24.0870 1596 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:40:24.0881 1596 upnphost - ok
15:40:24.0923 1596 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:24.0926 1596 usbccgp - ok
15:40:24.0948 1596 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:40:24.0951 1596 usbcir - ok
15:40:24.0964 1596 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:40:24.0967 1596 usbehci - ok
15:40:25.0009 1596 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:40:25.0016 1596 usbhub - ok
15:40:25.0038 1596 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:40:25.0040 1596 usbohci - ok
15:40:25.0074 1596 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:40:25.0077 1596 usbprint - ok
15:40:25.0103 1596 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:40:25.0105 1596 usbscan - ok
15:40:25.0140 1596 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:25.0143 1596 USBSTOR - ok
15:40:25.0162 1596 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:40:25.0164 1596 usbuhci - ok
15:40:25.0208 1596 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:40:25.0213 1596 usbvideo - ok
15:40:25.0232 1596 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:40:25.0237 1596 UxSms - ok
15:40:25.0255 1596 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:40:25.0257 1596 VaultSvc - ok
15:40:25.0293 1596 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:40:25.0294 1596 vdrvroot - ok
15:40:25.0322 1596 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:40:25.0330 1596 vds - ok
15:40:25.0358 1596 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:25.0359 1596 vga - ok
15:40:25.0366 1596 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:40:25.0368 1596 VgaSave - ok
15:40:25.0394 1596 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:40:25.0397 1596 vhdmp - ok
15:40:25.0428 1596 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:40:25.0429 1596 viaide - ok
15:40:25.0453 1596 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:40:25.0455 1596 volmgr - ok
15:40:25.0477 1596 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:40:25.0481 1596 volmgrx - ok
15:40:25.0506 1596 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:40:25.0510 1596 volsnap - ok
15:40:25.0534 1596 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:40:25.0537 1596 vsmraid - ok
15:40:25.0590 1596 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:40:25.0603 1596 VSS - ok
15:40:25.0626 1596 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
15:40:25.0627 1596 vwifibus - ok
15:40:25.0660 1596 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:40:25.0661 1596 vwififlt - ok
15:40:25.0709 1596 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:40:25.0714 1596 W32Time - ok
15:40:25.0725 1596 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:40:25.0726 1596 WacomPen - ok
15:40:25.0752 1596 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0754 1596 WANARP - ok
15:40:25.0760 1596 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0761 1596 Wanarpv6 - ok
15:40:25.0803 1596 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:40:25.0819 1596 wbengine - ok
15:40:25.0834 1596 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:40:25.0837 1596 WbioSrvc - ok
15:40:25.0859 1596 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:40:25.0865 1596 wcncsvc - ok
15:40:25.0883 1596 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:40:25.0885 1596 WcsPlugInService - ok
15:40:25.0900 1596 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
15:40:25.0901 1596 Wd - ok
15:40:25.0932 1596 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:40:25.0939 1596 Wdf01000 - ok
15:40:25.0952 1596 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:40:25.0954 1596 WdiServiceHost - ok
15:40:25.0958 1596 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:40:25.0961 1596 WdiSystemHost - ok
15:40:25.0968 1596 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:40:25.0972 1596 WebClient - ok
15:40:25.0994 1596 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:40:25.0998 1596 Wecsvc - ok
15:40:26.0011 1596 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:40:26.0013 1596 wercplsupport - ok
15:40:26.0032 1596 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:40:26.0034 1596 WerSvc - ok
15:40:26.0060 1596 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:40:26.0061 1596 WfpLwf - ok
15:40:26.0079 1596 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:40:26.0080 1596 WIMMount - ok
15:40:26.0106 1596 WinDefend - ok
15:40:26.0112 1596 WinHttpAutoProxySvc - ok
15:40:26.0166 1596 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:40:26.0172 1596 Winmgmt - ok
15:40:26.0237 1596 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:40:26.0272 1596 WinRM - ok
15:40:26.0336 1596 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:40:26.0347 1596 Wlansvc - ok
15:40:26.0409 1596 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:40:26.0411 1596 wlcrasvc - ok
15:40:26.0498 1596 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:40:26.0524 1596 wlidsvc - ok
15:40:26.0560 1596 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:40:26.0561 1596 WmiAcpi - ok
15:40:26.0583 1596 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:40:26.0585 1596 wmiApSrv - ok
15:40:26.0629 1596 WMPNetworkSvc - ok
15:40:26.0650 1596 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:40:26.0653 1596 WPCSvc - ok
15:40:26.0674 1596 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:40:26.0677 1596 WPDBusEnum - ok
15:40:26.0700 1596 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:40:26.0701 1596 ws2ifsl - ok
15:40:26.0716 1596 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:40:26.0719 1596 wscsvc - ok
15:40:26.0723 1596 WSearch - ok
15:40:26.0769 1596 [ 82E8F5AA03DF7DBDB8A33F700D5D8CDA ] wsvd C:\Windows\system32\DRIVERS\wsvd.sys
15:40:26.0770 1596 wsvd - ok
15:40:26.0868 1596 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:40:26.0917 1596 wuauserv - ok
15:40:26.0928 1596 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:40:26.0930 1596 WudfPf - ok
15:40:26.0955 1596 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:26.0957 1596 WUDFRd - ok
15:40:26.0985 1596 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:40:26.0988 1596 wudfsvc - ok
15:40:27.0005 1596 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:40:27.0009 1596 WwanSvc - ok
15:40:27.0036 1596 ================ Scan global ===============================
15:40:27.0065 1596 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:40:27.0088 1596 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:40:27.0096 1596 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:40:27.0110 1596 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:40:27.0141 1596 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:40:27.0145 1596 [Global] - ok
15:40:27.0146 1596 ================ Scan MBR ==================================
15:40:27.0154 1596 [ 6C1CE1D281B26A1CCBF127E5A26C54A8 ] \Device\Harddisk0\DR0
15:40:29.0849 1596 \Device\Harddisk0\DR0 - ok
15:40:29.0855 1596 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
15:40:29.0862 1596 \Device\Harddisk1\DR1 - ok
15:40:29.0863 1596 ================ Scan VBR ==================================
15:40:29.0866 1596 [ A20827DC65E27968F5154F84148E33D6 ] \Device\Harddisk0\DR0\Partition1
15:40:29.0868 1596 \Device\Harddisk0\DR0\Partition1 - ok
15:40:29.0879 1596 [ B63BCD872104E48D1F24295616879033 ] \Device\Harddisk0\DR0\Partition2
15:40:29.0881 1596 \Device\Harddisk0\DR0\Partition2 - ok
15:40:29.0908 1596 [ 6A124DE710A67975DD887B5F6BBBA412 ] \Device\Harddisk0\DR0\Partition3
15:40:29.0910 1596 \Device\Harddisk0\DR0\Partition3 - ok
15:40:29.0913 1596 [ 0F1584BA3DBCA5DBFE9BDE1E1B18A8EB ] \Device\Harddisk1\DR1\Partition1
15:40:29.0914 1596 \Device\Harddisk1\DR1\Partition1 - ok
15:40:29.0915 1596 ============================================================
15:40:29.0915 1596 Scan finished
15:40:29.0915 1596 ============================================================
15:40:29.0926 4644 Detected object count: 0
15:40:29.0926 4644 Actual detected object count: 0
15:40:44.0257 4508 Deinitialize success



Zitat:
Zitat von M-K-D-B Beitrag anzeigen
Ich denke, wir haben gute Chancen bei einer Bereinigung.
Das klingt gut. :-)
__________________
 

Themen zu TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe
antivir, autorun, avira, bho, entfernen, error, excel, firefox, flash player, frage, helper, home, install.exe, logfile, plug-in, problem, realtek, registry, scan, schwedisch, security, software, spyware, starten, svchost.exe, taskmanager, tr/psw.zbot., trojaner, usb 2.0, usb 3.0, windows


« Firefox - Falsche Weiterleitung | Internetverbindung sehr, sehr langsam - Arbeitsspeicher ausgelastet »


Ähnliche Themen: TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe


  1. Windows 8 Trojaner Zbot.gen gefunden in C:\Users\*****\Appdata\Roaming\Cuyfzy\piutfas.exe
    Log-Analyse und Auswertung - 22.08.2014 (6)
  2. C:\Users\didi\AppData\Roaming\skype.dat
    Log-Analyse und Auswertung - 30.09.2013 (2)
  3. Bitdefender stoppt C:\Users\S*****\AppData\Roaming\Prapproxy32.exe
    Log-Analyse und Auswertung - 23.08.2013 (21)
  4. Win32/Zbot.gen!AM in C:\Users\***\AppData\Roaming\Wexyt\ynim.exe gefunden
    Plagegeister aller Art und deren Bekämpfung - 23.07.2013 (11)
  5. Online- Banking gesperrt! Trojan.FakeAlert.Gen & Trojan.ZbotR.Gen in (C:\Users\\AppData\Temp & C:\Users\\AppData\Roaming\Osje\rutaap.exe)
    Log-Analyse und Auswertung - 06.02.2013 (1)
  6. Trojan.Zbot in C:\Users\Name\AppData\Roaming\Ixiha\wiez.exe
    Log-Analyse und Auswertung - 05.01.2013 (3)
  7. RunDLL Probleme beim Starten von C:\users\***\AppData\Roaming\pndeb.dll & AppData\Local\powstak.dll
    Plagegeister aller Art und deren Bekämpfung - 22.10.2012 (5)
  8. Viren in C:\Users\***\AppData\Roaming\BAcroIEHelpe*.dll
    Plagegeister aller Art und deren Bekämpfung - 28.08.2012 (5)
  9. Avira meldet TR/Spy.ZBot.edgy in C:/Users/***/AppData/Roaming/Yguq/xyyk.exe
    Plagegeister aller Art und deren Bekämpfung - 17.07.2012 (7)
  10. TR/Dropper.VB.Gen in C:\Users\Julia\AppData\Roaming... gefunden
    Log-Analyse und Auswertung - 07.07.2012 (2)
  11. "Trojan-Spy.Win32.Zbot.dnei" in "C:\Users\Default.Default-PC\AppData\Roaming"
    Plagegeister aller Art und deren Bekämpfung - 12.03.2012 (11)
  12. Sonderbare Ordner in C:\users\.......\appData\Roaming
    Log-Analyse und Auswertung - 05.03.2012 (9)
  13. c:\Users\Name\AppData\Roaming\acroiehelpe050.dll
    Log-Analyse und Auswertung - 05.12.2011 (15)
  14. C:\Users\***\AppData\Roaming\Netwin\busatl.exe entfernen?
    Plagegeister aller Art und deren Bekämpfung - 03.12.2011 (41)
  15. TR/Spy.Zb.aaw.14997 in C:\Users\ICH\appdata\Roaming\...
    Plagegeister aller Art und deren Bekämpfung - 11.07.2010 (17)
  16. Users/***/Appdata/Roaming/Winlogon.exe
    Log-Analyse und Auswertung - 04.07.2010 (7)
  17. 'C:\Users\***\AppData\Roaming\install\svchost.exe'
    Plagegeister aller Art und deren Bekämpfung - 08.06.2010 (6)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe - Hallo Matthias! Danke für die Hilfe! Hier meine Logs: OTL Logfile: Code: Alles auswählen Aufklappen ATTFilter OTL logfile created on: 27.10.2012 15:13:25 - Run 2 OTL by OldTimer - Version - TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe...
Archiv
Du betrachtest: TR/PSW.zbot.5224 in C:\Users\NAME\AppData\Roaming\Okoku\moik.exe auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131