| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.GenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
05.11.2012, 10:18
| #1 |
| |  Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Hallo, hab mir wahrscheinlich mehrere Trojaner eingefangen. Folgendes tritt bei mir auf: 1. Wenn ich Chrome starte und eine Internetseite anwähle, sehe ich unten links dass superfish geladen wird. 2. Gehe ich auf eine Internetseite ist ein Wort plötzlich blau, anstatt grau wie die beiden anderen Icons. Gehe ich mit der Maus drauf wird im Kontext folgendes angezeigt: "Click to Continue > by DownloadNSave" und ich sehe ein Foto mit einer eindeutigen Aufforderung (Pornoseite) System: Win7 64 bit, alle Updates stets aktuell, Sicherheit: Windows SecurityEssentials Entschuldigung, dass ich diese Verfahrensweise so nicht verstehe: "Bitte alles nach Möglichkeit hier in CODE-Tags posten. Wird so gemacht: Code:
ATTFilter hier steht das Log
Ich habe die beiden Dateien deshalb als Anhang eingestellt. Hier noch das Ergebnis des ESET Scan |
|
06.11.2012, 22:02
| #2 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™   | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Hallo und
__________________ Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Zitat:
Zudem gibt es oben bei der Formatleiste extra den Button der mit # beschriftet ist, ganz rechts neben dem YOUTUBE-Button Zitat:
__________________ |
|
07.11.2012, 09:54
| #3 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Hallo,
__________________vielen Dank für Dein Verständnis. Es gibt keine weiteren LOG-Dateien. Jetzt habe ich auch die Möglichkeit des Code einfügen gefunden und verstanden. Viele Grüße |
|
07.11.2012, 10:21
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen 1. aswMBR Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button. 2. TDSS-Killer Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
07.11.2012, 10:42
| #5 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Hallo, bei aswMBR kam in beiden Fällen Fehlermeldung: "avast!Antirootkit funktioniert nicht mehr" Bei TDSS-Killer kam folgende LOG-Datei: Code:
ATTFilter 10:34:59.0077 3952 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:34:59.0280 3952 ============================================================
10:34:59.0280 3952 Current date / time: 2012/11/07 10:34:59.0280
10:34:59.0280 3952 SystemInfo:
10:34:59.0296 3952
10:34:59.0296 3952 OS Version: 6.2.9200 ServicePack: 0.0
10:34:59.0296 3952 Product type: Workstation
10:34:59.0296 3952 ComputerName: LAPETOP
10:34:59.0296 3952 UserName: privat
10:34:59.0296 3952 Windows directory: C:\WINDOWS
10:34:59.0296 3952 System windows directory: C:\WINDOWS
10:34:59.0296 3952 Running under WOW64
10:34:59.0296 3952 Processor architecture: Intel x64
10:34:59.0296 3952 Number of processors: 4
10:34:59.0296 3952 Page size: 0x1000
10:34:59.0296 3952 Boot type: Normal boot
10:34:59.0296 3952 ============================================================
10:34:59.0936 3952 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:34:59.0936 3952 ============================================================
10:34:59.0936 3952 \Device\Harddisk0\DR0:
10:34:59.0936 3952 MBR partitions:
10:34:59.0936 3952 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
10:34:59.0936 3952 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x5578A800
10:34:59.0936 3952 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x557EE800, BlocksNum 0x1D24000
10:34:59.0936 3952 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
10:34:59.0936 3952 ============================================================
10:34:59.0968 3952 C: <-> \Device\Harddisk0\DR0\Partition2
10:35:00.0014 3952 D: <-> \Device\Harddisk0\DR0\Partition3
10:35:00.0014 3952 E: <-> \Device\Harddisk0\DR0\Partition4
10:35:00.0014 3952 ============================================================
10:35:00.0014 3952 Initialize success
10:35:00.0014 3952 ============================================================
10:35:08.0124 2940 ============================================================
10:35:08.0124 2940 Scan started
10:35:08.0124 2940 Mode: Manual; SigCheck; TDLFS;
10:35:08.0124 2940 ============================================================
10:35:08.0765 2940 ================ Scan system memory ========================
10:35:08.0765 2940 System memory - ok
10:35:08.0765 2940 ================ Scan services =============================
10:35:08.0827 2940 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:35:08.0859 2940 !SASCORE - ok
10:35:08.0999 2940 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
10:35:09.0062 2940 1394ohci - ok
10:35:09.0062 2940 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
10:35:09.0077 2940 3ware - ok
10:35:09.0109 2940 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
10:35:09.0124 2940 ACPI - ok
10:35:09.0140 2940 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
10:35:09.0156 2940 acpiex - ok
10:35:09.0187 2940 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
10:35:09.0202 2940 acpipagr - ok
10:35:09.0202 2940 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
10:35:09.0249 2940 AcpiPmi - ok
10:35:09.0249 2940 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
10:35:09.0281 2940 acpitime - ok
10:35:09.0327 2940 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:35:09.0327 2940 AdobeARMservice - ok
10:35:09.0359 2940 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\WINDOWS\system32\drivers\adp94xx.sys
10:35:09.0374 2940 adp94xx - ok
10:35:09.0406 2940 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\WINDOWS\system32\drivers\adpahci.sys
10:35:09.0406 2940 adpahci - ok
10:35:09.0421 2940 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\WINDOWS\system32\drivers\adpu320.sys
10:35:09.0437 2940 adpu320 - ok
10:35:09.0468 2940 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
10:35:09.0499 2940 AeLookupSvc - ok
10:35:09.0531 2940 [ 9E975BDC89C83900B2C534C4E1B018F8 ] AFD C:\WINDOWS\system32\drivers\afd.sys
10:35:09.0593 2940 AFD - ok
10:35:09.0624 2940 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
10:35:09.0640 2940 agp440 - ok
10:35:09.0671 2940 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\WINDOWS\System32\alg.exe
10:35:09.0718 2940 ALG - ok
10:35:09.0734 2940 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
10:35:09.0781 2940 AllUserInstallAgent - ok
10:35:09.0812 2940 [ FB88D16B55F788EEB7590584FE2D8F1A ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
10:35:09.0859 2940 AmdK8 - ok
10:35:09.0859 2940 [ 81402FF3373CE4DF77D5C874E369A985 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
10:35:09.0890 2940 AmdPPM - ok
10:35:09.0906 2940 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
10:35:09.0921 2940 amdsata - ok
10:35:09.0937 2940 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
10:35:09.0937 2940 amdsbs - ok
10:35:09.0953 2940 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
10:35:09.0953 2940 amdxata - ok
10:35:09.0968 2940 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\WINDOWS\system32\drivers\appid.sys
10:35:10.0015 2940 AppID - ok
10:35:10.0031 2940 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
10:35:10.0046 2940 AppIDSvc - ok
10:35:10.0062 2940 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\WINDOWS\System32\appinfo.dll
10:35:10.0093 2940 Appinfo - ok
10:35:10.0109 2940 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
10:35:10.0156 2940 AppMgmt - ok
10:35:10.0187 2940 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\WINDOWS\system32\drivers\arc.sys
10:35:10.0187 2940 arc - ok
10:35:10.0218 2940 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
10:35:10.0218 2940 arcsas - ok
10:35:10.0234 2940 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:35:10.0265 2940 AsyncMac - ok
10:35:10.0281 2940 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
10:35:10.0281 2940 atapi - ok
10:35:10.0312 2940 [ 8A814F4CBF6AA28A8F0212592824C927 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:35:10.0343 2940 AudioEndpointBuilder - ok
10:35:10.0374 2940 [ 01E8E96251900BCEFAB34FBC1FCEB552 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
10:35:10.0406 2940 Audiosrv - ok
10:35:10.0437 2940 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
10:35:10.0468 2940 AxInstSV - ok
10:35:10.0499 2940 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
10:35:10.0515 2940 b06bdrv - ok
10:35:10.0531 2940 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:35:10.0562 2940 BasicDisplay - ok
10:35:10.0578 2940 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
10:35:10.0609 2940 BasicRender - ok
10:35:10.0624 2940 [ 558F6EEF46EC2642C8F72D34CBB5612E ] BDESVC C:\WINDOWS\System32\bdesvc.dll
10:35:10.0656 2940 BDESVC - ok
10:35:10.0671 2940 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
10:35:10.0703 2940 Beep - ok
10:35:10.0749 2940 [ 407F85D5387EDBB665A7969DF4D4712B ] BFE C:\WINDOWS\System32\bfe.dll
10:35:10.0781 2940 BFE - ok
10:35:10.0812 2940 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\WINDOWS\System32\qmgr.dll
10:35:10.0843 2940 BITS - ok
10:35:10.0859 2940 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
10:35:10.0874 2940 bowser - ok
10:35:10.0906 2940 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:35:10.0953 2940 BrokerInfrastructure - ok
10:35:10.0968 2940 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\WINDOWS\System32\browser.dll
10:35:11.0015 2940 Browser - ok
10:35:11.0031 2940 [ FC79BE6D8FBC8699E9980F657D281BE9 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:35:11.0046 2940 BthAvrcpTg - ok
10:35:11.0078 2940 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
10:35:11.0140 2940 BthHFEnum - ok
10:35:11.0156 2940 [ 6F7368071FCDDB96C0527A6E5D7C1906 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
10:35:11.0171 2940 bthhfhid - ok
10:35:11.0187 2940 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
10:35:11.0218 2940 BTHMODEM - ok
10:35:11.0249 2940 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\WINDOWS\system32\bthserv.dll
10:35:11.0265 2940 bthserv - ok
10:35:11.0296 2940 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:35:11.0359 2940 cdfs - ok
10:35:11.0374 2940 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
10:35:11.0406 2940 cdrom - ok
10:35:11.0421 2940 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
10:35:11.0453 2940 CertPropSvc - ok
10:35:11.0468 2940 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\WINDOWS\System32\drivers\circlass.sys
10:35:11.0499 2940 circlass - ok
10:35:11.0609 2940 [ ED81E81752CA817AFA740C14AD05BC6C ] cjpcsc C:\WINDOWS\SysWOW64\cjpcsc.exe
10:35:11.0671 2940 cjpcsc - ok
10:35:11.0703 2940 [ 06E1F5228399FC49A8D026DA38DB6784 ] cjusb C:\WINDOWS\system32\DRIVERS\cjusb.sys
10:35:11.0703 2940 cjusb - ok
10:35:11.0734 2940 [ 81326EB34AF569365437B52E4328C1C4 ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
10:35:11.0765 2940 ClassicShellService ( UnsignedFile.Multi.Generic ) - warning
10:35:11.0765 2940 ClassicShellService - detected UnsignedFile.Multi.Generic (1)
10:35:11.0796 2940 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
10:35:11.0828 2940 CLFS - ok
10:35:11.0843 2940 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
10:35:11.0859 2940 CmBatt - ok
10:35:11.0890 2940 [ 1894FD2D5966A81D3B07A7C4D8724D59 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
10:35:11.0906 2940 CNG - ok
10:35:11.0921 2940 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
10:35:11.0937 2940 CompositeBus - ok
10:35:11.0937 2940 COMSysApp - ok
10:35:11.0953 2940 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\WINDOWS\system32\drivers\condrv.sys
10:35:11.0968 2940 condrv - ok
10:35:12.0000 2940 [ 78AF1C499BF02F9814DF959A04A4F9C9 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
10:35:12.0015 2940 cphs - ok
10:35:12.0015 2940 CpqDfw - ok
10:35:12.0046 2940 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
10:35:12.0062 2940 CryptSvc - ok
10:35:12.0093 2940 [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC C:\WINDOWS\system32\drivers\csc.sys
10:35:12.0125 2940 CSC - ok
10:35:12.0156 2940 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\WINDOWS\System32\cscsvc.dll
10:35:12.0203 2940 CscService - ok
10:35:12.0234 2940 [ A4CCA7289C1A6223D61FD27BF2FC413F ] dam C:\WINDOWS\system32\drivers\dam.sys
10:35:12.0234 2940 dam - ok
10:35:12.0296 2940 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
10:35:12.0359 2940 DcomLaunch - ok
10:35:12.0390 2940 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
10:35:12.0453 2940 defragsvc - ok
10:35:12.0484 2940 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:35:12.0531 2940 DeviceAssociationService - ok
10:35:12.0546 2940 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
10:35:12.0562 2940 DeviceInstall - ok
10:35:12.0593 2940 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
10:35:12.0609 2940 Dfsc - ok
10:35:12.0656 2940 [ D51B32BA3897F630D99713B74B40D6A2 ] DfSdkS C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2012\DfsdkS64.exe
10:35:12.0687 2940 DfSdkS ( UnsignedFile.Multi.Generic ) - warning
10:35:12.0687 2940 DfSdkS - detected UnsignedFile.Multi.Generic (1)
10:35:12.0718 2940 [ CFB72DF4B2364AF6D4D685DCD310E942 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
10:35:12.0781 2940 Dhcp - ok
10:35:12.0812 2940 [ 4F26BB00747D41E7C0FE8EBB2900F862 ] DirMngr C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
10:35:12.0828 2940 DirMngr ( UnsignedFile.Multi.Generic ) - warning
10:35:12.0828 2940 DirMngr - detected UnsignedFile.Multi.Generic (1)
10:35:12.0843 2940 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\WINDOWS\system32\drivers\discache.sys
10:35:12.0890 2940 discache - ok
10:35:12.0921 2940 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\WINDOWS\system32\drivers\disk.sys
10:35:12.0921 2940 disk - ok
10:35:12.0937 2940 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
10:35:12.0968 2940 dmvsc - ok
10:35:13.0000 2940 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
10:35:13.0046 2940 Dnscache - ok
10:35:13.0078 2940 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\WINDOWS\System32\dot3svc.dll
10:35:13.0109 2940 dot3svc - ok
10:35:13.0125 2940 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\WINDOWS\system32\dps.dll
10:35:13.0171 2940 DPS - ok
10:35:13.0203 2940 [ 84D07E4E4FBE72DA3EC1C1E77C49B53C ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
10:35:13.0250 2940 drmkaud - ok
10:35:13.0328 2940 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
10:35:13.0375 2940 DsmSvc - ok
10:35:13.0421 2940 [ 898BF1647BBF012B38EF45C7F9F7A67E ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:35:13.0484 2940 DXGKrnl - ok
10:35:13.0515 2940 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\WINDOWS\System32\eapsvc.dll
10:35:13.0578 2940 Eaphost - ok
10:35:13.0687 2940 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
10:35:13.0796 2940 ebdrv - ok
10:35:13.0828 2940 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\WINDOWS\System32\lsass.exe
10:35:13.0859 2940 EFS - ok
10:35:13.0875 2940 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
10:35:13.0875 2940 EhStorClass - ok
10:35:13.0906 2940 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:35:13.0921 2940 EhStorTcgDrv - ok
10:35:13.0937 2940 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
10:35:13.0953 2940 ErrDev - ok
10:35:14.0000 2940 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\WINDOWS\system32\es.dll
10:35:14.0047 2940 EventSystem - ok
10:35:14.0078 2940 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
10:35:14.0093 2940 exfat - ok
10:35:14.0125 2940 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
10:35:14.0125 2940 fastfat - ok
10:35:14.0156 2940 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\WINDOWS\system32\fxssvc.exe
10:35:14.0203 2940 Fax - ok
10:35:14.0234 2940 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
10:35:14.0250 2940 fdc - ok
10:35:14.0281 2940 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\WINDOWS\system32\fdPHost.dll
10:35:14.0328 2940 fdPHost - ok
10:35:14.0343 2940 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\WINDOWS\system32\fdrespub.dll
10:35:14.0375 2940 FDResPub - ok
10:35:14.0406 2940 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
10:35:14.0422 2940 fhsvc - ok
10:35:14.0437 2940 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
10:35:14.0453 2940 FileInfo - ok
10:35:14.0468 2940 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
10:35:14.0484 2940 Filetrace - ok
10:35:14.0515 2940 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
10:35:14.0531 2940 flpydisk - ok
10:35:14.0562 2940 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
10:35:14.0578 2940 FltMgr - ok
10:35:14.0625 2940 [ 305CB1E16576F436BC8797E629A3D46D ] FontCache C:\WINDOWS\system32\FntCache.dll
10:35:14.0687 2940 FontCache - ok
10:35:14.0750 2940 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:35:14.0781 2940 FontCache3.0.0.0 - ok
10:35:14.0797 2940 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
10:35:14.0812 2940 FsDepends - ok
10:35:14.0843 2940 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:35:14.0843 2940 Fs_Rec - ok
10:35:14.0875 2940 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:35:14.0890 2940 fvevol - ok
10:35:14.0906 2940 [ 3EF3FCCC0E70EEC5C2AD996F32BBA642 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
10:35:14.0937 2940 FxPPM - ok
10:35:14.0937 2940 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
10:35:14.0937 2940 gagp30kx - ok
10:35:14.0968 2940 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
10:35:14.0984 2940 gencounter - ok
10:35:15.0000 2940 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:35:15.0015 2940 GPIOClx0101 - ok
10:35:15.0047 2940 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
10:35:15.0078 2940 gpsvc - ok
10:35:15.0125 2940 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:35:15.0125 2940 gupdate - ok
10:35:15.0140 2940 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:35:15.0140 2940 gupdatem - ok
10:35:15.0172 2940 [ 9FC1F11D4D19F61DFE5CC878B4557D3A ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
10:35:15.0203 2940 HdAudAddService - ok
10:35:15.0234 2940 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
10:35:15.0265 2940 HDAudBus - ok
10:35:15.0297 2940 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
10:35:15.0312 2940 HidBatt - ok
10:35:15.0328 2940 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
10:35:15.0359 2940 HidBth - ok
10:35:15.0359 2940 [ AC0526C4E3A7954F750B8F8D95EFB340 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
10:35:15.0390 2940 hidi2c - ok
10:35:15.0390 2940 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
10:35:15.0422 2940 HidIr - ok
10:35:15.0453 2940 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\WINDOWS\system32\hidserv.dll
10:35:15.0468 2940 hidserv - ok
10:35:15.0484 2940 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
10:35:15.0500 2940 HidUsb - ok
10:35:15.0531 2940 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
10:35:15.0531 2940 hkmsvc - ok
10:35:15.0562 2940 [ 6CC1AD7B0E071C317B7FB8FC6AEF0EDA ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:35:15.0593 2940 HomeGroupListener - ok
10:35:15.0625 2940 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:35:15.0640 2940 HomeGroupProvider - ok
10:35:15.0703 2940 [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:35:15.0718 2940 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
10:35:15.0718 2940 HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
10:35:15.0765 2940 [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:35:15.0812 2940 hpqwmiex - ok
10:35:15.0844 2940 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
10:35:15.0844 2940 HpSAMD - ok
10:35:15.0875 2940 [ 47DBBF38E00C3F7404B71F6509241EF1 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
10:35:15.0906 2940 HTTP - ok
10:35:15.0922 2940 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
10:35:15.0937 2940 hwpolicy - ok
10:35:15.0937 2940 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
10:35:15.0968 2940 hyperkbd - ok
10:35:15.0968 2940 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:35:16.0000 2940 HyperVideo - ok
10:35:16.0015 2940 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
10:35:16.0047 2940 i8042prt - ok
10:35:16.0062 2940 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
10:35:16.0078 2940 iaStorV - ok
10:35:16.0219 2940 [ A1CF07D24EDCDC6870535471654D957C ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
10:35:16.0328 2940 igfx - ok
10:35:16.0359 2940 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\WINDOWS\system32\drivers\iirsp.sys
10:35:16.0359 2940 iirsp - ok
10:35:16.0437 2940 [ A06EFD4965F8A3F97A8C9A291D032678 ] IJPLMSVC C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
10:35:16.0453 2940 IJPLMSVC - ok
10:35:16.0515 2940 [ 45EACE8D94B9CEC746A85154892C4FDC ] IKEEXT C:\WINDOWS\System32\ikeext.dll
10:35:16.0562 2940 IKEEXT - ok
10:35:16.0594 2940 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
10:35:16.0594 2940 intelide - ok
10:35:16.0625 2940 [ F9E126AA767E2E6E3128434A43C9F713 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
10:35:16.0625 2940 intelppm - ok
10:35:16.0640 2940 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:35:16.0656 2940 IpFilterDriver - ok
10:35:16.0703 2940 [ CAC5202757EF68C4849B0DFFA75F6D3C ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
10:35:16.0750 2940 iphlpsvc - ok
10:35:16.0765 2940 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:35:16.0797 2940 IPMIDRV - ok
10:35:16.0828 2940 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
10:35:16.0859 2940 IPNAT - ok
10:35:16.0875 2940 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
10:35:16.0906 2940 IRENUM - ok
10:35:16.0922 2940 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
10:35:16.0937 2940 isapnp - ok
10:35:16.0969 2940 [ F5F0DE1B7F256997501EECECE9648108 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
10:35:16.0984 2940 iScsiPrt - ok
10:35:17.0000 2940 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
10:35:17.0000 2940 kbdclass - ok
10:35:17.0015 2940 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
10:35:17.0031 2940 kbdhid - ok
10:35:17.0047 2940 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:35:17.0094 2940 kdnic - ok
10:35:17.0109 2940 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\WINDOWS\system32\lsass.exe
10:35:17.0109 2940 KeyIso - ok
10:35:17.0125 2940 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
10:35:17.0140 2940 KSecDD - ok
10:35:17.0172 2940 [ E427D299CFE267A2465D3AAF81440ED9 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:35:17.0172 2940 KSecPkg - ok
10:35:17.0187 2940 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
10:35:17.0219 2940 ksthunk - ok
10:35:17.0234 2940 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
10:35:17.0250 2940 KtmRm - ok
10:35:17.0297 2940 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
10:35:17.0328 2940 LanmanServer - ok
10:35:17.0359 2940 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:35:17.0390 2940 LanmanWorkstation - ok
10:35:17.0390 2940 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:35:17.0406 2940 lltdio - ok
10:35:17.0437 2940 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
10:35:17.0531 2940 lltdsvc - ok
10:35:17.0547 2940 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
10:35:17.0578 2940 lmhosts - ok
10:35:17.0609 2940 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
10:35:17.0625 2940 LSI_SAS - ok
10:35:17.0640 2940 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:35:17.0640 2940 LSI_SAS2 - ok
10:35:17.0672 2940 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\WINDOWS\system32\drivers\lsi_scsi.sys
10:35:17.0672 2940 LSI_SCSI - ok
10:35:17.0672 2940 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
10:35:17.0687 2940 LSI_SSS - ok
10:35:17.0719 2940 [ 8FEFDCEE40B75FD23B4BC60DA6576113 ] LSM C:\WINDOWS\System32\lsm.dll
10:35:17.0750 2940 LSM - ok
10:35:17.0765 2940 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
10:35:17.0797 2940 luafv - ok
10:35:17.0828 2940 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
10:35:17.0828 2940 MBAMProtector - ok
10:35:17.0875 2940 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:35:17.0890 2940 MBAMScheduler - ok
10:35:17.0906 2940 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:35:17.0922 2940 MBAMService - ok
10:35:17.0937 2940 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\WINDOWS\system32\drivers\megasas.sys
10:35:17.0937 2940 megasas - ok
10:35:17.0969 2940 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\WINDOWS\system32\drivers\MegaSR.sys
10:35:17.0984 2940 MegaSR - ok
10:35:18.0016 2940 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
10:35:18.0031 2940 MEIx64 - ok
10:35:18.0047 2940 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\WINDOWS\system32\mmcss.dll
10:35:18.0062 2940 MMCSS - ok
10:35:18.0094 2940 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\WINDOWS\system32\drivers\modem.sys
10:35:18.0109 2940 Modem - ok
10:35:18.0125 2940 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\WINDOWS\system32\DRIVERS\monitor.sys
10:35:18.0140 2940 monitor - ok
10:35:18.0156 2940 [ 618446B98C79776654340CE27C73485E ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
10:35:18.0156 2940 mouclass - ok
10:35:18.0172 2940 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
10:35:18.0187 2940 mouhid - ok
10:35:18.0203 2940 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
10:35:18.0219 2940 mountmgr - ok
10:35:18.0234 2940 [ DAE3C509F33059BC4D48A8925F476FB4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:35:18.0250 2940 MozillaMaintenance - ok
10:35:18.0281 2940 [ 36BF4D86F166ACBC14F0B8B8F90CBCEA ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
10:35:18.0297 2940 mpsdrv - ok
10:35:18.0344 2940 [ 411EA973A1961C287927DF13891EB41E ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
10:35:18.0375 2940 MpsSvc - ok
10:35:18.0422 2940 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
10:35:18.0422 2940 MRxDAV - ok
10:35:18.0437 2940 [ 1EEAA5A62E8C49DDF58798F06F78BFFA ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:35:18.0469 2940 mrxsmb - ok
10:35:18.0500 2940 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:35:18.0516 2940 mrxsmb10 - ok
10:35:18.0531 2940 [ BFBE1EA55ECC15733933D429E384BCA4 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:35:18.0547 2940 mrxsmb20 - ok
10:35:18.0562 2940 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
10:35:18.0578 2940 MsBridge - ok
10:35:18.0609 2940 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
10:35:18.0641 2940 MSDTC - ok
10:35:18.0656 2940 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
10:35:18.0656 2940 Msfs - ok
10:35:18.0687 2940 [ C9BFB0353099B071E70299549C18C8AE ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:35:18.0687 2940 msgpiowin32 - ok
10:35:18.0703 2940 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:35:18.0734 2940 mshidkmdf - ok
10:35:18.0734 2940 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
10:35:18.0734 2940 mshidumdf - ok
10:35:18.0750 2940 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
10:35:18.0766 2940 msisadrv - ok
10:35:18.0797 2940 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
10:35:18.0812 2940 MSiSCSI - ok
10:35:18.0828 2940 msiserver - ok
10:35:18.0844 2940 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:35:18.0859 2940 MSKSSRV - ok
10:35:18.0875 2940 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:35:18.0906 2940 MsLldp - ok
10:35:18.0922 2940 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:35:18.0937 2940 MSPCLOCK - ok
10:35:18.0937 2940 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
10:35:18.0937 2940 MSPQM - ok
10:35:18.0953 2940 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
10:35:18.0969 2940 MsRPC - ok
10:35:18.0984 2940 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
10:35:19.0000 2940 mssmbios - ok
10:35:19.0016 2940 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
10:35:19.0031 2940 MSTEE - ok
10:35:19.0031 2940 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
10:35:19.0031 2940 MTConfig - ok
10:35:19.0047 2940 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\WINDOWS\system32\Drivers\mup.sys
10:35:19.0062 2940 Mup - ok
10:35:19.0062 2940 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
10:35:19.0062 2940 mvumis - ok
10:35:19.0094 2940 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\WINDOWS\system32\qagentRT.dll
10:35:19.0109 2940 napagent - ok
10:35:19.0141 2940 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:35:19.0156 2940 NativeWifiP - ok
10:35:19.0219 2940 [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
10:35:19.0234 2940 NAUpdate - ok
10:35:19.0250 2940 [ DACA803A8D732FE5EEAA024EC342F81D ] NBVol C:\WINDOWS\system32\DRIVERS\NBVol.sys
10:35:19.0250 2940 NBVol - ok
10:35:19.0266 2940 [ 6208F622E9E35860DFB0753DFF56F0C0 ] NBVolUp C:\WINDOWS\system32\DRIVERS\NBVolUp.sys
10:35:19.0281 2940 NBVolUp - ok
10:35:19.0312 2940 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
10:35:19.0328 2940 NcaSvc - ok
10:35:19.0344 2940 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
10:35:19.0391 2940 NcdAutoSetup - ok
10:35:19.0437 2940 [ FE6463C1574610E26ED8DE2054DF59A4 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
10:35:19.0500 2940 NDIS - ok
10:35:19.0516 2940 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:35:19.0531 2940 NdisCap - ok
10:35:19.0547 2940 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:35:19.0578 2940 NdisImPlatform - ok
10:35:19.0609 2940 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:35:19.0625 2940 NdisTapi - ok
10:35:19.0641 2940 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:35:19.0656 2940 Ndisuio - ok
10:35:19.0687 2940 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:35:19.0719 2940 NdisWan - ok
10:35:19.0719 2940 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:35:19.0734 2940 NDISWANLEGACY - ok
10:35:19.0750 2940 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
10:35:19.0766 2940 NDProxy - ok
10:35:19.0781 2940 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
10:35:19.0797 2940 Ndu - ok
10:35:19.0812 2940 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
10:35:19.0828 2940 NetBIOS - ok
10:35:19.0891 2940 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
10:35:19.0937 2940 NetBT - ok
10:35:19.0953 2940 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\WINDOWS\system32\lsass.exe
10:35:19.0969 2940 Netlogon - ok
10:35:20.0000 2940 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\WINDOWS\System32\netman.dll
10:35:20.0047 2940 Netman - ok
10:35:20.0062 2940 [ 20F6FD63E6D456114BC8056D62792786 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
10:35:20.0094 2940 netprofm - ok
10:35:20.0156 2940 [ 06C59F7859970C445F09E233D607FA4C ] netr28x C:\WINDOWS\system32\DRIVERS\netr28x.sys
10:35:20.0187 2940 netr28x - ok
10:35:20.0219 2940 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:35:20.0266 2940 NetTcpPortSharing - ok
10:35:20.0281 2940 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\WINDOWS\system32\drivers\nfrd960.sys
10:35:20.0297 2940 nfrd960 - ok
10:35:20.0328 2940 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
10:35:20.0359 2940 NlaSvc - ok
10:35:20.0375 2940 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
10:35:20.0391 2940 Npfs - ok
10:35:20.0391 2940 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
10:35:20.0422 2940 npsvctrig - ok
10:35:20.0453 2940 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\WINDOWS\system32\nsisvc.dll
10:35:20.0453 2940 nsi - ok
10:35:20.0469 2940 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
10:35:20.0500 2940 nsiproxy - ok
10:35:20.0562 2940 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
10:35:20.0609 2940 Ntfs - ok
10:35:20.0641 2940 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\WINDOWS\system32\drivers\Null.sys
10:35:20.0656 2940 Null - ok
10:35:20.0688 2940 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
10:35:20.0703 2940 nvraid - ok
10:35:20.0703 2940 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
10:35:20.0719 2940 nvstor - ok
10:35:20.0734 2940 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
10:35:20.0750 2940 nv_agp - ok
10:35:20.0797 2940 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:35:20.0813 2940 ose - ok
10:35:20.0875 2940 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
10:35:20.0922 2940 p2pimsvc - ok
10:35:20.0953 2940 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
10:35:20.0984 2940 p2psvc - ok
10:35:21.0000 2940 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\WINDOWS\System32\drivers\parport.sys
10:35:21.0016 2940 Parport - ok
10:35:21.0031 2940 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
10:35:21.0047 2940 partmgr - ok
10:35:21.0063 2940 [ 19E41F140A6ADBD38943710DA7FF0E38 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
10:35:21.0078 2940 PcaSvc - ok
10:35:21.0094 2940 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\WINDOWS\system32\drivers\pci.sys
10:35:21.0094 2940 pci - ok
10:35:21.0125 2940 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
10:35:21.0125 2940 pciide - ok
10:35:21.0156 2940 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
10:35:21.0172 2940 pcmcia - ok
10:35:21.0188 2940 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
10:35:21.0203 2940 pcw - ok
10:35:21.0234 2940 [ A192B9FC67F181A78B05175EE0A244FA ] pdc C:\WINDOWS\system32\drivers\pdc.sys
10:35:21.0250 2940 pdc - ok
10:35:21.0281 2940 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
10:35:21.0313 2940 PEAUTH - ok
10:35:21.0359 2940 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
10:35:21.0453 2940 PeerDistSvc - ok
10:35:21.0516 2940 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
10:35:21.0547 2940 PerfHost - ok
10:35:21.0594 2940 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\WINDOWS\system32\pla.dll
10:35:21.0656 2940 pla - ok
10:35:21.0672 2940 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
10:35:21.0688 2940 PlugPlay - ok
10:35:21.0734 2940 [ AFA7A2192F0E52ACC715637227AB360F ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
10:35:21.0750 2940 PMBDeviceInfoProvider - ok
10:35:21.0781 2940 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
10:35:21.0797 2940 PNRPAutoReg - ok
10:35:21.0813 2940 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
10:35:21.0828 2940 PNRPsvc - ok
10:35:21.0859 2940 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
10:35:21.0891 2940 PolicyAgent - ok
10:35:21.0906 2940 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\WINDOWS\system32\umpo.dll
10:35:21.0922 2940 Power - ok
10:35:21.0953 2940 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:35:21.0984 2940 PptpMiniport - ok
10:35:22.0094 2940 [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
10:35:22.0172 2940 PrintNotify - ok
10:35:22.0188 2940 [ 8DA167F8967AB35A2487095CB1B879A0 ] Processor C:\WINDOWS\System32\drivers\processr.sys
10:35:22.0203 2940 Processor - ok
10:35:22.0219 2940 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\WINDOWS\system32\profsvc.dll
10:35:22.0234 2940 ProfSvc - ok
10:35:22.0250 2940 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
10:35:22.0266 2940 Psched - ok
10:35:22.0281 2940 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\WINDOWS\system32\qwave.dll
10:35:22.0313 2940 QWAVE - ok
10:35:22.0328 2940 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
10:35:22.0344 2940 QWAVEdrv - ok
10:35:22.0360 2940 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:35:22.0391 2940 RasAcd - ok
10:35:22.0422 2940 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
10:35:22.0438 2940 RasAgileVpn - ok
10:35:22.0469 2940 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\WINDOWS\System32\rasauto.dll
10:35:22.0484 2940 RasAuto - ok
10:35:22.0500 2940 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:35:22.0516 2940 Rasl2tp - ok
10:35:22.0547 2940 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\WINDOWS\System32\rasmans.dll
10:35:22.0563 2940 RasMan - ok
10:35:22.0594 2940 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:35:22.0594 2940 RasPppoe - ok
10:35:22.0609 2940 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
10:35:22.0609 2940 RasSstp - ok
10:35:22.0656 2940 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:35:22.0672 2940 rdbss - ok
10:35:22.0688 2940 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
10:35:22.0703 2940 rdpbus - ok
10:35:22.0719 2940 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
10:35:22.0750 2940 RDPDR - ok
10:35:22.0766 2940 [ 3B4F32CA8B37584ECF98BCE136E38B96 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:35:22.0766 2940 RdpVideoMiniport - ok
10:35:22.0813 2940 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
10:35:22.0828 2940 RDPWD - ok
10:35:22.0844 2940 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
10:35:22.0844 2940 rdyboost - ok
10:35:22.0875 2940 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
10:35:22.0906 2940 RemoteAccess - ok
10:35:22.0938 2940 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:35:22.0953 2940 RemoteRegistry - ok
10:35:22.0985 2940 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
10:35:23.0000 2940 RpcEptMapper - ok
10:35:23.0031 2940 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\WINDOWS\system32\locator.exe
10:35:23.0031 2940 RpcLocator - ok
10:35:23.0063 2940 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\WINDOWS\system32\rpcss.dll
10:35:23.0078 2940 RpcSs - ok
10:35:23.0125 2940 [ E909662BF3CED6B79F2239DDA75BC6A4 ] RSPCIESTOR C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
10:35:23.0125 2940 RSPCIESTOR - ok
10:35:23.0141 2940 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:35:23.0188 2940 rspndr - ok
10:35:23.0219 2940 [ 15923AA360F7675D3D43C9669316A0BA ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
10:35:23.0250 2940 RTL8168 - ok
10:35:23.0266 2940 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
10:35:23.0281 2940 s3cap - ok
10:35:23.0297 2940 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\WINDOWS\system32\lsass.exe
10:35:23.0313 2940 SamSs - ok
10:35:23.0375 2940 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:35:23.0391 2940 SASDIFSV - ok
10:35:23.0391 2940 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:35:23.0406 2940 SASKUTIL - ok
10:35:23.0453 2940 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
10:35:23.0485 2940 sbp2port - ok
10:35:23.0516 2940 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
10:35:23.0547 2940 SCardSvr - ok
10:35:23.0563 2940 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:35:23.0578 2940 scfilter - ok
10:35:23.0625 2940 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\WINDOWS\system32\schedsvc.dll
10:35:23.0656 2940 Schedule - ok
10:35:23.0688 2940 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
10:35:23.0703 2940 SCPolicySvc - ok
10:35:23.0735 2940 [ A27CF856218B1B1442A7A3B5CF94B4B9 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
10:35:23.0750 2940 sdbus - ok
10:35:23.0766 2940 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
10:35:23.0797 2940 SDRSVC - ok
10:35:23.0797 2940 [ 74369A913837FB46C3B27373DA2ADF4E ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
10:35:23.0797 2940 sdstor - ok
10:35:23.0828 2940 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
10:35:23.0828 2940 secdrv - ok
10:35:23.0844 2940 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\WINDOWS\system32\seclogon.dll
10:35:23.0860 2940 seclogon - ok
10:35:23.0875 2940 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\WINDOWS\System32\sens.dll
10:35:23.0891 2940 SENS - ok
10:35:23.0922 2940 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
10:35:23.0953 2940 SensrSvc - ok
10:35:23.0969 2940 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
10:35:23.0969 2940 SerCx - ok
10:35:23.0985 2940 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
10:35:24.0016 2940 Serenum - ok
10:35:24.0031 2940 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\WINDOWS\System32\drivers\serial.sys
10:35:24.0031 2940 Serial - ok
10:35:24.0031 2940 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
10:35:24.0047 2940 sermouse - ok
10:35:24.0078 2940 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\WINDOWS\system32\sessenv.dll
10:35:24.0094 2940 SessionEnv - ok
10:35:24.0094 2940 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
10:35:24.0125 2940 sfloppy - ok
10:35:24.0141 2940 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
10:35:24.0172 2940 SharedAccess - ok
10:35:24.0219 2940 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:35:24.0266 2940 ShellHWDetection - ok
10:35:24.0297 2940 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:35:24.0313 2940 SiSRaid2 - ok
10:35:24.0313 2940 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
10:35:24.0328 2940 SiSRaid4 - ok
10:35:24.0438 2940 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:35:24.0500 2940 Skype C2C Service - ok
10:35:24.0547 2940 [ 94A221B95F4FB4FAAB6A56A683D6FDF3 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:35:24.0547 2940 SkypeUpdate - ok
10:35:24.0578 2940 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
10:35:24.0641 2940 SNMPTRAP - ok
10:35:24.0672 2940 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
10:35:24.0688 2940 spaceport - ok
10:35:24.0703 2940 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
10:35:24.0719 2940 SpbCx - ok
10:35:24.0750 2940 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\WINDOWS\System32\spoolsv.exe
10:35:24.0782 2940 Spooler - ok
10:35:24.0906 2940 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\WINDOWS\system32\sppsvc.exe
10:35:25.0063 2940 sppsvc - ok
10:35:25.0094 2940 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
10:35:25.0125 2940 srv - ok
10:35:25.0141 2940 [ 0DE224F7B8041B17AA53D00327A86396 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
10:35:25.0157 2940 srv2 - ok
10:35:25.0172 2940 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:35:25.0203 2940 srvnet - ok
10:35:25.0250 2940 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
10:35:25.0266 2940 SSDPSRV - ok
10:35:25.0282 2940 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
10:35:25.0282 2940 SstpSvc - ok
10:35:25.0360 2940 [ E4AEA6FC64A979375149B86882CA2100 ] StarMoney 8.0 OnlineUpdate C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
10:35:25.0407 2940 StarMoney 8.0 OnlineUpdate - ok
10:35:25.0422 2940 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
10:35:25.0438 2940 stexstor - ok
10:35:25.0469 2940 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\WINDOWS\System32\wiaservc.dll
10:35:25.0500 2940 stisvc - ok
10:35:25.0500 2940 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
10:35:25.0516 2940 storahci - ok
10:35:25.0547 2940 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
10:35:25.0547 2940 storflt - ok
10:35:25.0563 2940 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\WINDOWS\system32\storsvc.dll
10:35:25.0610 2940 StorSvc - ok
10:35:25.0625 2940 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
10:35:25.0625 2940 storvsc - ok
10:35:25.0641 2940 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\WINDOWS\System32\drivers\storvsp.sys
10:35:25.0672 2940 storvsp - ok
10:35:25.0703 2940 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\WINDOWS\system32\svsvc.dll
10:35:25.0735 2940 svsvc - ok
10:35:25.0750 2940 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\WINDOWS\System32\drivers\swenum.sys
10:35:25.0750 2940 swenum - ok
10:35:25.0782 2940 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\WINDOWS\System32\swprv.dll
10:35:25.0813 2940 swprv - ok
10:35:25.0844 2940 [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:35:25.0860 2940 SynTP - ok
10:35:25.0922 2940 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\WINDOWS\system32\sysmain.dll
10:35:25.0938 2940 SysMain - ok
10:35:25.0985 2940 [ 079244F281621FEDCC161D3923E858FE ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:35:26.0047 2940 SystemEventsBroker - ok
10:35:26.0078 2940 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:35:26.0094 2940 TabletInputService - ok
10:35:26.0125 2940 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
10:35:26.0141 2940 TapiSrv - ok
10:35:26.0203 2940 [ 1D644E2D0FC395A055AB1C23C3B43631 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
10:35:26.0282 2940 Tcpip - ok
10:35:26.0313 2940 [ 1D644E2D0FC395A055AB1C23C3B43631 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:35:26.0360 2940 TCPIP6 - ok
10:35:26.0375 2940 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
10:35:26.0391 2940 tcpipreg - ok
10:35:26.0407 2940 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
10:35:26.0422 2940 tdx - ok
10:35:26.0438 2940 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
10:35:26.0438 2940 terminpt - ok
10:35:26.0485 2940 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\WINDOWS\System32\termsrv.dll
10:35:26.0516 2940 TermService - ok
10:35:26.0532 2940 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\WINDOWS\system32\themeservice.dll
10:35:26.0563 2940 Themes - ok
10:35:26.0578 2940 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\WINDOWS\system32\mmcss.dll
10:35:26.0578 2940 THREADORDER - ok
10:35:26.0610 2940 [ 52066C139CC189468845D5BE557B25EB ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
10:35:26.0625 2940 TimeBroker - ok
10:35:26.0657 2940 [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
10:35:26.0657 2940 TPM - ok
10:35:26.0688 2940 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\WINDOWS\System32\trkwks.dll
10:35:26.0719 2940 TrkWks - ok
10:35:26.0750 2940 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:35:26.0782 2940 TrustedInstaller - ok
10:35:26.0813 2940 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
10:35:26.0829 2940 TsUsbFlt - ok
10:35:26.0844 2940 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:35:26.0860 2940 TsUsbGD - ok
10:35:26.0891 2940 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:35:26.0907 2940 tunnel - ok
10:35:26.0922 2940 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
10:35:26.0922 2940 uagp35 - ok
10:35:26.0938 2940 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
10:35:26.0938 2940 UASPStor - ok
10:35:26.0969 2940 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
10:35:26.0969 2940 UCX01000 - ok
10:35:27.0000 2940 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
10:35:27.0016 2940 udfs - ok
10:35:27.0032 2940 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
10:35:27.0063 2940 UI0Detect - ok
10:35:27.0079 2940 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
10:35:27.0079 2940 uliagpkx - ok
10:35:27.0110 2940 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
10:35:27.0125 2940 umbus - ok
10:35:27.0141 2940 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
10:35:27.0157 2940 UmPass - ok
10:35:27.0188 2940 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\WINDOWS\System32\umrdp.dll
10:35:27.0203 2940 UmRdpService - ok
10:35:27.0219 2940 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\WINDOWS\System32\upnphost.dll
10:35:27.0235 2940 upnphost - ok
10:35:27.0250 2940 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
10:35:27.0282 2940 usbccgp - ok
10:35:27.0297 2940 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
10:35:27.0329 2940 usbcir - ok
10:35:27.0360 2940 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
10:35:27.0360 2940 usbehci - ok
10:35:27.0391 2940 [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
10:35:27.0407 2940 usbhub - ok
10:35:27.0422 2940 [ 7B886003CEEBF3C8E4FDF3586DCB3787 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
10:35:27.0438 2940 USBHUB3 - ok
10:35:27.0454 2940 [ EC1303E3DBF312B846377A84C0D15F27 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
10:35:27.0485 2940 usbohci - ok
10:35:27.0500 2940 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
10:35:27.0532 2940 usbprint - ok
10:35:27.0547 2940 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:35:27.0563 2940 USBSTOR - ok
10:35:27.0579 2940 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
10:35:27.0594 2940 usbuhci - ok
10:35:27.0625 2940 [ 09799E701B4327097E9F63D3FE221083 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
10:35:27.0657 2940 usbvideo - ok
10:35:27.0672 2940 [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:35:27.0688 2940 USBXHCI - ok
10:35:27.0688 2940 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\WINDOWS\system32\lsass.exe
10:35:27.0704 2940 VaultSvc - ok
10:35:27.0719 2940 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
10:35:27.0719 2940 vdrvroot - ok
10:35:27.0766 2940 [ 00FBA165A1167738802DA5D0EE78EF10 ] vds C:\WINDOWS\System32\vds.exe
10:35:27.0813 2940 vds - ok
10:35:27.0829 2940 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
10:35:27.0844 2940 VerifierExt - ok
10:35:27.0860 2940 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
10:35:27.0891 2940 vhdmp - ok
10:35:27.0907 2940 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\WINDOWS\system32\drivers\viaide.sys
10:35:27.0907 2940 viaide - ok
10:35:27.0922 2940 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\WINDOWS\System32\drivers\Vid.sys
10:35:27.0938 2940 Vid - ok
10:35:27.0954 2940 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
10:35:27.0969 2940 vmbus - ok
10:35:27.0969 2940 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
10:35:27.0985 2940 VMBusHID - ok
10:35:27.0985 2940 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\WINDOWS\System32\drivers\vmbusr.sys
10:35:28.0000 2940 vmbusr - ok
10:35:28.0016 2940 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
10:35:28.0047 2940 vmicheartbeat - ok
10:35:28.0047 2940 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:35:28.0063 2940 vmickvpexchange - ok
10:35:28.0063 2940 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
10:35:28.0079 2940 vmicrdv - ok
10:35:28.0110 2940 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
10:35:28.0125 2940 vmicshutdown - ok
10:35:28.0125 2940 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
10:35:28.0141 2940 vmictimesync - ok
10:35:28.0141 2940 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
10:35:28.0157 2940 vmicvss - ok
10:35:28.0172 2940 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
10:35:28.0172 2940 volmgr - ok
10:35:28.0204 2940 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
10:35:28.0219 2940 volmgrx - ok
10:35:28.0235 2940 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
10:35:28.0250 2940 volsnap - ok
10:35:28.0250 2940 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\WINDOWS\System32\drivers\vpci.sys
10:35:28.0266 2940 vpci - ok
10:35:28.0282 2940 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\WINDOWS\System32\drivers\vpcivsp.sys
10:35:28.0297 2940 vpcivsp - ok
10:35:28.0297 2940 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
10:35:28.0313 2940 vsmraid - ok
10:35:28.0360 2940 [ EA658570314042C914964FC72AB50E6B ] VSS C:\WINDOWS\system32\vssvc.exe
10:35:28.0407 2940 VSS - ok
10:35:28.0438 2940 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
10:35:28.0469 2940 VSTXRAID - ok
10:35:28.0485 2940 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
10:35:28.0500 2940 vwifibus - ok
10:35:28.0516 2940 [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
10:35:28.0532 2940 vwififlt - ok
10:35:28.0532 2940 [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
10:35:28.0563 2940 vwifimp - ok
10:35:28.0594 2940 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\WINDOWS\system32\w32time.dll
10:35:28.0625 2940 W32Time - ok
10:35:28.0657 2940 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
10:35:28.0750 2940 WacomPen - ok
10:35:28.0782 2940 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:35:28.0813 2940 Wanarp - ok
10:35:28.0813 2940 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:35:28.0829 2940 Wanarpv6 - ok
10:35:28.0875 2940 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\WINDOWS\system32\wbengine.exe
10:35:28.0938 2940 wbengine - ok
10:35:28.0954 2940 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
10:35:28.0969 2940 WbioSrvc - ok
10:35:29.0000 2940 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
10:35:29.0000 2940 Wcmsvc - ok
10:35:29.0032 2940 [ 4507D89FA9E4283100948C91E867D130 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
10:35:29.0063 2940 wcncsvc - ok
10:35:29.0079 2940 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:35:29.0094 2940 WcsPlugInService - ok
10:35:29.0126 2940 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\WINDOWS\system32\drivers\wd.sys
10:35:29.0126 2940 Wd - ok
10:35:29.0157 2940 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
10:35:29.0157 2940 WdBoot - ok
10:35:29.0188 2940 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
10:35:29.0204 2940 Wdf01000 - ok
10:35:29.0219 2940 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
10:35:29.0235 2940 WdFilter - ok
10:35:29.0251 2940 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
10:35:29.0266 2940 WdiServiceHost - ok
10:35:29.0266 2940 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
10:35:29.0282 2940 WdiSystemHost - ok
10:35:29.0313 2940 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\WINDOWS\System32\webclnt.dll
10:35:29.0329 2940 WebClient - ok
10:35:29.0329 2940 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
10:35:29.0360 2940 Wecsvc - ok
10:35:29.0376 2940 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
10:35:29.0391 2940 wercplsupport - ok
10:35:29.0391 2940 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
10:35:29.0422 2940 WerSvc - ok
10:35:29.0454 2940 [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:35:29.0454 2940 WFPLWFS - ok
10:35:29.0501 2940 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
10:35:29.0501 2940 WiaRpc - ok
10:35:29.0532 2940 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
10:35:29.0532 2940 WIMMount - ok
10:35:29.0547 2940 WinDefend - ok
10:35:29.0579 2940 [ 1369928779943B5C7AABA263E6E2BBC1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:35:29.0610 2940 WinHttpAutoProxySvc - ok
10:35:29.0657 2940 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
10:35:29.0672 2940 Winmgmt - ok
10:35:29.0751 2940 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
10:35:29.0797 2940 WinRM - ok
10:35:29.0829 2940 [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUsb.sys
10:35:29.0876 2940 WinUsb - ok
10:35:29.0922 2940 [ 19B3CFB1D6516AB2C54772CB75426AD4 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
10:35:29.0954 2940 WlanSvc - ok
10:35:30.0001 2940 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
10:35:30.0047 2940 wlidsvc - ok
10:35:30.0063 2940 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
10:35:30.0079 2940 WmiAcpi - ok
10:35:30.0110 2940 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:35:30.0126 2940 wmiApSrv - ok
10:35:30.0141 2940 WMPNetworkSvc - ok
10:35:30.0188 2940 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:35:30.0219 2940 wpcfltr - ok
10:35:30.0251 2940 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
10:35:30.0266 2940 WPCSvc - ok
10:35:30.0282 2940 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
10:35:30.0313 2940 WPDBusEnum - ok
10:35:30.0313 2940 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:35:30.0329 2940 WpdUpFltr - ok
10:35:30.0360 2940 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:35:30.0376 2940 ws2ifsl - ok
10:35:30.0407 2940 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
10:35:30.0422 2940 wscsvc - ok
10:35:30.0454 2940 [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
10:35:30.0469 2940 WSDPrintDevice - ok
10:35:30.0485 2940 [ 6ED437C0BE2280AF78070B4BEDD0D221 ] WSDScan C:\WINDOWS\system32\DRIVERS\WSDScan.sys
10:35:30.0485 2940 WSDScan - ok
10:35:30.0501 2940 WSearch - ok
10:35:30.0579 2940 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\WINDOWS\System32\WSService.dll
10:35:30.0688 2940 WSService - ok
10:35:30.0782 2940 [ 69DDDAF7BB4D39A4CC928EA434A3E258 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
10:35:30.0844 2940 wuauserv - ok
10:35:30.0876 2940 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
10:35:30.0891 2940 WudfPf - ok
10:35:30.0907 2940 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
10:35:30.0938 2940 WUDFRd - ok
10:35:30.0954 2940 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
10:35:30.0969 2940 wudfsvc - ok
10:35:30.0969 2940 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:35:30.0985 2940 WUDFWpdFs - ok
10:35:30.0985 2940 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:35:31.0001 2940 WUDFWpdMtp - ok
10:35:31.0032 2940 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
10:35:31.0063 2940 WwanSvc - ok
10:35:31.0063 2940 ================ Scan global ===============================
10:35:31.0110 2940 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\WINDOWS\system32\basesrv.dll
10:35:31.0141 2940 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\WINDOWS\system32\winsrv.dll
10:35:31.0173 2940 [ BD7C6949984D19AAA609896B675E7357 ] C:\WINDOWS\system32\sxssrv.dll
10:35:31.0204 2940 [ 8F226143046435C75C033B0C52E90FFE ] C:\WINDOWS\system32\services.exe
10:35:31.0219 2940 [Global] - ok
10:35:31.0219 2940 ================ Scan MBR ==================================
10:35:31.0219 2940 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:35:32.0298 2940 \Device\Harddisk0\DR0 - ok
10:35:32.0298 2940 ================ Scan VBR ==================================
10:35:32.0298 2940 [ 1ED3AA35D849654EC89EF9FA9D60A7B8 ] \Device\Harddisk0\DR0\Partition1
10:35:32.0298 2940 \Device\Harddisk0\DR0\Partition1 - ok
10:35:32.0313 2940 [ 2BEA2F9F512E14E0C68613D6DD8C477D ] \Device\Harddisk0\DR0\Partition2
10:35:32.0313 2940 \Device\Harddisk0\DR0\Partition2 - ok
10:35:32.0344 2940 [ 51D2700E56C7D32FC5D026C2D7E91024 ] \Device\Harddisk0\DR0\Partition3
10:35:32.0360 2940 \Device\Harddisk0\DR0\Partition3 - ok
10:35:32.0376 2940 [ 4D53210D931648EC98BE0EB234B889F9 ] \Device\Harddisk0\DR0\Partition4
10:35:32.0376 2940 \Device\Harddisk0\DR0\Partition4 - ok
10:35:32.0376 2940 ============================================================
10:35:32.0376 2940 Scan finished
10:35:32.0376 2940 ============================================================
10:35:32.0391 5008 Detected object count: 4
10:35:32.0391 5008 Actual detected object count: 4
10:35:38.0282 5008 ClassicShellService ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0282 5008 ClassicShellService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:35:38.0282 5008 DfSdkS ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0282 5008 DfSdkS ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:35:38.0298 5008 DirMngr ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0298 5008 DirMngr ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:35:38.0298 5008 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0298 5008 HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
Geändert von cosinus (07.11.2012 um 12:42 Uhr) |
|
07.11.2012, 12:42
| #6 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Ich hab dich anfangs gebeten miene Hinweise aufmerksam zu lesen! Die Logs sollten in CODE-Tags bitte halte dich auch daran! Ich hab es für dich korrigiert Zitat:
Was meinst du mit beiden Fällen?
__________________ --> Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen |
|
07.11.2012, 13:02
| #7 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button. Die Fehlermeldung kam in beiden Fällen und Entschuldige, dass ich die Verfahrensweise mit den Code Tags dann doch noch nicht verstanden habe... (ich bin 61) |
|
07.11.2012, 13:43
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Dann probier aswMBR bitte im abgesicherten Modus mit Netzwerktreibern: Abgesicherter Modus zur Bereinigung
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.11.2012, 14:57
| #9 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Hallo, bei Windows 8 geht das leider nicht mehr so einfach. Nach 1 Stunde habe ich dann eine Möglichkeit über Eingabeaufforderung und MSCONFIG gefunden. Leider lief der Scan in beiden Fällen wieder nicht durch... gleiche Fehlermeldung |
|
07.11.2012, 15:26
| #10 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.GenZitat:
 In deinem ersten Posting war noch von Windows7 die Rede! Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.11.2012, 15:59
| #11 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Tatsächlich, ein Versehen meinerseits... Alte Gewohnheit? |
|
07.11.2012, 16:32
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.GenCode:
ATTFilter Windows 7 x64 NTFS
Internet Explorer 9.10.9200.16420
Malwarebytes erkennt auch ein Win7! Irrt Malwarebytes sich da oder hast du einfach ein Win8 in der Zwischenzeit installiert? Seit wann genau ist Win8 auf diesem Rechner installiert?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.11.2012, 08:57
| #13 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Hallo, wie ich schon geschrieben hatte, es war ein Versehen (alte Gewohnheit) von mir. WIN 8 wurde einige Tage nach Erscheinen aufgespielt und alle Scans erfolgten unter WIN 8. Es tut mir noch mal leid für die entstandene Verwirrung... |
|
08.11.2012, 13:42
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Systemscan mit OTL Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop. Falls schon vorhanden, bitte die ältere vorhandene Datei durch die neu heruntergeladene Datei ersetzen, damit du auch wirklich mit einer aktuellen Version von OTL arbeitest.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.11.2012, 14:18
| #15 |
| | Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen Ich habe jetzt die beiden Dateien als TXT Datei. Wie erfolgt jetzt die Umwandlung in CODE-Tags? Eingefügt werden beide Dateien dann über das Symbol #? |
|
| Themen zu Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen |
| aktuell, andere, anderen, angezeigt, aufforderung, blau, click, continue, download, foto, geladen, interne, internetseite, maus, mehrere trojaner, seite, starte, updates, wahrscheinlich, win32/adware.multiplug.d, win32/installerex.a.gen, win7, win7 64, win7 64 bit, windows |
Linear-Darstellung
