| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: welcome to nginxWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
14.11.2012, 19:30
| #1 |
 |  welcome to nginx Hallo Helfer, heute hatte ich diese nginx Umleitung auf dem Rechner. Nach Routertausch wollte ich mein Nas neu konfigureren und beim web interface von freenas (bei mir 192.168.1.5) sah ich statt dem Interface eine weiße Seite mit dem Satz "welcome to nginx" Googlen hat mich noch mehr verwirrt, die Einen stufen es als DNS Changer ein, die Anderen als harmlosen Web Service mit Wikieintrag. Keine Proxy vorhanden, die hosts Datei ist außer Localhost leer, S&D, Threatfire und AVG haben nichts gefunden, auch nicht tdsskiller. Ich werde auch nicht bei falscher Domain (etwa www.asfdefbgtdfg.de) umgeleitet, lediglich bei dem web interface von freenas, was anderes ist mir noch nicht aufgefallen. An den Routereinstellungen wird es wohl nicht hängen, denn es wird mir nur am PC über Lan angezeigt, am Notebook über Wlan kommt dann ein Ladefehler. Ich hoffe mal Ihr könnt mir helfen  |
|
16.11.2012, 12:36
| #2 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™   | welcome to nginx Hallo und
__________________ Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Zitat:
 Warum Routertausch? Welcher Router vorher und welcher jetzt? Was für ein NAS genau hast du da? Wieviele PCs sind im LAN und wenn mehrere hast du das auf allen Rechnern wenn die Webkonfig das NAS angesurft wird? Zitat:
__________________ |
|
16.11.2012, 15:25
| #3 | ||||||
| | welcome to nginx Danke für Deine Hilfe
__________________Zitat:
 Zitat:
Zitat:
Zitat:
Zitat:
Den Versuch mit dem Notebook habe ich erst nach der Meldung gestartet, der PC war dabei offline. Auf dem Notebook habe ich eine normale Zeitüberschreitung bekommen, aber das NAS war eh aus. Die Meldung kam lediglich am PC. Zitat:
Edit: Was ich noch vergessen habe, ich habe dem NAS in FreeNAS eine andere IP zugewiesen, von 192.168.1.5 auf 192.168.1.2 Ich komme jetzt wieder normal ins Web Interface. |
|
16.11.2012, 16:17
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | welcome to nginxZitat:
Vermutlich hat sich der Webserver vom NAS aufgehangen...wer weiß
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.11.2012, 16:26
| #5 | |
| | welcome to nginxZitat:
Mich hat es halt gewundert, dass ich mehrmals bei Zeitüberschreitung die übliche "Server reagiert nicht/Zeitüberschreitung" bekommen habe, und dann auf einmal kommt eine Meldung, die im Netz teilweise als Virus/DNS Changer eingestuft wird. |
|
16.11.2012, 16:49
| #7 | ||
| | welcome to nginxZitat:
Zitat:
Ach ja, wenn Du nur nach nginx googelst, dann bekommst Du natürlich den Eintrag des Dienstes, googelst Du die Meldung "Welcome to nginx", dann schaut es schon anders aus. Wenn ein Trojaner mir ein virtuelles "Welcome to Microsoft" als alleinigen Satz auf weißem Screen entgegenhaucht, dann beruhige ich ich ja auch nicht dadurch, dass da Microsoft steht Geändert von Kira75 (16.11.2012 um 16:54 Uhr) |
|
16.11.2012, 18:16
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | welcome to nginxZitat:
Nutzt FreeNAS denn nicht als Webserver nginx? FreeNAS hatte ich noch nie benutzt.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.11.2012, 20:37
| #9 | |
| | welcome to nginxZitat:
Den Wiki Artikel habe ich gelesen, aber - ich will jetzt nicht polemisch werden - ich weiß ja nicht, ob diese Umleitung zu diesem Dienst passt, schließlich schaue ich, wenn ich den GEMA oder BKA Trojaner habe, auch nicht auf Wikiseite der GEMA oder des BKA und sage mir "Die gibt es, die machen nichts böses, das müsste passen" Wie schon gesagt, im Aviraforum wurde es als Virus diskutiert, auf Youtube findet man genügend Removal Tips (geb mal dort "welcome to nginx" ein), was nicht heißt dass ich diesen Anleitungen vertrauen würde, und genau deswegen wollte ich mal die Experten fragen, was es damit auf sich hat. |
|
16.11.2012, 22:18
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | welcome to nginx Da mir auch keine Möglichkeit einfällt irgendwie so ein mit BSD-OS bestücktes Gerät zu prüfen, kann man dir eigentlich nur sagen: setz das OS darin neu auf wenn du letzte Zweifel ausgeräumt haben willst. Oder vermutest du eher Schädlinge auf eine der Windows-Kisten? Ich bin aber auch leider kein FreeNAS Experte. Ich bin zwar auch rel gut linuxerfahren (ein wenig auch Unix, HPUX auf C8000 mit PA-RISC-CPU) aber mit FreeNAS bzw. BSD hab ich keine Erfahrung. Hat FreeNAS denn kein Community-Board? Ich glaube da wäre dein Frage besser aufgehoben Trojaner-Board bezieht sich hier bei Malware fast auschließlich auf Windows. Gelegentlich macht nur Shadow - wenn denn überhaupt Anfragen dazu da sind, das kannst binnen eines Jahres an einer Hand abzählen - auch etwas Malware-Support für MacOS im dortigen Bereich => http://www.trojaner-board.de/alles-r...mac-osx-linux/
__________________ Logfiles bitte immer in CODE-Tags posten Geändert von cosinus (16.11.2012 um 22:25 Uhr) Grund: typo |
|
17.11.2012, 12:28
| #11 | ||
| | welcome to nginxZitat:
Auf das Web Interface von FreeBSD greife ich auf dem Windows Rechner über die von mir dem NAS zugewiesenen IP zu, somit habe ich die Umleitung auf dem Windows Rechner bekommen, jedoch nur unter der 192.168.1.5 und erst nach dem Routerwechsel. Ich habe nach dem Wechsel aber eh die IP neu vergeben, daher weiß ich nicht, ob das das Problem war. Meine Problem war eben, ob dieser Bildschirm "welcome to nginx", der außer der Meldung keinerlei Optionen oder Hinweise liefert, auch wirklich zu dem Unternehmen hinter nginx gehört oder, ähnlich wie dem BKA oder Gema Trojaner, nur den Namen verwendet, um eine gewisse Integrität zu suggerieren. Ein Bildschirm, der außer einer Begrüßungsmeldung nichts weiteres bietet, wirft natürlich Fragen auf. Und da unter dem bezeichneten Suchbegriff auf google ja einige Einträge vorkommen, wurde ich halt skeptisch. Zitat:
|
|
17.11.2012, 20:38
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | welcome to nginx Nun, dann hab ich dich wirklich falsch verstanden Wenn du Müll in deinem Windows noch vermutest können wir hier einen "Waschgang" machen (ok, erstmal nur ne Begutachtung, "waschen" wenn es dein sein muss )
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.11.2012, 09:45
| #13 |
| | welcome to nginx Begutachtung hört sich gut an Ich kann mir zwar denken was Du alles brauchst, aber ich warte trotzdem mal auf Dich, weiß ja nicht welche Einstellungen Du zu dem jeweiligen Programm willst |
|
18.11.2012, 21:34
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | welcome to nginx 1. aswMBR Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button. 2. TDSS-Killer Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.11.2012, 16:16
| #15 |
| | welcome to nginx TDSS Code:
ATTFilter 16:07:05.0839 4292 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:07:06.0042 4292 ============================================================
16:07:06.0042 4292 Current date / time: 2012/11/19 16:07:06.0042
16:07:06.0042 4292 SystemInfo:
16:07:06.0042 4292
16:07:06.0042 4292 OS Version: 6.1.7601 ServicePack: 1.0
16:07:06.0042 4292 Product type: Workstation
16:07:06.0042 4292 ComputerName: Kira-PC
16:07:06.0042 4292 UserName: Kira
16:07:06.0042 4292 Windows directory: C:\Windows
16:07:06.0042 4292 System windows directory: C:\Windows
16:07:06.0042 4292 Running under WOW64
16:07:06.0042 4292 Processor architecture: Intel x64
16:07:06.0042 4292 Number of processors: 4
16:07:06.0042 4292 Page size: 0x1000
16:07:06.0042 4292 Boot type: Normal boot
16:07:06.0042 4292 ============================================================
16:07:06.0635 4292 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:07:06.0650 4292 Drive \Device\Harddisk1\DR1 - Size: 0x2E93E36000 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x64F1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
16:07:06.0650 4292 ============================================================
16:07:06.0650 4292 \Device\Harddisk0\DR0:
16:07:06.0650 4292 MBR partitions:
16:07:06.0650 4292 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x78A2C03
16:07:06.0681 4292 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x99C6534, BlocksNum 0x1EFA827
16:07:06.0681 4292 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xB8C0D9A, BlocksNum 0x7157D27
16:07:06.0681 4292 \Device\Harddisk1\DR1:
16:07:06.0681 4292 MBR partitions:
16:07:06.0681 4292 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x6D927F0
16:07:06.0697 4292 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x6D93030, BlocksNum 0x5CACA70
16:07:06.0713 4292 \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0xCA41800, BlocksNum 0x5549000
16:07:06.0713 4292 \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x11F8B000, BlocksNum 0x5513800
16:07:06.0713 4292 ============================================================
16:07:06.0744 4292 C: <-> \Device\Harddisk0\DR0\Partition1
16:07:06.0744 4292 K: <-> \Device\Harddisk1\DR1\Partition4
16:07:06.0775 4292 J: <-> \Device\Harddisk1\DR1\Partition3
16:07:06.0806 4292 I: <-> \Device\Harddisk1\DR1\Partition2
16:07:06.0822 4292 H: <-> \Device\Harddisk1\DR1\Partition1
16:07:06.0869 4292 G: <-> \Device\Harddisk0\DR0\Partition3
16:07:06.0884 4292 F: <-> \Device\Harddisk0\DR0\Partition2
16:07:06.0884 4292 ============================================================
16:07:06.0884 4292 Initialize success
16:07:06.0884 4292 ============================================================
16:07:29.0535 1828 ============================================================
16:07:29.0535 1828 Scan started
16:07:29.0535 1828 Mode: Manual; SigCheck; TDLFS;
16:07:29.0535 1828 ============================================================
16:07:30.0050 1828 ================ Scan system memory ========================
16:07:30.0050 1828 System memory - ok
16:07:30.0050 1828 ================ Scan services =============================
16:07:30.0175 1828 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
16:07:30.0269 1828 1394ohci - ok
16:07:30.0315 1828 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:07:30.0331 1828 ACPI - ok
16:07:30.0347 1828 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
16:07:30.0409 1828 AcpiPmi - ok
16:07:30.0534 1828 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:07:30.0549 1828 AdobeFlashPlayerUpdateSvc - ok
16:07:30.0596 1828 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:07:30.0612 1828 adp94xx - ok
16:07:30.0643 1828 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:07:30.0659 1828 adpahci - ok
16:07:30.0674 1828 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:07:30.0690 1828 adpu320 - ok
16:07:30.0721 1828 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:07:30.0830 1828 AeLookupSvc - ok
16:07:30.0877 1828 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
16:07:30.0939 1828 AFD - ok
16:07:30.0971 1828 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:07:30.0986 1828 agp440 - ok
16:07:31.0017 1828 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:07:31.0080 1828 ALG - ok
16:07:31.0080 1828 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
16:07:31.0095 1828 aliide - ok
16:07:31.0111 1828 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
16:07:31.0127 1828 amdide - ok
16:07:31.0158 1828 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:07:31.0205 1828 AmdK8 - ok
16:07:31.0205 1828 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:07:31.0251 1828 AmdPPM - ok
16:07:31.0267 1828 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:07:31.0267 1828 amdsata - ok
16:07:31.0283 1828 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:07:31.0298 1828 amdsbs - ok
16:07:31.0298 1828 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:07:31.0314 1828 amdxata - ok
16:07:31.0361 1828 [ 4FC6E2C2FC50445450651F42E90CC0BD ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
16:07:31.0376 1828 Apowersoft_AudioDevice - ok
16:07:31.0423 1828 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
16:07:31.0563 1828 AppID - ok
16:07:31.0579 1828 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:07:31.0626 1828 AppIDSvc - ok
16:07:31.0657 1828 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
16:07:31.0704 1828 Appinfo - ok
16:07:31.0751 1828 [ 6BE11AD81D4527D299F0CB5F3731AABC ] AppleCharger C:\Windows\system32\DRIVERS\AppleCharger.sys
16:07:31.0766 1828 AppleCharger - ok
16:07:31.0782 1828 [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
16:07:31.0797 1828 AppleChargerSrv - ok
16:07:31.0829 1828 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:07:31.0829 1828 arc - ok
16:07:31.0844 1828 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:07:31.0844 1828 arcsas - ok
16:07:31.0875 1828 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:07:31.0907 1828 AsyncMac - ok
16:07:31.0938 1828 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
16:07:31.0938 1828 atapi - ok
16:07:31.0969 1828 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:07:32.0047 1828 AudioEndpointBuilder - ok
16:07:32.0047 1828 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:07:32.0078 1828 AudioSrv - ok
16:07:32.0281 1828 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
16:07:32.0343 1828 AVGIDSAgent - ok
16:07:32.0390 1828 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
16:07:32.0390 1828 AVGIDSDriver - ok
16:07:32.0421 1828 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
16:07:32.0437 1828 AVGIDSHA - ok
16:07:32.0468 1828 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
16:07:32.0484 1828 Avgldx64 - ok
16:07:32.0515 1828 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
16:07:32.0515 1828 Avgloga - ok
16:07:32.0546 1828 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
16:07:32.0562 1828 Avgmfx64 - ok
16:07:32.0593 1828 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
16:07:32.0593 1828 Avgrkx64 - ok
16:07:32.0609 1828 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
16:07:32.0624 1828 Avgtdia - ok
16:07:32.0655 1828 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
16:07:32.0671 1828 avgwd - ok
16:07:32.0702 1828 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:07:32.0780 1828 AxInstSV - ok
16:07:32.0811 1828 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:07:32.0874 1828 b06bdrv - ok
16:07:32.0889 1828 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:07:32.0921 1828 b57nd60a - ok
16:07:32.0983 1828 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:07:33.0014 1828 BDESVC - ok
16:07:33.0030 1828 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:07:33.0077 1828 Beep - ok
16:07:33.0139 1828 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
16:07:33.0186 1828 BFE - ok
16:07:33.0217 1828 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
16:07:33.0295 1828 BITS - ok
16:07:33.0326 1828 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:07:33.0342 1828 blbdrive - ok
16:07:33.0389 1828 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:07:33.0435 1828 bowser - ok
16:07:33.0467 1828 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:07:33.0513 1828 BrFiltLo - ok
16:07:33.0529 1828 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:07:33.0545 1828 BrFiltUp - ok
16:07:33.0576 1828 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
16:07:33.0607 1828 Browser - ok
16:07:33.0638 1828 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:07:33.0669 1828 Brserid - ok
16:07:33.0685 1828 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:07:33.0701 1828 BrSerWdm - ok
16:07:33.0701 1828 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:07:33.0716 1828 BrUsbMdm - ok
16:07:33.0716 1828 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:07:33.0732 1828 BrUsbSer - ok
16:07:33.0779 1828 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:07:33.0810 1828 BTHMODEM - ok
16:07:33.0841 1828 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:07:33.0903 1828 bthserv - ok
16:07:33.0919 1828 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:07:33.0981 1828 cdfs - ok
16:07:34.0044 1828 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:07:34.0075 1828 cdrom - ok
16:07:34.0122 1828 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
16:07:34.0153 1828 CertPropSvc - ok
16:07:34.0215 1828 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:07:34.0262 1828 circlass - ok
16:07:34.0278 1828 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:07:34.0293 1828 CLFS - ok
16:07:34.0356 1828 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:07:34.0371 1828 clr_optimization_v2.0.50727_32 - ok
16:07:34.0434 1828 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:07:34.0449 1828 clr_optimization_v2.0.50727_64 - ok
16:07:34.0527 1828 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:07:34.0527 1828 clr_optimization_v4.0.30319_32 - ok
16:07:34.0559 1828 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:07:34.0574 1828 clr_optimization_v4.0.30319_64 - ok
16:07:34.0605 1828 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:07:34.0621 1828 CmBatt - ok
16:07:34.0637 1828 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
16:07:34.0652 1828 cmdide - ok
16:07:34.0699 1828 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
16:07:34.0715 1828 CNG - ok
16:07:34.0730 1828 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:07:34.0746 1828 Compbatt - ok
16:07:34.0746 1828 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
16:07:34.0777 1828 CompositeBus - ok
16:07:34.0793 1828 COMSysApp - ok
16:07:34.0824 1828 [ 78AF1C499BF02F9814DF959A04A4F9C9 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
16:07:34.0855 1828 cphs - ok
16:07:34.0871 1828 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:07:34.0871 1828 crcdisk - ok
16:07:34.0917 1828 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:07:34.0964 1828 CryptSvc - ok
16:07:34.0995 1828 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:07:35.0073 1828 DcomLaunch - ok
16:07:35.0120 1828 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:07:35.0167 1828 defragsvc - ok
16:07:35.0198 1828 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:07:35.0261 1828 DfsC - ok
16:07:35.0307 1828 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
16:07:35.0354 1828 Dhcp - ok
16:07:35.0385 1828 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:07:35.0432 1828 discache - ok
16:07:35.0463 1828 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:07:35.0463 1828 Disk - ok
16:07:35.0495 1828 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:07:35.0557 1828 Dnscache - ok
16:07:35.0682 1828 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
16:07:35.0729 1828 dot3svc - ok
16:07:35.0760 1828 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
16:07:35.0822 1828 DPS - ok
16:07:35.0853 1828 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:07:35.0885 1828 drmkaud - ok
16:07:35.0916 1828 [ 4B42F9DCFA4E72C51578262FD721CE99 ] dvdfabio C:\Windows\system32\drivers\dvdfabio.sys
16:07:35.0931 1828 dvdfabio - ok
16:07:35.0994 1828 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:07:36.0009 1828 DXGKrnl - ok
16:07:36.0041 1828 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:07:36.0072 1828 EapHost - ok
16:07:36.0165 1828 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:07:36.0212 1828 ebdrv - ok
16:07:36.0243 1828 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
16:07:36.0275 1828 EFS - ok
16:07:36.0353 1828 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:07:36.0415 1828 ehRecvr - ok
16:07:36.0431 1828 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:07:36.0462 1828 ehSched - ok
16:07:36.0493 1828 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:07:36.0524 1828 elxstor - ok
16:07:36.0555 1828 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
16:07:36.0587 1828 ErrDev - ok
16:07:36.0618 1828 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
16:07:36.0618 1828 etdrv - ok
16:07:36.0649 1828 [ 3663291D0D26001A2BB67678AB61D14C ] EtronHub3 C:\Windows\system32\Drivers\EtronHub3.sys
16:07:36.0696 1828 EtronHub3 - ok
16:07:36.0727 1828 [ 744420D6C062C38F7361870F010D6D4B ] EtronXHCI C:\Windows\system32\Drivers\EtronXHCI.sys
16:07:36.0743 1828 EtronXHCI - ok
16:07:36.0774 1828 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:07:36.0836 1828 EventSystem - ok
16:07:36.0867 1828 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:07:36.0883 1828 exfat - ok
16:07:36.0914 1828 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:07:36.0945 1828 fastfat - ok
16:07:37.0008 1828 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
16:07:37.0055 1828 Fax - ok
16:07:37.0070 1828 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:07:37.0086 1828 fdc - ok
16:07:37.0101 1828 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:07:37.0148 1828 fdPHost - ok
16:07:37.0164 1828 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:07:37.0195 1828 FDResPub - ok
16:07:37.0211 1828 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:07:37.0211 1828 FileInfo - ok
16:07:37.0226 1828 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:07:37.0304 1828 Filetrace - ok
16:07:37.0320 1828 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:07:37.0335 1828 flpydisk - ok
16:07:37.0429 1828 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:07:37.0445 1828 FltMgr - ok
16:07:37.0538 1828 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
16:07:37.0585 1828 FontCache - ok
16:07:37.0632 1828 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:07:37.0647 1828 FontCache3.0.0.0 - ok
16:07:37.0679 1828 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:07:37.0679 1828 FsDepends - ok
16:07:37.0710 1828 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:07:37.0725 1828 Fs_Rec - ok
16:07:37.0757 1828 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:07:37.0772 1828 fvevol - ok
16:07:37.0803 1828 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:07:37.0803 1828 gagp30kx - ok
16:07:37.0850 1828 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
16:07:37.0850 1828 gdrv - ok
16:07:37.0897 1828 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
16:07:37.0944 1828 gpsvc - ok
16:07:37.0991 1828 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:07:38.0006 1828 gupdate - ok
16:07:38.0006 1828 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:07:38.0022 1828 gupdatem - ok
16:07:38.0053 1828 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
16:07:38.0069 1828 GVTDrv64 - ok
16:07:38.0069 1828 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:07:38.0100 1828 hcw85cir - ok
16:07:38.0131 1828 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:07:38.0162 1828 HdAudAddService - ok
16:07:38.0193 1828 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
16:07:38.0225 1828 HDAudBus - ok
16:07:38.0240 1828 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:07:38.0256 1828 HidBatt - ok
16:07:38.0256 1828 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:07:38.0271 1828 HidBth - ok
16:07:38.0287 1828 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:07:38.0303 1828 HidIr - ok
16:07:38.0318 1828 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:07:38.0381 1828 hidserv - ok
16:07:38.0412 1828 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:07:38.0412 1828 HidUsb - ok
16:07:38.0443 1828 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:07:38.0505 1828 hkmsvc - ok
16:07:38.0537 1828 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:07:38.0568 1828 HomeGroupListener - ok
16:07:38.0615 1828 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:07:38.0646 1828 HomeGroupProvider - ok
16:07:38.0693 1828 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:07:38.0693 1828 HpSAMD - ok
16:07:38.0755 1828 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:07:38.0817 1828 HTTP - ok
16:07:38.0833 1828 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:07:38.0833 1828 hwpolicy - ok
16:07:38.0880 1828 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
16:07:38.0880 1828 i8042prt - ok
16:07:38.0895 1828 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:07:38.0911 1828 iaStorV - ok
16:07:38.0989 1828 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:07:39.0005 1828 IDriverT ( UnsignedFile.Multi.Generic ) - warning
16:07:39.0005 1828 IDriverT - detected UnsignedFile.Multi.Generic (1)
16:07:39.0051 1828 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:07:39.0083 1828 idsvc - ok
16:07:39.0223 1828 [ A1CF07D24EDCDC6870535471654D957C ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:07:39.0426 1828 igfx - ok
16:07:39.0457 1828 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:07:39.0473 1828 iirsp - ok
16:07:39.0519 1828 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
16:07:39.0582 1828 IKEEXT - ok
16:07:39.0675 1828 [ 2CC2F7C5990BB76767038F4B16D17A56 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:07:39.0707 1828 IntcAzAudAddService - ok
16:07:39.0753 1828 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
16:07:39.0800 1828 IntcDAud - ok
16:07:39.0816 1828 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
16:07:39.0816 1828 intelide - ok
16:07:39.0909 1828 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:07:39.0941 1828 intelppm - ok
16:07:39.0972 1828 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:07:40.0034 1828 IPBusEnum - ok
16:07:40.0065 1828 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:07:40.0097 1828 IpFilterDriver - ok
16:07:40.0128 1828 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:07:40.0190 1828 iphlpsvc - ok
16:07:40.0221 1828 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
16:07:40.0237 1828 IPMIDRV - ok
16:07:40.0253 1828 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:07:40.0299 1828 IPNAT - ok
16:07:40.0315 1828 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:07:40.0393 1828 IRENUM - ok
16:07:40.0409 1828 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:07:40.0409 1828 isapnp - ok
16:07:40.0440 1828 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
16:07:40.0455 1828 iScsiPrt - ok
16:07:40.0471 1828 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:07:40.0471 1828 kbdclass - ok
16:07:40.0502 1828 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:07:40.0533 1828 kbdhid - ok
16:07:40.0549 1828 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
16:07:40.0549 1828 KeyIso - ok
16:07:40.0580 1828 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:07:40.0596 1828 KSecDD - ok
16:07:40.0627 1828 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:07:40.0643 1828 KSecPkg - ok
16:07:40.0658 1828 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:07:40.0721 1828 ksthunk - ok
16:07:40.0752 1828 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:07:40.0783 1828 KtmRm - ok
16:07:40.0830 1828 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:07:40.0877 1828 LanmanServer - ok
16:07:40.0892 1828 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:07:40.0955 1828 LanmanWorkstation - ok
16:07:41.0064 1828 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
16:07:41.0079 1828 LBTServ - ok
16:07:41.0126 1828 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
16:07:41.0142 1828 LGBusEnum - ok
16:07:41.0189 1828 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
16:07:41.0189 1828 LGVirHid - ok
16:07:41.0220 1828 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
16:07:41.0235 1828 LHidFilt - ok
16:07:41.0267 1828 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:07:41.0313 1828 lltdio - ok
16:07:41.0345 1828 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:07:41.0407 1828 lltdsvc - ok
16:07:41.0423 1828 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:07:41.0438 1828 lmhosts - ok
16:07:41.0454 1828 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
16:07:41.0454 1828 LMouFilt - ok
16:07:41.0485 1828 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:07:41.0485 1828 LSI_FC - ok
16:07:41.0501 1828 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:07:41.0501 1828 LSI_SAS - ok
16:07:41.0516 1828 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:07:41.0516 1828 LSI_SAS2 - ok
16:07:41.0516 1828 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:07:41.0532 1828 LSI_SCSI - ok
16:07:41.0547 1828 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:07:41.0579 1828 luafv - ok
16:07:41.0594 1828 [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
16:07:41.0610 1828 LUsbFilt - ok
16:07:41.0625 1828 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:07:41.0657 1828 Mcx2Svc - ok
16:07:41.0688 1828 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:07:41.0688 1828 megasas - ok
16:07:41.0703 1828 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:07:41.0719 1828 MegaSR - ok
16:07:41.0750 1828 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:07:41.0750 1828 MEIx64 - ok
16:07:41.0813 1828 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
16:07:41.0828 1828 Microsoft Office Groove Audit Service - ok
16:07:41.0844 1828 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:07:41.0891 1828 MMCSS - ok
16:07:41.0906 1828 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:07:41.0953 1828 Modem - ok
16:07:41.0969 1828 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:07:42.0000 1828 monitor - ok
16:07:42.0031 1828 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:07:42.0031 1828 mouclass - ok
16:07:42.0062 1828 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:07:42.0078 1828 mouhid - ok
16:07:42.0093 1828 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:07:42.0109 1828 mountmgr - ok
16:07:42.0171 1828 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:07:42.0187 1828 MozillaMaintenance - ok
16:07:42.0234 1828 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
16:07:42.0234 1828 mpio - ok
16:07:42.0249 1828 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:07:42.0281 1828 mpsdrv - ok
16:07:42.0327 1828 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:07:42.0359 1828 MpsSvc - ok
16:07:42.0390 1828 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:07:42.0421 1828 MRxDAV - ok
16:07:42.0452 1828 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:07:42.0499 1828 mrxsmb - ok
16:07:42.0515 1828 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:07:42.0546 1828 mrxsmb10 - ok
16:07:42.0561 1828 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:07:42.0561 1828 mrxsmb20 - ok
16:07:42.0608 1828 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
16:07:42.0624 1828 msahci - ok
16:07:42.0624 1828 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
16:07:42.0639 1828 msdsm - ok
16:07:42.0655 1828 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:07:42.0686 1828 MSDTC - ok
16:07:42.0702 1828 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:07:42.0733 1828 Msfs - ok
16:07:42.0749 1828 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:07:42.0780 1828 mshidkmdf - ok
16:07:42.0795 1828 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:07:42.0795 1828 msisadrv - ok
16:07:42.0827 1828 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:07:42.0858 1828 MSiSCSI - ok
16:07:42.0873 1828 msiserver - ok
16:07:42.0889 1828 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:07:42.0951 1828 MSKSSRV - ok
16:07:42.0951 1828 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:07:42.0983 1828 MSPCLOCK - ok
16:07:42.0983 1828 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:07:43.0014 1828 MSPQM - ok
16:07:43.0029 1828 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:07:43.0045 1828 MsRPC - ok
16:07:43.0076 1828 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
16:07:43.0076 1828 mssmbios - ok
16:07:43.0092 1828 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:07:43.0154 1828 MSTEE - ok
16:07:43.0154 1828 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:07:43.0185 1828 MTConfig - ok
16:07:43.0201 1828 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:07:43.0201 1828 Mup - ok
16:07:43.0248 1828 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
16:07:43.0295 1828 napagent - ok
16:07:43.0326 1828 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:07:43.0341 1828 NativeWifiP - ok
16:07:43.0404 1828 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:07:43.0435 1828 NDIS - ok
16:07:43.0451 1828 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:07:43.0482 1828 NdisCap - ok
16:07:43.0513 1828 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:07:43.0529 1828 NdisTapi - ok
16:07:43.0560 1828 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:07:43.0607 1828 Ndisuio - ok
16:07:43.0638 1828 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:07:43.0685 1828 NdisWan - ok
16:07:43.0700 1828 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:07:43.0731 1828 NDProxy - ok
16:07:43.0747 1828 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:07:43.0809 1828 NetBIOS - ok
16:07:43.0856 1828 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:07:43.0934 1828 NetBT - ok
16:07:43.0950 1828 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
16:07:43.0950 1828 Netlogon - ok
16:07:43.0981 1828 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:07:44.0043 1828 Netman - ok
16:07:44.0059 1828 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:07:44.0106 1828 netprofm - ok
16:07:44.0121 1828 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:07:44.0121 1828 NetTcpPortSharing - ok
16:07:44.0137 1828 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:07:44.0153 1828 nfrd960 - ok
16:07:44.0184 1828 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:07:44.0215 1828 NlaSvc - ok
16:07:44.0246 1828 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:07:44.0293 1828 Npfs - ok
16:07:44.0324 1828 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:07:44.0355 1828 nsi - ok
16:07:44.0371 1828 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:07:44.0433 1828 nsiproxy - ok
16:07:44.0496 1828 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:07:44.0527 1828 Ntfs - ok
16:07:44.0527 1828 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:07:44.0574 1828 Null - ok
16:07:44.0621 1828 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
16:07:44.0621 1828 NVHDA - ok
16:07:44.0901 1828 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:07:45.0042 1828 nvlddmkm - ok
16:07:45.0089 1828 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:07:45.0104 1828 nvraid - ok
16:07:45.0120 1828 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:07:45.0135 1828 nvstor - ok
16:07:45.0182 1828 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:\Windows\system32\nvvsvc.exe
16:07:45.0198 1828 nvsvc - ok
16:07:45.0245 1828 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:07:45.0276 1828 nvUpdatusService - ok
16:07:45.0291 1828 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
16:07:45.0291 1828 nv_agp - ok
16:07:45.0354 1828 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:07:45.0385 1828 odserv - ok
16:07:45.0401 1828 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
16:07:45.0432 1828 ohci1394 - ok
16:07:45.0479 1828 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:07:45.0494 1828 ose - ok
16:07:45.0525 1828 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:07:45.0572 1828 p2pimsvc - ok
16:07:45.0603 1828 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:07:45.0619 1828 p2psvc - ok
16:07:45.0650 1828 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:07:45.0666 1828 Parport - ok
16:07:45.0697 1828 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:07:45.0697 1828 partmgr - ok
16:07:45.0713 1828 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:07:45.0728 1828 PcaSvc - ok
16:07:45.0744 1828 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
16:07:45.0759 1828 pci - ok
16:07:45.0791 1828 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
16:07:45.0791 1828 pciide - ok
16:07:45.0806 1828 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:07:45.0822 1828 pcmcia - ok
16:07:45.0837 1828 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:07:45.0837 1828 pcw - ok
16:07:45.0869 1828 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:07:45.0900 1828 PEAUTH - ok
16:07:45.0978 1828 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:07:46.0009 1828 PerfHost - ok
16:07:46.0071 1828 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
16:07:46.0118 1828 pla - ok
16:07:46.0165 1828 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:07:46.0181 1828 PlugPlay - ok
16:07:46.0196 1828 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:07:46.0227 1828 PNRPAutoReg - ok
16:07:46.0243 1828 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:07:46.0259 1828 PNRPsvc - ok
16:07:46.0305 1828 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:07:46.0352 1828 PolicyAgent - ok
16:07:46.0383 1828 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:07:46.0415 1828 Power - ok
16:07:46.0446 1828 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:07:46.0477 1828 PptpMiniport - ok
16:07:46.0508 1828 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:07:46.0524 1828 Processor - ok
16:07:46.0571 1828 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
16:07:46.0586 1828 ProfSvc - ok
16:07:46.0602 1828 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:07:46.0617 1828 ProtectedStorage - ok
16:07:46.0664 1828 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:07:46.0711 1828 Psched - ok
16:07:46.0758 1828 [ DA3964D8FB8798DC741ABACA9ED1B99D ] pwdrvio C:\Windows\system32\pwdrvio.sys
16:07:46.0773 1828 pwdrvio - ok
16:07:46.0820 1828 [ A55ED5A63D0178A41EA05AC50A60F89A ] pwdspio C:\Windows\system32\pwdspio.sys
16:07:46.0820 1828 pwdspio - ok
16:07:46.0867 1828 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:07:46.0898 1828 ql2300 - ok
16:07:46.0929 1828 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:07:46.0929 1828 ql40xx - ok
16:07:46.0961 1828 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:07:46.0992 1828 QWAVE - ok
16:07:47.0007 1828 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:07:47.0023 1828 QWAVEdrv - ok
16:07:47.0039 1828 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:07:47.0085 1828 RasAcd - ok
16:07:47.0117 1828 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:07:47.0163 1828 RasAgileVpn - ok
16:07:47.0163 1828 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:07:47.0210 1828 RasAuto - ok
16:07:47.0226 1828 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:07:47.0257 1828 Rasl2tp - ok
16:07:47.0304 1828 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
16:07:47.0335 1828 RasMan - ok
16:07:47.0351 1828 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:07:47.0413 1828 RasPppoe - ok
16:07:47.0429 1828 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:07:47.0460 1828 RasSstp - ok
16:07:47.0491 1828 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:07:47.0522 1828 rdbss - ok
16:07:47.0522 1828 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:07:47.0553 1828 rdpbus - ok
16:07:47.0585 1828 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:07:47.0616 1828 RDPCDD - ok
16:07:47.0631 1828 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:07:47.0678 1828 RDPENCDD - ok
16:07:47.0694 1828 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:07:47.0709 1828 RDPREFMP - ok
16:07:47.0772 1828 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:07:47.0819 1828 RdpVideoMiniport - ok
16:07:47.0850 1828 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:07:47.0897 1828 RDPWD - ok
16:07:47.0943 1828 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:07:47.0959 1828 rdyboost - ok
16:07:47.0975 1828 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:07:48.0037 1828 RemoteAccess - ok
16:07:48.0068 1828 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:07:48.0115 1828 RemoteRegistry - ok
16:07:48.0162 1828 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:07:48.0209 1828 RpcEptMapper - ok
16:07:48.0240 1828 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:07:48.0271 1828 RpcLocator - ok
16:07:48.0302 1828 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
16:07:48.0349 1828 RpcSs - ok
16:07:48.0396 1828 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:07:48.0427 1828 rspndr - ok
16:07:48.0458 1828 [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:07:48.0474 1828 RTL8167 - ok
16:07:48.0474 1828 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
16:07:48.0489 1828 SamSs - ok
16:07:48.0521 1828 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
16:07:48.0521 1828 sbp2port - ok
16:07:48.0536 1828 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:07:48.0552 1828 SCardSvr - ok
16:07:48.0583 1828 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:07:48.0645 1828 scfilter - ok
16:07:48.0692 1828 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
16:07:48.0739 1828 Schedule - ok
16:07:48.0755 1828 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:07:48.0770 1828 SCPolicySvc - ok
16:07:48.0801 1828 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:07:48.0817 1828 SDRSVC - ok
16:07:48.0911 1828 [ 43D29ECB8137EEAE30B0970BBC7A5500 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
16:07:48.0942 1828 SDScannerService - ok
16:07:48.0989 1828 [ 6B859B122E85C2C833E6D8C5DC4B07F3 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
16:07:49.0035 1828 SDUpdateService - ok
16:07:49.0051 1828 [ 59DCE6783F9ED27EB72C81466E363BF8 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
16:07:49.0067 1828 SDWSCService - ok
16:07:49.0098 1828 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:07:49.0145 1828 secdrv - ok
16:07:49.0176 1828 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
16:07:49.0207 1828 seclogon - ok
16:07:49.0223 1828 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:07:49.0254 1828 SENS - ok
16:07:49.0269 1828 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:07:49.0301 1828 SensrSvc - ok
16:07:49.0332 1828 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:07:49.0363 1828 Serenum - ok
16:07:49.0379 1828 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:07:49.0410 1828 Serial - ok
16:07:49.0425 1828 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:07:49.0457 1828 sermouse - ok
16:07:49.0519 1828 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
16:07:49.0566 1828 SessionEnv - ok
16:07:49.0628 1828 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
16:07:49.0691 1828 sffdisk - ok
16:07:49.0706 1828 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
16:07:49.0737 1828 sffp_mmc - ok
16:07:49.0753 1828 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
16:07:49.0769 1828 sffp_sd - ok
16:07:49.0784 1828 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:07:49.0815 1828 sfloppy - ok
16:07:49.0862 1828 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:07:49.0909 1828 SharedAccess - ok
16:07:49.0940 1828 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:07:49.0956 1828 ShellHWDetection - ok
16:07:49.0987 1828 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:07:49.0987 1828 SiSRaid2 - ok
16:07:50.0003 1828 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:07:50.0003 1828 SiSRaid4 - ok
16:07:50.0081 1828 [ 101556F6216E97F1258D87C38203695F ] Smart TimeLock C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe
16:07:50.0112 1828 Smart TimeLock ( UnsignedFile.Multi.Generic ) - warning
16:07:50.0112 1828 Smart TimeLock - detected UnsignedFile.Multi.Generic (1)
16:07:50.0127 1828 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:07:50.0190 1828 Smb - ok
16:07:50.0237 1828 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:07:50.0252 1828 SNMPTRAP - ok
16:07:50.0252 1828 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:07:50.0268 1828 spldr - ok
16:07:50.0299 1828 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
16:07:50.0346 1828 Spooler - ok
16:07:50.0439 1828 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
16:07:50.0533 1828 sppsvc - ok
16:07:50.0549 1828 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:07:50.0611 1828 sppuinotify - ok
16:07:50.0642 1828 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
16:07:50.0705 1828 srv - ok
16:07:50.0720 1828 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:07:50.0751 1828 srv2 - ok
16:07:50.0767 1828 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:07:50.0783 1828 srvnet - ok
16:07:50.0814 1828 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:07:50.0861 1828 SSDPSRV - ok
16:07:50.0876 1828 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:07:50.0907 1828 SstpSvc - ok
16:07:50.0970 1828 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:07:50.0985 1828 Stereo Service - ok
16:07:51.0001 1828 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:07:51.0017 1828 stexstor - ok
16:07:51.0063 1828 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
16:07:51.0095 1828 stisvc - ok
16:07:51.0126 1828 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
16:07:51.0141 1828 swenum - ok
16:07:51.0157 1828 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:07:51.0204 1828 swprv - ok
16:07:51.0282 1828 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
16:07:51.0313 1828 SysMain - ok
16:07:51.0344 1828 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:07:51.0391 1828 TabletInputService - ok
16:07:51.0407 1828 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
16:07:51.0453 1828 TapiSrv - ok
16:07:51.0469 1828 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:07:51.0500 1828 TBS - ok
16:07:51.0578 1828 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:07:51.0609 1828 Tcpip - ok
16:07:51.0641 1828 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:07:51.0672 1828 TCPIP6 - ok
16:07:51.0687 1828 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:07:51.0687 1828 tcpipreg - ok
16:07:51.0719 1828 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:07:51.0734 1828 TDPIPE - ok
16:07:51.0750 1828 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:07:51.0781 1828 TDTCP - ok
16:07:51.0812 1828 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:07:51.0859 1828 tdx - ok
16:07:51.0968 1828 [ 2BBB318EA9F34FDC508CEA4AAB98D770 ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
16:07:52.0031 1828 TeamViewer7 - ok
16:07:52.0046 1828 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
16:07:52.0046 1828 TermDD - ok
16:07:52.0077 1828 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
16:07:52.0140 1828 TermService - ok
16:07:52.0187 1828 [ 21AC1FFD8F59B0EBFBBB2C3467E9F2CF ] TfFsMon C:\Windows\system32\drivers\TfFsMon.sys
16:07:52.0202 1828 TfFsMon - ok
16:07:52.0218 1828 [ B0EBE0CE99E4751CF7637A09FEAD7EDA ] TfNetMon C:\Windows\system32\drivers\TfNetMon.sys
16:07:52.0233 1828 TfNetMon - ok
16:07:52.0249 1828 [ D6E991DCDD91323D979878025F0CEAEA ] TfSysMon C:\Windows\system32\drivers\TfSysMon.sys
16:07:52.0249 1828 TfSysMon - ok
16:07:52.0280 1828 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:07:52.0311 1828 Themes - ok
16:07:52.0327 1828 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:07:52.0374 1828 THREADORDER - ok
16:07:52.0389 1828 ThreatFire - ok
16:07:52.0405 1828 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:07:52.0452 1828 TrkWks - ok
16:07:52.0499 1828 [ 370A6907DDF79532A39319492B1FA38A ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
16:07:52.0514 1828 truecrypt - ok
16:07:52.0561 1828 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:07:52.0623 1828 TrustedInstaller - ok
16:07:52.0639 1828 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:07:52.0686 1828 tssecsrv - ok
16:07:52.0701 1828 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
16:07:52.0748 1828 TsUsbFlt - ok
16:07:52.0779 1828 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:07:52.0826 1828 tunnel - ok
16:07:52.0857 1828 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:07:52.0857 1828 uagp35 - ok
16:07:52.0889 1828 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:07:52.0951 1828 udfs - ok
16:07:52.0982 1828 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:07:52.0998 1828 UI0Detect - ok
16:07:53.0013 1828 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
16:07:53.0013 1828 uliagpkx - ok
16:07:53.0060 1828 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
16:07:53.0076 1828 umbus - ok
16:07:53.0091 1828 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:07:53.0107 1828 UmPass - ok
16:07:53.0138 1828 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:07:53.0185 1828 upnphost - ok
16:07:53.0232 1828 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
16:07:53.0263 1828 usbaudio - ok
16:07:53.0294 1828 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:07:53.0341 1828 usbccgp - ok
16:07:53.0388 1828 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
16:07:53.0419 1828 usbcir - ok
16:07:53.0450 1828 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:07:53.0466 1828 usbehci - ok
16:07:53.0481 1828 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:07:53.0513 1828 usbhub - ok
16:07:53.0528 1828 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:07:53.0559 1828 usbohci - ok
16:07:53.0575 1828 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:07:53.0606 1828 usbprint - ok
16:07:53.0653 1828 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:07:53.0684 1828 usbscan - ok
16:07:53.0700 1828 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:07:53.0747 1828 USBSTOR - ok
16:07:53.0762 1828 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:07:53.0793 1828 usbuhci - ok
16:07:53.0809 1828 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:07:53.0871 1828 UxSms - ok
16:07:53.0887 1828 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
16:07:53.0887 1828 VaultSvc - ok
16:07:53.0934 1828 [ 72EC34F9999A5A48CFD43F5E6BD779E4 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
16:07:53.0949 1828 VBoxDrv - ok
16:07:53.0981 1828 [ A2FE818D7F930C51ADA37C04DBCB015D ] VBoxNetAdp C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
16:07:53.0996 1828 VBoxNetAdp - ok
16:07:54.0012 1828 [ CD37A9264C404E48BCE162D37B117B45 ] VBoxNetFlt C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
16:07:54.0027 1828 VBoxNetFlt - ok
16:07:54.0074 1828 [ B925B19718A435D86D1A0CF82E902D15 ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
16:07:54.0074 1828 VBoxUSB - ok
16:07:54.0105 1828 [ F649B3D30C6F40B04BDCCD0D11A43481 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
16:07:54.0121 1828 VBoxUSBMon - ok
16:07:54.0152 1828 [ C4C2644516E569F98FFE362C22C4011C ] vdrive C:\Windows\system32\DRIVERS\vdrive.sys
16:07:54.0168 1828 vdrive - ok
16:07:54.0199 1828 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
16:07:54.0199 1828 vdrvroot - ok
16:07:54.0246 1828 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
16:07:54.0277 1828 vds - ok
16:07:54.0308 1828 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:07:54.0324 1828 vga - ok
16:07:54.0324 1828 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:07:54.0355 1828 VgaSave - ok
16:07:54.0386 1828 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
16:07:54.0402 1828 vhdmp - ok
16:07:54.0417 1828 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
16:07:54.0433 1828 viaide - ok
16:07:54.0433 1828 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
16:07:54.0433 1828 volmgr - ok
16:07:54.0480 1828 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:07:54.0480 1828 volmgrx - ok
16:07:54.0495 1828 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
16:07:54.0511 1828 volsnap - ok
16:07:54.0542 1828 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:07:54.0558 1828 vsmraid - ok
16:07:54.0605 1828 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
16:07:54.0667 1828 VSS - ok
16:07:54.0667 1828 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
16:07:54.0683 1828 vwifibus - ok
16:07:54.0729 1828 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:07:54.0792 1828 W32Time - ok
16:07:54.0823 1828 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:07:54.0885 1828 WacomPen - ok
16:07:54.0948 1828 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:07:54.0995 1828 WANARP - ok
16:07:54.0995 1828 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:07:55.0010 1828 Wanarpv6 - ok
16:07:55.0057 1828 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
16:07:55.0119 1828 wbengine - ok
16:07:55.0135 1828 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:07:55.0151 1828 WbioSrvc - ok
16:07:55.0182 1828 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:07:55.0197 1828 wcncsvc - ok
16:07:55.0213 1828 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:07:55.0229 1828 WcsPlugInService - ok
16:07:55.0260 1828 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:07:55.0260 1828 Wd - ok
16:07:55.0307 1828 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:07:55.0322 1828 Wdf01000 - ok
16:07:55.0338 1828 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:07:55.0385 1828 WdiServiceHost - ok
16:07:55.0385 1828 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:07:55.0385 1828 WdiSystemHost - ok
16:07:55.0416 1828 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
16:07:55.0463 1828 WebClient - ok
16:07:55.0478 1828 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:07:55.0541 1828 Wecsvc - ok
16:07:55.0556 1828 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:07:55.0572 1828 wercplsupport - ok
16:07:55.0587 1828 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:07:55.0619 1828 WerSvc - ok
16:07:55.0650 1828 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:07:55.0665 1828 WfpLwf - ok
16:07:55.0681 1828 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:07:55.0697 1828 WIMMount - ok
16:07:55.0712 1828 WinDefend - ok
16:07:55.0712 1828 WinHttpAutoProxySvc - ok
16:07:55.0775 1828 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:07:55.0806 1828 Winmgmt - ok
16:07:55.0868 1828 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
16:07:55.0931 1828 WinRM - ok
16:07:55.0993 1828 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:07:56.0040 1828 Wlansvc - ok
16:07:56.0055 1828 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
16:07:56.0087 1828 WmiAcpi - ok
16:07:56.0118 1828 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:07:56.0149 1828 wmiApSrv - ok
16:07:56.0165 1828 WMPNetworkSvc - ok
16:07:56.0180 1828 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:07:56.0196 1828 WPCSvc - ok
16:07:56.0211 1828 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:07:56.0227 1828 WPDBusEnum - ok
16:07:56.0243 1828 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:07:56.0289 1828 ws2ifsl - ok
16:07:56.0305 1828 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
16:07:56.0321 1828 wscsvc - ok
16:07:56.0321 1828 WSearch - ok
16:07:56.0414 1828 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:07:56.0461 1828 wuauserv - ok
16:07:56.0477 1828 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:07:56.0508 1828 WudfPf - ok
16:07:56.0539 1828 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:07:56.0555 1828 WUDFRd - ok
16:07:56.0570 1828 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:07:56.0601 1828 wudfsvc - ok
16:07:56.0617 1828 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:07:56.0633 1828 WwanSvc - ok
16:07:56.0648 1828 ================ Scan global ===============================
16:07:56.0679 1828 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:07:56.0711 1828 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:07:56.0726 1828 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
16:07:56.0757 1828 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:07:56.0789 1828 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:07:56.0789 1828 [Global] - ok
16:07:56.0804 1828 ================ Scan MBR ==================================
16:07:56.0804 1828 [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk0\DR0
16:07:56.0913 1828 \Device\Harddisk0\DR0 - ok
16:07:56.0913 1828 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:07:57.0132 1828 \Device\Harddisk1\DR1 - ok
16:07:57.0132 1828 ================ Scan VBR ==================================
16:07:57.0132 1828 [ 3ADFC7D4B10A28A0EC95BF60373E09DD ] \Device\Harddisk0\DR0\Partition1
16:07:57.0132 1828 \Device\Harddisk0\DR0\Partition1 - ok
16:07:57.0163 1828 [ 1E848CE72F2B9519215B2DDB15087A5B ] \Device\Harddisk0\DR0\Partition2
16:07:57.0163 1828 \Device\Harddisk0\DR0\Partition2 - ok
16:07:57.0163 1828 [ A9C7239F983FFF374A33C6F1A012DF31 ] \Device\Harddisk0\DR0\Partition3
16:07:57.0179 1828 \Device\Harddisk0\DR0\Partition3 - ok
16:07:57.0194 1828 [ 8E52EBE979AFA1833DBE302A074B8004 ] \Device\Harddisk1\DR1\Partition1
16:07:57.0194 1828 \Device\Harddisk1\DR1\Partition1 - ok
16:07:57.0194 1828 [ 667F04D6BCC9D03B30AE6D1689032464 ] \Device\Harddisk1\DR1\Partition2
16:07:57.0194 1828 \Device\Harddisk1\DR1\Partition2 - ok
16:07:57.0194 1828 [ 318A81C9C54BB112CCCD3CE22D530861 ] \Device\Harddisk1\DR1\Partition3
16:07:57.0194 1828 \Device\Harddisk1\DR1\Partition3 - ok
16:07:57.0210 1828 [ ADED852BAACB477C547F965D7A04EA43 ] \Device\Harddisk1\DR1\Partition4
16:07:57.0210 1828 \Device\Harddisk1\DR1\Partition4 - ok
16:07:57.0210 1828 ============================================================
16:07:57.0210 1828 Scan finished
16:07:57.0210 1828 ============================================================
16:07:57.0210 2432 Detected object count: 2
16:07:57.0210 2432 Actual detected object count: 2
16:08:09.0893 2432 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:09.0893 2432 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:09.0893 2432 Smart TimeLock ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:09.0893 2432 Smart TimeLock ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:45.0207 0468 Deinitialize success
Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-11-19 15:59:59
-----------------------------
15:59:59.114 OS Version: Windows x64 6.1.7601 Service Pack 1
15:59:59.129 Number of processors: 4 586 0x2A07
15:59:59.129 ComputerName: Kira-PC UserName: Kira
15:59:59.285 Initialize success
16:01:59.965 AVAST engine defs: 12111900
16:02:30.416 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
16:02:30.416 Disk 0 Vendor: SAMSUNG_HD160HJ BF100-12 Size: 152627MB BusType: 3
16:02:30.416 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-4
16:02:30.432 Disk 1 Vendor: SAMSUNG_HD200HJ KF100-06 Size: 190782MB BusType: 3
16:02:30.448 Disk 0 MBR read successfully
16:02:30.448 Disk 0 MBR scan
16:02:30.463 Disk 0 unknown MBR code
16:02:30.463 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 61765 MB offset 63
16:02:30.479 Disk 0 Partition 2 00 83 Linux 12166 MB offset 126495810
16:02:30.494 Disk 0 Partition - 00 0F Extended LBA 78693 MB offset 151412625
16:02:30.510 Disk 0 Partition 3 00 82 Linux swap 4800 MB offset 151412688
16:02:30.510 Disk 0 Partition - 00 05 Extended 15861 MB offset 161244405
16:02:30.572 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 15861 MB offset 161244468
16:02:30.588 Disk 0 Partition - 00 05 Extended 58031 MB offset 203559615
16:02:30.619 Disk 0 Partition 5 00 07 HPFS/NTFS NTFS 58031 MB offset 193727898
16:02:30.666 Disk 0 scanning C:\Windows\system32\drivers
16:02:42.148 Service scanning
16:03:10.587 Modules scanning
16:03:10.587 Disk 0 trace - called modules:
16:03:10.602 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
16:03:10.602 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007aff060]
16:03:10.602 3 CLASSPNP.SYS[fffff88001b7e43f] -> nt!IofCallDriver -> [0xfffffa8007851520]
16:03:10.602 5 ACPI.sys[fffff88000f397a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80074a9060]
16:03:11.070 AVAST engine scan C:\Windows
16:03:12.334 AVAST engine scan C:\Windows\system32
16:05:20.441 AVAST engine scan C:\Windows\system32\drivers
16:05:29.333 AVAST engine scan C:\Users\Kira
16:05:48.864 AVAST engine scan C:\ProgramData
16:06:12.108 Scan finished successfully
16:06:32.888 Disk 0 MBR has been saved successfully to "C:\Users\Kira\Desktop\MBR.dat"
16:06:32.903 The log file has been saved successfully to "C:\Users\Kira\Desktop\aswMBR.txt"
|
|
| Themen zu welcome to nginx |
| anderen, anderes, avg, datei, dns, dns changer, free, gen, hosts, hängen, lan, leer, localhost, neu, nginx, nichts, notebook, proxy, router, seite, service, umgeleitet, umleitung, web, weiße, weiße seite, wlan |
Linear-Darstellung
