| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage!Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
23.01.2013, 18:30
| #1 |
| |  PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! Hey, habe einen GVU Trojaner auf meinem PC und nun ist er natürlich gesperrt. Es ist nicht mein erster, doch die anderen konnte ich entfernen indem ich über den abgesicherten Modus reingegeangen bin und diese mit "Malewarebytes Anti-Malware" gelöscht bekommen habe! Nun ist es aber so, das der Screen auch im Abgesicherten Modus erscheint! Habe hier schon ein bisschen rumgestöbert und folgenden Beitrag gelesen: http://www.trojaner-board.de/129784-...-trojaner.html Hab das alles soweit gemacht aber leider ohne Erfolg. Denke es liegt daran, das ich unter "Custom Scans/Fixes:" ein Script einfügen muss, bevor ich auf "FIX" drücke, nur keine Ahnung habe was....! Das Script aus dem oben genannten Theard half nicht, hatte ich mir aber schon fast gedacht! Kann mir jemand sagen was ich dort reinschreiben muss? Kann man mit sicherheit aus der OTL.txt entnehmen, deswegen hänge ich diese mal dran. |
|
23.01.2013, 18:34
| #2 |
| /// Malware-holic   | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! hi
__________________auf deinem zweiten pc gehe auf start, programme zubehör editor, kopiere dort rein: Code:
ATTFilter :OTL
O4 - Startup: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\runctf.lnk ()
[2013/01/22 17:52:22 | 000,001,062 | ---- | C] () -- C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\runctf.lnk
[2013/01/22 17:52:18 | 095,023,320 | ---- | C] () -- C:\ProgramData\dsgsdgdsgdsgw.pad
[2013/01/08 15:36:17 | 000,002,959 | ---- | C] () -- C:\ProgramData\dsgsdgdsgdsgw.js
:Files
C:\Users\Christian\wgsdgsdgdsgsd.exe
:Commands
[EMPTYFLASH]
[emptytemp]
dieses speicherst du auf nem usb stick als fix.txt nutze nun wieder OTLPENet.exe (starte also von der erstellten cd) und hake alles an, wie es bereits im post zu OTLPENet.exe beschrieben ist. • Klicke nun bitte auf den Fix Button. es sollte nun eine meldung ähnlich dieser: "load fix from file" erscheinen, lade also die fix.txt von deinem stick. wenn dies nicht funktioniert, bitte den fix manuell eintragen. dann klicke erneut den fix buton. pc startet evtl. neu. wenn ja, nimm die cd aus dem laufwerk, windows sollte nun normal starten und die otl.txt öffnen, log posten bitte. • Nach dem Neustart findest Du ein Textdokument, dessen inhalt in deiner nächsten antwort hier reinkopieren. starte in den normalen modus. falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang in den Thread posten! Drücke bitte die  + E Taste.
__________________ |
|
23.01.2013, 19:28
| #3 |
| | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! Hi,
__________________super tausend Dank, hat alles geklappt! Im Anhang noch die txt Datei nach dem fixen. Die zip bzw rar Datei sende ich dann auch noch gleich. Nochmals vielen Dank, auch für die schnelle Antwort! Mfg Christian |
|
23.01.2013, 19:41
| #4 |
| /// Malware-holic | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! hi, danke fürs hochladen. download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten c: öffnen, tdsskiller-datum-version.txt öffnen, Inhalt posten
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
23.01.2013, 20:06
| #5 |
| | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! hier der log... Code:
ATTFilter 20:03:06.0468 3296 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:03:06.0528 3296 ============================================================
20:03:06.0528 3296 Current date / time: 2013/01/23 20:03:06.0528
20:03:06.0528 3296 SystemInfo:
20:03:06.0528 3296
20:03:06.0528 3296 OS Version: 6.1.7600 ServicePack: 0.0
20:03:06.0528 3296 Product type: Workstation
20:03:06.0528 3296 ComputerName: CHRISTIAN-PC
20:03:06.0528 3296 UserName: Christian
20:03:06.0528 3296 Windows directory: C:\Windows
20:03:06.0528 3296 System windows directory: C:\Windows
20:03:06.0528 3296 Processor architecture: Intel x86
20:03:06.0528 3296 Number of processors: 4
20:03:06.0528 3296 Page size: 0x1000
20:03:06.0528 3296 Boot type: Normal boot
20:03:06.0528 3296 ============================================================
20:03:07.0508 3296 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:03:07.0508 3296 Drive \Device\Harddisk1\DR1 - Size: 0x7446E00000 (465.11 Gb), SectorSize: 0x200, Cylinders: 0xED2B, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:03:07.0548 3296 ============================================================
20:03:07.0548 3296 \Device\Harddisk0\DR0:
20:03:07.0578 3296 MBR partitions:
20:03:07.0578 3296 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1DEFD7C1
20:03:07.0578 3296 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DEFD800, BlocksNum 0x7530000
20:03:07.0578 3296 \Device\Harddisk1\DR1:
20:03:07.0578 3296 MBR partitions:
20:03:07.0578 3296 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A236800
20:03:07.0578 3296 ============================================================
20:03:07.0598 3296 C: <-> \Device\Harddisk0\DR0\Partition1
20:03:07.0638 3296 G: <-> \Device\Harddisk0\DR0\Partition2
20:03:07.0648 3296 H: <-> \Device\Harddisk1\DR1\Partition1
20:03:07.0648 3296 ============================================================
20:03:07.0648 3296 Initialize success
20:03:07.0648 3296 ============================================================
20:03:25.0128 3544 ============================================================
20:03:25.0128 3544 Scan started
20:03:25.0128 3544 Mode: Manual; SigCheck; TDLFS;
20:03:25.0128 3544 ============================================================
20:03:26.0648 3544 ================ Scan system memory ========================
20:03:26.0648 3544 System memory - ok
20:03:26.0648 3544 ================ Scan services =============================
20:03:26.0808 3544 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:03:26.0928 3544 1394ohci - ok
20:03:26.0948 3544 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
20:03:26.0968 3544 ACPI - ok
20:03:26.0998 3544 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
20:03:27.0038 3544 AcpiPmi - ok
20:03:27.0188 3544 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:03:27.0198 3544 AdobeARMservice - ok
20:03:27.0278 3544 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:03:27.0278 3544 AdobeFlashPlayerUpdateSvc - ok
20:03:27.0348 3544 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:03:27.0368 3544 adp94xx - ok
20:03:27.0378 3544 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:03:27.0388 3544 adpahci - ok
20:03:27.0398 3544 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:03:27.0418 3544 adpu320 - ok
20:03:27.0438 3544 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:03:27.0488 3544 AeLookupSvc - ok
20:03:27.0528 3544 [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD C:\Windows\system32\drivers\afd.sys
20:03:27.0598 3544 AFD - ok
20:03:27.0618 3544 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
20:03:27.0628 3544 agp440 - ok
20:03:27.0648 3544 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:03:27.0668 3544 aic78xx - ok
20:03:27.0708 3544 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:03:27.0778 3544 ALG - ok
20:03:27.0778 3544 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
20:03:27.0788 3544 aliide - ok
20:03:27.0828 3544 [ 87F8E98FCD859D2F0C291DCF9F1A5543 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:03:27.0878 3544 AMD External Events Utility - ok
20:03:27.0938 3544 AMD FUEL Service - ok
20:03:27.0958 3544 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
20:03:27.0968 3544 amdagp - ok
20:03:27.0978 3544 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
20:03:28.0008 3544 amdide - ok
20:03:28.0018 3544 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
20:03:28.0038 3544 amdiox86 - ok
20:03:28.0068 3544 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:03:28.0098 3544 AmdK8 - ok
20:03:28.0468 3544 [ 6617FED21C91E821E3D00484741B302F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:03:28.0658 3544 amdkmdag - ok
20:03:28.0678 3544 [ 0CD80C1ABE5507B4ADBFC8338E3698E0 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:03:28.0698 3544 amdkmdap - ok
20:03:28.0738 3544 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:03:28.0768 3544 AmdPPM - ok
20:03:28.0798 3544 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:03:28.0808 3544 amdsata - ok
20:03:28.0828 3544 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:03:28.0848 3544 amdsbs - ok
20:03:28.0858 3544 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:03:28.0868 3544 amdxata - ok
20:03:28.0928 3544 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
20:03:28.0938 3544 AntiVirSchedulerService - ok
20:03:28.0968 3544 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
20:03:28.0978 3544 AntiVirService - ok
20:03:28.0998 3544 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:03:29.0008 3544 AODDriver4.1 - ok
20:03:29.0028 3544 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
20:03:29.0058 3544 AppID - ok
20:03:29.0088 3544 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:03:29.0178 3544 AppIDSvc - ok
20:03:29.0198 3544 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
20:03:29.0238 3544 Appinfo - ok
20:03:29.0258 3544 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:03:29.0278 3544 AppMgmt - ok
20:03:29.0318 3544 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:03:29.0328 3544 arc - ok
20:03:29.0338 3544 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:03:29.0358 3544 arcsas - ok
20:03:29.0368 3544 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:03:29.0398 3544 AsyncMac - ok
20:03:29.0408 3544 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
20:03:29.0418 3544 atapi - ok
20:03:29.0468 3544 [ 434192D027A6A11E32E1C74C7C43E1ED ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
20:03:29.0478 3544 AtiHDAudioService - ok
20:03:29.0528 3544 [ 36A49B49E982450AC117EDA6AB35BDF5 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
20:03:29.0558 3544 AtiHdmiService - ok
20:03:29.0588 3544 [ B73C832088DD54B55E04FF6F9646AD8C ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
20:03:29.0598 3544 AtiPcie - ok
20:03:29.0668 3544 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:03:29.0728 3544 AudioEndpointBuilder - ok
20:03:29.0728 3544 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:03:29.0748 3544 Audiosrv - ok
20:03:29.0788 3544 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:03:29.0808 3544 avgntflt - ok
20:03:29.0868 3544 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:03:29.0888 3544 avipbb - ok
20:03:29.0898 3544 [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:03:29.0918 3544 avkmgr - ok
20:03:29.0948 3544 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:03:29.0998 3544 AxInstSV - ok
20:03:30.0028 3544 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:03:30.0058 3544 b06bdrv - ok
20:03:30.0078 3544 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:03:30.0108 3544 b57nd60x - ok
20:03:30.0138 3544 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:03:30.0188 3544 BDESVC - ok
20:03:30.0218 3544 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:03:30.0248 3544 Beep - ok
20:03:30.0278 3544 [ 66F655B08EED3230E059D197C8A1969B ] bizVSerial C:\Windows\system32\drivers\bizVSerialNT.sys
20:03:30.0288 3544 bizVSerial ( UnsignedFile.Multi.Generic ) - warning
20:03:30.0288 3544 bizVSerial - detected UnsignedFile.Multi.Generic (1)
20:03:30.0298 3544 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:03:30.0308 3544 blbdrive - ok
20:03:30.0328 3544 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:03:30.0358 3544 bowser - ok
20:03:30.0358 3544 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:03:30.0438 3544 BrFiltLo - ok
20:03:30.0458 3544 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:03:30.0478 3544 BrFiltUp - ok
20:03:30.0498 3544 [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser C:\Windows\System32\browser.dll
20:03:30.0548 3544 Browser - ok
20:03:30.0568 3544 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:03:30.0608 3544 Brserid - ok
20:03:30.0618 3544 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:03:30.0638 3544 BrSerWdm - ok
20:03:30.0648 3544 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:03:30.0668 3544 BrUsbMdm - ok
20:03:30.0668 3544 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:03:30.0688 3544 BrUsbSer - ok
20:03:30.0698 3544 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:03:30.0718 3544 BTHMODEM - ok
20:03:30.0768 3544 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:03:30.0808 3544 bthserv - ok
20:03:30.0838 3544 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:03:30.0868 3544 cdfs - ok
20:03:30.0898 3544 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:03:30.0918 3544 cdrom - ok
20:03:30.0938 3544 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
20:03:30.0958 3544 CertPropSvc - ok
20:03:30.0978 3544 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:03:31.0008 3544 circlass - ok
20:03:31.0048 3544 [ ED81E81752CA817AFA740C14AD05BC6C ] cjpcsc C:\Windows\system32\cjpcsc.exe
20:03:31.0068 3544 cjpcsc - ok
20:03:31.0158 3544 [ B0DFC4ADB1FF150AC466F3DAD323196A ] cjusb C:\Windows\system32\DRIVERS\cjusb.sys
20:03:31.0188 3544 cjusb - ok
20:03:31.0228 3544 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:03:31.0248 3544 CLFS - ok
20:03:31.0328 3544 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:03:31.0348 3544 clr_optimization_v2.0.50727_32 - ok
20:03:31.0408 3544 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:03:31.0438 3544 clr_optimization_v4.0.30319_32 - ok
20:03:31.0448 3544 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:03:31.0458 3544 CmBatt - ok
20:03:31.0468 3544 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
20:03:31.0478 3544 cmdide - ok
20:03:31.0518 3544 [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG C:\Windows\system32\Drivers\cng.sys
20:03:31.0538 3544 CNG - ok
20:03:31.0558 3544 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:03:31.0568 3544 Compbatt - ok
20:03:31.0588 3544 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:03:31.0598 3544 CompositeBus - ok
20:03:31.0638 3544 COMSysApp - ok
20:03:31.0658 3544 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:03:31.0668 3544 crcdisk - ok
20:03:31.0718 3544 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
20:03:31.0748 3544 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
20:03:31.0748 3544 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
20:03:31.0768 3544 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
20:03:31.0778 3544 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
20:03:31.0778 3544 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
20:03:31.0828 3544 [ 520A108A2657F4BCA7FCED9CA7D885DE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:03:31.0858 3544 CryptSvc - ok
20:03:31.0878 3544 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
20:03:31.0918 3544 CSC - ok
20:03:31.0938 3544 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
20:03:31.0958 3544 CscService - ok
20:03:31.0978 3544 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
20:03:31.0998 3544 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
20:03:31.0998 3544 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
20:03:32.0028 3544 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
20:03:32.0068 3544 DcomLaunch - ok
20:03:32.0098 3544 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:03:32.0138 3544 defragsvc - ok
20:03:32.0158 3544 [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:03:32.0208 3544 DfsC - ok
20:03:32.0228 3544 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:03:32.0268 3544 Dhcp - ok
20:03:32.0278 3544 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:03:32.0308 3544 discache - ok
20:03:32.0338 3544 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:03:32.0348 3544 Disk - ok
20:03:32.0388 3544 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:03:32.0408 3544 Dnscache - ok
20:03:32.0438 3544 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
20:03:32.0478 3544 dot3svc - ok
20:03:32.0488 3544 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
20:03:32.0518 3544 DPS - ok
20:03:32.0548 3544 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:03:32.0578 3544 drmkaud - ok
20:03:32.0628 3544 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:03:32.0648 3544 DXGKrnl - ok
20:03:32.0678 3544 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:03:32.0728 3544 EapHost - ok
20:03:33.0128 3544 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:03:33.0208 3544 ebdrv - ok
20:03:33.0238 3544 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS C:\Windows\System32\lsass.exe
20:03:33.0298 3544 EFS - ok
20:03:33.0368 3544 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:03:33.0418 3544 ehRecvr - ok
20:03:33.0428 3544 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:03:33.0468 3544 ehSched - ok
20:03:33.0508 3544 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:03:33.0538 3544 elxstor - ok
20:03:33.0548 3544 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
20:03:33.0568 3544 ErrDev - ok
20:03:33.0598 3544 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:03:33.0638 3544 EventSystem - ok
20:03:33.0658 3544 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:03:33.0678 3544 exfat - ok
20:03:33.0698 3544 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:03:33.0718 3544 fastfat - ok
20:03:33.0788 3544 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
20:03:33.0828 3544 Fax - ok
20:03:33.0848 3544 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:03:33.0868 3544 fdc - ok
20:03:33.0888 3544 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:03:33.0918 3544 fdPHost - ok
20:03:33.0928 3544 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:03:33.0958 3544 FDResPub - ok
20:03:33.0978 3544 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:03:33.0988 3544 FileInfo - ok
20:03:33.0998 3544 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:03:34.0018 3544 Filetrace - ok
20:03:34.0028 3544 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:03:34.0048 3544 flpydisk - ok
20:03:34.0058 3544 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:03:34.0078 3544 FltMgr - ok
20:03:34.0218 3544 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\Windows\system32\FntCache.dll
20:03:34.0268 3544 FontCache - ok
20:03:34.0298 3544 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:03:34.0308 3544 FontCache3.0.0.0 - ok
20:03:34.0318 3544 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:03:34.0328 3544 FsDepends - ok
20:03:34.0348 3544 [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:03:34.0358 3544 Fs_Rec - ok
20:03:34.0398 3544 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:03:34.0418 3544 fvevol - ok
20:03:34.0438 3544 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:03:34.0448 3544 gagp30kx - ok
20:03:34.0478 3544 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
20:03:34.0508 3544 gpsvc - ok
20:03:34.0528 3544 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:03:34.0558 3544 hcw85cir - ok
20:03:34.0598 3544 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:03:34.0628 3544 HdAudAddService - ok
20:03:34.0658 3544 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:03:34.0678 3544 HDAudBus - ok
20:03:34.0678 3544 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:03:34.0698 3544 HidBatt - ok
20:03:34.0708 3544 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:03:34.0768 3544 HidBth - ok
20:03:34.0788 3544 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:03:34.0818 3544 HidIr - ok
20:03:34.0848 3544 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:03:34.0878 3544 hidserv - ok
20:03:34.0908 3544 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:03:34.0918 3544 HidUsb - ok
20:03:34.0938 3544 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:03:34.0968 3544 hkmsvc - ok
20:03:34.0978 3544 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:03:35.0028 3544 HomeGroupListener - ok
20:03:35.0058 3544 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:03:35.0068 3544 HomeGroupProvider - ok
20:03:35.0098 3544 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
20:03:35.0108 3544 HpSAMD - ok
20:03:35.0138 3544 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:03:35.0178 3544 HTTP - ok
20:03:35.0198 3544 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:03:35.0208 3544 hwpolicy - ok
20:03:35.0228 3544 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:03:35.0258 3544 i8042prt - ok
20:03:35.0278 3544 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:03:35.0298 3544 iaStorV - ok
20:03:35.0408 3544 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:03:35.0448 3544 idsvc - ok
20:03:35.0458 3544 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:03:35.0468 3544 iirsp - ok
20:03:35.0508 3544 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
20:03:35.0548 3544 IKEEXT - ok
20:03:35.0748 3544 [ B68A9BAD1B7C1453EF063C09EBD95C2E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
20:03:35.0798 3544 IntcAzAudAddService - ok
20:03:35.0808 3544 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
20:03:35.0818 3544 intelide - ok
20:03:35.0838 3544 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:03:35.0858 3544 intelppm - ok
20:03:35.0868 3544 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:03:35.0898 3544 IPBusEnum - ok
20:03:35.0908 3544 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:03:35.0948 3544 IpFilterDriver - ok
20:03:35.0958 3544 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:03:35.0978 3544 IPMIDRV - ok
20:03:35.0988 3544 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:03:36.0018 3544 IPNAT - ok
20:03:36.0038 3544 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:03:36.0048 3544 IRENUM - ok
20:03:36.0068 3544 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
20:03:36.0078 3544 isapnp - ok
20:03:36.0098 3544 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:03:36.0108 3544 iScsiPrt - ok
20:03:36.0138 3544 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:03:36.0158 3544 kbdclass - ok
20:03:36.0188 3544 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:03:36.0208 3544 kbdhid - ok
20:03:36.0218 3544 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso C:\Windows\system32\lsass.exe
20:03:36.0228 3544 KeyIso - ok
20:03:36.0258 3544 [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:03:36.0298 3544 KSecDD - ok
20:03:36.0318 3544 [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:03:36.0328 3544 KSecPkg - ok
20:03:36.0358 3544 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:03:36.0398 3544 KtmRm - ok
20:03:36.0418 3544 [ 5E34CD48B7EB440BB77E93528CC9F0CC ] LachesisFltr C:\Windows\system32\drivers\Lachesis.sys
20:03:36.0448 3544 LachesisFltr - ok
20:03:36.0468 3544 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\system32\srvsvc.dll
20:03:36.0498 3544 LanmanServer - ok
20:03:36.0518 3544 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:03:36.0538 3544 LanmanWorkstation - ok
20:03:36.0608 3544 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:03:36.0638 3544 lltdio - ok
20:03:36.0658 3544 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:03:36.0678 3544 lltdsvc - ok
20:03:36.0688 3544 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:03:36.0718 3544 lmhosts - ok
20:03:36.0778 3544 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:03:36.0798 3544 LSI_FC - ok
20:03:36.0808 3544 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:03:36.0818 3544 LSI_SAS - ok
20:03:36.0828 3544 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:03:36.0848 3544 LSI_SAS2 - ok
20:03:36.0858 3544 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:03:36.0868 3544 LSI_SCSI - ok
20:03:36.0898 3544 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:03:36.0928 3544 luafv - ok
20:03:36.0988 3544 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:03:36.0998 3544 MBAMProtector - ok
20:03:37.0038 3544 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:03:37.0058 3544 MBAMScheduler - ok
20:03:37.0068 3544 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:03:37.0088 3544 MBAMService - ok
20:03:37.0118 3544 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:03:37.0128 3544 Mcx2Svc - ok
20:03:37.0148 3544 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:03:37.0158 3544 megasas - ok
20:03:37.0178 3544 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:03:37.0188 3544 MegaSR - ok
20:03:37.0208 3544 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:03:37.0228 3544 MMCSS - ok
20:03:37.0248 3544 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:03:37.0288 3544 Modem - ok
20:03:37.0308 3544 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:03:37.0338 3544 monitor - ok
20:03:37.0358 3544 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:03:37.0368 3544 mouclass - ok
20:03:37.0388 3544 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:03:37.0418 3544 mouhid - ok
20:03:37.0428 3544 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:03:37.0448 3544 mountmgr - ok
20:03:37.0478 3544 [ ADFDD84260C9F66789F8E8061E9BD3A6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:03:37.0498 3544 MozillaMaintenance - ok
20:03:37.0508 3544 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
20:03:37.0528 3544 mpio - ok
20:03:37.0558 3544 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:03:37.0588 3544 mpsdrv - ok
20:03:37.0648 3544 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:03:37.0658 3544 MRxDAV - ok
20:03:37.0688 3544 [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:03:37.0708 3544 mrxsmb - ok
20:03:37.0728 3544 [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:03:37.0748 3544 mrxsmb10 - ok
20:03:37.0768 3544 [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:03:37.0788 3544 mrxsmb20 - ok
20:03:37.0798 3544 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
20:03:37.0808 3544 msahci - ok
20:03:37.0818 3544 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
20:03:37.0838 3544 msdsm - ok
20:03:37.0848 3544 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:03:37.0878 3544 MSDTC - ok
20:03:37.0888 3544 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:03:37.0908 3544 Msfs - ok
20:03:37.0928 3544 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:03:37.0948 3544 mshidkmdf - ok
20:03:37.0958 3544 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
20:03:37.0968 3544 msisadrv - ok
20:03:37.0988 3544 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:03:38.0018 3544 MSiSCSI - ok
20:03:38.0018 3544 msiserver - ok
20:03:38.0028 3544 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:03:38.0058 3544 MSKSSRV - ok
20:03:38.0078 3544 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:03:38.0108 3544 MSPCLOCK - ok
20:03:38.0118 3544 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:03:38.0148 3544 MSPQM - ok
20:03:38.0148 3544 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:03:38.0158 3544 MsRPC - ok
20:03:38.0168 3544 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:03:38.0188 3544 mssmbios - ok
20:03:38.0188 3544 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:03:38.0208 3544 MSTEE - ok
20:03:38.0218 3544 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:03:38.0228 3544 MTConfig - ok
20:03:38.0248 3544 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:03:38.0278 3544 Mup - ok
20:03:38.0298 3544 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
20:03:38.0328 3544 napagent - ok
20:03:38.0348 3544 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:03:38.0378 3544 NativeWifiP - ok
20:03:38.0408 3544 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:03:38.0418 3544 NDIS - ok
20:03:38.0438 3544 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:03:38.0458 3544 NdisCap - ok
20:03:38.0478 3544 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:03:38.0518 3544 NdisTapi - ok
20:03:38.0528 3544 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:03:38.0548 3544 Ndisuio - ok
20:03:38.0558 3544 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:03:38.0588 3544 NdisWan - ok
20:03:38.0598 3544 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:03:38.0618 3544 NDProxy - ok
20:03:38.0638 3544 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:03:38.0668 3544 NetBIOS - ok
20:03:38.0678 3544 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:03:38.0718 3544 NetBT - ok
20:03:38.0758 3544 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon C:\Windows\system32\lsass.exe
20:03:38.0768 3544 Netlogon - ok
20:03:38.0808 3544 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:03:38.0848 3544 Netman - ok
20:03:38.0868 3544 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:03:38.0898 3544 netprofm - ok
20:03:38.0918 3544 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:03:38.0938 3544 NetTcpPortSharing - ok
20:03:38.0948 3544 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:03:38.0968 3544 nfrd960 - ok
20:03:38.0978 3544 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
20:03:38.0998 3544 NlaSvc - ok
20:03:39.0018 3544 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:03:39.0038 3544 Npfs - ok
20:03:39.0058 3544 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:03:39.0078 3544 nsi - ok
20:03:39.0088 3544 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:03:39.0118 3544 nsiproxy - ok
20:03:39.0148 3544 [ 187002CE05693C306F43C873F821381F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:03:39.0188 3544 Ntfs - ok
20:03:39.0198 3544 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:03:39.0218 3544 Null - ok
20:03:39.0258 3544 [ 9A3879B890F395EF8007A69543B56E8D ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
20:03:39.0278 3544 nusb3hub - ok
20:03:39.0288 3544 [ 61C3A3C6B35F596831358D954D20712F ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:03:39.0308 3544 nusb3xhc - ok
20:03:39.0328 3544 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:03:39.0338 3544 nvraid - ok
20:03:39.0368 3544 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:03:39.0398 3544 nvstor - ok
20:03:39.0408 3544 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
20:03:39.0428 3544 nv_agp - ok
20:03:39.0428 3544 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:03:39.0448 3544 ohci1394 - ok
20:03:39.0468 3544 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:03:39.0508 3544 p2pimsvc - ok
20:03:39.0518 3544 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:03:39.0538 3544 p2psvc - ok
20:03:39.0558 3544 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:03:39.0578 3544 Parport - ok
20:03:39.0598 3544 [ 66D3415C159741ADE7038A277EFFF99F ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:03:39.0608 3544 partmgr - ok
20:03:39.0628 3544 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:03:39.0638 3544 Parvdm - ok
20:03:39.0658 3544 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:03:39.0678 3544 PcaSvc - ok
20:03:39.0688 3544 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
20:03:39.0708 3544 pci - ok
20:03:39.0708 3544 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
20:03:39.0728 3544 pciide - ok
20:03:39.0778 3544 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:03:39.0798 3544 pcmcia - ok
20:03:39.0818 3544 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:03:39.0828 3544 pcw - ok
20:03:39.0848 3544 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:03:39.0898 3544 PEAUTH - ok
20:03:39.0938 3544 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:03:39.0978 3544 PeerDistSvc - ok
20:03:40.0038 3544 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
20:03:40.0098 3544 pla - ok
20:03:40.0138 3544 [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:03:40.0168 3544 PlugPlay - ok
20:03:40.0188 3544 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:03:40.0198 3544 PNRPAutoReg - ok
20:03:40.0218 3544 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:03:40.0228 3544 PNRPsvc - ok
20:03:40.0278 3544 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:03:40.0318 3544 PolicyAgent - ok
20:03:40.0338 3544 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
20:03:40.0368 3544 Power - ok
20:03:40.0398 3544 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:03:40.0418 3544 PptpMiniport - ok
20:03:40.0428 3544 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:03:40.0448 3544 Processor - ok
20:03:40.0468 3544 [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc C:\Windows\system32\profsvc.dll
20:03:40.0498 3544 ProfSvc - ok
20:03:40.0508 3544 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:03:40.0518 3544 ProtectedStorage - ok
20:03:40.0538 3544 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:03:40.0568 3544 Psched - ok
20:03:40.0748 3544 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:03:40.0778 3544 ql2300 - ok
20:03:40.0788 3544 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:03:40.0808 3544 ql40xx - ok
20:03:40.0828 3544 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:03:40.0858 3544 QWAVE - ok
20:03:40.0868 3544 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:03:40.0878 3544 QWAVEdrv - ok
20:03:40.0888 3544 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:03:40.0908 3544 RasAcd - ok
20:03:40.0938 3544 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:03:40.0958 3544 RasAgileVpn - ok
20:03:40.0978 3544 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:03:40.0998 3544 RasAuto - ok
20:03:41.0018 3544 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:03:41.0048 3544 Rasl2tp - ok
20:03:41.0078 3544 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
20:03:41.0108 3544 RasMan - ok
20:03:41.0118 3544 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:03:41.0148 3544 RasPppoe - ok
20:03:41.0168 3544 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:03:41.0188 3544 RasSstp - ok
20:03:41.0188 3544 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:03:41.0218 3544 rdbss - ok
20:03:41.0228 3544 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:03:41.0248 3544 rdpbus - ok
20:03:41.0258 3544 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:03:41.0298 3544 RDPCDD - ok
20:03:41.0318 3544 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:03:41.0348 3544 RDPDR - ok
20:03:41.0378 3544 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:03:41.0398 3544 RDPENCDD - ok
20:03:41.0398 3544 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:03:41.0428 3544 RDPREFMP - ok
20:03:41.0448 3544 [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:03:41.0478 3544 RDPWD - ok
20:03:41.0488 3544 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:03:41.0498 3544 rdyboost - ok
20:03:41.0518 3544 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:03:41.0568 3544 RemoteAccess - ok
20:03:41.0598 3544 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:03:41.0618 3544 RemoteRegistry - ok
20:03:41.0638 3544 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:03:41.0668 3544 RpcEptMapper - ok
20:03:41.0718 3544 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:03:41.0748 3544 RpcLocator - ok
20:03:41.0758 3544 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
20:03:41.0778 3544 RpcSs - ok
20:03:41.0798 3544 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:03:41.0828 3544 rspndr - ok
20:03:41.0858 3544 [ 80B66A4181F782884A815E69D0AFA743 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
20:03:41.0868 3544 RTL8167 - ok
20:03:41.0888 3544 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
20:03:41.0908 3544 s3cap - ok
20:03:41.0918 3544 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs C:\Windows\system32\lsass.exe
20:03:41.0928 3544 SamSs - ok
20:03:41.0948 3544 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:03:41.0968 3544 sbp2port - ok
20:03:41.0988 3544 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:03:42.0018 3544 SCardSvr - ok
20:03:42.0028 3544 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:03:42.0058 3544 scfilter - ok
20:03:42.0098 3544 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll
20:03:42.0128 3544 Schedule - ok
20:03:42.0138 3544 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:03:42.0158 3544 SCPolicySvc - ok
20:03:42.0168 3544 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:03:42.0198 3544 SDRSVC - ok
20:03:42.0218 3544 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:03:42.0238 3544 secdrv - ok
20:03:42.0248 3544 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:03:42.0278 3544 seclogon - ok
20:03:42.0288 3544 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:03:42.0318 3544 SENS - ok
20:03:42.0338 3544 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:03:42.0378 3544 SensrSvc - ok
20:03:42.0398 3544 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:03:42.0408 3544 Serenum - ok
20:03:42.0418 3544 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:03:42.0438 3544 Serial - ok
20:03:42.0458 3544 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:03:42.0498 3544 sermouse - ok
20:03:42.0518 3544 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
20:03:42.0558 3544 SessionEnv - ok
20:03:42.0558 3544 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:03:42.0578 3544 sffdisk - ok
20:03:42.0578 3544 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:03:42.0598 3544 sffp_mmc - ok
20:03:42.0608 3544 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:03:42.0618 3544 sffp_sd - ok
20:03:42.0618 3544 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:03:42.0638 3544 sfloppy - ok
20:03:42.0658 3544 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:03:42.0678 3544 ShellHWDetection - ok
20:03:42.0698 3544 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
20:03:42.0708 3544 sisagp - ok
20:03:42.0728 3544 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:03:42.0748 3544 SiSRaid2 - ok
20:03:42.0758 3544 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:03:42.0768 3544 SiSRaid4 - ok
20:03:42.0828 3544 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:03:42.0948 3544 SkypeUpdate - ok
20:03:42.0968 3544 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:03:42.0988 3544 Smb - ok
20:03:43.0018 3544 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:03:43.0028 3544 SNMPTRAP - ok
20:03:43.0068 3544 [ FFC5F7ED77AA59AA0A6B70F3D7A22A93 ] Sound Blaster X-Fi MB Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
20:03:43.0078 3544 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
20:03:43.0078 3544 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
20:03:43.0088 3544 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:03:43.0098 3544 spldr - ok
20:03:43.0128 3544 [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler C:\Windows\System32\spoolsv.exe
20:03:43.0158 3544 Spooler - ok
20:03:43.0228 3544 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
20:03:43.0278 3544 sppsvc - ok
20:03:43.0288 3544 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:03:43.0318 3544 sppuinotify - ok
20:03:43.0338 3544 [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:03:43.0378 3544 srv - ok
20:03:43.0398 3544 [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:03:43.0428 3544 srv2 - ok
20:03:43.0438 3544 [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:03:43.0468 3544 srvnet - ok
20:03:43.0488 3544 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:03:43.0508 3544 SSDPSRV - ok
20:03:43.0548 3544 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
20:03:43.0558 3544 ssmdrv - ok
20:03:43.0568 3544 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:03:43.0588 3544 SstpSvc - ok
20:03:43.0648 3544 [ E4AEA6FC64A979375149B86882CA2100 ] StarMoney 8.0 OnlineUpdate C:\Program Files\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
20:03:43.0658 3544 StarMoney 8.0 OnlineUpdate - ok
20:03:43.0728 3544 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:03:43.0758 3544 stexstor - ok
20:03:43.0788 3544 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
20:03:43.0798 3544 StiSvc - ok
20:03:43.0818 3544 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
20:03:43.0828 3544 storflt - ok
20:03:43.0858 3544 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
20:03:43.0868 3544 storvsc - ok
20:03:43.0878 3544 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:03:43.0888 3544 swenum - ok
20:03:43.0958 3544 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:03:43.0988 3544 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
20:03:43.0988 3544 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
20:03:43.0998 3544 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:03:44.0048 3544 swprv - ok
20:03:44.0078 3544 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
20:03:44.0108 3544 SysMain - ok
20:03:44.0118 3544 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:03:44.0128 3544 TabletInputService - ok
20:03:44.0158 3544 [ FD90A16CEB10D4FDAA00AAF39B8FF58F ] taphss C:\Windows\system32\DRIVERS\taphss.sys
20:03:44.0168 3544 taphss - ok
20:03:44.0178 3544 [ A69C1848E37482C855D94AA05145086C ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
20:03:44.0198 3544 taphss6 - ok
20:03:44.0208 3544 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
20:03:44.0238 3544 TapiSrv - ok
20:03:44.0258 3544 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:03:44.0288 3544 TBS - ok
20:03:44.0428 3544 [ 55E9965552741F3850CB22CBBA9671ED ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:03:44.0488 3544 Tcpip - ok
20:03:44.0508 3544 [ 55E9965552741F3850CB22CBBA9671ED ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:03:44.0528 3544 TCPIP6 - ok
20:03:44.0548 3544 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:03:44.0578 3544 tcpipreg - ok
20:03:44.0588 3544 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:03:44.0658 3544 TDPIPE - ok
20:03:44.0688 3544 [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:03:44.0698 3544 TDTCP - ok
20:03:44.0718 3544 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:03:44.0748 3544 tdx - ok
20:03:44.0758 3544 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:03:44.0778 3544 TermDD - ok
20:03:44.0888 3544 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
20:03:44.0938 3544 TermService - ok
20:03:44.0948 3544 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:03:44.0968 3544 Themes - ok
20:03:44.0978 3544 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:03:44.0988 3544 THREADORDER - ok
20:03:45.0008 3544 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:03:45.0038 3544 TrkWks - ok
20:03:45.0088 3544 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:03:45.0098 3544 TrustedInstaller - ok
20:03:45.0108 3544 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:03:45.0128 3544 tssecsrv - ok
20:03:45.0168 3544 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:03:45.0198 3544 tunnel - ok
20:03:45.0208 3544 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:03:45.0228 3544 uagp35 - ok
20:03:45.0238 3544 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:03:45.0268 3544 udfs - ok
20:03:45.0278 3544 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:03:45.0298 3544 UI0Detect - ok
20:03:45.0318 3544 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
20:03:45.0328 3544 uliagpkx - ok
20:03:45.0348 3544 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:03:45.0378 3544 umbus - ok
20:03:45.0398 3544 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:03:45.0408 3544 UmPass - ok
20:03:45.0438 3544 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
20:03:45.0458 3544 UmRdpService - ok
20:03:45.0478 3544 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:03:45.0508 3544 upnphost - ok
20:03:45.0538 3544 [ 2436A42AAB4AD48A9B714E5B0F344627 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:03:45.0558 3544 usbaudio - ok
20:03:45.0578 3544 [ C31AE588E403042632DC796CF09E30B0 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:03:45.0618 3544 usbccgp - ok
20:03:45.0628 3544 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:03:45.0658 3544 usbcir - ok
20:03:45.0708 3544 [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:03:45.0728 3544 usbehci - ok
20:03:45.0758 3544 [ E5B14557793164DB879EE56F5B59C3E2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:03:45.0768 3544 usbfilter - ok
20:03:45.0778 3544 [ BDCD7156EC37448F08633FD899823620 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:03:45.0798 3544 usbhub - ok
20:03:45.0808 3544 [ EB2D819A639015253C871CDA09D91D58 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:03:45.0818 3544 usbohci - ok
20:03:45.0838 3544 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:03:45.0858 3544 usbprint - ok
20:03:45.0868 3544 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:03:45.0888 3544 USBSTOR - ok
20:03:45.0898 3544 [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:03:45.0928 3544 usbuhci - ok
20:03:45.0948 3544 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:03:45.0968 3544 UxSms - ok
20:03:45.0988 3544 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc C:\Windows\system32\lsass.exe
20:03:45.0988 3544 VaultSvc - ok
20:03:46.0008 3544 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
20:03:46.0028 3544 vdrvroot - ok
20:03:46.0048 3544 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
20:03:46.0088 3544 vds - ok
20:03:46.0108 3544 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:03:46.0118 3544 vga - ok
20:03:46.0138 3544 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:03:46.0158 3544 VgaSave - ok
20:03:46.0168 3544 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
20:03:46.0188 3544 vhdmp - ok
20:03:46.0208 3544 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
20:03:46.0218 3544 viaagp - ok
20:03:46.0228 3544 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:03:46.0258 3544 ViaC7 - ok
20:03:46.0268 3544 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
20:03:46.0278 3544 viaide - ok
20:03:46.0298 3544 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
20:03:46.0318 3544 vmbus - ok
20:03:46.0328 3544 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
20:03:46.0338 3544 VMBusHID - ok
20:03:46.0348 3544 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
20:03:46.0358 3544 volmgr - ok
20:03:46.0368 3544 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:03:46.0388 3544 volmgrx - ok
20:03:46.0398 3544 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
20:03:46.0418 3544 volsnap - ok
20:03:46.0438 3544 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:03:46.0458 3544 vsmraid - ok
20:03:46.0488 3544 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
20:03:46.0528 3544 VSS - ok
20:03:46.0548 3544 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:03:46.0568 3544 vwifibus - ok
20:03:46.0588 3544 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:03:46.0658 3544 W32Time - ok
20:03:46.0658 3544 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:03:46.0668 3544 WacomPen - ok
20:03:46.0698 3544 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:03:46.0718 3544 WANARP - ok
20:03:46.0718 3544 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:03:46.0738 3544 Wanarpv6 - ok
20:03:46.0778 3544 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
20:03:46.0868 3544 wbengine - ok
20:03:46.0878 3544 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:03:46.0898 3544 WbioSrvc - ok
20:03:46.0918 3544 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:03:46.0968 3544 wcncsvc - ok
20:03:46.0978 3544 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:03:47.0028 3544 WcsPlugInService - ok
20:03:47.0038 3544 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:03:47.0048 3544 Wd - ok
20:03:47.0078 3544 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:03:47.0118 3544 WDC_SAM - ok
20:03:47.0138 3544 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:03:47.0168 3544 Wdf01000 - ok
20:03:47.0178 3544 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:03:47.0198 3544 WdiServiceHost - ok
20:03:47.0198 3544 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:03:47.0208 3544 WdiSystemHost - ok
20:03:47.0248 3544 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll
20:03:47.0298 3544 WebClient - ok
20:03:47.0318 3544 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:03:47.0338 3544 Wecsvc - ok
20:03:47.0348 3544 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:03:47.0378 3544 wercplsupport - ok
20:03:47.0408 3544 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:03:47.0428 3544 WerSvc - ok
20:03:47.0448 3544 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:03:47.0468 3544 WfpLwf - ok
20:03:47.0478 3544 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:03:47.0488 3544 WIMMount - ok
20:03:47.0488 3544 WinHttpAutoProxySvc - ok
20:03:47.0538 3544 Winmgmt - ok
20:03:47.0618 3544 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
20:03:47.0658 3544 WinRM - ok
20:03:47.0728 3544 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:03:47.0738 3544 WinUsb - ok
20:03:47.0798 3544 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:03:47.0828 3544 Wlansvc - ok
20:03:47.0838 3544 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:03:47.0858 3544 WmiAcpi - ok
20:03:47.0918 3544 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:03:47.0938 3544 wmiApSrv - ok
20:03:48.0058 3544 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:03:48.0118 3544 WMPNetworkSvc - ok
20:03:48.0128 3544 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:03:48.0178 3544 WPCSvc - ok
20:03:48.0188 3544 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:03:48.0208 3544 WPDBusEnum - ok
20:03:48.0238 3544 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:03:48.0258 3544 ws2ifsl - ok
20:03:48.0258 3544 WSearch - ok
20:03:48.0278 3544 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:03:48.0308 3544 WudfPf - ok
20:03:48.0328 3544 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:03:48.0348 3544 WUDFRd - ok
20:03:48.0358 3544 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:03:48.0398 3544 wudfsvc - ok
20:03:48.0418 3544 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:03:48.0438 3544 WwanSvc - ok
20:03:48.0448 3544 ================ Scan global ===============================
20:03:48.0458 3544 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
20:03:48.0488 3544 [ 008F51AE989C3DF1CBAF8B39DC423CCC ] C:\Windows\system32\winsrv.dll
20:03:48.0508 3544 [ 008F51AE989C3DF1CBAF8B39DC423CCC ] C:\Windows\system32\winsrv.dll
20:03:48.0538 3544 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:03:48.0588 3544 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:03:48.0598 3544 [Global] - ok
20:03:48.0598 3544 ================ Scan MBR ==================================
20:03:48.0608 3544 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:03:49.0458 3544 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:03:49.0458 3544 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:03:49.0458 3544 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
20:03:49.0838 3544 \Device\Harddisk1\DR1 - ok
20:03:49.0838 3544 ================ Scan VBR ==================================
20:03:49.0848 3544 [ E5BA1544A8E7D738A9DE3DDE2384A866 ] \Device\Harddisk0\DR0\Partition1
20:03:49.0848 3544 \Device\Harddisk0\DR0\Partition1 - ok
20:03:49.0868 3544 [ 3AC79AB20521118EE50C6CC7CBCF9876 ] \Device\Harddisk0\DR0\Partition2
20:03:49.0868 3544 \Device\Harddisk0\DR0\Partition2 - ok
20:03:49.0868 3544 [ 5871F0826B459552591D6CB1EC855181 ] \Device\Harddisk1\DR1\Partition1
20:03:49.0878 3544 \Device\Harddisk1\DR1\Partition1 - ok
20:03:49.0878 3544 ============================================================
20:03:49.0878 3544 Scan finished
20:03:49.0878 3544 ============================================================
20:03:49.0878 3652 Detected object count: 7
20:03:49.0878 3652 Actual detected object count: 7
20:04:12.0138 3652 bizVSerial ( UnsignedFile.Multi.Generic ) - skipped by user
20:04:12.0138 3652 bizVSerial ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:04:12.0138 3652 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:04:12.0138 3652 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:04:12.0138 3652 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:04:12.0138 3652 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:04:12.0138 3652 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
20:04:12.0138 3652 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:04:12.0138 3652 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
20:04:12.0138 3652 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:04:12.0138 3652 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
20:04:12.0138 3652 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:04:12.0148 3652 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:04:12.0148 3652 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
|
|
23.01.2013, 20:20
| #6 |
| /// Malware-holic | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! Hi konfiguriere TDSS killer wie oben, scanne, wähle: TDSS File System hier wähle delete dann starteneu, scanne wie oben, und poste das neue Log
__________________ --> PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! |
|
23.01.2013, 20:38
| #7 |
| | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! hier der letzte log nach dem neustart und dem dritten scan... Code:
ATTFilter 20:36:33.0261 0552 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:36:33.0431 0552 ============================================================
20:36:33.0431 0552 Current date / time: 2013/01/23 20:36:33.0431
20:36:33.0431 0552 SystemInfo:
20:36:33.0431 0552
20:36:33.0431 0552 OS Version: 6.1.7600 ServicePack: 0.0
20:36:33.0431 0552 Product type: Workstation
20:36:33.0431 0552 ComputerName: CHRISTIAN-PC
20:36:33.0431 0552 UserName: Christian
20:36:33.0431 0552 Windows directory: C:\Windows
20:36:33.0431 0552 System windows directory: C:\Windows
20:36:33.0431 0552 Processor architecture: Intel x86
20:36:33.0431 0552 Number of processors: 4
20:36:33.0431 0552 Page size: 0x1000
20:36:33.0431 0552 Boot type: Normal boot
20:36:33.0431 0552 ============================================================
20:36:33.0802 0552 BG loaded
20:36:34.0053 0552 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:36:34.0054 0552 Drive \Device\Harddisk1\DR1 - Size: 0x7446E00000 (465.11 Gb), SectorSize: 0x200, Cylinders: 0xED2B, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:36:34.0055 0552 ============================================================
20:36:34.0056 0552 \Device\Harddisk0\DR0:
20:36:34.0056 0552 MBR partitions:
20:36:34.0056 0552 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1DEFD7C1
20:36:34.0056 0552 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DEFD800, BlocksNum 0x7530000
20:36:34.0056 0552 \Device\Harddisk1\DR1:
20:36:34.0057 0552 MBR partitions:
20:36:34.0057 0552 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A236800
20:36:34.0057 0552 ============================================================
20:36:34.0082 0552 C: <-> \Device\Harddisk0\DR0\Partition1
20:36:34.0125 0552 G: <-> \Device\Harddisk0\DR0\Partition2
20:36:34.0127 0552 H: <-> \Device\Harddisk1\DR1\Partition1
20:36:34.0128 0552 ============================================================
20:36:34.0128 0552 Initialize success
20:36:34.0128 0552 ============================================================
20:36:38.0312 0816 ============================================================
20:36:38.0312 0816 Scan started
20:36:38.0312 0816 Mode: Manual; SigCheck; TDLFS;
20:36:38.0312 0816 ============================================================
20:36:39.0320 0816 ================ Scan system memory ========================
20:36:39.0320 0816 System memory - ok
20:36:39.0321 0816 ================ Scan services =============================
20:36:39.0431 0816 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:36:39.0529 0816 1394ohci - ok
20:36:39.0541 0816 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
20:36:39.0561 0816 ACPI - ok
20:36:39.0579 0816 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
20:36:39.0620 0816 AcpiPmi - ok
20:36:39.0724 0816 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
20:36:39.0737 0816 AdobeARMservice - ok
20:36:39.0802 0816 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:36:39.0823 0816 AdobeFlashPlayerUpdateSvc - ok
20:36:39.0843 0816 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:36:39.0864 0816 adp94xx - ok
20:36:39.0869 0816 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:36:39.0887 0816 adpahci - ok
20:36:39.0891 0816 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:36:39.0906 0816 adpu320 - ok
20:36:39.0988 0816 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:36:40.0116 0816 AeLookupSvc - ok
20:36:40.0183 0816 [ 0DB7A48388D54D154EBEC120461A0FCD ] AFD C:\Windows\system32\drivers\afd.sys
20:36:40.0234 0816 AFD - ok
20:36:40.0250 0816 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
20:36:40.0263 0816 agp440 - ok
20:36:40.0287 0816 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
20:36:40.0300 0816 aic78xx - ok
20:36:40.0313 0816 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
20:36:40.0386 0816 ALG - ok
20:36:40.0409 0816 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
20:36:40.0420 0816 aliide - ok
20:36:40.0451 0816 [ 87F8E98FCD859D2F0C291DCF9F1A5543 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:36:40.0498 0816 AMD External Events Utility - ok
20:36:40.0549 0816 AMD FUEL Service - ok
20:36:40.0565 0816 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
20:36:40.0578 0816 amdagp - ok
20:36:40.0594 0816 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
20:36:40.0605 0816 amdide - ok
20:36:40.0622 0816 [ FF258424F0B2EF25EB98F04EE386E6E3 ] amdiox86 C:\Windows\system32\DRIVERS\amdiox86.sys
20:36:40.0638 0816 amdiox86 - ok
20:36:40.0665 0816 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:36:40.0689 0816 AmdK8 - ok
20:36:40.0841 0816 [ 6617FED21C91E821E3D00484741B302F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:36:41.0032 0816 amdkmdag - ok
20:36:41.0050 0816 [ 0CD80C1ABE5507B4ADBFC8338E3698E0 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:36:41.0071 0816 amdkmdap - ok
20:36:41.0098 0816 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:36:41.0129 0816 AmdPPM - ok
20:36:41.0169 0816 [ 19CE906B4CDC11FC4FEF5745F33A63B6 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:36:41.0183 0816 amdsata - ok
20:36:41.0261 0816 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:36:41.0299 0816 amdsbs - ok
20:36:41.0325 0816 [ 869E67D66BE326A5A9159FBA8746FA70 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:36:41.0358 0816 amdxata - ok
20:36:41.0652 0816 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
20:36:41.0665 0816 AntiVirSchedulerService - ok
20:36:41.0767 0816 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
20:36:41.0780 0816 AntiVirService - ok
20:36:41.0846 0816 [ 40C15CE1B832B78CC2A2F61807058763 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys
20:36:41.0857 0816 AODDriver4.1 - ok
20:36:41.0944 0816 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
20:36:42.0225 0816 AppID - ok
20:36:42.0300 0816 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:36:42.0451 0816 AppIDSvc - ok
20:36:42.0517 0816 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
20:36:42.0549 0816 Appinfo - ok
20:36:42.0623 0816 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
20:36:42.0672 0816 AppMgmt - ok
20:36:42.0729 0816 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
20:36:42.0744 0816 arc - ok
20:36:42.0782 0816 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:36:42.0796 0816 arcsas - ok
20:36:42.0852 0816 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:36:42.0876 0816 AsyncMac - ok
20:36:42.0891 0816 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
20:36:42.0898 0816 atapi - ok
20:36:42.0953 0816 [ 434192D027A6A11E32E1C74C7C43E1ED ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
20:36:42.0965 0816 AtiHDAudioService - ok
20:36:42.0997 0816 [ 36A49B49E982450AC117EDA6AB35BDF5 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
20:36:43.0031 0816 AtiHdmiService - ok
20:36:43.0060 0816 [ B73C832088DD54B55E04FF6F9646AD8C ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
20:36:43.0070 0816 AtiPcie - ok
20:36:43.0103 0816 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:36:43.0150 0816 AudioEndpointBuilder - ok
20:36:43.0156 0816 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
20:36:43.0176 0816 Audiosrv - ok
20:36:43.0206 0816 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:36:43.0220 0816 avgntflt - ok
20:36:43.0246 0816 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:36:43.0261 0816 avipbb - ok
20:36:43.0277 0816 [ FFB78D74E1EA5F811341A6E7AC547A46 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:36:43.0289 0816 avkmgr - ok
20:36:43.0314 0816 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:36:43.0360 0816 AxInstSV - ok
20:36:43.0436 0816 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
20:36:43.0470 0816 b06bdrv - ok
20:36:43.0483 0816 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
20:36:43.0519 0816 b57nd60x - ok
20:36:43.0542 0816 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
20:36:43.0574 0816 BDESVC - ok
20:36:43.0598 0816 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
20:36:43.0626 0816 Beep - ok
20:36:43.0642 0816 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:36:43.0653 0816 blbdrive - ok
20:36:43.0679 0816 [ 9A5C671B7FBAE4865149BB11F59B91B2 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:36:43.0697 0816 bowser - ok
20:36:43.0703 0816 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:36:43.0719 0816 BrFiltLo - ok
20:36:43.0731 0816 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:36:43.0752 0816 BrFiltUp - ok
20:36:43.0777 0816 [ A0E691DC6589D4D2CBE373171D1A49E5 ] Browser C:\Windows\System32\browser.dll
20:36:43.0820 0816 Browser - ok
20:36:43.0832 0816 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:36:43.0859 0816 Brserid - ok
20:36:43.0871 0816 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:36:43.0891 0816 BrSerWdm - ok
20:36:43.0896 0816 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:36:43.0914 0816 BrUsbMdm - ok
20:36:43.0917 0816 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:36:43.0935 0816 BrUsbSer - ok
20:36:43.0943 0816 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:36:43.0967 0816 BTHMODEM - ok
20:36:43.0994 0816 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
20:36:44.0036 0816 bthserv - ok
20:36:44.0058 0816 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:36:44.0084 0816 cdfs - ok
20:36:44.0107 0816 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:36:44.0121 0816 cdrom - ok
20:36:44.0141 0816 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
20:36:44.0163 0816 CertPropSvc - ok
20:36:44.0179 0816 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:36:44.0192 0816 circlass - ok
20:36:44.0231 0816 [ ED81E81752CA817AFA740C14AD05BC6C ] cjpcsc C:\Windows\system32\cjpcsc.exe
20:36:44.0242 0816 cjpcsc - ok
20:36:44.0274 0816 [ B0DFC4ADB1FF150AC466F3DAD323196A ] cjusb C:\Windows\system32\DRIVERS\cjusb.sys
20:36:44.0284 0816 cjusb - ok
20:36:44.0318 0816 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
20:36:44.0336 0816 CLFS - ok
20:36:44.0398 0816 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:36:44.0413 0816 clr_optimization_v2.0.50727_32 - ok
20:36:44.0507 0816 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:36:44.0544 0816 clr_optimization_v4.0.30319_32 - ok
20:36:44.0550 0816 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:36:44.0561 0816 CmBatt - ok
20:36:44.0576 0816 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
20:36:44.0588 0816 cmdide - ok
20:36:44.0616 0816 [ DB5E008B3744DD60C8498CBBF2A1CFA6 ] CNG C:\Windows\system32\Drivers\cng.sys
20:36:44.0643 0816 CNG - ok
20:36:44.0653 0816 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:36:44.0665 0816 Compbatt - ok
20:36:44.0687 0816 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:36:44.0699 0816 CompositeBus - ok
20:36:44.0708 0816 COMSysApp - ok
20:36:44.0723 0816 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:36:44.0735 0816 crcdisk - ok
20:36:44.0760 0816 [ 520A108A2657F4BCA7FCED9CA7D885DE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:36:44.0792 0816 CryptSvc - ok
20:36:44.0817 0816 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
20:36:44.0846 0816 CSC - ok
20:36:44.0865 0816 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
20:36:44.0896 0816 CscService - ok
20:36:44.0925 0816 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
20:36:44.0957 0816 DcomLaunch - ok
20:36:44.0978 0816 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
20:36:45.0005 0816 defragsvc - ok
20:36:45.0029 0816 [ 83D1ECEA8FAAE75604C0FA49AC7AD996 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:36:45.0079 0816 DfsC - ok
20:36:45.0097 0816 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
20:36:45.0132 0816 Dhcp - ok
20:36:45.0142 0816 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
20:36:45.0176 0816 discache - ok
20:36:45.0205 0816 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:36:45.0218 0816 Disk - ok
20:36:45.0243 0816 [ B15BE77A2BACF9C3177D27518AFE26A9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:36:45.0272 0816 Dnscache - ok
20:36:45.0297 0816 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
20:36:45.0337 0816 dot3svc - ok
20:36:45.0351 0816 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
20:36:45.0375 0816 DPS - ok
20:36:45.0404 0816 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:36:45.0426 0816 drmkaud - ok
20:36:45.0488 0816 [ 1679A4669326CB1A67CC95658D273234 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:36:45.0511 0816 DXGKrnl - ok
20:36:45.0530 0816 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
20:36:45.0564 0816 EapHost - ok
20:36:45.0626 0816 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
20:36:45.0686 0816 ebdrv - ok
20:36:45.0705 0816 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] EFS C:\Windows\System32\lsass.exe
20:36:45.0740 0816 EFS - ok
20:36:45.0783 0816 [ 1697C39978CD69F6FBC15302EDCECE1F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:36:45.0828 0816 ehRecvr - ok
20:36:45.0860 0816 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
20:36:45.0896 0816 ehSched - ok
20:36:45.0930 0816 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:36:45.0951 0816 elxstor - ok
20:36:45.0966 0816 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
20:36:45.0984 0816 ErrDev - ok
20:36:46.0013 0816 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
20:36:46.0044 0816 EventSystem - ok
20:36:46.0066 0816 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
20:36:46.0090 0816 exfat - ok
20:36:46.0107 0816 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:36:46.0130 0816 fastfat - ok
20:36:46.0165 0816 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
20:36:46.0198 0816 Fax - ok
20:36:46.0214 0816 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:36:46.0233 0816 fdc - ok
20:36:46.0247 0816 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
20:36:46.0275 0816 fdPHost - ok
20:36:46.0291 0816 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
20:36:46.0311 0816 FDResPub - ok
20:36:46.0322 0816 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:36:46.0335 0816 FileInfo - ok
20:36:46.0346 0816 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:36:46.0366 0816 Filetrace - ok
20:36:46.0369 0816 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:36:46.0390 0816 flpydisk - ok
20:36:46.0405 0816 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:36:46.0420 0816 FltMgr - ok
20:36:46.0689 0816 [ 7FE4995528A7529A761875151EE3D512 ] FontCache C:\Windows\system32\FntCache.dll
20:36:46.0761 0816 FontCache - ok
20:36:46.0944 0816 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:36:46.0985 0816 FontCache3.0.0.0 - ok
20:36:47.0028 0816 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:36:47.0063 0816 FsDepends - ok
20:36:47.0132 0816 [ 500A9814FD9446A8126858A5A7F7D273 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:36:47.0178 0816 Fs_Rec - ok
20:36:47.0303 0816 [ DAFBD9FE39197495AED6D51F3B85B5D2 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:36:47.0361 0816 fvevol - ok
20:36:47.0425 0816 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:36:47.0439 0816 gagp30kx - ok
20:36:47.0517 0816 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
20:36:47.0556 0816 gpsvc - ok
20:36:47.0577 0816 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:36:47.0602 0816 hcw85cir - ok
20:36:47.0630 0816 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:36:47.0662 0816 HdAudAddService - ok
20:36:47.0687 0816 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:36:47.0709 0816 HDAudBus - ok
20:36:47.0715 0816 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:36:47.0727 0816 HidBatt - ok
20:36:47.0743 0816 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:36:47.0767 0816 HidBth - ok
20:36:47.0784 0816 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:36:47.0804 0816 HidIr - ok
20:36:47.0821 0816 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
20:36:47.0851 0816 hidserv - ok
20:36:47.0879 0816 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:36:47.0897 0816 HidUsb - ok
20:36:47.0914 0816 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:36:47.0945 0816 hkmsvc - ok
20:36:47.0957 0816 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:36:48.0003 0816 HomeGroupListener - ok
20:36:48.0029 0816 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:36:48.0046 0816 HomeGroupProvider - ok
20:36:48.0065 0816 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
20:36:48.0079 0816 HpSAMD - ok
20:36:48.0105 0816 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:36:48.0147 0816 HTTP - ok
20:36:48.0161 0816 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:36:48.0172 0816 hwpolicy - ok
20:36:48.0197 0816 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:36:48.0216 0816 i8042prt - ok
20:36:48.0237 0816 [ 71F1A494FEDF4B33C02C4A6A28D6D9E9 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:36:48.0258 0816 iaStorV - ok
20:36:48.0303 0816 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:36:48.0337 0816 idsvc - ok
20:36:48.0360 0816 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:36:48.0373 0816 iirsp - ok
20:36:48.0407 0816 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
20:36:48.0441 0816 IKEEXT - ok
20:36:48.0576 0816 [ B68A9BAD1B7C1453EF063C09EBD95C2E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
20:36:48.0621 0816 IntcAzAudAddService - ok
20:36:48.0636 0816 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
20:36:48.0648 0816 intelide - ok
20:36:48.0669 0816 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:36:48.0682 0816 intelppm - ok
20:36:48.0691 0816 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:36:48.0723 0816 IPBusEnum - ok
20:36:48.0736 0816 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:36:48.0773 0816 IpFilterDriver - ok
20:36:48.0786 0816 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:36:48.0800 0816 IPMIDRV - ok
20:36:48.0813 0816 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:36:48.0847 0816 IPNAT - ok
20:36:48.0866 0816 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:36:48.0878 0816 IRENUM - ok
20:36:48.0894 0816 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
20:36:48.0906 0816 isapnp - ok
20:36:48.0937 0816 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:36:48.0956 0816 iScsiPrt - ok
20:36:48.0977 0816 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:36:48.0989 0816 kbdclass - ok
20:36:49.0012 0816 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:36:49.0030 0816 kbdhid - ok
20:36:49.0047 0816 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] KeyIso C:\Windows\system32\lsass.exe
20:36:49.0055 0816 KeyIso - ok
20:36:49.0082 0816 [ 52FC17C8589F11747D01D3CF592673D0 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:36:49.0095 0816 KSecDD - ok
20:36:49.0109 0816 [ 3E5474B03568CFAB834DA3C38E8C9EFA ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:36:49.0125 0816 KSecPkg - ok
20:36:49.0155 0816 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
20:36:49.0193 0816 KtmRm - ok
20:36:49.0215 0816 [ 5E34CD48B7EB440BB77E93528CC9F0CC ] LachesisFltr C:\Windows\system32\drivers\Lachesis.sys
20:36:49.0241 0816 LachesisFltr - ok
20:36:49.0260 0816 [ 8F6BF790D3168224C16F2AF68A84438C ] LanmanServer C:\Windows\system32\srvsvc.dll
20:36:49.0289 0816 LanmanServer - ok
20:36:49.0311 0816 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:36:49.0335 0816 LanmanWorkstation - ok
20:36:49.0360 0816 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:36:49.0392 0816 lltdio - ok
20:36:49.0407 0816 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:36:49.0432 0816 lltdsvc - ok
20:36:49.0442 0816 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
20:36:49.0469 0816 lmhosts - ok
20:36:49.0490 0816 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:36:49.0503 0816 LSI_FC - ok
20:36:49.0515 0816 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:36:49.0529 0816 LSI_SAS - ok
20:36:49.0542 0816 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:36:49.0573 0816 LSI_SAS2 - ok
20:36:49.0601 0816 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:36:49.0615 0816 LSI_SCSI - ok
20:36:49.0629 0816 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
20:36:49.0667 0816 luafv - ok
20:36:49.0729 0816 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
20:36:49.0742 0816 MBAMProtector - ok
20:36:49.0784 0816 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
20:36:49.0800 0816 MBAMScheduler - ok
20:36:49.0823 0816 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
20:36:49.0842 0816 MBAMService - ok
20:36:49.0868 0816 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:36:49.0882 0816 Mcx2Svc - ok
20:36:49.0899 0816 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:36:49.0911 0816 megasas - ok
20:36:49.0926 0816 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:36:49.0943 0816 MegaSR - ok
20:36:49.0963 0816 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
20:36:49.0984 0816 MMCSS - ok
20:36:49.0999 0816 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
20:36:50.0036 0816 Modem - ok
20:36:50.0061 0816 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:36:50.0088 0816 monitor - ok
20:36:50.0111 0816 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:36:50.0123 0816 mouclass - ok
20:36:50.0134 0816 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:36:50.0159 0816 mouhid - ok
20:36:50.0173 0816 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:36:50.0188 0816 mountmgr - ok
20:36:50.0223 0816 [ ADFDD84260C9F66789F8E8061E9BD3A6 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:36:50.0238 0816 MozillaMaintenance - ok
20:36:50.0246 0816 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
20:36:50.0263 0816 mpio - ok
20:36:50.0273 0816 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:36:50.0308 0816 mpsdrv - ok
20:36:50.0321 0816 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:36:50.0337 0816 MRxDAV - ok
20:36:50.0360 0816 [ CA7570E42522E24324A12161DB14EC02 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:36:50.0389 0816 mrxsmb - ok
20:36:50.0417 0816 [ F965C3AB2B2AE5C378F4562486E35051 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:36:50.0432 0816 mrxsmb10 - ok
20:36:50.0440 0816 [ 25C38264A3C72594DD21D355D70D7A5D ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:36:50.0463 0816 mrxsmb20 - ok
20:36:50.0473 0816 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
20:36:50.0485 0816 msahci - ok
20:36:50.0495 0816 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
20:36:50.0510 0816 msdsm - ok
20:36:50.0524 0816 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
20:36:50.0551 0816 MSDTC - ok
20:36:50.0602 0816 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:36:50.0621 0816 Msfs - ok
20:36:50.0636 0816 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:36:50.0659 0816 mshidkmdf - ok
20:36:50.0668 0816 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
20:36:50.0679 0816 msisadrv - ok
20:36:50.0701 0816 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:36:50.0725 0816 MSiSCSI - ok
20:36:50.0728 0816 msiserver - ok
20:36:50.0738 0816 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:36:50.0771 0816 MSKSSRV - ok
20:36:50.0807 0816 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:36:50.0829 0816 MSPCLOCK - ok
20:36:50.0832 0816 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:36:50.0861 0816 MSPQM - ok
20:36:50.0865 0816 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:36:50.0880 0816 MsRPC - ok
20:36:50.0891 0816 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:36:50.0902 0816 mssmbios - ok
20:36:50.0912 0816 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:36:50.0931 0816 MSTEE - ok
20:36:50.0934 0816 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:36:50.0944 0816 MTConfig - ok
20:36:50.0954 0816 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
20:36:50.0967 0816 Mup - ok
20:36:50.0988 0816 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
20:36:51.0017 0816 napagent - ok
20:36:51.0048 0816 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:36:51.0077 0816 NativeWifiP - ok
20:36:51.0107 0816 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:36:51.0147 0816 NDIS - ok
20:36:51.0162 0816 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:36:51.0182 0816 NdisCap - ok
20:36:51.0207 0816 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:36:51.0240 0816 NdisTapi - ok
20:36:51.0250 0816 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:36:51.0271 0816 Ndisuio - ok
20:36:51.0281 0816 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:36:51.0303 0816 NdisWan - ok
20:36:51.0315 0816 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:36:51.0335 0816 NDProxy - ok
20:36:51.0361 0816 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:36:51.0390 0816 NetBIOS - ok
20:36:51.0394 0816 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:36:51.0430 0816 NetBT - ok
20:36:51.0452 0816 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] Netlogon C:\Windows\system32\lsass.exe
20:36:51.0460 0816 Netlogon - ok
20:36:51.0505 0816 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
20:36:51.0537 0816 Netman - ok
20:36:51.0605 0816 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
20:36:51.0633 0816 netprofm - ok
20:36:51.0654 0816 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:36:51.0669 0816 NetTcpPortSharing - ok
20:36:51.0686 0816 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:36:51.0698 0816 nfrd960 - ok
20:36:51.0710 0816 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
20:36:51.0736 0816 NlaSvc - ok
20:36:51.0773 0816 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:36:51.0803 0816 Npfs - ok
20:36:51.0881 0816 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
20:36:51.0901 0816 nsi - ok
20:36:51.0929 0816 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:36:51.0981 0816 nsiproxy - ok
20:36:52.0369 0816 [ 187002CE05693C306F43C873F821381F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:36:52.0463 0816 Ntfs - ok
20:36:52.0484 0816 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
20:36:52.0517 0816 Null - ok
20:36:52.0629 0816 [ 9A3879B890F395EF8007A69543B56E8D ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
20:36:52.0675 0816 nusb3hub - ok
20:36:52.0722 0816 [ 61C3A3C6B35F596831358D954D20712F ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
20:36:52.0768 0816 nusb3xhc - ok
20:36:52.0841 0816 [ F1B0BED906F97E16F6D0C3629D2F21C6 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:36:52.0883 0816 nvraid - ok
20:36:52.0955 0816 [ 4520B63899E867F354EE012D34E11536 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:36:52.0995 0816 nvstor - ok
20:36:53.0024 0816 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
20:36:53.0068 0816 nv_agp - ok
20:36:53.0149 0816 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:36:53.0215 0816 ohci1394 - ok
20:36:53.0344 0816 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:36:53.0400 0816 p2pimsvc - ok
20:36:53.0448 0816 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
20:36:53.0468 0816 p2psvc - ok
20:36:53.0549 0816 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:36:53.0592 0816 Parport - ok
20:36:53.0674 0816 [ 66D3415C159741ADE7038A277EFFF99F ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:36:53.0709 0816 partmgr - ok
20:36:53.0735 0816 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
20:36:53.0747 0816 Parvdm - ok
20:36:53.0764 0816 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:36:53.0781 0816 PcaSvc - ok
20:36:53.0790 0816 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
20:36:53.0799 0816 pci - ok
20:36:53.0808 0816 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
20:36:53.0820 0816 pciide - ok
20:36:53.0861 0816 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:36:53.0878 0816 pcmcia - ok
20:36:53.0893 0816 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
20:36:53.0906 0816 pcw - ok
20:36:53.0930 0816 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:36:53.0976 0816 PEAUTH - ok
20:36:54.0019 0816 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:36:54.0064 0816 PeerDistSvc - ok
20:36:54.0108 0816 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
20:36:54.0165 0816 pla - ok
20:36:54.0208 0816 [ 71DEF5EC79774C798342D0EA16E41780 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:36:54.0243 0816 PlugPlay - ok
20:36:54.0258 0816 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:36:54.0271 0816 PNRPAutoReg - ok
20:36:54.0290 0816 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:36:54.0300 0816 PNRPsvc - ok
20:36:54.0333 0816 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:36:54.0374 0816 PolicyAgent - ok
20:36:54.0395 0816 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
20:36:54.0418 0816 Power - ok
20:36:54.0448 0816 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:36:54.0469 0816 PptpMiniport - ok
20:36:54.0484 0816 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:36:54.0502 0816 Processor - ok
20:36:54.0526 0816 [ AEA3BDBDBA667AA6F678CB38907E4F5E ] ProfSvc C:\Windows\system32\profsvc.dll
20:36:54.0562 0816 ProfSvc - ok
20:36:54.0572 0816 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:36:54.0580 0816 ProtectedStorage - ok
20:36:54.0603 0816 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:36:54.0625 0816 Psched - ok
20:36:54.0657 0816 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:36:54.0707 0816 ql2300 - ok
20:36:54.0729 0816 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:36:54.0745 0816 ql40xx - ok
20:36:54.0769 0816 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
20:36:54.0800 0816 QWAVE - ok
20:36:54.0811 0816 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:36:54.0824 0816 QWAVEdrv - ok
20:36:54.0834 0816 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:36:54.0853 0816 RasAcd - ok
20:36:54.0863 0816 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:36:54.0890 0816 RasAgileVpn - ok
20:36:54.0906 0816 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
20:36:54.0929 0816 RasAuto - ok
20:36:54.0945 0816 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:36:54.0980 0816 Rasl2tp - ok
20:36:54.0996 0816 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
20:36:55.0023 0816 RasMan - ok
20:36:55.0039 0816 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:36:55.0071 0816 RasPppoe - ok
20:36:55.0085 0816 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:36:55.0106 0816 RasSstp - ok
20:36:55.0121 0816 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:36:55.0146 0816 rdbss - ok
20:36:55.0163 0816 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:36:55.0175 0816 rdpbus - ok
20:36:55.0190 0816 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:36:55.0228 0816 RDPCDD - ok
20:36:55.0317 0816 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:36:55.0364 0816 RDPDR - ok
20:36:55.0379 0816 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:36:55.0397 0816 RDPENCDD - ok
20:36:55.0407 0816 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:36:55.0435 0816 RDPREFMP - ok
20:36:55.0451 0816 [ C5B8D47A4688DE9D335204EA757C2240 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:36:55.0486 0816 RDPWD - ok
20:36:55.0501 0816 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:36:55.0517 0816 rdyboost - ok
20:36:55.0544 0816 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
20:36:55.0575 0816 RemoteAccess - ok
20:36:55.0602 0816 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:36:55.0627 0816 RemoteRegistry - ok
20:36:55.0640 0816 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:36:55.0662 0816 RpcEptMapper - ok
20:36:55.0670 0816 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
20:36:55.0760 0816 RpcLocator - ok
20:36:55.0782 0816 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
20:36:55.0802 0816 RpcSs - ok
20:36:55.0840 0816 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:36:55.0861 0816 rspndr - ok
20:36:55.0919 0816 [ 80B66A4181F782884A815E69D0AFA743 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
20:36:55.0932 0816 RTL8167 - ok
20:36:55.0955 0816 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
20:36:55.0975 0816 s3cap - ok
20:36:55.0990 0816 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] SamSs C:\Windows\system32\lsass.exe
20:36:55.0998 0816 SamSs - ok
20:36:56.0021 0816 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:36:56.0040 0816 sbp2port - ok
20:36:56.0111 0816 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:36:56.0147 0816 SCardSvr - ok
20:36:56.0164 0816 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:36:56.0208 0816 scfilter - ok
20:36:56.0260 0816 [ DF1E5C82E4D09CF8105CC644980C4803 ] Schedule C:\Windows\system32\schedsvc.dll
20:36:56.0297 0816 Schedule - ok
20:36:56.0308 0816 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:36:56.0326 0816 SCPolicySvc - ok
20:36:56.0344 0816 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:36:56.0376 0816 SDRSVC - ok
20:36:56.0395 0816 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:36:56.0422 0816 secdrv - ok
20:36:56.0431 0816 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
20:36:56.0461 0816 seclogon - ok
20:36:56.0478 0816 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
20:36:56.0506 0816 SENS - ok
20:36:56.0526 0816 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:36:56.0546 0816 SensrSvc - ok
20:36:56.0563 0816 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:36:56.0574 0816 Serenum - ok
20:36:56.0654 0816 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:36:56.0696 0816 Serial - ok
20:36:56.0740 0816 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:36:56.0809 0816 sermouse - ok
20:36:56.0848 0816 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
20:36:56.0925 0816 SessionEnv - ok
20:36:56.0936 0816 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
20:36:56.0988 0816 sffdisk - ok
20:36:57.0030 0816 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
20:36:57.0088 0816 sffp_mmc - ok
20:36:57.0131 0816 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
20:36:57.0263 0816 sffp_sd - ok
20:36:57.0289 0816 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:36:57.0352 0816 sfloppy - ok
20:36:57.0393 0816 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:36:57.0411 0816 ShellHWDetection - ok
20:36:57.0423 0816 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
20:36:57.0435 0816 sisagp - ok
20:36:57.0515 0816 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:36:57.0550 0816 SiSRaid2 - ok
20:36:57.0588 0816 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:36:57.0601 0816 SiSRaid4 - ok
20:36:57.0754 0816 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
20:36:57.0797 0816 SkypeUpdate - ok
20:36:57.0825 0816 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:36:57.0857 0816 Smb - ok
20:36:57.0880 0816 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:36:57.0907 0816 SNMPTRAP - ok
20:36:57.0921 0816 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
20:36:57.0933 0816 spldr - ok
20:36:57.0965 0816 [ E17323B0AA9FB3FF9945731D736EDA2F ] Spooler C:\Windows\System32\spoolsv.exe
20:36:57.0989 0816 Spooler - ok
20:36:58.0060 0816 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
20:36:58.0105 0816 sppsvc - ok
20:36:58.0118 0816 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:36:58.0141 0816 sppuinotify - ok
20:36:58.0165 0816 [ C4A027B8C0BD3FC0699F41FA5E9E0C87 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:36:58.0205 0816 srv - ok
20:36:58.0220 0816 [ 414BB592CAD8A79649D01F9D94318FB3 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:36:58.0243 0816 srv2 - ok
20:36:58.0259 0816 [ FF207D67700AA18242AAF985D3E7D8F4 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:36:58.0279 0816 srvnet - ok
20:36:58.0293 0816 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:36:58.0319 0816 SSDPSRV - ok
20:36:58.0354 0816 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
20:36:58.0364 0816 ssmdrv - ok
20:36:58.0373 0816 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:36:58.0396 0816 SstpSvc - ok
20:36:58.0458 0816 [ E4AEA6FC64A979375149B86882CA2100 ] StarMoney 8.0 OnlineUpdate C:\Program Files\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
20:36:58.0478 0816 StarMoney 8.0 OnlineUpdate - ok
20:36:58.0496 0816 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:36:58.0509 0816 stexstor - ok
20:36:58.0538 0816 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
20:36:58.0558 0816 StiSvc - ok
20:36:58.0580 0816 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
20:36:58.0592 0816 storflt - ok
20:36:58.0614 0816 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
20:36:58.0626 0816 storvsc - ok
20:36:58.0635 0816 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:36:58.0646 0816 swenum - ok
20:36:58.0661 0816 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
20:36:58.0702 0816 swprv - ok
20:36:58.0733 0816 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
20:36:58.0792 0816 SysMain - ok
20:36:58.0800 0816 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:36:58.0827 0816 TabletInputService - ok
20:36:58.0846 0816 [ FD90A16CEB10D4FDAA00AAF39B8FF58F ] taphss C:\Windows\system32\DRIVERS\taphss.sys
20:36:58.0858 0816 taphss - ok
20:36:58.0892 0816 [ A69C1848E37482C855D94AA05145086C ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
20:36:58.0903 0816 taphss6 - ok
20:36:58.0921 0816 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
20:36:58.0948 0816 TapiSrv - ok
20:36:58.0965 0816 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
20:36:58.0995 0816 TBS - ok
20:36:59.0031 0816 [ 55E9965552741F3850CB22CBBA9671ED ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:36:59.0078 0816 Tcpip - ok
20:36:59.0099 0816 [ 55E9965552741F3850CB22CBBA9671ED ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:36:59.0118 0816 TCPIP6 - ok
20:36:59.0129 0816 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:36:59.0149 0816 tcpipreg - ok
20:36:59.0165 0816 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:36:59.0197 0816 TDPIPE - ok
20:36:59.0220 0816 [ 7156308896D34EA75A582F9A09E50C17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:36:59.0231 0816 TDTCP - ok
20:36:59.0242 0816 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:36:59.0263 0816 tdx - ok
20:36:59.0272 0816 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:36:59.0284 0816 TermDD - ok
20:36:59.0308 0816 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
20:36:59.0356 0816 TermService - ok
20:36:59.0369 0816 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
20:36:59.0384 0816 Themes - ok
20:36:59.0394 0816 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
20:36:59.0411 0816 THREADORDER - ok
20:36:59.0423 0816 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
20:36:59.0459 0816 TrkWks - ok
20:36:59.0503 0816 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:36:59.0512 0816 TrustedInstaller - ok
20:36:59.0531 0816 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:36:59.0551 0816 tssecsrv - ok
20:36:59.0570 0816 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:36:59.0599 0816 tunnel - ok
20:36:59.0613 0816 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:36:59.0626 0816 uagp35 - ok
20:36:59.0644 0816 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:36:59.0670 0816 udfs - ok
20:36:59.0685 0816 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:36:59.0699 0816 UI0Detect - ok
20:36:59.0713 0816 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
20:36:59.0726 0816 uliagpkx - ok
20:36:59.0742 0816 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:36:59.0773 0816 umbus - ok
20:36:59.0812 0816 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:36:59.0823 0816 UmPass - ok
20:36:59.0849 0816 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
20:36:59.0865 0816 UmRdpService - ok
20:36:59.0880 0816 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
20:36:59.0908 0816 upnphost - ok
20:36:59.0932 0816 [ 2436A42AAB4AD48A9B714E5B0F344627 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:36:59.0955 0816 usbaudio - ok
20:36:59.0974 0816 [ C31AE588E403042632DC796CF09E30B0 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:37:00.0001 0816 usbccgp - ok
20:37:00.0017 0816 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:37:00.0042 0816 usbcir - ok
20:37:00.0064 0816 [ E4C436D914768CE965D5E659BA7EEBD8 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:37:00.0083 0816 usbehci - ok
20:37:00.0106 0816 [ E5B14557793164DB879EE56F5B59C3E2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:37:00.0116 0816 usbfilter - ok
20:37:00.0132 0816 [ BDCD7156EC37448F08633FD899823620 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:37:00.0147 0816 usbhub - ok
20:37:00.0162 0816 [ EB2D819A639015253C871CDA09D91D58 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:37:00.0172 0816 usbohci - ok
20:37:00.0188 0816 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:37:00.0209 0816 usbprint - ok
20:37:00.0226 0816 [ 1C4287739A93594E57E2A9E6A3ED7353 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:37:00.0253 0816 USBSTOR - ok
20:37:00.0262 0816 [ 22480BF4E5A09192E5E30BA4DDE79FA4 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:37:00.0285 0816 usbuhci - ok
20:37:00.0310 0816 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
20:37:00.0348 0816 UxSms - ok
20:37:00.0385 0816 [ C2243FF9E9AAD0C30E8B1A0914DA15B6 ] VaultSvc C:\Windows\system32\lsass.exe
20:37:00.0394 0816 VaultSvc - ok
20:37:00.0448 0816 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
20:37:00.0486 0816 vdrvroot - ok
20:37:00.0562 0816 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
20:37:00.0597 0816 vds - ok
20:37:00.0616 0816 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:37:00.0629 0816 vga - ok
20:37:00.0644 0816 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:37:00.0663 0816 VgaSave - ok
20:37:00.0681 0816 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
20:37:00.0698 0816 vhdmp - ok
20:37:00.0708 0816 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
20:37:00.0722 0816 viaagp - ok
20:37:00.0734 0816 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
20:37:00.0757 0816 ViaC7 - ok
20:37:00.0767 0816 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
20:37:00.0778 0816 viaide - ok
20:37:00.0840 0816 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
20:37:00.0858 0816 vmbus - ok
20:37:00.0869 0816 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
20:37:00.0879 0816 VMBusHID - ok
20:37:00.0889 0816 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
20:37:00.0902 0816 volmgr - ok
20:37:00.0913 0816 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:37:00.0934 0816 volmgrx - ok
20:37:00.0939 0816 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
20:37:00.0957 0816 volsnap - ok
20:37:00.0985 0816 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:37:01.0000 0816 vsmraid - ok
20:37:01.0028 0816 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
20:37:01.0071 0816 VSS - ok
20:37:01.0083 0816 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:37:01.0106 0816 vwifibus - ok
20:37:01.0125 0816 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
20:37:01.0173 0816 W32Time - ok
20:37:01.0178 0816 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:37:01.0189 0816 WacomPen - ok
20:37:01.0213 0816 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:37:01.0234 0816 WANARP - ok
20:37:01.0237 0816 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:37:01.0253 0816 Wanarpv6 - ok
20:37:01.0281 0816 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
20:37:01.0321 0816 wbengine - ok
20:37:01.0333 0816 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:37:01.0350 0816 WbioSrvc - ok
20:37:01.0372 0816 [ 6D9B75275C3E3A5F51AEF81AFFADB2B6 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:37:01.0420 0816 wcncsvc - ok
20:37:01.0430 0816 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:37:01.0475 0816 WcsPlugInService - ok
20:37:01.0486 0816 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:37:01.0498 0816 Wd - ok
20:37:01.0532 0816 [ D6EFAF429FD30C5DF613D220E344CCE7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam.sys
20:37:01.0569 0816 WDC_SAM - ok
20:37:01.0593 0816 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:37:01.0618 0816 Wdf01000 - ok
20:37:01.0626 0816 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:37:01.0650 0816 WdiServiceHost - ok
20:37:01.0653 0816 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:37:01.0663 0816 WdiSystemHost - ok
20:37:01.0690 0816 [ BB5EC38F8D4600119B4720BC5D4211F1 ] WebClient C:\Windows\System32\webclnt.dll
20:37:01.0749 0816 WebClient - ok
20:37:01.0765 0816 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:37:01.0789 0816 Wecsvc - ok
20:37:01.0804 0816 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:37:01.0845 0816 wercplsupport - ok
20:37:01.0875 0816 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
20:37:01.0898 0816 WerSvc - ok
20:37:01.0929 0816 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:37:01.0948 0816 WfpLwf - ok
20:37:01.0964 0816 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:37:01.0975 0816 WIMMount - ok
20:37:01.0979 0816 WinHttpAutoProxySvc - ok
20:37:02.0107 0816 Winmgmt - ok
20:37:02.0501 0816 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
20:37:02.0579 0816 WinRM - ok
20:37:02.0702 0816 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:37:02.0735 0816 WinUsb - ok
20:37:02.0919 0816 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:37:02.0948 0816 Wlansvc - ok
20:37:03.0004 0816 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:37:03.0022 0816 WmiAcpi - ok
20:37:03.0098 0816 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:37:03.0123 0816 wmiApSrv - ok
20:37:03.0249 0816 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
20:37:03.0339 0816 WMPNetworkSvc - ok
20:37:03.0354 0816 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:37:03.0403 0816 WPCSvc - ok
20:37:03.0414 0816 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:37:03.0436 0816 WPDBusEnum - ok
20:37:03.0457 0816 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:37:03.0482 0816 ws2ifsl - ok
20:37:03.0485 0816 WSearch - ok
20:37:03.0499 0816 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:37:03.0527 0816 WudfPf - ok
20:37:03.0546 0816 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:37:03.0570 0816 WUDFRd - ok
20:37:03.0584 0816 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:37:03.0621 0816 wudfsvc - ok
20:37:03.0649 0816 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
20:37:03.0668 0816 WwanSvc - ok
20:37:03.0679 0816 ================ Scan global ===============================
20:37:03.0691 0816 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
20:37:03.0716 0816 [ 008F51AE989C3DF1CBAF8B39DC423CCC ] C:\Windows\system32\winsrv.dll
20:37:03.0728 0816 [ 008F51AE989C3DF1CBAF8B39DC423CCC ] C:\Windows\system32\winsrv.dll
20:37:03.0744 0816 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
20:37:03.0772 0816 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
20:37:03.0780 0816 [Global] - ok
20:37:03.0781 0816 ================ Scan MBR ==================================
20:37:03.0787 0816 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:37:04.0195 0816 \Device\Harddisk0\DR0 - ok
20:37:04.0199 0816 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
20:37:04.0588 0816 \Device\Harddisk1\DR1 - ok
20:37:04.0588 0816 ================ Scan VBR ==================================
20:37:04.0590 0816 [ E5BA1544A8E7D738A9DE3DDE2384A866 ] \Device\Harddisk0\DR0\Partition1
20:37:04.0591 0816 \Device\Harddisk0\DR0\Partition1 - ok
20:37:04.0603 0816 [ 3AC79AB20521118EE50C6CC7CBCF9876 ] \Device\Harddisk0\DR0\Partition2
20:37:04.0604 0816 \Device\Harddisk0\DR0\Partition2 - ok
20:37:04.0607 0816 [ 5871F0826B459552591D6CB1EC855181 ] \Device\Harddisk1\DR1\Partition1
20:37:04.0609 0816 \Device\Harddisk1\DR1\Partition1 - ok
20:37:04.0609 0816 ============================================================
20:37:04.0609 0816 Scan finished
20:37:04.0609 0816 ============================================================
20:37:04.0617 0312 Detected object count: 0
20:37:04.0617 0312 Actual detected object count: 0
20:37:08.0925 2884 Deinitialize success
|
|
24.01.2013, 13:07
| #8 | |
| /// Malware-holic | PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! hi combofix: Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu PC gesperrt-GVU Trojaner (auch im safe-mode) OTL Frage! |
| abgesicherte, abgesicherten, ahnung, andere, anderen, anti-malware, beitrag, einfügen, entferne, entfernen, erscheint, folge, folgende, frage, gelöscht, gen, heard, konnte, modus, natürlich, screen, script, sicherheit, troja, trojaner |
Linear-Darstellung
