| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: CoupondropdownWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
11.03.2013, 11:20
| #31 |
 |  CoupondropdownCode:
ATTFilter 11:11:51.0265 5616 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:11:51.0463 5616 ============================================================
11:11:51.0463 5616 Current date / time: 2013/03/11 11:11:51.0463
11:11:51.0463 5616 SystemInfo:
11:11:51.0463 5616
11:11:51.0463 5616 OS Version: 6.0.6002 ServicePack: 2.0
11:11:51.0463 5616 Product type: Workstation
11:11:51.0463 5616 ComputerName: FUXI
11:11:51.0464 5616 UserName: ASUS
11:11:51.0464 5616 Windows directory: C:\Windows
11:11:51.0464 5616 System windows directory: C:\Windows
11:11:51.0464 5616 Processor architecture: Intel x86
11:11:51.0464 5616 Number of processors: 2
11:11:51.0464 5616 Page size: 0x1000
11:11:51.0464 5616 Boot type: Normal boot
11:11:51.0464 5616 ============================================================
11:11:54.0238 5616 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:11:54.0241 5616 ============================================================
11:11:54.0241 5616 \Device\Harddisk0\DR0:
11:11:54.0241 5616 MBR partitions:
11:11:54.0241 5616 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x165B5800
11:11:54.0260 5616 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x165B6800, BlocksNum 0xEE77800
11:11:54.0260 5616 ============================================================
11:11:54.0285 5616 C: <-> \Device\Harddisk0\DR0\Partition1
11:11:54.0331 5616 D: <-> \Device\Harddisk0\DR0\Partition2
11:11:54.0331 5616 ============================================================
11:11:54.0331 5616 Initialize success
11:11:54.0331 5616 ============================================================
11:12:24.0532 5984 ============================================================
11:12:24.0532 5984 Scan started
11:12:24.0532 5984 Mode: Manual;
11:12:24.0532 5984 ============================================================
11:12:24.0936 5984 ================ Scan system memory ========================
11:12:24.0936 5984 System memory - ok
11:12:24.0937 5984 ================ Scan services =============================
11:12:25.0129 5984 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:12:25.0136 5984 ACPI - ok
11:12:25.0241 5984 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:12:25.0244 5984 AdobeARMservice - ok
11:12:25.0299 5984 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:12:25.0304 5984 AdobeFlashPlayerUpdateSvc - ok
11:12:25.0354 5984 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:12:25.0362 5984 adp94xx - ok
11:12:25.0395 5984 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:12:25.0407 5984 adpahci - ok
11:12:25.0429 5984 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:12:25.0435 5984 adpu160m - ok
11:12:25.0473 5984 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:12:25.0484 5984 adpu320 - ok
11:12:25.0559 5984 [ 609A6F49B6AF0F25837F8A0EDDDB0745 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
11:12:25.0561 5984 ADSMService - ok
11:12:25.0584 5984 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:12:25.0590 5984 AeLookupSvc - ok
11:12:25.0636 5984 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:12:25.0645 5984 AFD - ok
11:12:25.0688 5984 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:12:25.0691 5984 agp440 - ok
11:12:25.0718 5984 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:12:25.0725 5984 aic78xx - ok
11:12:25.0755 5984 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:12:25.0761 5984 ALG - ok
11:12:25.0784 5984 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:12:25.0787 5984 aliide - ok
11:12:25.0821 5984 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:12:25.0825 5984 amdagp - ok
11:12:25.0854 5984 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
11:12:25.0858 5984 amdide - ok
11:12:25.0874 5984 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:12:25.0877 5984 AmdK7 - ok
11:12:25.0913 5984 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:12:25.0917 5984 AmdK8 - ok
11:12:25.0980 5984 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:12:25.0985 5984 Appinfo - ok
11:12:26.0065 5984 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:12:26.0070 5984 Apple Mobile Device - ok
11:12:26.0129 5984 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
11:12:26.0162 5984 arc - ok
11:12:26.0230 5984 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:12:26.0250 5984 arcsas - ok
11:12:26.0294 5984 [ 4385E371C25C94C804E9D3152BD9E1F7 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
11:12:26.0326 5984 AsDsm - ok
11:12:26.0376 5984 [ 5A055A4777CBBC8845DD598CB2EEBF69 ] ASLDRService C:\Program Files\ATK Hotkey\ASLDRSrv.exe
11:12:26.0381 5984 ASLDRService - ok
11:12:26.0411 5984 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
11:12:26.0413 5984 ASMMAP - ok
11:12:26.0530 5984 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:12:26.0538 5984 aspnet_state - ok
11:12:26.0576 5984 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:12:26.0579 5984 AsyncMac - ok
11:12:26.0617 5984 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:12:26.0620 5984 atapi - ok
11:12:26.0693 5984 [ 2846F5EE802889D500FCF5CC48B28381 ] athr C:\Windows\system32\DRIVERS\athr.sys
11:12:26.0719 5984 athr - ok
11:12:26.0734 5984 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
11:12:26.0736 5984 ATKGFNEXSrv - ok
11:12:26.0805 5984 [ F0D933B42CD0594048E4D5200AE9E417 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
11:12:26.0815 5984 atksgt - ok
11:12:26.0853 5984 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:12:26.0864 5984 AudioEndpointBuilder - ok
11:12:26.0880 5984 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:12:26.0891 5984 Audiosrv - ok
11:12:26.0936 5984 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:12:26.0938 5984 Beep - ok
11:12:26.0993 5984 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:12:27.0009 5984 BFE - ok
11:12:27.0067 5984 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
11:12:27.0158 5984 BITS - ok
11:12:27.0194 5984 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:12:27.0198 5984 blbdrive - ok
11:12:27.0282 5984 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:12:27.0288 5984 Bonjour Service - ok
11:12:27.0315 5984 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:12:27.0318 5984 bowser - ok
11:12:27.0340 5984 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:12:27.0344 5984 BrFiltLo - ok
11:12:27.0361 5984 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:12:27.0364 5984 BrFiltUp - ok
11:12:27.0406 5984 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:12:27.0418 5984 Browser - ok
11:12:27.0435 5984 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:12:27.0440 5984 Brserid - ok
11:12:27.0466 5984 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:12:27.0472 5984 BrSerWdm - ok
11:12:27.0487 5984 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:12:27.0492 5984 BrUsbMdm - ok
11:12:27.0508 5984 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:12:27.0517 5984 BrUsbSer - ok
11:12:27.0540 5984 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:12:27.0546 5984 BTHMODEM - ok
11:12:27.0617 5984 catchme - ok
11:12:27.0650 5984 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:12:27.0654 5984 cdfs - ok
11:12:27.0688 5984 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:12:27.0692 5984 cdrom - ok
11:12:27.0736 5984 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:12:27.0746 5984 CertPropSvc - ok
11:12:27.0790 5984 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
11:12:27.0795 5984 circlass - ok
11:12:27.0840 5984 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:12:27.0856 5984 CLFS - ok
11:12:27.0915 5984 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:12:27.0926 5984 clr_optimization_v2.0.50727_32 - ok
11:12:27.0955 5984 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:12:27.0964 5984 clr_optimization_v4.0.30319_32 - ok
11:12:27.0999 5984 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:12:28.0003 5984 CmBatt - ok
11:12:28.0026 5984 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:12:28.0030 5984 cmdide - ok
11:12:28.0052 5984 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:12:28.0057 5984 Compbatt - ok
11:12:28.0068 5984 COMSysApp - ok
11:12:28.0087 5984 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:12:28.0093 5984 crcdisk - ok
11:12:28.0120 5984 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:12:28.0125 5984 Crusoe - ok
11:12:28.0179 5984 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:12:28.0196 5984 CryptSvc - ok
11:12:28.0260 5984 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:12:28.0350 5984 DcomLaunch - ok
11:12:28.0374 5984 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:12:28.0380 5984 DfsC - ok
11:12:28.0487 5984 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:12:28.0534 5984 DFSR - ok
11:12:28.0576 5984 [ 3BE1651C63954067940E7F473498AD70 ] dgderdrv C:\Windows\system32\drivers\dgderdrv.sys
11:12:28.0580 5984 dgderdrv - ok
11:12:28.0618 5984 [ 10B8F89D146D0E20B1284D47BB4EC6C9 ] dgdersvc C:\Windows\system32\dgdersvc.exe
11:12:28.0644 5984 dgdersvc - ok
11:12:28.0691 5984 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:12:28.0722 5984 Dhcp - ok
11:12:28.0765 5984 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:12:28.0769 5984 disk - ok
11:12:28.0826 5984 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:12:28.0853 5984 Dnscache - ok
11:12:28.0889 5984 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:12:28.0918 5984 dot3svc - ok
11:12:28.0955 5984 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:12:28.0986 5984 DPS - ok
11:12:29.0020 5984 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:12:29.0024 5984 drmkaud - ok
11:12:29.0075 5984 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:12:29.0085 5984 DXGKrnl - ok
11:12:29.0109 5984 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:12:29.0115 5984 E1G60 - ok
11:12:29.0145 5984 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:12:29.0179 5984 EapHost - ok
11:12:29.0227 5984 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:12:29.0235 5984 Ecache - ok
11:12:29.0306 5984 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:12:29.0316 5984 ehRecvr - ok
11:12:29.0341 5984 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:12:29.0348 5984 ehSched - ok
11:12:29.0365 5984 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:12:29.0371 5984 ehstart - ok
11:12:29.0421 5984 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:12:29.0435 5984 elxstor - ok
11:12:29.0485 5984 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:12:29.0545 5984 EMDMgmt - ok
11:12:29.0585 5984 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:12:29.0589 5984 ErrDev - ok
11:12:29.0639 5984 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:12:29.0672 5984 EventSystem - ok
11:12:29.0726 5984 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:12:29.0733 5984 exfat - ok
11:12:29.0775 5984 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:12:29.0782 5984 fastfat - ok
11:12:29.0822 5984 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:12:29.0827 5984 fdc - ok
11:12:29.0854 5984 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:12:29.0886 5984 fdPHost - ok
11:12:29.0907 5984 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:12:29.0940 5984 FDResPub - ok
11:12:29.0962 5984 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:12:29.0967 5984 FileInfo - ok
11:12:29.0988 5984 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:12:29.0994 5984 Filetrace - ok
11:12:30.0057 5984 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:12:30.0077 5984 FLEXnet Licensing Service - ok
11:12:30.0107 5984 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:12:30.0113 5984 flpydisk - ok
11:12:30.0148 5984 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:12:30.0154 5984 FltMgr - ok
11:12:30.0243 5984 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:12:30.0296 5984 FontCache - ok
11:12:30.0355 5984 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:12:30.0359 5984 FontCache3.0.0.0 - ok
11:12:30.0389 5984 [ 574CEA4D3510EC905C0163C42D305BA5 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:12:30.0396 5984 fssfltr - ok
11:12:30.0486 5984 [ 9B1622EBEB31B3411B13382FFCB8737D ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
11:12:30.0511 5984 fsssvc - ok
11:12:30.0532 5984 FsUsbExDisk - ok
11:12:30.0567 5984 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:12:30.0574 5984 Fs_Rec - ok
11:12:30.0606 5984 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:12:30.0614 5984 gagp30kx - ok
11:12:30.0643 5984 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:12:30.0650 5984 GEARAspiWDM - ok
11:12:30.0708 5984 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:12:30.0766 5984 gpsvc - ok
11:12:30.0853 5984 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:12:30.0864 5984 HdAudAddService - ok
11:12:30.0917 5984 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:12:30.0926 5984 HDAudBus - ok
11:12:30.0952 5984 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:12:30.0957 5984 HidBth - ok
11:12:30.0992 5984 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:12:30.0997 5984 HidIr - ok
11:12:31.0032 5984 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
11:12:31.0069 5984 hidserv - ok
11:12:31.0087 5984 [ 854CA287AB7FAF949617A788306D967E ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:12:31.0092 5984 HidUsb - ok
11:12:31.0136 5984 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:12:31.0186 5984 hkmsvc - ok
11:12:31.0206 5984 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:12:31.0212 5984 HpCISSs - ok
11:12:31.0250 5984 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:12:31.0265 5984 HTTP - ok
11:12:31.0295 5984 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:12:31.0301 5984 i2omp - ok
11:12:31.0343 5984 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:12:31.0349 5984 i8042prt - ok
11:12:31.0371 5984 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:12:31.0382 5984 iaStorV - ok
11:12:31.0451 5984 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:12:31.0455 5984 IDriverT - ok
11:12:31.0529 5984 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:12:31.0554 5984 idsvc - ok
11:12:31.0580 5984 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:12:31.0588 5984 iirsp - ok
11:12:31.0632 5984 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:12:31.0693 5984 IKEEXT - ok
11:12:31.0815 5984 [ 0557AAEE4C86E2C333ACD2BAF42A7619 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:12:31.0893 5984 IntcAzAudAddService - ok
11:12:31.0936 5984 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:12:31.0943 5984 intelide - ok
11:12:31.0975 5984 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:12:31.0981 5984 intelppm - ok
11:12:32.0016 5984 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:12:32.0070 5984 IPBusEnum - ok
11:12:32.0094 5984 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:12:32.0101 5984 IpFilterDriver - ok
11:12:32.0143 5984 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:12:32.0197 5984 iphlpsvc - ok
11:12:32.0208 5984 IpInIp - ok
11:12:32.0247 5984 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:12:32.0256 5984 IPMIDRV - ok
11:12:32.0277 5984 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:12:32.0284 5984 IPNAT - ok
11:12:32.0334 5984 [ E46B17060D3962A384AE484094614788 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:12:32.0342 5984 iPod Service - ok
11:12:32.0366 5984 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:12:32.0373 5984 IRENUM - ok
11:12:32.0398 5984 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:12:32.0406 5984 isapnp - ok
11:12:32.0448 5984 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:12:32.0459 5984 iScsiPrt - ok
11:12:32.0489 5984 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:12:32.0496 5984 iteatapi - ok
11:12:32.0532 5984 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:12:32.0539 5984 iteraid - ok
11:12:32.0563 5984 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:12:32.0570 5984 kbdclass - ok
11:12:32.0585 5984 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:12:32.0597 5984 kbdhid - ok
11:12:32.0641 5984 [ 27BD4AC228EF6C0D490617C32E86A672 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
11:12:32.0649 5984 kbfiltr - ok
11:12:32.0679 5984 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
11:12:32.0746 5984 KeyIso - ok
11:12:32.0798 5984 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:12:32.0821 5984 KSecDD - ok
11:12:32.0877 5984 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:12:32.0963 5984 KtmRm - ok
11:12:33.0000 5984 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
11:12:33.0122 5984 LanmanServer - ok
11:12:33.0229 5984 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:12:33.0370 5984 LanmanWorkstation - ok
11:12:33.0404 5984 [ F8A7212D0864EF5E9185FB95E6623F4D ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
11:12:33.0410 5984 lirsgt - ok
11:12:33.0432 5984 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:12:33.0439 5984 lltdio - ok
11:12:33.0475 5984 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:12:33.0531 5984 lltdsvc - ok
11:12:33.0553 5984 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:12:33.0603 5984 lmhosts - ok
11:12:33.0629 5984 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:12:33.0638 5984 LSI_FC - ok
11:12:33.0670 5984 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:12:33.0678 5984 LSI_SAS - ok
11:12:33.0725 5984 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:12:33.0733 5984 LSI_SCSI - ok
11:12:33.0775 5984 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:12:33.0783 5984 luafv - ok
11:12:33.0827 5984 [ 8039F480C192DD99FED4EBC71FFBF795 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
11:12:33.0833 5984 lullaby - ok
11:12:33.0873 5984 [ C6D085C7045200143528136A43A65FDE ] ManyCam C:\Windows\system32\DRIVERS\ManyCam.sys
11:12:33.0882 5984 ManyCam - ok
11:12:33.0939 5984 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:12:33.0947 5984 MBAMProtector - ok
11:12:34.0006 5984 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:12:34.0012 5984 MBAMScheduler - ok
11:12:34.0053 5984 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:12:34.0062 5984 MBAMService - ok
11:12:34.0112 5984 [ C226CE46CD17FCE6261A9DE406F01C8B ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
11:12:34.0115 5984 McAfee SiteAdvisor Service - ok
11:12:34.0142 5984 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:12:34.0196 5984 Mcx2Svc - ok
11:12:34.0231 5984 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:12:34.0237 5984 megasas - ok
11:12:34.0274 5984 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:12:34.0289 5984 MegaSR - ok
11:12:34.0315 5984 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:12:34.0373 5984 MMCSS - ok
11:12:34.0395 5984 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:12:34.0402 5984 Modem - ok
11:12:34.0418 5984 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:12:34.0424 5984 monitor - ok
11:12:34.0462 5984 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:12:34.0469 5984 mouclass - ok
11:12:34.0491 5984 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:12:34.0497 5984 mouhid - ok
11:12:34.0521 5984 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:12:34.0528 5984 MountMgr - ok
11:12:34.0571 5984 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:12:34.0682 5984 MozillaMaintenance - ok
11:12:34.0713 5984 [ 8D745200A0928743D9DF22258861A807 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:12:34.0722 5984 MpFilter - ok
11:12:34.0753 5984 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:12:34.0759 5984 mpio - ok
11:12:34.0891 5984 [ A69630D039C38018689190234F866D77 ] MpKsl5701e724 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E8AFB87C-3E54-499A-907F-93E55E7A16E1}\MpKsl5701e724.sys
11:12:34.0893 5984 MpKsl5701e724 - ok
11:12:34.0926 5984 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:12:34.0935 5984 mpsdrv - ok
11:12:34.0978 5984 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:12:35.0064 5984 MpsSvc - ok
11:12:35.0108 5984 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:12:35.0117 5984 Mraid35x - ok
11:12:35.0147 5984 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:12:35.0158 5984 MRxDAV - ok
11:12:35.0188 5984 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:12:35.0198 5984 mrxsmb - ok
11:12:35.0229 5984 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:12:35.0242 5984 mrxsmb10 - ok
11:12:35.0265 5984 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:12:35.0277 5984 mrxsmb20 - ok
11:12:35.0298 5984 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
11:12:35.0306 5984 msahci - ok
11:12:35.0334 5984 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:12:35.0343 5984 msdsm - ok
11:12:35.0373 5984 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:12:35.0452 5984 MSDTC - ok
11:12:35.0494 5984 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:12:35.0500 5984 Msfs - ok
11:12:35.0516 5984 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:12:35.0526 5984 msisadrv - ok
11:12:35.0559 5984 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:12:35.0603 5984 MSiSCSI - ok
11:12:35.0618 5984 msiserver - ok
11:12:35.0643 5984 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:12:35.0651 5984 MSKSSRV - ok
11:12:35.0713 5984 [ B15ECEAF5B36C6F9C1B3930A6C3DB1DE ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:12:35.0715 5984 MsMpSvc - ok
11:12:35.0763 5984 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:12:35.0770 5984 MSPCLOCK - ok
11:12:35.0795 5984 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:12:35.0802 5984 MSPQM - ok
11:12:35.0836 5984 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:12:35.0845 5984 MsRPC - ok
11:12:35.0871 5984 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:12:35.0878 5984 mssmbios - ok
11:12:35.0888 5984 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:12:35.0900 5984 MSTEE - ok
11:12:35.0946 5984 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
11:12:35.0949 5984 MTsensor - ok
11:12:35.0964 5984 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:12:35.0972 5984 Mup - ok
11:12:36.0006 5984 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:12:36.0090 5984 napagent - ok
11:12:36.0132 5984 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:12:36.0144 5984 NativeWifiP - ok
11:12:36.0201 5984 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:12:36.0215 5984 NDIS - ok
11:12:36.0244 5984 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:12:36.0251 5984 NdisTapi - ok
11:12:36.0265 5984 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:12:36.0272 5984 Ndisuio - ok
11:12:36.0306 5984 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:12:36.0315 5984 NdisWan - ok
11:12:36.0327 5984 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:12:36.0336 5984 NDProxy - ok
11:12:36.0431 5984 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
11:12:36.0460 5984 Netaapl - ok
11:12:36.0491 5984 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:12:36.0527 5984 NetBIOS - ok
11:12:36.0558 5984 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:12:36.0572 5984 netbt - ok
11:12:36.0590 5984 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
11:12:36.0659 5984 Netlogon - ok
11:12:36.0708 5984 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:12:36.0775 5984 Netman - ok
11:12:36.0803 5984 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:36.0814 5984 NetMsmqActivator - ok
11:12:36.0823 5984 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:36.0834 5984 NetPipeActivator - ok
11:12:36.0864 5984 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:12:36.0937 5984 netprofm - ok
11:12:36.0947 5984 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:36.0960 5984 NetTcpActivator - ok
11:12:36.0970 5984 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:12:36.0982 5984 NetTcpPortSharing - ok
11:12:37.0031 5984 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:12:37.0040 5984 nfrd960 - ok
11:12:37.0078 5984 [ ECA329684BDE55E3939F73B25E5CFC86 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:12:37.0086 5984 NisDrv - ok
11:12:37.0115 5984 [ 0579ACAB3764CBFBE92E53C5F04E2A0D ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
11:12:37.0124 5984 NisSrv - ok
11:12:37.0157 5984 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:12:37.0228 5984 NlaSvc - ok
11:12:37.0273 5984 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:12:37.0282 5984 Npfs - ok
11:12:37.0304 5984 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:12:37.0374 5984 nsi - ok
11:12:37.0401 5984 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:12:37.0410 5984 nsiproxy - ok
11:12:37.0476 5984 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:12:37.0498 5984 Ntfs - ok
11:12:37.0543 5984 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:12:37.0551 5984 ntrigdigi - ok
11:12:37.0562 5984 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:12:37.0570 5984 Null - ok
11:12:37.0884 5984 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:12:38.0014 5984 nvlddmkm - ok
11:12:38.0056 5984 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:12:38.0067 5984 nvraid - ok
11:12:38.0093 5984 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:12:38.0102 5984 nvstor - ok
11:12:38.0141 5984 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:12:38.0218 5984 nvsvc - ok
11:12:38.0244 5984 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:12:38.0266 5984 nv_agp - ok
11:12:38.0278 5984 NwlnkFlt - ok
11:12:38.0289 5984 NwlnkFwd - ok
11:12:38.0386 5984 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:12:38.0404 5984 odserv - ok
11:12:38.0445 5984 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:12:38.0453 5984 ohci1394 - ok
11:12:38.0489 5984 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:12:38.0492 5984 ose - ok
11:12:38.0563 5984 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:12:38.0674 5984 p2pimsvc - ok
11:12:38.0695 5984 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:12:38.0777 5984 p2psvc - ok
11:12:38.0802 5984 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
11:12:38.0812 5984 Parport - ok
11:12:38.0840 5984 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:12:38.0849 5984 partmgr - ok
11:12:38.0869 5984 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:12:38.0878 5984 Parvdm - ok
11:12:38.0910 5984 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:12:38.0988 5984 PcaSvc - ok
11:12:39.0007 5984 pccsmcfd - ok
11:12:39.0050 5984 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:12:39.0059 5984 pci - ok
11:12:39.0094 5984 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
11:12:39.0103 5984 pciide - ok
11:12:39.0143 5984 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:12:39.0154 5984 pcmcia - ok
11:12:39.0203 5984 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:12:39.0232 5984 PEAUTH - ok
11:12:39.0328 5984 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:12:39.0443 5984 pla - ok
11:12:39.0479 5984 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:12:39.0584 5984 PlugPlay - ok
11:12:39.0617 5984 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:12:39.0698 5984 PNRPAutoReg - ok
11:12:39.0723 5984 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:12:39.0805 5984 PNRPsvc - ok
11:12:39.0838 5984 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:12:39.0887 5984 PolicyAgent - ok
11:12:39.0931 5984 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:12:39.0941 5984 PptpMiniport - ok
11:12:39.0966 5984 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
11:12:39.0975 5984 Processor - ok
11:12:40.0013 5984 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:12:40.0096 5984 ProfSvc - ok
11:12:40.0112 5984 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
11:12:40.0164 5984 ProtectedStorage - ok
11:12:40.0195 5984 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:12:40.0204 5984 PSched - ok
11:12:40.0280 5984 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:12:40.0319 5984 ql2300 - ok
11:12:40.0342 5984 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:12:40.0353 5984 ql40xx - ok
11:12:40.0394 5984 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:12:40.0479 5984 QWAVE - ok
11:12:40.0510 5984 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:12:40.0519 5984 QWAVEdrv - ok
11:12:40.0587 5984 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
11:12:40.0596 5984 RapiMgr - ok
11:12:40.0611 5984 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:12:40.0619 5984 RasAcd - ok
11:12:40.0654 5984 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:12:40.0738 5984 RasAuto - ok
11:12:40.0757 5984 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:12:40.0767 5984 Rasl2tp - ok
11:12:40.0813 5984 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:12:40.0899 5984 RasMan - ok
11:12:40.0933 5984 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:12:40.0942 5984 RasPppoe - ok
11:12:40.0962 5984 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:12:40.0976 5984 RasSstp - ok
11:12:41.0004 5984 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:12:41.0020 5984 rdbss - ok
11:12:41.0052 5984 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:12:41.0061 5984 RDPCDD - ok
11:12:41.0095 5984 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:12:41.0107 5984 rdpdr - ok
11:12:41.0116 5984 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:12:41.0127 5984 RDPENCDD - ok
11:12:41.0168 5984 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:12:41.0183 5984 RDPWD - ok
11:12:41.0222 5984 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:12:41.0282 5984 RemoteAccess - ok
11:12:41.0313 5984 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:12:41.0395 5984 RemoteRegistry - ok
11:12:41.0448 5984 [ C35CA13D3627EBD9DD12A23CE781BC3D ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
11:12:41.0458 5984 rimmptsk - ok
11:12:41.0472 5984 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
11:12:41.0483 5984 rimsptsk - ok
11:12:41.0498 5984 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
11:12:41.0509 5984 rismxdp - ok
11:12:41.0523 5984 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:12:41.0574 5984 RpcLocator - ok
11:12:41.0604 5984 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
11:12:41.0692 5984 RpcSs - ok
11:12:41.0730 5984 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:12:41.0742 5984 rspndr - ok
11:12:41.0757 5984 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
11:12:41.0808 5984 SamSs - ok
11:12:41.0829 5984 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:12:41.0841 5984 sbp2port - ok
11:12:41.0870 5984 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:12:41.0956 5984 SCardSvr - ok
11:12:41.0999 5984 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:12:42.0089 5984 Schedule - ok
11:12:42.0114 5984 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:12:42.0124 5984 SCPolicySvc - ok
11:12:42.0165 5984 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:12:42.0175 5984 sdbus - ok
11:12:42.0207 5984 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:12:42.0294 5984 SDRSVC - ok
11:12:42.0327 5984 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:12:42.0337 5984 secdrv - ok
11:12:42.0351 5984 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:12:42.0437 5984 seclogon - ok
11:12:42.0456 5984 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
11:12:42.0545 5984 SENS - ok
11:12:42.0562 5984 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:12:42.0573 5984 Serenum - ok
11:12:42.0592 5984 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
11:12:42.0604 5984 Serial - ok
11:12:42.0627 5984 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:12:42.0637 5984 sermouse - ok
11:12:42.0692 5984 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:12:42.0787 5984 SessionEnv - ok
11:12:42.0809 5984 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
11:12:42.0822 5984 sffdisk - ok
11:12:42.0853 5984 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:12:42.0865 5984 sffp_mmc - ok
11:12:42.0899 5984 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
11:12:42.0911 5984 sffp_sd - ok
11:12:42.0925 5984 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:12:42.0939 5984 sfloppy - ok
11:12:42.0975 5984 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:12:43.0023 5984 SharedAccess - ok
11:12:43.0064 5984 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:12:43.0153 5984 ShellHWDetection - ok
11:12:43.0174 5984 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:12:43.0184 5984 sisagp - ok
11:12:43.0231 5984 [ 73838461F11FC7DAEE7922C945B2D74F ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSGB6.sys
11:12:43.0241 5984 SiSGbeLH - ok
11:12:43.0271 5984 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:12:43.0282 5984 SiSRaid2 - ok
11:12:43.0306 5984 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:12:43.0318 5984 SiSRaid4 - ok
11:12:43.0442 5984 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:12:43.0570 5984 slsvc - ok
11:12:43.0598 5984 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:12:43.0685 5984 SLUINotify - ok
11:12:43.0727 5984 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:12:43.0738 5984 Smb - ok
11:12:43.0799 5984 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
11:12:43.0836 5984 smserial - ok
11:12:43.0881 5984 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:12:43.0968 5984 SNMPTRAP - ok
11:12:44.0056 5984 [ A709DFA1674C1ED61EF7B5F29B38EEB1 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
11:12:44.0083 5984 SNP2UVC - ok
11:12:44.0106 5984 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:12:44.0117 5984 spldr - ok
11:12:44.0137 5984 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:12:44.0226 5984 Spooler - ok
11:12:44.0289 5984 [ A80CD850D69D996C832BEA37E3A6AA1E ] sptd C:\Windows\system32\Drivers\sptd.sys
11:12:44.0298 5984 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: A80CD850D69D996C832BEA37E3A6AA1E
11:12:44.0302 5984 sptd ( LockedFile.Multi.Generic ) - warning
11:12:44.0302 5984 sptd - detected LockedFile.Multi.Generic (1)
11:12:44.0346 5984 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:12:44.0363 5984 srv - ok
11:12:44.0390 5984 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:12:44.0404 5984 srv2 - ok
11:12:44.0418 5984 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:12:44.0431 5984 srvnet - ok
11:12:44.0458 5984 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:12:44.0557 5984 SSDPSRV - ok
11:12:44.0587 5984 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:12:44.0681 5984 SstpSvc - ok
11:12:44.0727 5984 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:12:44.0835 5984 stisvc - ok
11:12:44.0857 5984 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:12:44.0868 5984 swenum - ok
11:12:44.0906 5984 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:12:45.0004 5984 swprv - ok
11:12:45.0033 5984 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:12:45.0045 5984 Symc8xx - ok
11:12:45.0062 5984 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:12:45.0073 5984 Sym_hi - ok
11:12:45.0095 5984 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:12:45.0107 5984 Sym_u3 - ok
11:12:45.0145 5984 [ 55F6E55CC2430CA8713387106FA79817 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:12:45.0160 5984 SynTP - ok
11:12:45.0203 5984 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:12:45.0310 5984 SysMain - ok
11:12:45.0349 5984 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:12:45.0442 5984 TabletInputService - ok
11:12:45.0473 5984 [ 0C3B2A9C4BD2DD9A6C2E4084314DD719 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
11:12:45.0484 5984 taphss - ok
11:12:45.0526 5984 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:12:45.0621 5984 TapiSrv - ok
11:12:45.0647 5984 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:12:45.0741 5984 TBS - ok
11:12:45.0802 5984 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:12:45.0821 5984 Tcpip - ok
11:12:45.0852 5984 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:12:45.0870 5984 Tcpip6 - ok
11:12:45.0902 5984 [ CD21572F83F7EC6E2C20C465967BEDD9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:12:45.0912 5984 tcpipreg - ok
11:12:45.0940 5984 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:12:45.0951 5984 TDPIPE - ok
11:12:45.0968 5984 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:12:45.0980 5984 TDTCP - ok
11:12:46.0018 5984 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:12:46.0028 5984 tdx - ok
11:12:46.0038 5984 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:12:46.0054 5984 TermDD - ok
11:12:46.0095 5984 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:12:46.0193 5984 TermService - ok
11:12:46.0220 5984 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:12:46.0310 5984 Themes - ok
11:12:46.0327 5984 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:12:46.0382 5984 THREADORDER - ok
11:12:46.0419 5984 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:12:46.0517 5984 TrkWks - ok
11:12:46.0582 5984 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:12:46.0584 5984 TrustedInstaller - ok
11:12:46.0637 5984 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:12:46.0671 5984 tssecsrv - ok
11:12:46.0785 5984 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:12:46.0796 5984 tunmp - ok
11:12:46.0823 5984 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:12:46.0834 5984 tunnel - ok
11:12:46.0849 5984 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:12:46.0861 5984 uagp35 - ok
11:12:46.0889 5984 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:12:46.0905 5984 udfs - ok
11:12:46.0951 5984 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:12:47.0045 5984 UI0Detect - ok
11:12:47.0078 5984 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:12:47.0091 5984 uliagpkx - ok
11:12:47.0125 5984 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:12:47.0143 5984 uliahci - ok
11:12:47.0172 5984 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:12:47.0185 5984 UlSata - ok
11:12:47.0210 5984 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:12:47.0224 5984 ulsata2 - ok
11:12:47.0243 5984 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:12:47.0292 5984 umbus - ok
11:12:47.0320 5984 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:12:47.0419 5984 upnphost - ok
11:12:47.0453 5984 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
11:12:47.0515 5984 USBAAPL - ok
11:12:47.0552 5984 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:12:47.0567 5984 usbccgp - ok
11:12:47.0606 5984 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:12:47.0619 5984 usbcir - ok
11:12:47.0658 5984 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:12:47.0670 5984 usbehci - ok
11:12:47.0701 5984 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:12:47.0717 5984 usbhub - ok
11:12:47.0732 5984 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:12:47.0744 5984 usbohci - ok
11:12:47.0781 5984 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:12:47.0793 5984 usbprint - ok
11:12:47.0828 5984 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:12:47.0841 5984 usbscan - ok
11:12:47.0876 5984 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:12:47.0889 5984 USBSTOR - ok
11:12:47.0908 5984 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:12:47.0920 5984 usbuhci - ok
11:12:47.0954 5984 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:12:47.0969 5984 usbvideo - ok
11:12:47.0999 5984 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:12:48.0100 5984 UxSms - ok
11:12:48.0138 5984 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:12:48.0239 5984 vds - ok
11:12:48.0253 5984 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:12:48.0266 5984 vga - ok
11:12:48.0288 5984 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:12:48.0300 5984 VgaSave - ok
11:12:48.0317 5984 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:12:48.0335 5984 viaagp - ok
11:12:48.0368 5984 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:12:48.0381 5984 ViaC7 - ok
11:12:48.0405 5984 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
11:12:48.0417 5984 viaide - ok
11:12:48.0444 5984 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:12:48.0457 5984 volmgr - ok
11:12:48.0483 5984 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:12:48.0502 5984 volmgrx - ok
11:12:48.0543 5984 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:12:48.0566 5984 volsnap - ok
11:12:48.0599 5984 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:12:48.0613 5984 vsmraid - ok
11:12:48.0672 5984 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:12:48.0782 5984 VSS - ok
|
|
11.03.2013, 11:22
| #32 |
| | CoupondropdownCode:
ATTFilter 11:12:48.0888 5984 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:12:48.0991 5984 W32Time - ok
11:12:49.0032 5984 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:12:49.0045 5984 WacomPen - ok
11:12:49.0071 5984 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:12:49.0085 5984 Wanarp - ok
11:12:49.0096 5984 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:12:49.0108 5984 Wanarpv6 - ok
11:12:49.0148 5984 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
11:12:49.0158 5984 WcesComm - ok
11:12:49.0179 5984 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:12:49.0283 5984 wcncsvc - ok
11:12:49.0380 5984 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:12:49.0481 5984 WcsPlugInService - ok
11:12:49.0494 5984 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
11:12:49.0512 5984 Wd - ok
11:12:49.0563 5984 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:12:49.0589 5984 Wdf01000 - ok
11:12:49.0613 5984 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:12:49.0717 5984 WdiServiceHost - ok
11:12:49.0724 5984 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:12:49.0828 5984 WdiSystemHost - ok
11:12:49.0859 5984 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:12:49.0965 5984 WebClient - ok
11:12:49.0999 5984 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:12:50.0105 5984 Wecsvc - ok
11:12:50.0145 5984 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:12:50.0246 5984 wercplsupport - ok
11:12:50.0280 5984 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:12:50.0386 5984 WerSvc - ok
11:12:50.0445 5984 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:12:50.0454 5984 WinDefend - ok
11:12:50.0471 5984 WinHttpAutoProxySvc - ok
11:12:50.0534 5984 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:12:50.0553 5984 Winmgmt - ok
11:12:50.0621 5984 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:12:50.0744 5984 WinRM - ok
11:12:50.0785 5984 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS
11:12:50.0864 5984 winusb - ok
11:12:50.0916 5984 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:12:51.0025 5984 Wlansvc - ok
11:12:51.0117 5984 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:12:51.0134 5984 wlidsvc - ok
11:12:51.0159 5984 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:12:51.0171 5984 WmiAcpi - ok
11:12:51.0214 5984 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:12:51.0228 5984 wmiApSrv - ok
11:12:51.0312 5984 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:12:51.0325 5984 WMPNetworkSvc - ok
11:12:51.0358 5984 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:12:51.0490 5984 WPCSvc - ok
11:12:51.0585 5984 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:12:51.0693 5984 WPDBusEnum - ok
11:12:51.0741 5984 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:12:51.0754 5984 WpdUsb - ok
11:12:51.0861 5984 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:12:51.0871 5984 WPFFontCache_v0400 - ok
11:12:51.0896 5984 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:12:51.0908 5984 ws2ifsl - ok
11:12:51.0942 5984 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
11:12:52.0075 5984 wscsvc - ok
11:12:52.0084 5984 WSearch - ok
11:12:52.0175 5984 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:12:52.0331 5984 wuauserv - ok
11:12:52.0394 5984 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:12:52.0407 5984 WudfPf - ok
11:12:52.0434 5984 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:12:52.0450 5984 WUDFRd - ok
11:12:52.0484 5984 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:12:52.0632 5984 wudfsvc - ok
11:12:52.0694 5984 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
11:12:52.0710 5984 yukonwlh - ok
11:12:52.0745 5984 ================ Scan global ===============================
11:12:52.0772 5984 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:12:52.0811 5984 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:12:52.0940 5984 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:12:53.0070 5984 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:12:53.0160 5984 [Global] - ok
11:12:53.0161 5984 ================ Scan MBR ==================================
11:12:53.0173 5984 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
11:12:53.0719 5984 \Device\Harddisk0\DR0 - ok
11:12:53.0720 5984 ================ Scan VBR ==================================
11:12:53.0725 5984 [ 17393D815A7969BCD27B29209AE7DE76 ] \Device\Harddisk0\DR0\Partition1
11:12:53.0728 5984 \Device\Harddisk0\DR0\Partition1 - ok
11:12:53.0750 5984 [ 6DBC42B833BBAC5696BDD059A8173142 ] \Device\Harddisk0\DR0\Partition2
11:12:53.0752 5984 \Device\Harddisk0\DR0\Partition2 - ok
11:12:53.0753 5984 ============================================================
11:12:53.0753 5984 Scan finished
11:12:53.0753 5984 ============================================================
11:12:53.0780 4476 Detected object count: 1
11:12:53.0780 4476 Actual detected object count: 1
11:14:22.0003 4476 sptd ( LockedFile.Multi.Generic ) - skipped by user
11:14:22.0003 4476 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
11:14:49.0142 5896 ============================================================
11:14:49.0142 5896 Scan started
11:14:49.0142 5896 Mode: Manual; SigCheck; TDLFS;
11:14:49.0142 5896 ============================================================
11:14:49.0536 5896 ================ Scan system memory ========================
11:14:49.0536 5896 System memory - ok
11:14:49.0537 5896 ================ Scan services =============================
11:14:49.0721 5896 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:14:49.0888 5896 ACPI - ok
11:14:50.0045 5896 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:14:50.0067 5896 AdobeARMservice - ok
11:14:50.0125 5896 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:14:50.0150 5896 AdobeFlashPlayerUpdateSvc - ok
11:14:50.0191 5896 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:14:50.0252 5896 adp94xx - ok
11:14:50.0287 5896 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:14:50.0323 5896 adpahci - ok
11:14:50.0344 5896 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:14:50.0376 5896 adpu160m - ok
11:14:50.0399 5896 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:14:50.0431 5896 adpu320 - ok
11:14:50.0496 5896 [ 609A6F49B6AF0F25837F8A0EDDDB0745 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
11:14:50.0528 5896 ADSMService ( UnsignedFile.Multi.Generic ) - warning
11:14:50.0528 5896 ADSMService - detected UnsignedFile.Multi.Generic (1)
11:14:50.0555 5896 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:14:50.0612 5896 AeLookupSvc - ok
11:14:50.0651 5896 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:14:50.0684 5896 AFD - ok
11:14:50.0714 5896 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:14:50.0736 5896 agp440 - ok
11:14:50.0766 5896 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:14:50.0794 5896 aic78xx - ok
11:14:50.0815 5896 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:14:50.0859 5896 ALG - ok
11:14:50.0876 5896 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:14:50.0900 5896 aliide - ok
11:14:50.0925 5896 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:14:50.0948 5896 amdagp - ok
11:14:50.0969 5896 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
11:14:50.0990 5896 amdide - ok
11:14:51.0011 5896 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:14:51.0064 5896 AmdK7 - ok
11:14:51.0094 5896 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:14:51.0137 5896 AmdK8 - ok
11:14:51.0172 5896 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:14:51.0212 5896 Appinfo - ok
11:14:51.0280 5896 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:14:51.0302 5896 Apple Mobile Device - ok
11:14:51.0344 5896 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
11:14:51.0366 5896 arc - ok
11:14:51.0401 5896 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:14:51.0426 5896 arcsas - ok
11:14:51.0454 5896 [ 4385E371C25C94C804E9D3152BD9E1F7 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
11:14:51.0484 5896 AsDsm - ok
11:14:51.0513 5896 [ 5A055A4777CBBC8845DD598CB2EEBF69 ] ASLDRService C:\Program Files\ATK Hotkey\ASLDRSrv.exe
11:14:51.0535 5896 ASLDRService ( UnsignedFile.Multi.Generic ) - warning
11:14:51.0536 5896 ASLDRService - detected UnsignedFile.Multi.Generic (1)
11:14:51.0581 5896 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
11:14:51.0597 5896 ASMMAP - ok
11:14:51.0690 5896 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:14:51.0711 5896 aspnet_state - ok
11:14:51.0735 5896 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:14:51.0782 5896 AsyncMac - ok
11:14:51.0806 5896 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:14:51.0836 5896 atapi - ok
11:14:51.0895 5896 [ 2846F5EE802889D500FCF5CC48B28381 ] athr C:\Windows\system32\DRIVERS\athr.sys
11:14:51.0954 5896 athr - ok
11:14:51.0982 5896 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
11:14:52.0010 5896 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
11:14:52.0011 5896 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
11:14:52.0054 5896 [ F0D933B42CD0594048E4D5200AE9E417 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
11:14:52.0080 5896 atksgt - ok
11:14:52.0112 5896 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:14:52.0165 5896 AudioEndpointBuilder - ok
11:14:52.0179 5896 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:14:52.0221 5896 Audiosrv - ok
11:14:52.0262 5896 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:14:52.0312 5896 Beep - ok
11:14:52.0353 5896 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:14:52.0426 5896 BFE - ok
11:14:52.0493 5896 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
11:14:52.0648 5896 BITS - ok
11:14:52.0687 5896 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:14:52.0730 5896 blbdrive - ok
11:14:52.0796 5896 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:14:52.0825 5896 Bonjour Service - ok
11:14:52.0852 5896 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:14:52.0889 5896 bowser - ok
11:14:52.0922 5896 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:14:52.0969 5896 BrFiltLo - ok
11:14:52.0998 5896 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:14:53.0057 5896 BrFiltUp - ok
11:14:53.0099 5896 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:14:53.0149 5896 Browser - ok
11:14:53.0172 5896 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:14:53.0249 5896 Brserid - ok
11:14:53.0270 5896 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:14:53.0364 5896 BrSerWdm - ok
11:14:53.0427 5896 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:14:53.0557 5896 BrUsbMdm - ok
11:14:53.0593 5896 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:14:53.0695 5896 BrUsbSer - ok
11:14:53.0776 5896 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:14:53.0882 5896 BTHMODEM - ok
11:14:53.0910 5896 catchme - ok
11:14:53.0943 5896 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:14:54.0022 5896 cdfs - ok
11:14:54.0069 5896 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:14:54.0109 5896 cdrom - ok
11:14:54.0139 5896 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:14:54.0210 5896 CertPropSvc - ok
11:14:54.0250 5896 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
11:14:54.0317 5896 circlass - ok
11:14:54.0357 5896 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:14:54.0402 5896 CLFS - ok
11:14:54.0463 5896 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:14:54.0497 5896 clr_optimization_v2.0.50727_32 - ok
11:14:54.0526 5896 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:14:54.0578 5896 clr_optimization_v4.0.30319_32 - ok
11:14:54.0603 5896 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:14:54.0670 5896 CmBatt - ok
11:14:54.0707 5896 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:14:54.0738 5896 cmdide - ok
11:14:54.0823 5896 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:14:54.0848 5896 Compbatt - ok
11:14:54.0866 5896 COMSysApp - ok
11:14:54.0888 5896 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:14:54.0912 5896 crcdisk - ok
11:14:54.0935 5896 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:14:55.0006 5896 Crusoe - ok
11:14:55.0050 5896 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:14:55.0104 5896 CryptSvc - ok
11:14:55.0175 5896 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:14:55.0334 5896 DcomLaunch - ok
11:14:55.0389 5896 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:14:55.0436 5896 DfsC - ok
11:14:55.0537 5896 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:14:55.0829 5896 DFSR - ok
11:14:55.0869 5896 [ 3BE1651C63954067940E7F473498AD70 ] dgderdrv C:\Windows\system32\drivers\dgderdrv.sys
11:14:55.0891 5896 dgderdrv - ok
11:14:55.0922 5896 [ 10B8F89D146D0E20B1284D47BB4EC6C9 ] dgdersvc C:\Windows\system32\dgdersvc.exe
11:14:55.0971 5896 dgdersvc - ok
11:14:56.0017 5896 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:14:56.0085 5896 Dhcp - ok
11:14:56.0125 5896 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:14:56.0154 5896 disk - ok
11:14:56.0208 5896 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:14:56.0277 5896 Dnscache - ok
11:14:56.0315 5896 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:14:56.0385 5896 dot3svc - ok
11:14:56.0425 5896 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:14:56.0546 5896 DPS - ok
11:14:56.0589 5896 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:14:56.0643 5896 drmkaud - ok
11:14:56.0703 5896 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:14:56.0769 5896 DXGKrnl - ok
11:14:56.0835 5896 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:14:56.0903 5896 E1G60 - ok
11:14:56.0949 5896 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:14:57.0089 5896 EapHost - ok
11:14:57.0142 5896 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:14:57.0172 5896 Ecache - ok
11:14:57.0243 5896 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:14:57.0286 5896 ehRecvr - ok
11:14:57.0311 5896 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:14:57.0367 5896 ehSched - ok
11:14:57.0391 5896 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:14:57.0435 5896 ehstart - ok
11:14:57.0481 5896 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:14:57.0517 5896 elxstor - ok
11:14:57.0599 5896 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:14:57.0785 5896 EMDMgmt - ok
11:14:57.0822 5896 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:14:57.0893 5896 ErrDev - ok
11:14:57.0943 5896 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:14:58.0023 5896 EventSystem - ok
11:14:58.0063 5896 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:14:58.0112 5896 exfat - ok
11:14:58.0156 5896 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:14:58.0207 5896 fastfat - ok
11:14:58.0237 5896 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:14:58.0287 5896 fdc - ok
11:14:58.0325 5896 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:14:58.0427 5896 fdPHost - ok
11:14:58.0466 5896 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:14:58.0622 5896 FDResPub - ok
11:14:58.0656 5896 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:14:58.0691 5896 FileInfo - ok
11:14:58.0714 5896 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:14:58.0769 5896 Filetrace - ok
11:14:58.0867 5896 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:14:58.0911 5896 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
11:14:58.0911 5896 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
11:14:58.0945 5896 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:14:59.0007 5896 flpydisk - ok
11:14:59.0052 5896 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:14:59.0088 5896 FltMgr - ok
11:14:59.0170 5896 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:14:59.0267 5896 FontCache - ok
11:14:59.0326 5896 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:14:59.0351 5896 FontCache3.0.0.0 - ok
11:14:59.0383 5896 [ 574CEA4D3510EC905C0163C42D305BA5 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:14:59.0407 5896 fssfltr - ok
11:14:59.0490 5896 [ 9B1622EBEB31B3411B13382FFCB8737D ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
11:14:59.0552 5896 fsssvc - ok
11:14:59.0562 5896 FsUsbExDisk - ok
11:14:59.0615 5896 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:14:59.0644 5896 Fs_Rec - ok
11:14:59.0688 5896 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:14:59.0720 5896 gagp30kx - ok
11:14:59.0747 5896 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:14:59.0769 5896 GEARAspiWDM - ok
11:14:59.0812 5896 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:14:59.0913 5896 gpsvc - ok
11:14:59.0968 5896 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:00.0047 5896 HdAudAddService - ok
11:15:00.0099 5896 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:15:00.0185 5896 HDAudBus - ok
11:15:00.0222 5896 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:15:00.0296 5896 HidBth - ok
11:15:00.0330 5896 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:15:00.0414 5896 HidIr - ok
11:15:00.0458 5896 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
11:15:00.0522 5896 hidserv - ok
11:15:00.0536 5896 [ 854CA287AB7FAF949617A788306D967E ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:15:00.0585 5896 HidUsb - ok
11:15:00.0617 5896 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:15:00.0717 5896 hkmsvc - ok
11:15:00.0744 5896 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:15:00.0773 5896 HpCISSs - ok
11:15:00.0810 5896 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:15:00.0865 5896 HTTP - ok
11:15:00.0899 5896 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:15:00.0925 5896 i2omp - ok
11:15:00.0947 5896 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:01.0004 5896 i8042prt - ok
11:15:01.0031 5896 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:15:01.0062 5896 iaStorV - ok
11:15:01.0110 5896 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:15:01.0122 5896 IDriverT ( UnsignedFile.Multi.Generic ) - warning
11:15:01.0122 5896 IDriverT - detected UnsignedFile.Multi.Generic (1)
11:15:01.0199 5896 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:15:01.0262 5896 idsvc - ok
11:15:01.0306 5896 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:15:01.0329 5896 iirsp - ok
11:15:01.0387 5896 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:15:01.0556 5896 IKEEXT - ok
11:15:01.0703 5896 [ 0557AAEE4C86E2C333ACD2BAF42A7619 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:15:01.0811 5896 IntcAzAudAddService - ok
11:15:01.0866 5896 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:15:01.0893 5896 intelide - ok
11:15:01.0912 5896 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:15:01.0979 5896 intelppm - ok
11:15:02.0009 5896 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:15:02.0091 5896 IPBusEnum - ok
11:15:02.0108 5896 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:02.0154 5896 IpFilterDriver - ok
11:15:02.0187 5896 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:15:02.0400 5896 iphlpsvc - ok
11:15:02.0409 5896 IpInIp - ok
11:15:02.0518 5896 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:15:02.0583 5896 IPMIDRV - ok
11:15:02.0603 5896 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:15:02.0711 5896 IPNAT - ok
11:15:02.0760 5896 [ E46B17060D3962A384AE484094614788 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:15:02.0801 5896 iPod Service - ok
11:15:02.0826 5896 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:15:02.0876 5896 IRENUM - ok
11:15:02.0914 5896 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:15:02.0950 5896 isapnp - ok
11:15:02.0985 5896 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:15:03.0017 5896 iScsiPrt - ok
11:15:03.0048 5896 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:15:03.0072 5896 iteatapi - ok
11:15:03.0092 5896 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:15:03.0115 5896 iteraid - ok
11:15:03.0134 5896 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:15:03.0159 5896 kbdclass - ok
11:15:03.0178 5896 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:15:03.0225 5896 kbdhid - ok
11:15:03.0256 5896 [ 27BD4AC228EF6C0D490617C32E86A672 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
11:15:03.0276 5896 kbfiltr - ok
11:15:03.0316 5896 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
11:15:03.0398 5896 KeyIso - ok
11:15:03.0457 5896 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:15:03.0516 5896 KSecDD - ok
11:15:03.0581 5896 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:15:03.0758 5896 KtmRm - ok
11:15:03.0804 5896 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
11:15:03.0974 5896 LanmanServer - ok
11:15:04.0034 5896 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:04.0225 5896 LanmanWorkstation - ok
11:15:04.0253 5896 [ F8A7212D0864EF5E9185FB95E6623F4D ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
11:15:04.0278 5896 lirsgt - ok
11:15:04.0314 5896 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:15:04.0384 5896 lltdio - ok
11:15:04.0424 5896 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:15:04.0524 5896 lltdsvc - ok
11:15:04.0546 5896 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:15:04.0667 5896 lmhosts - ok
11:15:04.0757 5896 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:15:04.0792 5896 LSI_FC - ok
11:15:04.0818 5896 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:15:04.0846 5896 LSI_SAS - ok
11:15:04.0885 5896 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:15:04.0932 5896 LSI_SCSI - ok
11:15:04.0980 5896 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:15:05.0056 5896 luafv - ok
11:15:05.0098 5896 [ 8039F480C192DD99FED4EBC71FFBF795 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
11:15:05.0121 5896 lullaby - ok
11:15:05.0144 5896 [ C6D085C7045200143528136A43A65FDE ] ManyCam C:\Windows\system32\DRIVERS\ManyCam.sys
11:15:05.0212 5896 ManyCam - ok
11:15:05.0254 5896 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:15:05.0292 5896 MBAMProtector - ok
11:15:05.0356 5896 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:15:05.0392 5896 MBAMScheduler - ok
11:15:05.0437 5896 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:15:05.0482 5896 MBAMService - ok
11:15:05.0549 5896 [ C226CE46CD17FCE6261A9DE406F01C8B ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
11:15:05.0582 5896 McAfee SiteAdvisor Service - ok
11:15:05.0625 5896 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:15:05.0797 5896 Mcx2Svc - ok
11:15:05.0850 5896 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:15:05.0877 5896 megasas - ok
11:15:05.0912 5896 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:15:05.0955 5896 MegaSR - ok
11:15:05.0986 5896 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:15:06.0181 5896 MMCSS - ok
11:15:06.0211 5896 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:15:06.0299 5896 Modem - ok
11:15:06.0355 5896 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:15:06.0414 5896 monitor - ok
11:15:06.0456 5896 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:15:06.0487 5896 mouclass - ok
11:15:06.0528 5896 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:15:06.0580 5896 mouhid - ok
11:15:06.0602 5896 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:15:06.0631 5896 MountMgr - ok
11:15:06.0675 5896 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:15:06.0706 5896 MozillaMaintenance - ok
11:15:06.0739 5896 [ 8D745200A0928743D9DF22258861A807 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:15:06.0796 5896 MpFilter - ok
11:15:06.0857 5896 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:15:06.0891 5896 mpio - ok
11:15:07.0017 5896 [ A69630D039C38018689190234F866D77 ] MpKsl5701e724 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E8AFB87C-3E54-499A-907F-93E55E7A16E1}\MpKsl5701e724.sys
11:15:07.0039 5896 MpKsl5701e724 - ok
11:15:07.0064 5896 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:15:07.0119 5896 mpsdrv - ok
11:15:07.0215 5896 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:15:07.0342 5896 MpsSvc - ok
11:15:07.0379 5896 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:15:07.0419 5896 Mraid35x - ok
11:15:07.0451 5896 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:15:07.0511 5896 MRxDAV - ok
11:15:07.0581 5896 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:07.0625 5896 mrxsmb - ok
11:15:07.0677 5896 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:07.0712 5896 mrxsmb10 - ok
11:15:07.0736 5896 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:07.0802 5896 mrxsmb20 - ok
11:15:07.0835 5896 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
11:15:07.0865 5896 msahci - ok
11:15:07.0916 5896 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:15:07.0947 5896 msdsm - ok
11:15:07.0977 5896 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:15:08.0131 5896 MSDTC - ok
11:15:08.0165 5896 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:15:08.0227 5896 Msfs - ok
11:15:08.0258 5896 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:15:08.0293 5896 msisadrv - ok
11:15:08.0330 5896 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:15:08.0436 5896 MSiSCSI - ok
11:15:08.0452 5896 msiserver - ok
11:15:08.0490 5896 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:15:08.0607 5896 MSKSSRV - ok
11:15:08.0817 5896 [ B15ECEAF5B36C6F9C1B3930A6C3DB1DE ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:15:08.0849 5896 MsMpSvc - ok
11:15:08.0889 5896 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:08.0940 5896 MSPCLOCK - ok
11:15:08.0965 5896 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:15:09.0018 5896 MSPQM - ok
11:15:09.0062 5896 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:15:09.0099 5896 MsRPC - ok
11:15:09.0164 5896 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:15:09.0195 5896 mssmbios - ok
11:15:09.0216 5896 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:15:09.0289 5896 MSTEE - ok
11:15:09.0328 5896 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
11:15:09.0365 5896 MTsensor - ok
11:15:09.0401 5896 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:15:09.0437 5896 Mup - ok
11:15:09.0488 5896 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:15:09.0631 5896 napagent - ok
11:15:09.0671 5896 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:15:09.0721 5896 NativeWifiP - ok
11:15:09.0913 5896 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:15:09.0970 5896 NDIS - ok
11:15:10.0014 5896 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:10.0063 5896 NdisTapi - ok
11:15:10.0089 5896 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:10.0145 5896 Ndisuio - ok
11:15:10.0177 5896 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:10.0250 5896 NdisWan - ok
11:15:10.0270 5896 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:15:10.0319 5896 NDProxy - ok
11:15:10.0358 5896 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
11:15:10.0404 5896 Netaapl - ok
11:15:10.0429 5896 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:15:10.0485 5896 NetBIOS - ok
11:15:10.0618 5896 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:15:10.0698 5896 netbt - ok
11:15:10.0727 5896 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
11:15:10.0830 5896 Netlogon - ok
11:15:10.0879 5896 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:15:11.0040 5896 Netman - ok
11:15:11.0152 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0203 5896 NetMsmqActivator - ok
11:15:11.0222 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0260 5896 NetPipeActivator - ok
11:15:11.0299 5896 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:15:11.0498 5896 netprofm - ok
11:15:11.0510 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0662 5896 NetTcpActivator - ok
11:15:11.0746 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0780 5896 NetTcpPortSharing - ok
11:15:11.0835 5896 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:15:11.0865 5896 nfrd960 - ok
11:15:11.0893 5896 [ ECA329684BDE55E3939F73B25E5CFC86 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:15:11.0930 5896 NisDrv - ok
11:15:11.0964 5896 [ 0579ACAB3764CBFBE92E53C5F04E2A0D ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
11:15:12.0031 5896 NisSrv - ok
11:15:12.0073 5896 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:15:12.0234 5896 NlaSvc - ok
11:15:12.0311 5896 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:15:12.0427 5896 Npfs - ok
11:15:12.0487 5896 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:15:12.0664 5896 nsi - ok
11:15:12.0727 5896 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:15:12.0812 5896 nsiproxy - ok
11:15:12.0930 5896 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:15:13.0174 5896 Ntfs - ok
11:15:13.0240 5896 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:15:13.0333 5896 ntrigdigi - ok
11:15:13.0343 5896 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:15:13.0396 5896 Null - ok
11:15:13.0781 5896 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:14.0446 5896 nvlddmkm - ok
11:15:14.0516 5896 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:15:14.0552 5896 nvraid - ok
11:15:14.0586 5896 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:15:14.0615 5896 nvstor - ok
11:15:14.0659 5896 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:15:14.0825 5896 nvsvc - ok
11:15:14.0848 5896 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:15:14.0891 5896 nv_agp - ok
11:15:14.0915 5896 NwlnkFlt - ok
11:15:14.0927 5896 NwlnkFwd - ok
11:15:15.0024 5896 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:15:15.0180 5896 odserv - ok
11:15:15.0238 5896 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:15:15.0309 5896 ohci1394 - ok
11:15:15.0359 5896 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:15:15.0388 5896 ose - ok
11:15:15.0453 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:15:15.0714 5896 p2pimsvc - ok
11:15:15.0738 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:15:16.0028 5896 p2psvc - ok
11:15:16.0073 5896 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
11:15:16.0242 5896 Parport - ok
11:15:16.0344 5896 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:15:16.0401 5896 partmgr - ok
11:15:16.0418 5896 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:15:16.0630 5896 Parvdm - ok
11:15:16.0748 5896 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:15:16.0926 5896 PcaSvc - ok
11:15:16.0937 5896 pccsmcfd - ok
11:15:16.0988 5896 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:15:17.0041 5896 pci - ok
11:15:17.0065 5896 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
11:15:17.0112 5896 pciide - ok
11:15:17.0158 5896 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:15:17.0193 5896 pcmcia - ok
11:15:17.0265 5896 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:15:17.0391 5896 PEAUTH - ok
11:15:17.0599 5896 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:15:17.0835 5896 pla - ok
11:15:17.0872 5896 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:15:18.0016 5896 PlugPlay - ok
11:15:18.0055 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:15:18.0205 5896 PNRPAutoReg - ok
11:15:18.0226 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:15:18.0355 5896 PNRPsvc - ok
11:15:18.0400 5896 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:15:18.0538 5896 PolicyAgent - ok
11:15:18.0591 5896 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:15:18.0659 5896 PptpMiniport - ok
11:15:18.0681 5896 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
11:15:18.0737 5896 Processor - ok
11:15:18.0773 5896 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:15:18.0936 5896 ProfSvc - ok
11:15:18.0961 5896 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
11:15:19.0060 5896 ProtectedStorage - ok
11:15:19.0124 5896 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:15:19.0188 5896 PSched - ok
11:15:19.0264 5896 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:15:19.0477 5896 ql2300 - ok
11:15:19.0555 5896 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:15:19.0591 5896 ql40xx - ok
11:15:19.0654 5896 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:15:19.0798 5896 QWAVE - ok
11:15:19.0875 5896 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:15:19.0943 5896 QWAVEdrv - ok
11:15:20.0014 5896 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
11:15:20.0054 5896 RapiMgr - ok
11:15:20.0071 5896 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:15:20.0136 5896 RasAcd - ok
11:15:20.0170 5896 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:15:20.0377 5896 RasAuto - ok
11:15:20.0428 5896 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:20.0513 5896 Rasl2tp - ok
11:15:20.0628 5896 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:15:20.0782 5896 RasMan - ok
11:15:20.0901 5896 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:20.0950 5896 RasPppoe - ok
11:15:20.0978 5896 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:15:21.0033 5896 RasSstp - ok
11:15:21.0063 5896 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:15:21.0122 5896 rdbss - ok
11:15:21.0156 5896 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:21.0211 5896 RDPCDD - ok
11:15:21.0244 5896 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:15:21.0303 5896 rdpdr - ok
11:15:21.0313 5896 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:15:21.0366 5896 RDPENCDD - ok
11:15:21.0406 5896 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:15:21.0453 5896 RDPWD - ok
11:15:21.0493 5896 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:15:21.0618 5896 RemoteAccess - ok
11:15:21.0650 5896 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:15:21.0784 5896 RemoteRegistry - ok
11:15:21.0830 5896 [ C35CA13D3627EBD9DD12A23CE781BC3D ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
11:15:21.0899 5896 rimmptsk - ok
11:15:21.0932 5896 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
11:15:21.0965 5896 rimsptsk - ok
11:15:21.0977 5896 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
11:15:22.0021 5896 rismxdp - ok
11:15:22.0049 5896 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:15:22.0150 5896 RpcLocator - ok
11:15:22.0235 5896 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
11:15:22.0412 5896 RpcSs - ok
11:15:22.0456 5896 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:15:22.0615 5896 rspndr - ok
11:15:22.0639 5896 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
11:15:22.0737 5896 SamSs - ok
11:15:22.0755 5896 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:15:22.0789 5896 sbp2port - ok
11:15:22.0830 5896 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:15:22.0990 5896 SCardSvr - ok
11:15:23.0060 5896 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:15:23.0236 5896 Schedule - ok
11:15:23.0262 5896 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:15:23.0317 5896 SCPolicySvc - ok
11:15:23.0369 5896 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:15:23.0425 5896 sdbus - ok
11:15:23.0467 5896 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:15:23.0617 5896 SDRSVC - ok
11:15:23.0642 5896 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:15:23.0760 5896 secdrv - ok
11:15:23.0800 5896 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:15:23.0969 5896 seclogon - ok
11:15:24.0005 5896 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
11:15:24.0185 5896 SENS - ok
11:15:24.0211 5896 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:15:24.0327 5896 Serenum - ok
11:15:24.0470 5896 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
11:15:24.0573 5896 Serial - ok
11:15:24.0602 5896 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:15:24.0694 5896 sermouse - ok
11:15:24.0752 5896 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:15:24.0912 5896 SessionEnv - ok
11:15:24.0936 5896 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
11:15:24.0984 5896 sffdisk - ok
11:15:25.0002 5896 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:15:25.0056 5896 sffp_mmc - ok
11:15:25.0092 5896 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
11:15:25.0148 5896 sffp_sd - ok
11:15:25.0177 5896 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:15:25.0246 5896 sfloppy - ok
11:15:25.0279 5896 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:15:25.0381 5896 SharedAccess - ok
11:15:25.0425 5896 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:15:25.0561 5896 ShellHWDetection - ok
11:15:25.0623 5896 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:15:25.0654 5896 sisagp - ok
11:15:25.0691 5896 [ 73838461F11FC7DAEE7922C945B2D74F ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSGB6.sys
11:15:25.0723 5896 SiSGbeLH - ok
11:15:25.0753 5896 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:15:25.0787 5896 SiSRaid2 - ok
11:15:25.0810 5896 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:15:25.0843 5896 SiSRaid4 - ok
11:15:25.0979 5896 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:15:26.0330 5896 slsvc - ok
11:15:26.0369 5896 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:15:26.0536 5896 SLUINotify - ok
11:15:26.0576 5896 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:15:26.0622 5896 Smb - ok
11:15:26.0682 5896 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
11:15:26.0824 5896 smserial - ok
11:15:26.0874 5896 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:15:26.0994 5896 SNMPTRAP - ok
11:15:27.0071 5896 [ A709DFA1674C1ED61EF7B5F29B38EEB1 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
11:15:27.0182 5896 SNP2UVC - ok
11:15:27.0210 5896 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:15:27.0245 5896 spldr - ok
11:15:27.0270 5896 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:15:27.0398 5896 Spooler - ok
11:15:27.0451 5896 [ A80CD850D69D996C832BEA37E3A6AA1E ] sptd C:\Windows\system32\Drivers\sptd.sys
11:15:27.0465 5896 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: A80CD850D69D996C832BEA37E3A6AA1E
11:15:27.0472 5896 sptd ( LockedFile.Multi.Generic ) - warning
11:15:27.0472 5896 sptd - detected LockedFile.Multi.Generic (1)
11:15:27.0550 5896 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:15:27.0606 5896 srv - ok
11:15:27.0628 5896 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:15:27.0709 5896 srv2 - ok
11:15:27.0736 5896 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:15:27.0777 5896 srvnet - ok
11:15:27.0806 5896 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:15:27.0964 5896 SSDPSRV - ok
11:15:28.0014 5896 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:15:28.0166 5896 SstpSvc - ok
11:15:28.0199 5896 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:15:28.0376 5896 stisvc - ok
11:15:28.0406 5896 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:15:28.0440 5896 swenum - ok
11:15:28.0490 5896 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:15:28.0745 5896 swprv - ok
11:15:28.0776 5896 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:15:28.0831 5896 Symc8xx - ok
11:15:28.0866 5896 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:15:28.0895 5896 Sym_hi - ok
11:15:28.0932 5896 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:15:28.0961 5896 Sym_u3 - ok
11:15:29.0004 5896 [ 55F6E55CC2430CA8713387106FA79817 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:15:29.0035 5896 SynTP - ok
11:15:29.0085 5896 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:15:29.0309 5896 SysMain - ok
11:15:29.0365 5896 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:15:29.0494 5896 TabletInputService - ok
11:15:29.0633 5896 [ 0C3B2A9C4BD2DD9A6C2E4084314DD719 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
11:15:29.0660 5896 taphss - ok
11:15:29.0752 5896 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:15:29.0908 5896 TapiSrv - ok
11:15:29.0940 5896 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:15:30.0091 5896 TBS - ok
11:15:30.0188 5896 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:15:30.0305 5896 Tcpip - ok
11:15:30.0346 5896 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:15:30.0412 5896 Tcpip6 - ok
11:15:30.0450 5896 [ CD21572F83F7EC6E2C20C465967BEDD9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:15:30.0499 5896 tcpipreg - ok
11:15:30.0533 5896 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:15:30.0597 5896 TDPIPE - ok
11:15:30.0617 5896 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:15:30.0678 5896 TDTCP - ok
11:15:30.0722 5896 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:15:30.0773 5896 tdx - ok
11:15:30.0790 5896 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:15:30.0830 5896 TermDD - ok
11:15:30.0877 5896 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:15:31.0070 5896 TermService - ok
11:15:31.0113 5896 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:15:31.0242 5896 Themes - ok
11:15:31.0309 5896 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:15:31.0418 5896 THREADORDER - ok
11:15:31.0524 5896 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:15:31.0671 5896 TrkWks - ok
11:15:31.0720 5896 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:15:31.0767 5896 TrustedInstaller - ok
11:15:31.0808 5896 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:15:31.0860 5896 tssecsrv - ok
11:15:31.0878 5896 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:15:31.0926 5896 tunmp - ok
11:15:31.0949 5896 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:15:31.0995 5896 tunnel - ok
11:15:32.0020 5896 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:15:32.0050 5896 uagp35 - ok
11:15:32.0082 5896 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:15:32.0130 5896 udfs - ok
11:15:32.0177 5896 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:15:32.0317 5896 UI0Detect - ok
11:15:32.0427 5896 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:15:32.0458 5896 uliagpkx - ok
11:15:32.0496 5896 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:15:32.0537 5896 uliahci - ok
11:15:32.0555 5896 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:15:32.0585 5896 UlSata - ok
11:15:32.0603 5896 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:15:32.0634 5896 ulsata2 - ok
11:15:32.0658 5896 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:15:32.0716 5896 umbus - ok
11:15:32.0736 5896 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:15:32.0882 5896 upnphost - ok
11:15:32.0913 5896 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
11:15:32.0947 5896 USBAAPL - ok
11:15:32.0979 5896 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:15:33.0023 5896 usbccgp - ok
11:15:33.0065 5896 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:15:33.0151 5896 usbcir - ok
11:15:33.0184 5896 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:15:33.0227 5896 usbehci - ok
11:15:33.0250 5896 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:15:33.0296 5896 usbhub - ok
11:15:33.0325 5896 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:15:33.0387 5896 usbohci - ok
11:15:33.0419 5896 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:15:33.0480 5896 usbprint - ok
11:15:33.0521 5896 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:15:33.0564 5896 usbscan - ok
11:15:33.0592 5896 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:15:33.0651 5896 USBSTOR - ok
11:15:33.0684 5896 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:15:33.0744 5896 usbuhci - ok
11:15:33.0770 5896 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:15:33.0823 5896 usbvideo - ok
11:15:33.0848 5896 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:15:33.0981 5896 UxSms - ok
11:15:34.0020 5896 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:15:34.0175 5896 vds - ok
11:15:34.0190 5896 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:15:34.0241 5896 vga - ok
11:15:34.0259 5896 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:15:34.0328 5896 VgaSave - ok
11:15:34.0354 5896 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:15:34.0387 5896 viaagp - ok
11:15:34.0428 5896 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:15:34.0480 5896 ViaC7 - ok
11:15:34.0498 5896 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
11:15:34.0535 5896 viaide - ok
11:15:34.0560 5896 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:15:34.0591 5896 volmgr - ok
11:15:34.0635 5896 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:15:34.0676 5896 volmgrx - ok
11:15:34.0726 5896 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:15:34.0762 5896 volsnap - ok
11:15:34.0792 5896 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:15:34.0825 5896 vsmraid - ok
11:15:34.0876 5896 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:15:35.0122 5896 VSS - ok
11:15:35.0159 5896 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:15:35.0298 5896 W32Time - ok
11:15:35.0415 5896 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:15:35.0517 5896 WacomPen - ok
11:15:35.0555 5896 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:15:35.0617 5896 Wanarp - ok
11:15:35.0634 5896 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:15:35.0692 5896 Wanarpv6 - ok
11:15:35.0731 5896 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
11:15:35.0793 5896 WcesComm - ok
11:15:35.0840 5896 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:15:36.0041 5896 wcncsvc - ok
11:15:36.0084 5896 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:15:36.0243 5896 WcsPlugInService - ok
11:15:36.0309 5896 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
11:15:36.0344 5896 Wd - ok
11:15:36.0391 5896 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:15:36.0457 5896 Wdf01000 - ok
11:15:36.0496 5896 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:15:36.0661 5896 WdiServiceHost - ok
11:15:36.0668 5896 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:15:36.0823 5896 WdiSystemHost - ok
11:15:36.0919 5896 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:15:37.0072 5896 WebClient - ok
11:15:37.0114 5896 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:15:37.0254 5896 Wecsvc - ok
11:15:37.0294 5896 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:15:37.0439 5896 wercplsupport - ok
11:15:37.0506 5896 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:15:37.0649 5896 WerSvc - ok
11:15:37.0749 5896 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:15:37.0779 5896 WinDefend - ok
11:15:37.0797 5896 WinHttpAutoProxySvc - ok
11:15:37.0860 5896 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:15:37.0919 5896 Winmgmt - ok
11:15:38.0004 5896 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:15:38.0173 5896 WinRM - ok
11:15:38.0245 5896 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS
11:15:38.0282 5896 winusb - ok
11:15:38.0332 5896 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:15:38.0537 5896 Wlansvc - ok
11:15:38.0642 5896 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:15:38.0712 5896 wlidsvc - ok
11:15:38.0763 5896 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:15:38.0820 5896 WmiAcpi - ok
11:15:38.0863 5896 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:15:38.0929 5896 wmiApSrv - ok
11:15:39.0015 5896 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:15:39.0082 5896 WMPNetworkSvc - ok
11:15:39.0128 5896 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:15:39.0296 5896 WPCSvc - ok
11:15:39.0334 5896 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:15:39.0474 5896 WPDBusEnum - ok
11:15:39.0513 5896 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:15:39.0548 5896 WpdUsb - ok
11:15:39.0665 5896 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:15:39.0708 5896 WPFFontCache_v0400 - ok
11:15:39.0734 5896 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:15:39.0788 5896 ws2ifsl - ok
11:15:39.0825 5896 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
11:15:39.0991 5896 wscsvc - ok
11:15:40.0002 5896 WSearch - ok
11:15:40.0091 5896 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:15:40.0304 5896 wuauserv - ok
11:15:40.0355 5896 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:15:40.0408 5896 WudfPf - ok
11:15:40.0449 5896 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:15:40.0494 5896 WUDFRd - ok
11:15:40.0544 5896 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:15:40.0707 5896 wudfsvc - ok
11:15:40.0754 5896 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
11:15:40.0843 5896 yukonwlh - ok
11:15:40.0866 5896 ================ Scan global ===============================
11:15:40.0898 5896 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:15:40.0939 5896 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:15:41.0077 5896 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:15:41.0315 5896 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:15:41.0426 5896 [Global] - ok
11:15:41.0433 5896 ============================================================
11:15:41.0433 5896 Scan finished
11:15:41.0433 5896 ============================================================
11:15:41.0460 6032 Detected object count: 6
11:15:41.0460 6032 Actual detected object count: 6
11:19:18.0006 6032 ADSMService ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0006 6032 ADSMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0011 6032 ASLDRService ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0011 6032 ASLDRService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0012 6032 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0012 6032 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0017 6032 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0017 6032 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0021 6032 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0021 6032 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0026 6032 sptd ( LockedFile.Multi.Generic ) - skipped by user
11:19:18.0026 6032 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
|
|
11.03.2013, 11:33
| #33 |
  | Coupondropdown Hi,
__________________TDSS-Log ist ok... Bitte noch den Rest posten... chris
__________________ |
|
11.03.2013, 13:34
| #34 |
| | Coupondropdown mam lies er nicht druchlaufen und hat wieder den laptop neu gestartet! |
|
11.03.2013, 15:27
| #35 |
| | Coupondropdown Hi, gab es eine Meldung oder Bluescreen (wenn ja, welche DLL/Treiber). Prüfe die Ereignisanzeige (Systemsteuerung -> Verwaltung -> Computerverwaltung), dort unter System... http://windows.microsoft.com/de-de/w...n-event-viewer Poste noch das Log von der Bootblockprüfung (aswMBR)... chris
__________________  Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden  ) |
|
11.03.2013, 16:59
| #36 | |
| | CoupondropdownZitat:
was soll ich bei der Ereignisanzeige posten? |
|
11.03.2013, 20:08
| #37 |
| | Coupondropdown das kommt beim quickscan vom aswMBR |
|
11.03.2013, 23:41
| #38 |
| | CoupondropdownCode:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.03.10.05 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 ASUS :: FUXI [Administrator] 11.03.2013 21:37:41 mbam-log-2013-03-11 (21-37-41).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 383698 Laufzeit: 2 Stunde(n), 2 Minute(n), 12 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
13.03.2013, 11:59
| #39 |
| | Coupondropdown Hm, hast Du aswmbr als Admin laufen lassen? Gut, versuchen wir mit einem anderen Tool dem Bootblock zuleibe zu rücken: MBR-Check Lade Dir http://ad13.geekstogo.com/MBRCheck.exe und speichere die Datei auf dem Desktop.
Aus der Ereignisanzeige die Fehlermeldungen posten... chris
__________________ Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden ) |
|
13.03.2013, 17:58
| #40 |
| | Coupondropdown ich kann das programm nur als Admin laufen lassen. MBR-Check Code:
ATTFilter MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: PEGATRON CORPORATION
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: ASUSTeK Computer Inc.
System Product Name: X71SL
Logical Drives Mask: 0x0000001c
Kernel Drivers (total 156):
0x82848000 \SystemRoot\system32\ntkrnlpa.exe
0x82815000 \SystemRoot\system32\hal.dll
0x8040B000 \SystemRoot\system32\kdcom.dll
0x80412000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80482000 \SystemRoot\system32\PSHED.dll
0x80493000 \SystemRoot\system32\BOOTVID.dll
0x8049B000 \SystemRoot\system32\CLFS.SYS
0x804DC000 \SystemRoot\system32\CI.dll
0x8060D000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8068E000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x8069C000 \SystemRoot\System32\Drivers\sppu.sys
0x8079D000 \SystemRoot\System32\Drivers\WMILIB.SYS
0x807A6000 \SystemRoot\System32\Drivers\SCSIPORT.SYS
0x82E0F000 \SystemRoot\system32\drivers\acpi.sys
0x82E55000 \SystemRoot\system32\drivers\msisadrv.sys
0x82E5D000 \SystemRoot\system32\drivers\pci.sys
0x82E84000 \SystemRoot\System32\drivers\partmgr.sys
0x82E94000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x82E97000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x82EA1000 \SystemRoot\system32\drivers\volmgr.sys
0x82EB0000 \SystemRoot\System32\drivers\volmgrx.sys
0x82EFA000 \SystemRoot\system32\drivers\pciide.sys
0x82F01000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x82F0F000 \SystemRoot\System32\drivers\mountmgr.sys
0x82F1F000 \SystemRoot\system32\drivers\atapi.sys
0x82F27000 \SystemRoot\system32\drivers\ataport.SYS
0x82F45000 \SystemRoot\system32\drivers\fltmgr.sys
0x82F77000 \SystemRoot\system32\drivers\fileinfo.sys
0x82F87000 \SystemRoot\system32\DRIVERS\MpFilter.sys
0x82FAF000 \SystemRoot\System32\Drivers\AsDsm.sys
0x82FB9000 \SystemRoot\system32\DRIVERS\lullaby.sys
0x8AA0F000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8AA81000 \SystemRoot\system32\drivers\ndis.sys
0x8AB8C000 \SystemRoot\system32\drivers\msrpc.sys
0x8ABB7000 \SystemRoot\system32\drivers\NETIO.SYS
0x8AC0F000 \SystemRoot\System32\drivers\tcpip.sys
0x8ACFC000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8AE05000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8AF15000 \SystemRoot\system32\drivers\volsnap.sys
0x8AF4E000 \SystemRoot\System32\Drivers\spldr.sys
0x8AF56000 \SystemRoot\System32\Drivers\mup.sys
0x8AF65000 \SystemRoot\System32\drivers\ecache.sys
0x8AF8C000 \SystemRoot\system32\drivers\disk.sys
0x8AF9D000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x8AFBE000 \SystemRoot\system32\drivers\crcdisk.sys
0x8AFE7000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8AFF2000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8AD17000 \SystemRoot\system32\DRIVERS\ATKACPI.sys
0x8AD1F000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8F803000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x90159000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x9015B000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8AD2E000 \SystemRoot\System32\drivers\watchdog.sys
0x8AD3A000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8AD4D000 \SystemRoot\system32\DRIVERS\kbfiltr.sys
0x8AD55000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8AD60000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x901FB000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8AD8F000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8AD9A000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x8ADA4000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8ADE2000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x82FC1000 \SystemRoot\system32\DRIVERS\SiSGB6.sys
0x82FD1000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8ADF1000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x90200000 \SystemRoot\system32\DRIVERS\athr.sys
0x90325000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x90335000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x90343000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x9035D000 \SystemRoot\system32\DRIVERS\rimmptsk.sys
0x9036E000 \SystemRoot\system32\DRIVERS\rimsptsk.sys
0x90382000 \SystemRoot\system32\DRIVERS\rixdptsk.sys
0x9060D000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x9069A000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x9069E000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x906CD000 \SystemRoot\system32\DRIVERS\storport.sys
0x9070E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x90719000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x90730000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x9073B000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x9075E000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x9076D000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x90781000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x90796000 \SystemRoot\system32\DRIVERS\termdd.sys
0x907A6000 \SystemRoot\system32\DRIVERS\swenum.sys
0x907A8000 \SystemRoot\system32\DRIVERS\ks.sys
0x907D2000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x907E5000 \SystemRoot\system32\DRIVERS\umbus.sys
0x805BC000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x903D4000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x90A0D000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x90C1B000 \SystemRoot\system32\drivers\portcls.sys
0x90C48000 \SystemRoot\system32\drivers\drmk.sys
0x90E0D000 \SystemRoot\system32\DRIVERS\snp2uvc.sys
0x90FBE000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x90FCB000 \SystemRoot\system32\DRIVERS\sncduvc.SYS
0x90FD2000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x90FDB000 \SystemRoot\System32\Drivers\Null.SYS
0x90FE2000 \SystemRoot\System32\Drivers\Beep.SYS
0x90FE9000 \SystemRoot\System32\drivers\vga.sys
0x90C6D000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x90FF5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x90E00000 \SystemRoot\system32\drivers\rdpencdd.sys
0x90C8E000 \SystemRoot\System32\Drivers\Msfs.SYS
0x90C99000 \SystemRoot\System32\Drivers\Npfs.SYS
0x90CA7000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x90CB0000 \SystemRoot\system32\DRIVERS\tdx.sys
0x90CC6000 \SystemRoot\system32\DRIVERS\smb.sys
0x90CDA000 \SystemRoot\system32\drivers\afd.sys
0x90D22000 \SystemRoot\System32\DRIVERS\netbt.sys
0x90D54000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x90D5D000 \SystemRoot\system32\DRIVERS\pacer.sys
0x90D73000 \SystemRoot\system32\DRIVERS\netbios.sys
0x90D81000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x90D94000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x90DD0000 \SystemRoot\system32\drivers\nsiproxy.sys
0x90DDA000 \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E8AFB87C-3E54-499A-907F-93E55E7A16E1}\MpKsl5701e724.sys
0x90DE0000 \SystemRoot\System32\Drivers\dfsc.sys
0x90A00000 \SystemRoot\System32\Drivers\crashdmp.sys
0x907F2000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x90DF7000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x9B620000 \SystemRoot\System32\win32k.sys
0x90600000 \SystemRoot\System32\drivers\Dxapi.sys
0x9B840000 \SystemRoot\System32\TSDDD.dll
0x9B860000 \SystemRoot\System32\cdd.dll
0x9B870000 \SystemRoot\System32\ATMFD.DLL
0x8AFC7000 \SystemRoot\system32\drivers\luafv.sys
0x90E08000 \??\C:\Windows\system32\drivers\mbam.sys
0x82FE9000 \SystemRoot\system32\drivers\WudfPf.sys
0xA2E04000 \SystemRoot\system32\drivers\spsys.sys
0xA2EB4000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA2EC4000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA2EEE000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA2EF8000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA2F0B000 \??\C:\Program Files\ATKGFNEX\ASMMAP.sys
0xA2F12000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xA2F1B000 \SystemRoot\system32\drivers\HTTP.sys
0xA2F88000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA2FA5000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA2FBE000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA2FD3000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xA5006000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xA503F000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xA5057000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA507F000 \SystemRoot\System32\DRIVERS\srv.sys
0xA50CE000 \SystemRoot\system32\DRIVERS\atksgt.sys
0xA5111000 \SystemRoot\system32\DRIVERS\lirsgt.sys
0xA5116000 \SystemRoot\system32\DRIVERS\NisDrvWFP.sys
0xA5A0E000 \SystemRoot\system32\drivers\peauth.sys
0xA5AEC000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA5AF6000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA5B02000 \SystemRoot\System32\drivers\dgderdrv.sys
0xA5B0B000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xA5B21000 \??\C:\Users\ASUS\AppData\Local\Temp\aswMBR.sys
0xA5B99000 \SystemRoot\system32\DRIVERS\monitor.sys
0x778F0000 \Windows\System32\ntdll.dll
Processes (total 88):
0 System Idle Process
4 System
480 C:\Windows\System32\smss.exe
612 csrss.exe
664 C:\Windows\System32\wininit.exe
676 csrss.exe
708 C:\Windows\System32\services.exe
740 C:\Windows\System32\lsass.exe
764 C:\Windows\System32\lsm.exe
892 C:\Windows\System32\svchost.exe
936 C:\Windows\System32\nvvsvc.exe
964 C:\Windows\System32\svchost.exe
1004 C:\Windows\System32\winlogon.exe
1036 C:\Program Files\Microsoft Security Client\MsMpEng.exe
1104 C:\Windows\System32\svchost.exe
1180 C:\Windows\System32\svchost.exe
1244 C:\Windows\System32\svchost.exe
1308 C:\Windows\System32\audiodg.exe
1332 C:\Windows\System32\svchost.exe
1352 C:\Windows\System32\SLsvc.exe
1420 C:\Windows\System32\nvvsvc.exe
1468 C:\Windows\System32\svchost.exe
1648 C:\Windows\System32\svchost.exe
1764 C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
1780 C:\Program Files\ATK Hotkey\AsLdrSrv.exe
1792 C:\Program Files\ATKGFNEX\GFNEXSrv.exe
1828 C:\Windows\System32\wlanext.exe
1900 C:\Windows\System32\spoolsv.exe
1948 C:\Windows\System32\svchost.exe
424 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
620 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1576 C:\Program Files\Bonjour\mDNSResponder.exe
1684 C:\Windows\System32\dgdersvc.exe
1456 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
2056 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
2072 C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe
2120 C:\Windows\System32\svchost.exe
2148 C:\Windows\System32\rundll32.exe
2168 C:\Windows\System32\svchost.exe
2220 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
2564 C:\Windows\System32\taskeng.exe
2768 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
3536 C:\Windows\System32\svchost.exe
3580 C:\Windows\System32\svchost.exe
3612 C:\Program Files\Windows Media Player\wmpnetwk.exe
2640 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
2860 C:\Windows\System32\dwm.exe
160 C:\Windows\explorer.exe
2952 C:\Program Files\ATK Hotkey\HControl.exe
816 C:\Program Files\ATK Hotkey\MsgTranAgt.exe
3104 C:\Program Files\Wireless Console 2\wcourier.exe
3008 C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
2948 C:\Program Files\P4G\BatteryLife.exe
2976 C:\Program Files\ASUS\Splendid\ACMON.exe
2700 ACEngSvr.exe
2844 C:\Program Files\ATK Hotkey\ATKOSD.exe
3168 C:\Program Files\ATK Hotkey\KBFiltr.exe
3280 C:\Program Files\ATK Hotkey\WDC.exe
3288 C:\Windows\System32\taskeng.exe
2248 C:\Windows\System32\taskeng.exe
3600 C:\Program Files\ASUS\ASUS Live Update\ALU.exe
3664 C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
3496 C:\Program Files\ATK Hotkey\HControlUser.exe
2336 C:\Program Files\ATKOSD2\ATKOSD2.exe
2676 C:\Windows\RtHDVCpl.exe
3544 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3384 C:\Program Files\ASUS\ATK Media\DMedia.exe
1608 C:\Program Files\Microsoft Security Client\msseces.exe
3956 C:\Windows\WindowsMobile\wmdc.exe
3716 C:\Program Files\iTunes\iTunesHelper.exe
3352 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
1604 C:\Program Files\Common Files\Java\Java Update\jusched.exe
3252 C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
4008 C:\Users\ASUS\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
832 C:\Windows\System32\wuauclt.exe
2904 C:\Program Files\iPod\bin\iPodService.exe
3532 C:\Program Files\Mozilla Firefox\firefox.exe
2836 C:\Program Files\Mozilla Firefox\plugin-container.exe
4508 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
5128 C:\Program Files\McAfee\SiteAdvisor\saUI.exe
2972 C:\Program Files\Mozilla Firefox\plugin-container.exe
4936 C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
4576 C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
4152 C:\Program Files\Windows Media Player\wmpnscfg.exe
5088 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
4840 C:\Program Files\Mozilla Firefox\plugin-container.exe
4732 C:\Users\ASUS\Desktop\MBRCheck.exe
3924 C:\Windows\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x0000002c`b6d00000 (NTFS)
PhysicalDrive0 Model Number: HitachiHTS543232L9A300, Rev: FB4OC40C
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979
Done!
|
|
14.03.2013, 08:46
| #41 |
| | Coupondropdown Hi, ist i. O. Eine Datei sollten wir uns näher ansehen: Dateien Online überprüfen lassen:
Code:
ATTFilter C:\Windows\System32\dgdersvc.exe
chris
__________________ Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden ) |
|
14.03.2013, 09:31
| #42 |
| | CoupondropdownCode:
ATTFilter SHA256: e4309f7866d27064f01447b30bb1aa468b4794674e9f0cda04c0525fa83db1cc
SHA1: fe510793e5a0140efc5778faebd9b79527646820
MD5: 10b8f89d146d0e20b1284d47bb4ec6c9
Dateigröße: 93.3 KB ( 95568 bytes )
Dateiname: dgdersvc.exe
Datei-Typ: Win32 EXE
Erkennungsrate: 0 / 45
Analyse-Datum: 2013-03-14 08:27:45 UTC ( vor 1 Minute )
1
0
Weniger Details
Analyse
Zusätzliche Informationen
Kommentare
Bewertungen
Antivirus Ergebnis Aktualisierung
Agnitum - 20130313
AhnLab-V3 - 20130313
AntiVir - 20130314
Antiy-AVL - 20130313
Avast - 20130314
AVG - 20130314
BitDefender - 20130314
ByteHero - 20130313
CAT-QuickHeal - 20130314
ClamAV - 20130314
Commtouch - 20130313
Comodo - 20130314
DrWeb - 20130314
Emsisoft - 20130314
eSafe - 20130313
ESET-NOD32 - 20130314
F-Prot - 20130314
F-Secure - 20130314
Fortinet - 20130314
GData - 20130314
Ikarus - 20130314
Jiangmin - 20130314
K7AntiVirus - 20130313
Kaspersky - 20130313
Kingsoft - 20130311
Malwarebytes - 20130314
McAfee - 20130314
McAfee-GW-Edition - 20130314
Microsoft - 20130314
MicroWorld-eScan - 20130314
NANO-Antivirus - 20130314
Norman - 20130313
nProtect - 20130313
Panda - 20130313
PCTools - 20130314
Sophos - 20130314
SUPERAntiSpyware - 20130314
Symantec - 20130314
TheHacker - 20130314
TotalDefense - 20130313
TrendMicro - 20130314
TrendMicro-HouseCall - 20130314
VBA32 - 20130313
VIPRE - 20130314
ViRobot - 20130314
Code:
ATTFilter ssdeep
1536:1QT0LBrww3ptYH7CAQFbkUxnqlbg3rciQzoRfkyTtaBqPh:o+igbZqviuKf/TtaB0
TrID
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
ExifTool
SubsystemVersion.........: 4.0
InitializedDataSize......: 28672
ImageVersion.............: 0.0
ProductName..............: Device Error Recovery SDK
FileVersionNumber........: 1.3.950.0
UninitializedDataSize....: 0
LanguageCode.............: Korean
FileFlagsMask............: 0x0017
CharacterSet.............: Unicode
LinkerVersion............: 8.0
FileOS...................: Win32
MIMEType.................: application/octet-stream
LegalCopyright...........: Devguru Co., Ltd. All rights reserved.
FileVersion..............: 1, 3, 950, 0
TimeStamp................: 2010:07:21 02:58:32+01:00
FileType.................: Win32 EXE
PEType...................: PE32
ProductVersion...........: 1, 3, 950, 0
FileDescription..........: Device Error Recovery SDK(x86)
OSVersion................: 4.0
OriginalFilename.........: dgdersvc.exe
Subsystem................: Windows command line
MachineType..............: Intel 386 or later, and compatibles
CompanyName..............: Devguru Co., Ltd.
CodeSize.................: 57344
FileSubtype..............: 0
ProductVersionNumber.....: 1.3.950.0
EntryPoint...............: 0x3ba2
ObjectFileType...........: Dynamic link library
Sigcheck
publisher................: Devguru Co., Ltd.
product..................: Device Error Recovery SDK
copyright................: Devguru Co., Ltd. All rights reserved.
file version.............: 1, 3, 950, 0
original name............: dgdersvc.exe
signing date.............: 2:58 AM 7/21/2010
signers..................: SAMSUNG ELECTRONICS CO.,LTD.; VeriSign Class 3 Code Signing 2004 CA; Class 3 Public Primary Certification Authority
description..............: Device Error Recovery SDK(x86)
Portable Executable structural information
Compilation timedatestamp.....: 2010-07-21 01:58:32
Target machine................: Intel 386 or later processors and compatible processors
Entry point address...........: 0x00003BA2
PE Sections...................:
Name Virtual Address Virtual Size Raw Size Entropy MD5
.text 4096 57150 57344 6.61 35933df3cf2ba9b8c7220abd44065dd8
.rdata 61440 14870 16384 4.90 6de95fa22134f5028b7c4c830d9eafa2
.data 77824 382856 8192 1.41 4cb1a3549f2e18c74cbf29b517aad12f
.rsrc 462848 1348 4096 4.11 e957ff4dccbd725441fa060e7c48dc1c
PE Imports....................:
[[ADVAPI32.dll]]
CloseServiceHandle, SetServiceStatus, RegisterServiceCtrlHandlerW, OpenSCManagerW, OpenServiceW, StartServiceCtrlDispatcherW, DeleteService, CreateServiceW
[[SHELL32.dll]]
SHGetFolderPathW, ShellExecuteW, SHCreateDirectoryExW
[[KERNEL32.dll]]
GetStdHandle, GetConsoleOutputCP, WaitForSingleObject, HeapDestroy, GetLocalTime, FreeEnvironmentStringsA, DeleteCriticalSection, GetCurrentProcess, GetConsoleMode, GetLocaleInfoA, FreeEnvironmentStringsW, SetStdHandle, GetFileTime, GetCPInfo, GetStringTypeA, InterlockedExchange, FindResourceExW, GetSystemTimeAsFileTime, HeapReAlloc, GetStringTypeW, GetOEMCP, InitializeCriticalSection, LoadResource, InterlockedDecrement, SetLastError, ReadConsoleInputA, GetModuleFileNameW, IsDebuggerPresent, HeapAlloc, FlushFileBuffers, GetModuleFileNameA, UnhandledExceptionFilter, TlsGetValue, MultiByteToWideChar, SetFilePointer, SetUnhandledExceptionFilter, TerminateProcess, WriteConsoleA, GlobalAlloc, GetCurrentThreadId, LeaveCriticalSection, WriteConsoleW, HeapFree, EnterCriticalSection, SetHandleCount, SetEvent, QueryPerformanceCounter, GetTickCount, TlsAlloc, GetVersionExA, LoadLibraryA, RtlUnwind, GetStartupInfoA, GetProcAddress, GetProcessHeap, WriteFile, GetFileSizeEx, CreateEventW, CreateFileW, GetFileType, TlsSetValue, CreateFileA, ExitProcess, InterlockedIncrement, GetLastError, LCMapStringW, HeapCreate, GlobalFree, GetConsoleCP, LCMapStringA, GetEnvironmentStringsW, SizeofResource, GetCurrentProcessId, LockResource, GetCommandLineW, WideCharToMultiByte, HeapSize, GetCommandLineA, InterlockedCompareExchange, RaiseException, TlsFree, GetModuleHandleA, CloseHandle, GetACP, GetEnvironmentStrings, IsValidCodePage, SetConsoleMode, FindResourceW, VirtualFree, Sleep, VirtualAlloc
[[dgderapi.dll]]
DGDERInstall, DGDERInitEngine, DGDERCloseEngine
[[USER32.dll]]
UnregisterClassA
PE Resources..................:
Resource type Number of resources
RT_MANIFEST 1
RT_VERSION 1
Resource language Number of resources
KOREAN 1
ENGLISH US 1
Zuerst entdeckt von VirusTotal
2010-09-08 04:19:30 UTC ( vor 2 Jahre, 6 Monate )
Zuletzt entdeckt von VirusTotal
2013-03-14 08:27:45 UTC ( vor 3 Minuten )
Dateinamen (max. 25)
smona130874070612811281392
SCHWAS9-L2-dgdersvc.exe
file-3096155_exe
dgdersvc.exe
dgdersvc.exe
dgdersvc.exe.vir
dgdersvc.ex_
dgdersvc.exe
file-1559778_exe
dgdersvc.exe
|
|
14.03.2013, 10:32
| #43 |
| | Coupondropdown Hi, sieht ok aus, wie ist der Stand (wie verhält sich der Rechner)... chris
__________________ Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden ) |
|
14.03.2013, 11:04
| #44 |
| | Coupondropdown Die werbung kommt noch immer und das windows update auch |
|
14.03.2013, 11:18
| #45 |
| | Coupondropdown werbung |
|
| Themen zu Coupondropdown |
| coupondropdown, malwarebytes, neu, problem, runtergeladen |
Linear-Darstellung
