| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Boo/Cidox.BWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
03.04.2014, 13:45
| #1 |
 |  Boo/Cidox.B Guten Tag, ich hab folgendes Problem, seid heute morgen postet mein Virenscanner (Avira) alle 5 Minuten, dass das Virus Boo/Cidox.B gefunden wurde. Ich habe Windows 7 64 Bit. Ich hoffe, dass mir jemand hier weiterhelfen kann und sage schonmal Danke =) |
|
03.04.2014, 15:11
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Boo/Cidox.B Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
03.04.2014, 15:42
| #3 |
| | Boo/Cidox.B Nein hab nur diese eine Meldung seid heute morgen =)
__________________FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Lender (administrator) on LENDER-PC on 03-04-2014 16:37:00
Running from C:\Users\Lender\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KDZOLK6U
Windows 7 Ultimate (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(The Within Network, LLC) C:\Windows\UnsignedThemesSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Realtek) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWlan.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Spotify Ltd) C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\Lender\AppData\Roaming\Spotify\spotify.exe
(Windows Net) C:\Users\Lender\AppData\Roaming\Windows Net Data\net.exe
(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Java\jre6\bin\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
() C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [] - [X]
HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1648264 2013-04-30] (Ask)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-09-17] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Java\jre6\bin\jusched.exe [149280 2013-03-28] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [ClockGen] - C:\Users\Lender\Documents\ClockGen.105\ClockGen.exe [816841 2014-01-11] (CPUID)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [Spotify Web Helper] - C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-14] (Spotify Ltd)
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [DataMgr] - C:\Users\Lender\AppData\Roaming\DataMgr\DataMgr.exe [168848 2013-06-18] (HTTO Group, Ltd.)
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [SSync] - C:\Users\Lender\AppData\Roaming\SSync\SSync.exe [36864 2013-04-10] ()
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [Spotify] - C:\Users\Lender\AppData\Roaming\Spotify\spotify.exe [6118400 2014-01-14] (Spotify Ltd)
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [SCheck] - C:\Users\Lender\AppData\Roaming\SCheck\SCheck.exe [37376 2013-12-09] ()
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [Snoozer] - C:\Users\Lender\AppData\Roaming\Snz\Snz.exe [1209625 2013-12-24] ()
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [Intermediate] - C:\Users\Lender\AppData\Roaming\Intermediate\Intermediate.exe [37376 2013-12-09] ()
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3588952 2014-03-14] (Electronic Arts)
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-3521068635-1729504877-123846293-1000\...\MountPoints2: {3b6f012e-9795-11e2-975e-806e6f6e6963} - G:\start.exe
Startup: C:\Users\Lender\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\net.lnk
ShortcutTarget: net.lnk -> C:\Users\Lender\AppData\Roaming\Windows Net Data\net.exe (Windows Net)
Startup: C:\Users\Lender\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6046368A7CB5CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
URLSearchHook: HKCU - UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
SearchScopes: HKCU - {113D7969-92A0-4611-8C14-83F41B761A58} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=AVR-4&o=APN10261&src=kw&q={searchTerms}&locale=de_DE&apn_ptnrs=^AGS&apn_dtid=^YYYYYY^YY^DE&apn_uid=761f83c9-dda9-4bb4-bb58-6d3d6f726af4&apn_sauid=8F736CBC-5204-45EB-AEF3-6E019BF03642
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://search.fbdownloader.com/search.php?channel=sfde203fbdgy21&q={searchTerms}
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\Lender\AppData\Roaming\Mozilla\Firefox\Profiles\ft5sdi2w.default-1383396152643
FF DefaultSearchEngine: Search
FF SelectedSearchEngine: Search
FF Homepage: google.de
FF Keyword.URL: hxxp://axisearch.com/search.php?channel=de&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\3.0.40818.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\Lender\AppData\Roaming\Mozilla\Firefox\Profiles\ft5sdi2w.default-1383396152643\searchplugins\fbdownloader_search.xml
FF SearchPlugin: C:\Users\Lender\AppData\Roaming\Mozilla\Firefox\Profiles\ft5sdi2w.default-1383396152643\searchplugins\search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: OfferMosquito - C:\Users\Lender\AppData\Roaming\Mozilla\Firefox\Profiles\ft5sdi2w.default-1383396152643\Extensions\om@offermosquito.com.xpi [2013-12-19]
FF Extension: Simple New Tab - C:\Users\Lender\AppData\Roaming\Mozilla\Firefox\Profiles\ft5sdi2w.default-1383396152643\Extensions\snt@dotlabs.co.xpi [2013-12-16]
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Extension: (Amazon-Icon) - C:\Users\Lender\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkcedibhemacmilmkpndpkoidlnmgngg [2014-02-01]
CHR Extension: (Google Wallet) - C:\Users\Lender\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-01]
CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Lender\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx [2013-11-02]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 RealtekCU; C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-12-15] (Avira Operations GmbH & Co. KG)
R3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1047144 2011-09-06] (Realtek Semiconductor Corporation )
R2 uxpatch; C:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
U3 JavaQuickStarterService;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-03 16:36 - 2014-04-03 16:37 - 00000000 ____D () C:\FRST
2014-04-01 20:55 - 2014-04-03 06:45 - 00000000 ____D () C:\Users\Lender\AppData\Roaming\Ahaxx
2014-04-01 20:55 - 2014-04-01 20:55 - 00000000 ____D () C:\Users\Lender\AppData\Roaming\Yboge
==================== One Month Modified Files and Folders =======
2014-04-03 16:37 - 2014-04-03 16:36 - 00000000 ____D () C:\FRST
2014-04-03 16:31 - 2009-07-14 06:45 - 00013536 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-03 16:31 - 2009-07-14 06:45 - 00013536 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-03 16:29 - 2009-07-14 19:58 - 00655802 _____ () C:\Windows\system32\perfh007.dat
2014-04-03 16:29 - 2009-07-14 19:58 - 00130434 _____ () C:\Windows\system32\perfc007.dat
2014-04-03 16:29 - 2009-07-14 07:13 - 01498506 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-03 16:27 - 2013-03-28 12:54 - 01104483 _____ () C:\Windows\WindowsUpdate.log
2014-04-03 16:25 - 2013-05-26 13:03 - 00000000 ____D () C:\Users\Lender\AppData\Roaming\Spotify
2014-04-03 16:25 - 2013-03-28 15:37 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-03 16:24 - 2014-02-01 15:42 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-03 16:23 - 2014-01-14 17:45 - 00000000 ____D () C:\Program Files (x86)\Origin
2014-04-03 16:23 - 2013-11-03 16:47 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-04-03 16:22 - 2014-02-01 15:42 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-03 16:22 - 2013-04-15 20:00 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-03 16:22 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-03 16:22 - 2009-07-14 06:51 - 00059612 _____ () C:\Windows\setupact.log
2014-04-03 15:18 - 2014-01-14 17:45 - 00000000 ____D () C:\ProgramData\Origin
2014-04-03 14:19 - 2014-02-01 15:42 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-03 14:19 - 2014-02-01 15:42 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-03 06:45 - 2014-04-01 20:55 - 00000000 ____D () C:\Users\Lender\AppData\Roaming\Ahaxx
2014-04-01 20:55 - 2014-04-01 20:55 - 00000000 ____D () C:\Users\Lender\AppData\Roaming\Yboge
2014-03-29 20:53 - 2013-05-25 13:37 - 00000000 ____D () C:\Users\UpdatusUser.Lender-PC
2014-03-24 00:31 - 2013-05-26 13:05 - 00000000 ____D () C:\Users\Lender\AppData\Local\Spotify
2014-03-16 12:12 - 2014-02-01 15:42 - 00002175 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-14 21:25 - 2013-03-28 15:37 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-14 21:25 - 2013-03-28 15:37 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-14 21:25 - 2013-03-28 15:37 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
Some content of TEMP:
====================
C:\Users\Lender\AppData\Local\Temp\avgnt.exe
C:\Users\Lender\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Lender\AppData\Local\Temp\sfextra.dll
C:\Users\Lender\AppData\Local\Temp\UpdateFlashPlayer_4e290d70.exe
C:\Users\Lender\AppData\Local\Temp\{542C3C79-B8B2-49D1-9260-BD896A5DB502}-33.0.1750.146_32.0.1700.107_chrome_updater.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-29 17:32
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Lender at 2014-04-03 16:37:41
Running from C:\Users\Lender\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KDZOLK6U
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.5 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.5.1.601 - Adobe Systems, Inc.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.15.26.0 - Ask.com) <==== ATTENTION
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Avira SearchFree Toolbar plus Web Protection Updater (HKCU\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.6.45268 - Ask.com) <==== ATTENTION
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)
DEUTSCHLAND SPIELT GAME CENTER (HKLM-x32\...\DSGPlayer) (Version: 1.2010.6.23 - INTENIUM GmbH)
Edimax Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4A0C-A916-1D12314F45EB}) (Version: 1.00.0184 - Edimax Technology Co.)
FBDownloader (HKCU\...\fbDownloader) (Version: 1.0 - HTTO Group Ltd)
FUSSBALL MANAGER 13 (HKLM-x32\...\{80AF0300-866F-400F-A350-D53E3C3E34E0}) (Version: 1.0.4.0 - Electronic Arts)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
iTunes (HKLM\...\{F73A118B-8271-47E2-8790-0C636B2539C5}) (Version: 11.1.0.126 - Apple Inc.)
Java(TM) 6 Update 16 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216016F0}) (Version: 6.0.160 - Sun Microsystems, Inc.)
Java(TM) 6 Update 17 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Java(TM) 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 26.0 (x86 de)) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 26.0 - Mozilla)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
NVIDIA 3D Vision Treiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Grafiktreiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
OpenOffice.org 3.1 (HKLM-x32\...\{99E862CC-6F69-4D39-99AA-DBF71BF3B585}) (Version: 3.1.9420 - OpenOffice.org)
Origin (HKLM-x32\...\Origin) (Version: 9.3.11.2762 - Electronic Arts, Inc.)
Pflanzen gegen Zombies (HKLM-x32\...\Pflanzen gegen Zombies) (Version: 0.0.0.0 - INTENIUM GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spotify (HKCU\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Tropico (HKLM-x32\...\{818FB39B-1A57-4F1B-A54D-391C33D6C586}) (Version: - )
Tropico: Paradise Island (HKLM-x32\...\{03E51094-E59C-11D5-873A-0050DABC2539}) (Version: - )
TuxGuitar (HKLM-x32\...\{03534DA5-2F88-4B8E-A978-849B979E1B8F}) (Version: 1.2 - Herac)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
WebSparkle 1.0.0 (HKLM\...\WebSparkle) (Version: 1.0.0 - WebSparkle)
Windows Utils (HKLM-x32\...\Windows Utils) (Version: - )
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
==================== Restore Points =========================
16-03-2014 10:54:16 Geplanter Prüfpunkt
29-03-2014 15:40:01 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {160D63DC-9882-4006-AB18-8A9BB64709CF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-01] (Google Inc.)
Task: {1ED2B695-A9FA-474C-B47F-3F03F8CAB900} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {63403F9F-4E04-4B28-A209-EEBA158087DC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {89A46667-F714-4EB8-A49A-6EE0D30298E1} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2013-04-30] () <==== ATTENTION
Task: {BD75205B-DBDA-4D42-B060-AE9D9F6060D4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-14] (Adobe Systems Incorporated)
Task: {C09DE3BA-3121-40B1-8254-B4511D750929} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {E45DDF41-11B6-4E1B-81D5-869604F25ED0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-01] (Google Inc.)
Task: {F710D2D7-E756-493B-8854-A1F31C2E4D0A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-05-25 13:36 - 2013-01-18 17:00 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-24 20:21 - 2014-01-14 15:42 - 00603648 _____ () C:\Users\Lender\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
2013-03-28 13:59 - 2013-01-25 10:25 - 00397704 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-01-28 14:08 - 2013-01-28 14:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-01-28 14:08 - 2013-01-28 14:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-05 17:50 - 2012-08-23 11:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2013-11-05 17:50 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-11-05 17:50 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2013-11-05 17:50 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2013-11-05 17:50 - 2012-04-03 18:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-05-16 16:56 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\EnumDevLib.dll
2013-05-26 13:05 - 2014-01-14 15:42 - 36967424 _____ () C:\Users\Lender\AppData\Roaming\Spotify\Data\libcef.dll
2009-08-18 15:54 - 2009-08-18 15:54 - 00970752 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2013-09-24 20:21 - 2014-01-14 15:42 - 00887808 _____ () C:\Users\Lender\AppData\Roaming\Spotify\Data\libglesv2.dll
2013-09-24 20:21 - 2014-01-14 15:42 - 00109568 _____ () C:\Users\Lender\AppData\Roaming\Spotify\Data\libegl.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:07F6D9E4
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
Name: OHCI-konformer Texas Instruments 1394-Hostcontroller
Description: OHCI-konformer Texas Instruments 1394-Hostcontroller
Class Guid: {6bdd1fc1-810f-11d0-bec7-08002be2092f}
Manufacturer: Texas Instruments
Service: 1394ohci
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/03/2014 02:36:12 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Die Schattenkopie kann nicht zugesichert werden - Vorgang hat das Zeitlimit überschritten.
Fehlerkontext: DeviceIoControl(\\?\Volume{3b6f0128-9795-11e2-975e-806e6f6e6963} - 0000000000000130,0x0053c010,00000000001BD4E0,0,00000000001BC4D0,4096,[0]).
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/03/2014 02:35:09 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen einer Routine auf einem Volumeschattenkopieanbieter "{b5946137-7b9f-4925-af80-51abd60b20d5}" ist ein Fehler aufgetreten. Routinedetails PostCommitSnapshots({2e60a392-fdb7-4771-aa51-8edec8c5094d}, 1) [hr = 0x80042302, Unerwarteter Fehler bei einer Komponente des Volumeschattenkopie-Diensts.
Weitere Informationen finden Sie im Anwendungsereignisprotokoll.
].
Vorgang:
Asynchroner Vorgang wird ausgeführt
Kontext:
Aktueller Status: DoSnapshotSet
Error: (04/03/2014 02:35:09 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "bad state 6" ist ein unerwarteter Fehler aufgetreten. hr = 0x8000ffff, Schwerwiegender Fehler
.
Vorgang:
PostCommitSnapshots wird verarbeitet
Kontext:
Ausführungskontext: System Provider
Error: (04/03/2014 02:35:09 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Die Schattenkopie kann nicht zugesichert werden - Vorgang hat das Zeitlimit überschritten.
Fehlerkontext: DeviceIoControl(\\?\Volume{3b6f0128-9795-11e2-975e-806e6f6e6963} - 0000000000000100,0x0053c010,00000000001BB4C0,0,00000000001BA4B0,4096,[0]).
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/03/2014 02:17:40 PM) (Source: VSS) (User: )
Description: Volumeschattenkopie-Dienstfehler: Die Schattenkopie kann nicht zugesichert werden - Vorgang hat das Zeitlimit überschritten.
Fehlerkontext: DeviceIoControl(\\?\Volume{3b6f0128-9795-11e2-975e-806e6f6e6963} - 0000000000000100,0x0053c010,00000000001B5C40,0,00000000001B6C50,4096,[0]).
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/01/2014 05:13:53 PM) (Source: Application Hang) (User: )
Description: Programm chrome.exe, Version 33.0.1750.154 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1d9c
Startzeit: 01cf4dbcb5570090
Endzeit: 13
Anwendungspfad: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
Berichts-ID: 384fa061-b9b0-11e3-a634-00192158913e
Error: (04/01/2014 05:13:22 PM) (Source: Application Hang) (User: )
Description: Programm spotify.exe, Version 0.9.7.16 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 630
Startzeit: 01cf4da87be3aa20
Endzeit: 107
Anwendungspfad: C:\Users\Lender\AppData\Roaming\Spotify\spotify.exe
Berichts-ID: 2588f491-b9b0-11e3-a634-00192158913e
Error: (03/15/2014 02:56:00 AM) (Source: Application Hang) (User: )
Description: Programm iexplore.exe, Version 9.0.8112.16476 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: bdc
Startzeit: 01cf3fe90a4b61e0
Endzeit: 17
Anwendungspfad: C:\Program Files (x86)\Internet Explorer\iexplore.exe
Berichts-ID: 79b648d9-abdc-11e3-93fc-00192158913e
Error: (03/13/2014 09:34:08 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 9.0.8112.16476, Zeitstempel: 0x5126e7ac
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7600.16915, Zeitstempel: 0x4ec49d10
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00032c86
ID des fehlerhaften Prozesses: 0xbec
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (01/01/2006 01:05:18 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Extrahieren der Drittanbieterstammliste aus der automatischen Aktualisierungs-CAB-Datei bei <hxxp://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>. Fehler: Ein erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
.
System errors:
=============
Error: (04/03/2014 04:22:37 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 03.04.2014 um 15:25:19 unerwartet heruntergefahren.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 107.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Eine SSL 3.0-Verbindungsanforderung wurde von einer Remoteclientanwendung übermittelt, jedoch werden keine der Verschlüsselungssammlungen, die von der Clientanwendung unterstützt werden, vom Server unterstützt. Fehler bei der SSL-Verbindungsanforderung.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 107.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Eine SSL 3.0-Verbindungsanforderung wurde von einer Remoteclientanwendung übermittelt, jedoch werden keine der Verschlüsselungssammlungen, die von der Clientanwendung unterstützt werden, vom Server unterstützt. Fehler bei der SSL-Verbindungsanforderung.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 107.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Eine SSL 3.0-Verbindungsanforderung wurde von einer Remoteclientanwendung übermittelt, jedoch werden keine der Verschlüsselungssammlungen, die von der Clientanwendung unterstützt werden, vom Server unterstützt. Fehler bei der SSL-Verbindungsanforderung.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 107.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Eine SSL 3.0-Verbindungsanforderung wurde von einer Remoteclientanwendung übermittelt, jedoch werden keine der Verschlüsselungssammlungen, die von der Clientanwendung unterstützt werden, vom Server unterstützt. Fehler bei der SSL-Verbindungsanforderung.
Error: (04/03/2014 07:24:38 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 107.
Microsoft Office Sessions:
=========================
Error: (04/03/2014 02:36:12 PM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{3b6f0128-9795-11e2-975e-806e6f6e6963} - 0000000000000130,0x0053c010,00000000001BD4E0,0,00000000001BC4D0,4096,[0])
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/03/2014 02:35:09 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}PostCommitSnapshots({2e60a392-fdb7-4771-aa51-8edec8c5094d}, 1)0x80042302, Unerwarteter Fehler bei einer Komponente des Volumeschattenkopie-Diensts.
Weitere Informationen finden Sie im Anwendungsereignisprotokoll.
Vorgang:
Asynchroner Vorgang wird ausgeführt
Kontext:
Aktueller Status: DoSnapshotSet
Error: (04/03/2014 02:35:09 PM) (Source: VSS)(User: )
Description: bad state 60x8000ffff, Schwerwiegender Fehler
Vorgang:
PostCommitSnapshots wird verarbeitet
Kontext:
Ausführungskontext: System Provider
Error: (04/03/2014 02:35:09 PM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{3b6f0128-9795-11e2-975e-806e6f6e6963} - 0000000000000100,0x0053c010,00000000001BB4C0,0,00000000001BA4B0,4096,[0])
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/03/2014 02:17:40 PM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{3b6f0128-9795-11e2-975e-806e6f6e6963} - 0000000000000100,0x0053c010,00000000001B5C40,0,00000000001B6C50,4096,[0])
Vorgang:
Schattenkopien werden übertragen
Kontext:
Ausführungskontext: System Provider
Error: (04/01/2014 05:13:53 PM) (Source: Application Hang)(User: )
Description: chrome.exe33.0.1750.1541d9c01cf4dbcb557009013C:\Program Files (x86)\Google\Chrome\Application\chrome.exe384fa061-b9b0-11e3-a634-00192158913e
Error: (04/01/2014 05:13:22 PM) (Source: Application Hang)(User: )
Description: spotify.exe0.9.7.1663001cf4da87be3aa20107C:\Users\Lender\AppData\Roaming\Spotify\spotify.exe2588f491-b9b0-11e3-a634-00192158913e
Error: (03/15/2014 02:56:00 AM) (Source: Application Hang)(User: )
Description: iexplore.exe9.0.8112.16476bdc01cf3fe90a4b61e017C:\Program Files (x86)\Internet Explorer\iexplore.exe79b648d9-abdc-11e3-93fc-00192158913e
Error: (03/13/2014 09:34:08 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164765126e7acntdll.dll6.1.7600.169154ec49d10c000000500032c86bec01cf3ef12555fb10C:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\SysWOW64\ntdll.dll7191ee60-aae6-11e3-9ba2-00192158913e
Error: (01/01/2006 01:05:18 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: hxxp://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabEin erforderliches Zertifikat befindet sich nicht im Gültigkeitszeitraum gemessen an der aktuellen Systemzeit oder dem Zeitstempel in der signierten Datei.
==================== Memory info ===========================
Percentage of memory in use: 42%
Total physical RAM: 3071.55 MB
Available physical RAM: 1766.55 MB
Total Pagefile: 6141.25 MB
Available Pagefile: 4301.95 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:145.93 GB) (Free:61.96 GB) NTFS
Drive d: () (Fixed) (Total:146.3 GB) (Free:61.79 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: () (Fixed) (Total:298.09 GB) (Free:158.63 GB) NTFS
Drive f: () (Fixed) (Total:5.84 GB) (Free:1.74 GB) NTFS
Drive g: (TPI_GER) (CDROM) (Total:0.59 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 7369F179)
Partition 1: (Not Active) - (Size=6 GB) - (Type=05)
Partition 2: (Active) - (Size=146 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=146 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 298 GB) (Disk ID: 19ABEEAC)
Partition 1: (Active) - (Size=298 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
04.04.2014, 09:00
| #4 | ||
| /// Winkelfunktion /// TB-Süch-Tiger™ | Boo/Cidox.BZitat:
Ich wollte aber das Virenscanner-Logfile dazu sehen. Dazu wurde eine ausführlichste Anleitung verlinkt. Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
04.04.2014, 17:41
| #5 |
| | Boo/Cidox.B Sorry hatte das ganze überlesen. Ähm ist ne gute Frage wieso Ultimate, hab die CD von nem Freund bekommen, weil ich nur die 32 BIT Version hab und hab darauf gar nicht geachtet. War mir jetzt auch gar nicht bewusst, dass Ultimate für die Gewerbliche Nutzung gedacht ist. Code:
ATTFilter Exportierte Ereignisse:
04.04.2014 05:57 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
04.04.2014 05:57 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
04.04.2014 05:57 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'D:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
04.04.2014 05:57 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
04.04.2014 05:57 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
04.04.2014 05:57 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 16:23 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 16:23 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 16:23 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 16:23 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 16:23 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'D:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 16:23 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 14:22 [System-Scanner] Malware gefunden
Die Datei 'Bootsektor 'HDD0(C:, D:, F:)''
enthielt einen Virus oder unerwünschtes Programm 'BOO/Cidox.B' [virus].
Durchgeführte Aktion(en):
Enthält Code des Bootsektorvirus BOO/Cidox.B.
03.04.2014 10:20 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 10:20 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 10:20 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 10:20 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 10:20 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'D:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 10:20 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 06:28 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 06:28 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 06:28 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 06:28 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 06:28 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
03.04.2014 06:28 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'D:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 13:48 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 13:48 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 13:48 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 13:48 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 13:48 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'D:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 13:48 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 06:30 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 06:30 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 06:30 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 06:30 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 06:30 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
02.04.2014 06:30 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'D:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
01.04.2014 23:38 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'F:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
01.04.2014 23:38 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
01.04.2014 23:38 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Bootsektor von Laufwerk 'C:' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
01.04.2014 23:38 [Echtzeit-Scanner] Malware in Bootsektor gefunden
Im Masterbootsektor von Laufwerk 'Masterbootsektor HD0' wurde ein Virus oder
unerwünschtes Programm 'BOO/Cidox.B' [virus] gefunden.
Ausgeführte Aktion: Zugriff verweigern
|
|
04.04.2014, 17:43
| #6 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Boo/Cidox.BZitat:
__________________ --> Boo/Cidox.B |
|
04.04.2014, 18:26
| #7 |
| | Boo/Cidox.B Jap hab ich. |
|
04.04.2014, 18:28
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Boo/Cidox.B Dann ist ja alles gut  Avira meint, du hättest ne Zecke im Bootsektor. Mach mal bitte ein Log mit dem TDSS-Killer von Kaspersky: Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.04.2014, 18:56
| #9 |
| | Boo/Cidox.B Hier =) Geändert von PapstFlo2 (04.04.2014 um 19:01 Uhr) |
|
04.04.2014, 19:04
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Boo/Cidox.B Bitte nicht als Anhang  
__________________ Logfiles bitte immer in CODE-Tags posten |
|
04.04.2014, 19:24
| #11 |
| | Boo/Cidox.B Sorry aber anders war er zu lang |
|
05.04.2014, 14:34
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Boo/Cidox.B Trotzdem direkt posten, notfalls aufteilen und über mehrere Beiträge verteilt posten in CODE Tags
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.04.2014, 17:29
| #13 |
| | Boo/Cidox.BCode:
ATTFilter 19:58:37.0888 5152 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:58:39.0891 5152 ============================================================
19:58:39.0892 5152 Current date / time: 2014/04/04 19:58:39.0891
19:58:39.0892 5152 SystemInfo:
19:58:39.0892 5152
19:58:39.0892 5152 OS Version: 6.1.7600 ServicePack: 0.0
19:58:39.0892 5152 Product type: Workstation
19:58:39.0892 5152 ComputerName: LENDER-PC
19:58:39.0893 5152 UserName: Lender
19:58:39.0893 5152 Windows directory: C:\Windows
19:58:39.0893 5152 System windows directory: C:\Windows
19:58:39.0893 5152 Running under WOW64
19:58:39.0893 5152 Processor architecture: Intel x64
19:58:39.0893 5152 Number of processors: 2
19:58:39.0893 5152 Page size: 0x1000
19:58:39.0893 5152 Boot type: Normal boot
19:58:39.0893 5152 ============================================================
19:58:41.0262 5152 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:58:41.0262 5152 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x97695, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000040
19:58:41.0267 5152 ============================================================
19:58:41.0268 5152 \Device\Harddisk0\DR0:
19:58:41.0268 5152 MBR partitions:
19:58:41.0275 5152 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0xBB08FC
19:58:41.0275 5152 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xBB47FC, BlocksNum 0x12498A1A
19:58:41.0275 5152 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1304D216, BlocksNum 0x123DC5EA
19:58:41.0275 5152 \Device\Harddisk1\DR1:
19:58:41.0275 5152 MBR partitions:
19:58:41.0275 5152 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542EA71
19:58:41.0275 5152 ============================================================
19:58:41.0300 5152 C: <-> \Device\Harddisk0\DR0\Partition3
19:58:41.0337 5152 D: <-> \Device\Harddisk0\DR0\Partition2
19:58:41.0356 5152 E: <-> \Device\Harddisk1\DR1\Partition1
19:58:41.0382 5152 F: <-> \Device\Harddisk0\DR0\Partition1
19:58:41.0382 5152 ============================================================
19:58:41.0382 5152 Initialize success
19:58:41.0383 5152 ============================================================
19:59:01.0470 3508 ============================================================
19:59:01.0470 3508 Scan started
19:59:01.0470 3508 Mode: Manual; SigCheck; TDLFS;
19:59:01.0470 3508 ============================================================
19:59:02.0359 3508 ================ Scan system memory ========================
19:59:02.0359 3508 System memory - ok
19:59:02.0360 3508 ================ Scan services =============================
19:59:02.0520 3508 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
19:59:02.0622 3508 1394ohci - ok
19:59:02.0652 3508 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
19:59:02.0673 3508 ACPI - ok
19:59:02.0686 3508 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
19:59:02.0739 3508 AcpiPmi - ok
19:59:02.0824 3508 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:59:02.0843 3508 AdobeFlashPlayerUpdateSvc - ok
19:59:02.0928 3508 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:59:02.0951 3508 adp94xx - ok
19:59:03.0011 3508 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:59:03.0035 3508 adpahci - ok
19:59:03.0054 3508 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:59:03.0071 3508 adpu320 - ok
19:59:03.0102 3508 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:59:03.0253 3508 AeLookupSvc - ok
19:59:03.0304 3508 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
19:59:03.0371 3508 AFD - ok
19:59:03.0397 3508 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
19:59:03.0414 3508 agp440 - ok
19:59:03.0442 3508 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:59:03.0489 3508 ALG - ok
19:59:03.0506 3508 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
19:59:03.0521 3508 aliide - ok
19:59:03.0535 3508 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
19:59:03.0551 3508 amdide - ok
19:59:03.0580 3508 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:59:03.0608 3508 AmdK8 - ok
19:59:03.0625 3508 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:59:03.0674 3508 AmdPPM - ok
19:59:03.0702 3508 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:59:03.0719 3508 amdsata - ok
19:59:03.0734 3508 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:59:03.0755 3508 amdsbs - ok
19:59:03.0768 3508 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:59:03.0782 3508 amdxata - ok
19:59:03.0862 3508 [ 4D282B9C5BB05DF92C9F3977DFB9F916 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
19:59:03.0881 3508 AntiVirSchedulerService - ok
19:59:03.0910 3508 [ 65AF41A7A2C5B6693E1B4164E7632C3E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
19:59:03.0927 3508 AntiVirService - ok
19:59:03.0962 3508 [ 3D15C6EDBF84D792ACEBD2289546DBAF ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
19:59:03.0990 3508 AntiVirWebService - ok
19:59:04.0032 3508 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
19:59:04.0109 3508 AppID - ok
19:59:04.0131 3508 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:59:04.0187 3508 AppIDSvc - ok
19:59:04.0201 3508 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
19:59:04.0243 3508 Appinfo - ok
19:59:04.0298 3508 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:59:04.0311 3508 Apple Mobile Device - ok
19:59:04.0338 3508 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:59:04.0372 3508 AppMgmt - ok
19:59:04.0399 3508 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:59:04.0415 3508 arc - ok
19:59:04.0440 3508 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:59:04.0456 3508 arcsas - ok
19:59:04.0474 3508 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:59:04.0530 3508 AsyncMac - ok
19:59:04.0546 3508 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
19:59:04.0564 3508 atapi - ok
19:59:04.0605 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:59:04.0665 3508 AudioEndpointBuilder - ok
19:59:04.0697 3508 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:59:04.0754 3508 AudioSrv - ok
19:59:04.0794 3508 [ 7806BFCD1D7FA5EC23F7324D4EAFD25B ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
19:59:04.0839 3508 avgntflt - ok
19:59:04.0880 3508 [ C3A58DBD18786C338126D30BF8C33D72 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
19:59:04.0916 3508 avipbb - ok
19:59:04.0933 3508 [ 390184FAD8FCC1B6DA25AEBAE928C3B6 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
19:59:04.0949 3508 avkmgr - ok
19:59:04.0971 3508 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:59:05.0040 3508 AxInstSV - ok
19:59:05.0085 3508 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:59:05.0136 3508 b06bdrv - ok
19:59:05.0166 3508 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:59:05.0200 3508 b57nd60a - ok
19:59:05.0240 3508 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:59:05.0274 3508 BDESVC - ok
19:59:05.0291 3508 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:59:05.0349 3508 Beep - ok
19:59:05.0388 3508 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
19:59:05.0449 3508 BFE - ok
19:59:05.0488 3508 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
19:59:05.0542 3508 BITS - ok
19:59:05.0562 3508 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:59:05.0586 3508 blbdrive - ok
19:59:05.0636 3508 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:59:05.0657 3508 Bonjour Service - ok
19:59:05.0686 3508 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:59:05.0723 3508 bowser - ok
19:59:05.0745 3508 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:59:05.0773 3508 BrFiltLo - ok
19:59:05.0785 3508 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:59:05.0803 3508 BrFiltUp - ok
19:59:05.0837 3508 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
19:59:05.0871 3508 Browser - ok
19:59:05.0894 3508 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:59:05.0938 3508 Brserid - ok
19:59:05.0952 3508 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:59:05.0981 3508 BrSerWdm - ok
19:59:05.0995 3508 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:59:06.0025 3508 BrUsbMdm - ok
19:59:06.0033 3508 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:59:06.0061 3508 BrUsbSer - ok
19:59:06.0081 3508 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:59:06.0102 3508 BTHMODEM - ok
19:59:06.0133 3508 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:59:06.0182 3508 bthserv - ok
19:59:06.0199 3508 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:59:06.0242 3508 cdfs - ok
19:59:06.0301 3508 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:59:06.0318 3508 cdrom - ok
19:59:06.0340 3508 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
19:59:06.0401 3508 CertPropSvc - ok
19:59:06.0425 3508 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:59:06.0449 3508 circlass - ok
19:59:06.0470 3508 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:59:06.0491 3508 CLFS - ok
19:59:06.0552 3508 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:59:06.0583 3508 clr_optimization_v2.0.50727_32 - ok
19:59:06.0621 3508 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:59:06.0653 3508 clr_optimization_v2.0.50727_64 - ok
19:59:06.0720 3508 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:59:06.0734 3508 clr_optimization_v4.0.30319_32 - ok
19:59:06.0774 3508 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:59:06.0789 3508 clr_optimization_v4.0.30319_64 - ok
19:59:06.0816 3508 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:59:06.0840 3508 CmBatt - ok
19:59:06.0860 3508 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
19:59:06.0874 3508 cmdide - ok
19:59:06.0905 3508 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
19:59:06.0947 3508 CNG - ok
19:59:06.0962 3508 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:59:06.0976 3508 Compbatt - ok
19:59:06.0998 3508 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:59:07.0030 3508 CompositeBus - ok
19:59:07.0075 3508 COMSysApp - ok
19:59:07.0095 3508 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:59:07.0110 3508 crcdisk - ok
19:59:07.0152 3508 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:59:07.0198 3508 CryptSvc - ok
19:59:07.0226 3508 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
19:59:07.0260 3508 CSC - ok
19:59:07.0299 3508 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
19:59:07.0343 3508 CscService - ok
19:59:07.0383 3508 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:59:07.0444 3508 DcomLaunch - ok
19:59:07.0471 3508 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:59:07.0530 3508 defragsvc - ok
19:59:07.0564 3508 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:59:07.0602 3508 DfsC - ok
19:59:07.0635 3508 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
19:59:07.0706 3508 Dhcp - ok
19:59:07.0735 3508 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:59:07.0791 3508 discache - ok
19:59:07.0812 3508 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:59:07.0829 3508 Disk - ok
19:59:07.0858 3508 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:59:07.0891 3508 Dnscache - ok
19:59:07.0924 3508 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
19:59:07.0993 3508 dot3svc - ok
19:59:08.0010 3508 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
19:59:08.0082 3508 DPS - ok
19:59:08.0110 3508 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:59:08.0128 3508 drmkaud - ok
19:59:08.0172 3508 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:59:08.0203 3508 DXGKrnl - ok
19:59:08.0233 3508 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:59:08.0290 3508 EapHost - ok
19:59:08.0404 3508 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:59:08.0481 3508 ebdrv - ok
19:59:08.0504 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
19:59:08.0533 3508 EFS - ok
19:59:08.0587 3508 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:59:08.0660 3508 ehRecvr - ok
19:59:08.0691 3508 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:59:08.0732 3508 ehSched - ok
19:59:08.0765 3508 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:59:08.0789 3508 elxstor - ok
19:59:08.0808 3508 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
19:59:08.0831 3508 ErrDev - ok
19:59:08.0872 3508 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:59:08.0926 3508 EventSystem - ok
19:59:08.0944 3508 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:59:08.0999 3508 exfat - ok
19:59:09.0024 3508 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:59:09.0078 3508 fastfat - ok
19:59:09.0110 3508 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
19:59:09.0164 3508 Fax - ok
19:59:09.0180 3508 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:59:09.0198 3508 fdc - ok
19:59:09.0224 3508 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:59:09.0275 3508 fdPHost - ok
19:59:09.0292 3508 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:59:09.0340 3508 FDResPub - ok
19:59:09.0365 3508 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:59:09.0380 3508 FileInfo - ok
19:59:09.0397 3508 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:59:09.0449 3508 Filetrace - ok
19:59:09.0460 3508 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:59:09.0477 3508 flpydisk - ok
19:59:09.0505 3508 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:59:09.0526 3508 FltMgr - ok
19:59:09.0589 3508 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
19:59:09.0684 3508 FontCache - ok
19:59:09.0726 3508 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:59:09.0741 3508 FontCache3.0.0.0 - ok
19:59:09.0756 3508 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:59:09.0774 3508 FsDepends - ok
19:59:09.0794 3508 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:59:09.0810 3508 Fs_Rec - ok
19:59:09.0843 3508 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:59:09.0866 3508 fvevol - ok
19:59:09.0890 3508 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:59:09.0906 3508 gagp30kx - ok
19:59:09.0930 3508 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:59:09.0943 3508 GEARAspiWDM - ok
19:59:09.0980 3508 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
19:59:10.0027 3508 gpsvc - ok
19:59:10.0118 3508 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:59:10.0147 3508 gupdate - ok
19:59:10.0159 3508 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:59:10.0189 3508 gupdatem - ok
19:59:10.0211 3508 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:59:10.0248 3508 hcw85cir - ok
19:59:10.0283 3508 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:59:10.0322 3508 HdAudAddService - ok
19:59:10.0341 3508 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:59:10.0370 3508 HDAudBus - ok
19:59:10.0384 3508 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:59:10.0405 3508 HidBatt - ok
19:59:10.0428 3508 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:59:10.0459 3508 HidBth - ok
19:59:10.0470 3508 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:59:10.0497 3508 HidIr - ok
19:59:10.0519 3508 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:59:10.0571 3508 hidserv - ok
19:59:10.0594 3508 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:59:10.0617 3508 HidUsb - ok
19:59:10.0635 3508 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:59:10.0683 3508 hkmsvc - ok
19:59:10.0704 3508 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:59:10.0744 3508 HomeGroupListener - ok
19:59:10.0773 3508 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:59:10.0802 3508 HomeGroupProvider - ok
19:59:10.0827 3508 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
19:59:10.0843 3508 HpSAMD - ok
19:59:10.0877 3508 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:59:10.0943 3508 HTTP - ok
19:59:10.0958 3508 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:59:10.0973 3508 hwpolicy - ok
19:59:10.0989 3508 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:59:11.0008 3508 i8042prt - ok
19:59:11.0037 3508 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:59:11.0069 3508 iaStorV - ok
19:59:11.0120 3508 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:59:11.0166 3508 idsvc - ok
19:59:11.0186 3508 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:59:11.0202 3508 iirsp - ok
19:59:11.0242 3508 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
19:59:11.0317 3508 IKEEXT - ok
19:59:11.0461 3508 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:59:11.0635 3508 IntcAzAudAddService - ok
19:59:11.0652 3508 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
19:59:11.0666 3508 intelide - ok
19:59:11.0691 3508 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:59:11.0720 3508 intelppm - ok
19:59:11.0740 3508 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:59:11.0799 3508 IPBusEnum - ok
19:59:11.0814 3508 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:59:11.0864 3508 IpFilterDriver - ok
19:59:11.0892 3508 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:59:11.0950 3508 iphlpsvc - ok
19:59:11.0970 3508 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:59:11.0992 3508 IPMIDRV - ok
19:59:12.0012 3508 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:59:12.0066 3508 IPNAT - ok
19:59:12.0107 3508 [ 71F993192EB04B2C4C80F2DEE9119229 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:59:12.0139 3508 iPod Service - ok
19:59:12.0161 3508 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:59:12.0183 3508 IRENUM - ok
19:59:12.0196 3508 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
19:59:12.0211 3508 isapnp - ok
19:59:12.0236 3508 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
19:59:12.0258 3508 iScsiPrt - ok
19:59:12.0290 3508 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:59:12.0305 3508 kbdclass - ok
19:59:12.0320 3508 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:59:12.0344 3508 kbdhid - ok
19:59:12.0370 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
19:59:12.0386 3508 KeyIso - ok
19:59:12.0405 3508 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:59:12.0421 3508 KSecDD - ok
19:59:12.0441 3508 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:59:12.0461 3508 KSecPkg - ok
19:59:12.0476 3508 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:59:12.0525 3508 ksthunk - ok
19:59:12.0554 3508 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:59:12.0607 3508 KtmRm - ok
19:59:12.0634 3508 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:59:12.0674 3508 LanmanServer - ok
19:59:12.0700 3508 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:59:12.0756 3508 LanmanWorkstation - ok
19:59:12.0786 3508 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:59:12.0828 3508 lltdio - ok
19:59:12.0862 3508 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:59:12.0921 3508 lltdsvc - ok
19:59:12.0940 3508 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:59:12.0982 3508 lmhosts - ok
19:59:13.0018 3508 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:59:13.0038 3508 LSI_FC - ok
19:59:13.0072 3508 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:59:13.0098 3508 LSI_SAS - ok
19:59:13.0129 3508 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:59:13.0146 3508 LSI_SAS2 - ok
19:59:13.0249 3508 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:59:13.0292 3508 LSI_SCSI - ok
19:59:13.0307 3508 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:59:13.0350 3508 luafv - ok
19:59:13.0367 3508 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:59:13.0399 3508 Mcx2Svc - ok
19:59:13.0409 3508 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:59:13.0424 3508 megasas - ok
19:59:13.0436 3508 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:59:13.0457 3508 MegaSR - ok
19:59:13.0478 3508 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:59:13.0528 3508 MMCSS - ok
19:59:13.0546 3508 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:59:13.0593 3508 Modem - ok
19:59:13.0628 3508 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:59:13.0653 3508 monitor - ok
19:59:13.0676 3508 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:59:13.0691 3508 mouclass - ok
19:59:13.0713 3508 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:59:13.0742 3508 mouhid - ok
19:59:13.0755 3508 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:59:13.0772 3508 mountmgr - ok
19:59:13.0857 3508 [ 3B9398E0146855B1DC0E3D9769C80F01 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:59:13.0892 3508 MozillaMaintenance - ok
19:59:13.0913 3508 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
19:59:13.0951 3508 mpio - ok
19:59:13.0967 3508 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:59:14.0011 3508 mpsdrv - ok
19:59:14.0054 3508 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:59:14.0122 3508 MpsSvc - ok
19:59:14.0142 3508 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:59:14.0172 3508 MRxDAV - ok
19:59:14.0193 3508 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:59:14.0220 3508 mrxsmb - ok
19:59:14.0239 3508 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:59:14.0269 3508 mrxsmb10 - ok
19:59:14.0287 3508 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:59:14.0312 3508 mrxsmb20 - ok
19:59:14.0329 3508 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
19:59:14.0344 3508 msahci - ok
19:59:14.0359 3508 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
19:59:14.0377 3508 msdsm - ok
19:59:14.0392 3508 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:59:14.0422 3508 MSDTC - ok
19:59:14.0447 3508 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:59:14.0489 3508 Msfs - ok
19:59:14.0506 3508 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:59:14.0556 3508 mshidkmdf - ok
19:59:14.0576 3508 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
19:59:14.0591 3508 msisadrv - ok
19:59:14.0621 3508 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:59:14.0674 3508 MSiSCSI - ok
19:59:14.0682 3508 msiserver - ok
19:59:14.0706 3508 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:59:14.0762 3508 MSKSSRV - ok
19:59:14.0769 3508 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:59:14.0814 3508 MSPCLOCK - ok
19:59:14.0823 3508 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:59:14.0872 3508 MSPQM - ok
19:59:14.0896 3508 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:59:14.0919 3508 MsRPC - ok
19:59:14.0935 3508 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:59:14.0950 3508 mssmbios - ok
19:59:14.0969 3508 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:59:15.0017 3508 MSTEE - ok
19:59:15.0024 3508 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:59:15.0051 3508 MTConfig - ok
19:59:15.0068 3508 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:59:15.0084 3508 Mup - ok
19:59:15.0116 3508 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
19:59:15.0175 3508 napagent - ok
19:59:15.0210 3508 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:59:15.0242 3508 NativeWifiP - ok
19:59:15.0279 3508 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:59:15.0310 3508 NDIS - ok
19:59:15.0327 3508 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:59:15.0370 3508 NdisCap - ok
19:59:15.0392 3508 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:59:15.0439 3508 NdisTapi - ok
19:59:15.0456 3508 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:59:15.0508 3508 Ndisuio - ok
19:59:15.0527 3508 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:59:15.0574 3508 NdisWan - ok
19:59:15.0592 3508 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:59:15.0641 3508 NDProxy - ok
19:59:15.0674 3508 [ EE00C544C025958AF50C7B199F3C8595 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
19:59:15.0703 3508 Netaapl - ok
19:59:15.0729 3508 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:59:15.0771 3508 NetBIOS - ok
19:59:15.0791 3508 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:59:15.0844 3508 NetBT - ok
19:59:15.0862 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
19:59:15.0881 3508 Netlogon - ok
19:59:15.0921 3508 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:59:15.0977 3508 Netman - ok
19:59:16.0008 3508 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:59:16.0069 3508 netprofm - ok
19:59:16.0090 3508 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:59:16.0105 3508 NetTcpPortSharing - ok
19:59:16.0123 3508 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:59:16.0139 3508 nfrd960 - ok
19:59:16.0156 3508 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:59:16.0216 3508 NlaSvc - ok
19:59:16.0231 3508 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:59:16.0285 3508 Npfs - ok
19:59:16.0312 3508 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:59:16.0363 3508 nsi - ok
19:59:16.0375 3508 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:59:16.0427 3508 nsiproxy - ok
19:59:16.0486 3508 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:59:16.0560 3508 Ntfs - ok
19:59:16.0575 3508 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:59:16.0626 3508 Null - ok
19:59:16.0925 3508 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:59:17.0296 3508 nvlddmkm - ok
19:59:17.0333 3508 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:59:17.0351 3508 nvraid - ok
19:59:17.0368 3508 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:59:17.0384 3508 nvstor - ok
19:59:17.0431 3508 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:59:17.0477 3508 nvsvc - ok
19:59:17.0544 3508 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:59:17.0593 3508 nvUpdatusService - ok
19:59:17.0610 3508 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
19:59:17.0627 3508 nv_agp - ok
19:59:17.0647 3508 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
19:59:17.0669 3508 ohci1394 - ok
19:59:17.0700 3508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:59:17.0746 3508 p2pimsvc - ok
19:59:17.0767 3508 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:59:17.0799 3508 p2psvc - ok
19:59:17.0829 3508 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:59:17.0846 3508 Parport - ok
19:59:17.0876 3508 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:59:17.0891 3508 partmgr - ok
19:59:17.0909 3508 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:59:17.0942 3508 PcaSvc - ok
19:59:17.0956 3508 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
19:59:17.0976 3508 pci - ok
19:59:17.0992 3508 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
19:59:18.0005 3508 pciide - ok
19:59:18.0031 3508 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:59:18.0051 3508 pcmcia - ok
19:59:18.0066 3508 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:59:18.0081 3508 pcw - ok
19:59:18.0105 3508 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:59:18.0166 3508 PEAUTH - ok
19:59:18.0214 3508 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:59:18.0286 3508 PeerDistSvc - ok
19:59:18.0457 3508 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:59:18.0504 3508 PerfHost - ok
19:59:18.0565 3508 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
19:59:18.0662 3508 pla - ok
19:59:18.0700 3508 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:59:18.0744 3508 PlugPlay - ok
19:59:18.0763 3508 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:59:18.0788 3508 PNRPAutoReg - ok
19:59:18.0809 3508 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:59:18.0830 3508 PNRPsvc - ok
19:59:18.0855 3508 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:59:18.0916 3508 PolicyAgent - ok
19:59:18.0945 3508 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
Code:
ATTFilter 19:59:18.0998 3508 Power - ok
19:59:19.0030 3508 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:59:19.0080 3508 PptpMiniport - ok
19:59:19.0093 3508 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:59:19.0115 3508 Processor - ok
19:59:19.0147 3508 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
19:59:19.0172 3508 ProfSvc - ok
19:59:19.0187 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:59:19.0202 3508 ProtectedStorage - ok
19:59:19.0227 3508 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:59:19.0279 3508 Psched - ok
19:59:19.0339 3508 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:59:19.0409 3508 ql2300 - ok
19:59:19.0426 3508 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:59:19.0444 3508 ql40xx - ok
19:59:19.0472 3508 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:59:19.0498 3508 QWAVE - ok
19:59:19.0514 3508 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:59:19.0545 3508 QWAVEdrv - ok
19:59:19.0557 3508 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:59:19.0606 3508 RasAcd - ok
19:59:19.0628 3508 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:59:19.0670 3508 RasAgileVpn - ok
19:59:19.0690 3508 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:59:19.0745 3508 RasAuto - ok
19:59:19.0762 3508 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:59:19.0818 3508 Rasl2tp - ok
19:59:19.0846 3508 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
19:59:19.0893 3508 RasMan - ok
19:59:19.0911 3508 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:59:19.0965 3508 RasPppoe - ok
19:59:19.0993 3508 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:59:20.0050 3508 RasSstp - ok
19:59:20.0070 3508 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:59:20.0122 3508 rdbss - ok
19:59:20.0135 3508 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:59:20.0155 3508 rdpbus - ok
19:59:20.0167 3508 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:59:20.0211 3508 RDPCDD - ok
19:59:20.0241 3508 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:59:20.0274 3508 RDPDR - ok
19:59:20.0291 3508 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:59:20.0339 3508 RDPENCDD - ok
19:59:20.0355 3508 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:59:20.0396 3508 RDPREFMP - ok
19:59:20.0425 3508 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:59:20.0458 3508 RDPWD - ok
19:59:20.0478 3508 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:59:20.0499 3508 rdyboost - ok
19:59:20.0533 3508 [ EA569D48B2E755AF6D96F03F3335D98A ] RealtekCU C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
19:59:20.0545 3508 RealtekCU ( UnsignedFile.Multi.Generic ) - warning
19:59:20.0545 3508 RealtekCU - detected UnsignedFile.Multi.Generic (1)
19:59:20.0574 3508 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:59:20.0627 3508 RemoteAccess - ok
19:59:20.0653 3508 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:59:20.0706 3508 RemoteRegistry - ok
19:59:20.0723 3508 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:59:20.0774 3508 RpcEptMapper - ok
19:59:20.0795 3508 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:59:20.0824 3508 RpcLocator - ok
19:59:20.0850 3508 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
19:59:20.0899 3508 RpcSs - ok
19:59:20.0927 3508 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:59:20.0978 3508 rspndr - ok
19:59:21.0029 3508 [ EA67246C2EAA613CFC5AC6504D8E82C2 ] RTL8192cu C:\Windows\system32\DRIVERS\rtwlanu.sys
19:59:21.0077 3508 RTL8192cu - ok
19:59:21.0091 3508 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
19:59:21.0123 3508 s3cap - ok
19:59:21.0137 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
19:59:21.0153 3508 SamSs - ok
19:59:21.0176 3508 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
19:59:21.0193 3508 sbp2port - ok
19:59:21.0221 3508 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:59:21.0284 3508 SCardSvr - ok
19:59:21.0303 3508 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:59:21.0351 3508 scfilter - ok
19:59:21.0394 3508 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
19:59:21.0457 3508 Schedule - ok
19:59:21.0482 3508 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:59:21.0525 3508 SCPolicySvc - ok
19:59:21.0548 3508 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:59:21.0583 3508 SDRSVC - ok
19:59:21.0772 3508 [ 98EF79CC2B07398AC525F9EA1AE0366F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
19:59:21.0915 3508 SDScannerService - ok
19:59:21.0964 3508 [ 14BF6B3AB327D519ED007CDDC56F6900 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
19:59:22.0014 3508 SDUpdateService - ok
19:59:22.0030 3508 [ 820EBE67AB99F033FDE25B2692157991 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
19:59:22.0047 3508 SDWSCService - ok
19:59:22.0076 3508 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:59:22.0119 3508 secdrv - ok
19:59:22.0140 3508 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
19:59:22.0192 3508 seclogon - ok
19:59:22.0211 3508 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:59:22.0268 3508 SENS - ok
19:59:22.0288 3508 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:59:22.0318 3508 SensrSvc - ok
19:59:22.0341 3508 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:59:22.0362 3508 Serenum - ok
19:59:22.0390 3508 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:59:22.0420 3508 Serial - ok
19:59:22.0438 3508 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:59:22.0466 3508 sermouse - ok
19:59:22.0502 3508 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
19:59:22.0553 3508 SessionEnv - ok
19:59:22.0563 3508 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
19:59:22.0587 3508 sffdisk - ok
19:59:22.0604 3508 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:59:22.0628 3508 sffp_mmc - ok
19:59:22.0645 3508 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
19:59:22.0664 3508 sffp_sd - ok
19:59:22.0677 3508 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:59:22.0698 3508 sfloppy - ok
19:59:22.0736 3508 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:59:22.0796 3508 SharedAccess - ok
19:59:22.0828 3508 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:59:22.0862 3508 ShellHWDetection - ok
19:59:22.0877 3508 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:59:22.0892 3508 SiSRaid2 - ok
19:59:22.0910 3508 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:59:22.0926 3508 SiSRaid4 - ok
19:59:22.0958 3508 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:59:23.0018 3508 Smb - ok
19:59:23.0047 3508 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:59:23.0068 3508 SNMPTRAP - ok
19:59:23.0121 3508 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
19:59:23.0138 3508 speedfan - ok
19:59:23.0152 3508 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:59:23.0167 3508 spldr - ok
19:59:23.0199 3508 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
19:59:23.0241 3508 Spooler - ok
19:59:23.0341 3508 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
19:59:23.0464 3508 sppsvc - ok
19:59:23.0480 3508 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:59:23.0536 3508 sppuinotify - ok
19:59:23.0573 3508 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:59:23.0613 3508 srv - ok
19:59:23.0635 3508 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:59:23.0666 3508 srv2 - ok
19:59:23.0691 3508 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:59:23.0716 3508 srvnet - ok
19:59:23.0747 3508 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:59:23.0800 3508 SSDPSRV - ok
19:59:23.0817 3508 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:59:23.0861 3508 SstpSvc - ok
19:59:23.0916 3508 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:59:23.0961 3508 Stereo Service - ok
19:59:23.0997 3508 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:59:24.0020 3508 stexstor - ok
19:59:24.0069 3508 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
19:59:24.0108 3508 stisvc - ok
19:59:24.0125 3508 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
19:59:24.0140 3508 storflt - ok
19:59:24.0179 3508 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
19:59:24.0194 3508 storvsc - ok
19:59:24.0207 3508 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:59:24.0222 3508 swenum - ok
19:59:24.0252 3508 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:59:24.0311 3508 swprv - ok
19:59:24.0368 3508 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
19:59:24.0443 3508 SysMain - ok
19:59:24.0464 3508 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:59:24.0498 3508 TabletInputService - ok
19:59:24.0523 3508 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
19:59:24.0583 3508 TapiSrv - ok
19:59:24.0598 3508 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:59:24.0655 3508 TBS - ok
19:59:24.0715 3508 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:59:24.0848 3508 Tcpip - ok
19:59:24.0898 3508 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:59:24.0944 3508 TCPIP6 - ok
19:59:24.0974 3508 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:59:25.0017 3508 tcpipreg - ok
19:59:25.0041 3508 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:59:25.0069 3508 TDPIPE - ok
19:59:25.0092 3508 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:59:25.0129 3508 TDTCP - ok
19:59:25.0156 3508 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:59:25.0204 3508 tdx - ok
19:59:25.0217 3508 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:59:25.0233 3508 TermDD - ok
19:59:25.0276 3508 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
19:59:25.0359 3508 TermService - ok
19:59:25.0378 3508 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:59:25.0406 3508 Themes - ok
19:59:25.0420 3508 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:59:25.0462 3508 THREADORDER - ok
19:59:25.0476 3508 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:59:25.0532 3508 TrkWks - ok
19:59:25.0580 3508 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:59:25.0602 3508 TrustedInstaller - ok
19:59:25.0622 3508 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:59:25.0671 3508 tssecsrv - ok
19:59:25.0705 3508 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:59:25.0761 3508 tunnel - ok
19:59:25.0778 3508 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:59:25.0793 3508 uagp35 - ok
19:59:25.0815 3508 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:59:25.0874 3508 udfs - ok
19:59:25.0902 3508 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:59:25.0921 3508 UI0Detect - ok
19:59:25.0936 3508 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
19:59:25.0952 3508 uliagpkx - ok
19:59:25.0980 3508 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:59:26.0008 3508 umbus - ok
19:59:26.0021 3508 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:59:26.0038 3508 UmPass - ok
19:59:26.0056 3508 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
19:59:26.0079 3508 UmRdpService - ok
19:59:26.0099 3508 [ 8F387A1CC015A3F5020700C657A0FC85 ] UnsignedThemes C:\Windows\UnsignedThemesSvc.exe
19:59:26.0150 3508 UnsignedThemes - ok
19:59:26.0173 3508 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:59:26.0244 3508 upnphost - ok
19:59:26.0268 3508 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:59:26.0294 3508 USBAAPL64 - ok
19:59:26.0316 3508 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:59:26.0355 3508 usbccgp - ok
19:59:26.0391 3508 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
19:59:26.0423 3508 usbcir - ok
19:59:26.0451 3508 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:59:26.0466 3508 usbehci - ok
19:59:26.0499 3508 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:59:26.0520 3508 usbhub - ok
19:59:26.0552 3508 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:59:26.0575 3508 usbohci - ok
19:59:26.0589 3508 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:59:26.0607 3508 usbprint - ok
19:59:26.0624 3508 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:59:26.0663 3508 USBSTOR - ok
19:59:26.0680 3508 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:59:26.0702 3508 usbuhci - ok
19:59:26.0715 3508 [ 297EE9C666FC8BB96A232DB0DDBA1E49 ] uxpatch C:\Windows\system32\drivers\uxpatch.sys
19:59:26.0733 3508 uxpatch - ok
19:59:26.0755 3508 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:59:26.0805 3508 UxSms - ok
19:59:26.0821 3508 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
19:59:26.0838 3508 VaultSvc - ok
19:59:26.0866 3508 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
19:59:26.0881 3508 vdrvroot - ok
19:59:26.0902 3508 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
19:59:26.0937 3508 vds - ok
19:59:26.0953 3508 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:59:26.0972 3508 vga - ok
19:59:26.0990 3508 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:59:27.0042 3508 VgaSave - ok
19:59:27.0088 3508 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
19:59:27.0107 3508 vhdmp - ok
19:59:27.0126 3508 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
19:59:27.0142 3508 viaide - ok
19:59:27.0167 3508 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
19:59:27.0186 3508 vmbus - ok
19:59:27.0205 3508 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
19:59:27.0227 3508 VMBusHID - ok
19:59:27.0239 3508 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
19:59:27.0255 3508 volmgr - ok
19:59:27.0282 3508 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:59:27.0305 3508 volmgrx - ok
19:59:27.0341 3508 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
19:59:27.0360 3508 volsnap - ok
19:59:27.0391 3508 [ ABD9B4A7E2D0AE51A3B8DF1AF3152D61 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
19:59:27.0415 3508 vpcbus - ok
19:59:27.0440 3508 [ 8ACDA395841538CE9713A67FE8B2A3EB ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
19:59:27.0456 3508 vpcnfltr - ok
19:59:27.0480 3508 [ 31924E31BC315773E6D149B157DB46D5 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
19:59:27.0506 3508 vpcusb - ok
19:59:27.0533 3508 [ C5B651E52540E6F46DA66574C74B4898 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
19:59:27.0555 3508 vpcvmm - ok
19:59:27.0574 3508 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:59:27.0591 3508 vsmraid - ok
19:59:27.0665 3508 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
19:59:27.0755 3508 VSS - ok
19:59:27.0775 3508 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:59:27.0798 3508 vwifibus - ok
19:59:27.0819 3508 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:59:27.0853 3508 vwififlt - ok
19:59:27.0885 3508 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:59:27.0905 3508 vwifimp - ok
19:59:27.0930 3508 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:59:27.0982 3508 W32Time - ok
19:59:28.0002 3508 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:59:28.0031 3508 WacomPen - ok
19:59:28.0071 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:59:28.0121 3508 WANARP - ok
19:59:28.0134 3508 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:59:28.0179 3508 Wanarpv6 - ok
19:59:28.0227 3508 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
19:59:28.0306 3508 wbengine - ok
19:59:28.0330 3508 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:59:28.0356 3508 WbioSrvc - ok
19:59:28.0398 3508 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:59:28.0442 3508 wcncsvc - ok
19:59:28.0481 3508 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:59:28.0581 3508 WcsPlugInService - ok
19:59:28.0676 3508 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:59:28.0717 3508 Wd - ok
19:59:28.0766 3508 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:59:28.0815 3508 Wdf01000 - ok
19:59:28.0831 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:59:28.0863 3508 WdiServiceHost - ok
19:59:28.0869 3508 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:59:28.0894 3508 WdiSystemHost - ok
19:59:28.0918 3508 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
19:59:28.0955 3508 WebClient - ok
19:59:28.0971 3508 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:59:29.0026 3508 Wecsvc - ok
19:59:29.0044 3508 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:59:29.0089 3508 wercplsupport - ok
19:59:29.0114 3508 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:59:29.0160 3508 WerSvc - ok
19:59:29.0195 3508 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:59:29.0237 3508 WfpLwf - ok
19:59:29.0257 3508 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:59:29.0272 3508 WIMMount - ok
19:59:29.0282 3508 WinDefend - ok
19:59:29.0291 3508 WinHttpAutoProxySvc - ok
19:59:29.0345 3508 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:59:29.0397 3508 Winmgmt - ok
19:59:29.0464 3508 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
19:59:29.0584 3508 WinRM - ok
19:59:29.0668 3508 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:59:29.0689 3508 WinUsb - ok
19:59:29.0735 3508 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:59:29.0800 3508 Wlansvc - ok
19:59:29.0822 3508 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
19:59:29.0846 3508 WmiAcpi - ok
19:59:29.0875 3508 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:59:29.0902 3508 wmiApSrv - ok
19:59:29.0921 3508 WMPNetworkSvc - ok
19:59:29.0943 3508 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:59:29.0969 3508 WPCSvc - ok
19:59:29.0988 3508 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:59:30.0031 3508 WPDBusEnum - ok
19:59:30.0055 3508 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:59:30.0107 3508 ws2ifsl - ok
19:59:30.0138 3508 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
19:59:30.0172 3508 wscsvc - ok
19:59:30.0179 3508 WSearch - ok
19:59:30.0276 3508 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:59:30.0364 3508 wuauserv - ok
19:59:30.0395 3508 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:59:30.0420 3508 WudfPf - ok
19:59:30.0441 3508 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:59:30.0471 3508 WUDFRd - ok
19:59:30.0507 3508 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:59:30.0524 3508 wudfsvc - ok
19:59:30.0559 3508 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:59:30.0590 3508 WwanSvc - ok
19:59:30.0628 3508 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
19:59:30.0654 3508 yukonw7 - ok
19:59:30.0683 3508 ================ Scan global ===============================
19:59:30.0709 3508 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:59:30.0736 3508 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
19:59:30.0753 3508 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
19:59:30.0778 3508 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:59:30.0801 3508 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:59:30.0805 3508 [Global] - ok
19:59:30.0806 3508 ================ Scan MBR ==================================
19:59:30.0822 3508 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:59:31.0393 3508 \Device\Harddisk0\DR0 - ok
19:59:31.0398 3508 [ 35C6B2FCDE68FACBEFE0A4A7200BAE58 ] \Device\Harddisk1\DR1
19:59:31.0642 3508 \Device\Harddisk1\DR1 - ok
19:59:31.0644 3508 ================ Scan VBR ==================================
19:59:31.0651 3508 [ EBFCA496CB34F6CAA8235241229D4024 ] \Device\Harddisk0\DR0\Partition1
19:59:31.0654 3508 \Device\Harddisk0\DR0\Partition1 - ok
19:59:31.0665 3508 [ 6EDBFCAA8AB1A1447820FF949C8160F1 ] \Device\Harddisk0\DR0\Partition2
19:59:31.0669 3508 \Device\Harddisk0\DR0\Partition2 - ok
19:59:31.0709 3508 [ 76A42560E43F30CDEB302F44C47E47D5 ] \Device\Harddisk0\DR0\Partition3
19:59:31.0713 3508 \Device\Harddisk0\DR0\Partition3 ( Rootkit.Boot.Cidox.b ) - infected
19:59:31.0713 3508 \Device\Harddisk0\DR0\Partition3 - detected Rootkit.Boot.Cidox.b (0)
19:59:31.0721 3508 [ 5E5194457D26905E157F96889F5BF94A ] \Device\Harddisk1\DR1\Partition1
19:59:31.0724 3508 \Device\Harddisk1\DR1\Partition1 - ok
19:59:31.0729 3508 ============================================================
19:59:31.0729 3508 Scan finished
19:59:31.0729 3508 ============================================================
19:59:31.0759 0848 Detected object count: 2
19:59:31.0759 0848 Actual detected object count: 2
19:59:48.0066 0848 RealtekCU ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:48.0066 0848 RealtekCU ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:48.0069 0848 \Device\Harddisk0\DR0\Partition3 ( Rootkit.Boot.Cidox.b ) - skipped by user
19:59:48.0069 0848 \Device\Harddisk0\DR0\Partition3 ( Rootkit.Boot.Cidox.b ) - User select action: Skip
20:00:51.0990 6016 Deinitialize success
|
|
06.04.2014, 12:35
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Boo/Cidox.BZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
07.04.2014, 18:37
| #15 |
| | Boo/Cidox.BCode:
ATTFilter 19:30:20.0577 4240 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:30:23.0450 4240 ============================================================
19:30:23.0450 4240 Current date / time: 2014/04/07 19:30:23.0450
19:30:23.0450 4240 SystemInfo:
19:30:23.0450 4240
19:30:23.0450 4240 OS Version: 6.1.7600 ServicePack: 0.0
19:30:23.0451 4240 Product type: Workstation
19:30:23.0451 4240 ComputerName: LENDER-PC
19:30:23.0451 4240 UserName: Lender
19:30:23.0451 4240 Windows directory: C:\Windows
19:30:23.0451 4240 System windows directory: C:\Windows
19:30:23.0451 4240 Running under WOW64
19:30:23.0451 4240 Processor architecture: Intel x64
19:30:23.0451 4240 Number of processors: 2
19:30:23.0451 4240 Page size: 0x1000
19:30:23.0451 4240 Boot type: Normal boot
19:30:23.0451 4240 ============================================================
19:30:31.0649 4240 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:30:31.0649 4240 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x97695, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000040
19:30:31.0659 4240 ============================================================
19:30:31.0659 4240 \Device\Harddisk0\DR0:
19:30:31.0666 4240 MBR partitions:
19:30:31.0686 4240 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0xBB08FC
19:30:31.0687 4240 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xBB47FC, BlocksNum 0x12498A1A
19:30:31.0687 4240 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1304D216, BlocksNum 0x123DC5EA
19:30:31.0687 4240 \Device\Harddisk1\DR1:
19:30:31.0687 4240 MBR partitions:
19:30:31.0687 4240 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542EA71
19:30:31.0687 4240 ============================================================
19:30:31.0771 4240 C: <-> \Device\Harddisk0\DR0\Partition3
19:30:31.0807 4240 D: <-> \Device\Harddisk0\DR0\Partition2
19:30:31.0808 4240 E: <-> \Device\Harddisk1\DR1\Partition1
19:30:31.0860 4240 F: <-> \Device\Harddisk0\DR0\Partition1
19:30:31.0860 4240 ============================================================
19:30:31.0860 4240 Initialize success
19:30:31.0860 4240 ============================================================
19:30:41.0357 4916 ============================================================
19:30:41.0358 4916 Scan started
19:30:41.0358 4916 Mode: Manual; SigCheck;
19:30:41.0358 4916 ============================================================
19:30:47.0615 4916 ================ Scan system memory ========================
19:30:47.0615 4916 System memory - ok
19:30:47.0616 4916 ================ Scan services =============================
19:30:47.0790 4916 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
19:30:47.0875 4916 1394ohci - ok
19:30:47.0899 4916 18783624 - ok
19:30:47.0955 4916 [ F146E2BA475893DD77B2370DC1211FC6 ] 50868075 C:\Windows\system32\drivers\58842481.sys
19:30:47.0990 4916 50868075 - ok
19:30:48.0014 4916 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
19:30:48.0055 4916 ACPI - ok
19:30:48.0072 4916 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
19:30:48.0133 4916 AcpiPmi - ok
19:30:48.0216 4916 [ 9D96B0D5855FD1B98023B3EEC9F06786 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:30:48.0232 4916 AdobeFlashPlayerUpdateSvc - ok
19:30:48.0272 4916 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:30:48.0316 4916 adp94xx - ok
19:30:48.0339 4916 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:30:48.0372 4916 adpahci - ok
19:30:48.0391 4916 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:30:48.0416 4916 adpu320 - ok
19:30:48.0447 4916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:30:48.0562 4916 AeLookupSvc - ok
19:30:48.0607 4916 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
19:30:48.0678 4916 AFD - ok
19:30:48.0750 4916 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
19:30:48.0800 4916 agp440 - ok
19:30:48.0829 4916 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:30:48.0861 4916 ALG - ok
19:30:48.0884 4916 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
19:30:48.0908 4916 aliide - ok
19:30:48.0938 4916 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
19:30:48.0958 4916 amdide - ok
19:30:49.0000 4916 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:30:49.0052 4916 AmdK8 - ok
19:30:49.0069 4916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:30:49.0102 4916 AmdPPM - ok
19:30:49.0131 4916 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:30:49.0154 4916 amdsata - ok
19:30:49.0170 4916 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:30:49.0201 4916 amdsbs - ok
19:30:49.0222 4916 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:30:49.0242 4916 amdxata - ok
19:30:49.0318 4916 [ 4D282B9C5BB05DF92C9F3977DFB9F916 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
19:30:49.0375 4916 AntiVirSchedulerService - ok
19:30:49.0406 4916 [ 65AF41A7A2C5B6693E1B4164E7632C3E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
19:30:49.0439 4916 AntiVirService - ok
19:30:49.0474 4916 [ 3D15C6EDBF84D792ACEBD2289546DBAF ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
19:30:49.0500 4916 AntiVirWebService - ok
19:30:49.0532 4916 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
19:30:49.0566 4916 AppID - ok
19:30:49.0585 4916 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:30:49.0648 4916 AppIDSvc - ok
19:30:49.0663 4916 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
19:30:49.0752 4916 Appinfo - ok
19:30:49.0793 4916 [ 30E3850F303EAE5C364782EA78579CC9 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:30:49.0815 4916 Apple Mobile Device - ok
19:30:49.0841 4916 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
19:30:49.0878 4916 AppMgmt - ok
19:30:49.0899 4916 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:30:49.0924 4916 arc - ok
19:30:49.0954 4916 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:30:49.0978 4916 arcsas - ok
19:30:49.0999 4916 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:30:50.0057 4916 AsyncMac - ok
19:30:50.0082 4916 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
19:30:50.0101 4916 atapi - ok
19:30:50.0142 4916 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:30:50.0225 4916 AudioEndpointBuilder - ok
19:30:50.0239 4916 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:30:50.0287 4916 AudioSrv - ok
19:30:50.0323 4916 [ 7806BFCD1D7FA5EC23F7324D4EAFD25B ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
19:30:50.0348 4916 avgntflt - ok
19:30:50.0391 4916 [ C3A58DBD18786C338126D30BF8C33D72 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
19:30:50.0418 4916 avipbb - ok
19:30:50.0428 4916 [ 390184FAD8FCC1B6DA25AEBAE928C3B6 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
19:30:50.0450 4916 avkmgr - ok
19:30:50.0483 4916 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:30:50.0580 4916 AxInstSV - ok
19:30:50.0633 4916 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:30:50.0683 4916 b06bdrv - ok
19:30:50.0754 4916 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:30:50.0805 4916 b57nd60a - ok
19:30:50.0835 4916 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:30:50.0880 4916 BDESVC - ok
19:30:50.0894 4916 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:30:50.0961 4916 Beep - ok
19:30:51.0000 4916 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
19:30:51.0085 4916 BFE - ok
19:30:51.0133 4916 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
19:30:51.0235 4916 BITS - ok
19:30:51.0257 4916 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:30:51.0287 4916 blbdrive - ok
19:30:51.0356 4916 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:30:51.0390 4916 Bonjour Service - ok
19:30:51.0414 4916 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:30:51.0462 4916 bowser - ok
19:30:51.0481 4916 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:30:51.0511 4916 BrFiltLo - ok
19:30:51.0522 4916 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:30:51.0543 4916 BrFiltUp - ok
19:30:51.0574 4916 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
19:30:51.0619 4916 Browser - ok
19:30:51.0639 4916 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:30:51.0692 4916 Brserid - ok
19:30:51.0739 4916 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:30:51.0767 4916 BrSerWdm - ok
19:30:51.0790 4916 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:30:51.0819 4916 BrUsbMdm - ok
19:30:51.0826 4916 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:30:51.0855 4916 BrUsbSer - ok
19:30:51.0868 4916 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:30:51.0900 4916 BTHMODEM - ok
19:30:51.0928 4916 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:30:51.0992 4916 bthserv - ok
19:30:52.0010 4916 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:30:52.0060 4916 cdfs - ok
19:30:52.0088 4916 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:30:52.0116 4916 cdrom - ok
19:30:52.0135 4916 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
19:30:52.0204 4916 CertPropSvc - ok
19:30:52.0228 4916 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:30:52.0260 4916 circlass - ok
19:30:52.0281 4916 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:30:52.0322 4916 CLFS - ok
19:30:52.0397 4916 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:30:52.0453 4916 clr_optimization_v2.0.50727_32 - ok
19:30:52.0491 4916 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:30:52.0527 4916 clr_optimization_v2.0.50727_64 - ok
19:30:52.0598 4916 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:30:52.0666 4916 clr_optimization_v4.0.30319_32 - ok
19:30:52.0744 4916 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:30:52.0769 4916 clr_optimization_v4.0.30319_64 - ok
19:30:52.0802 4916 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:30:52.0826 4916 CmBatt - ok
19:30:52.0846 4916 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
19:30:52.0866 4916 cmdide - ok
19:30:52.0892 4916 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
19:30:52.0977 4916 CNG - ok
19:30:52.0990 4916 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:30:53.0010 4916 Compbatt - ok
19:30:53.0026 4916 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:30:53.0057 4916 CompositeBus - ok
19:30:53.0073 4916 COMSysApp - ok
19:30:53.0090 4916 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:30:53.0111 4916 crcdisk - ok
19:30:53.0147 4916 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:30:53.0194 4916 CryptSvc - ok
19:30:53.0221 4916 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys
19:30:53.0272 4916 CSC - ok
19:30:53.0310 4916 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll
19:30:53.0363 4916 CscService - ok
19:30:53.0403 4916 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:30:53.0462 4916 DcomLaunch - ok
19:30:53.0492 4916 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:30:53.0564 4916 defragsvc - ok
19:30:53.0593 4916 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:30:53.0638 4916 DfsC - ok
19:30:53.0662 4916 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
19:30:53.0817 4916 Dhcp - ok
19:30:53.0847 4916 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:30:53.0921 4916 discache - ok
19:30:53.0948 4916 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:30:53.0975 4916 Disk - ok
19:30:54.0003 4916 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:30:54.0045 4916 Dnscache - ok
19:30:54.0068 4916 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
19:30:54.0150 4916 dot3svc - ok
19:30:54.0171 4916 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
19:30:54.0240 4916 DPS - ok
19:30:54.0263 4916 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:30:54.0284 4916 drmkaud - ok
19:30:54.0317 4916 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:30:54.0356 4916 DXGKrnl - ok
19:30:54.0378 4916 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:30:54.0440 4916 EapHost - ok
19:30:54.0568 4916 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:30:54.0741 4916 ebdrv - ok
19:30:54.0765 4916 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
19:30:54.0796 4916 EFS - ok
19:30:54.0842 4916 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:30:54.0891 4916 ehRecvr - ok
19:30:54.0919 4916 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:30:54.0958 4916 ehSched - ok
19:30:54.0994 4916 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:30:55.0036 4916 elxstor - ok
19:30:55.0053 4916 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
19:30:55.0084 4916 ErrDev - ok
19:30:55.0133 4916 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:30:55.0181 4916 EventSystem - ok
19:30:55.0198 4916 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:30:55.0259 4916 exfat - ok
19:30:55.0278 4916 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:30:55.0348 4916 fastfat - ok
19:30:55.0380 4916 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
19:30:55.0431 4916 Fax - ok
19:30:55.0450 4916 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:30:55.0472 4916 fdc - ok
19:30:55.0494 4916 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:30:55.0551 4916 fdPHost - ok
19:30:55.0570 4916 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:30:55.0634 4916 FDResPub - ok
19:30:55.0660 4916 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:30:55.0684 4916 FileInfo - ok
19:30:55.0733 4916 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:30:55.0787 4916 Filetrace - ok
19:30:55.0805 4916 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:30:55.0826 4916 flpydisk - ok
19:30:55.0850 4916 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:30:55.0894 4916 FltMgr - ok
19:30:55.0953 4916 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
19:30:56.0019 4916 FontCache - ok
19:30:56.0055 4916 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:30:56.0075 4916 FontCache3.0.0.0 - ok
19:30:56.0093 4916 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:30:56.0116 4916 FsDepends - ok
19:30:56.0139 4916 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:30:56.0158 4916 Fs_Rec - ok
19:30:56.0187 4916 [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:30:56.0233 4916 fvevol - ok
19:30:56.0260 4916 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:30:56.0283 4916 gagp30kx - ok
19:30:56.0300 4916 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:30:56.0317 4916 GEARAspiWDM - ok
19:30:56.0358 4916 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
19:30:56.0430 4916 gpsvc - ok
19:30:56.0512 4916 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:30:56.0538 4916 gupdate - ok
19:30:56.0544 4916 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:30:56.0558 4916 gupdatem - ok
19:30:56.0573 4916 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:30:56.0607 4916 hcw85cir - ok
19:30:56.0637 4916 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:30:56.0692 4916 HdAudAddService - ok
19:30:56.0753 4916 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:30:56.0789 4916 HDAudBus - ok
19:30:56.0804 4916 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:30:56.0833 4916 HidBatt - ok
19:30:56.0847 4916 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:30:56.0887 4916 HidBth - ok
19:30:56.0906 4916 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:30:56.0941 4916 HidIr - ok
19:30:56.0964 4916 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:30:57.0041 4916 hidserv - ok
19:30:57.0055 4916 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:30:57.0086 4916 HidUsb - ok
19:30:57.0105 4916 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:30:57.0169 4916 hkmsvc - ok
19:30:57.0190 4916 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:30:57.0245 4916 HomeGroupListener - ok
19:30:57.0268 4916 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:30:57.0305 4916 HomeGroupProvider - ok
19:30:57.0322 4916 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
19:30:57.0345 4916 HpSAMD - ok
19:30:57.0380 4916 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:30:57.0479 4916 HTTP - ok
19:30:57.0495 4916 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:30:57.0515 4916 hwpolicy - ok
19:30:57.0534 4916 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:30:57.0560 4916 i8042prt - ok
19:30:57.0590 4916 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:30:57.0631 4916 iaStorV - ok
19:30:57.0744 4916 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:30:57.0853 4916 idsvc - ok
19:30:57.0873 4916 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:30:57.0898 4916 iirsp - ok
19:30:57.0935 4916 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
19:30:58.0029 4916 IKEEXT - ok
19:30:58.0138 4916 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:30:58.0233 4916 IntcAzAudAddService - ok
19:30:58.0247 4916 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
19:30:58.0268 4916 intelide - ok
19:30:58.0286 4916 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:30:58.0322 4916 intelppm - ok
19:30:58.0343 4916 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:30:58.0408 4916 IPBusEnum - ok
19:30:58.0426 4916 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:30:58.0483 4916 IpFilterDriver - ok
19:30:58.0512 4916 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:30:58.0578 4916 iphlpsvc - ok
19:30:58.0599 4916 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
19:30:58.0637 4916 IPMIDRV - ok
19:30:58.0657 4916 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:30:58.0719 4916 IPNAT - ok
19:30:58.0768 4916 [ 71F993192EB04B2C4C80F2DEE9119229 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:30:58.0790 4916 iPod Service - ok
19:30:58.0806 4916 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:30:58.0831 4916 IRENUM - ok
19:30:58.0849 4916 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
19:30:58.0869 4916 isapnp - ok
19:30:58.0889 4916 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
19:30:58.0926 4916 iScsiPrt - ok
19:30:58.0960 4916 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:30:58.0982 4916 kbdclass - ok
19:30:59.0006 4916 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:30:59.0038 4916 kbdhid - ok
19:30:59.0057 4916 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
19:30:59.0073 4916 KeyIso - ok
19:30:59.0091 4916 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:30:59.0118 4916 KSecDD - ok
19:30:59.0136 4916 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:30:59.0164 4916 KSecPkg - ok
19:30:59.0179 4916 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:30:59.0235 4916 ksthunk - ok
19:30:59.0265 4916 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:30:59.0342 4916 KtmRm - ok
19:30:59.0379 4916 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:30:59.0430 4916 LanmanServer - ok
19:30:59.0453 4916 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:30:59.0519 4916 LanmanWorkstation - ok
19:30:59.0547 4916 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:30:59.0594 4916 lltdio - ok
19:30:59.0624 4916 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:30:59.0707 4916 lltdsvc - ok
19:30:59.0744 4916 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:30:59.0793 4916 lmhosts - ok
19:30:59.0821 4916 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:30:59.0845 4916 LSI_FC - ok
19:30:59.0858 4916 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:30:59.0882 4916 LSI_SAS - ok
19:30:59.0899 4916 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:30:59.0921 4916 LSI_SAS2 - ok
19:30:59.0935 4916 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:30:59.0959 4916 LSI_SCSI - ok
19:30:59.0977 4916 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:31:00.0028 4916 luafv - ok
19:31:00.0045 4916 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:31:00.0085 4916 Mcx2Svc - ok
19:31:00.0096 4916 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:31:00.0117 4916 megasas - ok
19:31:00.0128 4916 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:31:00.0159 4916 MegaSR - ok
19:31:00.0181 4916 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:31:00.0237 4916 MMCSS - ok
19:31:00.0249 4916 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:31:00.0304 4916 Modem - ok
19:31:00.0333 4916 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:31:00.0364 4916 monitor - ok
19:31:00.0379 4916 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:31:00.0401 4916 mouclass - ok
19:31:00.0425 4916 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:31:00.0453 4916 mouhid - ok
19:31:00.0467 4916 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:31:00.0491 4916 mountmgr - ok
19:31:00.0578 4916 [ 3B9398E0146855B1DC0E3D9769C80F01 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:31:00.0640 4916 MozillaMaintenance - ok
19:31:00.0666 4916 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
19:31:00.0695 4916 mpio - ok
19:31:00.0745 4916 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:31:00.0794 4916 mpsdrv - ok
19:31:00.0833 4916 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:31:00.0950 4916 MpsSvc - ok
19:31:00.0979 4916 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:31:01.0025 4916 MRxDAV - ok
19:31:01.0063 4916 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:31:01.0111 4916 mrxsmb - ok
19:31:01.0139 4916 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:31:01.0191 4916 mrxsmb10 - ok
19:31:01.0215 4916 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:31:01.0248 4916 mrxsmb20 - ok
19:31:01.0266 4916 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
19:31:01.0287 4916 msahci - ok
19:31:01.0304 4916 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
19:31:01.0330 4916 msdsm - ok
19:31:01.0346 4916 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:31:01.0383 4916 MSDTC - ok
19:31:01.0409 4916 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:31:01.0454 4916 Msfs - ok
19:31:01.0476 4916 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:31:01.0534 4916 mshidkmdf - ok
19:31:01.0546 4916 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
19:31:01.0565 4916 msisadrv - ok
19:31:01.0591 4916 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:31:01.0659 4916 MSiSCSI - ok
19:31:01.0666 4916 msiserver - ok
19:31:01.0684 4916 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:31:01.0772 4916 MSKSSRV - ok
19:31:01.0780 4916 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:31:01.0825 4916 MSPCLOCK - ok
19:31:01.0833 4916 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:31:01.0883 4916 MSPQM - ok
19:31:01.0908 4916 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:31:01.0948 4916 MsRPC - ok
19:31:01.0963 4916 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:31:01.0984 4916 mssmbios - ok
19:31:01.0997 4916 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:31:02.0053 4916 MSTEE - ok
19:31:02.0060 4916 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:31:02.0087 4916 MTConfig - ok
19:31:02.0113 4916 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:31:02.0134 4916 Mup - ok
19:31:02.0169 4916 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
19:31:02.0242 4916 napagent - ok
19:31:02.0288 4916 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:31:02.0345 4916 NativeWifiP - ok
19:31:02.0382 4916 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:31:02.0411 4916 NDIS - ok
19:31:02.0430 4916 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:31:02.0477 4916 NdisCap - ok
19:31:02.0503 4916 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:31:02.0561 4916 NdisTapi - ok
19:31:02.0584 4916 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:31:02.0643 4916 Ndisuio - ok
19:31:02.0663 4916 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:31:02.0716 4916 NdisWan - ok
19:31:02.0737 4916 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:31:02.0794 4916 NDProxy - ok
19:31:02.0833 4916 [ EE00C544C025958AF50C7B199F3C8595 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
19:31:02.0866 4916 Netaapl - ok
19:31:02.0882 4916 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:31:02.0929 4916 NetBIOS - ok
19:31:02.0945 4916 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:31:03.0021 4916 NetBT - ok
19:31:03.0040 4916 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
19:31:03.0056 4916 Netlogon - ok
19:31:03.0091 4916 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:31:03.0164 4916 Netman - ok
19:31:03.0186 4916 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:31:03.0246 4916 netprofm - ok
19:31:03.0268 4916 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:31:03.0298 4916 NetTcpPortSharing - ok
19:31:03.0318 4916 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:31:03.0339 4916 nfrd960 - ok
19:31:03.0360 4916 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:31:03.0443 4916 NlaSvc - ok
19:31:03.0459 4916 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:31:03.0512 4916 Npfs - ok
19:31:03.0541 4916 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:31:03.0598 4916 nsi - ok
19:31:03.0612 4916 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:31:03.0662 4916 nsiproxy - ok
19:31:03.0783 4916 [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:31:03.0899 4916 Ntfs - ok
19:31:03.0919 4916 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:31:03.0970 4916 Null - ok
19:31:04.0255 4916 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:31:04.0479 4916 nvlddmkm - ok
19:31:04.0520 4916 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:31:04.0545 4916 nvraid - ok
19:31:04.0562 4916 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:31:04.0579 4916 nvstor - ok
19:31:04.0634 4916 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:31:04.0689 4916 nvsvc - ok
19:31:04.0797 4916 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:31:04.0906 4916 nvUpdatusService - ok
19:31:04.0930 4916 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
19:31:04.0955 4916 nv_agp - ok
19:31:04.0976 4916 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
19:31:05.0006 4916 ohci1394 - ok
19:31:05.0037 4916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:31:05.0072 4916 p2pimsvc - ok
19:31:05.0095 4916 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
Code:
ATTFilter 19:31:05.0182 4916 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:31:05.0206 4916 Parport - ok
19:31:05.0229 4916 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:31:05.0253 4916 partmgr - ok
19:31:05.0270 4916 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:31:05.0320 4916 PcaSvc - ok
19:31:05.0334 4916 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
19:31:05.0366 4916 pci - ok
19:31:05.0378 4916 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
19:31:05.0397 4916 pciide - ok
19:31:05.0418 4916 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:31:05.0447 4916 pcmcia - ok
19:31:05.0469 4916 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:31:05.0490 4916 pcw - ok
19:31:05.0516 4916 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:31:05.0589 4916 PEAUTH - ok
19:31:05.0633 4916 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:31:05.0756 4916 PeerDistSvc - ok
19:31:05.0835 4916 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:31:05.0869 4916 PerfHost - ok
19:31:05.0932 4916 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
19:31:06.0056 4916 pla - ok
19:31:06.0087 4916 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:31:06.0146 4916 PlugPlay - ok
19:31:06.0158 4916 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:31:06.0198 4916 PNRPAutoReg - ok
19:31:06.0254 4916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:31:06.0291 4916 PNRPsvc - ok
19:31:06.0338 4916 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:31:06.0408 4916 PolicyAgent - ok
19:31:06.0440 4916 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:31:06.0494 4916 Power - ok
19:31:06.0525 4916 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:31:06.0581 4916 PptpMiniport - ok
19:31:06.0596 4916 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:31:06.0634 4916 Processor - ok
19:31:06.0659 4916 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
19:31:06.0697 4916 ProfSvc - ok
19:31:06.0740 4916 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:31:06.0756 4916 ProtectedStorage - ok
19:31:06.0772 4916 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:31:06.0824 4916 Psched - ok
19:31:06.0885 4916 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:31:06.0978 4916 ql2300 - ok
19:31:06.0996 4916 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:31:07.0023 4916 ql40xx - ok
19:31:07.0050 4916 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:31:07.0096 4916 QWAVE - ok
19:31:07.0109 4916 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:31:07.0140 4916 QWAVEdrv - ok
19:31:07.0152 4916 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:31:07.0200 4916 RasAcd - ok
19:31:07.0231 4916 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:31:07.0279 4916 RasAgileVpn - ok
19:31:07.0299 4916 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:31:07.0369 4916 RasAuto - ok
19:31:07.0390 4916 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:31:07.0453 4916 Rasl2tp - ok
19:31:07.0474 4916 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
19:31:07.0540 4916 RasMan - ok
19:31:07.0555 4916 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:31:07.0616 4916 RasPppoe - ok
19:31:07.0638 4916 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:31:07.0692 4916 RasSstp - ok
19:31:07.0740 4916 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:31:07.0816 4916 rdbss - ok
19:31:07.0830 4916 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:31:07.0853 4916 rdpbus - ok
19:31:07.0870 4916 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:31:07.0921 4916 RDPCDD - ok
19:31:07.0944 4916 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:31:07.0981 4916 RDPDR - ok
19:31:07.0994 4916 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:31:08.0049 4916 RDPENCDD - ok
19:31:08.0066 4916 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:31:08.0111 4916 RDPREFMP - ok
19:31:08.0137 4916 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:31:08.0180 4916 RDPWD - ok
19:31:08.0206 4916 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:31:08.0237 4916 rdyboost - ok
19:31:08.0270 4916 [ EA569D48B2E755AF6D96F03F3335D98A ] RealtekCU C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtlService.exe
19:31:08.0290 4916 RealtekCU ( UnsignedFile.Multi.Generic ) - warning
19:31:08.0290 4916 RealtekCU - detected UnsignedFile.Multi.Generic (1)
19:31:08.0319 4916 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:31:08.0387 4916 RemoteAccess - ok
19:31:08.0415 4916 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:31:08.0483 4916 RemoteRegistry - ok
19:31:08.0501 4916 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:31:08.0558 4916 RpcEptMapper - ok
19:31:08.0582 4916 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:31:08.0611 4916 RpcLocator - ok
19:31:08.0637 4916 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
19:31:08.0684 4916 RpcSs - ok
19:31:08.0747 4916 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:31:08.0803 4916 rspndr - ok
19:31:08.0849 4916 [ EA67246C2EAA613CFC5AC6504D8E82C2 ] RTL8192cu C:\Windows\system32\DRIVERS\rtwlanu.sys
19:31:08.0890 4916 RTL8192cu - ok
19:31:08.0903 4916 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
19:31:08.0933 4916 s3cap - ok
19:31:08.0949 4916 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
19:31:08.0964 4916 SamSs - ok
19:31:08.0988 4916 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
19:31:09.0013 4916 sbp2port - ok
19:31:09.0031 4916 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:31:09.0102 4916 SCardSvr - ok
19:31:09.0114 4916 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:31:09.0169 4916 scfilter - ok
19:31:09.0213 4916 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
19:31:09.0289 4916 Schedule - ok
19:31:09.0319 4916 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:31:09.0360 4916 SCPolicySvc - ok
19:31:09.0378 4916 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:31:09.0432 4916 SDRSVC - ok
19:31:09.0604 4916 [ 98EF79CC2B07398AC525F9EA1AE0366F ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
19:31:09.0695 4916 SDScannerService - ok
19:31:09.0767 4916 [ 14BF6B3AB327D519ED007CDDC56F6900 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
19:31:09.0822 4916 SDUpdateService - ok
19:31:09.0841 4916 [ 820EBE67AB99F033FDE25B2692157991 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
19:31:09.0857 4916 SDWSCService - ok
19:31:09.0888 4916 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:31:09.0935 4916 secdrv - ok
19:31:09.0959 4916 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
19:31:10.0018 4916 seclogon - ok
19:31:10.0031 4916 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:31:10.0093 4916 SENS - ok
19:31:10.0108 4916 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:31:10.0140 4916 SensrSvc - ok
19:31:10.0160 4916 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:31:10.0190 4916 Serenum - ok
19:31:10.0210 4916 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:31:10.0239 4916 Serial - ok
19:31:10.0258 4916 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:31:10.0284 4916 sermouse - ok
19:31:10.0314 4916 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
19:31:10.0381 4916 SessionEnv - ok
19:31:10.0400 4916 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
19:31:10.0432 4916 sffdisk - ok
19:31:10.0449 4916 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
19:31:10.0481 4916 sffp_mmc - ok
19:31:10.0507 4916 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
19:31:10.0529 4916 sffp_sd - ok
19:31:10.0538 4916 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:31:10.0568 4916 sfloppy - ok
19:31:10.0606 4916 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:31:10.0690 4916 SharedAccess - ok
19:31:10.0755 4916 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:31:10.0855 4916 ShellHWDetection - ok
19:31:10.0872 4916 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:31:10.0898 4916 SiSRaid2 - ok
19:31:10.0922 4916 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:31:10.0944 4916 SiSRaid4 - ok
19:31:10.0978 4916 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:31:11.0059 4916 Smb - ok
19:31:11.0092 4916 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:31:11.0114 4916 SNMPTRAP - ok
19:31:11.0166 4916 [ 0FFE35F0B0CD5A324BBE22F02569AE3B ] speedfan C:\Windows\syswow64\speedfan.sys
19:31:11.0189 4916 speedfan - ok
19:31:11.0205 4916 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:31:11.0225 4916 spldr - ok
19:31:11.0261 4916 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
19:31:11.0298 4916 Spooler - ok
19:31:11.0414 4916 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
19:31:11.0642 4916 sppsvc - ok
19:31:11.0658 4916 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:31:11.0761 4916 sppuinotify - ok
19:31:11.0793 4916 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:31:11.0839 4916 srv - ok
19:31:11.0873 4916 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:31:11.0919 4916 srv2 - ok
19:31:11.0945 4916 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:31:11.0976 4916 srvnet - ok
19:31:12.0008 4916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:31:12.0078 4916 SSDPSRV - ok
19:31:12.0095 4916 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:31:12.0150 4916 SstpSvc - ok
19:31:12.0200 4916 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:31:12.0238 4916 Stereo Service - ok
19:31:12.0266 4916 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:31:12.0287 4916 stexstor - ok
19:31:12.0329 4916 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
19:31:12.0381 4916 stisvc - ok
19:31:12.0403 4916 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
19:31:12.0424 4916 storflt - ok
19:31:12.0441 4916 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
19:31:12.0462 4916 storvsc - ok
19:31:12.0477 4916 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:31:12.0497 4916 swenum - ok
19:31:12.0530 4916 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:31:12.0617 4916 swprv - ok
19:31:12.0671 4916 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
19:31:12.0763 4916 SysMain - ok
19:31:12.0783 4916 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:31:12.0825 4916 TabletInputService - ok
19:31:12.0843 4916 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
19:31:12.0917 4916 TapiSrv - ok
19:31:12.0935 4916 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:31:12.0982 4916 TBS - ok
19:31:13.0041 4916 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:31:13.0149 4916 Tcpip - ok
19:31:13.0203 4916 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:31:13.0248 4916 TCPIP6 - ok
19:31:13.0277 4916 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:31:13.0324 4916 tcpipreg - ok
19:31:13.0344 4916 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:31:13.0373 4916 TDPIPE - ok
19:31:13.0395 4916 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:31:13.0422 4916 TDTCP - ok
19:31:13.0443 4916 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:31:13.0499 4916 tdx - ok
19:31:13.0512 4916 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:31:13.0534 4916 TermDD - ok
19:31:13.0571 4916 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
19:31:13.0669 4916 TermService - ok
19:31:13.0681 4916 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:31:13.0759 4916 Themes - ok
19:31:13.0773 4916 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:31:13.0815 4916 THREADORDER - ok
19:31:13.0829 4916 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:31:13.0890 4916 TrkWks - ok
19:31:13.0933 4916 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:31:13.0985 4916 TrustedInstaller - ok
19:31:14.0008 4916 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:31:14.0072 4916 tssecsrv - ok
19:31:14.0109 4916 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:31:14.0172 4916 tunnel - ok
19:31:14.0189 4916 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:31:14.0211 4916 uagp35 - ok
19:31:14.0238 4916 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:31:14.0309 4916 udfs - ok
19:31:14.0338 4916 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:31:14.0365 4916 UI0Detect - ok
19:31:14.0381 4916 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
19:31:14.0404 4916 uliagpkx - ok
19:31:14.0425 4916 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:31:14.0453 4916 umbus - ok
19:31:14.0466 4916 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:31:14.0485 4916 UmPass - ok
19:31:14.0509 4916 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll
19:31:14.0542 4916 UmRdpService - ok
19:31:14.0569 4916 [ 8F387A1CC015A3F5020700C657A0FC85 ] UnsignedThemes C:\Windows\UnsignedThemesSvc.exe
19:31:14.0595 4916 UnsignedThemes - ok
19:31:14.0618 4916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:31:14.0699 4916 upnphost - ok
19:31:14.0746 4916 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:31:14.0768 4916 USBAAPL64 - ok
19:31:14.0794 4916 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:31:14.0826 4916 usbccgp - ok
19:31:14.0861 4916 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
19:31:14.0901 4916 usbcir - ok
19:31:14.0929 4916 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:31:14.0950 4916 usbehci - ok
19:31:14.0977 4916 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:31:15.0016 4916 usbhub - ok
19:31:15.0047 4916 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:31:15.0077 4916 usbohci - ok
19:31:15.0092 4916 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:31:15.0115 4916 usbprint - ok
19:31:15.0127 4916 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:31:15.0164 4916 USBSTOR - ok
19:31:15.0184 4916 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:31:15.0214 4916 usbuhci - ok
19:31:15.0226 4916 [ 297EE9C666FC8BB96A232DB0DDBA1E49 ] uxpatch C:\Windows\system32\drivers\uxpatch.sys
19:31:15.0249 4916 uxpatch - ok
19:31:15.0275 4916 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:31:15.0332 4916 UxSms - ok
19:31:15.0357 4916 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
19:31:15.0373 4916 VaultSvc - ok
19:31:15.0394 4916 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
19:31:15.0416 4916 vdrvroot - ok
19:31:15.0439 4916 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
19:31:15.0483 4916 vds - ok
19:31:15.0498 4916 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:31:15.0522 4916 vga - ok
19:31:15.0543 4916 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:31:15.0593 4916 VgaSave - ok
19:31:15.0616 4916 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
19:31:15.0649 4916 vhdmp - ok
19:31:15.0671 4916 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
19:31:15.0692 4916 viaide - ok
19:31:15.0737 4916 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
19:31:15.0799 4916 vmbus - ok
19:31:15.0826 4916 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
19:31:15.0856 4916 VMBusHID - ok
19:31:15.0876 4916 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
19:31:15.0902 4916 volmgr - ok
19:31:15.0927 4916 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:31:15.0968 4916 volmgrx - ok
19:31:16.0011 4916 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
19:31:16.0052 4916 volsnap - ok
19:31:16.0078 4916 [ ABD9B4A7E2D0AE51A3B8DF1AF3152D61 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
19:31:16.0118 4916 vpcbus - ok
19:31:16.0135 4916 [ 8ACDA395841538CE9713A67FE8B2A3EB ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
19:31:16.0161 4916 vpcnfltr - ok
19:31:16.0183 4916 [ 31924E31BC315773E6D149B157DB46D5 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
19:31:16.0218 4916 vpcusb - ok
19:31:16.0245 4916 [ C5B651E52540E6F46DA66574C74B4898 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
19:31:16.0275 4916 vpcvmm - ok
19:31:16.0294 4916 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:31:16.0320 4916 vsmraid - ok
19:31:16.0390 4916 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
19:31:16.0532 4916 VSS - ok
19:31:16.0562 4916 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:31:16.0586 4916 vwifibus - ok
19:31:16.0605 4916 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:31:16.0640 4916 vwififlt - ok
19:31:16.0663 4916 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:31:16.0688 4916 vwifimp - ok
19:31:16.0733 4916 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:31:16.0803 4916 W32Time - ok
19:31:16.0830 4916 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:31:16.0858 4916 WacomPen - ok
19:31:16.0883 4916 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:31:16.0959 4916 WANARP - ok
19:31:16.0974 4916 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:31:17.0018 4916 Wanarpv6 - ok
19:31:17.0072 4916 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
19:31:17.0207 4916 wbengine - ok
19:31:17.0224 4916 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:31:17.0272 4916 WbioSrvc - ok
19:31:17.0310 4916 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:31:17.0342 4916 wcncsvc - ok
19:31:17.0359 4916 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:31:17.0402 4916 WcsPlugInService - ok
19:31:17.0421 4916 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:31:17.0442 4916 Wd - ok
19:31:17.0494 4916 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:31:17.0553 4916 Wdf01000 - ok
19:31:17.0568 4916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:31:17.0608 4916 WdiServiceHost - ok
19:31:17.0614 4916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:31:17.0637 4916 WdiSystemHost - ok
19:31:17.0663 4916 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
19:31:17.0760 4916 WebClient - ok
19:31:17.0783 4916 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:31:17.0847 4916 Wecsvc - ok
19:31:17.0864 4916 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:31:17.0920 4916 wercplsupport - ok
19:31:17.0952 4916 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:31:17.0995 4916 WerSvc - ok
19:31:18.0023 4916 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:31:18.0067 4916 WfpLwf - ok
19:31:18.0085 4916 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:31:18.0105 4916 WIMMount - ok
19:31:18.0118 4916 WinDefend - ok
19:31:18.0126 4916 WinHttpAutoProxySvc - ok
19:31:18.0182 4916 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:31:18.0256 4916 Winmgmt - ok
19:31:18.0317 4916 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
19:31:18.0453 4916 WinRM - ok
19:31:18.0493 4916 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:31:18.0520 4916 WinUsb - ok
19:31:18.0568 4916 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:31:18.0745 4916 Wlansvc - ok
19:31:18.0767 4916 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
19:31:18.0798 4916 WmiAcpi - ok
19:31:18.0829 4916 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:31:18.0872 4916 wmiApSrv - ok
19:31:18.0891 4916 WMPNetworkSvc - ok
19:31:18.0913 4916 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:31:18.0941 4916 WPCSvc - ok
19:31:18.0957 4916 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:31:19.0009 4916 WPDBusEnum - ok
19:31:19.0034 4916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:31:19.0084 4916 ws2ifsl - ok
19:31:19.0108 4916 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
19:31:19.0147 4916 wscsvc - ok
19:31:19.0155 4916 WSearch - ok
19:31:19.0250 4916 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:31:19.0417 4916 wuauserv - ok
19:31:19.0457 4916 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:31:19.0480 4916 WudfPf - ok
19:31:19.0502 4916 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:31:19.0539 4916 WUDFRd - ok
19:31:19.0568 4916 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:31:19.0594 4916 wudfsvc - ok
19:31:19.0629 4916 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:31:19.0684 4916 WwanSvc - ok
19:31:19.0756 4916 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
19:31:19.0815 4916 yukonw7 - ok
19:31:19.0838 4916 ================ Scan global ===============================
19:31:19.0861 4916 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:31:19.0898 4916 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
19:31:19.0931 4916 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
19:31:19.0956 4916 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:31:19.0987 4916 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:31:20.0005 4916 [Global] - ok
19:31:20.0005 4916 ================ Scan MBR ==================================
19:31:20.0025 4916 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:31:20.0491 4916 \Device\Harddisk0\DR0 - ok
19:31:20.0495 4916 [ 35C6B2FCDE68FACBEFE0A4A7200BAE58 ] \Device\Harddisk1\DR1
19:31:20.0688 4916 \Device\Harddisk1\DR1 - ok
19:31:20.0689 4916 ================ Scan VBR ==================================
19:31:20.0729 4916 [ EBFCA496CB34F6CAA8235241229D4024 ] \Device\Harddisk0\DR0\Partition1
19:31:20.0731 4916 \Device\Harddisk0\DR0\Partition1 - ok
19:31:20.0735 4916 [ 6EDBFCAA8AB1A1447820FF949C8160F1 ] \Device\Harddisk0\DR0\Partition2
19:31:20.0737 4916 \Device\Harddisk0\DR0\Partition2 - ok
19:31:20.0754 4916 [ 38D6578FE230CA44F511FFFB0DC8C9AB ] \Device\Harddisk0\DR0\Partition3
19:31:20.0756 4916 \Device\Harddisk0\DR0\Partition3 - ok
19:31:20.0762 4916 [ 5E5194457D26905E157F96889F5BF94A ] \Device\Harddisk1\DR1\Partition1
19:31:20.0764 4916 \Device\Harddisk1\DR1\Partition1 - ok
19:31:20.0765 4916 ============================================================
19:31:20.0765 4916 Scan finished
19:31:20.0765 4916 ============================================================
19:31:20.0782 4908 Detected object count: 1
19:31:20.0782 4908 Actual detected object count: 1
19:32:56.0054 4908 RealtekCU ( UnsignedFile.Multi.Generic ) - skipped by user
19:32:56.0054 4908 RealtekCU ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:32:59.0293 1288 Deinitialize success
|
|
| Themen zu Boo/Cidox.B |
| 5 minuten, avira, boo/cidox., boo/cidox.b, folge, folgendes, gefunde, guten, heute, hoffe, minute, minuten, morgen, poste, postet, problem, scan, scanner, schonmal, virenscan, virenscanner, virus, weiterhelfen, windows, windows 7 |
Linear-Darstellung
