Trojaner-Board - SpyHunter 4-Reste entfernen

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - SpyHunter 4-Reste entfernen (https://www.trojaner-board.de/134224-spyhunter-4-reste-entfernen.html)

SpyHunter 4-Reste entfernen

Hallo Trojaner-Board-Team!
Ich habe schon seit längerem das Problem das ich bei einer Freeware eine Toolbar, namens Delta-Search eingefangen habe. Nach langem googeln und lesen, bin ich auf eure Seite gestoßen. Das Problem Delta-Search wurde ja schon öfter angesprochen, und auch Lösungen angeboten. Dieses Problem habe ich jetzt auch inzwischen erledigt, adwcleander hat mit dabei geholfen :rolleyes:
Am Anfang meiner Suche bin ich aber auf ein Programm "Spyhunter" gestoßen, und es wurde angepriesen, als das Programm zum entfernen von Schadsoftware. Naja, wie sich herausgestellt hat, war das Programm selber Schadsoftware. Ich habe schon einiges versucht, um es wieder zu entferen:
1. Deinstallieren über Windows
2. Regestrierung durchsuchen und Überreste entfernt
3. CCleaner laufen lassen
4. (Erst nachdem ich eure Seite entdeckt habe) adwcleaner laufen lassen (Logfile leider nicht mehr vorhanden
5. OTL laufen lassen (Logfile leider auch nicht mehr vorhanden)

Informationen zu meinem Notebook:
Windows 7 Home Premium (Service Pack 1)
Toshiba Satellite L-555
Aktuelles Anti-Virus Programm: Avira Free Antivirus

Im Anhang:
Das aktuelle adwcleaner logfile
Das aktuelle OTL logfile

Beobachtung:

Spyhunter ist so nirgends zu finden, doch trotzdemkommt jedes mal wenn ich den PC Hochfahre, bzw. ihn aus dem Ruhezustand zurückhole, eine Einblendung von Spyhunter. Ich beschreibe sie mal (reiche ein Bild noch nach):
Oben steht "GRUB4DOS 0.4.5b 2011-11-14, Mem: 630K/3058M/896M, END: 358DFE"
Dann drei Zeilen zum auswählen "SpyHunter", welches sich automatisch nach 3sec auswählt, wenn man nicht schnell genug auf Pfeil runter zu "Windows XP" oder "Windows Vista/7" umschält.

Und genau da liegt der Hund bergraben... ich will das das wieder weg ist, denn es nervt einfach nur und ich weis nicht wie weit, oder schlimm mein PC noch infiziert ist.

Wäre euch echt dankbar wenn mir dabei jemand helfen könnte.

Freundliche Grüße,
Daniel

PS: Ich kenne mich zwar ein wenig mit Computer aus, doch mit DOS und BIOS hab ich noch nie was gemacht... also bitte genau und simpel erklären. :dankeschoen:

Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die jemals fündig geworden?
Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://www.trojaner-board.de/picture...&pictureid=307

Hallo cosinus!
Danke für die extrem schnelle Antwort :)

Andere Antivir Programme habe ich leider nicht. Aber ich habe mal einen Systemscan mit Avira gemacht aber ich finde die Log-Datei leider nicht (Pfad).

Ich habe mir vor kurzem erst, bzw. bevor ich mir Delta-Search eingefangen habe, meinen PC neu aufgesetzt, da ich ein zweites Antivir Programm installiert habe und das mir dann Dateien meines Ursprünglichen Antivir Programms gelöscht hat... -> BlueScreen beim Boot.

Wenn ich weitere Programme benötige, bzw. herunterladen sollte sag bescheid.

LG Daniel

PS: Ich schaue meistens 2 mal (oder öfter) am Tag hier rein

Zitat:

Aber ich habe mal einen Systemscan mit Avira gemacht aber ich finde die Log-Datei leider nicht (Pfad).

Deswegen hab ich doch extra einen Artikel in meiner erst AW verlinkt...

Entschuldigung, völlig übersehen...

Anbei die Funde-Log-Datei:

Code:

Exportierte Ereignisse:
 

22.04.2013 21:07 [System-Scanner] Malware gefunden

      Die Datei 'C:\Users\Daniel\Desktop\Hostprozess für 

      Windows-Dienste\6.1.7600.16385\svchost.exe'

      enthielt einen Virus oder unerwünschtes Programm 'TR/VB.Bodegun.B' [trojan].

      Durchgeführte Aktion(en):

      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '576415d8.qua' 

      verschoben!
 

22.04.2013 21:05 [Echtzeit-Scanner] Malware gefunden

      In der Datei 'C:\Users\Daniel\Desktop\Hostprozess für 

      Windows-Dienste\6.1.7600.16385\svchost.exe'

      wurde ein Virus oder unerwünschtes Programm 'TR/VB.Bodegun.B' [trojan] gefunden.

      Ausgeführte Aktion: Zugriff verweigern
 

08.04.2013 14:41 [System-Scanner] Malware gefunden

      Die Datei 

      'C:\Users\Daniel\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\26ebf384-6c316

      a2f'

      enthielt einen Virus oder unerwünschtes Programm 'JAVA/Jogek.ayr' [virus].

      Durchgeführte Aktion(en):

      Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '595e17fc.qua' 

      verschoben!

Hostprozess für Windows-Dienste-Datei habe ich manuel auf den Desktop gezogen um sie nochmal genau zu prüfen, deswegen der Pfad. Aber ich weiß auch nicht woher die Datei stammt

Scan-Log-Datei von Malewarebytes Anti-Maleware:

Code:

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.04.29.05
 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 10.0.9200.16540

Daniel :: DANIEL-TOSH [Administrator]
 

29.04.2013 16:32:36

mbam-log-2013-04-29 (16-32-36).txt
 

Art des Suchlaufs: Quick-Scan

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 215649

Laufzeit: 3 Minute(n), 49 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateien: 0

(Keine bösartigen Objekte gefunden)
 

(Ende)

Emsisoft Anti-Malware-Log wird noch nachgereicht.

Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.

Lies dir meine Anleitungen, die ich im Laufe dieses Strangs hier posten werde, aufmerksam durch. Frag umgehend nach, wenn dir irgendetwas unklar sein sollte, bevor du anfängst meine Anleitungen umzusetzen.
Solltest du bei einem Schritt Probleme haben, stoppe dort und beschreib mir das Problem so gut du kannst. Manchmal erfordert ein Schritt den vorhergehenden.
Bitte nur Scans durchführen zu denen du von einem Helfer aufgefordert wurdest! Installiere / Deinstalliere keine Software ohne Aufforderung!
Poste die Logfiles direkt in deinen Thread (bitte in CODE-Tags) und nicht als Anhang, ausser du wurdest dazu aufgefordert. Logs in Anhängen erschweren mir das Auswerten!
Die Logs der aufgegebenen Tools wie zB Malwarebytes sind immer zu posten - egal ob ein Fund dabei war oder nicht!
Beachte bitte auch => Löschen von Logfiles und andere Anfragen

Note:
Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread.
Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards.

Rootkitscan mit GMER

Bitte lade dir

GMER herunter: (Dateiname zufällig)

Schließe alle anderen Programme, deaktiviere deinen Virenscanner und trenne den Rechner vom Internet bevor du GMER startest.
Sollte sich nach dem Start ein Fenster mit folgender Warnung öffnen:
WARNING !!!
GMER has found system modification, which might have been caused by ROOTKIT activity.
Do you want to fully scan your system ?

Unbedingt auf "No" klicken.
Entferne rechts den Haken bei: IAT/EAT und Show All
Setze den Haken bei Quickscan und entferne ihn bei allen anderen Laufwerken.
Starte den Scan mit "Scan".
Mache nichts am Computer während der Scan läuft.
Wenn der Scan fertig ist klicke auf Save und speichere die Logfile unter Gmer.txt auf deinem Desktop. Mit "Ok" wird GMER beendet.

Antiviren-Programm und sonstige Scanner wieder einschalten, bevor Du ins Netz gehst!

Tauchen Probleme auf?

Probiere alternativ den abgesicherten Modus.
Erhältst du einen Bluescreen, dann entferne den Haken vor Devices.

Anschließend bitte MBAR ausführen:

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

Hallo,
habe deine Antwort erst gerade gesehen. Ich habe in der zwischenzeit einen weiteren Suchdurchlauf mit Malwarebytes Anti-Malware gemacht und einen Fund gefunden

Code:

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.04.29.05
 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 10.0.9200.16540

Daniel :: DANIEL-TOSH [Administrator]
 

29.04.2013 16:42:37

MBAM-log-2013-04-29 (18-10-11).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 210665

Laufzeit: 1 Stunde(n), 27 Minute(n), 17 Sekunde(n) [Abgebrochen]
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateien: 1

D:\PRIVAT\Daniel\Alt\Daniel\Anwendungsdaten\loadtbs\ytdl.exe (PUP.LoadTubes) -> Keine Aktion durchgeführt.
 

(Ende)

GMER-Log:

Code:

GMER 2.1.19163 - hxxp://www.gmer.net

Rootkit scan 2013-04-29 18:40:54

Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 TOSHIBA_ rev.FG00 465,76GB

Running: gmer_2.1.19163.exe; Driver: C:\Users\Daniel\AppData\Local\Temp\uwlorfod.sys
 
 

---- Kernel code sections - GMER 2.1 ----
 

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 560                                                  fffff80003405000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...]

INITKDBG  C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 607                                                  fffff8000340502f 16 bytes [00, 00, 00, 00, 00, 00, 00, ...]

.text     C:\Windows\system32\drivers\USBPORT.SYS!DllUnload                                                                   fffff880048f1d64 12 bytes {MOV RAX, 0xfffffa80058682a0; JMP RAX}
 

---- Devices - GMER 2.1 ----
 

Device    \Driver\am1nyfbc \Device\Scsi\am1nyfbc1                                                                             fffffa800596a2c0

Device    \Driver\am1nyfbc \Device\Scsi\am1nyfbc1Port1Path0Target0Lun0                                                        fffffa800596a2c0

Device    \FileSystem\Ntfs \Ntfs                                                                                              fffffa800319d2c0

Device    \Driver\NetBT \Device\NetBT_Tcpip_{BC2EDA5F-0BCC-41CB-B1B2-CB38DDEB96EE}                                            fffffa80057092c0

Device    \Driver\usbehci \Device\USBPDO-1                                                                                    fffffa80058bf2c0

Device    \Driver\cdrom \Device\CdRom0                                                                                        fffffa80055d72c0

Device    \Driver\cdrom \Device\CdRom1                                                                                        fffffa80055d72c0

Device    \Driver\NetBT \Device\NetBT_Tcpip_{1EC15ADB-0C2A-41E4-A8B5-4B4F7DB5D194}                                            fffffa80057092c0

Device    \Driver\usbehci \Device\USBFDO-0                                                                                    fffffa80058bf2c0

Device    \Driver\NetBT \Device\NetBT_Tcpip_{16D0CDC8-3918-4CC7-82A3-6EB4BD069F02}                                            fffffa80057092c0

Device    \Driver\usbehci \Device\USBFDO-1                                                                                    fffffa80058bf2c0

Device    \Driver\iaStor \Device\Dev_fffffa80032b5050                                                                         fffffa800a02dd60

Device    \Driver\NetBT \Device\NetBt_Wins_Export                                                                             fffffa80057092c0

Device    \Driver\NetBT \Device\NetBT_Tcpip_{7CB7F808-D1CE-46D4-BE6C-818F9A3D931B}                                            fffffa80057092c0

Device    \Driver\usbehci \Device\USBPDO-0                                                                                    fffffa80058bf2c0

Device    \Driver\am1nyfbc \Device\ScsiPort1                                                                                  fffffa800596a2c0
 

---- Modules - GMER 2.1 ----
 

Module    \SystemRoot\System32\Drivers\am1nyfbc.SYS                                                                           fffff88004970000-fffff880049c1000 (331776 bytes)
 

---- Threads - GMER 2.1 ----
 

Thread    System [4:5372]                                                                                                     fffffa800a026720

Thread    C:\Windows\system32\svchost.exe [476:1160]                                                                          000007fef80484d8

Thread    C:\Windows\system32\svchost.exe [476:2128]                                                                          000007fef80023a8

Thread    C:\Windows\system32\svchost.exe [476:2136]                                                                          000007fef8080d00

Thread    C:\Windows\system32\svchost.exe [476:2140]                                                                          000007fef5ad9498

Thread    C:\Windows\system32\svchost.exe [476:3684]                                                                          000007fef212506c

Thread    C:\Windows\system32\svchost.exe [476:3688]                                                                          000007fef4db1c20

Thread    C:\Windows\system32\svchost.exe [476:3692]                                                                          000007fef4db1c20

Thread    C:\Windows\system32\svchost.exe [476:6108]                                                                          000007fef1d81ab0

Thread    C:\Windows\system32\svchost.exe [476:4248]                                                                          000007fef1d44164

Thread    C:\Windows\system32\svchost.exe [476:4416]                                                                          000007fef058a978

Thread    C:\Windows\system32\svchost.exe [476:6044]                                                                          000007fef61817f8

Thread    C:\Windows\system32\svchost.exe [1064:1444]                                                                         000007fefb178274

Thread    C:\Windows\system32\svchost.exe [1064:2440]                                                                         000007fefb178274

Thread    C:\Windows\System32\spoolsv.exe [1400:2644]                                                                         000007fef48d10c8

Thread    C:\Windows\System32\spoolsv.exe [1400:2648]                                                                         000007fef48a6144

Thread    C:\Windows\System32\spoolsv.exe [1400:2652]                                                                         000007fef4695fd0

Thread    C:\Windows\System32\spoolsv.exe [1400:2656]                                                                         000007fef4683438

Thread    C:\Windows\System32\spoolsv.exe [1400:2660]                                                                         000007fef46963ec

Thread    C:\Windows\System32\spoolsv.exe [1400:2668]                                                                         000007fef4d85e5c

Thread    C:\Windows\system32\Dwm.exe [2532:2624]                                                                             000007fef52af0d8

Thread    C:\Windows\system32\Dwm.exe [2532:2628]                                                                             000007fef4ddabf0
 

---- Registry - GMER 2.1 ----
 

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC                                    

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                 0x00 0x00 0x00 0x00 ...

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                 0

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                              0x8F 0x37 0x6F 0xE1 ...

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                 C:\Program Files (x86)\DAEMON Tools Pro\

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001                           

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                        0xA0 0x02 0x00 0x00 ...

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                     0x31 0x32 0xD8 0x64 ...

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0                      

Reg       HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                0xCF 0x4A 0x03 0xA7 ...

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)                

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                     0x00 0x00 0x00 0x00 ...

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                     0

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                  0x8F 0x37 0x6F 0xE1 ...

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                     C:\Program Files (x86)\DAEMON Tools Pro\

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)       

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                            0xA0 0x02 0x00 0x00 ...

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                         0x31 0x32 0xD8 0x64 ...

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)  

Reg       HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                    0xCF 0x4A 0x03 0xA7 ...
 

---- EOF - GMER 2.1 ----

Malwarebytes Anti-Rootkit-Log (mbar-log-2013-04-29 (18-54-23)):

Code:

Malwarebytes Anti-Rootkit BETA 1.05.0.1001

www.malwarebytes.org
 

Database version: v2013.04.29.07
 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 10.0.9200.16540

Daniel :: DANIEL-TOSH [administrator]
 

29.04.2013 18:54:23

mbar-log-2013-04-29 (18-54-23).txt
 

Scan type: Quick scan

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P

Scan options disabled: 

Objects scanned: 29361

Time elapsed: 11 minute(s), 39 second(s)
 

Memory Processes Detected: 0

(No malicious items detected)
 

Memory Modules Detected: 0

(No malicious items detected)
 

Registry Keys Detected: 0

(No malicious items detected)
 

Registry Values Detected: 0

(No malicious items detected)
 

Registry Data Items Detected: 0

(No malicious items detected)
 

Folders Detected: 0

(No malicious items detected)
 

Files Detected: 0

(No malicious items detected)
 

(end)

Malwarebytes Anti-Rootkit-Log (system-log):

Code:

---------------------------------------

Malwarebytes Anti-Rootkit BETA 1.05.0.1001
 

(c) Malwarebytes Corporation 2011-2012
 

OS version: 6.1.7601 Windows 7 Service Pack 1 x64
 

Account is Administrative
 

Internet Explorer version: 10.0.9200.16540
 

File system is: NTFS

Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED

CPU speed: 2.128000 GHz

Memory total: 3210330112, free: 1436520448
 

------------ Kernel report ------------

     04/29/2013 18:15:24

------------ Loaded modules -----------

\SystemRoot\system32\ntoskrnl.exe

\SystemRoot\system32\hal.dll

\SystemRoot\system32\kdcom.dll

\SystemRoot\system32\mcupdate_GenuineIntel.dll

\SystemRoot\system32\PSHED.dll

\SystemRoot\system32\CLFS.SYS

\SystemRoot\system32\CI.dll

\SystemRoot\system32\drivers\Wdf01000.sys

\SystemRoot\system32\drivers\WDFLDR.SYS

\SystemRoot\System32\Drivers\sptd.sys

\SystemRoot\system32\drivers\ACPI.sys

\SystemRoot\system32\drivers\WMILIB.SYS

\SystemRoot\system32\drivers\msisadrv.sys

\SystemRoot\system32\drivers\vdrvroot.sys

\SystemRoot\system32\DRIVERS\LPCFilter.sys

\SystemRoot\system32\drivers\pci.sys

\SystemRoot\System32\drivers\partmgr.sys

\SystemRoot\system32\DRIVERS\compbatt.sys

\SystemRoot\system32\DRIVERS\BATTC.SYS

\SystemRoot\system32\drivers\volmgr.sys

\SystemRoot\System32\drivers\volmgrx.sys

\SystemRoot\System32\drivers\mountmgr.sys

\SystemRoot\system32\drivers\pciide.sys

\SystemRoot\system32\drivers\PCIIDEX.SYS

\SystemRoot\system32\DRIVERS\iaStor.sys

\SystemRoot\system32\drivers\atapi.sys

\SystemRoot\system32\drivers\ataport.SYS

\SystemRoot\system32\drivers\msahci.sys

\SystemRoot\system32\drivers\amdxata.sys

\SystemRoot\system32\drivers\fltmgr.sys

\SystemRoot\system32\drivers\fileinfo.sys

\SystemRoot\System32\Drivers\Ntfs.sys

\SystemRoot\System32\Drivers\msrpc.sys

\SystemRoot\System32\Drivers\ksecdd.sys

\SystemRoot\System32\Drivers\cng.sys

\SystemRoot\System32\drivers\pcw.sys

\SystemRoot\System32\Drivers\Fs_Rec.sys

\SystemRoot\system32\drivers\ndis.sys

\SystemRoot\system32\drivers\NETIO.SYS

\SystemRoot\System32\Drivers\ksecpkg.sys

\SystemRoot\System32\drivers\tcpip.sys

\SystemRoot\System32\drivers\fwpkclnt.sys

\SystemRoot\system32\drivers\volsnap.sys

\SystemRoot\system32\DRIVERS\TVALZ_O.SYS

\SystemRoot\system32\DRIVERS\tos_sps64.sys

\SystemRoot\System32\Drivers\spldr.sys

\SystemRoot\System32\Drivers\SmartDefragDriver.sys

\SystemRoot\System32\drivers\rdyboost.sys

\SystemRoot\System32\Drivers\mup.sys

\SystemRoot\System32\drivers\hwpolicy.sys

\SystemRoot\System32\DRIVERS\fvevol.sys

\SystemRoot\system32\DRIVERS\disk.sys

\SystemRoot\system32\DRIVERS\CLASSPNP.SYS

\SystemRoot\system32\DRIVERS\cdrom.sys

\SystemRoot\System32\Drivers\Null.SYS

\SystemRoot\System32\Drivers\Beep.SYS

\SystemRoot\System32\drivers\vga.sys

\SystemRoot\System32\drivers\VIDEOPRT.SYS

\SystemRoot\System32\drivers\watchdog.sys

\SystemRoot\System32\DRIVERS\RDPCDD.sys

\SystemRoot\system32\drivers\rdpencdd.sys

\SystemRoot\system32\drivers\rdprefmp.sys

\SystemRoot\System32\Drivers\Msfs.SYS

\SystemRoot\System32\Drivers\Npfs.SYS

\SystemRoot\system32\DRIVERS\tdx.sys

\SystemRoot\system32\DRIVERS\TDI.SYS

\SystemRoot\system32\drivers\afd.sys

\SystemRoot\System32\DRIVERS\netbt.sys

\SystemRoot\system32\DRIVERS\wfplwf.sys

\SystemRoot\system32\DRIVERS\pacer.sys

\SystemRoot\system32\DRIVERS\vwififlt.sys

\SystemRoot\system32\DRIVERS\cnnctfy2.sys

\SystemRoot\system32\DRIVERS\netbios.sys

\SystemRoot\system32\DRIVERS\wanarp.sys

\SystemRoot\system32\drivers\termdd.sys

\SystemRoot\system32\DRIVERS\rdbss.sys

\SystemRoot\system32\drivers\nsiproxy.sys

\SystemRoot\system32\drivers\mssmbios.sys

\??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys

\SystemRoot\System32\drivers\discache.sys

\SystemRoot\System32\Drivers\dfsc.sys

\SystemRoot\system32\DRIVERS\blbdrive.sys

\SystemRoot\system32\DRIVERS\avkmgr.sys

\SystemRoot\system32\DRIVERS\avipbb.sys

\SystemRoot\system32\DRIVERS\tunnel.sys

\SystemRoot\system32\DRIVERS\atikmdag.sys

\SystemRoot\System32\drivers\dxgkrnl.sys

\SystemRoot\System32\drivers\dxgmms1.sys

\SystemRoot\system32\drivers\HDAudBus.sys

\SystemRoot\system32\DRIVERS\HECIx64.sys

\SystemRoot\system32\drivers\usbehci.sys

\SystemRoot\system32\drivers\USBPORT.SYS

\SystemRoot\system32\DRIVERS\rtl8192se.sys

\SystemRoot\system32\DRIVERS\vwifibus.sys

\SystemRoot\system32\DRIVERS\Rt64win7.sys

\SystemRoot\system32\DRIVERS\CmBatt.sys

\SystemRoot\system32\drivers\i8042prt.sys

\SystemRoot\system32\drivers\kbdclass.sys

\SystemRoot\system32\DRIVERS\SynTP.sys

\SystemRoot\system32\DRIVERS\USBD.SYS

\SystemRoot\system32\DRIVERS\mouclass.sys

\SystemRoot\system32\DRIVERS\tdcmdpst.sys

\SystemRoot\System32\Drivers\am1nyfbc.SYS

\SystemRoot\System32\Drivers\SCSIPORT.SYS

\SystemRoot\system32\DRIVERS\TVALZFL.sys

\SystemRoot\system32\DRIVERS\intelppm.sys

\SystemRoot\system32\drivers\CompositeBus.sys

\SystemRoot\system32\DRIVERS\AgileVpn.sys

\SystemRoot\system32\DRIVERS\rasl2tp.sys

\SystemRoot\system32\DRIVERS\ndistapi.sys

\SystemRoot\system32\DRIVERS\ndiswan.sys

\SystemRoot\system32\DRIVERS\raspppoe.sys

\SystemRoot\system32\DRIVERS\raspptp.sys

\SystemRoot\system32\DRIVERS\rassstp.sys

\SystemRoot\system32\DRIVERS\hamachi.sys

\SystemRoot\system32\drivers\swenum.sys

\SystemRoot\system32\drivers\ks.sys

\SystemRoot\system32\drivers\umbus.sys

\SystemRoot\system32\DRIVERS\usbhub.sys

\SystemRoot\System32\Drivers\NDProxy.SYS

\SystemRoot\system32\drivers\AtihdW76.sys

\SystemRoot\system32\drivers\portcls.sys

\SystemRoot\system32\drivers\drmk.sys

\SystemRoot\system32\drivers\ksthunk.sys

\SystemRoot\system32\drivers\RTKVHD64.sys

\SystemRoot\System32\Drivers\crashdmp.sys

\SystemRoot\System32\Drivers\dump_iaStor.sys

\SystemRoot\System32\Drivers\dump_dumpfve.sys

\SystemRoot\System32\win32k.sys

\SystemRoot\System32\drivers\Dxapi.sys

\SystemRoot\system32\DRIVERS\usbccgp.sys

\SystemRoot\system32\DRIVERS\HIDPARSE.SYS

\SystemRoot\System32\Drivers\usbvideo.sys

\SystemRoot\system32\DRIVERS\pgeffect.sys

\SystemRoot\System32\TSDDD.dll

\SystemRoot\System32\cdd.dll

\SystemRoot\system32\drivers\luafv.sys

\SystemRoot\system32\DRIVERS\avgntflt.sys

\SystemRoot\system32\DRIVERS\lltdio.sys

\SystemRoot\system32\DRIVERS\nwifi.sys

\SystemRoot\system32\DRIVERS\ndisuio.sys

\SystemRoot\system32\DRIVERS\rspndr.sys

\SystemRoot\system32\drivers\HTTP.sys

\SystemRoot\system32\DRIVERS\bowser.sys

\SystemRoot\System32\drivers\mpsdrv.sys

\SystemRoot\system32\DRIVERS\mrxsmb.sys

\SystemRoot\system32\DRIVERS\mrxsmb10.sys

\SystemRoot\system32\DRIVERS\mrxsmb20.sys

\SystemRoot\system32\drivers\peauth.sys

\SystemRoot\system32\drivers\regi.sys

\SystemRoot\System32\Drivers\secdrv.SYS

\SystemRoot\System32\DRIVERS\srvnet.sys

\SystemRoot\System32\drivers\tcpipreg.sys

\SystemRoot\System32\DRIVERS\srv2.sys

\SystemRoot\System32\DRIVERS\srv.sys

\SystemRoot\System32\drivers\ipnat.sys

\SystemRoot\system32\DRIVERS\monitor.sys

\SystemRoot\System32\ATMFD.DLL

\SystemRoot\system32\DRIVERS\hidusb.sys

\SystemRoot\system32\DRIVERS\HIDCLASS.SYS

\SystemRoot\system32\DRIVERS\mouhid.sys

\??\C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys

\??\C:\Windows\system32\drivers\mbamchameleon.sys

\??\C:\Windows\system32\drivers\mbamswissarmy.sys

\Windows\System32\ntdll.dll

\Windows\System32\smss.exe

\Windows\System32\apisetschema.dll

\Windows\System32\autochk.exe

\Windows\System32\nsi.dll

\Windows\System32\kernel32.dll

\Windows\System32\difxapi.dll

\Windows\System32\ws2_32.dll

\Windows\System32\comdlg32.dll

\Windows\System32\msctf.dll

\Windows\System32\imm32.dll

\Windows\System32\psapi.dll

\Windows\System32\gdi32.dll

\Windows\System32\Wldap32.dll

\Windows\System32\normaliz.dll

\Windows\System32\clbcatq.dll

\Windows\System32\iertutil.dll

\Windows\System32\urlmon.dll

\Windows\System32\sechost.dll

\Windows\System32\shlwapi.dll

\Windows\System32\oleaut32.dll

\Windows\System32\advapi32.dll

\Windows\System32\wininet.dll

\Windows\System32\user32.dll

\Windows\System32\shell32.dll

\Windows\System32\lpk.dll

\Windows\System32\rpcrt4.dll

\Windows\System32\ole32.dll

\Windows\System32\imagehlp.dll

\Windows\System32\msvcrt.dll

\Windows\System32\usp10.dll

\Windows\System32\setupapi.dll

----------- End -----------

<<<1>>>

Upper Device Name: \Device\Harddisk0\DR0

Upper Device Object: 0xfffffa80052f2060

Upper Device Driver Name: \Driver\Disk\

Lower Device Name: \Device\Ide\IAAStorageDevice-1\

Lower Device Object: 0xfffffa80032b5050

Lower Device Driver Name: \Driver\iaStor\

Driver name found: iaStor

Initialization returned 0x0

Load Function returned 0x0

Downloaded database version: v2013.04.29.06

Downloaded database version: v2013.04.25.01

Initializing...

Done!

<<<2>>>

Device number: 0, partition: 2

Physical Sector Size: 512

Drive: 0, DevicePointer: 0xfffffa80052f2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

--------- Disk Stack ------

DevicePointer: 0xfffffa80051979d0, DeviceName: Unknown, DriverName: \Driver\partmgr\

DevicePointer: 0xfffffa80052f2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

DevicePointer: 0xfffffa80032b5050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\

------------ End ----------

Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

Upper DeviceData: 0xfffff8a009fb95e0, 0xfffffa80052f2060, 0xfffffa8008531090

Lower DeviceData: 0xfffff8a01163dd00, 0xfffffa80032b5050, 0xfffffa8007f9f600

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

Scanning directory: C:\Windows\system32\drivers...

<<<2>>>

Device number: 0, partition: 2

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

Done!

Drive 0

Scanning MBR on drive 0...

Inspecting partition table:

MBR Signature: 55AA

Disk Signature: E95727BD
 

Partition information:
 

    Partition 0 type is Other (0x27)

    Partition is ACTIVE.

    Partition starts at LBA: 2048  Numsec = 819200

    Partition file system is NTFS

    Partition is bootable
 

    Partition 1 type is Primary (0x7)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 821248  Numsec = 488386560
 

    Partition 2 type is Primary (0x7)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 489207808  Numsec = 487565312
 

    Partition 3 type is Empty (0x0)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 0  Numsec = 0
 

Disk Size: 500107862016 bytes

Sector size: 512 bytes
 

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...

Done!

Performing system, memory and registry scan...

Scan Interrupted

Done!

=======================================
 
 

---------------------------------------

Malwarebytes Anti-Rootkit BETA 1.05.0.1001
 

(c) Malwarebytes Corporation 2011-2012
 

OS version: 6.1.7601 Windows 7 Service Pack 1 x64
 

Account is Administrative
 

Internet Explorer version: 10.0.9200.16540
 

File system is: NTFS

Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED

CPU speed: 2.128000 GHz

Memory total: 3210330112, free: 1867448320
 

------------ Kernel report ------------

     04/29/2013 18:41:20

------------ Loaded modules -----------

\SystemRoot\system32\ntoskrnl.exe

\SystemRoot\system32\hal.dll

\SystemRoot\system32\kdcom.dll

\SystemRoot\system32\mcupdate_GenuineIntel.dll

\SystemRoot\system32\PSHED.dll

\SystemRoot\system32\CLFS.SYS

\SystemRoot\system32\CI.dll

\SystemRoot\system32\drivers\Wdf01000.sys

\SystemRoot\system32\drivers\WDFLDR.SYS

\SystemRoot\System32\Drivers\sptd.sys

\SystemRoot\system32\drivers\ACPI.sys

\SystemRoot\system32\drivers\WMILIB.SYS

\SystemRoot\system32\drivers\msisadrv.sys

\SystemRoot\system32\drivers\vdrvroot.sys

\SystemRoot\system32\DRIVERS\LPCFilter.sys

\SystemRoot\system32\drivers\pci.sys

\SystemRoot\System32\drivers\partmgr.sys

\SystemRoot\system32\DRIVERS\compbatt.sys

\SystemRoot\system32\DRIVERS\BATTC.SYS

\SystemRoot\system32\drivers\volmgr.sys

\SystemRoot\System32\drivers\volmgrx.sys

\SystemRoot\System32\drivers\mountmgr.sys

\SystemRoot\system32\drivers\pciide.sys

\SystemRoot\system32\drivers\PCIIDEX.SYS

\SystemRoot\system32\DRIVERS\iaStor.sys

\SystemRoot\system32\drivers\atapi.sys

\SystemRoot\system32\drivers\ataport.SYS

\SystemRoot\system32\drivers\msahci.sys

\SystemRoot\system32\drivers\amdxata.sys

\SystemRoot\system32\drivers\fltmgr.sys

\SystemRoot\system32\drivers\fileinfo.sys

\SystemRoot\System32\Drivers\Ntfs.sys

\SystemRoot\System32\Drivers\msrpc.sys

\SystemRoot\System32\Drivers\ksecdd.sys

\SystemRoot\System32\Drivers\cng.sys

\SystemRoot\System32\drivers\pcw.sys

\SystemRoot\System32\Drivers\Fs_Rec.sys

\SystemRoot\system32\drivers\ndis.sys

\SystemRoot\system32\drivers\NETIO.SYS

\SystemRoot\System32\Drivers\ksecpkg.sys

\SystemRoot\System32\drivers\tcpip.sys

\SystemRoot\System32\drivers\fwpkclnt.sys

\SystemRoot\system32\drivers\volsnap.sys

\SystemRoot\system32\DRIVERS\TVALZ_O.SYS

\SystemRoot\system32\DRIVERS\tos_sps64.sys

\SystemRoot\System32\Drivers\spldr.sys

\SystemRoot\System32\Drivers\SmartDefragDriver.sys

\SystemRoot\System32\drivers\rdyboost.sys

\SystemRoot\System32\Drivers\mup.sys

\SystemRoot\System32\drivers\hwpolicy.sys

\SystemRoot\System32\DRIVERS\fvevol.sys

\SystemRoot\system32\DRIVERS\disk.sys

\SystemRoot\system32\DRIVERS\CLASSPNP.SYS

\SystemRoot\system32\DRIVERS\cdrom.sys

\SystemRoot\System32\Drivers\Null.SYS

\SystemRoot\System32\Drivers\Beep.SYS

\SystemRoot\System32\drivers\vga.sys

\SystemRoot\System32\drivers\VIDEOPRT.SYS

\SystemRoot\System32\drivers\watchdog.sys

\SystemRoot\System32\DRIVERS\RDPCDD.sys

\SystemRoot\system32\drivers\rdpencdd.sys

\SystemRoot\system32\drivers\rdprefmp.sys

\SystemRoot\System32\Drivers\Msfs.SYS

\SystemRoot\System32\Drivers\Npfs.SYS

\SystemRoot\system32\DRIVERS\tdx.sys

\SystemRoot\system32\DRIVERS\TDI.SYS

\SystemRoot\system32\drivers\afd.sys

\SystemRoot\System32\DRIVERS\netbt.sys

\SystemRoot\system32\DRIVERS\wfplwf.sys

\SystemRoot\system32\DRIVERS\pacer.sys

\SystemRoot\system32\DRIVERS\vwififlt.sys

\SystemRoot\system32\DRIVERS\cnnctfy2.sys

\SystemRoot\system32\DRIVERS\netbios.sys

\SystemRoot\system32\DRIVERS\wanarp.sys

\SystemRoot\system32\drivers\termdd.sys

\SystemRoot\system32\DRIVERS\rdbss.sys

\SystemRoot\system32\drivers\nsiproxy.sys

\SystemRoot\system32\drivers\mssmbios.sys

\??\C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys

\SystemRoot\System32\drivers\discache.sys

\SystemRoot\System32\Drivers\dfsc.sys

\SystemRoot\system32\DRIVERS\blbdrive.sys

\SystemRoot\system32\DRIVERS\avkmgr.sys

\SystemRoot\system32\DRIVERS\avipbb.sys

\SystemRoot\system32\DRIVERS\tunnel.sys

\SystemRoot\system32\DRIVERS\atikmdag.sys

\SystemRoot\System32\drivers\dxgkrnl.sys

\SystemRoot\System32\drivers\dxgmms1.sys

\SystemRoot\system32\drivers\HDAudBus.sys

\SystemRoot\system32\DRIVERS\HECIx64.sys

\SystemRoot\system32\drivers\usbehci.sys

\SystemRoot\system32\drivers\USBPORT.SYS

\SystemRoot\system32\DRIVERS\rtl8192se.sys

\SystemRoot\system32\DRIVERS\vwifibus.sys

\SystemRoot\system32\DRIVERS\Rt64win7.sys

\SystemRoot\system32\DRIVERS\CmBatt.sys

\SystemRoot\system32\drivers\i8042prt.sys

\SystemRoot\system32\drivers\kbdclass.sys

\SystemRoot\system32\DRIVERS\SynTP.sys

\SystemRoot\system32\DRIVERS\USBD.SYS

\SystemRoot\system32\DRIVERS\mouclass.sys

\SystemRoot\system32\DRIVERS\tdcmdpst.sys

\SystemRoot\System32\Drivers\am1nyfbc.SYS

\SystemRoot\System32\Drivers\SCSIPORT.SYS

\SystemRoot\system32\DRIVERS\TVALZFL.sys

\SystemRoot\system32\DRIVERS\intelppm.sys

\SystemRoot\system32\drivers\CompositeBus.sys

\SystemRoot\system32\DRIVERS\AgileVpn.sys

\SystemRoot\system32\DRIVERS\rasl2tp.sys

\SystemRoot\system32\DRIVERS\ndistapi.sys

\SystemRoot\system32\DRIVERS\ndiswan.sys

\SystemRoot\system32\DRIVERS\raspppoe.sys

\SystemRoot\system32\DRIVERS\raspptp.sys

\SystemRoot\system32\DRIVERS\rassstp.sys

\SystemRoot\system32\DRIVERS\hamachi.sys

\SystemRoot\system32\drivers\swenum.sys

\SystemRoot\system32\drivers\ks.sys

\SystemRoot\system32\drivers\umbus.sys

\SystemRoot\system32\DRIVERS\usbhub.sys

\SystemRoot\System32\Drivers\NDProxy.SYS

\SystemRoot\system32\drivers\AtihdW76.sys

\SystemRoot\system32\drivers\portcls.sys

\SystemRoot\system32\drivers\drmk.sys

\SystemRoot\system32\drivers\ksthunk.sys

\SystemRoot\system32\drivers\RTKVHD64.sys

\SystemRoot\System32\Drivers\crashdmp.sys

\SystemRoot\System32\Drivers\dump_iaStor.sys

\SystemRoot\System32\Drivers\dump_dumpfve.sys

\SystemRoot\System32\win32k.sys

\SystemRoot\System32\drivers\Dxapi.sys

\SystemRoot\system32\DRIVERS\usbccgp.sys

\SystemRoot\system32\DRIVERS\HIDPARSE.SYS

\SystemRoot\System32\Drivers\usbvideo.sys

\SystemRoot\system32\DRIVERS\pgeffect.sys

\SystemRoot\System32\TSDDD.dll

\SystemRoot\System32\cdd.dll

\SystemRoot\system32\drivers\luafv.sys

\SystemRoot\system32\DRIVERS\avgntflt.sys

\SystemRoot\system32\DRIVERS\lltdio.sys

\SystemRoot\system32\DRIVERS\nwifi.sys

\SystemRoot\system32\DRIVERS\ndisuio.sys

\SystemRoot\system32\DRIVERS\rspndr.sys

\SystemRoot\system32\drivers\HTTP.sys

\SystemRoot\system32\DRIVERS\bowser.sys

\SystemRoot\System32\drivers\mpsdrv.sys

\SystemRoot\system32\DRIVERS\mrxsmb.sys

\SystemRoot\system32\DRIVERS\mrxsmb10.sys

\SystemRoot\system32\DRIVERS\mrxsmb20.sys

\SystemRoot\system32\drivers\peauth.sys

\SystemRoot\system32\drivers\regi.sys

\SystemRoot\System32\Drivers\secdrv.SYS

\SystemRoot\System32\DRIVERS\srvnet.sys

\SystemRoot\System32\drivers\tcpipreg.sys

\SystemRoot\System32\DRIVERS\srv2.sys

\SystemRoot\System32\DRIVERS\srv.sys

\SystemRoot\System32\drivers\ipnat.sys

\SystemRoot\system32\DRIVERS\monitor.sys

\SystemRoot\System32\ATMFD.DLL

\SystemRoot\system32\DRIVERS\hidusb.sys

\SystemRoot\system32\DRIVERS\HIDCLASS.SYS

\SystemRoot\system32\DRIVERS\mouhid.sys

\??\C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys

\SystemRoot\system32\drivers\WudfPf.sys

\??\C:\Users\Daniel\AppData\Local\Temp\uwlorfod.sys

\??\C:\Windows\system32\drivers\mbamchameleon.sys

\??\C:\Windows\system32\drivers\mbamswissarmy.sys

\Windows\System32\ntdll.dll

\Windows\System32\smss.exe

\Windows\System32\apisetschema.dll

\Windows\System32\autochk.exe

\Windows\System32\nsi.dll

\Windows\System32\kernel32.dll

\Windows\System32\difxapi.dll

\Windows\System32\ws2_32.dll

\Windows\System32\comdlg32.dll

\Windows\System32\msctf.dll

\Windows\System32\imm32.dll

\Windows\System32\psapi.dll

\Windows\System32\gdi32.dll

\Windows\System32\Wldap32.dll

\Windows\System32\normaliz.dll

\Windows\System32\clbcatq.dll

\Windows\System32\iertutil.dll

\Windows\System32\urlmon.dll

\Windows\System32\sechost.dll

\Windows\System32\shlwapi.dll

\Windows\System32\oleaut32.dll

\Windows\System32\advapi32.dll

\Windows\System32\wininet.dll

\Windows\System32\user32.dll

\Windows\System32\shell32.dll

\Windows\System32\lpk.dll

\Windows\System32\rpcrt4.dll

\Windows\System32\ole32.dll

\Windows\System32\imagehlp.dll

\Windows\System32\msvcrt.dll

\Windows\System32\usp10.dll

\Windows\System32\setupapi.dll

----------- End -----------

<<<1>>>

Upper Device Name: \Device\Harddisk0\DR0

Upper Device Object: 0xfffffa80052f2060

Upper Device Driver Name: \Driver\Disk\

Lower Device Name: \Device\Ide\IAAStorageDevice-1\

Lower Device Object: 0xfffffa80032b5050

Lower Device Driver Name: \Driver\iaStor\

Device already Exists: 0xfffffa8007f9f600

Host not found

Downloaded database version: v2013.04.29.07

Initializing...

Done!

<<<2>>>

Device number: 0, partition: 2

Physical Sector Size: 512

Drive: 0, DevicePointer: 0xfffffa80052f2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

--------- Disk Stack ------

DevicePointer: 0xfffffa80051979d0, DeviceName: Unknown, DriverName: \Driver\partmgr\

DevicePointer: 0xfffffa80052f2060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

DevicePointer: 0xfffffa80032b5050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\

------------ End ----------

Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

Upper DeviceData: 0xfffff8a011892290, 0xfffffa80052f2060, 0xfffffa8008531090

Lower DeviceData: 0xfffff8a00cb79370, 0xfffffa80032b5050, 0xfffffa8007f9f600

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

Scanning directory: C:\Windows\system32\drivers...

<<<2>>>

Device number: 0, partition: 2

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

Done!

Drive 0

Scanning MBR on drive 0...

Inspecting partition table:

MBR Signature: 55AA

Disk Signature: E95727BD
 

Partition information:
 

    Partition 0 type is Other (0x27)

    Partition is ACTIVE.

    Partition starts at LBA: 2048  Numsec = 819200

    Partition file system is NTFS

    Partition is bootable
 

    Partition 1 type is Primary (0x7)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 821248  Numsec = 488386560
 

    Partition 2 type is Primary (0x7)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 489207808  Numsec = 487565312
 

    Partition 3 type is Empty (0x0)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 0  Numsec = 0
 

Disk Size: 500107862016 bytes

Sector size: 512 bytes
 

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...

Done!

Performing system, memory and registry scan...

Done!

Scan finished

=======================================

aswMBR

Downloade dir bitte

aswMBR.exe und speichere die Datei auf deinem Desktop.

Starte die aswMBR.exe - (aswMBR.exe Anleitung)
Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
Klicke auf Scan.
Warte bitte bis Scan finished successfully im DOS-Fenster steht.
Drücke auf Save Log und speichere diese auf dem Desktop.

Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).

TDSS-Killer

Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Ok ich werde die Programme gleich wie von dir beschrieben ausführen. Doch ich habe oben schon mal erwähnt:

Zitat:

Ich habe mir vor kurzem erst, bzw. bevor ich mir Delta-Search eingefangen habe, meinen PC neu aufgesetzt, da ich ein zweites Antivir Programm installiert habe und das mir dann Dateien meines Ursprünglichen Antivir Programms gelöscht hat... -> BlueScreen beim Boot.

Macht das jetzt was aus wenn ich so viele Antivir Programme gleichzeitg auf meinem PC habe, bzw. sie mit dem Echtzeitscanner das andere Programm vill. überprüfen... Ich weis nicht, aber ich habe mit halt meinen PC schon mal so abschmieren lassen...

Behalte bitte nur einen Virenscanner, zwei verursachen immer Probleme!

Ok so hier die beiden Logs

aswMBR:

Code:

PC beim erten Scan abgestürtztaswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software

Run date: 2013-04-30 19:56:10

-----------------------------

19:56:10.467    OS Version: Windows x64 6.1.7601 Service Pack 1

19:56:10.467    Number of processors: 4 586 0x2502

19:56:10.467    ComputerName: DANIEL-TOSH  UserName: Daniel

19:56:13.119    Initialize success

19:56:29.935    AVAST engine defs: 13043000

19:56:35.770    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1

19:56:35.770    Disk 0 Vendor: TOSHIBA_ FG00 Size: 476940MB BusType: 3

19:56:35.895    Disk 0 MBR read successfully

19:56:35.910    Disk 0 MBR scan

19:56:35.910    Disk 0 Windows 7 default MBR code

19:56:35.910    Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS          400 MB offset 2048

19:56:35.926    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       238470 MB offset 821248

19:56:35.957    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       238069 MB offset 489207808

19:56:36.175    Disk 0 scanning C:\Windows\system32\drivers

19:56:53.928    Service scanning

19:57:54.285    Modules scanning

19:57:54.285    Disk 0 trace - called modules:

19:57:54.316    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys sptd.sys hal.dll 

19:57:54.815    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80052d6060]

19:57:54.815    3 CLASSPNP.SYS[fffff88001d8b43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80032b4050]

19:57:56.547    AVAST engine scan C:\Windows

19:57:59.370    AVAST engine scan C:\Windows\system32

20:06:59.076    AVAST engine scan C:\Windows\system32\drivers

20:07:27.729    AVAST engine scan C:\Users\Daniel

20:10:12.917    AVAST engine scan C:\ProgramData

20:11:22.534    Scan finished successfully

20:12:10.046    Disk 0 MBR has been saved successfully to "C:\Users\Daniel\Desktop\MBR.dat"

20:12:10.051    The log file has been saved successfully to "C:\Users\Daniel\Desktop\aswMBR.txt"

Bei dem Scan von aswMBR ist mein Pc zwischen durch abgestürtzt, konnte aber nach einem Neustart den Scan diesmal ohne Probleme fertigstellen.

TDSSKiller:

Code:

20:43:35.0046 2608  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

20:43:35.0486 2608  ============================================================

20:43:35.0486 2608  Current date / time: 2013/04/30 20:43:35.0486

20:43:35.0486 2608  SystemInfo:

20:43:35.0486 2608  

20:43:35.0486 2608  OS Version: 6.1.7601 ServicePack: 1.0

20:43:35.0486 2608  Product type: Workstation

20:43:35.0486 2608  ComputerName: DANIEL-TOSH

20:43:35.0486 2608  UserName: Daniel

20:43:35.0486 2608  Windows directory: C:\Windows

20:43:35.0486 2608  System windows directory: C:\Windows

20:43:35.0486 2608  Running under WOW64

20:43:35.0486 2608  Processor architecture: Intel x64

20:43:35.0486 2608  Number of processors: 4

20:43:35.0486 2608  Page size: 0x1000

20:43:35.0486 2608  Boot type: Normal boot

20:43:35.0486 2608  ============================================================

20:43:36.0316 2608  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

20:43:36.0326 2608  ============================================================

20:43:36.0326 2608  \Device\Harddisk0\DR0:

20:43:36.0326 2608  MBR partitions:

20:43:36.0326 2608  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x1D1C3000

20:43:36.0326 2608  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D28B800, BlocksNum 0x1D0FA800

20:43:36.0326 2608  ============================================================

20:43:36.0356 2608  C: <-> \Device\Harddisk0\DR0\Partition1

20:43:36.0406 2608  D: <-> \Device\Harddisk0\DR0\Partition2

20:43:36.0406 2608  ============================================================

20:43:36.0406 2608  Initialize success

20:43:36.0406 2608  ============================================================

20:43:44.0187 3424  ============================================================

20:43:44.0187 3424  Scan started

20:43:44.0187 3424  Mode: Manual; 

20:43:44.0187 3424  ============================================================

20:43:44.0627 3424  ================ Scan system memory ========================

20:43:44.0627 3424  System memory - ok

20:43:44.0627 3424  ================ Scan services =============================

20:43:44.0997 3424  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys

20:43:45.0007 3424  1394ohci - ok

20:43:45.0167 3424  [ 2D6434E957F7CFA0035C20890F77BBC6 ] a2acc           C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys

20:43:45.0167 3424  a2acc - ok

20:43:45.0307 3424  [ A7F08A73F2668FCD2B51A66751FA7FF3 ] a2AntiMalware   C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe

20:43:45.0327 3424  a2AntiMalware - ok

20:43:45.0367 3424  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9 ] A2DDA           C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys

20:43:45.0367 3424  A2DDA - ok

20:43:45.0397 3424  [ 3D55CE53128C81E06CD6B024C3B9FAC3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys

20:43:45.0397 3424  a2injectiondriver - ok

20:43:45.0437 3424  [ 0932B29AA1B9372FFE6D3AF8BA2ABA3A ] a2util          C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys

20:43:45.0437 3424  a2util - ok

20:43:45.0487 3424  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys

20:43:45.0497 3424  ACPI - ok

20:43:45.0527 3424  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys

20:43:45.0527 3424  AcpiPmi - ok

20:43:45.0637 3424  [ 479901C99FA62D1C3261B7ACB1228DAD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

20:43:45.0637 3424  AdobeFlashPlayerUpdateSvc - ok

20:43:45.0677 3424  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys

20:43:45.0687 3424  adp94xx - ok

20:43:45.0717 3424  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys

20:43:45.0717 3424  adpahci - ok

20:43:45.0747 3424  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys

20:43:45.0747 3424  adpu320 - ok

20:43:45.0837 3424  [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe

20:43:45.0857 3424  AdvancedSystemCareService6 - ok

20:43:45.0897 3424  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

20:43:45.0897 3424  AeLookupSvc - ok

20:43:45.0967 3424  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys

20:43:45.0977 3424  AFD - ok

20:43:46.0037 3424  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys

20:43:46.0047 3424  AgereSoftModem - ok

20:43:46.0077 3424  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys

20:43:46.0077 3424  agp440 - ok

20:43:46.0117 3424  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe

20:43:46.0117 3424  ALG - ok

20:43:46.0137 3424  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys

20:43:46.0137 3424  aliide - ok

20:43:46.0167 3424  [ 16D2883EA6296333435DF0C8B7D164B8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

20:43:46.0167 3424  AMD External Events Utility - ok

20:43:46.0207 3424  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys

20:43:46.0207 3424  amdide - ok

20:43:46.0257 3424  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys

20:43:46.0257 3424  AmdK8 - ok

20:43:46.0277 3424  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys

20:43:46.0277 3424  AmdPPM - ok

20:43:46.0307 3424  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

20:43:46.0307 3424  amdsata - ok

20:43:46.0347 3424  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys

20:43:46.0347 3424  amdsbs - ok

20:43:46.0377 3424  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys

20:43:46.0377 3424  amdxata - ok

20:43:46.0417 3424  [ FCD37C63B42352BFABC17D593745B460 ] andnetadb       C:\Windows\system32\Drivers\lgandnetadb.sys

20:43:46.0417 3424  andnetadb - ok

20:43:46.0477 3424  [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

20:43:46.0477 3424  AntiVirSchedulerService - ok

20:43:46.0487 3424  [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

20:43:46.0487 3424  AntiVirService - ok

20:43:46.0517 3424  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys

20:43:46.0517 3424  AppID - ok

20:43:46.0557 3424  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll

20:43:46.0557 3424  AppIDSvc - ok

20:43:46.0597 3424  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll

20:43:46.0607 3424  Appinfo - ok

20:43:46.0647 3424  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys

20:43:46.0647 3424  arc - ok

20:43:46.0667 3424  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys

20:43:46.0667 3424  arcsas - ok

20:43:46.0687 3424  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

20:43:46.0687 3424  AsyncMac - ok

20:43:46.0707 3424  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys

20:43:46.0707 3424  atapi - ok

20:43:46.0747 3424  [ 4D76B51F3BA702BFD060F0A075AACD22 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys

20:43:46.0747 3424  AtiHDAudioService - ok

20:43:46.0897 3424  [ C9F90FEE4FDC829382B9130A92FB744C ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys

20:43:47.0027 3424  atikmdag - ok

20:43:47.0087 3424  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

20:43:47.0097 3424  AudioEndpointBuilder - ok

20:43:47.0107 3424  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll

20:43:47.0107 3424  AudioSrv - ok

20:43:47.0137 3424  [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys

20:43:47.0137 3424  avgntflt - ok

20:43:47.0167 3424  [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys

20:43:47.0177 3424  avipbb - ok

20:43:47.0177 3424  [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys

20:43:47.0177 3424  avkmgr - ok

20:43:47.0227 3424  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll

20:43:47.0227 3424  AxInstSV - ok

20:43:47.0267 3424  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys

20:43:47.0267 3424  b06bdrv - ok

20:43:47.0287 3424  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys

20:43:47.0287 3424  b57nd60a - ok

20:43:47.0317 3424  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll

20:43:47.0317 3424  BDESVC - ok

20:43:47.0337 3424  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys

20:43:47.0337 3424  Beep - ok

20:43:47.0397 3424  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll

20:43:47.0407 3424  BFE - ok

20:43:47.0437 3424  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll

20:43:47.0457 3424  BITS - ok

20:43:47.0487 3424  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys

20:43:47.0487 3424  blbdrive - ok

20:43:47.0517 3424  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

20:43:47.0527 3424  bowser - ok

20:43:47.0547 3424  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys

20:43:47.0547 3424  BrFiltLo - ok

20:43:47.0567 3424  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys

20:43:47.0567 3424  BrFiltUp - ok

20:43:47.0597 3424  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll

20:43:47.0607 3424  Browser - ok

20:43:47.0637 3424  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys

20:43:47.0637 3424  Brserid - ok

20:43:47.0657 3424  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys

20:43:47.0657 3424  BrSerWdm - ok

20:43:47.0677 3424  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys

20:43:47.0677 3424  BrUsbMdm - ok

20:43:47.0717 3424  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys

20:43:47.0717 3424  BrUsbSer - ok

20:43:47.0737 3424  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys

20:43:47.0737 3424  BTHMODEM - ok

20:43:47.0777 3424  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll

20:43:47.0777 3424  bthserv - ok

20:43:47.0787 3424  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

20:43:47.0787 3424  cdfs - ok

20:43:47.0817 3424  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys

20:43:47.0817 3424  cdrom - ok

20:43:47.0847 3424  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll

20:43:47.0847 3424  CertPropSvc - ok

20:43:47.0917 3424  [ ADBDC69A0C25361870A1AC009D29F960 ] cfWiMAXService  C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe

20:43:47.0937 3424  cfWiMAXService - ok

20:43:47.0957 3424  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys

20:43:47.0957 3424  circlass - ok

20:43:48.0017 3424  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys

20:43:48.0017 3424  CLFS - ok

20:43:48.0087 3424  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

20:43:48.0097 3424  clr_optimization_v2.0.50727_32 - ok

20:43:48.0127 3424  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

20:43:48.0137 3424  clr_optimization_v2.0.50727_64 - ok

20:43:48.0187 3424  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

20:43:48.0207 3424  clr_optimization_v4.0.30319_32 - ok

20:43:48.0237 3424  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

20:43:48.0237 3424  clr_optimization_v4.0.30319_64 - ok

20:43:48.0267 3424  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys

20:43:48.0277 3424  CmBatt - ok

20:43:48.0287 3424  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys

20:43:48.0287 3424  cmdide - ok

20:43:48.0327 3424  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys

20:43:48.0337 3424  CNG - ok

20:43:48.0377 3424  [ 040FF3B09F26926A3792E047DB0F47DD ] cnnctfy2        C:\Windows\system32\DRIVERS\cnnctfy2.sys

20:43:48.0377 3424  cnnctfy2 - ok

20:43:48.0407 3424  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys

20:43:48.0417 3424  Compbatt - ok

20:43:48.0447 3424  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys

20:43:48.0447 3424  CompositeBus - ok

20:43:48.0447 3424  COMSysApp - ok

20:43:48.0477 3424  [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

20:43:48.0487 3424  ConfigFree Service - ok

20:43:48.0527 3424  [ 97C5EC908A13F758BF068BAAF94E5DA0 ] Connectify      C:\Program Files (x86)\Connectify\ConnectifyService.exe

20:43:48.0537 3424  Connectify - ok

20:43:48.0577 3424  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys

20:43:48.0577 3424  crcdisk - ok

20:43:48.0617 3424  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll

20:43:48.0617 3424  CryptSvc - ok

20:43:48.0667 3424  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll

20:43:48.0667 3424  DcomLaunch - ok

20:43:48.0707 3424  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll

20:43:48.0707 3424  defragsvc - ok

20:43:48.0757 3424  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

20:43:48.0757 3424  DfsC - ok

20:43:48.0787 3424  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll

20:43:48.0797 3424  Dhcp - ok

20:43:48.0837 3424  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys

20:43:48.0837 3424  discache - ok

20:43:48.0857 3424  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys

20:43:48.0857 3424  Disk - ok

20:43:48.0907 3424  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

20:43:48.0907 3424  Dnscache - ok

20:43:48.0937 3424  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll

20:43:48.0947 3424  dot3svc - ok

20:43:48.0967 3424  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll

20:43:48.0977 3424  DPS - ok

20:43:49.0007 3424  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

20:43:49.0007 3424  drmkaud - ok

20:43:49.0077 3424  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

20:43:49.0087 3424  DXGKrnl - ok

20:43:49.0107 3424  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll

20:43:49.0117 3424  EapHost - ok

20:43:49.0207 3424  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys

20:43:49.0257 3424  ebdrv - ok

20:43:49.0287 3424  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe

20:43:49.0297 3424  EFS - ok

20:43:49.0357 3424  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

20:43:49.0377 3424  ehRecvr - ok

20:43:49.0407 3424  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe

20:43:49.0417 3424  ehSched - ok

20:43:49.0457 3424  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys

20:43:49.0457 3424  elxstor - ok

20:43:49.0497 3424  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys

20:43:49.0497 3424  ErrDev - ok

20:43:49.0557 3424  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll

20:43:49.0557 3424  EventSystem - ok

20:43:49.0587 3424  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys

20:43:49.0587 3424  exfat - ok

20:43:49.0617 3424  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys

20:43:49.0617 3424  fastfat - ok

20:43:49.0667 3424  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe

20:43:49.0677 3424  Fax - ok

20:43:49.0697 3424  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys

20:43:49.0697 3424  fdc - ok

20:43:49.0727 3424  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll

20:43:49.0727 3424  fdPHost - ok

20:43:49.0747 3424  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll

20:43:49.0757 3424  FDResPub - ok

20:43:49.0777 3424  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

20:43:49.0787 3424  FileInfo - ok

20:43:49.0797 3424  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

20:43:49.0797 3424  Filetrace - ok

20:43:49.0817 3424  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys

20:43:49.0817 3424  flpydisk - ok

20:43:49.0857 3424  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

20:43:49.0867 3424  FltMgr - ok

20:43:49.0917 3424  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll

20:43:49.0927 3424  FontCache - ok

20:43:49.0987 3424  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

20:43:49.0997 3424  FontCache3.0.0.0 - ok

20:43:50.0027 3424  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

20:43:50.0027 3424  FsDepends - ok

20:43:50.0057 3424  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

20:43:50.0057 3424  Fs_Rec - ok

20:43:50.0087 3424  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

20:43:50.0097 3424  fvevol - ok

20:43:50.0117 3424  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys

20:43:50.0117 3424  gagp30kx - ok

20:43:50.0187 3424  [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe

20:43:50.0207 3424  GameConsoleService - ok

20:43:50.0247 3424  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll

20:43:50.0257 3424  gpsvc - ok

20:43:50.0297 3424  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys

20:43:50.0297 3424  hamachi - ok

20:43:50.0387 3424  [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe

20:43:50.0407 3424  Hamachi2Svc - ok

20:43:50.0437 3424  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys

20:43:50.0437 3424  hcw85cir - ok

20:43:50.0467 3424  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

20:43:50.0467 3424  HdAudAddService - ok

20:43:50.0487 3424  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys

20:43:50.0497 3424  HDAudBus - ok

20:43:50.0517 3424  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys

20:43:50.0527 3424  HECIx64 - ok

20:43:50.0547 3424  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys

20:43:50.0547 3424  HidBatt - ok

20:43:50.0567 3424  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys

20:43:50.0567 3424  HidBth - ok

20:43:50.0597 3424  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys

20:43:50.0597 3424  HidIr - ok

20:43:50.0627 3424  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll

20:43:50.0637 3424  hidserv - ok

20:43:50.0657 3424  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys

20:43:50.0657 3424  HidUsb - ok

20:43:50.0697 3424  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll

20:43:50.0697 3424  hkmsvc - ok

20:43:50.0737 3424  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

20:43:50.0737 3424  HomeGroupListener - ok

20:43:50.0777 3424  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

20:43:50.0777 3424  HomeGroupProvider - ok

20:43:50.0807 3424  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

20:43:50.0817 3424  HpSAMD - ok

20:43:50.0867 3424  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

20:43:50.0867 3424  HTTP - ok

20:43:50.0897 3424  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

20:43:50.0897 3424  hwpolicy - ok

20:43:50.0927 3424  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys

20:43:50.0927 3424  i8042prt - ok

20:43:50.0977 3424  [ 631FA8935163B01FC0C02966CB3ADB92 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys

20:43:50.0977 3424  iaStor - ok

20:43:51.0027 3424  [ 7493EA4DE41348F7D3EDBF9DB298F56A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

20:43:51.0027 3424  IAStorDataMgrSvc - ok

20:43:51.0067 3424  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

20:43:51.0067 3424  iaStorV - ok

20:43:51.0127 3424  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

20:43:51.0157 3424  idsvc - ok

20:43:51.0187 3424  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys

20:43:51.0197 3424  iirsp - ok

20:43:51.0237 3424  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll

20:43:51.0247 3424  IKEEXT - ok

20:43:51.0317 3424  [ 59B0BBA422F04467E8C89B7CE6AE95E1 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

20:43:51.0337 3424  IntcAzAudAddService - ok

20:43:51.0367 3424  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys

20:43:51.0377 3424  intelide - ok

20:43:51.0407 3424  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys

20:43:51.0407 3424  intelppm - ok

20:43:51.0447 3424  [ 67F6D2A931F194396BDA9B05690008D2 ] IObitUnlocker   C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys

20:43:51.0447 3424  IObitUnlocker - ok

20:43:51.0467 3424  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

20:43:51.0477 3424  IPBusEnum - ok

20:43:51.0497 3424  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

20:43:51.0497 3424  IpFilterDriver - ok

20:43:51.0537 3424  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

20:43:51.0537 3424  iphlpsvc - ok

20:43:51.0577 3424  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys

20:43:51.0577 3424  IPMIDRV - ok

20:43:51.0607 3424  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

20:43:51.0607 3424  IPNAT - ok

20:43:51.0627 3424  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys

20:43:51.0627 3424  IRENUM - ok

20:43:51.0647 3424  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

20:43:51.0657 3424  isapnp - ok

20:43:51.0677 3424  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys

20:43:51.0677 3424  iScsiPrt - ok

20:43:51.0727 3424  [ 9C6F3F69163133FB8E56AC4A6E163452 ] ISODrive        C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys

20:43:51.0737 3424  ISODrive - ok

20:43:51.0787 3424  [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr       C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe

20:43:51.0797 3424  IviRegMgr - ok

20:43:51.0827 3424  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys

20:43:51.0827 3424  kbdclass - ok

20:43:51.0847 3424  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys

20:43:51.0847 3424  kbdhid - ok

20:43:51.0867 3424  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe

20:43:51.0867 3424  KeyIso - ok

20:43:51.0907 3424  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

20:43:51.0907 3424  KSecDD - ok

20:43:51.0937 3424  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

20:43:51.0937 3424  KSecPkg - ok

20:43:51.0967 3424  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

20:43:51.0967 3424  ksthunk - ok

20:43:52.0007 3424  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll

20:43:52.0007 3424  KtmRm - ok

20:43:52.0047 3424  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll

20:43:52.0047 3424  LanmanServer - ok

20:43:52.0087 3424  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

20:43:52.0087 3424  LanmanWorkstation - ok

20:43:52.0107 3424  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

20:43:52.0107 3424  lltdio - ok

20:43:52.0157 3424  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll

20:43:52.0167 3424  lltdsvc - ok

20:43:52.0177 3424  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll

20:43:52.0177 3424  lmhosts - ok

20:43:52.0237 3424  [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

20:43:52.0237 3424  LMS - ok

20:43:52.0267 3424  [ 41E122F6D1448C94CC05196BC41D6BFB ] LPCFilter       C:\Windows\system32\DRIVERS\LPCFilter.sys

20:43:52.0267 3424  LPCFilter - ok

20:43:52.0297 3424  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys

20:43:52.0307 3424  LSI_FC - ok

20:43:52.0307 3424  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys

20:43:52.0307 3424  LSI_SAS - ok

20:43:52.0317 3424  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys

20:43:52.0317 3424  LSI_SAS2 - ok

20:43:52.0327 3424  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys

20:43:52.0327 3424  LSI_SCSI - ok

20:43:52.0347 3424  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys

20:43:52.0347 3424  luafv - ok

20:43:52.0387 3424  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

20:43:52.0397 3424  Mcx2Svc - ok

20:43:52.0427 3424  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys

20:43:52.0437 3424  megasas - ok

20:43:52.0447 3424  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys

20:43:52.0457 3424  MegaSR - ok

20:43:52.0477 3424  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll

20:43:52.0487 3424  MMCSS - ok

20:43:52.0517 3424  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys

20:43:52.0517 3424  Modem - ok

20:43:52.0527 3424  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

20:43:52.0527 3424  monitor - ok

20:43:52.0537 3424  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys

20:43:52.0547 3424  mouclass - ok

20:43:52.0557 3424  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys

20:43:52.0557 3424  mouhid - ok

20:43:52.0597 3424  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

20:43:52.0597 3424  mountmgr - ok

20:43:52.0637 3424  [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

20:43:52.0647 3424  MozillaMaintenance - ok

20:43:52.0667 3424  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys

20:43:52.0677 3424  mpio - ok

20:43:52.0707 3424  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

20:43:52.0717 3424  mpsdrv - ok

20:43:52.0747 3424  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll

20:43:52.0757 3424  MpsSvc - ok

20:43:52.0797 3424  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

20:43:52.0797 3424  MRxDAV - ok

20:43:52.0837 3424  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

20:43:52.0837 3424  mrxsmb - ok

20:43:52.0867 3424  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

20:43:52.0867 3424  mrxsmb10 - ok

20:43:52.0887 3424  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

20:43:52.0887 3424  mrxsmb20 - ok

20:43:52.0897 3424  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys

20:43:52.0897 3424  msahci - ok

20:43:52.0927 3424  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

20:43:52.0927 3424  msdsm - ok

20:43:52.0957 3424  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe

20:43:52.0957 3424  MSDTC - ok

20:43:52.0997 3424  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

20:43:52.0997 3424  Msfs - ok

20:43:53.0017 3424  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

20:43:53.0027 3424  mshidkmdf - ok

20:43:53.0057 3424  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

20:43:53.0057 3424  msisadrv - ok

20:43:53.0087 3424  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

20:43:53.0097 3424  MSiSCSI - ok

20:43:53.0097 3424  msiserver - ok

20:43:53.0127 3424  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

20:43:53.0127 3424  MSKSSRV - ok

20:43:53.0147 3424  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

20:43:53.0147 3424  MSPCLOCK - ok

20:43:53.0167 3424  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

20:43:53.0167 3424  MSPQM - ok

20:43:53.0197 3424  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

20:43:53.0207 3424  MsRPC - ok

20:43:53.0237 3424  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

20:43:53.0237 3424  mssmbios - ok

20:43:53.0277 3424  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

20:43:53.0277 3424  MSTEE - ok

20:43:53.0287 3424  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys

20:43:53.0297 3424  MTConfig - ok

20:43:53.0307 3424  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys

20:43:53.0307 3424  Mup - ok

20:43:53.0357 3424  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll

20:43:53.0357 3424  napagent - ok

20:43:53.0397 3424  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

20:43:53.0407 3424  NativeWifiP - ok

20:43:53.0447 3424  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys

20:43:53.0457 3424  NDIS - ok

20:43:53.0497 3424  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

20:43:53.0497 3424  NdisCap - ok

20:43:53.0517 3424  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

20:43:53.0517 3424  NdisTapi - ok

20:43:53.0547 3424  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

20:43:53.0547 3424  Ndisuio - ok

20:43:53.0577 3424  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

20:43:53.0577 3424  NdisWan - ok

20:43:53.0617 3424  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

20:43:53.0617 3424  NDProxy - ok

20:43:53.0657 3424  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

20:43:53.0657 3424  NetBIOS - ok

20:43:53.0687 3424  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

20:43:53.0697 3424  NetBT - ok

20:43:53.0717 3424  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe

20:43:53.0717 3424  Netlogon - ok

20:43:53.0747 3424  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll

20:43:53.0757 3424  Netman - ok

20:43:53.0777 3424  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll

20:43:53.0787 3424  netprofm - ok

20:43:53.0817 3424  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

20:43:53.0827 3424  NetTcpPortSharing - ok

20:43:53.0857 3424  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys

20:43:53.0857 3424  nfrd960 - ok

20:43:53.0907 3424  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll

20:43:53.0907 3424  NlaSvc - ok

20:43:53.0927 3424  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys

20:43:53.0927 3424  Npfs - ok

20:43:53.0957 3424  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll

20:43:53.0967 3424  nsi - ok

20:43:53.0997 3424  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

20:43:53.0997 3424  nsiproxy - ok

20:43:54.0067 3424  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

20:43:54.0077 3424  Ntfs - ok

20:43:54.0107 3424  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys

20:43:54.0107 3424  Null - ok

20:43:54.0127 3424  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys

20:43:54.0127 3424  nvraid - ok

20:43:54.0177 3424  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys

20:43:54.0177 3424  nvstor - ok

20:43:54.0197 3424  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

20:43:54.0197 3424  nv_agp - ok

20:43:54.0217 3424  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

20:43:54.0217 3424  ohci1394 - ok

20:43:54.0257 3424  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

20:43:54.0257 3424  p2pimsvc - ok

20:43:54.0287 3424  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll

20:43:54.0307 3424  p2psvc - ok

20:43:54.0337 3424  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys

20:43:54.0337 3424  Parport - ok

20:43:54.0377 3424  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys

20:43:54.0377 3424  partmgr - ok

20:43:54.0407 3424  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll

20:43:54.0417 3424  PcaSvc - ok

20:43:54.0457 3424  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys

20:43:54.0457 3424  pci - ok

20:43:54.0467 3424  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys

20:43:54.0467 3424  pciide - ok

20:43:54.0507 3424  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys

20:43:54.0507 3424  pcmcia - ok

20:43:54.0527 3424  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys

20:43:54.0527 3424  pcw - ok

20:43:54.0547 3424  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

20:43:54.0557 3424  PEAUTH - ok

20:43:54.0637 3424  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe

20:43:54.0637 3424  PerfHost - ok

20:43:54.0687 3424  [ 663962900E7FEA522126BA287715BB4A ] PGEffect        C:\Windows\system32\DRIVERS\pgeffect.sys

20:43:54.0687 3424  PGEffect - ok

20:43:54.0737 3424  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll

20:43:54.0757 3424  pla - ok

20:43:54.0827 3424  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

20:43:54.0837 3424  PlugPlay - ok

20:43:54.0837 3424  PnkBstrA - ok

20:43:54.0867 3424  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

20:43:54.0877 3424  PNRPAutoReg - ok

20:43:54.0897 3424  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

20:43:54.0907 3424  PNRPsvc - ok

20:43:54.0947 3424  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

20:43:54.0947 3424  PolicyAgent - ok

20:43:54.0977 3424  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll

20:43:54.0987 3424  Power - ok

20:43:55.0007 3424  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

20:43:55.0017 3424  PptpMiniport - ok

20:43:55.0047 3424  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys

20:43:55.0047 3424  Processor - ok

20:43:55.0087 3424  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll

20:43:55.0087 3424  ProfSvc - ok

20:43:55.0097 3424  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe

20:43:55.0107 3424  ProtectedStorage - ok

20:43:55.0137 3424  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

20:43:55.0137 3424  Psched - ok

20:43:55.0187 3424  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys

20:43:55.0197 3424  ql2300 - ok

20:43:55.0217 3424  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys

20:43:55.0217 3424  ql40xx - ok

20:43:55.0247 3424  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll

20:43:55.0257 3424  QWAVE - ok

20:43:55.0277 3424  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

20:43:55.0277 3424  QWAVEdrv - ok

20:43:55.0317 3424  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

20:43:55.0317 3424  RasAcd - ok

20:43:55.0347 3424  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

20:43:55.0357 3424  RasAgileVpn - ok

20:43:55.0387 3424  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll

20:43:55.0387 3424  RasAuto - ok

20:43:55.0417 3424  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

20:43:55.0417 3424  Rasl2tp - ok

20:43:55.0467 3424  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll

20:43:55.0467 3424  RasMan - ok

20:43:55.0507 3424  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

20:43:55.0507 3424  RasPppoe - ok

20:43:55.0527 3424  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

20:43:55.0527 3424  RasSstp - ok

20:43:55.0577 3424  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

20:43:55.0577 3424  rdbss - ok

20:43:55.0607 3424  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys

20:43:55.0607 3424  rdpbus - ok

20:43:55.0617 3424  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

20:43:55.0617 3424  RDPCDD - ok

20:43:55.0637 3424  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

20:43:55.0637 3424  RDPENCDD - ok

20:43:55.0657 3424  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

20:43:55.0657 3424  RDPREFMP - ok

20:43:55.0697 3424  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

20:43:55.0697 3424  RdpVideoMiniport - ok

20:43:55.0727 3424  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

20:43:55.0737 3424  RDPWD - ok

20:43:55.0777 3424  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

20:43:55.0777 3424  rdyboost - ok

20:43:55.0807 3424  [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi            C:\Windows\system32\drivers\regi.sys

20:43:55.0807 3424  regi - ok

20:43:55.0857 3424  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll

20:43:55.0867 3424  RemoteAccess - ok

20:43:55.0907 3424  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

20:43:55.0907 3424  RemoteRegistry - ok

20:43:55.0927 3424  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

20:43:55.0927 3424  RpcEptMapper - ok

20:43:55.0957 3424  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe

20:43:55.0957 3424  RpcLocator - ok

20:43:55.0997 3424  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll

20:43:55.0997 3424  RpcSs - ok

20:43:56.0027 3424  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

20:43:56.0027 3424  rspndr - ok

20:43:56.0057 3424  [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys

20:43:56.0067 3424  RSUSBSTOR - ok

20:43:56.0087 3424  [ 483C537E69FA97C77F7FE0E2E1C1F102 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys

20:43:56.0097 3424  RTHDMIAzAudService - ok

20:43:56.0137 3424  [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys

20:43:56.0137 3424  RTL8167 - ok

20:43:56.0177 3424  [ 3EC7911ED886DC5D8A9F70129254679C ] RTL8187Se       C:\Windows\system32\DRIVERS\RTL8187Se.sys

20:43:56.0187 3424  RTL8187Se - ok

20:43:56.0247 3424  [ 7475548B0BA58EBA4D12414FC9E9DFE6 ] rtl8192se       C:\Windows\system32\DRIVERS\rtl8192se.sys

20:43:56.0257 3424  rtl8192se - ok

20:43:56.0267 3424  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe

20:43:56.0267 3424  SamSs - ok

20:43:56.0307 3424  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

20:43:56.0307 3424  sbp2port - ok

20:43:56.0347 3424  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll

20:43:56.0357 3424  SCardSvr - ok

20:43:56.0377 3424  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

20:43:56.0377 3424  scfilter - ok

20:43:56.0427 3424  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll

20:43:56.0437 3424  Schedule - ok

20:43:56.0467 3424  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll

20:43:56.0467 3424  SCPolicySvc - ok

20:43:56.0487 3424  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

20:43:56.0497 3424  SDRSVC - ok

20:43:56.0517 3424  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys

20:43:56.0517 3424  secdrv - ok

20:43:56.0547 3424  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll

20:43:56.0547 3424  seclogon - ok

20:43:56.0577 3424  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll

20:43:56.0577 3424  SENS - ok

20:43:56.0597 3424  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll

20:43:56.0597 3424  SensrSvc - ok

20:43:56.0607 3424  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys

20:43:56.0607 3424  Serenum - ok

20:43:56.0637 3424  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys

20:43:56.0637 3424  Serial - ok

20:43:56.0677 3424  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys

20:43:56.0677 3424  sermouse - ok

20:43:56.0717 3424  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll

20:43:56.0717 3424  SessionEnv - ok

20:43:56.0747 3424  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

20:43:56.0747 3424  sffdisk - ok

20:43:56.0767 3424  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

20:43:56.0777 3424  sffp_mmc - ok

20:43:56.0787 3424  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

20:43:56.0797 3424  sffp_sd - ok

20:43:56.0817 3424  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys

20:43:56.0817 3424  sfloppy - ok

20:43:56.0877 3424  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll

20:43:56.0887 3424  SharedAccess - ok

20:43:56.0927 3424  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll

20:43:56.0937 3424  ShellHWDetection - ok

20:43:56.0967 3424  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys

20:43:56.0967 3424  SiSRaid2 - ok

20:43:56.0987 3424  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys

20:43:56.0987 3424  SiSRaid4 - ok

20:43:57.0037 3424  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

20:43:57.0087 3424  SkypeUpdate - ok

20:43:57.0157 3424  [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys

20:43:57.0157 3424  SmartDefragDriver - ok

20:43:57.0187 3424  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

20:43:57.0187 3424  Smb - ok

20:43:57.0217 3424  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

20:43:57.0217 3424  SNMPTRAP - ok

20:43:57.0237 3424  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys

20:43:57.0237 3424  spldr - ok

20:43:57.0277 3424  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe

20:43:57.0277 3424  Spooler - ok

20:43:57.0377 3424  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe

20:43:57.0427 3424  sppsvc - ok

20:43:57.0457 3424  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll

20:43:57.0457 3424  sppuinotify - ok

20:43:57.0507 3424  [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd            C:\Windows\System32\Drivers\sptd.sys

20:43:57.0517 3424  sptd - ok

20:43:57.0547 3424  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys

20:43:57.0557 3424  srv - ok

20:43:57.0577 3424  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

20:43:57.0577 3424  srv2 - ok

20:43:57.0617 3424  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

20:43:57.0617 3424  srvnet - ok

20:43:57.0667 3424  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

20:43:57.0667 3424  SSDPSRV - ok

20:43:57.0687 3424  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll

20:43:57.0697 3424  SstpSvc - ok

20:43:57.0727 3424  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys

20:43:57.0727 3424  stexstor - ok

20:43:57.0767 3424  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll

20:43:57.0777 3424  stisvc - ok

20:43:57.0807 3424  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys

20:43:57.0807 3424  swenum - ok

20:43:57.0847 3424  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll

20:43:57.0847 3424  swprv - ok

20:43:57.0887 3424  [ E28CA52ECF8CB6EB04B34DE440BA260E ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys

20:43:57.0887 3424  SynTP - ok

20:43:57.0947 3424  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll

20:43:57.0967 3424  SysMain - ok

20:43:57.0997 3424  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll

20:43:57.0997 3424  TabletInputService - ok

20:43:58.0027 3424  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll

20:43:58.0027 3424  TapiSrv - ok

20:43:58.0057 3424  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll

20:43:58.0057 3424  TBS - ok

20:43:58.0127 3424  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

20:43:58.0147 3424  Tcpip - ok

20:43:58.0167 3424  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

20:43:58.0177 3424  TCPIP6 - ok

20:43:58.0217 3424  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

20:43:58.0227 3424  tcpipreg - ok

20:43:58.0257 3424  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys

20:43:58.0257 3424  tdcmdpst - ok

20:43:58.0297 3424  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

20:43:58.0297 3424  TDPIPE - ok

20:43:58.0337 3424  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

20:43:58.0337 3424  TDTCP - ok

20:43:58.0377 3424  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

20:43:58.0377 3424  tdx - ok

20:43:58.0447 3424  [ 601486B76ABB0CAC959EDC79DF304287 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe

20:43:58.0447 3424  TemproMonitoringService - ok

20:43:58.0477 3424  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys

20:43:58.0477 3424  TermDD - ok

20:43:58.0527 3424  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll

20:43:58.0537 3424  TermService - ok

20:43:58.0557 3424  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll

20:43:58.0557 3424  Themes - ok

20:43:58.0567 3424  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll

20:43:58.0577 3424  THREADORDER - ok

20:43:58.0647 3424  [ 28644B0523D64EFF2FC7312A2EE74B0A ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

20:43:58.0657 3424  TMachInfo - ok

20:43:58.0697 3424  [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv         C:\Windows\system32\TODDSrv.exe

20:43:58.0697 3424  TODDSrv - ok

20:43:58.0777 3424  [ 98C864481D62F86EC8AF65BE3419A95B ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

20:43:58.0777 3424  TosCoSrv - ok

20:43:58.0807 3424  [ 6938CBD31B47092B042420A5FD2E9AAE ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe

20:43:58.0817 3424  TOSHIBA eco Utility Service - ok

20:43:58.0887 3424  [ 4218356616E08518E6C2CB102AC3798A ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

20:43:58.0887 3424  TOSHIBA HDD SSD Alert Service - ok

20:43:58.0927 3424  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\Windows\system32\DRIVERS\tos_sps64.sys

20:43:58.0927 3424  tos_sps64 - ok

20:43:58.0987 3424  [ 270CEBD8B5DD9F232CD50D18D19C10A0 ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

20:43:58.0997 3424  TPCHSrv - ok

20:43:59.0027 3424  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll

20:43:59.0027 3424  TrkWks - ok

20:43:59.0107 3424  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

20:43:59.0107 3424  TrustedInstaller - ok

20:43:59.0137 3424  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

20:43:59.0137 3424  tssecsrv - ok

20:43:59.0167 3424  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

20:43:59.0167 3424  TsUsbFlt - ok

20:43:59.0187 3424  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

20:43:59.0197 3424  tunnel - ok

20:43:59.0217 3424  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS

20:43:59.0227 3424  TVALZ - ok

20:43:59.0257 3424  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\Windows\system32\DRIVERS\TVALZFL.sys

20:43:59.0257 3424  TVALZFL - ok

20:43:59.0287 3424  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys

20:43:59.0297 3424  uagp35 - ok

20:43:59.0337 3424  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

20:43:59.0347 3424  udfs - ok

20:43:59.0387 3424  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe

20:43:59.0387 3424  UI0Detect - ok

20:43:59.0407 3424  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

20:43:59.0407 3424  uliagpkx - ok

20:43:59.0427 3424  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys

20:43:59.0437 3424  umbus - ok

20:43:59.0457 3424  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys

20:43:59.0457 3424  UmPass - ok

20:43:59.0587 3424  [ 41118D920B2B268C0ADC36421248CDCF ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

20:43:59.0607 3424  UNS - ok

20:43:59.0647 3424  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll

20:43:59.0647 3424  upnphost - ok

20:43:59.0697 3424  [ C85B8247FADD432FA54FE11667C8D97D ] usbbus          C:\Windows\system32\DRIVERS\lgx64bus.sys

20:43:59.0697 3424  usbbus - ok

20:43:59.0727 3424  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

20:43:59.0727 3424  usbccgp - ok

20:43:59.0747 3424  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys

20:43:59.0747 3424  usbcir - ok

20:43:59.0797 3424  [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag         C:\Windows\system32\DRIVERS\lgx64diag.sys

20:43:59.0797 3424  UsbDiag - ok

20:43:59.0837 3424  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys

20:43:59.0837 3424  usbehci - ok

20:43:59.0867 3424  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

20:43:59.0867 3424  usbhub - ok

20:43:59.0907 3424  [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem        C:\Windows\system32\DRIVERS\lgx64modem.sys

20:43:59.0907 3424  USBModem - ok

20:43:59.0927 3424  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys

20:43:59.0927 3424  usbohci - ok

20:43:59.0967 3424  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

20:43:59.0967 3424  usbprint - ok

20:43:59.0987 3424  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

20:43:59.0987 3424  USBSTOR - ok

20:44:00.0017 3424  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys

20:44:00.0017 3424  usbuhci - ok

20:44:00.0037 3424  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

20:44:00.0037 3424  usbvideo - ok

20:44:00.0067 3424  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll

20:44:00.0077 3424  UxSms - ok

20:44:00.0087 3424  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe

20:44:00.0097 3424  VaultSvc - ok

20:44:00.0107 3424  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

20:44:00.0107 3424  vdrvroot - ok

20:44:00.0147 3424  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe

20:44:00.0157 3424  vds - ok

20:44:00.0187 3424  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

20:44:00.0187 3424  vga - ok

20:44:00.0207 3424  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys

20:44:00.0207 3424  VgaSave - ok

20:44:00.0247 3424  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

20:44:00.0247 3424  vhdmp - ok

20:44:00.0257 3424  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys

20:44:00.0257 3424  viaide - ok

20:44:00.0297 3424  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

20:44:00.0297 3424  volmgr - ok

20:44:00.0337 3424  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

20:44:00.0337 3424  volmgrx - ok

20:44:00.0377 3424  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys

20:44:00.0387 3424  volsnap - ok

20:44:00.0417 3424  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys

20:44:00.0417 3424  vsmraid - ok

20:44:00.0477 3424  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe

20:44:00.0497 3424  VSS - ok

20:44:00.0517 3424  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys

20:44:00.0517 3424  vwifibus - ok

20:44:00.0537 3424  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys

20:44:00.0537 3424  vwififlt - ok

20:44:00.0567 3424  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys

20:44:00.0567 3424  vwifimp - ok

20:44:00.0597 3424  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll

20:44:00.0607 3424  W32Time - ok

20:44:00.0617 3424  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys

20:44:00.0617 3424  WacomPen - ok

20:44:00.0657 3424  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys

20:44:00.0657 3424  WANARP - ok

20:44:00.0667 3424  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

20:44:00.0667 3424  Wanarpv6 - ok

20:44:00.0717 3424  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe

20:44:00.0727 3424  wbengine - ok

20:44:00.0767 3424  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll

20:44:00.0777 3424  WbioSrvc - ok

20:44:00.0807 3424  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll

20:44:00.0817 3424  wcncsvc - ok

20:44:00.0847 3424  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

20:44:00.0847 3424  WcsPlugInService - ok

20:44:00.0877 3424  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys

20:44:00.0877 3424  Wd - ok

20:44:00.0927 3424  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

20:44:00.0937 3424  Wdf01000 - ok

20:44:00.0957 3424  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll

20:44:00.0957 3424  WdiServiceHost - ok

20:44:00.0967 3424  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll

20:44:00.0967 3424  WdiSystemHost - ok

20:44:01.0007 3424  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll

20:44:01.0007 3424  WebClient - ok

20:44:01.0037 3424  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll

20:44:01.0047 3424  Wecsvc - ok

20:44:01.0057 3424  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

20:44:01.0067 3424  wercplsupport - ok

20:44:01.0097 3424  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll

20:44:01.0097 3424  WerSvc - ok

20:44:01.0117 3424  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys

20:44:01.0117 3424  WfpLwf - ok

20:44:01.0147 3424  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys

20:44:01.0147 3424  WIMMount - ok

20:44:01.0167 3424  WinDefend - ok

20:44:01.0187 3424  WinHttpAutoProxySvc - ok

20:44:01.0257 3424  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

20:44:01.0267 3424  Winmgmt - ok

20:44:01.0337 3424  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll

20:44:01.0357 3424  WinRM - ok

20:44:01.0407 3424  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys

20:44:01.0407 3424  WinUsb - ok

20:44:01.0457 3424  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll

20:44:01.0467 3424  Wlansvc - ok

20:44:01.0527 3424  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

20:44:01.0527 3424  WmiAcpi - ok

20:44:01.0557 3424  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

20:44:01.0567 3424  wmiApSrv - ok

20:44:01.0587 3424  WMPNetworkSvc - ok

20:44:01.0627 3424  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll

20:44:01.0627 3424  WPCSvc - ok

20:44:01.0667 3424  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

20:44:01.0667 3424  WPDBusEnum - ok

20:44:01.0697 3424  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

20:44:01.0707 3424  ws2ifsl - ok

20:44:01.0737 3424  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll

20:44:01.0737 3424  wscsvc - ok

20:44:01.0737 3424  WSearch - ok

20:44:01.0817 3424  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll

20:44:01.0837 3424  wuauserv - ok

20:44:01.0877 3424  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

20:44:01.0877 3424  WudfPf - ok

20:44:01.0897 3424  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

20:44:01.0897 3424  WUDFRd - ok

20:44:01.0917 3424  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

20:44:01.0917 3424  wudfsvc - ok

20:44:01.0957 3424  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll

20:44:01.0957 3424  WwanSvc - ok

20:44:01.0977 3424  ================ Scan global ===============================

20:44:02.0037 3424  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll

20:44:02.0067 3424  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll

20:44:02.0077 3424  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll

20:44:02.0117 3424  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll

20:44:02.0157 3424  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe

20:44:02.0157 3424  [Global] - ok

20:44:02.0157 3424  ================ Scan MBR ==================================

20:44:02.0177 3424  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

20:44:02.0647 3424  \Device\Harddisk0\DR0 - ok

20:44:02.0657 3424  ================ Scan VBR ==================================

20:44:02.0737 3424  [ EA6E5A42E45B978029B8A778B2B058C4 ] \Device\Harddisk0\DR0\Partition1

20:44:02.0737 3424  \Device\Harddisk0\DR0\Partition1 - ok

20:44:02.0767 3424  [ DA1A60ED617AC0C285374956297FCAFA ] \Device\Harddisk0\DR0\Partition2

20:44:02.0767 3424  \Device\Harddisk0\DR0\Partition2 - ok

20:44:02.0767 3424  ============================================================

20:44:02.0767 3424  Scan finished

20:44:02.0767 3424  ============================================================

20:44:02.0777 2148  Detected object count: 0

20:44:02.0777 2148  Actual detected object count: 0

20:44:52.0997 5052  Deinitialize success

Zitat:

20:43:44.0187 3424 Scan started
20:43:44.0187 3424 Mode: Manual;

Du hast den tdsskiller falsch eingestellt, bitte nochmal richtig machen so wie es auf dem Screenshot gezeigt wird

Ok das werde ich gleich heute Mittag nachholen. Anbei die Bilder (vom Boot).

Entschuldigung für die Schlechte Quali aber ich musste es mit meinem Handy machen...

Hoffe du kannst damit was Anfangen

PS: hätte noch ein Video dazu, wo kann ich das hochladen, hat 11,8 MB

Ok hier die Log:

Code:

15:07:13.0634 2772  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

15:07:14.0133 2772  ============================================================

15:07:14.0133 2772  Current date / time: 2013/05/01 15:07:14.0133

15:07:14.0133 2772  SystemInfo:

15:07:14.0133 2772  

15:07:14.0133 2772  OS Version: 6.1.7601 ServicePack: 1.0

15:07:14.0133 2772  Product type: Workstation

15:07:14.0133 2772  ComputerName: DANIEL-TOSH

15:07:14.0133 2772  UserName: Daniel

15:07:14.0133 2772  Windows directory: C:\Windows

15:07:14.0133 2772  System windows directory: C:\Windows

15:07:14.0133 2772  Running under WOW64

15:07:14.0133 2772  Processor architecture: Intel x64

15:07:14.0133 2772  Number of processors: 4

15:07:14.0133 2772  Page size: 0x1000

15:07:14.0133 2772  Boot type: Normal boot

15:07:14.0133 2772  ============================================================

15:07:15.0132 2772  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

15:07:15.0132 2772  ============================================================

15:07:15.0132 2772  \Device\Harddisk0\DR0:

15:07:15.0147 2772  MBR partitions:

15:07:15.0147 2772  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x1D1C3000

15:07:15.0147 2772  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D28B800, BlocksNum 0x1D0FA800

15:07:15.0147 2772  ============================================================

15:07:15.0179 2772  C: <-> \Device\Harddisk0\DR0\Partition1

15:07:15.0210 2772  D: <-> \Device\Harddisk0\DR0\Partition2

15:07:15.0210 2772  ============================================================

15:07:15.0210 2772  Initialize success

15:07:15.0210 2772  ============================================================

15:08:11.0307 4640  ============================================================

15:08:11.0307 4640  Scan started

15:08:11.0307 4640  Mode: Manual; SigCheck; TDLFS; 

15:08:11.0307 4640  ============================================================

15:08:11.0775 4640  ================ Scan system memory ========================

15:08:11.0775 4640  System memory - ok

15:08:11.0775 4640  ================ Scan services =============================

15:08:11.0963 4640  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys

15:08:12.0290 4640  1394ohci - ok

15:08:12.0415 4640  [ 2D6434E957F7CFA0035C20890F77BBC6 ] a2acc           C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys

15:08:12.0477 4640  a2acc - ok

15:08:12.0649 4640  [ A7F08A73F2668FCD2B51A66751FA7FF3 ] a2AntiMalware   C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe

15:08:12.0727 4640  a2AntiMalware - ok

15:08:12.0836 4640  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9 ] A2DDA           C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys

15:08:12.0852 4640  A2DDA - ok

15:08:12.0867 4640  [ 3D55CE53128C81E06CD6B024C3B9FAC3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys

15:08:12.0883 4640  a2injectiondriver - ok

15:08:12.0945 4640  [ 0932B29AA1B9372FFE6D3AF8BA2ABA3A ] a2util          C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys

15:08:12.0961 4640  a2util - ok

15:08:13.0008 4640  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys

15:08:13.0023 4640  ACPI - ok

15:08:13.0055 4640  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys

15:08:13.0164 4640  AcpiPmi - ok

15:08:13.0273 4640  [ 479901C99FA62D1C3261B7ACB1228DAD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

15:08:13.0289 4640  AdobeFlashPlayerUpdateSvc - ok

15:08:13.0320 4640  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys

15:08:13.0351 4640  adp94xx - ok

15:08:13.0351 4640  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys

15:08:13.0367 4640  adpahci - ok

15:08:13.0398 4640  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys

15:08:13.0413 4640  adpu320 - ok

15:08:13.0507 4640  [ CBFAA333EBA2E402A0439A3A0E5413F3 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe

15:08:13.0523 4640  AdvancedSystemCareService6 - ok

15:08:13.0554 4640  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

15:08:13.0710 4640  AeLookupSvc - ok

15:08:13.0772 4640  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys

15:08:13.0850 4640  AFD - ok

15:08:13.0897 4640  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys

15:08:14.0006 4640  AgereSoftModem - ok

15:08:14.0037 4640  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys

15:08:14.0053 4640  agp440 - ok

15:08:14.0084 4640  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe

15:08:14.0162 4640  ALG - ok

15:08:14.0193 4640  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys

15:08:14.0209 4640  aliide - ok

15:08:14.0240 4640  [ 16D2883EA6296333435DF0C8B7D164B8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

15:08:14.0318 4640  AMD External Events Utility - ok

15:08:14.0349 4640  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys

15:08:14.0349 4640  amdide - ok

15:08:14.0396 4640  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys

15:08:14.0459 4640  AmdK8 - ok

15:08:14.0490 4640  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys

15:08:14.0537 4640  AmdPPM - ok

15:08:14.0568 4640  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

15:08:14.0583 4640  amdsata - ok

15:08:14.0615 4640  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys

15:08:14.0630 4640  amdsbs - ok

15:08:14.0661 4640  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys

15:08:14.0677 4640  amdxata - ok

15:08:14.0708 4640  [ FCD37C63B42352BFABC17D593745B460 ] andnetadb       C:\Windows\system32\Drivers\lgandnetadb.sys

15:08:14.0771 4640  andnetadb - ok

15:08:14.0833 4640  [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

15:08:14.0833 4640  AntiVirSchedulerService - ok

15:08:14.0849 4640  [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

15:08:14.0864 4640  AntiVirService - ok

15:08:14.0895 4640  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys

15:08:15.0067 4640  AppID - ok

15:08:15.0083 4640  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll

15:08:15.0161 4640  AppIDSvc - ok

15:08:15.0192 4640  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll

15:08:15.0270 4640  Appinfo - ok

15:08:15.0317 4640  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys

15:08:15.0332 4640  arc - ok

15:08:15.0332 4640  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys

15:08:15.0348 4640  arcsas - ok

15:08:15.0363 4640  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

15:08:15.0426 4640  AsyncMac - ok

15:08:15.0457 4640  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys

15:08:15.0457 4640  atapi - ok

15:08:15.0504 4640  [ 4D76B51F3BA702BFD060F0A075AACD22 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys

15:08:15.0551 4640  AtiHDAudioService - ok

15:08:15.0691 4640  [ C9F90FEE4FDC829382B9130A92FB744C ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys

15:08:15.0909 4640  atikmdag - ok

15:08:15.0956 4640  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

15:08:16.0019 4640  AudioEndpointBuilder - ok

15:08:16.0034 4640  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll

15:08:16.0081 4640  AudioSrv - ok

15:08:16.0112 4640  [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys

15:08:16.0128 4640  avgntflt - ok

15:08:16.0143 4640  [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys

15:08:16.0159 4640  avipbb - ok

15:08:16.0159 4640  [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys

15:08:16.0175 4640  avkmgr - ok

15:08:16.0190 4640  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll

15:08:16.0268 4640  AxInstSV - ok

15:08:16.0299 4640  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys

15:08:16.0377 4640  b06bdrv - ok

15:08:16.0393 4640  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys

15:08:16.0455 4640  b57nd60a - ok

15:08:16.0487 4640  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll

15:08:16.0580 4640  BDESVC - ok

15:08:16.0596 4640  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys

15:08:16.0643 4640  Beep - ok

15:08:16.0674 4640  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll

15:08:16.0736 4640  BFE - ok

15:08:16.0783 4640  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll

15:08:16.0923 4640  BITS - ok

15:08:16.0939 4640  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys

15:08:16.0970 4640  blbdrive - ok

15:08:17.0001 4640  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

15:08:17.0064 4640  bowser - ok

15:08:17.0095 4640  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys

15:08:17.0157 4640  BrFiltLo - ok

15:08:17.0173 4640  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys

15:08:17.0189 4640  BrFiltUp - ok

15:08:17.0220 4640  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll

15:08:17.0282 4640  Browser - ok

15:08:17.0329 4640  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys

15:08:17.0376 4640  Brserid - ok

15:08:17.0391 4640  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys

15:08:17.0423 4640  BrSerWdm - ok

15:08:17.0438 4640  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys

15:08:17.0454 4640  BrUsbMdm - ok

15:08:17.0485 4640  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys

15:08:17.0516 4640  BrUsbSer - ok

15:08:17.0532 4640  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys

15:08:17.0547 4640  BTHMODEM - ok

15:08:17.0579 4640  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll

15:08:17.0641 4640  bthserv - ok

15:08:17.0657 4640  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

15:08:17.0703 4640  cdfs - ok

15:08:17.0719 4640  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys

15:08:17.0750 4640  cdrom - ok

15:08:17.0781 4640  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll

15:08:17.0844 4640  CertPropSvc - ok

15:08:17.0922 4640  [ ADBDC69A0C25361870A1AC009D29F960 ] cfWiMAXService  C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe

15:08:17.0937 4640  cfWiMAXService - ok

15:08:17.0969 4640  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys

15:08:18.0000 4640  circlass - ok

15:08:18.0047 4640  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys

15:08:18.0062 4640  CLFS - ok

15:08:18.0140 4640  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

15:08:18.0156 4640  clr_optimization_v2.0.50727_32 - ok

15:08:18.0203 4640  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

15:08:18.0218 4640  clr_optimization_v2.0.50727_64 - ok

15:08:18.0265 4640  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

15:08:18.0281 4640  clr_optimization_v4.0.30319_32 - ok

15:08:18.0296 4640  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

15:08:18.0312 4640  clr_optimization_v4.0.30319_64 - ok

15:08:18.0327 4640  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys

15:08:18.0359 4640  CmBatt - ok

15:08:18.0374 4640  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys

15:08:18.0390 4640  cmdide - ok

15:08:18.0421 4640  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys

15:08:18.0452 4640  CNG - ok

15:08:18.0483 4640  [ 040FF3B09F26926A3792E047DB0F47DD ] cnnctfy2        C:\Windows\system32\DRIVERS\cnnctfy2.sys

15:08:18.0499 4640  cnnctfy2 - ok

15:08:18.0515 4640  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys

15:08:18.0530 4640  Compbatt - ok

15:08:18.0561 4640  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys

15:08:18.0608 4640  CompositeBus - ok

15:08:18.0608 4640  COMSysApp - ok

15:08:18.0639 4640  [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

15:08:18.0655 4640  ConfigFree Service - ok

15:08:18.0686 4640  [ 97C5EC908A13F758BF068BAAF94E5DA0 ] Connectify      C:\Program Files (x86)\Connectify\ConnectifyService.exe

15:08:18.0702 4640  Connectify ( UnsignedFile.Multi.Generic ) - warning

15:08:18.0702 4640  Connectify - detected UnsignedFile.Multi.Generic (1)

15:08:18.0733 4640  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys

15:08:18.0749 4640  crcdisk - ok

15:08:18.0780 4640  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll

15:08:18.0858 4640  CryptSvc - ok

15:08:18.0889 4640  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll

15:08:18.0951 4640  DcomLaunch - ok

15:08:18.0998 4640  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll

15:08:19.0061 4640  defragsvc - ok

15:08:19.0092 4640  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

15:08:19.0139 4640  DfsC - ok

15:08:19.0170 4640  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll

15:08:19.0263 4640  Dhcp - ok

15:08:19.0295 4640  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys

15:08:19.0388 4640  discache - ok

15:08:19.0404 4640  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys

15:08:19.0419 4640  Disk - ok

15:08:19.0435 4640  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

15:08:19.0497 4640  Dnscache - ok

15:08:19.0529 4640  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll

15:08:19.0607 4640  dot3svc - ok

15:08:19.0638 4640  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll

15:08:19.0700 4640  DPS - ok

15:08:19.0731 4640  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

15:08:19.0747 4640  drmkaud - ok

15:08:19.0809 4640  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

15:08:19.0841 4640  DXGKrnl - ok

15:08:19.0872 4640  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll

15:08:19.0934 4640  EapHost - ok

15:08:20.0028 4640  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys

15:08:20.0121 4640  ebdrv - ok

15:08:20.0153 4640  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe

15:08:20.0215 4640  EFS - ok

15:08:20.0277 4640  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

15:08:20.0355 4640  ehRecvr - ok

15:08:20.0387 4640  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe

15:08:20.0433 4640  ehSched - ok

15:08:20.0480 4640  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys

15:08:20.0496 4640  elxstor - ok

15:08:20.0527 4640  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys

15:08:20.0558 4640  ErrDev - ok

15:08:20.0621 4640  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll

15:08:20.0683 4640  EventSystem - ok

15:08:20.0699 4640  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys

15:08:20.0761 4640  exfat - ok

15:08:20.0792 4640  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys

15:08:20.0839 4640  fastfat - ok

15:08:20.0886 4640  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe

15:08:20.0964 4640  Fax - ok

15:08:20.0979 4640  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys

15:08:20.0995 4640  fdc - ok

15:08:21.0026 4640  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll

15:08:21.0073 4640  fdPHost - ok

15:08:21.0120 4640  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll

15:08:21.0167 4640  FDResPub - ok

15:08:21.0198 4640  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

15:08:21.0213 4640  FileInfo - ok

15:08:21.0229 4640  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

15:08:21.0291 4640  Filetrace - ok

15:08:21.0338 4640  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys

15:08:21.0354 4640  flpydisk - ok

15:08:21.0385 4640  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

15:08:21.0401 4640  FltMgr - ok

15:08:21.0447 4640  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll

15:08:21.0525 4640  FontCache - ok

15:08:21.0588 4640  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

15:08:21.0603 4640  FontCache3.0.0.0 - ok

15:08:21.0635 4640  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

15:08:21.0650 4640  FsDepends - ok

15:08:21.0666 4640  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

15:08:21.0681 4640  Fs_Rec - ok

15:08:21.0713 4640  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

15:08:21.0744 4640  fvevol - ok

15:08:21.0775 4640  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys

15:08:21.0775 4640  gagp30kx - ok

15:08:21.0853 4640  [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe

15:08:21.0869 4640  GameConsoleService - ok

15:08:21.0915 4640  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll

15:08:21.0978 4640  gpsvc - ok

15:08:22.0025 4640  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys

15:08:22.0025 4640  hamachi - ok

15:08:22.0103 4640  [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe

15:08:22.0165 4640  Hamachi2Svc - ok

15:08:22.0196 4640  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys

15:08:22.0243 4640  hcw85cir - ok

15:08:22.0274 4640  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

15:08:22.0305 4640  HdAudAddService - ok

15:08:22.0321 4640  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys

15:08:22.0352 4640  HDAudBus - ok

15:08:22.0383 4640  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys

15:08:22.0399 4640  HECIx64 - ok

15:08:22.0430 4640  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys

15:08:22.0446 4640  HidBatt - ok

15:08:22.0477 4640  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys

15:08:22.0508 4640  HidBth - ok

15:08:22.0539 4640  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys

15:08:22.0571 4640  HidIr - ok

15:08:22.0602 4640  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll

15:08:22.0664 4640  hidserv - ok

15:08:22.0695 4640  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys

15:08:22.0695 4640  HidUsb - ok

15:08:22.0742 4640  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll

15:08:22.0805 4640  hkmsvc - ok

15:08:22.0836 4640  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll

15:08:22.0914 4640  HomeGroupListener - ok

15:08:22.0945 4640  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

15:08:22.0976 4640  HomeGroupProvider - ok

15:08:23.0007 4640  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

15:08:23.0023 4640  HpSAMD - ok

15:08:23.0070 4640  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

15:08:23.0132 4640  HTTP - ok

15:08:23.0163 4640  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

15:08:23.0179 4640  hwpolicy - ok

15:08:23.0210 4640  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys

15:08:23.0226 4640  i8042prt - ok

15:08:23.0273 4640  [ 631FA8935163B01FC0C02966CB3ADB92 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys

15:08:23.0288 4640  iaStor - ok

15:08:23.0351 4640  [ 7493EA4DE41348F7D3EDBF9DB298F56A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

15:08:23.0351 4640  IAStorDataMgrSvc - ok

15:08:23.0397 4640  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

15:08:23.0413 4640  iaStorV - ok

15:08:23.0475 4640  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

15:08:23.0491 4640  idsvc - ok

15:08:23.0522 4640  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys

15:08:23.0538 4640  iirsp - ok

15:08:23.0585 4640  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll

15:08:23.0647 4640  IKEEXT - ok

15:08:23.0709 4640  [ 59B0BBA422F04467E8C89B7CE6AE95E1 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

15:08:23.0772 4640  IntcAzAudAddService - ok

15:08:23.0803 4640  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys

15:08:23.0819 4640  intelide - ok

15:08:23.0850 4640  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys

15:08:23.0865 4640  intelppm - ok

15:08:23.0897 4640  [ 67F6D2A931F194396BDA9B05690008D2 ] IObitUnlocker   C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlocker.sys

15:08:23.0912 4640  IObitUnlocker - ok

15:08:23.0928 4640  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

15:08:23.0990 4640  IPBusEnum - ok

15:08:24.0021 4640  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

15:08:24.0053 4640  IpFilterDriver - ok

15:08:24.0099 4640  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

15:08:24.0162 4640  iphlpsvc - ok

15:08:24.0193 4640  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys

15:08:24.0224 4640  IPMIDRV - ok

15:08:24.0255 4640  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

15:08:24.0318 4640  IPNAT - ok

15:08:24.0333 4640  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys

15:08:24.0411 4640  IRENUM - ok

15:08:24.0443 4640  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

15:08:24.0443 4640  isapnp - ok

15:08:24.0474 4640  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys

15:08:24.0505 4640  iScsiPrt - ok

15:08:24.0567 4640  [ 9C6F3F69163133FB8E56AC4A6E163452 ] ISODrive        C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys

15:08:24.0583 4640  ISODrive - ok

15:08:24.0630 4640  [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr       C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe

15:08:24.0645 4640  IviRegMgr - ok

15:08:24.0677 4640  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys

15:08:24.0692 4640  kbdclass - ok

15:08:24.0708 4640  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys

15:08:24.0739 4640  kbdhid - ok

15:08:24.0755 4640  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe

15:08:24.0770 4640  KeyIso - ok

15:08:24.0801 4640  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

15:08:24.0817 4640  KSecDD - ok

15:08:24.0848 4640  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

15:08:24.0864 4640  KSecPkg - ok

15:08:24.0895 4640  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

15:08:24.0957 4640  ksthunk - ok

15:08:24.0973 4640  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll

15:08:25.0035 4640  KtmRm - ok

15:08:25.0082 4640  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll

15:08:25.0145 4640  LanmanServer - ok

15:08:25.0176 4640  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

15:08:25.0238 4640  LanmanWorkstation - ok

15:08:25.0254 4640  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

15:08:25.0301 4640  lltdio - ok

15:08:25.0332 4640  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll

15:08:25.0394 4640  lltdsvc - ok

15:08:25.0410 4640  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll

15:08:25.0457 4640  lmhosts - ok

15:08:25.0503 4640  [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

15:08:25.0535 4640  LMS ( UnsignedFile.Multi.Generic ) - warning

15:08:25.0535 4640  LMS - detected UnsignedFile.Multi.Generic (1)

15:08:25.0550 4640  [ 41E122F6D1448C94CC05196BC41D6BFB ] LPCFilter       C:\Windows\system32\DRIVERS\LPCFilter.sys

15:08:25.0566 4640  LPCFilter - ok

15:08:25.0581 4640  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys

15:08:25.0597 4640  LSI_FC - ok

15:08:25.0613 4640  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys

15:08:25.0628 4640  LSI_SAS - ok

15:08:25.0628 4640  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys

15:08:25.0644 4640  LSI_SAS2 - ok

15:08:25.0644 4640  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys

15:08:25.0691 4640  LSI_SCSI - ok

15:08:25.0706 4640  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys

15:08:25.0753 4640  luafv - ok

15:08:25.0784 4640  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

15:08:25.0815 4640  Mcx2Svc - ok

15:08:25.0847 4640  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys

15:08:25.0862 4640  megasas - ok

15:08:25.0878 4640  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys

15:08:25.0893 4640  MegaSR - ok

15:08:25.0940 4640  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll

15:08:25.0987 4640  MMCSS - ok

15:08:26.0018 4640  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys

15:08:26.0065 4640  Modem - ok

15:08:26.0081 4640  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

15:08:26.0112 4640  monitor - ok

15:08:26.0127 4640  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys

15:08:26.0143 4640  mouclass - ok

15:08:26.0174 4640  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys

15:08:26.0205 4640  mouhid - ok

15:08:26.0237 4640  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

15:08:26.0252 4640  mountmgr - ok

15:08:26.0299 4640  [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

15:08:26.0315 4640  MozillaMaintenance - ok

15:08:26.0330 4640  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys

15:08:26.0346 4640  mpio - ok

15:08:26.0393 4640  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

15:08:26.0439 4640  mpsdrv - ok

15:08:26.0486 4640  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll

15:08:26.0549 4640  MpsSvc - ok

15:08:26.0580 4640  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

15:08:26.0611 4640  MRxDAV - ok

15:08:26.0642 4640  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

15:08:26.0720 4640  mrxsmb - ok

15:08:26.0767 4640  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

15:08:26.0798 4640  mrxsmb10 - ok

15:08:26.0798 4640  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

15:08:26.0829 4640  mrxsmb20 - ok

15:08:26.0829 4640  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys

15:08:26.0829 4640  msahci - ok

15:08:26.0876 4640  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

15:08:26.0892 4640  msdsm - ok

15:08:26.0907 4640  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe

15:08:26.0939 4640  MSDTC - ok

15:08:26.0970 4640  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

15:08:27.0017 4640  Msfs - ok

15:08:27.0032 4640  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

15:08:27.0095 4640  mshidkmdf - ok

15:08:27.0126 4640  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

15:08:27.0126 4640  msisadrv - ok

15:08:27.0157 4640  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

15:08:27.0235 4640  MSiSCSI - ok

15:08:27.0235 4640  msiserver - ok

15:08:27.0266 4640  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

15:08:27.0313 4640  MSKSSRV - ok

15:08:27.0329 4640  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

15:08:27.0375 4640  MSPCLOCK - ok

15:08:27.0391 4640  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

15:08:27.0438 4640  MSPQM - ok

15:08:27.0469 4640  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

15:08:27.0500 4640  MsRPC - ok

15:08:27.0531 4640  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

15:08:27.0531 4640  mssmbios - ok

15:08:27.0578 4640  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

15:08:27.0625 4640  MSTEE - ok

15:08:27.0641 4640  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys

15:08:27.0672 4640  MTConfig - ok

15:08:27.0703 4640  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys

15:08:27.0719 4640  Mup - ok

15:08:27.0765 4640  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll

15:08:27.0828 4640  napagent - ok

15:08:27.0859 4640  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

15:08:27.0906 4640  NativeWifiP - ok

15:08:27.0953 4640  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys

15:08:27.0984 4640  NDIS - ok

15:08:28.0015 4640  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

15:08:28.0077 4640  NdisCap - ok

15:08:28.0093 4640  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

15:08:28.0140 4640  NdisTapi - ok

15:08:28.0171 4640  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

15:08:28.0218 4640  Ndisuio - ok

15:08:28.0233 4640  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

15:08:28.0296 4640  NdisWan - ok

15:08:28.0327 4640  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

15:08:28.0389 4640  NDProxy - ok

15:08:28.0421 4640  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

15:08:28.0467 4640  NetBIOS - ok

15:08:28.0514 4640  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

15:08:28.0561 4640  NetBT - ok

15:08:28.0561 4640  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe

15:08:28.0577 4640  Netlogon - ok

15:08:28.0608 4640  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll

15:08:28.0686 4640  Netman - ok

15:08:28.0701 4640  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll

15:08:28.0764 4640  netprofm - ok

15:08:28.0795 4640  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

15:08:28.0811 4640  NetTcpPortSharing - ok

15:08:28.0826 4640  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys

15:08:28.0842 4640  nfrd960 - ok

15:08:28.0889 4640  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll

15:08:28.0920 4640  NlaSvc - ok

15:08:28.0951 4640  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys

15:08:28.0998 4640  Npfs - ok

15:08:29.0029 4640  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll

15:08:29.0076 4640  nsi - ok

15:08:29.0091 4640  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

15:08:29.0154 4640  nsiproxy - ok

15:08:29.0216 4640  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

15:08:29.0263 4640  Ntfs - ok

15:08:29.0294 4640  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys

15:08:29.0341 4640  Null - ok

15:08:29.0357 4640  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys

15:08:29.0372 4640  nvraid - ok

15:08:29.0419 4640  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys

15:08:29.0435 4640  nvstor - ok

15:08:29.0450 4640  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

15:08:29.0466 4640  nv_agp - ok

15:08:29.0481 4640  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

15:08:29.0513 4640  ohci1394 - ok

15:08:29.0544 4640  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

15:08:29.0622 4640  p2pimsvc - ok

15:08:29.0669 4640  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll

15:08:29.0684 4640  p2psvc - ok

15:08:29.0715 4640  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys

15:08:29.0731 4640  Parport - ok

15:08:29.0762 4640  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys

15:08:29.0778 4640  partmgr - ok

15:08:29.0809 4640  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll

15:08:29.0840 4640  PcaSvc - ok

15:08:29.0887 4640  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys

15:08:29.0903 4640  pci - ok

15:08:29.0918 4640  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys

15:08:29.0934 4640  pciide - ok

15:08:29.0965 4640  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys

15:08:29.0981 4640  pcmcia - ok

15:08:29.0996 4640  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys

15:08:30.0012 4640  pcw - ok

15:08:30.0027 4640  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

15:08:30.0090 4640  PEAUTH - ok

15:08:30.0168 4640  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe

15:08:30.0199 4640  PerfHost - ok

15:08:30.0230 4640  [ 663962900E7FEA522126BA287715BB4A ] PGEffect        C:\Windows\system32\DRIVERS\pgeffect.sys

15:08:30.0246 4640  PGEffect - ok

15:08:30.0308 4640  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll

15:08:30.0386 4640  pla - ok

15:08:30.0449 4640  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

15:08:30.0511 4640  PlugPlay - ok

15:08:30.0511 4640  PnkBstrA - ok

15:08:30.0542 4640  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

15:08:30.0558 4640  PNRPAutoReg - ok

15:08:30.0573 4640  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

15:08:30.0589 4640  PNRPsvc - ok

15:08:30.0636 4640  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

15:08:30.0698 4640  PolicyAgent - ok

15:08:30.0745 4640  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll

15:08:30.0807 4640  Power - ok

15:08:30.0839 4640  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

15:08:30.0901 4640  PptpMiniport - ok

15:08:30.0932 4640  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys

15:08:30.0963 4640  Processor - ok

15:08:30.0995 4640  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll

15:08:31.0057 4640  ProfSvc - ok

15:08:31.0073 4640  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe

15:08:31.0088 4640  ProtectedStorage - ok

15:08:31.0119 4640  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

15:08:31.0166 4640  Psched - ok

15:08:31.0213 4640  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys

15:08:31.0260 4640  ql2300 - ok

15:08:31.0275 4640  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys

15:08:31.0291 4640  ql40xx - ok

15:08:31.0322 4640  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll

15:08:31.0338 4640  QWAVE - ok

15:08:31.0353 4640  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

15:08:31.0369 4640  QWAVEdrv - ok

15:08:31.0400 4640  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

15:08:31.0447 4640  RasAcd - ok

15:08:31.0478 4640  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

15:08:31.0541 4640  RasAgileVpn - ok

15:08:31.0572 4640  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll

15:08:31.0619 4640  RasAuto - ok

15:08:31.0650 4640  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

15:08:31.0697 4640  Rasl2tp - ok

15:08:31.0743 4640  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll

15:08:31.0806 4640  RasMan - ok

15:08:31.0853 4640  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

15:08:31.0899 4640  RasPppoe - ok

15:08:31.0915 4640  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

15:08:31.0977 4640  RasSstp - ok

15:08:32.0024 4640  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

15:08:32.0071 4640  rdbss - ok

15:08:32.0102 4640  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys

15:08:32.0133 4640  rdpbus - ok

15:08:32.0133 4640  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

15:08:32.0196 4640  RDPCDD - ok

15:08:32.0211 4640  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

15:08:32.0258 4640  RDPENCDD - ok

15:08:32.0274 4640  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

15:08:32.0321 4640  RDPREFMP - ok

15:08:32.0352 4640  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

15:08:32.0414 4640  RdpVideoMiniport - ok

15:08:32.0461 4640  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

15:08:32.0492 4640  RDPWD - ok

15:08:32.0523 4640  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

15:08:32.0555 4640  rdyboost - ok

15:08:32.0601 4640  [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi            C:\Windows\system32\drivers\regi.sys

15:08:32.0601 4640  regi - ok

15:08:32.0648 4640  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll

15:08:32.0711 4640  RemoteAccess - ok

15:08:32.0757 4640  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

15:08:32.0820 4640  RemoteRegistry - ok

15:08:32.0835 4640  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

15:08:32.0882 4640  RpcEptMapper - ok

15:08:32.0913 4640  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe

15:08:32.0945 4640  RpcLocator - ok

15:08:32.0991 4640  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll

15:08:33.0038 4640  RpcSs - ok

15:08:33.0085 4640  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

15:08:33.0132 4640  rspndr - ok

15:08:33.0163 4640  [ 483DF0B58CA532E5240E59DC41F30AA2 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys

15:08:33.0194 4640  RSUSBSTOR - ok

15:08:33.0225 4640  [ 483C537E69FA97C77F7FE0E2E1C1F102 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys

15:08:33.0241 4640  RTHDMIAzAudService - ok

15:08:33.0288 4640  [ 365ED58B47B46DE8B1C5FA759B6FCD6E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys

15:08:33.0350 4640  RTL8167 - ok

15:08:33.0381 4640  [ 3EC7911ED886DC5D8A9F70129254679C ] RTL8187Se       C:\Windows\system32\DRIVERS\RTL8187Se.sys

15:08:33.0397 4640  RTL8187Se - ok

15:08:33.0459 4640  [ 7475548B0BA58EBA4D12414FC9E9DFE6 ] rtl8192se       C:\Windows\system32\DRIVERS\rtl8192se.sys

15:08:33.0491 4640  rtl8192se - ok

15:08:33.0506 4640  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe

15:08:33.0506 4640  SamSs - ok

15:08:33.0553 4640  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

15:08:33.0569 4640  sbp2port - ok

15:08:33.0600 4640  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll

15:08:33.0647 4640  SCardSvr - ok

15:08:33.0678 4640  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

15:08:33.0725 4640  scfilter - ok

15:08:33.0771 4640  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll

15:08:33.0849 4640  Schedule - ok

15:08:33.0881 4640  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll

15:08:33.0927 4640  SCPolicySvc - ok

15:08:33.0927 4640  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

15:08:33.0990 4640  SDRSVC - ok

15:08:34.0005 4640  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys

15:08:34.0068 4640  secdrv - ok

15:08:34.0099 4640  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll

15:08:34.0161 4640  seclogon - ok

15:08:34.0177 4640  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll

15:08:34.0239 4640  SENS - ok

15:08:34.0239 4640  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll

15:08:34.0317 4640  SensrSvc - ok

15:08:34.0333 4640  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys

15:08:34.0349 4640  Serenum - ok

15:08:34.0380 4640  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys

15:08:34.0411 4640  Serial - ok

15:08:34.0442 4640  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys

15:08:34.0473 4640  sermouse - ok

15:08:34.0505 4640  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll

15:08:34.0567 4640  SessionEnv - ok

15:08:34.0598 4640  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

15:08:34.0645 4640  sffdisk - ok

15:08:34.0676 4640  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

15:08:34.0692 4640  sffp_mmc - ok

15:08:34.0707 4640  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

15:08:34.0739 4640  sffp_sd - ok

15:08:34.0770 4640  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys

15:08:34.0785 4640  sfloppy - ok

15:08:34.0848 4640  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll

15:08:34.0910 4640  SharedAccess - ok

15:08:34.0973 4640  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll

15:08:35.0035 4640  ShellHWDetection - ok

15:08:35.0066 4640  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys

15:08:35.0082 4640  SiSRaid2 - ok

15:08:35.0082 4640  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys

15:08:35.0097 4640  SiSRaid4 - ok

15:08:35.0144 4640  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

15:08:35.0160 4640  SkypeUpdate - ok

15:08:35.0222 4640  [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys

15:08:35.0222 4640  SmartDefragDriver - ok

15:08:35.0253 4640  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

15:08:35.0300 4640  Smb - ok

15:08:35.0316 4640  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

15:08:35.0347 4640  SNMPTRAP - ok

15:08:35.0363 4640  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys

15:08:35.0378 4640  spldr - ok

15:08:35.0409 4640  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe

15:08:35.0487 4640  Spooler - ok

15:08:35.0581 4640  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe

15:08:35.0706 4640  sppsvc - ok

15:08:35.0737 4640  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll

15:08:35.0784 4640  sppuinotify - ok

15:08:35.0846 4640  [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd            C:\Windows\System32\Drivers\sptd.sys

15:08:35.0877 4640  sptd - ok

15:08:35.0909 4640  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys

15:08:36.0002 4640  srv - ok

15:08:36.0033 4640  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

15:08:36.0080 4640  srv2 - ok

15:08:36.0096 4640  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

15:08:36.0127 4640  srvnet - ok

15:08:36.0174 4640  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

15:08:36.0236 4640  SSDPSRV - ok

15:08:36.0252 4640  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll

15:08:36.0299 4640  SstpSvc - ok

15:08:36.0330 4640  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys

15:08:36.0345 4640  stexstor - ok

15:08:36.0392 4640  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll

15:08:36.0423 4640  stisvc - ok

15:08:36.0455 4640  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys

15:08:36.0470 4640  swenum - ok

15:08:36.0501 4640  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll

15:08:36.0579 4640  swprv - ok

15:08:36.0611 4640  [ E28CA52ECF8CB6EB04B34DE440BA260E ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys

15:08:36.0626 4640  SynTP - ok

15:08:36.0689 4640  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll

15:08:36.0751 4640  SysMain - ok

15:08:36.0813 4640  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll

15:08:36.0829 4640  TabletInputService - ok

15:08:36.0860 4640  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll

15:08:36.0923 4640  TapiSrv - ok

15:08:36.0954 4640  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll

15:08:37.0016 4640  TBS - ok

15:08:37.0079 4640  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

15:08:37.0125 4640  Tcpip - ok

15:08:37.0157 4640  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

15:08:37.0203 4640  TCPIP6 - ok

15:08:37.0235 4640  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

15:08:37.0266 4640  tcpipreg - ok

15:08:37.0297 4640  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys

15:08:37.0297 4640  tdcmdpst - ok

15:08:37.0328 4640  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

15:08:37.0375 4640  TDPIPE - ok

15:08:37.0406 4640  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

15:08:37.0437 4640  TDTCP - ok

15:08:37.0484 4640  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

15:08:37.0531 4640  tdx - ok

15:08:37.0593 4640  [ 601486B76ABB0CAC959EDC79DF304287 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe

15:08:37.0593 4640  TemproMonitoringService - ok

15:08:37.0625 4640  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys

15:08:37.0640 4640  TermDD - ok

15:08:37.0687 4640  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll

15:08:37.0749 4640  TermService - ok

15:08:37.0765 4640  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll

15:08:37.0796 4640  Themes - ok

15:08:37.0812 4640  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll

15:08:37.0859 4640  THREADORDER - ok

15:08:37.0921 4640  [ 28644B0523D64EFF2FC7312A2EE74B0A ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

15:08:37.0937 4640  TMachInfo - ok

15:08:37.0968 4640  [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv         C:\Windows\system32\TODDSrv.exe

15:08:37.0983 4640  TODDSrv - ok

15:08:38.0061 4640  [ 98C864481D62F86EC8AF65BE3419A95B ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

15:08:38.0077 4640  TosCoSrv - ok

15:08:38.0108 4640  [ 6938CBD31B47092B042420A5FD2E9AAE ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe

15:08:38.0124 4640  TOSHIBA eco Utility Service - ok

15:08:38.0186 4640  [ 4218356616E08518E6C2CB102AC3798A ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

15:08:38.0186 4640  TOSHIBA HDD SSD Alert Service - ok

15:08:38.0233 4640  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\Windows\system32\DRIVERS\tos_sps64.sys

15:08:38.0249 4640  tos_sps64 - ok

15:08:38.0311 4640  [ 270CEBD8B5DD9F232CD50D18D19C10A0 ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

15:08:38.0327 4640  TPCHSrv - ok

15:08:38.0358 4640  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll

15:08:38.0420 4640  TrkWks - ok

15:08:38.0483 4640  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

15:08:38.0545 4640  TrustedInstaller - ok

15:08:38.0576 4640  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

15:08:38.0607 4640  tssecsrv - ok

15:08:38.0639 4640  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

15:08:38.0701 4640  TsUsbFlt - ok

15:08:38.0732 4640  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

15:08:38.0795 4640  tunnel - ok

15:08:38.0826 4640  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS

15:08:38.0826 4640  TVALZ - ok

15:08:38.0873 4640  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\Windows\system32\DRIVERS\TVALZFL.sys

15:08:38.0873 4640  TVALZFL - ok

15:08:38.0919 4640  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys

15:08:38.0919 4640  uagp35 - ok

15:08:38.0966 4640  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

15:08:39.0029 4640  udfs - ok

15:08:39.0060 4640  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe

15:08:39.0075 4640  UI0Detect - ok

15:08:39.0091 4640  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

15:08:39.0107 4640  uliagpkx - ok

15:08:39.0122 4640  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys

15:08:39.0153 4640  umbus - ok

15:08:39.0185 4640  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys

15:08:39.0200 4640  UmPass - ok

15:08:39.0325 4640  [ 41118D920B2B268C0ADC36421248CDCF ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

15:08:39.0372 4640  UNS ( UnsignedFile.Multi.Generic ) - warning

15:08:39.0372 4640  UNS - detected UnsignedFile.Multi.Generic (1)

15:08:39.0419 4640  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll

15:08:39.0465 4640  upnphost - ok

15:08:39.0512 4640  [ C85B8247FADD432FA54FE11667C8D97D ] usbbus          C:\Windows\system32\DRIVERS\lgx64bus.sys

15:08:39.0559 4640  usbbus - ok

15:08:39.0590 4640  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

15:08:39.0637 4640  usbccgp - ok

15:08:39.0653 4640  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys

15:08:39.0684 4640  usbcir - ok

15:08:39.0731 4640  [ D8CDC12F5429878F23DDB3785A0FDF95 ] UsbDiag         C:\Windows\system32\DRIVERS\lgx64diag.sys

15:08:39.0762 4640  UsbDiag - ok

15:08:39.0793 4640  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys

15:08:39.0824 4640  usbehci - ok

15:08:39.0840 4640  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

15:08:39.0871 4640  usbhub - ok

15:08:39.0902 4640  [ 79FA7A22B0F6F0082F640CBC82A00FCE ] USBModem        C:\Windows\system32\DRIVERS\lgx64modem.sys

15:08:39.0933 4640  USBModem - ok

15:08:39.0965 4640  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys

15:08:39.0980 4640  usbohci - ok

15:08:40.0011 4640  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

15:08:40.0043 4640  usbprint - ok

15:08:40.0058 4640  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

15:08:40.0121 4640  USBSTOR - ok

15:08:40.0152 4640  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys

15:08:40.0183 4640  usbuhci - ok

15:08:40.0214 4640  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

15:08:40.0245 4640  usbvideo - ok

15:08:40.0277 4640  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll

15:08:40.0339 4640  UxSms - ok

15:08:40.0339 4640  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe

15:08:40.0355 4640  VaultSvc - ok

15:08:40.0370 4640  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

15:08:40.0386 4640  vdrvroot - ok

15:08:40.0433 4640  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe

15:08:40.0479 4640  vds - ok

15:08:40.0511 4640  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

15:08:40.0526 4640  vga - ok

15:08:40.0542 4640  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys

15:08:40.0589 4640  VgaSave - ok

15:08:40.0620 4640  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

15:08:40.0635 4640  vhdmp - ok

15:08:40.0651 4640  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys

15:08:40.0667 4640  viaide - ok

15:08:40.0698 4640  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

15:08:40.0713 4640  volmgr - ok

15:08:40.0745 4640  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

15:08:40.0760 4640  volmgrx - ok

15:08:40.0791 4640  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys

15:08:40.0823 4640  volsnap - ok

15:08:40.0854 4640  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys

15:08:40.0869 4640  vsmraid - ok

15:08:40.0932 4640  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe

15:08:41.0010 4640  VSS - ok

15:08:41.0041 4640  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys

15:08:41.0057 4640  vwifibus - ok

15:08:41.0072 4640  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys

15:08:41.0103 4640  vwififlt - ok

15:08:41.0135 4640  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys

15:08:41.0166 4640  vwifimp - ok

15:08:41.0197 4640  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll

15:08:41.0244 4640  W32Time - ok

15:08:41.0259 4640  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys

15:08:41.0275 4640  WacomPen - ok

15:08:41.0322 4640  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys

15:08:41.0384 4640  WANARP - ok

15:08:41.0384 4640  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

15:08:41.0431 4640  Wanarpv6 - ok

15:08:41.0478 4640  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe

15:08:41.0556 4640  wbengine - ok

15:08:41.0603 4640  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll

15:08:41.0618 4640  WbioSrvc - ok

15:08:41.0665 4640  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll

15:08:41.0712 4640  wcncsvc - ok

15:08:41.0743 4640  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

15:08:41.0805 4640  WcsPlugInService - ok

15:08:41.0837 4640  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys

15:08:41.0852 4640  Wd - ok

15:08:41.0899 4640  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

15:08:41.0930 4640  Wdf01000 - ok

15:08:41.0961 4640  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll

15:08:42.0039 4640  WdiServiceHost - ok

15:08:42.0055 4640  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll

15:08:42.0086 4640  WdiSystemHost - ok

15:08:42.0117 4640  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll

15:08:42.0149 4640  WebClient - ok

15:08:42.0195 4640  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll

15:08:42.0258 4640  Wecsvc - ok

15:08:42.0273 4640  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

15:08:42.0336 4640  wercplsupport - ok

15:08:42.0351 4640  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll

15:08:42.0414 4640  WerSvc - ok

15:08:42.0429 4640  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys

15:08:42.0461 4640  WfpLwf - ok

15:08:42.0507 4640  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys

15:08:42.0507 4640  WIMMount - ok

15:08:42.0539 4640  WinDefend - ok

15:08:42.0554 4640  WinHttpAutoProxySvc - ok

15:08:42.0617 4640  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

15:08:42.0663 4640  Winmgmt - ok

15:08:42.0757 4640  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll

15:08:42.0835 4640  WinRM - ok

15:08:42.0882 4640  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys

15:08:42.0913 4640  WinUsb - ok

15:08:42.0960 4640  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll

15:08:43.0007 4640  Wlansvc - ok

15:08:43.0053 4640  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

15:08:43.0085 4640  WmiAcpi - ok

15:08:43.0116 4640  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

15:08:43.0147 4640  wmiApSrv - ok

15:08:43.0163 4640  WMPNetworkSvc - ok

15:08:43.0209 4640  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll

15:08:43.0256 4640  WPCSvc - ok

15:08:43.0303 4640  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

15:08:43.0319 4640  WPDBusEnum - ok

15:08:43.0350 4640  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

15:08:43.0412 4640  ws2ifsl - ok

15:08:43.0443 4640  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll

15:08:43.0475 4640  wscsvc - ok

15:08:43.0490 4640  WSearch - ok

15:08:43.0553 4640  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll

15:08:43.0615 4640  wuauserv - ok

15:08:43.0646 4640  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

15:08:43.0709 4640  WudfPf - ok

15:08:43.0740 4640  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

15:08:43.0771 4640  WUDFRd - ok

15:08:43.0787 4640  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

15:08:43.0802 4640  wudfsvc - ok

15:08:43.0849 4640  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll

15:08:43.0865 4640  WwanSvc - ok

15:08:43.0880 4640  ================ Scan global ===============================

15:08:43.0927 4640  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll

15:08:43.0958 4640  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll

15:08:43.0974 4640  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll

15:08:44.0005 4640  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll

15:08:44.0036 4640  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe

15:08:44.0052 4640  [Global] - ok

15:08:44.0052 4640  ================ Scan MBR ==================================

15:08:44.0067 4640  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

15:08:44.0660 4640  \Device\Harddisk0\DR0 - ok

15:08:44.0660 4640  ================ Scan VBR ==================================

15:08:44.0676 4640  [ EA6E5A42E45B978029B8A778B2B058C4 ] \Device\Harddisk0\DR0\Partition1

15:08:44.0691 4640  \Device\Harddisk0\DR0\Partition1 - ok

15:08:44.0707 4640  [ DA1A60ED617AC0C285374956297FCAFA ] \Device\Harddisk0\DR0\Partition2

15:08:44.0707 4640  \Device\Harddisk0\DR0\Partition2 - ok

15:08:44.0707 4640  ============================================================

15:08:44.0707 4640  Scan finished

15:08:44.0707 4640  ============================================================

15:08:44.0707 3808  Detected object count: 3

15:08:44.0707 3808  Actual detected object count: 3

15:09:39.0650 3808  Connectify ( UnsignedFile.Multi.Generic ) - skipped by user

15:09:39.0650 3808  Connectify ( UnsignedFile.Multi.Generic ) - User select action: Skip 

15:09:39.0650 3808  LMS ( UnsignedFile.Multi.Generic ) - skipped by user

15:09:39.0650 3808  LMS ( UnsignedFile.Multi.Generic ) - User select action: Skip 

15:09:39.0650 3808  UNS ( UnsignedFile.Multi.Generic ) - skipped by user

15:09:39.0650 3808  UNS ( UnsignedFile.Multi.Generic ) - User select action: Skip

Dann bitte jetzt Combofix ausführen:

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.