| |
| |||||||
Log-Analyse und Auswertung: Win7 GVU SperreWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
15.02.2013, 16:58
| #1 |
| |  Win7 GVU Sperre Hallo alle zusammen, wer könnte mich bitte bei der Beseitigung des Viruses/Trojaners begleiten? Ich habe mich auf dem Rechner als Admin eingeloggt und schon OTL laufen lassen, sowie CCleaner installiert. Die Textdateien von beiden Programmen sind hier angebracht. Danke im Voraus! |
|
15.02.2013, 17:19
| #2 |
| /// Malware-holic   | Win7 GVU Sperre Hi
__________________warum bekommt dein PC keine Updates, sp1 für Win fehlt zb otl fix Fixen mit OTL
Code:
ATTFilter :OTL
[2013/02/15 05:48:37 | 095,023,320 | ---- | M] () -- C:\ProgramData\6077366.pad
[2013/02/14 15:25:54 | 000,000,153 | ---- | M] () -- C:\ProgramData\6077366.reg
[2013/02/14 15:25:54 | 000,000,060 | ---- | M] () -- C:\ProgramData\6077366.bat
:files
:Commands
[emptytemp]
starte in den normalen modus. falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden was hatte der d-cleaner gefunden, log nachreichen bitte
__________________ |
|
15.02.2013, 17:52
| #3 | |
| | Win7 GVU Sperre Hallo Markus,
__________________danke für die Hilfe! Also SP1 wird nachgeholt. Hier ist die log von OTL 02152013_172236.log: Zitat:
VG, Leonid |
|
18.02.2013, 18:10
| #4 |
| /// Malware-holic | Win7 GVU Sperre hi, passt. wir machens erst mal ohne d-cleaner Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
18.02.2013, 20:41
| #5 |
| | Win7 GVU Sperre Hallo Markus, also die Log-Datei sieht so aus: Code:
ATTFilter 20:28:27.0404 1936 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:28:27.0847 1936 ============================================================
20:28:27.0847 1936 Current date / time: 2013/02/18 20:28:27.0847
20:28:27.0847 1936 SystemInfo:
20:28:27.0847 1936
20:28:27.0847 1936 OS Version: 6.1.7600 ServicePack: 0.0
20:28:27.0847 1936 Product type: Workstation
20:28:27.0847 1936 ComputerName: ROMAN-PC
20:28:27.0847 1936 UserName: Administrator
20:28:27.0847 1936 Windows directory: C:\Windows
20:28:27.0847 1936 System windows directory: C:\Windows
20:28:27.0847 1936 Running under WOW64
20:28:27.0847 1936 Processor architecture: Intel x64
20:28:27.0847 1936 Number of processors: 2
20:28:27.0847 1936 Page size: 0x1000
20:28:27.0847 1936 Boot type: Normal boot
20:28:27.0847 1936 ============================================================
20:28:39.0112 1936 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:28:39.0157 1936 Drive \Device\Harddisk1\DR1 - Size: 0xEEBF8000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:28:39.0162 1936 ============================================================
20:28:39.0162 1936 \Device\Harddisk0\DR0:
20:28:39.0167 1936 MBR partitions:
20:28:39.0167 1936 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D4B178, BlocksNum 0x950A600
20:28:39.0187 1936 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xB2557B7, BlocksNum 0x1A1D7F0A
20:28:39.0187 1936 \Device\Harddisk1\DR1:
20:28:39.0187 1936 MBR partitions:
20:28:39.0187 1936 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x772266
20:28:39.0187 1936 ============================================================
20:28:39.0257 1936 C: <-> \Device\Harddisk0\DR0\Partition1
20:28:39.0372 1936 D: <-> \Device\Harddisk0\DR0\Partition2
20:28:39.0372 1936 ============================================================
20:28:39.0372 1936 Initialize success
20:28:39.0372 1936 ============================================================
20:29:01.0978 4752 ============================================================
20:29:01.0978 4752 Scan started
20:29:01.0978 4752 Mode: Manual; SigCheck; TDLFS;
20:29:01.0978 4752 ============================================================
20:29:04.0753 4752 ================ Scan system memory ========================
20:29:04.0753 4752 System memory - ok
20:29:04.0753 4752 ================ Scan services =============================
20:29:05.0463 4752 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
20:29:15.0645 4752 1394ohci - ok
20:29:15.0695 4752 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
20:29:15.0745 4752 ACPI - ok
20:29:15.0765 4752 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
20:29:15.0940 4752 AcpiPmi - ok
20:29:16.0065 4752 [ 125CCA62EA497B3C3F45E8EEED8DBA36 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
20:29:16.0125 4752 AcrSch2Svc - ok
20:29:16.0225 4752 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:29:16.0249 4752 AdobeFlashPlayerUpdateSvc - ok
20:29:16.0337 4752 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:29:16.0372 4752 adp94xx - ok
20:29:16.0442 4752 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:29:16.0492 4752 adpahci - ok
20:29:16.0562 4752 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:29:16.0592 4752 adpu320 - ok
20:29:16.0622 4752 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:29:16.0772 4752 AeLookupSvc - ok
20:29:16.0867 4752 [ CC946C4EBF60CB6DC8816E5F8A941EAD ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
20:29:16.0937 4752 afcdp - ok
20:29:17.0212 4752 [ 149E8CA66CEADE0D17AC4028A567499F ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
20:29:17.0372 4752 afcdpsrv - ok
20:29:17.0437 4752 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
20:29:17.0557 4752 AFD - ok
20:29:17.0617 4752 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
20:29:17.0662 4752 agp440 - ok
20:29:17.0732 4752 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:29:17.0952 4752 ALG - ok
20:29:17.0957 4752 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
20:29:17.0977 4752 aliide - ok
20:29:18.0022 4752 [ 5B0539714C6BD5CBBA653A68318435C3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:29:18.0312 4752 AMD External Events Utility - ok
20:29:18.0352 4752 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
20:29:18.0372 4752 amdide - ok
20:29:18.0392 4752 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:29:18.0487 4752 AmdK8 - ok
20:29:18.0537 4752 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:29:18.0657 4752 AmdPPM - ok
20:29:18.0692 4752 [ 8818A2AB90189B7FF60A24C0847F9A6B ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
20:29:18.0712 4752 amdsata - ok
20:29:18.0787 4752 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:29:18.0812 4752 amdsbs - ok
20:29:18.0817 4752 [ 3C430969F097DEE18D13010D678069CD ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
20:29:18.0837 4752 amdxata - ok
20:29:18.0892 4752 [ 9C7F164B49CADC658D1B3C575782F346 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
20:29:19.0067 4752 AmUStor - ok
20:29:19.0142 4752 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
20:29:19.0732 4752 AppID - ok
20:29:19.0842 4752 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:29:19.0977 4752 AppIDSvc - ok
20:29:19.0997 4752 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
20:29:20.0067 4752 Appinfo - ok
20:29:20.0167 4752 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:29:20.0182 4752 Apple Mobile Device - ok
20:29:20.0212 4752 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:29:20.0247 4752 arc - ok
20:29:20.0277 4752 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:29:20.0297 4752 arcsas - ok
20:29:20.0322 4752 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
20:29:20.0337 4752 ASLDRService - ok
20:29:20.0407 4752 [ 2DB34EDD17D3A8DA7105A19C95A3DD68 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
20:29:20.0427 4752 ASMMAP64 - ok
20:29:20.0447 4752 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:29:20.0532 4752 AsyncMac - ok
20:29:20.0562 4752 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
20:29:20.0582 4752 atapi - ok
20:29:20.0702 4752 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys
20:29:20.0807 4752 athr - ok
20:29:20.0967 4752 [ A47B3FCE2D47EAB02C608AA8200CCB7E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:29:21.0109 4752 atikmdag - ok
20:29:21.0134 4752 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
20:29:21.0149 4752 AtiPcie - ok
20:29:21.0169 4752 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
20:29:21.0229 4752 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
20:29:21.0229 4752 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
20:29:21.0294 4752 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:29:21.0389 4752 AudioEndpointBuilder - ok
20:29:21.0399 4752 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:29:21.0459 4752 AudioSrv - ok
20:29:21.0514 4752 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:29:21.0649 4752 AxInstSV - ok
20:29:21.0689 4752 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:29:21.0759 4752 b06bdrv - ok
20:29:21.0809 4752 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:29:21.0869 4752 b57nd60a - ok
20:29:21.0919 4752 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:29:21.0964 4752 BDESVC - ok
20:29:21.0994 4752 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:29:22.0069 4752 Beep - ok
20:29:22.0149 4752 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
20:29:22.0349 4752 BITS - ok
20:29:22.0379 4752 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:29:22.0434 4752 blbdrive - ok
20:29:22.0469 4752 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:29:22.0534 4752 bowser - ok
20:29:22.0569 4752 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:29:22.0624 4752 BrFiltLo - ok
20:29:22.0629 4752 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:29:22.0654 4752 BrFiltUp - ok
20:29:22.0719 4752 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
20:29:22.0829 4752 Browser - ok
20:29:22.0899 4752 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:29:22.0984 4752 Brserid - ok
20:29:22.0989 4752 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:29:23.0029 4752 BrSerWdm - ok
20:29:23.0039 4752 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:29:23.0079 4752 BrUsbMdm - ok
20:29:23.0114 4752 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:29:23.0174 4752 BrUsbSer - ok
20:29:23.0184 4752 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:29:23.0224 4752 BTHMODEM - ok
20:29:23.0269 4752 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:29:23.0329 4752 bthserv - ok
20:29:23.0354 4752 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:29:23.0444 4752 cdfs - ok
20:29:23.0494 4752 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:29:23.0564 4752 cdrom - ok
20:29:23.0614 4752 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
20:29:23.0684 4752 CertPropSvc - ok
20:29:23.0729 4752 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\Windows\system32\drivers\cfwids.sys
20:29:23.0749 4752 cfwids - ok
20:29:23.0769 4752 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:29:23.0819 4752 circlass - ok
20:29:23.0854 4752 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:29:23.0884 4752 CLFS - ok
20:29:23.0939 4752 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:29:23.0959 4752 clr_optimization_v2.0.50727_32 - ok
20:29:24.0014 4752 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:29:24.0034 4752 clr_optimization_v2.0.50727_64 - ok
20:29:24.0079 4752 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:29:24.0154 4752 clr_optimization_v4.0.30319_32 - ok
20:29:24.0184 4752 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:29:24.0214 4752 clr_optimization_v4.0.30319_64 - ok
20:29:24.0239 4752 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:29:24.0309 4752 CmBatt - ok
20:29:24.0329 4752 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
20:29:24.0349 4752 cmdide - ok
20:29:24.0394 4752 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
20:29:24.0449 4752 CNG - ok
20:29:24.0484 4752 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:29:24.0509 4752 Compbatt - ok
20:29:24.0529 4752 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
20:29:24.0584 4752 CompositeBus - ok
20:29:24.0589 4752 COMSysApp - ok
20:29:24.0619 4752 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:29:24.0649 4752 crcdisk - ok
20:29:24.0669 4752 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:29:24.0739 4752 CryptSvc - ok
20:29:24.0784 4752 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:29:24.0854 4752 DcomLaunch - ok
20:29:24.0904 4752 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:29:24.0979 4752 defragsvc - ok
20:29:25.0019 4752 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:29:25.0074 4752 DfsC - ok
20:29:25.0129 4752 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
20:29:25.0384 4752 Dhcp - ok
20:29:25.0414 4752 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:29:25.0479 4752 discache - ok
20:29:25.0504 4752 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:29:25.0534 4752 Disk - ok
20:29:25.0554 4752 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:29:25.0609 4752 Dnscache - ok
20:29:25.0649 4752 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
20:29:25.0714 4752 dot3svc - ok
20:29:25.0754 4752 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
20:29:25.0824 4752 DPS - ok
20:29:25.0864 4752 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:29:25.0899 4752 drmkaud - ok
20:29:25.0964 4752 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:29:25.0999 4752 DXGKrnl - ok
20:29:26.0029 4752 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:29:26.0099 4752 EapHost - ok
20:29:26.0299 4752 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:29:26.0429 4752 ebdrv - ok
20:29:26.0474 4752 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
20:29:26.0555 4752 EFS - ok
20:29:26.0655 4752 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:29:26.0750 4752 ehRecvr - ok
20:29:26.0790 4752 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:29:26.0860 4752 ehSched - ok
20:29:26.0910 4752 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:29:26.0940 4752 elxstor - ok
20:29:26.0945 4752 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
20:29:26.0990 4752 ErrDev - ok
20:29:27.0015 4752 [ 3C38648375B7F3988691F53A7AAE10A9 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
20:29:27.0060 4752 ETD - ok
20:29:27.0115 4752 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:29:27.0200 4752 EventSystem - ok
20:29:27.0230 4752 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:29:27.0290 4752 exfat - ok
20:29:27.0340 4752 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:29:27.0410 4752 fastfat - ok
20:29:27.0465 4752 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
20:29:27.0535 4752 Fax - ok
20:29:27.0555 4752 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:29:27.0595 4752 fdc - ok
20:29:27.0625 4752 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:29:27.0695 4752 fdPHost - ok
20:29:27.0720 4752 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:29:27.0775 4752 FDResPub - ok
20:29:27.0820 4752 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:29:27.0840 4752 FileInfo - ok
20:29:27.0855 4752 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:29:27.0930 4752 Filetrace - ok
20:29:27.0945 4752 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:29:27.0995 4752 flpydisk - ok
20:29:28.0025 4752 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:29:28.0050 4752 FltMgr - ok
20:29:28.0100 4752 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
20:29:28.0175 4752 FontCache - ok
20:29:28.0230 4752 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:29:28.0250 4752 FontCache3.0.0.0 - ok
20:29:28.0270 4752 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:29:28.0290 4752 FsDepends - ok
20:29:28.0330 4752 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:29:28.0350 4752 Fs_Rec - ok
20:29:28.0390 4752 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:29:28.0420 4752 fvevol - ok
20:29:28.0460 4752 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:29:28.0495 4752 gagp30kx - ok
20:29:28.0515 4752 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:29:28.0530 4752 GEARAspiWDM - ok
20:29:28.0592 4752 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
20:29:28.0662 4752 gpsvc - ok
20:29:28.0717 4752 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:29:28.0737 4752 gupdate - ok
20:29:28.0747 4752 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:29:28.0762 4752 gupdatem - ok
20:29:28.0797 4752 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
20:29:28.0822 4752 hamachi - ok
20:29:28.0847 4752 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:29:28.0912 4752 hcw85cir - ok
20:29:28.0972 4752 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:29:29.0047 4752 HdAudAddService - ok
20:29:29.0077 4752 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
20:29:29.0132 4752 HDAudBus - ok
20:29:29.0137 4752 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:29:29.0177 4752 HidBatt - ok
20:29:29.0202 4752 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:29:29.0272 4752 HidBth - ok
20:29:29.0297 4752 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:29:29.0377 4752 HidIr - ok
20:29:29.0402 4752 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:29:29.0477 4752 hidserv - ok
20:29:29.0503 4752 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:29:29.0563 4752 HidUsb - ok
20:29:29.0638 4752 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
20:29:29.0673 4752 HipShieldK - ok
20:29:29.0698 4752 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:29:29.0763 4752 hkmsvc - ok
20:29:29.0783 4752 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:29:29.0853 4752 HomeGroupListener - ok
20:29:29.0878 4752 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:29:29.0943 4752 HomeGroupProvider - ok
20:29:29.0958 4752 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
20:29:29.0978 4752 HpSAMD - ok
20:29:30.0023 4752 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:29:30.0124 4752 HTTP - ok
20:29:30.0160 4752 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:29:30.0190 4752 hwpolicy - ok
20:29:30.0210 4752 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
20:29:30.0230 4752 i8042prt - ok
20:29:30.0302 4752 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:29:30.0337 4752 iaStorV - ok
20:29:30.0494 4752 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:29:30.0564 4752 idsvc - ok
20:29:30.0604 4752 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:29:30.0644 4752 iirsp - ok
20:29:30.0864 4752 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
20:29:30.0969 4752 IKEEXT - ok
20:29:31.0064 4752 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
20:29:31.0109 4752 intelide - ok
20:29:31.0119 4752 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:29:31.0319 4752 intelppm - ok
20:29:31.0454 4752 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:29:31.0549 4752 IPBusEnum - ok
20:29:31.0609 4752 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:29:31.0694 4752 IpFilterDriver - ok
20:29:31.0854 4752 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
20:29:31.0934 4752 IPMIDRV - ok
20:29:31.0954 4752 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:29:32.0014 4752 IPNAT - ok
20:29:32.0179 4752 [ 46D249F9DB7844CC01050A9345F0F61B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:29:32.0221 4752 iPod Service - ok
20:29:32.0306 4752 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:29:32.0406 4752 IRENUM - ok
20:29:32.0446 4752 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
20:29:32.0466 4752 isapnp - ok
20:29:32.0481 4752 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
20:29:32.0501 4752 iScsiPrt - ok
20:29:32.0525 4752 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
20:29:32.0544 4752 kbdclass - ok
20:29:32.0573 4752 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
20:29:32.0628 4752 kbdhid - ok
20:29:32.0643 4752 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
20:29:32.0658 4752 kbfiltr - ok
20:29:32.0673 4752 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
20:29:32.0698 4752 KeyIso - ok
20:29:32.0743 4752 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:29:32.0813 4752 KSecDD - ok
20:29:32.0848 4752 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:29:32.0873 4752 KSecPkg - ok
20:29:32.0902 4752 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:29:32.0960 4752 ksthunk - ok
20:29:33.0032 4752 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:29:33.0117 4752 KtmRm - ok
20:29:33.0167 4752 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:29:33.0242 4752 LanmanServer - ok
20:29:33.0272 4752 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:29:33.0347 4752 LanmanWorkstation - ok
20:29:33.0387 4752 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:29:33.0452 4752 lltdio - ok
20:29:33.0502 4752 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:29:33.0572 4752 lltdsvc - ok
20:29:33.0602 4752 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:29:33.0652 4752 lmhosts - ok
20:29:33.0682 4752 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:29:33.0712 4752 LSI_FC - ok
20:29:33.0742 4752 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:29:33.0767 4752 LSI_SAS - ok
20:29:33.0787 4752 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:29:33.0807 4752 LSI_SAS2 - ok
20:29:33.0812 4752 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:29:33.0832 4752 LSI_SCSI - ok
20:29:33.0852 4752 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:29:33.0912 4752 luafv - ok
20:29:33.0962 4752 [ 085435AE1A124361304044029B5CC644 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
20:29:33.0997 4752 lullaby - ok
20:29:34.0057 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:34.0082 4752 McAfee SiteAdvisor Service - ok
20:29:34.0097 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:34.0117 4752 McMPFSvc - ok
20:29:34.0127 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:34.0142 4752 mcmscsvc - ok
20:29:34.0167 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:34.0182 4752 McNaiAnn - ok
20:29:34.0212 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:34.0232 4752 McNASvc - ok
20:29:34.0548 4752 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
20:29:34.0578 4752 McODS - ok
20:29:34.0618 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:34.0638 4752 McProxy - ok
20:29:34.0958 4752 [ 9BBCECBE3FE5AF5958A770DC512D0473 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
20:29:34.0983 4752 McShield - ok
20:29:35.0048 4752 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:29:35.0248 4752 Mcx2Svc - ok
20:29:35.0393 4752 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:29:35.0543 4752 megasas - ok
20:29:35.0593 4752 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:29:35.0628 4752 MegaSR - ok
20:29:35.0685 4752 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
20:29:35.0705 4752 mfeapfk - ok
20:29:35.0752 4752 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
20:29:35.0772 4752 mfeavfk - ok
20:29:35.0849 4752 mfeavfk01 - ok
20:29:35.0900 4752 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
20:29:35.0921 4752 mfefire - ok
20:29:35.0968 4752 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
20:29:35.0993 4752 mfefirek - ok
20:29:36.0045 4752 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
20:29:36.0079 4752 mfehidk - ok
20:29:36.0110 4752 [ B5B96149BE124092F577DE54EC7D4D65 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
20:29:36.0142 4752 mferkdet - ok
20:29:36.0177 4752 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\Windows\system32\mfevtps.exe
20:29:36.0197 4752 mfevtp - ok
20:29:36.0224 4752 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
20:29:36.0248 4752 mfewfpk - ok
20:29:36.0284 4752 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:29:36.0397 4752 MMCSS - ok
20:29:36.0516 4752 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
20:29:36.0536 4752 MOBKbackup - ok
20:29:36.0556 4752 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
20:29:36.0571 4752 MOBKFilter - ok
20:29:36.0601 4752 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:29:36.0671 4752 Modem - ok
20:29:36.0696 4752 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:29:36.0756 4752 monitor - ok
20:29:36.0781 4752 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:29:36.0801 4752 mouclass - ok
20:29:36.0841 4752 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:29:36.0881 4752 mouhid - ok
20:29:36.0921 4752 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:29:36.0941 4752 mountmgr - ok
20:29:36.0966 4752 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
20:29:36.0986 4752 mpio - ok
20:29:36.0996 4752 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:29:37.0061 4752 mpsdrv - ok
20:29:37.0066 4752 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:29:37.0141 4752 MRxDAV - ok
20:29:37.0181 4752 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:29:37.0261 4752 mrxsmb - ok
20:29:37.0341 4752 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:29:37.0376 4752 mrxsmb10 - ok
20:29:37.0381 4752 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:29:37.0416 4752 mrxsmb20 - ok
20:29:37.0441 4752 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
20:29:37.0461 4752 msahci - ok
20:29:37.0486 4752 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
20:29:37.0506 4752 msdsm - ok
20:29:37.0541 4752 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:29:37.0581 4752 MSDTC - ok
20:29:37.0611 4752 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:29:37.0716 4752 Msfs - ok
20:29:37.0746 4752 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:29:37.0826 4752 mshidkmdf - ok
20:29:37.0846 4752 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
20:29:37.0881 4752 msisadrv - ok
20:29:37.0926 4752 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:29:38.0006 4752 MSiSCSI - ok
20:29:38.0011 4752 msiserver - ok
20:29:38.0061 4752 [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:29:38.0081 4752 MSK80Service - ok
20:29:38.0116 4752 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:29:38.0211 4752 MSKSSRV - ok
20:29:38.0226 4752 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:29:38.0301 4752 MSPCLOCK - ok
20:29:38.0336 4752 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:29:38.0436 4752 MSPQM - ok
20:29:38.0501 4752 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:29:38.0526 4752 MsRPC - ok
20:29:38.0546 4752 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
20:29:38.0566 4752 mssmbios - ok
20:29:38.0581 4752 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:29:38.0646 4752 MSTEE - ok
20:29:38.0676 4752 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:29:38.0721 4752 MTConfig - ok
20:29:38.0751 4752 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
20:29:38.0776 4752 MTsensor - ok
20:29:38.0786 4752 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:29:38.0806 4752 Mup - ok
20:29:38.0926 4752 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
20:29:39.0061 4752 napagent - ok
20:29:39.0291 4752 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:29:39.0381 4752 NativeWifiP - ok
20:29:39.0491 4752 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:29:39.0531 4752 NDIS - ok
20:29:39.0556 4752 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:29:39.0621 4752 NdisCap - ok
20:29:39.0641 4752 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:29:39.0711 4752 NdisTapi - ok
20:29:39.0746 4752 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:29:39.0816 4752 Ndisuio - ok
20:29:39.0836 4752 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:29:39.0881 4752 NdisWan - ok
20:29:39.0946 4752 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:29:40.0021 4752 NDProxy - ok
20:29:40.0056 4752 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:29:40.0131 4752 NetBIOS - ok
20:29:40.0271 4752 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:29:40.0441 4752 NetBT - ok
20:29:40.0486 4752 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
20:29:40.0506 4752 Netlogon - ok
20:29:40.0576 4752 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:29:40.0666 4752 Netman - ok
20:29:40.0721 4752 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:29:40.0826 4752 netprofm - ok
20:29:40.0871 4752 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:29:40.0901 4752 NetTcpPortSharing - ok
20:29:40.0981 4752 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:29:41.0011 4752 nfrd960 - ok
20:29:41.0086 4752 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:29:41.0181 4752 NlaSvc - ok
20:29:41.0226 4752 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:29:41.0271 4752 Npfs - ok
20:29:41.0321 4752 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:29:41.0386 4752 nsi - ok
20:29:41.0416 4752 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:29:41.0486 4752 nsiproxy - ok
20:29:41.0576 4752 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:29:41.0646 4752 Ntfs - ok
20:29:41.0671 4752 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:29:41.0731 4752 Null - ok
20:29:41.0786 4752 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:29:41.0826 4752 nvraid - ok
20:29:41.0896 4752 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:29:41.0946 4752 nvstor - ok
20:29:41.0971 4752 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
20:29:41.0996 4752 nv_agp - ok
20:29:42.0051 4752 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
20:29:42.0121 4752 ohci1394 - ok
20:29:42.0271 4752 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:29:42.0321 4752 ose - ok
20:29:43.0641 4752 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:29:43.0916 4752 osppsvc - ok
20:29:44.0081 4752 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:29:44.0656 4752 p2pimsvc - ok
20:29:44.0741 4752 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:29:44.0811 4752 p2psvc - ok
20:29:44.0881 4752 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:29:45.0031 4752 Parport - ok
20:29:45.0081 4752 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:29:45.0121 4752 partmgr - ok
20:29:45.0151 4752 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:29:45.0370 4752 PcaSvc - ok
20:29:45.0482 4752 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
20:29:45.0547 4752 pci - ok
20:29:45.0592 4752 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:29:45.0657 4752 pciide - ok
20:29:45.0719 4752 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:29:45.0879 4752 pcmcia - ok
20:29:46.0201 4752 [ 8CB97AB9EDC3DB4E6723577E1D790353 ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
20:29:46.0306 4752 PCToolsSSDMonitorSvc - ok
20:29:46.0418 4752 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:29:46.0488 4752 pcw - ok
20:29:46.0708 4752 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:29:46.0802 4752 PEAUTH - ok
20:29:47.0900 4752 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:29:47.0980 4752 PerfHost - ok
20:29:48.0220 4752 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
20:29:48.0385 4752 pla - ok
20:29:48.0465 4752 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:29:48.0600 4752 PlugPlay - ok
20:29:48.0630 4752 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:29:48.0715 4752 PNRPAutoReg - ok
20:29:48.0755 4752 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:29:48.0780 4752 PNRPsvc - ok
20:29:48.0860 4752 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:29:48.0955 4752 PolicyAgent - ok
20:29:49.0085 4752 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:29:49.0145 4752 Power - ok
20:29:49.0192 4752 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:29:49.0262 4752 PptpMiniport - ok
20:29:49.0302 4752 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:29:49.0377 4752 Processor - ok
20:29:49.0412 4752 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
20:29:49.0482 4752 ProfSvc - ok
20:29:49.0497 4752 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:29:49.0517 4752 ProtectedStorage - ok
20:29:49.0532 4752 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:29:49.0612 4752 Psched - ok
20:29:49.0897 4752 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:29:50.0017 4752 ql2300 - ok
20:29:50.0047 4752 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:29:50.0097 4752 ql40xx - ok
20:29:50.0127 4752 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:29:50.0167 4752 QWAVE - ok
20:29:50.0202 4752 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:29:50.0282 4752 QWAVEdrv - ok
20:29:50.0332 4752 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:29:50.0422 4752 RasAcd - ok
20:29:50.0462 4752 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:29:50.0543 4752 RasAgileVpn - ok
20:29:50.0568 4752 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:29:50.0633 4752 RasAuto - ok
20:29:50.0658 4752 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:29:50.0728 4752 Rasl2tp - ok
20:29:50.0758 4752 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
20:29:50.0843 4752 RasMan - ok
20:29:50.0853 4752 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:29:50.0918 4752 RasPppoe - ok
20:29:50.0958 4752 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:29:51.0053 4752 RasSstp - ok
20:29:51.0113 4752 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:29:51.0188 4752 rdbss - ok
20:29:51.0208 4752 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:29:51.0268 4752 rdpbus - ok
20:29:51.0298 4752 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:29:51.0343 4752 RDPCDD - ok
20:29:51.0368 4752 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:29:51.0498 4752 RDPENCDD - ok
20:29:51.0508 4752 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:29:51.0553 4752 RDPREFMP - ok
20:29:51.0583 4752 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:29:51.0633 4752 RDPWD - ok
20:29:51.0668 4752 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:29:51.0688 4752 rdyboost - ok
20:29:51.0743 4752 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:29:51.0818 4752 RemoteAccess - ok
20:29:51.0858 4752 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:29:51.0928 4752 RemoteRegistry - ok
20:29:51.0973 4752 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:29:52.0063 4752 RpcEptMapper - ok
20:29:52.0093 4752 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:29:52.0158 4752 RpcLocator - ok
20:29:52.0218 4752 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
20:29:52.0274 4752 RpcSs - ok
20:29:52.0325 4752 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:29:52.0415 4752 rspndr - ok
20:29:52.0460 4752 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:29:52.0485 4752 RTL8167 - ok
20:29:52.0500 4752 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
20:29:52.0520 4752 SamSs - ok
20:29:52.0545 4752 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
20:29:52.0565 4752 sbp2port - ok
20:29:52.0625 4752 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:29:52.0725 4752 SCardSvr - ok
20:29:52.0745 4752 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:29:52.0825 4752 scfilter - ok
20:29:53.0095 4752 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
20:29:53.0210 4752 Schedule - ok
20:29:53.0235 4752 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:29:53.0285 4752 SCPolicySvc - ok
20:29:53.0405 4752 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:29:53.0485 4752 SDRSVC - ok
20:29:53.0505 4752 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:29:53.0575 4752 secdrv - ok
20:29:53.0625 4752 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
20:29:53.0750 4752 seclogon - ok
20:29:53.0770 4752 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:29:53.0830 4752 SENS - ok
20:29:53.0875 4752 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:29:53.0985 4752 SensrSvc - ok
20:29:54.0015 4752 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:29:54.0065 4752 Serenum - ok
20:29:54.0070 4752 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:29:54.0105 4752 Serial - ok
20:29:54.0110 4752 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:29:54.0140 4752 sermouse - ok
20:29:54.0205 4752 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
20:29:54.0300 4752 SessionEnv - ok
20:29:54.0340 4752 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:29:54.0410 4752 sffdisk - ok
20:29:54.0425 4752 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:29:54.0480 4752 sffp_mmc - ok
20:29:54.0505 4752 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:29:54.0540 4752 sffp_sd - ok
20:29:54.0566 4752 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:29:54.0621 4752 sfloppy - ok
20:29:54.0666 4752 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:29:54.0731 4752 SharedAccess - ok
20:29:54.0781 4752 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:29:54.0841 4752 ShellHWDetection - ok
20:29:54.0871 4752 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
20:29:54.0931 4752 SiSGbeLH - ok
20:29:54.0956 4752 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:29:54.0976 4752 SiSRaid2 - ok
20:29:54.0981 4752 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:29:55.0001 4752 SiSRaid4 - ok
20:29:55.0016 4752 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:29:55.0116 4752 Smb - ok
20:29:55.0156 4752 [ 367BC6CD6C781B56FCF6218CD5999DC3 ] SMR162 C:\Windows\system32\drivers\SMR162.SYS
20:29:55.0176 4752 SMR162 - ok
20:29:55.0201 4752 [ B2C19AE46C5A109679B4FB38058DF05A ] snapman C:\Windows\system32\DRIVERS\snapman.sys
20:29:55.0226 4752 snapman - ok
20:29:55.0266 4752 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:29:55.0346 4752 SNMPTRAP - ok
20:29:55.0546 4752 [ F06A6DE8438F7446BFF9E61F31356521 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
20:29:55.0626 4752 SNP2UVC - ok
20:29:55.0716 4752 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:29:55.0746 4752 spldr - ok
20:29:55.0846 4752 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
20:29:55.0926 4752 Spooler - ok
20:29:56.0511 4752 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
20:29:56.0656 4752 sppsvc - ok
20:29:56.0696 4752 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:29:56.0746 4752 sppuinotify - ok
20:29:56.0851 4752 [ 4B3F898DC1378CED2F35D04E5B0CE0DF ] sptd C:\Windows\System32\Drivers\sptd.sys
20:29:56.0856 4752 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 4B3F898DC1378CED2F35D04E5B0CE0DF
20:29:56.0856 4752 sptd ( LockedFile.Multi.Generic ) - warning
20:29:56.0856 4752 sptd - detected LockedFile.Multi.Generic (1)
20:29:56.0926 4752 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:29:56.0991 4752 srv - ok
20:29:57.0021 4752 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:29:57.0063 4752 srv2 - ok
20:29:57.0093 4752 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:29:57.0138 4752 srvnet - ok
20:29:57.0183 4752 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:29:57.0248 4752 SSDPSRV - ok
20:29:57.0278 4752 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:29:57.0368 4752 SstpSvc - ok
20:29:57.0415 4752 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:29:57.0460 4752 stexstor - ok
20:29:57.0527 4752 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
20:29:57.0587 4752 stisvc - ok
20:29:57.0627 4752 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
20:29:57.0642 4752 swenum - ok
20:29:57.0732 4752 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:29:57.0792 4752 swprv - ok
20:29:57.0862 4752 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
20:29:57.0957 4752 SysMain - ok
20:29:58.0007 4752 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:29:58.0037 4752 TabletInputService - ok
20:29:58.0062 4752 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
20:29:58.0139 4752 TapiSrv - ok
20:29:58.0194 4752 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:29:58.0244 4752 TBS - ok
20:29:58.0404 4752 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:29:58.0490 4752 Tcpip - ok
20:29:58.0597 4752 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:29:58.0647 4752 TCPIP6 - ok
20:29:58.0687 4752 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:29:58.0757 4752 tcpipreg - ok
20:29:58.0792 4752 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:29:58.0857 4752 TDPIPE - ok
20:29:58.0897 4752 [ 99527D49EE0A96FC25537C61B270A372 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
20:29:58.0942 4752 tdrpman273 - ok
20:29:59.0007 4752 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:29:59.0122 4752 TDTCP - ok
20:29:59.0177 4752 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:29:59.0292 4752 tdx - ok
20:29:59.0647 4752 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
20:29:59.0722 4752 TeamViewer8 - ok
20:29:59.0792 4752 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
20:29:59.0852 4752 TermDD - ok
20:29:59.0887 4752 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
20:29:59.0957 4752 TermService - ok
20:30:00.0027 4752 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:30:00.0087 4752 Themes - ok
20:30:00.0107 4752 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:30:00.0152 4752 THREADORDER - ok
20:30:00.0242 4752 [ EBBAEA02F0095A798000C7E06B16D41B ] timounter C:\Windows\system32\DRIVERS\timntr.sys
20:30:00.0277 4752 timounter - ok
20:30:00.0342 4752 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:30:00.0422 4752 TrkWks - ok
20:30:00.0507 4752 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:30:00.0557 4752 TrustedInstaller - ok
20:30:00.0582 4752 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:30:00.0647 4752 tssecsrv - ok
20:30:01.0107 4752 [ CDBA816242F5E2DDA788342F4282F132 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
20:30:01.0242 4752 TuneUp.UtilitiesSvc - ok
20:30:01.0297 4752 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
20:30:01.0312 4752 TuneUpUtilitiesDrv - ok
20:30:01.0342 4752 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:30:01.0512 4752 tunnel - ok
20:30:01.0547 4752 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:30:01.0567 4752 uagp35 - ok
20:30:01.0592 4752 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:30:01.0657 4752 udfs - ok
20:30:01.0697 4752 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:30:01.0737 4752 UI0Detect - ok
20:30:01.0757 4752 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
20:30:01.0792 4752 uliagpkx - ok
20:30:01.0812 4752 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:30:01.0862 4752 umbus - ok
20:30:01.0892 4752 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:30:01.0942 4752 UmPass - ok
20:30:01.0992 4752 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:30:02.0094 4752 upnphost - ok
20:30:02.0134 4752 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:30:02.0194 4752 USBAAPL64 - ok
20:30:02.0229 4752 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:30:02.0264 4752 usbccgp - ok
20:30:02.0289 4752 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
20:30:02.0339 4752 usbcir - ok
20:30:02.0367 4752 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:30:02.0396 4752 usbehci - ok
20:30:02.0416 4752 [ D524F3716D85B744762FF5EAAEF8F3A2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
20:30:02.0436 4752 usbfilter - ok
20:30:02.0473 4752 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:30:02.0508 4752 usbhub - ok
20:30:02.0529 4752 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:30:02.0582 4752 usbohci - ok
20:30:02.0607 4752 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:30:02.0672 4752 usbprint - ok
20:30:02.0712 4752 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:30:02.0772 4752 USBSTOR - ok
20:30:02.0787 4752 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:30:02.0827 4752 usbuhci - ok
20:30:02.0882 4752 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:30:02.0937 4752 usbvideo - ok
20:30:02.0967 4752 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:30:03.0032 4752 UxSms - ok
20:30:03.0064 4752 [ 7984FCAB128476584FBF135AD9B9097E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
20:30:03.0089 4752 UxTuneUp - ok
20:30:03.0099 4752 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
20:30:03.0124 4752 VaultSvc - ok
20:30:03.0161 4752 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
20:30:03.0196 4752 vdrvroot - ok
20:30:03.0238 4752 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
20:30:03.0293 4752 vds - ok
20:30:03.0328 4752 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:30:03.0378 4752 vga - ok
20:30:03.0398 4752 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:30:03.0470 4752 VgaSave - ok
20:30:03.0480 4752 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
20:30:03.0500 4752 vhdmp - ok
20:30:03.0560 4752 [ FE595D1A1B781190BB483444B62CC607 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
20:30:03.0620 4752 VIAHdAudAddService - ok
20:30:03.0635 4752 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
20:30:03.0650 4752 viaide - ok
20:30:03.0685 4752 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
20:30:03.0710 4752 volmgr - ok
20:30:03.0720 4752 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:30:03.0745 4752 volmgrx - ok
20:30:03.0795 4752 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:30:03.0820 4752 volsnap - ok
20:30:03.0840 4752 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:30:03.0860 4752 vsmraid - ok
20:30:04.0025 4752 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
20:30:04.0120 4752 VSS - ok
20:30:04.0135 4752 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:30:04.0180 4752 vwifibus - ok
20:30:04.0200 4752 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:30:04.0265 4752 vwififlt - ok
20:30:04.0315 4752 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:30:04.0380 4752 W32Time - ok
20:30:04.0420 4752 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:30:04.0450 4752 WacomPen - ok
20:30:04.0480 4752 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:30:04.0540 4752 WANARP - ok
20:30:04.0560 4752 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:30:04.0605 4752 Wanarpv6 - ok
20:30:04.0735 4752 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
20:30:04.0820 4752 wbengine - ok
20:30:04.0865 4752 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:30:04.0905 4752 WbioSrvc - ok
20:30:04.0940 4752 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:30:05.0020 4752 wcncsvc - ok
20:30:05.0050 4752 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:30:05.0115 4752 WcsPlugInService - ok
20:30:05.0170 4752 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:30:05.0200 4752 Wd - ok
20:30:05.0320 4752 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:30:05.0360 4752 Wdf01000 - ok
20:30:05.0380 4752 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:30:05.0425 4752 WdiServiceHost - ok
20:30:05.0430 4752 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:30:05.0460 4752 WdiSystemHost - ok
20:30:05.0485 4752 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
20:30:05.0545 4752 WebClient - ok
20:30:05.0570 4752 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:30:05.0636 4752 Wecsvc - ok
20:30:05.0661 4752 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:30:05.0726 4752 wercplsupport - ok
20:30:05.0751 4752 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:30:05.0806 4752 WerSvc - ok
20:30:05.0846 4752 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:30:05.0921 4752 WfpLwf - ok
20:30:05.0986 4752 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:30:06.0011 4752 WimFltr - ok
20:30:06.0031 4752 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:30:06.0051 4752 WIMMount - ok
20:30:06.0056 4752 WinHttpAutoProxySvc - ok
20:30:06.0106 4752 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:30:06.0176 4752 Winmgmt - ok
20:30:06.0346 4752 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
20:30:06.0506 4752 WinRM - ok
20:30:06.0536 4752 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:30:06.0576 4752 WinUsb - ok
20:30:06.0626 4752 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:30:06.0666 4752 Wlansvc - ok
20:30:06.0686 4752 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
20:30:06.0736 4752 WmiAcpi - ok
20:30:06.0776 4752 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:30:06.0816 4752 wmiApSrv - ok
20:30:06.0846 4752 WMPNetworkSvc - ok
20:30:06.0876 4752 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:30:06.0911 4752 WPCSvc - ok
20:30:06.0931 4752 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:30:06.0971 4752 WPDBusEnum - ok
20:30:07.0001 4752 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:30:07.0066 4752 ws2ifsl - ok
20:30:07.0096 4752 WSearch - ok
20:30:07.0186 4752 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:30:07.0331 4752 wuauserv - ok
20:30:07.0356 4752 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:30:07.0401 4752 WudfPf - ok
20:30:07.0421 4752 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:30:07.0456 4752 WUDFRd - ok
20:30:07.0491 4752 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:30:07.0541 4752 wudfsvc - ok
20:30:07.0576 4752 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:30:07.0606 4752 WwanSvc - ok
20:30:07.0616 4752 ================ Scan global ===============================
20:30:07.0706 4752 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:30:07.0736 4752 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
20:30:07.0746 4752 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
20:30:07.0781 4752 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:30:07.0806 4752 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:30:07.0821 4752 [Global] - ok
20:30:07.0821 4752 ================ Scan MBR ==================================
20:30:07.0836 4752 [ 3168815C7495AF45C36B2CE45126E3D8 ] \Device\Harddisk0\DR0
20:30:08.0626 4752 \Device\Harddisk0\DR0 - ok
20:30:08.0641 4752 [ 5E9AEF0915A3B50BF575ED81BFB0085F ] \Device\Harddisk1\DR1
20:30:08.0864 4752 \Device\Harddisk1\DR1 ( Rootkit.Win32.BackBoot.gen ) - warning
20:30:08.0864 4752 \Device\Harddisk1\DR1 - detected Rootkit.Win32.BackBoot.gen (1)
20:30:09.0021 4752 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
20:30:09.0021 4752 \Device\Harddisk1\DR1 - detected TDSS File System (1)
20:30:09.0022 4752 ================ Scan VBR ==================================
20:30:09.0040 4752 [ 47368EAF17AA79C28B6042CEABCF5A8B ] \Device\Harddisk0\DR0\Partition1
20:30:09.0040 4752 \Device\Harddisk0\DR0\Partition1 - ok
20:30:09.0075 4752 [ C57DD963086C6847A5237A61AC8670C5 ] \Device\Harddisk0\DR0\Partition2
20:30:09.0090 4752 \Device\Harddisk0\DR0\Partition2 - ok
20:30:09.0100 4752 [ 26BDE10EA2AFC3237B1F78DBFF258EEA ] \Device\Harddisk1\DR1\Partition1
20:30:09.0100 4752 \Device\Harddisk1\DR1\Partition1 - ok
20:30:09.0105 4752 ============================================================
20:30:09.0105 4752 Scan finished
20:30:09.0105 4752 ============================================================
20:30:09.0120 4744 Detected object count: 4
20:30:09.0120 4744 Actual detected object count: 4
20:38:21.0989 4744 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:38:21.0989 4744 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:38:21.0989 4744 sptd ( LockedFile.Multi.Generic ) - skipped by user
20:38:21.0989 4744 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
20:38:21.0994 4744 \Device\Harddisk1\DR1 ( Rootkit.Win32.BackBoot.gen ) - skipped by user
20:38:21.0994 4744 \Device\Harddisk1\DR1 ( Rootkit.Win32.BackBoot.gen ) - User select action: Skip
20:38:21.0994 4744 \Device\Harddisk1\DR1 ( TDSS File System ) - skipped by user
20:38:21.0994 4744 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Skip
Leonid |
|
18.02.2013, 21:15
| #6 |
| /// Malware-holic | Win7 GVU Sperre Hi starte den TDSS Killer wie eben. wähle für die Beiden: Rootkit.Win32.BackBoot TDSS File System Delete. Starte neu, führe den TDSS Killer erneut aus wie angegeben und poste das neue Log.
__________________ --> Win7 GVU Sperre |
|
18.02.2013, 21:46
| #7 |
| | Win7 GVU Sperre Hallo Markus, ich kann nur für TDSS File System "Delete" auswählen. Für Rootkit.Win32.BackBoot gibt es nur "Copy to quarantine" / "Skip" / "Restore". Was soll ich hier auswählen? VG, Leonid |
|
18.02.2013, 21:57
| #8 |
| /// Malware-holic | Win7 GVU Sperre TDSS File System delete für den Anderen, Restore.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
18.02.2013, 22:46
| #9 |
| | Win7 GVU Sperre OK, es ist erledigt: Code:
ATTFilter 21:41:57.0375 1288 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:41:57.0640 1288 ============================================================
21:41:57.0640 1288 Current date / time: 2013/02/18 21:41:57.0640
21:41:57.0640 1288 SystemInfo:
21:41:57.0640 1288
21:41:57.0640 1288 OS Version: 6.1.7600 ServicePack: 0.0
21:41:57.0640 1288 Product type: Workstation
21:41:57.0640 1288 ComputerName: ROMAN-PC
21:41:57.0640 1288 UserName: Administrator
21:41:57.0640 1288 Windows directory: C:\Windows
21:41:57.0640 1288 System windows directory: C:\Windows
21:41:57.0640 1288 Running under WOW64
21:41:57.0640 1288 Processor architecture: Intel x64
21:41:57.0640 1288 Number of processors: 2
21:41:57.0640 1288 Page size: 0x1000
21:41:57.0640 1288 Boot type: Normal boot
21:41:57.0640 1288 ============================================================
21:41:58.0765 1288 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:41:58.0770 1288 Drive \Device\Harddisk1\DR1 - Size: 0xEEBF8000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:41:58.0775 1288 ============================================================
21:41:58.0775 1288 \Device\Harddisk0\DR0:
21:41:58.0775 1288 MBR partitions:
21:41:58.0775 1288 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D4B178, BlocksNum 0x950A600
21:41:58.0790 1288 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xB2557B7, BlocksNum 0x1A1D7F0A
21:41:58.0790 1288 \Device\Harddisk1\DR1:
21:41:58.0795 1288 MBR partitions:
21:41:58.0795 1288 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x772266
21:41:58.0795 1288 ============================================================
21:41:58.0845 1288 C: <-> \Device\Harddisk0\DR0\Partition1
21:41:58.0900 1288 D: <-> \Device\Harddisk0\DR0\Partition2
21:41:58.0900 1288 ============================================================
21:41:58.0900 1288 Initialize success
21:41:58.0900 1288 ============================================================
21:42:05.0976 1328 ============================================================
21:42:05.0976 1328 Scan started
21:42:05.0976 1328 Mode: Manual; SigCheck; TDLFS;
21:42:05.0976 1328 ============================================================
21:42:06.0641 1328 ================ Scan system memory ========================
21:42:06.0641 1328 System memory - ok
21:42:06.0641 1328 ================ Scan services =============================
21:42:06.0781 1328 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:42:06.0861 1328 1394ohci - ok
21:42:06.0891 1328 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
21:42:06.0911 1328 ACPI - ok
21:42:06.0936 1328 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
21:42:06.0956 1328 AcpiPmi - ok
21:42:07.0061 1328 [ 125CCA62EA497B3C3F45E8EEED8DBA36 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
21:42:07.0161 1328 AcrSch2Svc - ok
21:42:07.0281 1328 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:42:07.0301 1328 AdobeFlashPlayerUpdateSvc - ok
21:42:07.0336 1328 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:42:07.0361 1328 adp94xx - ok
21:42:07.0371 1328 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:42:07.0396 1328 adpahci - ok
21:42:07.0406 1328 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:42:07.0426 1328 adpu320 - ok
21:42:07.0456 1328 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:42:07.0506 1328 AeLookupSvc - ok
21:42:07.0536 1328 [ CC946C4EBF60CB6DC8816E5F8A941EAD ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
21:42:07.0561 1328 afcdp - ok
21:42:07.0646 1328 [ 149E8CA66CEADE0D17AC4028A567499F ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
21:42:07.0726 1328 afcdpsrv - ok
21:42:07.0766 1328 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
21:42:07.0796 1328 AFD - ok
21:42:07.0831 1328 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
21:42:07.0851 1328 agp440 - ok
21:42:07.0871 1328 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:42:07.0891 1328 ALG - ok
21:42:07.0901 1328 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
21:42:07.0916 1328 aliide - ok
21:42:07.0951 1328 [ 5B0539714C6BD5CBBA653A68318435C3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:42:07.0971 1328 AMD External Events Utility - ok
21:42:08.0011 1328 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
21:42:08.0026 1328 amdide - ok
21:42:08.0031 1328 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:42:08.0056 1328 AmdK8 - ok
21:42:08.0071 1328 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:42:08.0091 1328 AmdPPM - ok
21:42:08.0106 1328 [ 8818A2AB90189B7FF60A24C0847F9A6B ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
21:42:08.0121 1328 amdsata - ok
21:42:08.0141 1328 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:42:08.0161 1328 amdsbs - ok
21:42:08.0171 1328 [ 3C430969F097DEE18D13010D678069CD ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
21:42:08.0186 1328 amdxata - ok
21:42:08.0216 1328 [ 9C7F164B49CADC658D1B3C575782F346 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
21:42:08.0236 1328 AmUStor - ok
21:42:08.0246 1328 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
21:42:08.0271 1328 AppID - ok
21:42:08.0301 1328 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:42:08.0346 1328 AppIDSvc - ok
21:42:08.0351 1328 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
21:42:08.0371 1328 Appinfo - ok
21:42:08.0426 1328 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:42:08.0441 1328 Apple Mobile Device - ok
21:42:08.0446 1328 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:42:08.0466 1328 arc - ok
21:42:08.0496 1328 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:42:08.0511 1328 arcsas - ok
21:42:08.0546 1328 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
21:42:08.0561 1328 ASLDRService - ok
21:42:08.0611 1328 [ 2DB34EDD17D3A8DA7105A19C95A3DD68 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
21:42:08.0626 1328 ASMMAP64 - ok
21:42:08.0631 1328 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:42:08.0676 1328 AsyncMac - ok
21:42:08.0686 1328 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
21:42:08.0706 1328 atapi - ok
21:42:08.0786 1328 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys
21:42:08.0836 1328 athr - ok
21:42:08.0981 1328 [ A47B3FCE2D47EAB02C608AA8200CCB7E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:42:09.0076 1328 atikmdag - ok
21:42:09.0091 1328 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
21:42:09.0106 1328 AtiPcie - ok
21:42:09.0126 1328 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
21:42:09.0136 1328 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
21:42:09.0136 1328 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
21:42:09.0176 1328 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:42:09.0226 1328 AudioEndpointBuilder - ok
21:42:09.0241 1328 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:42:09.0291 1328 AudioSrv - ok
21:42:09.0316 1328 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:42:09.0346 1328 AxInstSV - ok
21:42:09.0376 1328 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:42:09.0401 1328 b06bdrv - ok
21:42:09.0426 1328 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:42:09.0446 1328 b57nd60a - ok
21:42:09.0491 1328 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:42:09.0511 1328 BDESVC - ok
21:42:09.0551 1328 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:42:09.0596 1328 Beep - ok
21:42:09.0641 1328 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
21:42:09.0696 1328 BITS - ok
21:42:09.0716 1328 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:42:09.0736 1328 blbdrive - ok
21:42:09.0771 1328 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:42:09.0856 1328 bowser - ok
21:42:09.0881 1328 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:42:09.0906 1328 BrFiltLo - ok
21:42:09.0911 1328 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:42:09.0931 1328 BrFiltUp - ok
21:42:09.0961 1328 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
21:42:09.0981 1328 Browser - ok
21:42:09.0991 1328 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:42:10.0021 1328 Brserid - ok
21:42:10.0026 1328 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:42:10.0051 1328 BrSerWdm - ok
21:42:10.0056 1328 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:42:10.0076 1328 BrUsbMdm - ok
21:42:10.0086 1328 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:42:10.0106 1328 BrUsbSer - ok
21:42:10.0111 1328 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:42:10.0141 1328 BTHMODEM - ok
21:42:10.0171 1328 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:42:10.0216 1328 bthserv - ok
21:42:10.0226 1328 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:42:10.0271 1328 cdfs - ok
21:42:10.0286 1328 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:42:10.0306 1328 cdrom - ok
21:42:10.0326 1328 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
21:42:10.0371 1328 CertPropSvc - ok
21:42:10.0411 1328 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\Windows\system32\drivers\cfwids.sys
21:42:10.0426 1328 cfwids - ok
21:42:10.0441 1328 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:42:10.0461 1328 circlass - ok
21:42:10.0491 1328 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:42:10.0516 1328 CLFS - ok
21:42:10.0576 1328 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:42:10.0591 1328 clr_optimization_v2.0.50727_32 - ok
21:42:10.0626 1328 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:42:10.0646 1328 clr_optimization_v2.0.50727_64 - ok
21:42:10.0681 1328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:42:10.0701 1328 clr_optimization_v4.0.30319_32 - ok
21:42:10.0831 1328 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:42:10.0846 1328 clr_optimization_v4.0.30319_64 - ok
21:42:10.0876 1328 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:42:10.0891 1328 CmBatt - ok
21:42:10.0911 1328 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
21:42:10.0926 1328 cmdide - ok
21:42:10.0966 1328 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
21:42:10.0996 1328 CNG - ok
21:42:11.0006 1328 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:42:11.0021 1328 Compbatt - ok
21:42:11.0026 1328 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:42:11.0051 1328 CompositeBus - ok
21:42:11.0061 1328 COMSysApp - ok
21:42:11.0101 1328 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:42:11.0116 1328 crcdisk - ok
21:42:11.0151 1328 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:42:11.0171 1328 CryptSvc - ok
21:42:11.0206 1328 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:42:11.0261 1328 DcomLaunch - ok
21:42:11.0296 1328 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:42:11.0346 1328 defragsvc - ok
21:42:11.0376 1328 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:42:11.0396 1328 DfsC - ok
21:42:11.0416 1328 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
21:42:11.0446 1328 Dhcp - ok
21:42:11.0471 1328 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:42:11.0516 1328 discache - ok
21:42:11.0531 1328 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:42:11.0546 1328 Disk - ok
21:42:11.0581 1328 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:42:11.0601 1328 Dnscache - ok
21:42:11.0636 1328 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
21:42:11.0681 1328 dot3svc - ok
21:42:11.0701 1328 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
21:42:11.0751 1328 DPS - ok
21:42:11.0766 1328 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:42:11.0786 1328 drmkaud - ok
21:42:11.0831 1328 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:42:11.0866 1328 DXGKrnl - ok
21:42:11.0901 1328 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:42:11.0946 1328 EapHost - ok
21:42:12.0146 1328 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:42:12.0201 1328 ebdrv - ok
21:42:12.0231 1328 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
21:42:12.0256 1328 EFS - ok
21:42:12.0311 1328 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:42:12.0341 1328 ehRecvr - ok
21:42:12.0371 1328 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:42:12.0391 1328 ehSched - ok
21:42:12.0431 1328 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:42:12.0461 1328 elxstor - ok
21:42:12.0466 1328 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
21:42:12.0486 1328 ErrDev - ok
21:42:12.0516 1328 [ 3C38648375B7F3988691F53A7AAE10A9 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
21:42:12.0536 1328 ETD - ok
21:42:12.0581 1328 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:42:12.0631 1328 EventSystem - ok
21:42:12.0656 1328 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:42:12.0701 1328 exfat - ok
21:42:12.0731 1328 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:42:12.0781 1328 fastfat - ok
21:42:12.0806 1328 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
21:42:12.0831 1328 Fax - ok
21:42:12.0841 1328 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:42:12.0861 1328 fdc - ok
21:42:12.0886 1328 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:42:12.0931 1328 fdPHost - ok
21:42:12.0941 1328 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:42:12.0991 1328 FDResPub - ok
21:42:13.0011 1328 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:42:13.0031 1328 FileInfo - ok
21:42:13.0046 1328 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:42:13.0091 1328 Filetrace - ok
21:42:13.0106 1328 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:42:13.0126 1328 flpydisk - ok
21:42:13.0151 1328 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:42:13.0176 1328 FltMgr - ok
21:42:13.0311 1328 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
21:42:13.0341 1328 FontCache - ok
21:42:13.0391 1328 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:42:13.0406 1328 FontCache3.0.0.0 - ok
21:42:13.0416 1328 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:42:13.0436 1328 FsDepends - ok
21:42:13.0466 1328 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:42:13.0486 1328 Fs_Rec - ok
21:42:13.0526 1328 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:42:13.0551 1328 fvevol - ok
21:42:13.0581 1328 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:42:13.0601 1328 gagp30kx - ok
21:42:13.0626 1328 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:42:13.0641 1328 GEARAspiWDM - ok
21:42:13.0681 1328 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
21:42:13.0716 1328 gpsvc - ok
21:42:13.0766 1328 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:13.0781 1328 gupdate - ok
21:42:13.0791 1328 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:13.0806 1328 gupdatem - ok
21:42:13.0831 1328 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
21:42:13.0846 1328 hamachi - ok
21:42:13.0871 1328 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:42:13.0891 1328 hcw85cir - ok
21:42:13.0906 1328 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:42:13.0931 1328 HdAudAddService - ok
21:42:13.0956 1328 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:42:13.0976 1328 HDAudBus - ok
21:42:13.0986 1328 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:42:14.0006 1328 HidBatt - ok
21:42:14.0011 1328 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:42:14.0036 1328 HidBth - ok
21:42:14.0056 1328 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:42:14.0081 1328 HidIr - ok
21:42:14.0116 1328 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:42:14.0161 1328 hidserv - ok
21:42:14.0176 1328 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:42:14.0196 1328 HidUsb - ok
21:42:14.0261 1328 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
21:42:14.0281 1328 HipShieldK - ok
21:42:14.0301 1328 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:42:14.0346 1328 hkmsvc - ok
21:42:14.0376 1328 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:42:14.0401 1328 HomeGroupListener - ok
21:42:14.0426 1328 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:42:14.0446 1328 HomeGroupProvider - ok
21:42:14.0486 1328 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
21:42:14.0501 1328 HpSAMD - ok
21:42:14.0556 1328 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:42:14.0611 1328 HTTP - ok
21:42:14.0636 1328 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:42:14.0656 1328 hwpolicy - ok
21:42:14.0671 1328 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:42:14.0691 1328 i8042prt - ok
21:42:14.0726 1328 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:42:14.0751 1328 iaStorV - ok
21:42:14.0811 1328 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:42:14.0841 1328 idsvc - ok
21:42:14.0876 1328 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:42:14.0891 1328 iirsp - ok
21:42:14.0956 1328 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
21:42:15.0011 1328 IKEEXT - ok
21:42:15.0041 1328 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:42:15.0061 1328 intelide - ok
21:42:15.0066 1328 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:42:15.0086 1328 intelppm - ok
21:42:15.0121 1328 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:42:15.0166 1328 IPBusEnum - ok
21:42:15.0176 1328 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:42:15.0223 1328 IpFilterDriver - ok
21:42:15.0228 1328 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:42:15.0253 1328 IPMIDRV - ok
21:42:15.0258 1328 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:42:15.0303 1328 IPNAT - ok
21:42:15.0353 1328 [ 46D249F9DB7844CC01050A9345F0F61B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:42:15.0383 1328 iPod Service - ok
21:42:15.0423 1328 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:42:15.0443 1328 IRENUM - ok
21:42:15.0463 1328 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
21:42:15.0478 1328 isapnp - ok
21:42:15.0493 1328 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:42:15.0513 1328 iScsiPrt - ok
21:42:15.0538 1328 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:42:15.0553 1328 kbdclass - ok
21:42:15.0558 1328 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:42:15.0583 1328 kbdhid - ok
21:42:15.0603 1328 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
21:42:15.0618 1328 kbfiltr - ok
21:42:15.0633 1328 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
21:42:15.0658 1328 KeyIso - ok
21:42:15.0678 1328 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:42:15.0698 1328 KSecDD - ok
21:42:15.0753 1328 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:42:15.0773 1328 KSecPkg - ok
21:42:15.0793 1328 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:42:15.0838 1328 ksthunk - ok
21:42:15.0873 1328 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:42:15.0918 1328 KtmRm - ok
21:42:15.0963 1328 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:42:15.0983 1328 LanmanServer - ok
21:42:16.0018 1328 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:42:16.0068 1328 LanmanWorkstation - ok
21:42:16.0078 1328 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:42:16.0123 1328 lltdio - ok
21:42:16.0148 1328 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:42:16.0193 1328 lltdsvc - ok
21:42:16.0228 1328 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:42:16.0273 1328 lmhosts - ok
21:42:16.0293 1328 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:42:16.0313 1328 LSI_FC - ok
21:42:16.0333 1328 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:42:16.0353 1328 LSI_SAS - ok
21:42:16.0358 1328 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:42:16.0378 1328 LSI_SAS2 - ok
21:42:16.0393 1328 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:42:16.0413 1328 LSI_SCSI - ok
21:42:16.0428 1328 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:42:16.0478 1328 luafv - ok
21:42:16.0498 1328 [ 085435AE1A124361304044029B5CC644 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
21:42:16.0513 1328 lullaby - ok
21:42:16.0563 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:16.0583 1328 McAfee SiteAdvisor Service - ok
21:42:16.0603 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:16.0623 1328 McMPFSvc - ok
21:42:16.0628 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:16.0648 1328 mcmscsvc - ok
21:42:16.0653 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:16.0673 1328 McNaiAnn - ok
21:42:16.0678 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:16.0698 1328 McNASvc - ok
21:42:16.0753 1328 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
21:42:16.0773 1328 McODS - ok
21:42:16.0783 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:16.0802 1328 McProxy - ok
21:42:16.0837 1328 [ 9BBCECBE3FE5AF5958A770DC512D0473 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:42:16.0857 1328 McShield - ok
21:42:16.0882 1328 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:42:16.0907 1328 Mcx2Svc - ok
21:42:16.0942 1328 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:42:16.0957 1328 megasas - ok
21:42:17.0017 1328 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:42:17.0042 1328 MegaSR - ok
21:42:17.0062 1328 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
21:42:17.0082 1328 mfeapfk - ok
21:42:17.0117 1328 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
21:42:17.0142 1328 mfeavfk - ok
21:42:17.0337 1328 mfeavfk01 - ok
21:42:17.0387 1328 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:42:17.0407 1328 mfefire - ok
21:42:17.0437 1328 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
21:42:17.0462 1328 mfefirek - ok
21:42:17.0492 1328 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
21:42:17.0517 1328 mfehidk - ok
21:42:17.0567 1328 [ B5B96149BE124092F577DE54EC7D4D65 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
21:42:17.0582 1328 mferkdet - ok
21:42:17.0622 1328 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\Windows\system32\mfevtps.exe
21:42:17.0642 1328 mfevtp - ok
21:42:17.0657 1328 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
21:42:17.0677 1328 mfewfpk - ok
21:42:17.0707 1328 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:42:17.0752 1328 MMCSS - ok
21:42:17.0877 1328 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
21:42:17.0892 1328 MOBKbackup - ok
21:42:17.0912 1328 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
21:42:17.0927 1328 MOBKFilter - ok
21:42:17.0957 1328 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:42:18.0002 1328 Modem - ok
21:42:18.0022 1328 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:42:18.0047 1328 monitor - ok
21:42:18.0062 1328 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:42:18.0077 1328 mouclass - ok
21:42:18.0097 1328 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:42:18.0117 1328 mouhid - ok
21:42:18.0132 1328 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:42:18.0152 1328 mountmgr - ok
21:42:18.0167 1328 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
21:42:18.0187 1328 mpio - ok
21:42:18.0197 1328 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:42:18.0242 1328 mpsdrv - ok
21:42:18.0252 1328 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:42:18.0277 1328 MRxDAV - ok
21:42:18.0302 1328 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:42:18.0332 1328 mrxsmb - ok
21:42:18.0357 1328 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:42:18.0382 1328 mrxsmb10 - ok
21:42:18.0387 1328 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:42:18.0407 1328 mrxsmb20 - ok
21:42:18.0432 1328 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
21:42:18.0447 1328 msahci - ok
21:42:18.0467 1328 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
21:42:18.0487 1328 msdsm - ok
21:42:18.0512 1328 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:42:18.0532 1328 MSDTC - ok
21:42:18.0552 1328 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:42:18.0597 1328 Msfs - ok
21:42:18.0612 1328 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:42:18.0657 1328 mshidkmdf - ok
21:42:18.0667 1328 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
21:42:18.0682 1328 msisadrv - ok
21:42:18.0717 1328 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:42:18.0762 1328 MSiSCSI - ok
21:42:18.0767 1328 msiserver - ok
21:42:18.0787 1328 [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:42:18.0807 1328 MSK80Service - ok
21:42:18.0827 1328 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:42:18.0872 1328 MSKSSRV - ok
21:42:18.0877 1328 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:42:18.0922 1328 MSPCLOCK - ok
21:42:18.0927 1328 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:42:18.0972 1328 MSPQM - ok
21:42:18.0997 1328 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:42:19.0022 1328 MsRPC - ok
21:42:19.0047 1328 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:42:19.0067 1328 mssmbios - ok
21:42:19.0082 1328 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:42:19.0127 1328 MSTEE - ok
21:42:19.0137 1328 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:42:19.0157 1328 MTConfig - ok
21:42:19.0187 1328 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
21:42:19.0272 1328 MTsensor - ok
21:42:19.0287 1328 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:42:19.0307 1328 Mup - ok
21:42:19.0347 1328 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
21:42:19.0402 1328 napagent - ok
21:42:19.0437 1328 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:42:19.0467 1328 NativeWifiP - ok
21:42:19.0562 1328 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
21:42:19.0597 1328 NDIS - ok
21:42:19.0612 1328 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:42:19.0657 1328 NdisCap - ok
21:42:19.0677 1328 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:42:19.0722 1328 NdisTapi - ok
21:42:19.0757 1328 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:42:19.0803 1328 Ndisuio - ok
21:42:19.0808 1328 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:42:19.0858 1328 NdisWan - ok
21:42:19.0863 1328 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:42:19.0908 1328 NDProxy - ok
21:42:19.0928 1328 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:42:19.0973 1328 NetBIOS - ok
21:42:19.0993 1328 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:42:20.0038 1328 NetBT - ok
21:42:20.0058 1328 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
21:42:20.0073 1328 Netlogon - ok
21:42:20.0103 1328 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:42:20.0153 1328 Netman - ok
21:42:20.0178 1328 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:42:20.0228 1328 netprofm - ok
21:42:20.0263 1328 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:42:20.0278 1328 NetTcpPortSharing - ok
21:42:20.0313 1328 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:42:20.0333 1328 nfrd960 - ok
21:42:20.0373 1328 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:42:20.0423 1328 NlaSvc - ok
21:42:20.0438 1328 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:42:20.0483 1328 Npfs - ok
21:42:20.0498 1328 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:42:20.0548 1328 nsi - ok
21:42:20.0573 1328 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:42:20.0618 1328 nsiproxy - ok
21:42:20.0678 1328 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:42:20.0723 1328 Ntfs - ok
21:42:20.0743 1328 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:42:20.0788 1328 Null - ok
21:42:20.0803 1328 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:42:20.0823 1328 nvraid - ok
21:42:20.0863 1328 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:42:20.0883 1328 nvstor - ok
21:42:20.0908 1328 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
21:42:20.0928 1328 nv_agp - ok
21:42:20.0943 1328 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:42:20.0963 1328 ohci1394 - ok
21:42:21.0013 1328 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:42:21.0033 1328 ose - ok
21:42:21.0188 1328 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:42:21.0283 1328 osppsvc - ok
21:42:21.0393 1328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:42:21.0418 1328 p2pimsvc - ok
21:42:21.0443 1328 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:42:21.0468 1328 p2psvc - ok
21:42:21.0508 1328 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:42:21.0528 1328 Parport - ok
21:42:21.0563 1328 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:42:21.0578 1328 partmgr - ok
21:42:21.0608 1328 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:42:21.0638 1328 PcaSvc - ok
21:42:21.0658 1328 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
21:42:21.0678 1328 pci - ok
21:42:21.0683 1328 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:42:21.0703 1328 pciide - ok
21:42:21.0723 1328 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:42:21.0743 1328 pcmcia - ok
21:42:21.0813 1328 [ 8CB97AB9EDC3DB4E6723577E1D790353 ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
21:42:21.0843 1328 PCToolsSSDMonitorSvc - ok
21:42:21.0863 1328 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:42:21.0883 1328 pcw - ok
21:42:21.0903 1328 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:42:21.0958 1328 PEAUTH - ok
21:42:22.0068 1328 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:42:22.0088 1328 PerfHost - ok
21:42:22.0148 1328 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
21:42:22.0219 1328 pla - ok
21:42:22.0255 1328 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:42:22.0280 1328 PlugPlay - ok
21:42:22.0310 1328 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:42:22.0330 1328 PNRPAutoReg - ok
21:42:22.0335 1328 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:42:22.0365 1328 PNRPsvc - ok
21:42:22.0410 1328 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:42:22.0460 1328 PolicyAgent - ok
21:42:22.0490 1328 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:42:22.0540 1328 Power - ok
21:42:22.0570 1328 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:42:22.0615 1328 PptpMiniport - ok
21:42:22.0645 1328 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:42:22.0670 1328 Processor - ok
21:42:22.0690 1328 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
21:42:22.0715 1328 ProfSvc - ok
21:42:22.0720 1328 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:42:22.0745 1328 ProtectedStorage - ok
21:42:22.0760 1328 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:42:22.0805 1328 Psched - ok
21:42:22.0850 1328 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:42:22.0905 1328 ql2300 - ok
21:42:22.0930 1328 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:42:22.0950 1328 ql40xx - ok
21:42:22.0975 1328 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:42:23.0000 1328 QWAVE - ok
21:42:23.0015 1328 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:42:23.0035 1328 QWAVEdrv - ok
21:42:23.0055 1328 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:42:23.0100 1328 RasAcd - ok
21:42:23.0120 1328 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:42:23.0165 1328 RasAgileVpn - ok
21:42:23.0190 1328 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:42:23.0235 1328 RasAuto - ok
21:42:23.0250 1328 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:42:23.0295 1328 Rasl2tp - ok
21:42:23.0315 1328 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
21:42:23.0365 1328 RasMan - ok
21:42:23.0370 1328 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:42:23.0420 1328 RasPppoe - ok
21:42:23.0430 1328 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:42:23.0475 1328 RasSstp - ok
21:42:23.0495 1328 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:42:23.0545 1328 rdbss - ok
21:42:23.0565 1328 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:42:23.0590 1328 rdpbus - ok
21:42:23.0610 1328 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:42:23.0655 1328 RDPCDD - ok
21:42:23.0665 1328 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:42:23.0710 1328 RDPENCDD - ok
21:42:23.0715 1328 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:42:23.0760 1328 RDPREFMP - ok
21:42:23.0780 1328 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:42:23.0805 1328 RDPWD - ok
21:42:23.0835 1328 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:42:23.0855 1328 rdyboost - ok
21:42:23.0900 1328 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:42:23.0950 1328 RemoteAccess - ok
21:42:23.0970 1328 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:42:24.0020 1328 RemoteRegistry - ok
21:42:24.0040 1328 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:42:24.0090 1328 RpcEptMapper - ok
21:42:24.0105 1328 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:42:24.0130 1328 RpcLocator - ok
21:42:24.0155 1328 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
21:42:24.0205 1328 RpcSs - ok
21:42:24.0240 1328 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:42:24.0285 1328 rspndr - ok
21:42:24.0320 1328 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
21:42:24.0345 1328 RTL8167 - ok
21:42:24.0355 1328 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
21:42:24.0375 1328 SamSs - ok
21:42:24.0400 1328 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
21:42:24.0420 1328 sbp2port - ok
21:42:24.0455 1328 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:42:24.0505 1328 SCardSvr - ok
21:42:24.0525 1328 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:42:24.0570 1328 scfilter - ok
21:42:24.0617 1328 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
21:42:24.0652 1328 Schedule - ok
21:42:24.0682 1328 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:42:24.0727 1328 SCPolicySvc - ok
21:42:24.0747 1328 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:42:24.0772 1328 SDRSVC - ok
21:42:24.0792 1328 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:42:24.0837 1328 secdrv - ok
21:42:24.0847 1328 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
21:42:24.0892 1328 seclogon - ok
21:42:24.0912 1328 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:42:24.0962 1328 SENS - ok
21:42:24.0977 1328 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:42:24.0997 1328 SensrSvc - ok
21:42:25.0017 1328 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:42:25.0037 1328 Serenum - ok
21:42:25.0042 1328 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:42:25.0067 1328 Serial - ok
21:42:25.0072 1328 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:42:25.0092 1328 sermouse - ok
21:42:25.0127 1328 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
21:42:25.0172 1328 SessionEnv - ok
21:42:25.0197 1328 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:42:25.0222 1328 sffdisk - ok
21:42:25.0237 1328 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:42:25.0257 1328 sffp_mmc - ok
21:42:25.0272 1328 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:42:25.0292 1328 sffp_sd - ok
21:42:25.0312 1328 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:42:25.0332 1328 sfloppy - ok
21:42:25.0367 1328 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:42:25.0419 1328 SharedAccess - ok
21:42:25.0474 1328 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:42:25.0504 1328 ShellHWDetection - ok
21:42:25.0524 1328 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
21:42:25.0549 1328 SiSGbeLH - ok
21:42:25.0560 1328 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:42:25.0579 1328 SiSRaid2 - ok
21:42:25.0581 1328 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:42:25.0601 1328 SiSRaid4 - ok
21:42:25.0611 1328 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:42:25.0662 1328 Smb - ok
21:42:25.0703 1328 [ 367BC6CD6C781B56FCF6218CD5999DC3 ] SMR162 C:\Windows\system32\drivers\SMR162.SYS
21:42:25.0718 1328 SMR162 - ok
21:42:25.0745 1328 [ B2C19AE46C5A109679B4FB38058DF05A ] snapman C:\Windows\system32\DRIVERS\snapman.sys
21:42:25.0765 1328 snapman - ok
21:42:25.0780 1328 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:42:25.0805 1328 SNMPTRAP - ok
21:42:25.0870 1328 [ F06A6DE8438F7446BFF9E61F31356521 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
21:42:25.0912 1328 SNP2UVC - ok
21:42:25.0927 1328 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:42:25.0947 1328 spldr - ok
21:42:25.0982 1328 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
21:42:26.0007 1328 Spooler - ok
21:42:26.0092 1328 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
21:42:26.0157 1328 sppsvc - ok
21:42:26.0187 1328 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:42:26.0232 1328 sppuinotify - ok
21:42:26.0272 1328 [ 4B3F898DC1378CED2F35D04E5B0CE0DF ] sptd C:\Windows\System32\Drivers\sptd.sys
21:42:26.0277 1328 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 4B3F898DC1378CED2F35D04E5B0CE0DF
21:42:26.0277 1328 sptd ( LockedFile.Multi.Generic ) - warning
21:42:26.0277 1328 sptd - detected LockedFile.Multi.Generic (1)
21:42:26.0297 1328 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:42:26.0322 1328 srv - ok
21:42:26.0332 1328 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:42:26.0357 1328 srv2 - ok
21:42:26.0372 1328 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:42:26.0392 1328 srvnet - ok
21:42:26.0417 1328 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:42:26.0467 1328 SSDPSRV - ok
21:42:26.0482 1328 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:42:26.0527 1328 SstpSvc - ok
21:42:26.0562 1328 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:42:26.0577 1328 stexstor - ok
21:42:26.0617 1328 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
21:42:26.0647 1328 stisvc - ok
21:42:26.0662 1328 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:42:26.0677 1328 swenum - ok
21:42:26.0712 1328 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:42:26.0762 1328 swprv - ok
21:42:26.0817 1328 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
21:42:26.0867 1328 SysMain - ok
21:42:26.0887 1328 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:42:26.0912 1328 TabletInputService - ok
21:42:26.0947 1328 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
21:42:26.0997 1328 TapiSrv - ok
21:42:27.0022 1328 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:42:27.0067 1328 TBS - ok
21:42:27.0127 1328 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:42:27.0177 1328 Tcpip - ok
21:42:27.0207 1328 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:42:27.0252 1328 TCPIP6 - ok
21:42:27.0292 1328 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:42:27.0337 1328 tcpipreg - ok
21:42:27.0357 1328 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:42:27.0377 1328 TDPIPE - ok
21:42:27.0422 1328 [ 99527D49EE0A96FC25537C61B270A372 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
21:42:27.0457 1328 tdrpman273 - ok
21:42:27.0472 1328 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:42:27.0492 1328 TDTCP - ok
21:42:27.0522 1328 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:42:27.0572 1328 tdx - ok
21:42:27.0692 1328 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
21:42:27.0767 1328 TeamViewer8 - ok
21:42:27.0807 1328 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:42:27.0822 1328 TermDD - ok
21:42:27.0862 1328 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
21:42:27.0917 1328 TermService - ok
21:42:27.0927 1328 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:42:27.0952 1328 Themes - ok
21:42:27.0972 1328 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:42:28.0022 1328 THREADORDER - ok
21:42:28.0087 1328 [ EBBAEA02F0095A798000C7E06B16D41B ] timounter C:\Windows\system32\DRIVERS\timntr.sys
21:42:28.0117 1328 timounter - ok
21:42:28.0152 1328 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:42:28.0202 1328 TrkWks - ok
21:42:28.0387 1328 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:42:28.0407 1328 TrustedInstaller - ok
21:42:28.0427 1328 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:42:28.0472 1328 tssecsrv - ok
21:42:28.0577 1328 [ CDBA816242F5E2DDA788342F4282F132 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
21:42:28.0622 1328 TuneUp.UtilitiesSvc - ok
21:42:28.0642 1328 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
21:42:28.0657 1328 TuneUpUtilitiesDrv - ok
21:42:28.0677 1328 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:42:28.0722 1328 tunnel - ok
21:42:28.0747 1328 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:42:28.0767 1328 uagp35 - ok
21:42:28.0797 1328 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:42:28.0843 1328 udfs - ok
21:42:28.0878 1328 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:42:28.0898 1328 UI0Detect - ok
21:42:28.0913 1328 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
21:42:28.0933 1328 uliagpkx - ok
21:42:28.0958 1328 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:42:28.0978 1328 umbus - ok
21:42:28.0993 1328 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:42:29.0013 1328 UmPass - ok
21:42:29.0038 1328 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:42:29.0088 1328 upnphost - ok
21:42:29.0113 1328 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:42:29.0133 1328 USBAAPL64 - ok
21:42:29.0163 1328 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:42:29.0203 1328 usbccgp - ok
21:42:29.0233 1328 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
21:42:29.0258 1328 usbcir - ok
21:42:29.0278 1328 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:42:29.0298 1328 usbehci - ok
21:42:29.0333 1328 [ D524F3716D85B744762FF5EAAEF8F3A2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
21:42:29.0348 1328 usbfilter - ok
21:42:29.0363 1328 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:42:29.0388 1328 usbhub - ok
21:42:29.0393 1328 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:42:29.0413 1328 usbohci - ok
21:42:29.0433 1328 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:42:29.0453 1328 usbprint - ok
21:42:29.0503 1328 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:42:29.0523 1328 USBSTOR - ok
21:42:29.0553 1328 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:42:29.0573 1328 usbuhci - ok
21:42:29.0598 1328 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
21:42:29.0618 1328 usbvideo - ok
21:42:29.0643 1328 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:42:29.0688 1328 UxSms - ok
21:42:29.0718 1328 [ 7984FCAB128476584FBF135AD9B9097E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
21:42:29.0733 1328 UxTuneUp - ok
21:42:29.0743 1328 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
21:42:29.0763 1328 VaultSvc - ok
21:42:29.0783 1328 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
21:42:29.0803 1328 vdrvroot - ok
21:42:29.0828 1328 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
21:42:29.0853 1328 vds - ok
21:42:29.0888 1328 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:42:29.0908 1328 vga - ok
21:42:29.0933 1328 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:42:29.0978 1328 VgaSave - ok
21:42:29.0983 1328 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
21:42:30.0003 1328 vhdmp - ok
21:42:30.0058 1328 [ FE595D1A1B781190BB483444B62CC607 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
21:42:30.0093 1328 VIAHdAudAddService - ok
21:42:30.0113 1328 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
21:42:30.0133 1328 viaide - ok
21:42:30.0163 1328 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
21:42:30.0178 1328 volmgr - ok
21:42:30.0188 1328 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:42:30.0213 1328 volmgrx - ok
21:42:30.0233 1328 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:42:30.0258 1328 volsnap - ok
21:42:30.0283 1328 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:42:30.0303 1328 vsmraid - ok
21:42:30.0373 1328 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
21:42:30.0413 1328 VSS - ok
21:42:30.0428 1328 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:42:30.0448 1328 vwifibus - ok
21:42:30.0458 1328 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:42:30.0483 1328 vwififlt - ok
21:42:30.0518 1328 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:42:30.0573 1328 W32Time - ok
21:42:30.0608 1328 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:42:30.0628 1328 WacomPen - ok
21:42:30.0633 1328 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:42:30.0683 1328 WANARP - ok
21:42:30.0693 1328 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:42:30.0738 1328 Wanarpv6 - ok
21:42:30.0869 1328 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
21:42:30.0909 1328 wbengine - ok
21:42:30.0929 1328 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:42:30.0959 1328 WbioSrvc - ok
21:42:30.0984 1328 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:42:31.0009 1328 wcncsvc - ok
21:42:31.0039 1328 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:42:31.0064 1328 WcsPlugInService - ok
21:42:31.0089 1328 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:42:31.0109 1328 Wd - ok
21:42:31.0149 1328 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:42:31.0184 1328 Wdf01000 - ok
21:42:31.0204 1328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:42:31.0229 1328 WdiServiceHost - ok
21:42:31.0234 1328 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:42:31.0264 1328 WdiSystemHost - ok
21:42:31.0299 1328 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
21:42:31.0324 1328 WebClient - ok
21:42:31.0349 1328 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:42:31.0399 1328 Wecsvc - ok
21:42:31.0414 1328 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:42:31.0464 1328 wercplsupport - ok
21:42:31.0484 1328 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:42:31.0529 1328 WerSvc - ok
21:42:31.0559 1328 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:42:31.0599 1328 WfpLwf - ok
21:42:31.0639 1328 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
21:42:31.0659 1328 WimFltr - ok
21:42:31.0689 1328 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:42:31.0704 1328 WIMMount - ok
21:42:31.0714 1328 WinHttpAutoProxySvc - ok
21:42:31.0764 1328 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:42:31.0809 1328 Winmgmt - ok
21:42:31.0889 1328 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
21:42:31.0954 1328 WinRM - ok
21:42:32.0019 1328 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:42:32.0039 1328 WinUsb - ok
21:42:32.0139 1328 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:42:32.0174 1328 Wlansvc - ok
21:42:32.0199 1328 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:42:32.0219 1328 WmiAcpi - ok
21:42:32.0254 1328 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:42:32.0279 1328 wmiApSrv - ok
21:42:32.0304 1328 WMPNetworkSvc - ok
21:42:32.0334 1328 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:42:32.0354 1328 WPCSvc - ok
21:42:32.0374 1328 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:42:32.0399 1328 WPDBusEnum - ok
21:42:32.0424 1328 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:42:32.0469 1328 ws2ifsl - ok
21:42:32.0474 1328 WSearch - ok
21:42:32.0544 1328 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:42:32.0604 1328 wuauserv - ok
21:42:32.0624 1328 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:42:32.0644 1328 WudfPf - ok
21:42:32.0664 1328 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:42:32.0684 1328 WUDFRd - ok
21:42:32.0714 1328 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:42:32.0739 1328 wudfsvc - ok
21:42:32.0764 1328 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:42:32.0794 1328 WwanSvc - ok
21:42:32.0804 1328 ================ Scan global ===============================
21:42:32.0864 1328 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:42:32.0889 1328 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
21:42:32.0899 1328 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
21:42:32.0919 1328 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:42:32.0944 1328 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:42:32.0944 1328 [Global] - ok
21:42:32.0949 1328 ================ Scan MBR ==================================
21:42:32.0969 1328 [ 3168815C7495AF45C36B2CE45126E3D8 ] \Device\Harddisk0\DR0
21:42:33.0424 1328 \Device\Harddisk0\DR0 - ok
21:42:33.0434 1328 [ 5E9AEF0915A3B50BF575ED81BFB0085F ] \Device\Harddisk1\DR1
21:42:33.0654 1328 \Device\Harddisk1\DR1 ( Rootkit.Win32.BackBoot.gen ) - warning
21:42:33.0654 1328 \Device\Harddisk1\DR1 - detected Rootkit.Win32.BackBoot.gen (1)
21:42:33.0809 1328 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
21:42:33.0809 1328 \Device\Harddisk1\DR1 - detected TDSS File System (1)
21:42:33.0809 1328 ================ Scan VBR ==================================
21:42:33.0814 1328 [ 47368EAF17AA79C28B6042CEABCF5A8B ] \Device\Harddisk0\DR0\Partition1
21:42:33.0814 1328 \Device\Harddisk0\DR0\Partition1 - ok
21:42:33.0819 1328 [ C57DD963086C6847A5237A61AC8670C5 ] \Device\Harddisk0\DR0\Partition2
21:42:33.0824 1328 \Device\Harddisk0\DR0\Partition2 - ok
21:42:33.0829 1328 [ 26BDE10EA2AFC3237B1F78DBFF258EEA ] \Device\Harddisk1\DR1\Partition1
21:42:33.0834 1328 \Device\Harddisk1\DR1\Partition1 - ok
21:42:33.0834 1328 ============================================================
21:42:33.0834 1328 Scan finished
21:42:33.0834 1328 ============================================================
21:42:33.0849 2252 Detected object count: 4
21:42:33.0849 2252 Actual detected object count: 4
22:44:18.0045 2252 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
22:44:18.0045 2252 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:44:18.0045 2252 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:44:18.0045 2252 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:44:18.0295 2252 \Device\Harddisk1\DR1\# - copied to quarantine
22:44:18.0295 2252 \Device\Harddisk1\DR1 - copied to quarantine
22:44:18.0300 2252 \Device\Harddisk1\DR1 - restored
22:44:18.0300 2252 \Device\Harddisk1\DR1 ( Rootkit.Win32.BackBoot.gen ) - User select action: Restore
22:44:18.0330 2252 \Device\Harddisk1\DR1\TDLFS\hmd - copied to quarantine
22:44:18.0360 2252 \Device\Harddisk1\DR1\TDLFS\hmdx - copied to quarantine
22:44:18.0365 2252 \Device\Harddisk1\DR1\TDLFS - deleted
22:44:18.0365 2252 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Delete
|
|
18.02.2013, 23:55
| #10 |
| | Win7 GVU Sperre Ah ja, ich habe Rechner jetzt neu gestartet und TDSS Killer nochmal ausgeführt. Hier ist die neue Log-Datei: Code:
ATTFilter 23:52:00.0755 4312 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
23:52:01.0205 4312 ============================================================
23:52:01.0205 4312 Current date / time: 2013/02/18 23:52:01.0205
23:52:01.0205 4312 SystemInfo:
23:52:01.0205 4312
23:52:01.0205 4312 OS Version: 6.1.7600 ServicePack: 0.0
23:52:01.0205 4312 Product type: Workstation
23:52:01.0205 4312 ComputerName: ROMAN-PC
23:52:01.0205 4312 UserName: Administrator
23:52:01.0205 4312 Windows directory: C:\Windows
23:52:01.0205 4312 System windows directory: C:\Windows
23:52:01.0205 4312 Running under WOW64
23:52:01.0205 4312 Processor architecture: Intel x64
23:52:01.0205 4312 Number of processors: 2
23:52:01.0205 4312 Page size: 0x1000
23:52:01.0205 4312 Boot type: Normal boot
23:52:01.0205 4312 ============================================================
23:52:12.0510 4312 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:52:12.0540 4312 Drive \Device\Harddisk1\DR1 - Size: 0xEEBF8000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:52:12.0540 4312 ============================================================
23:52:12.0540 4312 \Device\Harddisk0\DR0:
23:52:12.0550 4312 MBR partitions:
23:52:12.0550 4312 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D4B178, BlocksNum 0x950A600
23:52:12.0570 4312 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xB2557B7, BlocksNum 0x1A1D7F0A
23:52:12.0570 4312 \Device\Harddisk1\DR1:
23:52:12.0570 4312 MBR partitions:
23:52:12.0570 4312 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x772266
23:52:12.0570 4312 ============================================================
23:52:12.0700 4312 C: <-> \Device\Harddisk0\DR0\Partition1
23:52:12.0840 4312 D: <-> \Device\Harddisk0\DR0\Partition2
23:52:12.0840 4312 ============================================================
23:52:12.0840 4312 Initialize success
23:52:12.0840 4312 ============================================================
23:53:38.0935 4800 ============================================================
23:53:38.0935 4800 Scan started
23:53:38.0935 4800 Mode: Manual; SigCheck; TDLFS;
23:53:38.0935 4800 ============================================================
23:53:41.0901 4800 ================ Scan system memory ========================
23:53:41.0901 4800 System memory - ok
23:53:41.0901 4800 ================ Scan services =============================
23:53:42.0066 4800 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
23:53:42.0201 4800 1394ohci - ok
23:53:42.0286 4800 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
23:53:42.0331 4800 ACPI - ok
23:53:42.0351 4800 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
23:53:42.0446 4800 AcpiPmi - ok
23:53:42.0556 4800 [ 125CCA62EA497B3C3F45E8EEED8DBA36 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
23:53:42.0606 4800 AcrSch2Svc - ok
23:53:42.0701 4800 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:53:42.0721 4800 AdobeFlashPlayerUpdateSvc - ok
23:53:42.0756 4800 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:53:42.0786 4800 adp94xx - ok
23:53:42.0791 4800 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:53:42.0816 4800 adpahci - ok
23:53:42.0826 4800 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:53:42.0846 4800 adpu320 - ok
23:53:42.0886 4800 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:53:43.0041 4800 AeLookupSvc - ok
23:53:43.0136 4800 [ CC946C4EBF60CB6DC8816E5F8A941EAD ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
23:53:43.0186 4800 afcdp - ok
23:53:43.0276 4800 [ 149E8CA66CEADE0D17AC4028A567499F ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
23:53:43.0408 4800 afcdpsrv - ok
23:53:43.0443 4800 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
23:53:43.0523 4800 AFD - ok
23:53:43.0558 4800 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
23:53:43.0578 4800 agp440 - ok
23:53:43.0598 4800 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
23:53:43.0663 4800 ALG - ok
23:53:43.0683 4800 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
23:53:43.0703 4800 aliide - ok
23:53:43.0733 4800 [ 5B0539714C6BD5CBBA653A68318435C3 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:53:43.0798 4800 AMD External Events Utility - ok
23:53:43.0813 4800 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
23:53:43.0828 4800 amdide - ok
23:53:43.0838 4800 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:53:43.0883 4800 AmdK8 - ok
23:53:43.0913 4800 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:53:43.0958 4800 AmdPPM - ok
23:53:43.0978 4800 [ 8818A2AB90189B7FF60A24C0847F9A6B ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
23:53:43.0998 4800 amdsata - ok
23:53:44.0018 4800 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:53:44.0038 4800 amdsbs - ok
23:53:44.0048 4800 [ 3C430969F097DEE18D13010D678069CD ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
23:53:44.0063 4800 amdxata - ok
23:53:44.0088 4800 [ 9C7F164B49CADC658D1B3C575782F346 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
23:53:44.0163 4800 AmUStor - ok
23:53:44.0178 4800 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
23:53:44.0283 4800 AppID - ok
23:53:44.0373 4800 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:53:44.0478 4800 AppIDSvc - ok
23:53:44.0483 4800 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
23:53:44.0543 4800 Appinfo - ok
23:53:44.0598 4800 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:53:44.0613 4800 Apple Mobile Device - ok
23:53:44.0633 4800 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
23:53:44.0653 4800 arc - ok
23:53:44.0668 4800 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:53:44.0688 4800 arcsas - ok
23:53:44.0718 4800 [ 18E5C2F937F9DEB8C282DF66A3761925 ] ASLDRService C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
23:53:44.0738 4800 ASLDRService - ok
23:53:44.0788 4800 [ 2DB34EDD17D3A8DA7105A19C95A3DD68 ] ASMMAP64 C:\Program Files\ATKGFNEX\ASMMAP64.sys
23:53:44.0803 4800 ASMMAP64 - ok
23:53:44.0808 4800 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:53:44.0888 4800 AsyncMac - ok
23:53:44.0908 4800 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
23:53:44.0923 4800 atapi - ok
23:53:45.0048 4800 [ A5E770426D18F8EF332A593F3289DA91 ] athr C:\Windows\system32\DRIVERS\athrx.sys
23:53:45.0143 4800 athr - ok
23:53:45.0288 4800 [ A47B3FCE2D47EAB02C608AA8200CCB7E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:53:45.0408 4800 atikmdag - ok
23:53:45.0433 4800 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
23:53:45.0448 4800 AtiPcie - ok
23:53:45.0468 4800 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
23:53:45.0508 4800 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
23:53:45.0508 4800 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
23:53:45.0628 4800 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:53:45.0813 4800 AudioEndpointBuilder - ok
23:53:45.0828 4800 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:53:45.0878 4800 AudioSrv - ok
23:53:45.0903 4800 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:53:46.0018 4800 AxInstSV - ok
23:53:46.0053 4800 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:53:46.0113 4800 b06bdrv - ok
23:53:46.0133 4800 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:53:46.0188 4800 b57nd60a - ok
23:53:46.0233 4800 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
23:53:46.0263 4800 BDESVC - ok
23:53:46.0293 4800 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
23:53:46.0368 4800 Beep - ok
23:53:46.0418 4800 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
23:53:46.0618 4800 BITS - ok
23:53:46.0633 4800 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:53:46.0683 4800 blbdrive - ok
23:53:46.0733 4800 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:53:46.0903 4800 bowser - ok
23:53:46.0958 4800 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:53:47.0123 4800 BrFiltLo - ok
23:53:47.0133 4800 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:53:47.0158 4800 BrFiltUp - ok
23:53:47.0193 4800 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
23:53:47.0263 4800 Browser - ok
23:53:47.0303 4800 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:53:47.0368 4800 Brserid - ok
23:53:47.0383 4800 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:53:47.0418 4800 BrSerWdm - ok
23:53:47.0428 4800 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:53:47.0463 4800 BrUsbMdm - ok
23:53:47.0473 4800 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:53:47.0518 4800 BrUsbSer - ok
23:53:47.0523 4800 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:53:47.0568 4800 BTHMODEM - ok
23:53:47.0613 4800 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
23:53:47.0673 4800 bthserv - ok
23:53:47.0698 4800 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:53:47.0768 4800 cdfs - ok
23:53:47.0803 4800 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:53:47.0858 4800 cdrom - ok
23:53:47.0888 4800 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
23:53:47.0963 4800 CertPropSvc - ok
23:53:48.0008 4800 [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids C:\Windows\system32\drivers\cfwids.sys
23:53:48.0023 4800 cfwids - ok
23:53:48.0048 4800 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:53:48.0138 4800 circlass - ok
23:53:48.0228 4800 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
23:53:48.0253 4800 CLFS - ok
23:53:48.0308 4800 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:53:48.0328 4800 clr_optimization_v2.0.50727_32 - ok
23:53:48.0368 4800 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:53:48.0388 4800 clr_optimization_v2.0.50727_64 - ok
23:53:48.0423 4800 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:53:48.0498 4800 clr_optimization_v4.0.30319_32 - ok
23:53:48.0523 4800 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:53:48.0543 4800 clr_optimization_v4.0.30319_64 - ok
23:53:48.0573 4800 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:53:48.0618 4800 CmBatt - ok
23:53:48.0638 4800 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
23:53:48.0658 4800 cmdide - ok
23:53:48.0693 4800 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
23:53:48.0748 4800 CNG - ok
23:53:48.0783 4800 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:53:48.0798 4800 Compbatt - ok
23:53:48.0818 4800 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:53:48.0873 4800 CompositeBus - ok
23:53:48.0878 4800 COMSysApp - ok
23:53:48.0898 4800 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:53:48.0918 4800 crcdisk - ok
23:53:49.0143 4800 [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:53:49.0213 4800 CryptSvc - ok
23:53:49.0258 4800 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:53:49.0338 4800 DcomLaunch - ok
23:53:49.0423 4800 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
23:53:49.0628 4800 defragsvc - ok
23:53:49.0663 4800 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:53:49.0718 4800 DfsC - ok
23:53:49.0753 4800 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
23:53:49.0863 4800 Dhcp - ok
23:53:49.0888 4800 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
23:53:49.0948 4800 discache - ok
23:53:49.0968 4800 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:53:49.0988 4800 Disk - ok
23:53:50.0023 4800 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:53:50.0073 4800 Dnscache - ok
23:53:50.0108 4800 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
23:53:50.0183 4800 dot3svc - ok
23:53:50.0213 4800 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
23:53:50.0284 4800 DPS - ok
23:53:50.0327 4800 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:53:50.0366 4800 drmkaud - ok
23:53:50.0416 4800 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:53:50.0451 4800 DXGKrnl - ok
23:53:50.0486 4800 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
23:53:50.0556 4800 EapHost - ok
23:53:50.0721 4800 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:53:50.0861 4800 ebdrv - ok
23:53:50.0896 4800 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
23:53:50.0951 4800 EFS - ok
23:53:51.0011 4800 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:53:51.0091 4800 ehRecvr - ok
23:53:51.0121 4800 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
23:53:51.0191 4800 ehSched - ok
23:53:51.0241 4800 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:53:51.0271 4800 elxstor - ok
23:53:51.0276 4800 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
23:53:51.0321 4800 ErrDev - ok
23:53:51.0346 4800 [ 3C38648375B7F3988691F53A7AAE10A9 ] ETD C:\Windows\system32\DRIVERS\ETD.sys
23:53:51.0396 4800 ETD - ok
23:53:51.0446 4800 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
23:53:51.0536 4800 EventSystem - ok
23:53:51.0561 4800 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
23:53:51.0621 4800 exfat - ok
23:53:51.0661 4800 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:53:51.0731 4800 fastfat - ok
23:53:51.0856 4800 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
23:53:52.0021 4800 Fax - ok
23:53:52.0041 4800 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:53:52.0081 4800 fdc - ok
23:53:52.0116 4800 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
23:53:52.0181 4800 fdPHost - ok
23:53:52.0206 4800 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
23:53:52.0266 4800 FDResPub - ok
23:53:52.0296 4800 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:53:52.0316 4800 FileInfo - ok
23:53:52.0331 4800 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:53:52.0411 4800 Filetrace - ok
23:53:52.0421 4800 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:53:52.0461 4800 flpydisk - ok
23:53:52.0491 4800 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:53:52.0516 4800 FltMgr - ok
23:53:52.0566 4800 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
23:53:52.0641 4800 FontCache - ok
23:53:52.0686 4800 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:53:52.0701 4800 FontCache3.0.0.0 - ok
23:53:52.0726 4800 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:53:52.0746 4800 FsDepends - ok
23:53:52.0776 4800 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:53:52.0791 4800 Fs_Rec - ok
23:53:52.0836 4800 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:53:52.0861 4800 fvevol - ok
23:53:52.0891 4800 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:53:52.0911 4800 gagp30kx - ok
23:53:52.0936 4800 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:53:52.0946 4800 GEARAspiWDM - ok
23:53:52.0991 4800 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
23:53:53.0071 4800 gpsvc - ok
23:53:53.0291 4800 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:53:53.0311 4800 gupdate - ok
23:53:53.0316 4800 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:53:53.0331 4800 gupdatem - ok
23:53:53.0361 4800 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
23:53:53.0381 4800 hamachi - ok
23:53:53.0411 4800 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:53:53.0476 4800 hcw85cir - ok
23:53:53.0506 4800 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:53:53.0561 4800 HdAudAddService - ok
23:53:53.0586 4800 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
23:53:53.0641 4800 HDAudBus - ok
23:53:53.0646 4800 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:53:53.0686 4800 HidBatt - ok
23:53:53.0716 4800 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:53:53.0771 4800 HidBth - ok
23:53:53.0796 4800 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:53:53.0846 4800 HidIr - ok
23:53:53.0881 4800 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
23:53:53.0941 4800 hidserv - ok
23:53:53.0971 4800 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:53:54.0016 4800 HidUsb - ok
23:53:54.0091 4800 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
23:53:54.0111 4800 HipShieldK - ok
23:53:54.0131 4800 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:53:54.0191 4800 hkmsvc - ok
23:53:54.0226 4800 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:53:54.0296 4800 HomeGroupListener - ok
23:53:54.0382 4800 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:53:54.0442 4800 HomeGroupProvider - ok
23:53:54.0457 4800 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
23:53:54.0477 4800 HpSAMD - ok
23:53:54.0512 4800 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:53:54.0587 4800 HTTP - ok
23:53:54.0612 4800 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:53:54.0632 4800 hwpolicy - ok
23:53:54.0642 4800 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
23:53:54.0667 4800 i8042prt - ok
23:53:54.0702 4800 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:53:54.0727 4800 iaStorV - ok
23:53:54.0792 4800 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:53:54.0827 4800 idsvc - ok
23:53:54.0862 4800 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:53:54.0877 4800 iirsp - ok
23:53:54.0927 4800 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
23:53:55.0007 4800 IKEEXT - ok
23:53:55.0052 4800 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
23:53:55.0067 4800 intelide - ok
23:53:55.0077 4800 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:53:55.0132 4800 intelppm - ok
23:53:55.0162 4800 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:53:55.0222 4800 IPBusEnum - ok
23:53:55.0232 4800 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:53:55.0282 4800 IpFilterDriver - ok
23:53:55.0287 4800 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
23:53:55.0322 4800 IPMIDRV - ok
23:53:55.0347 4800 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:53:55.0412 4800 IPNAT - ok
23:53:55.0462 4800 [ 46D249F9DB7844CC01050A9345F0F61B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
23:53:55.0497 4800 iPod Service - ok
23:53:55.0527 4800 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:53:55.0637 4800 IRENUM - ok
23:53:55.0712 4800 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
23:53:55.0742 4800 isapnp - ok
23:53:55.0782 4800 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
23:53:55.0802 4800 iScsiPrt - ok
23:53:55.0822 4800 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:53:55.0842 4800 kbdclass - ok
23:53:55.0847 4800 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:53:55.0902 4800 kbdhid - ok
23:53:55.0922 4800 [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
23:53:55.0937 4800 kbfiltr - ok
23:53:55.0952 4800 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
23:53:55.0972 4800 KeyIso - ok
23:53:55.0997 4800 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:53:56.0017 4800 KSecDD - ok
23:53:56.0047 4800 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:53:56.0067 4800 KSecPkg - ok
23:53:56.0087 4800 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:53:56.0147 4800 ksthunk - ok
23:53:56.0202 4800 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
23:53:56.0267 4800 KtmRm - ok
23:53:56.0312 4800 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
23:53:56.0387 4800 LanmanServer - ok
23:53:56.0412 4800 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:53:56.0492 4800 LanmanWorkstation - ok
23:53:56.0532 4800 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:53:56.0597 4800 lltdio - ok
23:53:56.0632 4800 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:53:56.0697 4800 lltdsvc - ok
23:53:56.0722 4800 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:53:56.0772 4800 lmhosts - ok
23:53:56.0847 4800 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:53:56.0887 4800 LSI_FC - ok
23:53:56.0907 4800 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:53:56.0927 4800 LSI_SAS - ok
23:53:56.0937 4800 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:53:56.0957 4800 LSI_SAS2 - ok
23:53:56.0977 4800 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:53:56.0997 4800 LSI_SCSI - ok
23:53:57.0017 4800 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
23:53:57.0077 4800 luafv - ok
23:53:57.0102 4800 [ 085435AE1A124361304044029B5CC644 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
23:53:57.0117 4800 lullaby - ok
23:53:57.0172 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:57.0192 4800 McAfee SiteAdvisor Service - ok
23:53:57.0207 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:57.0227 4800 McMPFSvc - ok
23:53:57.0232 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:57.0257 4800 mcmscsvc - ok
23:53:57.0262 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:57.0282 4800 McNaiAnn - ok
23:53:57.0292 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:57.0307 4800 McNASvc - ok
23:53:57.0402 4800 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
23:53:57.0427 4800 McODS - ok
23:53:57.0432 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:57.0452 4800 McProxy - ok
23:53:57.0512 4800 [ 9BBCECBE3FE5AF5958A770DC512D0473 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
23:53:57.0532 4800 McShield - ok
23:53:57.0557 4800 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:53:57.0592 4800 Mcx2Svc - ok
23:53:57.0627 4800 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:53:57.0642 4800 megasas - ok
23:53:57.0667 4800 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:53:57.0687 4800 MegaSR - ok
23:53:57.0727 4800 [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
23:53:57.0747 4800 mfeapfk - ok
23:53:57.0772 4800 [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
23:53:57.0792 4800 mfeavfk - ok
23:53:57.0837 4800 mfeavfk01 - ok
23:53:57.0862 4800 [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
23:53:57.0887 4800 mfefire - ok
23:53:57.0912 4800 [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
23:53:57.0937 4800 mfefirek - ok
23:53:57.0987 4800 [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
23:53:58.0017 4800 mfehidk - ok
23:53:58.0172 4800 [ B5B96149BE124092F577DE54EC7D4D65 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
23:53:58.0252 4800 mferkdet - ok
23:53:58.0287 4800 [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp C:\Windows\system32\mfevtps.exe
23:53:58.0307 4800 mfevtp - ok
23:53:58.0332 4800 [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
23:53:58.0357 4800 mfewfpk - ok
23:53:58.0382 4800 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
23:53:58.0448 4800 MMCSS - ok
23:53:58.0503 4800 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
23:53:58.0523 4800 MOBKbackup - ok
23:53:58.0543 4800 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
23:53:58.0558 4800 MOBKFilter - ok
23:53:58.0588 4800 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
23:53:58.0658 4800 Modem - ok
23:53:58.0688 4800 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:53:58.0718 4800 monitor - ok
23:53:58.0748 4800 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:53:58.0763 4800 mouclass - ok
23:53:58.0783 4800 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:53:58.0813 4800 mouhid - ok
23:53:58.0853 4800 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:53:58.0873 4800 mountmgr - ok
23:53:58.0898 4800 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
23:53:58.0918 4800 mpio - ok
23:53:58.0928 4800 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:53:58.0993 4800 mpsdrv - ok
23:53:58.0998 4800 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:53:59.0048 4800 MRxDAV - ok
23:53:59.0078 4800 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:53:59.0138 4800 mrxsmb - ok
23:53:59.0178 4800 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:53:59.0218 4800 mrxsmb10 - ok
23:53:59.0243 4800 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:53:59.0303 4800 mrxsmb20 - ok
23:53:59.0363 4800 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
23:53:59.0444 4800 msahci - ok
23:53:59.0514 4800 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
23:53:59.0534 4800 msdsm - ok
23:53:59.0564 4800 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
23:53:59.0604 4800 MSDTC - ok
23:53:59.0634 4800 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:53:59.0689 4800 Msfs - ok
23:53:59.0709 4800 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:53:59.0769 4800 mshidkmdf - ok
23:53:59.0774 4800 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
23:53:59.0794 4800 msisadrv - ok
23:53:59.0824 4800 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:53:59.0884 4800 MSiSCSI - ok
23:53:59.0894 4800 msiserver - ok
23:53:59.0914 4800 [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:53:59.0934 4800 MSK80Service - ok
23:53:59.0969 4800 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:54:00.0029 4800 MSKSSRV - ok
23:54:00.0034 4800 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:54:00.0089 4800 MSPCLOCK - ok
23:54:00.0094 4800 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:54:00.0159 4800 MSPQM - ok
23:54:00.0234 4800 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:54:00.0279 4800 MsRPC - ok
23:54:00.0314 4800 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
23:54:00.0329 4800 mssmbios - ok
23:54:00.0349 4800 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:54:00.0409 4800 MSTEE - ok
23:54:00.0429 4800 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:54:00.0479 4800 MTConfig - ok
23:54:00.0504 4800 [ 032D35C996F21D19A205A7C8F0B76F3C ] MTsensor C:\Windows\system32\DRIVERS\ATK64AMD.sys
23:54:00.0529 4800 MTsensor - ok
23:54:00.0584 4800 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
23:54:00.0624 4800 Mup - ok
23:54:00.0714 4800 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
23:54:00.0789 4800 napagent - ok
23:54:00.0834 4800 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:54:00.0899 4800 NativeWifiP - ok
23:54:01.0034 4800 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
23:54:01.0079 4800 NDIS - ok
23:54:01.0109 4800 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:54:01.0189 4800 NdisCap - ok
23:54:01.0209 4800 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:54:01.0274 4800 NdisTapi - ok
23:54:01.0319 4800 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:54:01.0389 4800 Ndisuio - ok
23:54:01.0429 4800 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:54:01.0479 4800 NdisWan - ok
23:54:01.0499 4800 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:54:01.0574 4800 NDProxy - ok
23:54:01.0589 4800 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:54:01.0654 4800 NetBIOS - ok
23:54:01.0744 4800 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:54:01.0834 4800 NetBT - ok
23:54:01.0854 4800 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
23:54:01.0874 4800 Netlogon - ok
23:54:01.0934 4800 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
23:54:02.0009 4800 Netman - ok
23:54:02.0089 4800 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
23:54:02.0304 4800 netprofm - ok
23:54:02.0359 4800 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:54:02.0415 4800 NetTcpPortSharing - ok
23:54:02.0465 4800 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:54:02.0560 4800 nfrd960 - ok
23:54:02.0665 4800 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
23:54:02.0735 4800 NlaSvc - ok
23:54:02.0755 4800 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:54:02.0805 4800 Npfs - ok
23:54:02.0830 4800 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
23:54:02.0900 4800 nsi - ok
23:54:02.0945 4800 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:54:03.0015 4800 nsiproxy - ok
23:54:03.0375 4800 [ 184C189D4FC416978550FC599BB4EDDA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:54:03.0465 4800 Ntfs - ok
23:54:03.0535 4800 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
23:54:03.0605 4800 Null - ok
23:54:03.0650 4800 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:54:03.0705 4800 nvraid - ok
23:54:03.0770 4800 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:54:03.0810 4800 nvstor - ok
23:54:03.0835 4800 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
23:54:03.0855 4800 nv_agp - ok
23:54:03.0875 4800 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
23:54:03.0910 4800 ohci1394 - ok
23:54:03.0965 4800 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:54:03.0985 4800 ose - ok
23:54:04.0260 4800 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:54:04.0550 4800 osppsvc - ok
23:54:04.0580 4800 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:54:04.0665 4800 p2pimsvc - ok
23:54:04.0750 4800 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
23:54:04.0810 4800 p2psvc - ok
23:54:04.0850 4800 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:54:04.0900 4800 Parport - ok
23:54:04.0935 4800 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:54:04.0975 4800 partmgr - ok
23:54:05.0015 4800 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:54:05.0070 4800 PcaSvc - ok
23:54:05.0105 4800 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
23:54:05.0125 4800 pci - ok
23:54:05.0130 4800 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
23:54:05.0150 4800 pciide - ok
23:54:05.0175 4800 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:54:05.0195 4800 pcmcia - ok
23:54:05.0265 4800 [ 8CB97AB9EDC3DB4E6723577E1D790353 ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
23:54:05.0300 4800 PCToolsSSDMonitorSvc - ok
23:54:05.0350 4800 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
23:54:05.0390 4800 pcw - ok
23:54:05.0480 4800 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:54:05.0570 4800 PEAUTH - ok
23:54:05.0765 4800 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:54:05.0800 4800 PerfHost - ok
23:54:06.0070 4800 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
23:54:06.0215 4800 pla - ok
23:54:06.0250 4800 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:54:06.0305 4800 PlugPlay - ok
23:54:06.0325 4800 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:54:06.0360 4800 PNRPAutoReg - ok
23:54:06.0385 4800 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:54:06.0410 4800 PNRPsvc - ok
23:54:06.0451 4800 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:54:06.0536 4800 PolicyAgent - ok
23:54:06.0576 4800 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
23:54:06.0656 4800 Power - ok
23:54:06.0701 4800 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:54:06.0771 4800 PptpMiniport - ok
23:54:06.0831 4800 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:54:06.0956 4800 Processor - ok
23:54:07.0011 4800 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
23:54:07.0081 4800 ProfSvc - ok
23:54:07.0106 4800 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:54:07.0126 4800 ProtectedStorage - ok
23:54:07.0156 4800 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:54:07.0266 4800 Psched - ok
23:54:07.0473 4800 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:54:07.0538 4800 ql2300 - ok
23:54:07.0543 4800 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:54:07.0563 4800 ql40xx - ok
23:54:07.0593 4800 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
23:54:07.0623 4800 QWAVE - ok
23:54:07.0643 4800 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:54:07.0728 4800 QWAVEdrv - ok
23:54:07.0808 4800 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:54:07.0888 4800 RasAcd - ok
23:54:07.0928 4800 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:54:07.0993 4800 RasAgileVpn - ok
23:54:08.0123 4800 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
23:54:08.0213 4800 RasAuto - ok
23:54:08.0233 4800 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:54:08.0293 4800 Rasl2tp - ok
23:54:08.0363 4800 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
23:54:08.0453 4800 RasMan - ok
23:54:08.0478 4800 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:54:08.0548 4800 RasPppoe - ok
23:54:08.0583 4800 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:54:08.0653 4800 RasSstp - ok
23:54:08.0673 4800 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:54:08.0743 4800 rdbss - ok
23:54:08.0773 4800 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:54:08.0813 4800 rdpbus - ok
23:54:08.0828 4800 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:54:08.0873 4800 RDPCDD - ok
23:54:08.0898 4800 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:54:08.0973 4800 RDPENCDD - ok
23:54:09.0008 4800 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:54:09.0053 4800 RDPREFMP - ok
23:54:09.0103 4800 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:54:09.0188 4800 RDPWD - ok
23:54:09.0218 4800 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:54:09.0243 4800 rdyboost - ok
23:54:09.0343 4800 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:54:09.0423 4800 RemoteAccess - ok
23:54:09.0458 4800 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:54:09.0553 4800 RemoteRegistry - ok
23:54:09.0638 4800 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:54:09.0728 4800 RpcEptMapper - ok
23:54:09.0793 4800 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
23:54:09.0833 4800 RpcLocator - ok
23:54:09.0883 4800 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
23:54:09.0938 4800 RpcSs - ok
23:54:09.0968 4800 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:54:10.0033 4800 rspndr - ok
23:54:10.0073 4800 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
23:54:10.0098 4800 RTL8167 - ok
23:54:10.0133 4800 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
23:54:10.0153 4800 SamSs - ok
23:54:10.0223 4800 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
23:54:10.0238 4800 sbp2port - ok
23:54:10.0293 4800 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:54:10.0358 4800 SCardSvr - ok
23:54:10.0388 4800 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:54:10.0479 4800 scfilter - ok
23:54:10.0654 4800 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
23:54:10.0739 4800 Schedule - ok
23:54:10.0779 4800 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
23:54:10.0829 4800 SCPolicySvc - ok
23:54:10.0879 4800 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:54:10.0964 4800 SDRSVC - ok
23:54:10.0989 4800 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:54:11.0049 4800 secdrv - ok
23:54:11.0089 4800 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
23:54:11.0149 4800 seclogon - ok
23:54:11.0164 4800 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
23:54:11.0233 4800 SENS - ok
23:54:11.0264 4800 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:54:11.0336 4800 SensrSvc - ok
23:54:11.0381 4800 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:54:11.0456 4800 Serenum - ok
23:54:11.0486 4800 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:54:11.0536 4800 Serial - ok
23:54:11.0576 4800 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:54:11.0626 4800 sermouse - ok
23:54:11.0666 4800 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
23:54:11.0731 4800 SessionEnv - ok
23:54:11.0761 4800 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:54:11.0806 4800 sffdisk - ok
23:54:11.0826 4800 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:54:11.0881 4800 sffp_mmc - ok
23:54:11.0911 4800 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:54:11.0961 4800 sffp_sd - ok
23:54:12.0001 4800 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:54:12.0061 4800 sfloppy - ok
23:54:12.0161 4800 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:54:12.0296 4800 SharedAccess - ok
23:54:12.0571 4800 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:54:12.0671 4800 ShellHWDetection - ok
23:54:12.0721 4800 [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSG664.sys
23:54:12.0836 4800 SiSGbeLH - ok
23:54:12.0881 4800 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:54:12.0896 4800 SiSRaid2 - ok
23:54:12.0906 4800 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:54:12.0926 4800 SiSRaid4 - ok
23:54:12.0931 4800 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:54:12.0991 4800 Smb - ok
23:54:13.0196 4800 [ 367BC6CD6C781B56FCF6218CD5999DC3 ] SMR162 C:\Windows\system32\drivers\SMR162.SYS
23:54:13.0266 4800 SMR162 - ok
23:54:13.0336 4800 [ B2C19AE46C5A109679B4FB38058DF05A ] snapman C:\Windows\system32\DRIVERS\snapman.sys
23:54:13.0361 4800 snapman - ok
23:54:13.0386 4800 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:54:13.0437 4800 SNMPTRAP - ok
23:54:13.0502 4800 [ F06A6DE8438F7446BFF9E61F31356521 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
23:54:13.0562 4800 SNP2UVC - ok
23:54:13.0592 4800 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
23:54:13.0607 4800 spldr - ok
23:54:13.0647 4800 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
23:54:13.0717 4800 Spooler - ok
23:54:14.0092 4800 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
23:54:14.0242 4800 sppsvc - ok
23:54:14.0272 4800 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:54:14.0382 4800 sppuinotify - ok
23:54:14.0603 4800 [ 4B3F898DC1378CED2F35D04E5B0CE0DF ] sptd C:\Windows\System32\Drivers\sptd.sys
23:54:14.0603 4800 Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 4B3F898DC1378CED2F35D04E5B0CE0DF
23:54:14.0608 4800 sptd ( LockedFile.Multi.Generic ) - warning
23:54:14.0608 4800 sptd - detected LockedFile.Multi.Generic (1)
23:54:14.0643 4800 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:54:14.0708 4800 srv - ok
23:54:14.0738 4800 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:54:14.0783 4800 srv2 - ok
23:54:14.0813 4800 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:54:14.0843 4800 srvnet - ok
23:54:14.0883 4800 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:54:14.0958 4800 SSDPSRV - ok
23:54:14.0998 4800 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:54:15.0083 4800 SstpSvc - ok
23:54:15.0123 4800 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:54:15.0163 4800 stexstor - ok
23:54:15.0213 4800 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
23:54:15.0263 4800 stisvc - ok
23:54:15.0290 4800 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
23:54:15.0310 4800 swenum - ok
23:54:15.0345 4800 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
23:54:15.0395 4800 swprv - ok
23:54:15.0450 4800 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
23:54:15.0555 4800 SysMain - ok
23:54:15.0625 4800 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:54:15.0725 4800 TabletInputService - ok
23:54:15.0785 4800 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
23:54:15.0870 4800 TapiSrv - ok
23:54:15.0895 4800 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
23:54:15.0940 4800 TBS - ok
23:54:15.0995 4800 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:54:16.0050 4800 Tcpip - ok
23:54:16.0080 4800 [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:54:16.0130 4800 TCPIP6 - ok
23:54:16.0175 4800 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:54:16.0235 4800 tcpipreg - ok
23:54:16.0255 4800 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:54:16.0325 4800 TDPIPE - ok
23:54:16.0405 4800 [ 99527D49EE0A96FC25537C61B270A372 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys
23:54:16.0450 4800 tdrpman273 - ok
23:54:16.0470 4800 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:54:16.0530 4800 TDTCP - ok
23:54:16.0565 4800 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:54:16.0610 4800 tdx - ok
23:54:16.0985 4800 [ 9F3E7CABE86BBDECA009DE291DB6D9E2 ] TeamViewer8 C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
23:54:17.0060 4800 TeamViewer8 - ok
23:54:17.0115 4800 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
23:54:17.0130 4800 TermDD - ok
23:54:17.0170 4800 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
23:54:17.0260 4800 TermService - ok
23:54:17.0315 4800 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
23:54:17.0375 4800 Themes - ok
23:54:17.0405 4800 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
23:54:17.0454 4800 THREADORDER - ok
23:54:17.0537 4800 [ EBBAEA02F0095A798000C7E06B16D41B ] timounter C:\Windows\system32\DRIVERS\timntr.sys
23:54:17.0652 4800 timounter - ok
23:54:17.0692 4800 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
23:54:17.0752 4800 TrkWks - ok
23:54:17.0817 4800 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:54:17.0852 4800 TrustedInstaller - ok
23:54:17.0882 4800 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:54:17.0957 4800 tssecsrv - ok
23:54:18.0227 4800 [ CDBA816242F5E2DDA788342F4282F132 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
23:54:18.0322 4800 TuneUp.UtilitiesSvc - ok
23:54:18.0352 4800 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
23:54:18.0367 4800 TuneUpUtilitiesDrv - ok
23:54:18.0382 4800 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:54:18.0442 4800 tunnel - ok
23:54:18.0477 4800 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:54:18.0497 4800 uagp35 - ok
23:54:18.0527 4800 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:54:18.0612 4800 udfs - ok
23:54:18.0662 4800 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:54:18.0712 4800 UI0Detect - ok
23:54:18.0757 4800 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
23:54:18.0797 4800 uliagpkx - ok
23:54:18.0822 4800 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
23:54:18.0862 4800 umbus - ok
23:54:18.0902 4800 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:54:18.0937 4800 UmPass - ok
23:54:18.0977 4800 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
23:54:19.0042 4800 upnphost - ok
23:54:19.0087 4800 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
23:54:19.0167 4800 USBAAPL64 - ok
23:54:19.0207 4800 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:54:19.0257 4800 usbccgp - ok
23:54:19.0354 4800 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
23:54:19.0449 4800 usbcir - ok
23:54:19.0539 4800 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:54:19.0609 4800 usbehci - ok
23:54:19.0664 4800 [ D524F3716D85B744762FF5EAAEF8F3A2 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
23:54:19.0679 4800 usbfilter - ok
23:54:19.0754 4800 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:54:19.0794 4800 usbhub - ok
23:54:19.0814 4800 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
23:54:19.0859 4800 usbohci - ok
23:54:19.0919 4800 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:54:19.0964 4800 usbprint - ok
23:54:20.0024 4800 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:54:20.0084 4800 USBSTOR - ok
23:54:20.0109 4800 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:54:20.0149 4800 usbuhci - ok
23:54:20.0184 4800 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
23:54:20.0234 4800 usbvideo - ok
23:54:20.0264 4800 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
23:54:20.0324 4800 UxSms - ok
23:54:20.0359 4800 [ 7984FCAB128476584FBF135AD9B9097E ] UxTuneUp C:\Windows\System32\uxtuneup.dll
23:54:20.0389 4800 UxTuneUp - ok
23:54:20.0409 4800 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
23:54:20.0429 4800 VaultSvc - ok
23:54:20.0469 4800 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
23:54:20.0514 4800 vdrvroot - ok
23:54:20.0664 4800 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
23:54:20.0714 4800 vds - ok
23:54:20.0759 4800 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:54:20.0784 4800 vga - ok
23:54:20.0804 4800 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
23:54:20.0869 4800 VgaSave - ok
23:54:20.0879 4800 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
23:54:20.0899 4800 vhdmp - ok
23:54:21.0034 4800 [ FE595D1A1B781190BB483444B62CC607 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
23:54:21.0109 4800 VIAHdAudAddService - ok
23:54:21.0134 4800 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
23:54:21.0164 4800 viaide - ok
23:54:21.0204 4800 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
23:54:21.0224 4800 volmgr - ok
23:54:21.0234 4800 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:54:21.0259 4800 volmgrx - ok
23:54:21.0279 4800 [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:54:21.0299 4800 volsnap - ok
23:54:21.0324 4800 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:54:21.0349 4800 vsmraid - ok
23:54:21.0404 4800 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
23:54:21.0464 4800 VSS - ok
23:54:21.0479 4800 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
23:54:21.0534 4800 vwifibus - ok
23:54:21.0554 4800 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
23:54:21.0619 4800 vwififlt - ok
23:54:21.0674 4800 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
23:54:21.0734 4800 W32Time - ok
23:54:21.0804 4800 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:54:21.0929 4800 WacomPen - ok
23:54:21.0969 4800 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:54:22.0039 4800 WANARP - ok
23:54:22.0044 4800 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:54:22.0089 4800 Wanarpv6 - ok
23:54:22.0369 4800 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
23:54:22.0465 4800 wbengine - ok
23:54:22.0505 4800 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:54:22.0550 4800 WbioSrvc - ok
23:54:22.0580 4800 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:54:22.0660 4800 wcncsvc - ok
23:54:22.0700 4800 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:54:22.0780 4800 WcsPlugInService - ok
23:54:22.0820 4800 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:54:22.0855 4800 Wd - ok
23:54:22.0970 4800 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:54:23.0065 4800 Wdf01000 - ok
23:54:23.0080 4800 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:54:23.0125 4800 WdiServiceHost - ok
23:54:23.0145 4800 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:54:23.0170 4800 WdiSystemHost - ok
23:54:23.0205 4800 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
23:54:23.0265 4800 WebClient - ok
23:54:23.0315 4800 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:54:23.0380 4800 Wecsvc - ok
23:54:23.0435 4800 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:54:23.0515 4800 wercplsupport - ok
23:54:23.0590 4800 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
23:54:23.0650 4800 WerSvc - ok
23:54:23.0675 4800 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:54:23.0750 4800 WfpLwf - ok
23:54:23.0795 4800 [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
23:54:23.0815 4800 WimFltr - ok
23:54:23.0840 4800 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:54:23.0860 4800 WIMMount - ok
23:54:23.0870 4800 WinHttpAutoProxySvc - ok
23:54:23.0985 4800 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:54:24.0085 4800 Winmgmt - ok
23:54:24.0415 4800 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
23:54:24.0540 4800 WinRM - ok
23:54:24.0590 4800 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:54:24.0640 4800 WinUsb - ok
23:54:24.0745 4800 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
23:54:24.0800 4800 Wlansvc - ok
23:54:24.0830 4800 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
23:54:24.0870 4800 WmiAcpi - ok
23:54:24.0905 4800 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:54:24.0950 4800 wmiApSrv - ok
23:54:24.0980 4800 WMPNetworkSvc - ok
23:54:25.0010 4800 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:54:25.0045 4800 WPCSvc - ok
23:54:25.0060 4800 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:54:25.0120 4800 WPDBusEnum - ok
23:54:25.0155 4800 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:54:25.0235 4800 ws2ifsl - ok
23:54:25.0244 4800 WSearch - ok
23:54:25.0432 4800 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
23:54:25.0562 4800 wuauserv - ok
23:54:25.0587 4800 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:54:25.0632 4800 WudfPf - ok
23:54:25.0652 4800 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:54:25.0687 4800 WUDFRd - ok
23:54:25.0747 4800 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:54:25.0807 4800 wudfsvc - ok
23:54:25.0852 4800 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
23:54:25.0882 4800 WwanSvc - ok
23:54:25.0910 4800 ================ Scan global ===============================
23:54:25.0959 4800 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
23:54:25.0999 4800 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
23:54:26.0009 4800 [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
23:54:26.0039 4800 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
23:54:26.0064 4800 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
23:54:26.0064 4800 [Global] - ok
23:54:26.0069 4800 ================ Scan MBR ==================================
23:54:26.0089 4800 [ 3168815C7495AF45C36B2CE45126E3D8 ] \Device\Harddisk0\DR0
23:54:26.0556 4800 \Device\Harddisk0\DR0 - ok
23:54:26.0566 4800 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
23:54:32.0414 4800 \Device\Harddisk1\DR1 - ok
23:54:32.0414 4800 ================ Scan VBR ==================================
23:54:32.0419 4800 [ 47368EAF17AA79C28B6042CEABCF5A8B ] \Device\Harddisk0\DR0\Partition1
23:54:32.0419 4800 \Device\Harddisk0\DR0\Partition1 - ok
23:54:32.0424 4800 [ C57DD963086C6847A5237A61AC8670C5 ] \Device\Harddisk0\DR0\Partition2
23:54:32.0424 4800 \Device\Harddisk0\DR0\Partition2 - ok
23:54:32.0434 4800 [ 26BDE10EA2AFC3237B1F78DBFF258EEA ] \Device\Harddisk1\DR1\Partition1
23:54:32.0439 4800 \Device\Harddisk1\DR1\Partition1 - ok
23:54:32.0439 4800 ============================================================
23:54:32.0439 4800 Scan finished
23:54:32.0439 4800 ============================================================
23:54:32.0454 1664 Detected object count: 2
23:54:32.0454 1664 Actual detected object count: 2
23:54:42.0873 1664 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
23:54:42.0873 1664 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:54:42.0873 1664 sptd ( LockedFile.Multi.Generic ) - skipped by user
23:54:42.0873 1664 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
|
|
19.02.2013, 00:16
| #11 |
| /// Malware-holic | Win7 GVU Sperre Hi neustarten bitte und ein neues TDSS-Killer Log posten bitte
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Win7 GVU Sperre |
| admin, beseitigung, ccleaner, dateien, installier, laufe, laufen, programme, programmen, rechner, sperre, win, win7, zusammen |
Textbox. 
Linear-Darstellung
