Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: BOO/Dosump.A in Masterbootsektor

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 04.04.2012, 02:09   #1
Macross
 
BOO/Dosump.A in Masterbootsektor - Standard

BOO/Dosump.A in Masterbootsektor



Hallo Leute

Ich habe ein Problem und hoffe ihr habt kurz Zeit mir zu helfen.
Antivir hat mir heute einen Fund gemeldet, und zwar:

Code:
ATTFilter
Masterbootsektor HD0 BOO/Dosump.A
Bootsektor 'C:\' BOO/Dosump.A
Bootsektor 'D:\' BOO/Dosump.A
         
Hab daraufhin mit der Recovery Funktion meines Laptops das System komplett Wiederhergestellt, doch der Virus (?!) ist trotzdem noch da. Ist wohl auch in der Recovery Partition der HDD (HD0?). Bin jetzt gut am verzweifeln, besonders da ich von Computern nicht so die Ahnung habe.

Ich habe dann wie hier empfohlen Defogger und DDS ausgeführt.

Defogger:
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 01:08 on 04/04/2012 (Biohazard)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
DDS
Code:
ATTFilter
.
DDS (Ver_2011-08-26.01) - NTFSAMD64 
Internet Explorer: 9.0.8112.16421
Run by Biohazard at 1:09:18 on 2012-04-04
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.4010.2746 [GMT 2:00]
.
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\wininit.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
C:\windows\system32\nvvsvc.exe
C:\windows\System32\spoolsv.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
C:\windows\system32\taskeng.exe
C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
C:\windows\system32\conhost.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\igfxext.exe
C:\windows\system32\igfxsrvc.exe
C:\windows\system32\DllHost.exe
C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
C:\windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
C:\windows\servicing\TrustedInstaller.exe
C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\SearchFilterHost.exe
C:\windows\system32\DllHost.exe
C:\windows\system32\DllHost.exe
C:\windows\SysWOW64\cmd.exe
C:\windows\system32\conhost.exe
C:\windows\SysWOW64\cscript.exe
C:\windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://samsung.msn.com
uDefault_Page_URL = hxxp://samsung.msn.com
mStart Page = hxxp://samsung.msn.com
mWinlogon: Userinit=userinit.exe
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll"
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe"
mRun: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
TCP: DhcpNameServer = 192.168.2.1
TCP: Interfaces\{942E04A7-3FA4-4436-B34F-5AAF7D91BE68} : DhcpNameServer = 192.168.2.1
TCP: Interfaces\{C78DE897-BEB1-452F-A82F-73D30EC4B283} : DhcpNameServer = 192.168.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
{9030D464-4C02-4ABF-8ECC-5164760863C6}
{d2ce3e00-f94a-4740-988e-03dc2f38c34f}
{8dcb7100-df86-4384-8842-8fa844297b3f}
mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\Media+Player10\Media+Player10Serv.exe"
mRun-x64: [CLMLServer] "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
mRun-x64: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
AppInit_DLLs-X64: C:\windows\SysWOW64\nvinit.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Biohazard\AppData\Roaming\Mozilla\Firefox\Profiles\a389z974.default\
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
.
============= SERVICES / DRIVERS ===============
.
R0 nvpciflt;nvpciflt;C:\windows\system32\DRIVERS\nvpciflt.sys --> C:\windows\system32\DRIVERS\nvpciflt.sys [?]
R1 avkmgr;avkmgr;C:\windows\system32\DRIVERS\avkmgr.sys --> C:\windows\system32\DRIVERS\avkmgr.sys [?]
R1 SABI;SAMSUNG Kernel Driver For Windows 7;\??\C:\windows\system32\Drivers\SABI.sys --> C:\windows\system32\Drivers\SABI.sys [?]
R1 vwififlt;Virtual WiFi Filter Driver;C:\windows\system32\DRIVERS\vwififlt.sys --> C:\windows\system32\DRIVERS\vwififlt.sys [?]
R2 AntiVirSchedulerService;Avira Planer;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2012-4-4 86224]
R2 AntiVirService;Avira Echtzeit Scanner;C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2012-4-4 110032]
R2 avgntflt;avgntflt;C:\windows\system32\DRIVERS\avgntflt.sys --> C:\windows\system32\DRIVERS\avgntflt.sys [?]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-8-13 1997416]
R2 SGDrv;SGDrv;C:\windows\system32\DRIVERS\SGdrv64.sys --> C:\windows\system32\DRIVERS\SGdrv64.sys [?]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-8-13 2656536]
R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\system32\DRIVERS\clwvd.sys --> C:\windows\system32\DRIVERS\clwvd.sys [?]
R3 ETD;ELAN PS/2 Port Input Device;C:\windows\system32\DRIVERS\ETD.sys --> C:\windows\system32\DRIVERS\ETD.sys [?]
R3 IntcDAud;Intel(R) Display Audio;C:\windows\system32\DRIVERS\IntcDAud.sys --> C:\windows\system32\DRIVERS\IntcDAud.sys [?]
R3 MEIx64;Intel(R) Management Engine Interface;C:\windows\system32\DRIVERS\HECIx64.sys --> C:\windows\system32\DRIVERS\HECIx64.sys [?]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\windows\system32\DRIVERS\NETwNs64.sys --> C:\windows\system32\DRIVERS\NETwNs64.sys [?]
R3 RTL8167;Realtek 8167 NT Driver;C:\windows\system32\DRIVERS\Rt64win7.sys --> C:\windows\system32\DRIVERS\Rt64win7.sys [?]
S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-3-1 183560]
S3 TsUsbFlt;TsUsbFlt;C:\windows\system32\drivers\tsusbflt.sys --> C:\windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\windows\system32\drivers\TsUsbGD.sys --> C:\windows\system32\drivers\TsUsbGD.sys [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-04-03 23:02:18	--------	d-----w-	C:\Users\Biohazard\AppData\Roaming\Avira
2012-04-03 22:56:25	97312	----a-w-	C:\windows\System32\drivers\avgntflt.sys
2012-04-03 22:56:25	27760	----a-w-	C:\windows\System32\drivers\avkmgr.sys
2012-04-03 22:56:25	--------	d-----w-	C:\ProgramData\Avira
2012-04-03 22:56:25	--------	d-----w-	C:\Program Files (x86)\Avira
2012-04-03 22:50:12	9216	----a-w-	C:\windows\System32\rdrmemptylst.exe
2012-04-03 22:50:12	826880	----a-w-	C:\windows\SysWow64\rdpcore.dll
2012-04-03 22:50:12	77312	----a-w-	C:\windows\System32\rdpwsx.dll
2012-04-03 22:50:12	149504	----a-w-	C:\windows\System32\rdpcorekmts.dll
2012-04-03 22:50:12	1031680	----a-w-	C:\windows\System32\rdpcore.dll
2012-04-03 22:50:11	23552	----a-w-	C:\windows\System32\drivers\tdtcp.sys
2012-04-03 22:50:11	210944	----a-w-	C:\windows\System32\drivers\rdpwd.sys
2012-04-03 22:42:55	--------	d-----w-	C:\Users\Biohazard\AppData\Local\Power2Go
2012-04-03 22:41:49	--------	d-----r-	C:\Program Files (x86)\Skype
2012-04-03 22:41:35	--------	d-----w-	C:\Program Files\Elantech
2012-04-03 22:41:19	--------	d-----w-	C:\Users\Biohazard\AppData\Local\VirtualStore
2012-04-03 22:39:06	--------	d-sh--w-	C:\Recovery
2012-04-03 22:39:03	559104	----a-w-	C:\windows\System32\spoolsv.exe
2012-04-03 22:38:34	91216	----a-w-	C:\windows\Invoker.exe
2012-04-03 22:38:34	559104	----a-w-	C:\windows\System32\spoolsv.exe.org
2012-04-03 22:38:34	24576	----a-w-	C:\windows\Spoolsync.exe
.
==================== Find3M  ====================
.
.
============= FINISH:  1:09:58,40 ===============
         
Attach

Code:
ATTFilter
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium 
Boot Device: \Device\HarddiskVolume1
Install Date: 04.04.2012 00:40:42
System Uptime: 04.04.2012 00:59:23 (1 hours ago)
.
Motherboard: SAMSUNG ELECTRONICS CO., LTD. |  | 300E4A/300E5A/300E7A
Processor: Intel(R) Core(TM) i3-2330M CPU @ 2.20GHz | CPU | 1584/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 178 GiB total, 147,51 GiB free.
D: is FIXED (NTFS) - 265 GiB total, 265,006 GiB free.
E: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP22: 04.04.2012 00:50:14 - Windows Update
RP23: 04.04.2012 00:52:54 - Removed Norton Online Backup
.
==== Installed Programs ======================
.
???? ??? Windows Live
???? Windows Live
????? Windows Live
?????? ??????? ?? Windows Live
???????? ?????????? Windows Live
?????????? Windows Live
??????????? ?? Windows Live
Adobe Flash Player 10 ActiveX
Agatha Christie - Death on the Nile
Avira Free Antivirus
„Windows Live Essentials“
„Windows Live Mail“
„Windows Live Messenger“
„Windows Live“ fotogalerija
Bejeweled 2 Deluxe
Bing Bar
Build-a-lot
Chuzzle Deluxe
CyberLink Media Suite
CyberLink Media+ Player10
CyberLink MediaShow
CyberLink Power2Go
CyberLink PowerDirector
CyberLink YouCam
D3DX10
Diner Dash 2 Restaurant Rescue
Easy File Share
Easy Migration
Easy Settings
Easy Software Manager
Easy Support Center 1.0
Farm Frenzy
Fotogalerija Windows Live
Galeria de Fotografias do Windows Live
Galeria fotografii uslugi Windows Live
Galerie de photos Windows Live
Galerie foto Windows Live
Galería fotográfica de Windows Live
Insaniquarium Deluxe
Intel PROSet Wireless
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
John Deere Drive Green
Junk Mail filter update
Mesh Runtime
Microsoft Office 2010
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Mozilla Firefox 11.0 (x86 de)
MSVCRT
MSVCRT_amd64
Peggle
Penguins!
Plants vs. Zombies
Poczta uslugi Windows Live
Podstawowe programy Windows Live
Polar Golfer
Pošta Windows Live
Raccolta foto di Windows Live
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
S?????? f?t???af??? t?? Windows Live
Samsung Recovery Solution 5
Skype™ 4.2
Software Launcher
User Guide
WildTangent Games
WildTangent ORB Game Console
Windows Live
Windows Live ??
Windows Live ?? ???
Windows Live ???
Windows Live ????
Windows Live Communications Platform
Windows Live Essentials
Windows Live Fotótár
Windows Live Foto-galerija
Windows Live fotoattelu galerija
Windows Live Fotogalerie
Windows Live Fotogalleri
Windows Live Fotogaléria
Windows Live Fotograf Galerisi
Windows Live Galeria de Fotos
Windows Live Galerija fotografija
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Pošta
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Temel Parçalar
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Liven asennustyökalu
Windows Liven sähköposti
Windows Liven valokuvavalikoima
Zuma Deluxe
.
==== End Of File ===========================
         
Ach ja, Google hatte über BOO/Dosump.A nichts ausgespuckt. Und bei Antivir stand auch nichts unter Informationen.

Ich hoffe ihr helft mir, bin schon kurz vorm Nervenzusammenbruch

Grüße

Macross

Alt 04.04.2012, 15:36   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
BOO/Dosump.A in Masterbootsektor - Standard

BOO/Dosump.A in Masterbootsektor



Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten, Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.
Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

__________________

__________________

Alt 04.04.2012, 18:00   #3
Macross
 
BOO/Dosump.A in Masterbootsektor - Standard

BOO/Dosump.A in Masterbootsektor



Vielen Dank erstmal für die Hilfe. Hab den TDSS-Killer durchlaufen lassen, hier ist der Log:

Code:
ATTFilter
17:52:36.0576 1072	TDSS rootkit removing tool 2.7.25.0 Apr  3 2012 13:42:32
17:52:36.0716 1072	============================================================
17:52:36.0716 1072	Current date / time: 2012/04/04 17:52:36.0716
17:52:36.0716 1072	SystemInfo:
17:52:36.0716 1072	
17:52:36.0716 1072	OS Version: 6.1.7601 ServicePack: 1.0
17:52:36.0716 1072	Product type: Workstation
17:52:36.0716 1072	ComputerName: BIOHAZARD-PC
17:52:36.0716 1072	UserName: Biohazard
17:52:36.0716 1072	Windows directory: C:\windows
17:52:36.0716 1072	System windows directory: C:\windows
17:52:36.0716 1072	Running under WOW64
17:52:36.0716 1072	Processor architecture: Intel x64
17:52:36.0716 1072	Number of processors: 4
17:52:36.0716 1072	Page size: 0x1000
17:52:36.0716 1072	Boot type: Normal boot
17:52:36.0716 1072	============================================================
17:52:38.0635 1072	Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:52:38.0635 1072	\Device\Harddisk0\DR0:
17:52:38.0635 1072	MBR used
17:52:38.0635 1072	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:52:38.0635 1072	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x16400000
17:52:38.0650 1072	\Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x16433000, BlocksNum 0x21234000
17:52:38.0744 1072	Initialize success
17:52:38.0744 1072	============================================================
17:53:04.0094 4908	============================================================
17:53:04.0094 4908	Scan started
17:53:04.0094 4908	Mode: Manual; SigCheck; TDLFS; 
17:53:04.0094 4908	============================================================
17:53:04.0531 4908	1394ohci        (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
17:53:04.0687 4908	1394ohci - ok
17:53:04.0812 4908	ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
17:53:04.0843 4908	ACPI - ok
17:53:04.0905 4908	AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
17:53:05.0015 4908	AcpiPmi - ok
17:53:05.0139 4908	adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\drivers\adp94xx.sys
17:53:05.0171 4908	adp94xx - ok
17:53:05.0202 4908	adpahci         (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\drivers\adpahci.sys
17:53:05.0217 4908	adpahci - ok
17:53:05.0233 4908	adpu320         (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\drivers\adpu320.sys
17:53:05.0249 4908	adpu320 - ok
17:53:05.0295 4908	AeLookupSvc     (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
17:53:05.0529 4908	AeLookupSvc - ok
17:53:05.0623 4908	AFD             (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
17:53:05.0701 4908	AFD - ok
17:53:05.0748 4908	agp440          (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
17:53:05.0763 4908	agp440 - ok
17:53:05.0826 4908	ALG             (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
17:53:05.0873 4908	ALG - ok
17:53:05.0919 4908	aliide          (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
17:53:05.0951 4908	aliide - ok
17:53:05.0951 4908	amdide          (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
17:53:05.0966 4908	amdide - ok
17:53:05.0997 4908	AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\drivers\amdk8.sys
17:53:06.0044 4908	AmdK8 - ok
17:53:06.0060 4908	AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\drivers\amdppm.sys
17:53:06.0091 4908	AmdPPM - ok
17:53:06.0138 4908	amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
17:53:06.0169 4908	amdsata - ok
17:53:06.0216 4908	amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\drivers\amdsbs.sys
17:53:06.0231 4908	amdsbs - ok
17:53:06.0263 4908	amdxata         (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
17:53:06.0263 4908	amdxata - ok
17:53:06.0450 4908	AntiVirSchedulerService (a122d68ea2541453f787f341877cb40b) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
17:53:06.0481 4908	AntiVirSchedulerService - ok
17:53:06.0497 4908	AntiVirService  (2fe359edeb34efcf42574752f8aebd3f) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
17:53:06.0497 4908	AntiVirService - ok
17:53:06.0621 4908	AppID           (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
17:53:06.0809 4908	AppID - ok
17:53:06.0902 4908	AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
17:53:06.0996 4908	AppIDSvc - ok
17:53:07.0027 4908	Appinfo         (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
17:53:07.0105 4908	Appinfo - ok
17:53:07.0152 4908	arc             (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\drivers\arc.sys
17:53:07.0183 4908	arc - ok
17:53:07.0183 4908	arcsas          (019af6924aefe7839f61c830227fe79c) C:\windows\system32\drivers\arcsas.sys
17:53:07.0199 4908	arcsas - ok
17:53:07.0245 4908	AsyncMac        (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
17:53:07.0292 4908	AsyncMac - ok
17:53:07.0339 4908	atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
17:53:07.0339 4908	atapi - ok
17:53:07.0401 4908	AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
17:53:07.0479 4908	AudioEndpointBuilder - ok
17:53:07.0495 4908	AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
17:53:07.0526 4908	AudioSrv - ok
17:53:07.0620 4908	avgntflt        (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\windows\system32\DRIVERS\avgntflt.sys
17:53:07.0729 4908	avgntflt - ok
17:53:07.0745 4908	avipbb          (852e3c0a60d368c487949e55ad52a47f) C:\windows\system32\DRIVERS\avipbb.sys
17:53:07.0776 4908	avipbb - ok
17:53:07.0791 4908	avkmgr          (248db59fc86de44d2779f4c7fb1a567d) C:\windows\system32\DRIVERS\avkmgr.sys
17:53:07.0807 4908	avkmgr - ok
17:53:07.0854 4908	AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
17:53:07.0901 4908	AxInstSV - ok
17:53:07.0963 4908	b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\windows\system32\drivers\bxvbda.sys
17:53:07.0994 4908	b06bdrv - ok
17:53:08.0041 4908	b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
17:53:08.0103 4908	b57nd60a - ok
17:53:08.0197 4908	BBSvc           (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
17:53:08.0228 4908	BBSvc - ok
17:53:08.0353 4908	BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
17:53:08.0400 4908	BDESVC - ok
17:53:08.0462 4908	Beep            (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
17:53:08.0540 4908	Beep - ok
17:53:08.0618 4908	BFE             (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
17:53:08.0743 4908	BFE - ok
17:53:08.0790 4908	BITS            (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
17:53:08.0868 4908	BITS - ok
17:53:08.0930 4908	blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
17:53:08.0977 4908	blbdrive - ok
17:53:09.0024 4908	bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
17:53:09.0055 4908	bowser - ok
17:53:09.0102 4908	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\drivers\BrFiltLo.sys
17:53:09.0149 4908	BrFiltLo - ok
17:53:09.0164 4908	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\drivers\BrFiltUp.sys
17:53:09.0180 4908	BrFiltUp - ok
17:53:09.0211 4908	Browser         (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
17:53:09.0258 4908	Browser - ok
17:53:09.0273 4908	Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
17:53:09.0305 4908	Brserid - ok
17:53:09.0305 4908	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
17:53:09.0336 4908	BrSerWdm - ok
17:53:09.0351 4908	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
17:53:09.0367 4908	BrUsbMdm - ok
17:53:09.0383 4908	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
17:53:09.0398 4908	BrUsbSer - ok
17:53:09.0445 4908	BthEnum         (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\DRIVERS\BthEnum.sys
17:53:09.0507 4908	BthEnum - ok
17:53:09.0539 4908	BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\drivers\bthmodem.sys
17:53:09.0585 4908	BTHMODEM - ok
17:53:09.0679 4908	BthPan          (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys
17:53:09.0726 4908	BthPan - ok
17:53:09.0773 4908	BTHPORT         (0d25b6d300ba26a5f2c3b2a8e96b158b) C:\windows\system32\Drivers\BTHport.sys
17:53:09.0866 4908	BTHPORT - ok
17:53:09.0929 4908	bthserv         (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
17:53:10.0007 4908	bthserv - ok
17:53:10.0069 4908	BTHUSB          (1f9912f8ec5bfa53432e71e150636a8a) C:\windows\system32\Drivers\BTHUSB.sys
17:53:10.0116 4908	BTHUSB - ok
17:53:10.0163 4908	cdfs            (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
17:53:10.0209 4908	cdfs - ok
17:53:10.0350 4908	cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\DRIVERS\cdrom.sys
17:53:10.0397 4908	cdrom - ok
17:53:10.0475 4908	CertPropSvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
17:53:10.0568 4908	CertPropSvc - ok
17:53:10.0631 4908	circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\drivers\circlass.sys
17:53:10.0662 4908	circlass - ok
17:53:10.0802 4908	CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
17:53:10.0833 4908	CLFS - ok
17:53:10.0927 4908	clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:53:10.0943 4908	clr_optimization_v2.0.50727_32 - ok
17:53:10.0958 4908	clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:53:10.0974 4908	clr_optimization_v2.0.50727_64 - ok
17:53:11.0145 4908	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:53:11.0177 4908	clr_optimization_v4.0.30319_32 - ok
17:53:11.0286 4908	clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:53:11.0301 4908	clr_optimization_v4.0.30319_64 - ok
17:53:11.0379 4908	clwvd           (e13a438f9e51dd034730678e33b73290) C:\windows\system32\DRIVERS\clwvd.sys
17:53:11.0395 4908	clwvd - ok
17:53:11.0457 4908	CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
17:53:11.0489 4908	CmBatt - ok
17:53:11.0504 4908	cmdide          (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
17:53:11.0520 4908	cmdide - ok
17:53:11.0567 4908	CNG             (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
17:53:11.0613 4908	CNG - ok
17:53:11.0660 4908	Compbatt        (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
17:53:11.0676 4908	Compbatt - ok
17:53:11.0707 4908	CompositeBus    (03edb043586cceba243d689bdda370a8) C:\windows\system32\DRIVERS\CompositeBus.sys
17:53:11.0754 4908	CompositeBus - ok
17:53:11.0785 4908	COMSysApp - ok
17:53:11.0801 4908	crcdisk         (1c827878a998c18847245fe1f34ee597) C:\windows\system32\drivers\crcdisk.sys
17:53:11.0816 4908	crcdisk - ok
17:53:11.0879 4908	CryptSvc        (15597883fbe9b056f276ada3ad87d9af) C:\windows\system32\cryptsvc.dll
17:53:11.0941 4908	CryptSvc - ok
17:53:12.0081 4908	DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
17:53:12.0175 4908	DcomLaunch - ok
17:53:12.0222 4908	defragsvc       (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
17:53:12.0300 4908	defragsvc - ok
17:53:12.0347 4908	DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
17:53:12.0425 4908	DfsC - ok
17:53:12.0456 4908	Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
17:53:12.0549 4908	Dhcp - ok
17:53:12.0596 4908	discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
17:53:12.0690 4908	discache - ok
17:53:12.0705 4908	Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\drivers\disk.sys
17:53:12.0721 4908	Disk - ok
17:53:12.0752 4908	Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
17:53:12.0783 4908	Dnscache - ok
17:53:12.0830 4908	dot3svc         (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
17:53:12.0924 4908	dot3svc - ok
17:53:12.0939 4908	DPS             (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
17:53:12.0986 4908	DPS - ok
17:53:13.0033 4908	drmkaud         (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
17:53:13.0064 4908	drmkaud - ok
17:53:13.0111 4908	DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
17:53:13.0142 4908	DXGKrnl - ok
17:53:13.0173 4908	EapHost         (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
17:53:13.0220 4908	EapHost - ok
17:53:13.0314 4908	ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\drivers\evbda.sys
17:53:13.0439 4908	ebdrv - ok
17:53:13.0470 4908	EFS             (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
17:53:13.0517 4908	EFS - ok
17:53:13.0657 4908	ehRecvr         (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
17:53:13.0719 4908	ehRecvr - ok
17:53:13.0719 4908	ehSched         (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
17:53:13.0735 4908	ehSched - ok
17:53:13.0860 4908	elxstor         (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\drivers\elxstor.sys
17:53:13.0907 4908	elxstor - ok
17:53:13.0938 4908	ErrDev          (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
17:53:13.0953 4908	ErrDev - ok
17:53:14.0016 4908	ETD             (98b103d1d5c426a10219437e36e03fe8) C:\windows\system32\DRIVERS\ETD.sys
17:53:14.0047 4908	ETD - ok
17:53:14.0109 4908	EventSystem     (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
17:53:14.0172 4908	EventSystem - ok
17:53:14.0234 4908	exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
17:53:14.0312 4908	exfat - ok
17:53:14.0328 4908	fastfat         (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
17:53:14.0375 4908	fastfat - ok
17:53:14.0421 4908	Fax             (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
17:53:14.0484 4908	Fax - ok
17:53:14.0515 4908	fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\drivers\fdc.sys
17:53:14.0546 4908	fdc - ok
17:53:14.0593 4908	fdPHost         (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
17:53:14.0640 4908	fdPHost - ok
17:53:14.0671 4908	FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
17:53:14.0718 4908	FDResPub - ok
17:53:14.0765 4908	FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
17:53:14.0765 4908	FileInfo - ok
17:53:14.0796 4908	Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
17:53:14.0843 4908	Filetrace - ok
17:53:14.0843 4908	flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\drivers\flpydisk.sys
17:53:14.0858 4908	flpydisk - ok
17:53:14.0874 4908	FltMgr          (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
17:53:14.0889 4908	FltMgr - ok
17:53:14.0936 4908	FontCache       (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
17:53:14.0983 4908	FontCache - ok
17:53:15.0092 4908	FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:53:15.0108 4908	FontCache3.0.0.0 - ok
17:53:15.0186 4908	FsDepends       (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
17:53:15.0217 4908	FsDepends - ok
17:53:15.0264 4908	Fs_Rec          (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys
17:53:15.0279 4908	Fs_Rec - ok
17:53:15.0295 4908	fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
17:53:15.0311 4908	fvevol - ok
17:53:15.0342 4908	gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\drivers\gagp30kx.sys
17:53:15.0357 4908	gagp30kx - ok
17:53:15.0467 4908	GameConsoleService (521a469caf61f00e1de081cc2099c1d6) C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
17:53:15.0482 4908	GameConsoleService - ok
17:53:15.0607 4908	gpsvc           (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
17:53:15.0669 4908	gpsvc - ok
17:53:15.0732 4908	hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
17:53:15.0763 4908	hcw85cir - ok
17:53:15.0779 4908	HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
17:53:15.0825 4908	HdAudAddService - ok
17:53:15.0857 4908	HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\DRIVERS\HDAudBus.sys
17:53:15.0888 4908	HDAudBus - ok
17:53:15.0903 4908	HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\drivers\HidBatt.sys
17:53:15.0919 4908	HidBatt - ok
17:53:15.0935 4908	HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\drivers\hidbth.sys
17:53:15.0966 4908	HidBth - ok
17:53:15.0966 4908	HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\drivers\hidir.sys
17:53:15.0997 4908	HidIr - ok
17:53:16.0013 4908	hidserv         (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
17:53:16.0075 4908	hidserv - ok
17:53:16.0137 4908	HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
17:53:16.0169 4908	HidUsb - ok
17:53:16.0215 4908	hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
17:53:16.0293 4908	hkmsvc - ok
17:53:16.0325 4908	HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
17:53:16.0356 4908	HomeGroupListener - ok
17:53:16.0387 4908	HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
17:53:16.0418 4908	HomeGroupProvider - ok
17:53:16.0512 4908	HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
17:53:16.0527 4908	HpSAMD - ok
17:53:16.0543 4908	HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
17:53:16.0605 4908	HTTP - ok
17:53:16.0621 4908	hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
17:53:16.0621 4908	hwpolicy - ok
17:53:16.0652 4908	i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\DRIVERS\i8042prt.sys
17:53:16.0668 4908	i8042prt - ok
17:53:16.0715 4908	iaStor          (53cc5bf8b5a219119953c7abb19a7705) C:\windows\system32\DRIVERS\iaStor.sys
17:53:16.0730 4908	iaStor - ok
17:53:16.0793 4908	iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
17:53:16.0824 4908	iaStorV - ok
17:53:16.0933 4908	idsvc           (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:53:16.0995 4908	idsvc - ok
17:53:17.0978 4908	igfx            (8cb8667f5a3b5515f2585f3254f3aaf7) C:\windows\system32\DRIVERS\igdkmd64.sys
17:53:18.0306 4908	igfx - ok
17:53:18.0415 4908	iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\drivers\iirsp.sys
17:53:18.0431 4908	iirsp - ok
17:53:18.0477 4908	IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
17:53:18.0540 4908	IKEEXT - ok
17:53:18.0649 4908	IntcAzAudAddService (8e05adb4b809b478b2ec65a1a1633deb) C:\windows\system32\drivers\RTKVHD64.sys
17:53:18.0711 4908	IntcAzAudAddService - ok
17:53:18.0774 4908	IntcDAud        (fc727061c0f47c8059e88e05d5c8e381) C:\windows\system32\DRIVERS\IntcDAud.sys
17:53:18.0805 4908	IntcDAud - ok
17:53:18.0836 4908	intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
17:53:18.0852 4908	intelide - ok
17:53:18.0867 4908	intelppm        (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
17:53:18.0899 4908	intelppm - ok
17:53:18.0930 4908	IPBusEnum       (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
17:53:18.0992 4908	IPBusEnum - ok
17:53:19.0039 4908	IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
17:53:19.0101 4908	IpFilterDriver - ok
17:53:19.0117 4908	iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\windows\System32\iphlpsvc.dll
17:53:19.0164 4908	iphlpsvc - ok
17:53:19.0164 4908	IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
17:53:19.0179 4908	IPMIDRV - ok
17:53:19.0195 4908	IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
17:53:19.0226 4908	IPNAT - ok
17:53:19.0257 4908	IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
17:53:19.0273 4908	IRENUM - ok
17:53:19.0320 4908	isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
17:53:19.0320 4908	isapnp - ok
17:53:19.0351 4908	iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
17:53:19.0367 4908	iScsiPrt - ok
17:53:19.0382 4908	kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\DRIVERS\kbdclass.sys
17:53:19.0398 4908	kbdclass - ok
17:53:19.0429 4908	kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
17:53:19.0460 4908	kbdhid - ok
17:53:19.0507 4908	KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
17:53:19.0523 4908	KeyIso - ok
17:53:19.0554 4908	KSecDD          (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
17:53:19.0569 4908	KSecDD - ok
17:53:19.0585 4908	KSecPkg         (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
17:53:19.0585 4908	KSecPkg - ok
17:53:19.0616 4908	ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
17:53:19.0679 4908	ksthunk - ok
17:53:19.0725 4908	KtmRm           (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
17:53:19.0788 4908	KtmRm - ok
17:53:19.0850 4908	LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
17:53:19.0913 4908	LanmanServer - ok
17:53:19.0944 4908	LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
17:53:19.0991 4908	LanmanWorkstation - ok
17:53:20.0037 4908	lltdio          (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
17:53:20.0100 4908	lltdio - ok
17:53:20.0131 4908	lltdsvc         (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
17:53:20.0162 4908	lltdsvc - ok
17:53:20.0193 4908	lmhosts         (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
17:53:20.0225 4908	lmhosts - ok
17:53:20.0349 4908	LMS             (f4a17dcab576267c85663e64f3ace5a4) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:53:20.0381 4908	LMS - ok
17:53:20.0521 4908	LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\drivers\lsi_fc.sys
17:53:20.0537 4908	LSI_FC - ok
17:53:20.0583 4908	LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\drivers\lsi_sas.sys
17:53:20.0599 4908	LSI_SAS - ok
17:53:20.0599 4908	LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\drivers\lsi_sas2.sys
17:53:20.0615 4908	LSI_SAS2 - ok
17:53:20.0630 4908	LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\drivers\lsi_scsi.sys
17:53:20.0646 4908	LSI_SCSI - ok
17:53:20.0661 4908	luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
17:53:20.0708 4908	luafv - ok
17:53:20.0833 4908	Mcx2Svc         (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
17:53:20.0880 4908	Mcx2Svc - ok
17:53:20.0942 4908	megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\drivers\megasas.sys
17:53:20.0958 4908	megasas - ok
17:53:20.0973 4908	MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\drivers\MegaSR.sys
17:53:20.0989 4908	MegaSR - ok
17:53:21.0067 4908	MEIx64          (a6518dcc42f7a6e999bb3bea8fd87567) C:\windows\system32\DRIVERS\HECIx64.sys
17:53:21.0083 4908	MEIx64 - ok
17:53:21.0114 4908	MMCSS           (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
17:53:21.0192 4908	MMCSS - ok
17:53:21.0223 4908	Modem           (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
17:53:21.0270 4908	Modem - ok
17:53:21.0301 4908	monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
17:53:21.0332 4908	monitor - ok
17:53:21.0410 4908	mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
17:53:21.0426 4908	mouclass - ok
17:53:21.0473 4908	mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
17:53:21.0519 4908	mouhid - ok
17:53:21.0629 4908	mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
17:53:21.0644 4908	mountmgr - ok
17:53:21.0660 4908	mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
17:53:21.0675 4908	mpio - ok
17:53:21.0675 4908	mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
17:53:21.0707 4908	mpsdrv - ok
17:53:21.0753 4908	MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\windows\system32\mpssvc.dll
17:53:21.0816 4908	MpsSvc - ok
17:53:21.0894 4908	MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
17:53:21.0941 4908	MRxDAV - ok
17:53:21.0972 4908	mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
17:53:22.0003 4908	mrxsmb - ok
17:53:22.0034 4908	mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
17:53:22.0065 4908	mrxsmb10 - ok
17:53:22.0097 4908	mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
17:53:22.0112 4908	mrxsmb20 - ok
17:53:22.0143 4908	msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
17:53:22.0159 4908	msahci - ok
17:53:22.0175 4908	msdsm           (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
17:53:22.0190 4908	msdsm - ok
17:53:22.0221 4908	MSDTC           (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
17:53:22.0253 4908	MSDTC - ok
17:53:22.0331 4908	Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
17:53:22.0377 4908	Msfs - ok
17:53:22.0409 4908	mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
17:53:22.0455 4908	mshidkmdf - ok
17:53:22.0471 4908	msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
17:53:22.0471 4908	msisadrv - ok
17:53:22.0518 4908	MSiSCSI         (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
17:53:22.0596 4908	MSiSCSI - ok
17:53:22.0596 4908	msiserver - ok
17:53:22.0674 4908	MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
17:53:22.0721 4908	MSKSSRV - ok
17:53:22.0752 4908	MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
17:53:22.0799 4908	MSPCLOCK - ok
17:53:22.0799 4908	MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
17:53:22.0845 4908	MSPQM - ok
17:53:22.0877 4908	MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
17:53:22.0892 4908	MsRPC - ok
17:53:22.0908 4908	mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\DRIVERS\mssmbios.sys
17:53:22.0908 4908	mssmbios - ok
17:53:22.0939 4908	MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
17:53:22.0970 4908	MSTEE - ok
17:53:23.0001 4908	MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\drivers\MTConfig.sys
17:53:23.0017 4908	MTConfig - ok
17:53:23.0048 4908	Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
17:53:23.0048 4908	Mup - ok
17:53:23.0095 4908	napagent        (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
17:53:23.0173 4908	napagent - ok
17:53:23.0313 4908	NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
17:53:23.0376 4908	NativeWifiP - ok
17:53:23.0469 4908	NDIS            (c38b8ae57f78915905064a9a24dc1586) C:\windows\system32\drivers\ndis.sys
17:53:23.0532 4908	NDIS - ok
17:53:23.0594 4908	NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
17:53:23.0657 4908	NdisCap - ok
17:53:23.0766 4908	NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
17:53:23.0813 4908	NdisTapi - ok
17:53:23.0859 4908	Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
17:53:23.0922 4908	Ndisuio - ok
17:53:23.0922 4908	NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
17:53:23.0969 4908	NdisWan - ok
17:53:23.0984 4908	NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
17:53:24.0047 4908	NDProxy - ok
17:53:24.0156 4908	NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
17:53:24.0234 4908	NetBIOS - ok
17:53:24.0281 4908	NetBT           (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
17:53:24.0343 4908	NetBT - ok
17:53:24.0390 4908	Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
17:53:24.0421 4908	Netlogon - ok
17:53:24.0468 4908	Netman          (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
17:53:24.0546 4908	Netman - ok
17:53:24.0561 4908	netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
17:53:24.0608 4908	netprofm - ok
17:53:24.0702 4908	NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:53:24.0717 4908	NetTcpPortSharing - ok
17:53:24.0998 4908	NETwNs64        (ac69618de5bcce8747c9ab0aae1003c1) C:\windows\system32\DRIVERS\NETwNs64.sys
17:53:25.0232 4908	NETwNs64 - ok
17:53:25.0326 4908	nfrd960         (77889813be4d166cdab78ddba990da92) C:\windows\system32\drivers\nfrd960.sys
17:53:25.0341 4908	nfrd960 - ok
17:53:25.0435 4908	NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
17:53:25.0544 4908	NlaSvc - ok
17:53:25.0653 4908	Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
17:53:25.0747 4908	Npfs - ok
17:53:25.0950 4908	nsi             (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
17:53:26.0012 4908	nsi - ok
17:53:26.0168 4908	nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
17:53:26.0246 4908	nsiproxy - ok
17:53:26.0387 4908	Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
17:53:26.0465 4908	Ntfs - ok
17:53:26.0511 4908	Null            (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
17:53:26.0589 4908	Null - ok
17:53:26.0979 4908	nvlddmkm        (70e89a21827b2669af906b703c7c48b5) C:\windows\system32\DRIVERS\nvlddmkm.sys
17:53:27.0198 4908	nvlddmkm - ok
17:53:27.0245 4908	nvpciflt        (4b9c0c2bf78289513101eb0d44834701) C:\windows\system32\DRIVERS\nvpciflt.sys
17:53:27.0276 4908	nvpciflt - ok
17:53:27.0307 4908	nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
17:53:27.0338 4908	nvraid - ok
17:53:27.0369 4908	nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
17:53:27.0385 4908	nvstor - ok
17:53:27.0447 4908	NVSvc           (e04fce1d149cf05c3449e3171f9c3e41) C:\windows\system32\nvvsvc.exe
17:53:27.0479 4908	NVSvc - ok
17:53:27.0588 4908	nvUpdatusService (d96ddea6c699a99832e0186057801971) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
17:53:27.0697 4908	nvUpdatusService - ok
17:53:27.0837 4908	nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
17:53:27.0869 4908	nv_agp - ok
17:53:27.0900 4908	ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
17:53:27.0931 4908	ohci1394 - ok
17:53:27.0978 4908	p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
17:53:28.0025 4908	p2pimsvc - ok
17:53:28.0056 4908	p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
17:53:28.0087 4908	p2psvc - ok
17:53:28.0149 4908	Parport         (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\drivers\parport.sys
17:53:28.0181 4908	Parport - ok
17:53:28.0212 4908	partmgr         (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
17:53:28.0227 4908	partmgr - ok
17:53:28.0259 4908	PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
17:53:28.0305 4908	PcaSvc - ok
17:53:28.0321 4908	pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
17:53:28.0337 4908	pci - ok
17:53:28.0337 4908	pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
17:53:28.0352 4908	pciide - ok
17:53:28.0368 4908	pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\drivers\pcmcia.sys
17:53:28.0383 4908	pcmcia - ok
17:53:28.0383 4908	pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
17:53:28.0399 4908	pcw - ok
17:53:28.0415 4908	PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
17:53:28.0461 4908	PEAUTH - ok
17:53:28.0524 4908	PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
17:53:28.0571 4908	PerfHost - ok
17:53:28.0695 4908	pla             (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
17:53:28.0789 4908	pla - ok
17:53:28.0929 4908	PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
17:53:28.0976 4908	PlugPlay - ok
17:53:29.0023 4908	PNRPAutoReg     (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
17:53:29.0070 4908	PNRPAutoReg - ok
17:53:29.0101 4908	PNRPsvc         (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
17:53:29.0117 4908	PNRPsvc - ok
17:53:29.0163 4908	PolicyAgent     (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
17:53:29.0226 4908	PolicyAgent - ok
17:53:29.0257 4908	Power           (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
17:53:29.0304 4908	Power - ok
17:53:29.0351 4908	PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
17:53:29.0429 4908	PptpMiniport - ok
17:53:29.0444 4908	Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\drivers\processr.sys
17:53:29.0475 4908	Processor - ok
17:53:29.0507 4908	ProfSvc         (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
17:53:29.0553 4908	ProfSvc - ok
17:53:29.0600 4908	ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
17:53:29.0600 4908	ProtectedStorage - ok
17:53:29.0647 4908	Psched          (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
17:53:29.0694 4908	Psched - ok
17:53:29.0756 4908	ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\drivers\ql2300.sys
17:53:29.0819 4908	ql2300 - ok
17:53:29.0834 4908	ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\drivers\ql40xx.sys
17:53:29.0850 4908	ql40xx - ok
17:53:29.0881 4908	QWAVE           (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
17:53:29.0897 4908	QWAVE - ok
17:53:29.0928 4908	QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
17:53:29.0959 4908	QWAVEdrv - ok
17:53:29.0959 4908	RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
17:53:29.0990 4908	RasAcd - ok
17:53:30.0053 4908	RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
17:53:30.0115 4908	RasAgileVpn - ok
17:53:30.0146 4908	RasAuto         (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
17:53:30.0193 4908	RasAuto - ok
17:53:30.0255 4908	Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
17:53:30.0333 4908	Rasl2tp - ok
17:53:30.0365 4908	RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
17:53:30.0411 4908	RasMan - ok
17:53:30.0474 4908	RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
17:53:30.0552 4908	RasPppoe - ok
17:53:30.0567 4908	RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
17:53:30.0614 4908	RasSstp - ok
17:53:30.0630 4908	rdbss           (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
17:53:30.0677 4908	rdbss - ok
17:53:30.0677 4908	rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\drivers\rdpbus.sys
17:53:30.0692 4908	rdpbus - ok
17:53:30.0723 4908	RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
17:53:30.0801 4908	RDPCDD - ok
17:53:30.0833 4908	RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
17:53:30.0895 4908	RDPENCDD - ok
17:53:30.0926 4908	RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
17:53:30.0957 4908	RDPREFMP - ok
17:53:30.0989 4908	RDPWD           (6d76e6433574b058adcb0c50df834492) C:\windows\system32\drivers\RDPWD.sys
17:53:31.0035 4908	RDPWD - ok
17:53:31.0098 4908	rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
17:53:31.0129 4908	rdyboost - ok
17:53:31.0176 4908	RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
17:53:31.0223 4908	RemoteAccess - ok
17:53:31.0254 4908	RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
17:53:31.0332 4908	RemoteRegistry - ok
17:53:31.0379 4908	RFCOMM          (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys
17:53:31.0410 4908	RFCOMM - ok
17:53:31.0550 4908	RichVideo       (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:53:31.0566 4908	RichVideo - ok
17:53:31.0675 4908	RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
17:53:31.0769 4908	RpcEptMapper - ok
17:53:31.0831 4908	RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
17:53:31.0862 4908	RpcLocator - ok
17:53:31.0925 4908	RpcSs           (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
17:53:31.0987 4908	RpcSs - ok
17:53:32.0034 4908	rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
17:53:32.0112 4908	rspndr - ok
17:53:32.0159 4908	RTL8167         (f4c374b1c46de294b573bb43723ac3f6) C:\windows\system32\DRIVERS\Rt64win7.sys
17:53:32.0174 4908	RTL8167 - ok
17:53:32.0237 4908	SABI            (62db6cc4b0818f1b5f3441241b098f12) C:\windows\system32\Drivers\SABI.sys
17:53:32.0268 4908	SABI - ok
17:53:32.0315 4908	SamSs           (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
17:53:32.0346 4908	SamSs - ok
17:53:32.0393 4908	sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
17:53:32.0424 4908	sbp2port - ok
17:53:32.0455 4908	SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
17:53:32.0517 4908	SCardSvr - ok
17:53:32.0533 4908	scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
17:53:32.0580 4908	scfilter - ok
17:53:32.0627 4908	Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
17:53:32.0689 4908	Schedule - ok
17:53:32.0720 4908	SCPolicySvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
17:53:32.0751 4908	SCPolicySvc - ok
17:53:32.0783 4908	SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
17:53:32.0814 4908	SDRSVC - ok
17:53:32.0876 4908	SeaPort         (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
17:53:32.0892 4908	SeaPort - ok
17:53:33.0001 4908	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
17:53:33.0063 4908	secdrv - ok
17:53:33.0110 4908	seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
17:53:33.0188 4908	seclogon - ok
17:53:33.0219 4908	SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
17:53:33.0297 4908	SENS - ok
17:53:33.0329 4908	SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
17:53:33.0344 4908	SensrSvc - ok
17:53:33.0422 4908	Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\drivers\serenum.sys
17:53:33.0453 4908	Serenum - ok
17:53:33.0485 4908	Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\drivers\serial.sys
17:53:33.0516 4908	Serial - ok
17:53:33.0563 4908	sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\drivers\sermouse.sys
17:53:33.0594 4908	sermouse - ok
17:53:33.0625 4908	SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
17:53:33.0656 4908	SessionEnv - ok
17:53:33.0672 4908	sffdisk         (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
17:53:33.0687 4908	sffdisk - ok
17:53:33.0703 4908	sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
17:53:33.0719 4908	sffp_mmc - ok
17:53:33.0734 4908	sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
17:53:33.0750 4908	sffp_sd - ok
17:53:33.0765 4908	sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\drivers\sfloppy.sys
17:53:33.0781 4908	sfloppy - ok
17:53:33.0843 4908	SGDrv           (2fe1cd3aa602414841db10ad96c95a5e) C:\windows\system32\DRIVERS\SGdrv64.sys
17:53:33.0875 4908	SGDrv - ok
17:53:33.0921 4908	SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
17:53:33.0984 4908	SharedAccess - ok
17:53:34.0031 4908	ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
17:53:34.0109 4908	ShellHWDetection - ok
17:53:34.0171 4908	SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\drivers\SiSRaid2.sys
17:53:34.0202 4908	SiSRaid2 - ok
17:53:34.0218 4908	SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\drivers\sisraid4.sys
17:53:34.0233 4908	SiSRaid4 - ok
17:53:34.0265 4908	Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
17:53:34.0311 4908	Smb - ok
17:53:34.0343 4908	SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
17:53:34.0374 4908	SNMPTRAP - ok
17:53:34.0436 4908	spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
17:53:34.0452 4908	spldr - ok
17:53:34.0499 4908	Spooler         (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
17:53:34.0577 4908	Spooler - ok
17:53:34.0701 4908	sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
17:53:34.0779 4908	sppsvc - ok
17:53:34.0795 4908	sppuinotify     (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
17:53:34.0842 4908	sppuinotify - ok
17:53:34.0904 4908	srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
17:53:34.0951 4908	srv - ok
17:53:34.0982 4908	srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
17:53:35.0013 4908	srv2 - ok
17:53:35.0045 4908	srvnet          (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
17:53:35.0076 4908	srvnet - ok
17:53:35.0123 4908	SSDPSRV         (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
17:53:35.0201 4908	SSDPSRV - ok
17:53:35.0232 4908	SstpSvc         (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
17:53:35.0279 4908	SstpSvc - ok
17:53:35.0341 4908	stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\drivers\stexstor.sys
17:53:35.0357 4908	stexstor - ok
17:53:35.0419 4908	stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
17:53:35.0481 4908	stisvc - ok
17:53:35.0544 4908	swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\DRIVERS\swenum.sys
17:53:35.0575 4908	swenum - ok
17:53:35.0606 4908	swprv           (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
17:53:35.0700 4908	swprv - ok
17:53:35.0747 4908	SysMain         (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
17:53:35.0809 4908	SysMain - ok
17:53:35.0825 4908	TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
17:53:35.0856 4908	TabletInputService - ok
17:53:35.0871 4908	TapiSrv         (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
17:53:35.0918 4908	TapiSrv - ok
17:53:35.0949 4908	TBS             (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
17:53:35.0981 4908	TBS - ok
17:53:36.0074 4908	Tcpip           (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
17:53:36.0168 4908	Tcpip - ok
17:53:36.0246 4908	TCPIP6          (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
17:53:36.0293 4908	TCPIP6 - ok
17:53:36.0449 4908	tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
17:53:36.0527 4908	tcpipreg - ok
17:53:36.0573 4908	TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
17:53:36.0620 4908	TDPIPE - ok
17:53:36.0683 4908	TDTCP           (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
17:53:36.0729 4908	TDTCP - ok
17:53:36.0792 4908	tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
17:53:36.0854 4908	tdx - ok
17:53:36.0870 4908	TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\DRIVERS\termdd.sys
17:53:36.0885 4908	TermDD - ok
17:53:36.0948 4908	TermService     (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
17:53:37.0057 4908	TermService - ok
17:53:37.0213 4908	Themes          (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
17:53:37.0244 4908	Themes - ok
17:53:37.0307 4908	THREADORDER     (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
17:53:37.0385 4908	THREADORDER - ok
17:53:37.0447 4908	TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
17:53:37.0509 4908	TrkWks - ok
17:53:37.0634 4908	TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
17:53:37.0712 4908	TrustedInstaller - ok
17:53:37.0853 4908	tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
17:53:37.0915 4908	tssecsrv - ok
17:53:37.0993 4908	TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
17:53:38.0024 4908	TsUsbFlt - ok
17:53:38.0055 4908	TsUsbGD         (9cc2ccae8a84820eaecb886d477cbcb8) C:\windows\system32\drivers\TsUsbGD.sys
17:53:38.0071 4908	TsUsbGD - ok
17:53:38.0211 4908	tunnel          (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
17:53:38.0289 4908	tunnel - ok
17:53:38.0352 4908	uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\drivers\uagp35.sys
17:53:38.0367 4908	uagp35 - ok
17:53:38.0383 4908	udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
17:53:38.0461 4908	udfs - ok
17:53:38.0477 4908	UI0Detect       (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
17:53:38.0492 4908	UI0Detect - ok
17:53:38.0570 4908	uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
17:53:38.0601 4908	uliagpkx - ok
17:53:38.0633 4908	umbus           (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\DRIVERS\umbus.sys
17:53:38.0648 4908	umbus - ok
17:53:38.0742 4908	UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\drivers\umpass.sys
17:53:38.0773 4908	UmPass - ok
17:53:38.0960 4908	UNS             (db641944f7e4b14c13c3fefc89843f69) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:53:39.0054 4908	UNS - ok
17:53:39.0179 4908	upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
17:53:39.0257 4908	upnphost - ok
17:53:39.0397 4908	usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
17:53:39.0444 4908	usbccgp - ok
17:53:39.0631 4908	usbcir          (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
17:53:39.0678 4908	usbcir - ok
17:53:39.0818 4908	usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
17:53:39.0865 4908	usbehci - ok
17:53:39.0943 4908	usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
17:53:39.0990 4908	usbhub - ok
17:53:40.0037 4908	usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
17:53:40.0068 4908	usbohci - ok
17:53:40.0099 4908	usbprint        (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\drivers\usbprint.sys
17:53:40.0146 4908	usbprint - ok
17:53:40.0177 4908	USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\drivers\USBSTOR.SYS
17:53:40.0193 4908	USBSTOR - ok
17:53:40.0239 4908	usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
17:53:40.0271 4908	usbuhci - ok
17:53:40.0411 4908	usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
17:53:40.0442 4908	usbvideo - ok
17:53:40.0489 4908	UxSms           (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
17:53:40.0551 4908	UxSms - ok
17:53:40.0598 4908	VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
17:53:40.0598 4908	VaultSvc - ok
17:53:40.0676 4908	vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
17:53:40.0707 4908	vdrvroot - ok
17:53:40.0739 4908	vds             (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
17:53:40.0801 4908	vds - ok
17:53:40.0879 4908	vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
17:53:40.0910 4908	vga - ok
17:53:40.0910 4908	VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
17:53:40.0973 4908	VgaSave - ok
17:53:40.0973 4908	vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
17:53:40.0988 4908	vhdmp - ok
17:53:41.0004 4908	viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
17:53:41.0019 4908	viaide - ok
17:53:41.0035 4908	volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
17:53:41.0051 4908	volmgr - ok
17:53:41.0051 4908	volmgrx         (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
17:53:41.0066 4908	volmgrx - ok
17:53:41.0082 4908	volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
17:53:41.0097 4908	volsnap - ok
17:53:41.0113 4908	vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\drivers\vsmraid.sys
17:53:41.0129 4908	vsmraid - ok
17:53:41.0207 4908	VSS             (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
17:53:41.0300 4908	VSS - ok
17:53:41.0441 4908	vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
17:53:41.0487 4908	vwifibus - ok
17:53:41.0565 4908	vwififlt        (13a0decd1794de60a8427862c8669d27) C:\windows\system32\DRIVERS\vwififlt.sys
17:53:41.0597 4908	vwififlt - ok
17:53:41.0737 4908	W32Time         (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
17:53:41.0815 4908	W32Time - ok
17:53:41.0877 4908	WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\drivers\wacompen.sys
17:53:41.0909 4908	WacomPen - ok
17:53:41.0971 4908	WANARP          (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
17:53:42.0049 4908	WANARP - ok
17:53:42.0065 4908	Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
17:53:42.0096 4908	Wanarpv6 - ok
17:53:42.0205 4908	wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
17:53:42.0299 4908	wbengine - ok
17:53:42.0423 4908	WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
17:53:42.0470 4908	WbioSrvc - ok
17:53:42.0486 4908	wcncsvc         (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
17:53:42.0517 4908	wcncsvc - ok
17:53:42.0533 4908	WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
17:53:42.0579 4908	WcsPlugInService - ok
17:53:42.0595 4908	Wd              (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\drivers\wd.sys
17:53:42.0611 4908	Wd - ok
17:53:42.0626 4908	Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
17:53:42.0642 4908	Wdf01000 - ok
17:53:42.0673 4908	WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
17:53:42.0720 4908	WdiServiceHost - ok
17:53:42.0735 4908	WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
17:53:42.0751 4908	WdiSystemHost - ok
17:53:42.0767 4908	WebClient       (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
17:53:42.0798 4908	WebClient - ok
17:53:42.0829 4908	Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
17:53:42.0876 4908	Wecsvc - ok
17:53:42.0891 4908	wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
17:53:42.0938 4908	wercplsupport - ok
17:53:42.0969 4908	WerSvc          (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
17:53:43.0047 4908	WerSvc - ok
17:53:43.0188 4908	WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
17:53:43.0235 4908	WfpLwf - ok
17:53:43.0281 4908	WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
17:53:43.0297 4908	WIMMount - ok
17:53:43.0375 4908	WinDefend - ok
17:53:43.0391 4908	WinHttpAutoProxySvc - ok
17:53:43.0469 4908	Winmgmt         (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
17:53:43.0531 4908	Winmgmt - ok
17:53:43.0671 4908	WinRM           (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
17:53:43.0781 4908	WinRM - ok
17:53:43.0952 4908	Wlansvc         (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
17:53:44.0030 4908	Wlansvc - ok
17:53:44.0108 4908	wlcrasvc        (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:53:44.0139 4908	wlcrasvc - ok
17:53:44.0202 4908	wlidsvc         (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:53:44.0264 4908	wlidsvc - ok
17:53:44.0373 4908	WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
17:53:44.0420 4908	WmiAcpi - ok
17:53:44.0498 4908	wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
17:53:44.0545 4908	wmiApSrv - ok
17:53:44.0592 4908	WMPNetworkSvc - ok
17:53:44.0701 4908	WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
17:53:44.0732 4908	WPCSvc - ok
17:53:44.0779 4908	WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
17:53:44.0810 4908	WPDBusEnum - ok
17:53:44.0841 4908	ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
17:53:44.0904 4908	ws2ifsl - ok
17:53:44.0935 4908	wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\System32\wscsvc.dll
17:53:44.0966 4908	wscsvc - ok
17:53:44.0982 4908	WSearch - ok
17:53:45.0060 4908	wuauserv        (9df12edbc698b0bc353b3ef84861e430) C:\windows\system32\wuaueng.dll
17:53:45.0169 4908	wuauserv - ok
17:53:45.0325 4908	WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
17:53:45.0387 4908	WudfPf - ok
17:53:45.0465 4908	wudfsvc         (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
17:53:45.0528 4908	wudfsvc - ok
17:53:45.0559 4908	WwanSvc         (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
17:53:45.0606 4908	WwanSvc - ok
17:53:45.0637 4908	MBR (0x1B8)     (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0
17:53:46.0167 4908	\Device\Harddisk0\DR0 - ok
17:53:46.0167 4908	Boot (0x1200)   (5b65bdbd0775bbc13ec06d653c6fd503) \Device\Harddisk0\DR0\Partition0
17:53:46.0167 4908	\Device\Harddisk0\DR0\Partition0 - ok
17:53:46.0214 4908	Boot (0x1200)   (2d741d0bfc148ded7393fa694cddb478) \Device\Harddisk0\DR0\Partition1
17:53:46.0214 4908	\Device\Harddisk0\DR0\Partition1 - ok
17:53:46.0230 4908	Boot (0x1200)   (d40743bfda8109a60632f83464c654b4) \Device\Harddisk0\DR0\Partition2
17:53:46.0245 4908	\Device\Harddisk0\DR0\Partition2 - ok
17:53:46.0245 4908	============================================================
17:53:46.0245 4908	Scan finished
17:53:46.0245 4908	============================================================
17:53:46.0261 3684	Detected object count: 0
17:53:46.0261 3684	Actual detected object count: 0
17:54:52.0265 3620	Deinitialize success
         
Grüße

Macross
__________________

Alt 04.04.2012, 21:20   #4
rajo
/// Helfer-Team
 
BOO/Dosump.A in Masterbootsektor - Standard

BOO/Dosump.A in Masterbootsektor



Hallo Arne
Hallo Macross

Das ist ein False Positive ( Fehlalarm )
er ist bereits behoben - bitte updaten -

Danke
Rajo - Mod Forum Avira

Alt 04.04.2012, 23:45   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
BOO/Dosump.A in Masterbootsektor - Standard

BOO/Dosump.A in Masterbootsektor



Ja danke für den Hinweis, Markus hat micht auch bereits drauf hingewiesen

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 04.04.2012, 23:48   #6
Macross
 
BOO/Dosump.A in Masterbootsektor - Standard

BOO/Dosump.A in Masterbootsektor



@Rajo Ah, okay, dann vielen Dank für die Info!

@Arne Danke auch nochmal für die Hilfe. Super Forum habt ihr hier aufgebaut! Ich werde morgen mal eine Kleinigkeit spenden.

Antwort

Themen zu BOO/Dosump.A in Masterbootsektor
adapter, avira, bingbar, boo/dosump.a, computer, computern, cpu, defender, desktop, explorer, firefox, flash player, generic, google, home, mozilla, notification, nvidia, nvidia update, nvpciflt.sys, problem, realtek, scan, security, software, svchost.exe, system, virus, windows, windows 7 home, windows 7 home premium, windows media player, wmp



Ähnliche Themen: BOO/Dosump.A in Masterbootsektor


  1. BOO/TDss.O im Masterbootsektor
    Log-Analyse und Auswertung - 17.04.2014 (11)
  2. Antivir-Fund: BOO/Whistler.DB - Objekt:Masterbootsektor HD1 sowie Masterbootsektor der ext. HD (F:)
    Log-Analyse und Auswertung - 14.09.2012 (27)
  3. Virus oder unerwünschtes Programm BOO/Dosump.A im Masterbootsektor Laufwerk D:
    Plagegeister aller Art und deren Bekämpfung - 06.04.2012 (6)
  4. BOO/Dosump.A im Masterbootsector gefunden
    Plagegeister aller Art und deren Bekämpfung - 05.04.2012 (1)
  5. Boot Virus entdeckt ! Boo/Dosump.A
    Plagegeister aller Art und deren Bekämpfung - 05.04.2012 (1)
  6. BOO/Dosump.A im Bootsektor gefunden
    Log-Analyse und Auswertung - 05.04.2012 (1)
  7. 'BOO/Dosump.a' auf beiden Partitionen / Windows Vista
    Plagegeister aller Art und deren Bekämpfung - 05.04.2012 (3)
  8. BOO/dosump.A beim Hochfahren
    Alles rund um Windows - 04.04.2012 (5)
  9. BOO/dosump.A beim Hochfahren
    Alles rund um Windows - 04.04.2012 (1)
  10. Boot Virus entdeckt ! Boo/Dosump.A
    Mülltonne - 04.04.2012 (0)
  11. BOO/Dosump.A erledigt
    Plagegeister aller Art und deren Bekämpfung - 04.04.2012 (0)
  12. Boo.Whistler.A im Masterbootsektor
    Plagegeister aller Art und deren Bekämpfung - 29.03.2012 (1)
  13. BOO/TDss.M in Masterbootsektor
    Plagegeister aller Art und deren Bekämpfung - 22.03.2012 (22)
  14. Boo Whistler im Masterbootsektor
    Log-Analyse und Auswertung - 07.09.2011 (18)
  15. BOO/Sinowal.F in Masterbootsektor
    Plagegeister aller Art und deren Bekämpfung - 11.07.2011 (16)
  16. BOO/Sinowal.F in Masterbootsektor
    Plagegeister aller Art und deren Bekämpfung - 25.08.2010 (17)
  17. Masterbootsektor HD5 BOO/Sinowal.A
    Plagegeister aller Art und deren Bekämpfung - 08.09.2008 (24)

Zum Thema BOO/Dosump.A in Masterbootsektor - Hallo Leute Ich habe ein Problem und hoffe ihr habt kurz Zeit mir zu helfen. Antivir hat mir heute einen Fund gemeldet, und zwar: Code: Alles auswählen Aufklappen ATTFilter Masterbootsektor - BOO/Dosump.A in Masterbootsektor...
Archiv
Du betrachtest: BOO/Dosump.A in Masterbootsektor auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.