| |
| |||||||
Log-Analyse und Auswertung: Notebook bleibt immer hängenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
05.01.2013, 17:19
| #1 |
 |  Notebook bleibt immer hängen Hallo ihr Lieben, da mir vor ein paar Jahren so toll mit meinem Computer geholfen wurde, wende ich mich nun mit einem Problem mit meinem Notebook an euch. Zunächst machte der VLC Player Probleme, bliebt ständig kurz hängen oder dann auch ganz. (Glaube ich hatte eine ältere Version). Ab dann blieb das Notebook immer häufiger hängen, sogar kurz nach Neustart oder im abgesicherten Modus. Antivir schafft es nicht ganz durchzulaufen, habe es paar Tage über Nacht versucht aber morgens ist einfach nur entweder der Bildschirm schwarz (man kann nichts tun) oder das Notebook einfach so hängen geblieben. Hier mal die Files die man einfügen soll: [Anmerkung: Wurde gerade aufgefordert die Logs als Archiv anzuhängen. Hoffe ich mach das richtig.] Schonmal tausend Dank für jede Hilfe. Liebe Grüße Aerith |
|
05.01.2013, 18:01
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Notebook bleibt immer hängen Hallo und
__________________ Zitat:
__________________ |
|
05.01.2013, 18:11
| #3 |
| | Notebook bleibt immer hängen Hallo Cosinus,
__________________es kam bloß ne automatische Meldung als ich auf Vorschau hier im Forum geklickt habe, dass mein Beitrag zu groß ist. |
|
05.01.2013, 18:14
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Notebook bleibt immer hängen Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
05.01.2013, 18:18
| #5 |
| | Notebook bleibt immer hängen Nein, ohne einen (jetzt neu) durchzuführen habe ich sonst nichts als Log. Antivir ist in den letzten Tagen ohnehin nie über knapp 50% gekommen, ohne dass mindestens es selbst oder aber alles hängen bleibt  Und ja in diesen Codes hatte ich die Textlogs erst stehen, aber es war wohl leider zuviel Text. |
|
05.01.2013, 18:24
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Notebook bleibt immer hängen Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Malwarebytes Anti-Rootkit  Downloade dir bitte Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________ --> Notebook bleibt immer hängen |
|
05.01.2013, 18:47
| #7 |
| | Notebook bleibt immer hängen Achso, was ich noch mit Funden die letzten Tage genutzt habe und nicht in den erwähnten Programmen (von wegen Logs) steht ist "Spybot", falls das was hilft. Malwarebytes Anti-Rootkit hat mir ein "No malware found" ausgespuckt.. Ist: "Malwarebytes Anti-Rootkit BETA v1.01.0.1011" die richtige Version? Edit: Sorry ich bin doof!! Ich werde also mein Internet wieder anschalten und updaten..wusste nicht ob das so gut ist das Internet wieder anzumachen.. Trotz Update immer noch kein Fund.. das ist doch seltsam |
|
05.01.2013, 19:29
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Notebook bleibt immer hängen 1. aswMBR Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button. 2. TDSS-Killer Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.01.2013, 21:23
| #9 |
| | Notebook bleibt immer hängen Also nachdem aswMBR zweimal zu nem komischen Bluescreen und dann erzwungenem Neustart geführt hat, habe ich es mit "AV scan" (none) erfolgreich ausgeführt. aswmbr: Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-01-05 21:04:52
-----------------------------
21:04:52.713 OS Version: Windows 6.0.6002 Service Pack 2
21:04:52.713 Number of processors: 2 586 0x170A
21:04:52.713 ComputerName: GOGO UserName:
21:05:09.515 Initialize success
21:05:09.827 AVAST engine defs: 13010500
21:05:33.835 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:05:33.835 Disk 0 Vendor: WDC_WD32 11.0 Size: 305245MB BusType: 3
21:05:34.319 Disk 0 MBR read successfully
21:05:34.319 Disk 0 MBR scan
21:05:34.334 Disk 0 unknown MBR code
21:05:34.334 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13312 MB offset 2048
21:05:34.350 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 145497 MB offset 27265024
21:05:34.381 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 146434 MB offset 325242880
21:05:34.381 Disk 0 scanning sectors +625139712
21:05:34.911 Disk 0 scanning C:\Windows\system32\drivers
21:05:52.508 Service scanning
21:06:12.851 Modules scanning
21:06:26.126 Disk 0 trace - called modules:
21:06:26.173 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll usbhub.sys USBPORT.SYS usbehci.sys tcpip.sys NETIO.SYS dxgkrnl.sys atikmpag.sys atikmdag.sys ndis.sys athr.sys
21:06:26.189 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8635e7c0]
21:06:26.189 3 CLASSPNP.SYS[8aeac8b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x857da028]
21:06:26.189 Scan finished successfully
21:11:28.386 Disk 0 MBR has been saved successfully to "F:\MBR.dat"
21:11:28.418 The log file has been saved successfully to "F:\aswMBR.txt"
Code:
ATTFilter 21:15:14.0204 1324 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:15:14.0485 1324 ============================================================
21:15:14.0485 1324 Current date / time: 2013/01/05 21:15:14.0485
21:15:14.0485 1324 SystemInfo:
21:15:14.0485 1324
21:15:14.0485 1324 OS Version: 6.0.6002 ServicePack: 2.0
21:15:14.0485 1324 Product type: Workstation
21:15:14.0485 1324 ComputerName: GOGO
21:15:14.0485 1324 UserName: Giovanna
21:15:14.0485 1324 Windows directory: C:\Windows
21:15:14.0485 1324 System windows directory: C:\Windows
21:15:14.0485 1324 Processor architecture: Intel x86
21:15:14.0485 1324 Number of processors: 2
21:15:14.0485 1324 Page size: 0x1000
21:15:14.0485 1324 Boot type: Normal boot
21:15:14.0485 1324 ============================================================
21:15:15.0405 1324 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:15:15.0405 1324 Drive \Device\Harddisk1\DR2 - Size: 0x1E2000000 (7.53 Gb), SectorSize: 0x200, Cylinders: 0x3D7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:15:15.0405 1324 ============================================================
21:15:15.0405 1324 \Device\Harddisk0\DR0:
21:15:15.0405 1324 MBR partitions:
21:15:15.0405 1324 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x11C2C800
21:15:15.0405 1324 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1362D000, BlocksNum 0x11E01000
21:15:15.0405 1324 \Device\Harddisk1\DR2:
21:15:15.0405 1324 MBR partitions:
21:15:15.0405 1324 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x898, BlocksNum 0xF0F768
21:15:15.0405 1324 ============================================================
21:15:15.0452 1324 C: <-> \Device\Harddisk0\DR0\Partition1
21:15:15.0514 1324 D: <-> \Device\Harddisk0\DR0\Partition2
21:15:15.0514 1324 ============================================================
21:15:15.0514 1324 Initialize success
21:15:15.0514 1324 ============================================================
21:15:41.0005 3484 ============================================================
21:15:41.0005 3484 Scan started
21:15:41.0005 3484 Mode: Manual; SigCheck; TDLFS;
21:15:41.0005 3484 ============================================================
21:15:41.0332 3484 ================ Scan system memory ========================
21:15:41.0332 3484 System memory - ok
21:15:41.0332 3484 ================ Scan services =============================
21:15:41.0504 3484 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:15:41.0691 3484 ACPI - ok
21:15:41.0785 3484 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:15:41.0831 3484 adp94xx - ok
21:15:41.0847 3484 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:15:41.0878 3484 adpahci - ok
21:15:41.0909 3484 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:15:41.0925 3484 adpu160m - ok
21:15:41.0941 3484 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:15:41.0972 3484 adpu320 - ok
21:15:42.0003 3484 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:15:42.0081 3484 AeLookupSvc - ok
21:15:42.0112 3484 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
21:15:42.0159 3484 AFD - ok
21:15:42.0221 3484 [ 1CFEBA39FC613E45B49D3EDDFBCDA289 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
21:15:42.0284 3484 AgereSoftModem - ok
21:15:42.0299 3484 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:15:42.0331 3484 agp440 - ok
21:15:42.0346 3484 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:15:42.0377 3484 aic78xx - ok
21:15:42.0393 3484 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
21:15:42.0471 3484 ALG - ok
21:15:42.0502 3484 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
21:15:42.0518 3484 aliide - ok
21:15:42.0549 3484 [ 89DD6104E542552DAF25F42A30F75E08 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:15:42.0596 3484 AMD External Events Utility - ok
21:15:42.0611 3484 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:15:42.0643 3484 amdagp - ok
21:15:42.0658 3484 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
21:15:42.0674 3484 amdide - ok
21:15:42.0705 3484 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:15:42.0767 3484 AmdK7 - ok
21:15:42.0783 3484 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:15:42.0845 3484 AmdK8 - ok
21:15:43.0173 3484 [ 03AC6735672F15CEAAB502E4349286E0 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:15:43.0547 3484 amdkmdag - ok
21:15:43.0579 3484 [ F566C90E4BBE387E905130B6E490DCCD ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:15:43.0625 3484 amdkmdap - ok
21:15:43.0813 3484 [ 0FA2D8304ECA29CA0AB7E3EE50FD585A ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
21:15:43.0844 3484 AntiVirSchedulerService - ok
21:15:43.0875 3484 [ 5C69AAC8A59207DA9710FF2E42D6F80F ] AntiVirService C:\Program Files\Avira\AntiVir Desktop\avguard.exe
21:15:43.0891 3484 AntiVirService - ok
21:15:43.0922 3484 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
21:15:43.0953 3484 Appinfo - ok
21:15:43.0984 3484 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
21:15:44.0000 3484 arc - ok
21:15:44.0031 3484 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
21:15:44.0047 3484 arcsas - ok
21:15:44.0093 3484 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
21:15:44.0140 3484 aswFsBlk - ok
21:15:44.0203 3484 [ 62F9DCEC95F91B8E0203E85D344A7E65 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
21:15:44.0218 3484 aswMonFlt - ok
21:15:44.0234 3484 [ 7C9F0A2AB17D52261A9252A2EB320884 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
21:15:44.0249 3484 AswRdr - ok
21:15:44.0296 3484 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
21:15:44.0327 3484 aswSnx - ok
21:15:44.0359 3484 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\Windows\system32\drivers\aswSP.sys
21:15:44.0390 3484 aswSP - ok
21:15:44.0421 3484 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
21:15:44.0437 3484 aswTdi - ok
21:15:44.0468 3484 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:15:44.0515 3484 AsyncMac - ok
21:15:44.0546 3484 [ 0D83C87A801A3DFCD1BF73893FE7518C ] atapi C:\Windows\system32\drivers\atapi.sys
21:15:44.0561 3484 atapi - ok
21:15:44.0608 3484 [ 99D78248BFD454BFA9B5BEC37350FADE ] athr C:\Windows\system32\DRIVERS\athr.sys
21:15:44.0671 3484 athr - ok
21:15:44.0967 3484 [ 03AC6735672F15CEAAB502E4349286E0 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
21:15:45.0341 3484 atikmdag - ok
21:15:45.0388 3484 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:15:45.0435 3484 AudioEndpointBuilder - ok
21:15:45.0466 3484 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:15:45.0497 3484 Audiosrv - ok
21:15:45.0575 3484 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:15:45.0591 3484 avast! Antivirus - ok
21:15:45.0622 3484 [ A5C175039B1D6D85D0E79F5855828E4D ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
21:15:45.0638 3484 avgntflt - ok
21:15:45.0685 3484 [ 37B854C7D1F477E66C5B49C7700C47CC ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
21:15:45.0700 3484 avipbb - ok
21:15:45.0731 3484 [ CC4EBA25D80DE42BBC2BF3E553219388 ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
21:15:45.0747 3484 avkmgr - ok
21:15:45.0778 3484 [ 08015D34F6FDD0B355805BAD978497C3 ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys
21:15:45.0872 3484 bcm4sbxp - ok
21:15:45.0919 3484 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
21:15:45.0934 3484 BcmSqlStartupSvc - ok
21:15:45.0950 3484 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
21:15:46.0012 3484 Beep - ok
21:15:46.0043 3484 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
21:15:46.0137 3484 BFE - ok
21:15:46.0231 3484 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
21:15:46.0340 3484 BITS - ok
21:15:46.0371 3484 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
21:15:46.0418 3484 blbdrive - ok
21:15:46.0449 3484 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:15:46.0480 3484 bowser - ok
21:15:46.0511 3484 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
21:15:46.0558 3484 BrFiltLo - ok
21:15:46.0574 3484 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
21:15:46.0621 3484 BrFiltUp - ok
21:15:46.0652 3484 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
21:15:46.0730 3484 Browser - ok
21:15:46.0761 3484 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
21:15:46.0839 3484 Brserid - ok
21:15:46.0870 3484 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
21:15:46.0948 3484 BrSerWdm - ok
21:15:46.0979 3484 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
21:15:47.0042 3484 BrUsbMdm - ok
21:15:47.0057 3484 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
21:15:47.0151 3484 BrUsbSer - ok
21:15:47.0182 3484 [ C7065FA296C91BF054F421B0EBF93461 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:15:47.0213 3484 BthEnum - ok
21:15:47.0245 3484 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
21:15:47.0307 3484 BTHMODEM - ok
21:15:47.0338 3484 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:15:47.0401 3484 BthPan - ok
21:15:47.0416 3484 [ 1712D956E5A96F866D6791869E99B1D6 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:15:47.0463 3484 BTHPORT - ok
21:15:47.0494 3484 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
21:15:47.0541 3484 BthServ - ok
21:15:47.0572 3484 [ 66088E161E769D11C3134BC23D0E6144 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:15:47.0603 3484 BTHUSB - ok
21:15:47.0619 3484 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:15:47.0681 3484 cdfs - ok
21:15:47.0713 3484 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:15:47.0759 3484 cdrom - ok
21:15:47.0775 3484 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
21:15:47.0822 3484 CertPropSvc - ok
21:15:47.0853 3484 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
21:15:47.0900 3484 circlass - ok
21:15:47.0947 3484 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
21:15:47.0978 3484 CLFS - ok
21:15:48.0025 3484 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:15:48.0056 3484 clr_optimization_v2.0.50727_32 - ok
21:15:48.0118 3484 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:15:48.0134 3484 clr_optimization_v4.0.30319_32 - ok
21:15:48.0149 3484 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:15:48.0212 3484 CmBatt - ok
21:15:48.0227 3484 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:15:48.0243 3484 cmdide - ok
21:15:48.0274 3484 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:15:48.0290 3484 Compbatt - ok
21:15:48.0290 3484 COMSysApp - ok
21:15:48.0305 3484 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
21:15:48.0321 3484 crcdisk - ok
21:15:48.0337 3484 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
21:15:48.0383 3484 Crusoe - ok
21:15:48.0430 3484 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:15:48.0461 3484 CryptSvc - ok
21:15:48.0493 3484 [ B5ECADF7708960F1818C7FA015F4C239 ] CVirtA C:\Windows\system32\DRIVERS\CVirtA.sys
21:15:48.0508 3484 CVirtA - ok
21:15:48.0508 3484 CVPND - ok
21:15:48.0555 3484 [ D46B2E0EEAF349F2085F8B164E462156 ] CVPNDRVA C:\Windows\system32\Drivers\CVPNDRVA.sys
21:15:48.0571 3484 CVPNDRVA ( UnsignedFile.Multi.Generic ) - warning
21:15:48.0571 3484 CVPNDRVA - detected UnsignedFile.Multi.Generic (1)
21:15:48.0617 3484 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:15:48.0680 3484 DcomLaunch - ok
21:15:48.0711 3484 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:15:48.0758 3484 DfsC - ok
21:15:48.0820 3484 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
21:15:48.0961 3484 DFSR - ok
21:15:49.0023 3484 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
21:15:49.0070 3484 Dhcp - ok
21:15:49.0101 3484 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
21:15:49.0132 3484 disk - ok
21:15:49.0148 3484 [ 694616F813FB627A32C9E32DEC133078 ] DNE C:\Windows\system32\DRIVERS\dne2000.sys
21:15:49.0163 3484 DNE - ok
21:15:49.0195 3484 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:15:49.0241 3484 Dnscache - ok
21:15:49.0273 3484 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:15:49.0304 3484 dot3svc - ok
21:15:49.0351 3484 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
21:15:49.0397 3484 DPS - ok
21:15:49.0429 3484 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:15:49.0491 3484 drmkaud - ok
21:15:49.0538 3484 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:15:49.0585 3484 DXGKrnl - ok
21:15:49.0600 3484 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
21:15:49.0663 3484 E1G60 - ok
21:15:49.0694 3484 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
21:15:49.0741 3484 EapHost - ok
21:15:49.0772 3484 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
21:15:49.0803 3484 Ecache - ok
21:15:49.0850 3484 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:15:49.0881 3484 ehRecvr - ok
21:15:49.0912 3484 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
21:15:49.0959 3484 ehSched - ok
21:15:50.0006 3484 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
21:15:50.0037 3484 ehstart - ok
21:15:50.0068 3484 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
21:15:50.0099 3484 elxstor - ok
21:15:50.0146 3484 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
21:15:50.0209 3484 EMDMgmt - ok
21:15:50.0224 3484 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:15:50.0287 3484 ErrDev - ok
21:15:50.0318 3484 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
21:15:50.0365 3484 EventSystem - ok
21:15:50.0411 3484 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
21:15:50.0458 3484 exfat - ok
21:15:50.0489 3484 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:15:50.0552 3484 fastfat - ok
21:15:50.0567 3484 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:15:50.0614 3484 fdc - ok
21:15:50.0645 3484 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
21:15:50.0692 3484 fdPHost - ok
21:15:50.0692 3484 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
21:15:50.0786 3484 FDResPub - ok
21:15:50.0801 3484 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:15:50.0833 3484 FileInfo - ok
21:15:50.0848 3484 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:15:50.0895 3484 Filetrace - ok
21:15:51.0020 3484 [ 414FFB55A82C3E0378DA2A4D80F59926 ] FlagfoxUpdater C:\Users\Giovanna\AppData\LocalLow\Flagfox\IE\FlagfoxUpdater.exe
21:15:51.0035 3484 FlagfoxUpdater ( UnsignedFile.Multi.Generic ) - warning
21:15:51.0035 3484 FlagfoxUpdater - detected UnsignedFile.Multi.Generic (1)
21:15:51.0051 3484 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:15:51.0098 3484 flpydisk - ok
21:15:51.0129 3484 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:15:51.0160 3484 FltMgr - ok
21:15:51.0207 3484 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
21:15:51.0301 3484 FontCache - ok
21:15:51.0379 3484 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:15:51.0394 3484 FontCache3.0.0.0 - ok
21:15:51.0425 3484 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:15:51.0457 3484 Fs_Rec - ok
21:15:51.0488 3484 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
21:15:51.0519 3484 gagp30kx - ok
21:15:51.0566 3484 [ 483924F92E55A5F9423201EC635E2CED ] gfibto C:\Windows\system32\drivers\gfibto.sys
21:15:51.0581 3484 gfibto - ok
21:15:51.0613 3484 [ 007AEA2E06E7CEF7372E40C277163959 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
21:15:51.0628 3484 ggflt - ok
21:15:51.0659 3484 [ C73DE35960CA75C5AB4AE636B127C64E ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
21:15:51.0675 3484 ggsemc - ok
21:15:51.0722 3484 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
21:15:51.0800 3484 gpsvc - ok
21:15:51.0815 3484 [ 7929A161F9951D173CA9900FE7067391 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
21:15:51.0847 3484 hamachi - ok
21:15:51.0878 3484 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:15:51.0940 3484 HdAudAddService - ok
21:15:51.0971 3484 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:15:52.0018 3484 HDAudBus - ok
21:15:52.0049 3484 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
21:15:52.0143 3484 HidBth - ok
21:15:52.0159 3484 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
21:15:52.0237 3484 HidIr - ok
21:15:52.0283 3484 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
21:15:52.0315 3484 hidserv - ok
21:15:52.0346 3484 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:15:52.0393 3484 HidUsb - ok
21:15:52.0424 3484 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:15:52.0486 3484 hkmsvc - ok
21:15:52.0502 3484 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
21:15:52.0517 3484 HpCISSs - ok
21:15:52.0564 3484 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:15:52.0611 3484 HTTP - ok
21:15:52.0658 3484 [ 19E6885A061011D8DABE8F64498423FA ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:15:52.0705 3484 hwdatacard - ok
21:15:52.0720 3484 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
21:15:52.0751 3484 i2omp - ok
21:15:52.0767 3484 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:15:52.0829 3484 i8042prt - ok
21:15:52.0876 3484 [ 496DB78E6A0C4C44023D9A92B4A7AC31 ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
21:15:53.0017 3484 ialm - ok
21:15:53.0063 3484 [ 71ECC07BC7C5E24C3DD01D8A29A24054 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:15:53.0079 3484 iaStor - ok
21:15:53.0126 3484 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
21:15:53.0157 3484 iaStorV - ok
21:15:53.0251 3484 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:15:53.0282 3484 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:15:53.0282 3484 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:15:53.0329 3484 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:15:53.0453 3484 idsvc - ok
21:15:53.0500 3484 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
21:15:53.0516 3484 iirsp - ok
21:15:53.0563 3484 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
21:15:53.0641 3484 IKEEXT - ok
21:15:53.0719 3484 [ B4FD14F7B231E358BEC6C71D1A6C2845 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:15:53.0843 3484 IntcAzAudAddService - ok
21:15:53.0875 3484 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
21:15:53.0890 3484 intelide - ok
21:15:53.0921 3484 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:15:53.0984 3484 intelppm - ok
21:15:53.0999 3484 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:15:54.0062 3484 IPBusEnum - ok
21:15:54.0062 3484 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:15:54.0124 3484 IpFilterDriver - ok
21:15:54.0155 3484 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:15:54.0187 3484 iphlpsvc - ok
21:15:54.0187 3484 IpInIp - ok
21:15:54.0202 3484 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
21:15:54.0265 3484 IPMIDRV - ok
21:15:54.0280 3484 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
21:15:54.0327 3484 IPNAT - ok
21:15:54.0358 3484 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:15:54.0389 3484 IRENUM - ok
21:15:54.0421 3484 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:15:54.0436 3484 isapnp - ok
21:15:54.0467 3484 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:15:54.0499 3484 iScsiPrt - ok
21:15:54.0514 3484 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
21:15:54.0530 3484 iteatapi - ok
21:15:54.0545 3484 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
21:15:54.0561 3484 iteraid - ok
21:15:54.0592 3484 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:15:54.0608 3484 kbdclass - ok
21:15:54.0639 3484 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:15:54.0686 3484 kbdhid - ok
21:15:54.0717 3484 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
21:15:54.0764 3484 KeyIso - ok
21:15:54.0795 3484 [ EBC507F129DF8F0E0CA270DCFC0CF87F ] KMDFMEMIO C:\Windows\system32\DRIVERS\kmdfmemio.sys
21:15:54.0826 3484 KMDFMEMIO - ok
21:15:54.0873 3484 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:15:54.0904 3484 KSecDD - ok
21:15:54.0951 3484 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
21:15:55.0060 3484 KtmRm - ok
21:15:55.0107 3484 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
21:15:55.0138 3484 LanmanServer - ok
21:15:55.0169 3484 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:15:55.0216 3484 LanmanWorkstation - ok
21:15:55.0263 3484 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:15:55.0325 3484 lltdio - ok
21:15:55.0357 3484 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:15:55.0403 3484 lltdsvc - ok
21:15:55.0419 3484 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:15:55.0497 3484 lmhosts - ok
21:15:55.0528 3484 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
21:15:55.0544 3484 LSI_FC - ok
21:15:55.0559 3484 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
21:15:55.0591 3484 LSI_SAS - ok
21:15:55.0606 3484 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
21:15:55.0622 3484 LSI_SCSI - ok
21:15:55.0653 3484 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
21:15:55.0700 3484 luafv - ok
21:15:55.0715 3484 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:15:55.0747 3484 Mcx2Svc - ok
21:15:55.0762 3484 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
21:15:55.0778 3484 megasas - ok
21:15:55.0809 3484 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
21:15:55.0840 3484 MegaSR - ok
21:15:55.0918 3484 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:15:55.0934 3484 Microsoft Office Groove Audit Service - ok
21:15:55.0965 3484 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
21:15:56.0012 3484 MMCSS - ok
21:15:56.0043 3484 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
21:15:56.0090 3484 Modem - ok
21:15:56.0121 3484 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:15:56.0168 3484 monitor - ok
21:15:56.0183 3484 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:15:56.0215 3484 mouclass - ok
21:15:56.0230 3484 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:15:56.0277 3484 mouhid - ok
21:15:56.0293 3484 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
21:15:56.0324 3484 MountMgr - ok
21:15:56.0339 3484 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
21:15:56.0371 3484 mpio - ok
21:15:56.0386 3484 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:15:56.0433 3484 mpsdrv - ok
21:15:56.0480 3484 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
21:15:56.0527 3484 MpsSvc - ok
21:15:56.0542 3484 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
21:15:56.0573 3484 Mraid35x - ok
21:15:56.0589 3484 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:15:56.0636 3484 MRxDAV - ok
21:15:56.0651 3484 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:15:56.0698 3484 mrxsmb - ok
21:15:56.0745 3484 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:15:56.0776 3484 mrxsmb10 - ok
21:15:56.0792 3484 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:15:56.0823 3484 mrxsmb20 - ok
21:15:56.0839 3484 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
21:15:56.0854 3484 msahci - ok
21:15:56.0885 3484 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:15:56.0901 3484 msdsm - ok
21:15:56.0917 3484 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
21:15:56.0979 3484 MSDTC - ok
21:15:56.0995 3484 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:15:57.0041 3484 Msfs - ok
21:15:57.0057 3484 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:15:57.0073 3484 msisadrv - ok
21:15:57.0104 3484 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:15:57.0151 3484 MSiSCSI - ok
21:15:57.0166 3484 msiserver - ok
21:15:57.0182 3484 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:15:57.0229 3484 MSKSSRV - ok
21:15:57.0244 3484 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:15:57.0291 3484 MSPCLOCK - ok
21:15:57.0307 3484 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:15:57.0353 3484 MSPQM - ok
21:15:57.0369 3484 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:15:57.0400 3484 MsRPC - ok
21:15:57.0416 3484 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:15:57.0447 3484 mssmbios - ok
21:15:57.0494 3484 MSSQL$MSSMLBIZ - ok
21:15:57.0525 3484 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:15:57.0556 3484 MSSQLServerADHelper - ok
21:15:57.0572 3484 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:15:57.0634 3484 MSTEE - ok
21:15:57.0665 3484 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
21:15:57.0697 3484 Mup - ok
21:15:57.0728 3484 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
21:15:57.0775 3484 napagent - ok
21:15:57.0806 3484 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:15:57.0853 3484 NativeWifiP - ok
21:15:57.0884 3484 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:15:57.0931 3484 NDIS - ok
21:15:57.0946 3484 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:15:58.0009 3484 NdisTapi - ok
21:15:58.0024 3484 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:15:58.0071 3484 Ndisuio - ok
21:15:58.0102 3484 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:15:58.0133 3484 NdisWan - ok
21:15:58.0149 3484 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:15:58.0196 3484 NDProxy - ok
21:15:58.0258 3484 [ 284432E671F1AF6B09B81DA24D3ABCAE ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:15:58.0258 3484 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:15:58.0258 3484 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
21:15:58.0274 3484 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:15:58.0321 3484 NetBIOS - ok
21:15:58.0352 3484 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
21:15:58.0414 3484 netbt - ok
21:15:58.0461 3484 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
21:15:58.0492 3484 Netlogon - ok
21:15:58.0523 3484 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
21:15:58.0601 3484 Netman - ok
21:15:58.0617 3484 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
21:15:58.0679 3484 netprofm - ok
21:15:58.0711 3484 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:15:58.0726 3484 NetTcpPortSharing - ok
21:15:58.0804 3484 [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32 C:\Windows\system32\DRIVERS\NETw3v32.sys
21:15:58.0929 3484 NETw3v32 - ok
21:15:58.0945 3484 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
21:15:58.0960 3484 nfrd960 - ok
21:15:59.0007 3484 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:15:59.0085 3484 NlaSvc - ok
21:15:59.0116 3484 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:15:59.0163 3484 Npfs - ok
21:15:59.0210 3484 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
21:15:59.0257 3484 nsi - ok
21:15:59.0257 3484 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:15:59.0319 3484 nsiproxy - ok
21:15:59.0381 3484 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:15:59.0444 3484 Ntfs - ok
21:15:59.0475 3484 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
21:15:59.0569 3484 ntrigdigi - ok
21:15:59.0584 3484 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
21:15:59.0647 3484 Null - ok
21:15:59.0678 3484 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:15:59.0693 3484 nvraid - ok
21:15:59.0725 3484 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:15:59.0740 3484 nvstor - ok
21:15:59.0756 3484 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:15:59.0787 3484 nv_agp - ok
21:15:59.0787 3484 NwlnkFlt - ok
21:15:59.0803 3484 NwlnkFwd - ok
21:15:59.0865 3484 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:15:59.0896 3484 odserv - ok
21:15:59.0927 3484 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:15:59.0974 3484 ohci1394 - ok
21:16:00.0005 3484 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:16:00.0037 3484 ose - ok
21:16:00.0083 3484 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
21:16:00.0146 3484 p2pimsvc - ok
21:16:00.0193 3484 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
21:16:00.0224 3484 p2psvc - ok
21:16:00.0239 3484 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
21:16:00.0333 3484 Parport - ok
21:16:00.0364 3484 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:16:00.0380 3484 partmgr - ok
21:16:00.0395 3484 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
21:16:00.0489 3484 Parvdm - ok
21:16:00.0520 3484 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
21:16:00.0567 3484 PcaSvc - ok
21:16:00.0598 3484 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
21:16:00.0629 3484 pci - ok
21:16:00.0645 3484 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
21:16:00.0676 3484 pciide - ok
21:16:00.0692 3484 [ B7C5A8769541900F6DFA6FE0C5E4D513 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:16:00.0707 3484 pcmcia - ok
21:16:00.0754 3484 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:16:00.0895 3484 PEAUTH - ok
21:16:00.0973 3484 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
21:16:01.0113 3484 pla - ok
21:16:01.0144 3484 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:16:01.0207 3484 PlugPlay - ok
21:16:01.0253 3484 [ 4153912765F7F2DE2A5C9A241ABB03FC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:16:01.0269 3484 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:16:01.0269 3484 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
21:16:01.0300 3484 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
21:16:01.0347 3484 PNRPAutoReg - ok
21:16:01.0378 3484 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
21:16:01.0456 3484 PNRPsvc - ok
21:16:01.0519 3484 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:16:01.0581 3484 PolicyAgent - ok
21:16:01.0612 3484 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:16:01.0659 3484 PptpMiniport - ok
21:16:01.0690 3484 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
21:16:01.0737 3484 Processor - ok
21:16:01.0768 3484 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
21:16:01.0815 3484 ProfSvc - ok
21:16:01.0831 3484 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:16:01.0862 3484 ProtectedStorage - ok
21:16:01.0877 3484 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
21:16:01.0940 3484 PSched - ok
21:16:01.0987 3484 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
21:16:02.0065 3484 ql2300 - ok
21:16:02.0080 3484 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
21:16:02.0111 3484 ql40xx - ok
21:16:02.0143 3484 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
21:16:02.0189 3484 QWAVE - ok
21:16:02.0205 3484 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:16:02.0236 3484 QWAVEdrv - ok
21:16:02.0252 3484 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:16:02.0314 3484 RasAcd - ok
21:16:02.0330 3484 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
21:16:02.0392 3484 RasAuto - ok
21:16:02.0408 3484 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:16:02.0455 3484 Rasl2tp - ok
21:16:02.0486 3484 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
21:16:02.0548 3484 RasMan - ok
21:16:02.0564 3484 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:16:02.0611 3484 RasPppoe - ok
21:16:02.0611 3484 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:16:02.0642 3484 RasSstp - ok
21:16:02.0673 3484 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:16:02.0704 3484 rdbss - ok
21:16:02.0720 3484 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:16:02.0782 3484 RDPCDD - ok
21:16:02.0813 3484 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
21:16:02.0860 3484 rdpdr - ok
21:16:02.0860 3484 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:16:02.0907 3484 RDPENCDD - ok
21:16:02.0938 3484 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:16:02.0985 3484 RDPWD - ok
21:16:03.0016 3484 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:16:03.0063 3484 RemoteAccess - ok
21:16:03.0079 3484 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:16:03.0125 3484 RemoteRegistry - ok
21:16:03.0157 3484 [ F85AE59A52885F4B09AADAFB23001A3B ] Rezip C:\Windows\SYSTEM32\Rezip.exe
21:16:03.0188 3484 Rezip ( UnsignedFile.Multi.Generic ) - warning
21:16:03.0188 3484 Rezip - detected UnsignedFile.Multi.Generic (1)
21:16:03.0235 3484 [ 10536B0AD6F416FC7F1149977C28CCDC ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:16:03.0250 3484 RFCOMM - ok
21:16:03.0250 3484 RimUsb - ok
21:16:03.0297 3484 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
21:16:03.0328 3484 RimVSerPort - ok
21:16:03.0344 3484 [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
21:16:03.0406 3484 ROOTMODEM - ok
21:16:03.0437 3484 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
21:16:03.0469 3484 RpcLocator - ok
21:16:03.0500 3484 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
21:16:03.0547 3484 RpcSs - ok
21:16:03.0562 3484 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:16:03.0609 3484 rspndr - ok
21:16:03.0640 3484 [ 0266151DE3F36429F6AC3C4B28085061 ] s217bus C:\Windows\system32\DRIVERS\s217bus.sys
21:16:03.0656 3484 s217bus - ok
21:16:03.0687 3484 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
21:16:03.0718 3484 SamSs - ok
21:16:03.0734 3484 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:16:03.0749 3484 sbp2port - ok
21:16:03.0796 3484 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:16:03.0843 3484 SCardSvr - ok
21:16:03.0905 3484 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
21:16:03.0983 3484 Schedule - ok
21:16:04.0015 3484 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:16:04.0046 3484 SCPolicySvc - ok
21:16:04.0061 3484 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
21:16:04.0124 3484 sdbus - ok
21:16:04.0155 3484 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:16:04.0186 3484 SDRSVC - ok
21:16:04.0202 3484 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:16:04.0295 3484 secdrv - ok
21:16:04.0327 3484 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
21:16:04.0373 3484 seclogon - ok
21:16:04.0389 3484 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
21:16:04.0451 3484 SENS - ok
21:16:04.0467 3484 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
21:16:04.0561 3484 Serenum - ok
21:16:04.0576 3484 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
21:16:04.0654 3484 Serial - ok
21:16:04.0670 3484 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
21:16:04.0717 3484 sermouse - ok
21:16:04.0748 3484 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
21:16:04.0810 3484 SessionEnv - ok
21:16:04.0826 3484 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:16:04.0873 3484 sffdisk - ok
21:16:04.0904 3484 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:16:04.0951 3484 sffp_mmc - ok
21:16:04.0966 3484 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:16:05.0029 3484 sffp_sd - ok
21:16:05.0044 3484 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
21:16:05.0138 3484 sfloppy - ok
21:16:05.0200 3484 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:16:05.0263 3484 SharedAccess - ok
21:16:05.0325 3484 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:16:05.0372 3484 ShellHWDetection - ok
21:16:05.0387 3484 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:16:05.0419 3484 sisagp - ok
21:16:05.0419 3484 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
21:16:05.0450 3484 SiSRaid2 - ok
21:16:05.0465 3484 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
21:16:05.0497 3484 SiSRaid4 - ok
21:16:05.0606 3484 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
21:16:05.0793 3484 slsvc - ok
21:16:05.0824 3484 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
21:16:05.0871 3484 SLUINotify - ok
21:16:05.0902 3484 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:16:05.0949 3484 Smb - ok
21:16:05.0980 3484 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:16:06.0027 3484 SNMPTRAP - ok
21:16:06.0058 3484 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
21:16:06.0089 3484 spldr - ok
21:16:06.0105 3484 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
21:16:06.0152 3484 Spooler - ok
21:16:06.0214 3484 [ CDDDEC541BC3C96F91ECB48759673505 ] sptd C:\Windows\System32\Drivers\sptd.sys
21:16:06.0245 3484 sptd - ok
21:16:06.0277 3484 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:16:06.0292 3484 SQLBrowser - ok
21:16:06.0323 3484 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:16:06.0370 3484 srv - ok
21:16:06.0386 3484 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:16:06.0417 3484 srv2 - ok
21:16:06.0433 3484 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:16:06.0464 3484 srvnet - ok
21:16:06.0511 3484 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:16:06.0573 3484 SSDPSRV - ok
21:16:06.0604 3484 [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
21:16:06.0620 3484 ssmdrv - ok
21:16:06.0635 3484 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:16:06.0682 3484 SstpSvc - ok
21:16:06.0729 3484 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
21:16:06.0791 3484 stisvc - ok
21:16:06.0823 3484 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:16:06.0838 3484 swenum - ok
21:16:06.0869 3484 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
21:16:06.0932 3484 swprv - ok
21:16:06.0947 3484 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
21:16:06.0979 3484 Symc8xx - ok
21:16:06.0994 3484 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
21:16:07.0010 3484 Sym_hi - ok
21:16:07.0041 3484 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
21:16:07.0057 3484 Sym_u3 - ok
21:16:07.0088 3484 [ 71837FBCE3FD8143953444B3FF7938DC ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:16:07.0119 3484 SynTP - ok
21:16:07.0150 3484 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
21:16:07.0228 3484 SysMain - ok
21:16:07.0275 3484 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:16:07.0306 3484 TabletInputService - ok
21:16:07.0322 3484 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:16:07.0369 3484 TapiSrv - ok
21:16:07.0384 3484 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
21:16:07.0447 3484 TBS - ok
21:16:07.0493 3484 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:16:07.0571 3484 Tcpip - ok
21:16:07.0618 3484 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
21:16:07.0665 3484 Tcpip6 - ok
21:16:07.0712 3484 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:16:07.0743 3484 tcpipreg - ok
21:16:07.0759 3484 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:16:07.0821 3484 TDPIPE - ok
21:16:07.0837 3484 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:16:07.0883 3484 TDTCP - ok
21:16:07.0915 3484 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:16:07.0961 3484 tdx - ok
21:16:07.0993 3484 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:16:08.0008 3484 TermDD - ok
21:16:08.0024 3484 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
21:16:08.0117 3484 TermService - ok
21:16:08.0149 3484 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
21:16:08.0180 3484 Themes - ok
21:16:08.0195 3484 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
21:16:08.0242 3484 THREADORDER - ok
21:16:08.0289 3484 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
21:16:08.0351 3484 TrkWks - ok
21:16:08.0414 3484 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:16:08.0445 3484 TrustedInstaller - ok
21:16:08.0476 3484 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:16:08.0523 3484 tssecsrv - ok
21:16:08.0585 3484 [ C1A64414DB4E49D41D9DF9359ED9369B ] TuneUp.Defrag C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
21:16:08.0632 3484 TuneUp.Defrag - ok
21:16:08.0741 3484 [ DC653CF2D70827C4EBC2B157DA25CF57 ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
21:16:08.0819 3484 TuneUp.UtilitiesSvc - ok
21:16:08.0882 3484 [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys
21:16:08.0913 3484 TuneUpUtilitiesDrv - ok
21:16:08.0929 3484 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
21:16:08.0960 3484 tunmp - ok
21:16:08.0991 3484 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:16:09.0022 3484 tunnel - ok
21:16:09.0069 3484 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
21:16:09.0100 3484 uagp35 - ok
21:16:09.0131 3484 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:16:09.0163 3484 udfs - ok
21:16:09.0209 3484 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:16:09.0256 3484 UI0Detect - ok
21:16:09.0272 3484 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:16:09.0303 3484 uliagpkx - ok
21:16:09.0334 3484 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
21:16:09.0350 3484 uliahci - ok
21:16:09.0381 3484 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
21:16:09.0397 3484 UlSata - ok
21:16:09.0428 3484 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
21:16:09.0443 3484 ulsata2 - ok
21:16:09.0475 3484 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:16:09.0521 3484 umbus - ok
21:16:09.0553 3484 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
21:16:09.0615 3484 upnphost - ok
21:16:09.0662 3484 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:16:09.0693 3484 usbccgp - ok
21:16:09.0724 3484 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:16:09.0787 3484 usbcir - ok
21:16:09.0833 3484 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:16:09.0880 3484 usbehci - ok
21:16:09.0896 3484 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:16:09.0943 3484 usbhub - ok
21:16:09.0958 3484 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:16:10.0036 3484 usbohci - ok
21:16:10.0067 3484 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:16:10.0099 3484 usbprint - ok
21:16:10.0130 3484 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:16:10.0161 3484 usbscan - ok
21:16:10.0177 3484 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:16:10.0239 3484 USBSTOR - ok
21:16:10.0270 3484 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:16:10.0301 3484 usbuhci - ok
21:16:10.0348 3484 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:16:10.0379 3484 usbvideo - ok
21:16:10.0411 3484 [ 35C9095FA7076466AFBFC5B9EC4B779E ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
21:16:10.0457 3484 usb_rndisx - ok
21:16:10.0489 3484 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
21:16:10.0520 3484 UxSms - ok
21:16:10.0535 3484 [ DC2172ACCB384C6A3D59342050422102 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
21:16:10.0567 3484 UxTuneUp - ok
21:16:10.0598 3484 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
21:16:10.0691 3484 vds - ok
21:16:10.0707 3484 vflt - ok
21:16:10.0738 3484 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:16:10.0801 3484 vga - ok
21:16:10.0832 3484 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
21:16:10.0879 3484 VgaSave - ok
21:16:10.0879 3484 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:16:10.0910 3484 viaagp - ok
21:16:10.0925 3484 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
21:16:10.0972 3484 ViaC7 - ok
21:16:10.0988 3484 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
21:16:11.0019 3484 viaide - ok
21:16:11.0050 3484 [ 20A559A25C4AE3F9B35F8229636EE5A7 ] VMC326 C:\Windows\system32\Drivers\VMC326.sys
21:16:11.0066 3484 VMC326 - ok
21:16:11.0081 3484 vnet - ok
21:16:11.0097 3484 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:16:11.0128 3484 volmgr - ok
21:16:11.0144 3484 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:16:11.0175 3484 volmgrx - ok
21:16:11.0191 3484 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:16:11.0222 3484 volsnap - ok
21:16:11.0253 3484 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
21:16:11.0269 3484 vsmraid - ok
21:16:11.0315 3484 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
21:16:11.0456 3484 VSS - ok
21:16:11.0503 3484 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
21:16:11.0534 3484 W32Time - ok
21:16:11.0565 3484 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
21:16:11.0643 3484 WacomPen - ok
21:16:11.0659 3484 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
21:16:11.0690 3484 Wanarp - ok
21:16:11.0705 3484 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:16:11.0737 3484 Wanarpv6 - ok
21:16:11.0768 3484 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:16:11.0830 3484 wcncsvc - ok
21:16:11.0861 3484 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:16:11.0908 3484 WcsPlugInService - ok
21:16:11.0924 3484 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
21:16:11.0939 3484 Wd - ok
21:16:11.0986 3484 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:16:12.0033 3484 Wdf01000 - ok
21:16:12.0064 3484 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:16:12.0127 3484 WdiServiceHost - ok
21:16:12.0142 3484 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:16:12.0189 3484 WdiSystemHost - ok
21:16:12.0236 3484 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
21:16:12.0267 3484 WebClient - ok
21:16:12.0314 3484 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:16:12.0345 3484 Wecsvc - ok
21:16:12.0361 3484 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:16:12.0423 3484 wercplsupport - ok
21:16:12.0439 3484 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
21:16:12.0501 3484 WerSvc - ok
21:16:12.0532 3484 [ 05FB36A51E04A6C6B3A5F125FA692E6B ] wimmount C:\Windows\system32\DRIVERS\wimmount.sys
21:16:12.0563 3484 wimmount - ok
21:16:12.0610 3484 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:16:12.0641 3484 WinDefend - ok
21:16:12.0641 3484 WinHttpAutoProxySvc - ok
21:16:12.0704 3484 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:16:12.0735 3484 Winmgmt - ok
21:16:12.0813 3484 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
21:16:12.0907 3484 WinRM - ok
21:16:12.0969 3484 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
21:16:12.0985 3484 WinUSB - ok
21:16:13.0031 3484 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:16:13.0094 3484 Wlansvc - ok
21:16:13.0141 3484 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:16:13.0187 3484 WmiAcpi - ok
21:16:13.0219 3484 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:16:13.0265 3484 wmiApSrv - ok
21:16:13.0343 3484 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:16:13.0406 3484 WMPNetworkSvc - ok
21:16:13.0453 3484 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:16:13.0484 3484 WPCSvc - ok
21:16:13.0499 3484 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:16:13.0562 3484 WPDBusEnum - ok
21:16:13.0593 3484 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
21:16:13.0624 3484 WpdUsb - ok
21:16:13.0733 3484 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:16:13.0780 3484 WPFFontCache_v0400 - ok
21:16:13.0811 3484 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:16:13.0858 3484 ws2ifsl - ok
21:16:13.0889 3484 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
21:16:13.0921 3484 wscsvc - ok
21:16:13.0936 3484 WSearch - ok
21:16:14.0030 3484 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
21:16:14.0139 3484 wuauserv - ok
21:16:14.0186 3484 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:16:14.0217 3484 WudfPf - ok
21:16:14.0248 3484 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:16:14.0264 3484 WUDFRd - ok
21:16:14.0326 3484 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:16:14.0357 3484 wudfsvc - ok
21:16:14.0389 3484 [ 6D16A5C05D4FA06FADE1D97580986803 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
21:16:14.0420 3484 yukonwlh ( UnsignedFile.Multi.Generic ) - warning
21:16:14.0420 3484 yukonwlh - detected UnsignedFile.Multi.Generic (1)
21:16:14.0435 3484 ================ Scan global ===============================
21:16:14.0482 3484 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:16:14.0529 3484 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
21:16:14.0560 3484 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
21:16:14.0607 3484 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
21:16:14.0607 3484 [Global] - ok
21:16:14.0607 3484 ================ Scan MBR ==================================
21:16:14.0623 3484 [ 61A349592C4728853F4A90FF78F7628E ] \Device\Harddisk0\DR0
21:16:15.0403 3484 \Device\Harddisk0\DR0 - ok
21:16:15.0403 3484 [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR2
21:16:15.0543 3484 \Device\Harddisk1\DR2 - ok
21:16:15.0543 3484 ================ Scan VBR ==================================
21:16:15.0574 3484 [ 31C4CA22EC126507DDAF355500DC2EE2 ] \Device\Harddisk0\DR0\Partition1
21:16:15.0574 3484 \Device\Harddisk0\DR0\Partition1 - ok
21:16:15.0637 3484 [ B857FB97CD5F4FD8C28181DA43FF5A2A ] \Device\Harddisk0\DR0\Partition2
21:16:15.0637 3484 \Device\Harddisk0\DR0\Partition2 - ok
21:16:15.0637 3484 [ D079232B82BD0525629EAB57C7763392 ] \Device\Harddisk1\DR2\Partition1
21:16:15.0637 3484 \Device\Harddisk1\DR2\Partition1 - ok
21:16:15.0637 3484 ============================================================
21:16:15.0637 3484 Scan finished
21:16:15.0637 3484 ============================================================
21:16:15.0652 3088 Detected object count: 7
21:16:15.0652 3088 Actual detected object count: 7
21:17:07.0210 3088 CVPNDRVA ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0210 3088 CVPNDRVA ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:17:07.0210 3088 FlagfoxUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0210 3088 FlagfoxUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:17:07.0226 3088 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0226 3088 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:17:07.0226 3088 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0226 3088 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:17:07.0226 3088 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0226 3088 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:17:07.0226 3088 Rezip ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0226 3088 Rezip ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:17:07.0226 3088 yukonwlh ( UnsignedFile.Multi.Generic ) - skipped by user
21:17:07.0226 3088 yukonwlh ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
06.01.2013, 02:15
| #10 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Notebook bleibt immer hängen Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2013, 14:44
| #11 |
| | Notebook bleibt immer hängen Hier die Combofix.txt: Code:
ATTFilter ComboFix 13-01-05.01 - Giovanna 06.01.2013 11:05:23.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3036.2119 [GMT 1:00]
ausgeführt von:: c:\users\Giovanna\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Giovanna\AppData\Roaming\Axsoqu
c:\users\Giovanna\AppData\Roaming\Axsoqu\neok.tmp
c:\users\Giovanna\AppData\Roaming\Axsoqu\neok.yhy
c:\users\Giovanna\AppData\Roaming\Osnoc
c:\users\Giovanna\AppData\Roaming\Osnoc\gesa.xia
c:\windows\IsUn0407.exe
c:\windows\system32\uxt5409.tmp
c:\windows\system32\uxt62AC.tmp
c:\windows\unin0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-12-06 bis 2013-01-06 ))))))))))))))))))))))))))))))
.
.
2013-01-06 10:15 . 2013-01-06 10:15 -------- d-----w- c:\users\Giovanna\AppData\Local\temp
2013-01-06 10:15 . 2013-01-06 10:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-05 20:31 . 2013-01-05 20:34 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2013-01-05 11:15 . 2012-10-30 22:51 361032 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-05 11:15 . 2012-10-30 22:51 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-05 11:15 . 2012-10-30 22:51 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-05 11:15 . 2012-10-30 22:51 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-01-05 11:15 . 2012-10-30 22:51 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-05 11:15 . 2012-10-30 22:51 58680 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-05 11:15 . 2012-10-30 22:51 41224 ----a-w- c:\windows\avastSS.scr
2013-01-05 11:15 . 2012-10-30 22:50 227648 ----a-w- c:\windows\system32\aswBoot.exe
2013-01-05 11:15 . 2013-01-05 11:15 -------- d-----w- c:\programdata\AVAST Software
2013-01-05 11:15 . 2013-01-05 11:15 -------- d-----w- c:\program files\AVAST Software
2013-01-05 11:01 . 2013-01-05 11:01 44424 ----a-w- c:\windows\system32\sbbd.exe
2013-01-05 11:01 . 2013-01-05 11:01 13560 ----a-w- c:\windows\system32\drivers\gfibto.sys
2013-01-05 10:59 . 2013-01-05 10:59 -------- d-----w- c:\programdata\blekko toolbars
2013-01-05 10:59 . 2013-01-05 11:55 -------- d-----w- c:\program files\adawaretb
2013-01-05 10:59 . 2013-01-05 10:59 -------- d-----w- c:\program files\Toolbar Cleaner
2013-01-05 10:58 . 2013-01-05 10:58 -------- d-----w- c:\users\Giovanna\AppData\Roaming\LavasoftStatistics
2013-01-05 10:58 . 2013-01-05 10:58 -------- d-----w- c:\users\Giovanna\AppData\Roaming\Ad-Aware Antivirus
2013-01-05 08:52 . 2012-12-16 13:12 34304 ----a-w- c:\windows\system32\atmlib.dll
2013-01-05 08:52 . 2012-12-16 10:50 293376 ----a-w- c:\windows\system32\atmfd.dll
2013-01-04 23:50 . 2013-01-04 23:50 -------- d-----w- c:\users\Giovanna\AppData\Roaming\Avira
2013-01-04 23:44 . 2012-11-27 09:01 83944 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-01-04 23:44 . 2012-11-22 14:51 36552 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-01-04 23:44 . 2012-11-22 14:50 134336 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-01-04 23:44 . 2013-01-04 23:44 -------- d-----w- c:\programdata\Avira
2013-01-04 23:44 . 2013-01-04 23:44 -------- d-----w- c:\program files\Avira
2012-12-23 19:43 . 2012-12-23 19:43 -------- d-----w- c:\users\Giovanna\AppData\Local\Sony Ericsson
2012-12-13 02:04 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll
2012-12-13 02:04 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2012-12-13 02:04 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2012-12-13 02:04 . 2009-07-14 12:12 16896 ----a-w- c:\windows\system32\winusb.dll
2012-12-13 02:04 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll
2012-12-13 02:04 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll
2012-12-13 02:04 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2012-12-13 02:04 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2012-12-13 02:04 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe
2012-12-13 02:04 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll
2012-12-13 02:04 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2012-12-13 02:04 . 2009-07-13 23:51 34944 ----a-w- c:\windows\system32\drivers\winusb.sys
2012-12-12 17:59 . 2012-11-13 01:36 2048000 ----a-w- c:\windows\system32\win32k.sys
2012-12-12 17:59 . 2012-11-02 10:18 376320 ----a-w- c:\windows\system32\dpnet.dll
2012-12-12 17:59 . 2012-11-02 08:26 23040 ----a-w- c:\windows\system32\dpnsvr.exe
2012-12-12 17:59 . 2012-08-21 11:47 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys
2012-12-12 17:59 . 2012-11-13 01:29 2048 ----a-w- c:\windows\system32\tzres.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-08 18:00 . 2012-11-21 00:52 6812136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C736AD16-EA2D-48F5-8D2C-561B3E9ED366}\mpengine.dll
2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll
2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll
2012-12-09 19:57 . 2011-05-09 20:17 262112 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A02B5E09-122E-4A2D-B996-D997485B8C9E}]
2012-02-28 17:11 269312 ----a-w- c:\users\Giovanna\AppData\LocalLow\Flagfox\IE\Flagfox.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 22:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-02-13 6814240]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-28 1049896]
"Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-02-13 1833504]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-12-04 384800]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^Users^Giovanna^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]
path=c:\users\Giovanna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
backup=c:\windows\pss\Dropbox.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Inhalt des "geplante Tasks" Ordners
.
2013-01-05 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-01-05 22:50]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN
uSearchURL,(Default) = hxxp://de.search.yahoo.com/search?fr=mcafee&p=%s
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Giovanna\AppData\Roaming\Mozilla\Firefox\Profiles\9e9s0d4p.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - google.de
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.4.3&q=
FF - ExtSQL: 2012-11-18 11:24; torntv@torntv.com; c:\users\Giovanna\AppData\Roaming\Mozilla\Firefox\Profiles\9e9s0d4p.default\extensions\torntv@torntv.com.xpi
FF - ExtSQL: 2013-01-05 11:59; jid1-yZwVFzbsyfMrqQ@jetpack; c:\users\Giovanna\AppData\Roaming\Mozilla\Firefox\Profiles\9e9s0d4p.default\extensions\jid1-yZwVFzbsyfMrqQ@jetpack
FF - ExtSQL: 2013-01-05 15:45; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: !HIDDEN! 2009-07-16 04:07; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-favee - c:\users\Giovanna\AppData\Roaming\Tame\favee.exe
AddRemove-DiscworldIIDeinstKey - c:\windows\unin0407.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2013-01-06 11:15
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Durch laufende Prozesse gestartete DLLs ---------------------
.
- - - - - - - > 'Explorer.exe'(2892)
c:\windows\system32\ieframe.dll
.
Zeit der Fertigstellung: 2013-01-06 11:18:34
ComboFix-quarantined-files.txt 2013-01-06 10:18
.
Vor Suchlauf: 12 Verzeichnis(se), 33.819.639.808 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 33.810.358.272 Bytes frei
.
- - End Of File - - 35BA8B200859C94FE4E0E7B6C7996CC4
|
|
06.01.2013, 16:29
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Notebook bleibt immer hängenCode:
ATTFilter AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
Noch nie davon gehört dass man so niemals gleichzeitig nutzen sollte?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2013, 16:58
| #13 |
| | Notebook bleibt immer hängen Nachdem Antivir die letzten Tage *immer* nur hängen blieb, wollte ich einen Virenscan mit einem anderen Programm versuchen (falls es an Antivir liegt). Für die Scans gestern habe ich beide inaktiv, nur bisher eben noch nichts wieder deinstalliert. Ich nutze sonst (bis gestern oder wann ich das probiert habe) nur Antivir. |
|
06.01.2013, 17:05
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Notebook bleibt immer hängenZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2013, 17:09
| #15 |
| | Notebook bleibt immer hängen Es ist erst seit gestern installiert, vorher war NUR Antivir installiert, hoffe ich habe das jetzt besser erklärt |
|
| Themen zu Notebook bleibt immer hängen |
| abgesicherten, antivir, archiv, bildschirm, bildschirm schwarz, blieb, computer, einfach, einfügen, files, gen, hoffe, hängen, häufiger, jahre, neustart, nichts, notebook, player, problem, probleme, schwarz, version, versucht, vlc player |
Linear-Darstellung
