| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: CoupondropdownWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
| |
11.03.2013, 11:22
| #1 |
 |  CoupondropdownCode:
ATTFilter 11:12:48.0888 5984 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:12:48.0991 5984 W32Time - ok
11:12:49.0032 5984 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:12:49.0045 5984 WacomPen - ok
11:12:49.0071 5984 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:12:49.0085 5984 Wanarp - ok
11:12:49.0096 5984 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:12:49.0108 5984 Wanarpv6 - ok
11:12:49.0148 5984 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
11:12:49.0158 5984 WcesComm - ok
11:12:49.0179 5984 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:12:49.0283 5984 wcncsvc - ok
11:12:49.0380 5984 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:12:49.0481 5984 WcsPlugInService - ok
11:12:49.0494 5984 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
11:12:49.0512 5984 Wd - ok
11:12:49.0563 5984 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:12:49.0589 5984 Wdf01000 - ok
11:12:49.0613 5984 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:12:49.0717 5984 WdiServiceHost - ok
11:12:49.0724 5984 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:12:49.0828 5984 WdiSystemHost - ok
11:12:49.0859 5984 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:12:49.0965 5984 WebClient - ok
11:12:49.0999 5984 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:12:50.0105 5984 Wecsvc - ok
11:12:50.0145 5984 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:12:50.0246 5984 wercplsupport - ok
11:12:50.0280 5984 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:12:50.0386 5984 WerSvc - ok
11:12:50.0445 5984 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:12:50.0454 5984 WinDefend - ok
11:12:50.0471 5984 WinHttpAutoProxySvc - ok
11:12:50.0534 5984 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:12:50.0553 5984 Winmgmt - ok
11:12:50.0621 5984 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:12:50.0744 5984 WinRM - ok
11:12:50.0785 5984 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS
11:12:50.0864 5984 winusb - ok
11:12:50.0916 5984 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:12:51.0025 5984 Wlansvc - ok
11:12:51.0117 5984 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:12:51.0134 5984 wlidsvc - ok
11:12:51.0159 5984 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:12:51.0171 5984 WmiAcpi - ok
11:12:51.0214 5984 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:12:51.0228 5984 wmiApSrv - ok
11:12:51.0312 5984 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:12:51.0325 5984 WMPNetworkSvc - ok
11:12:51.0358 5984 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:12:51.0490 5984 WPCSvc - ok
11:12:51.0585 5984 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:12:51.0693 5984 WPDBusEnum - ok
11:12:51.0741 5984 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:12:51.0754 5984 WpdUsb - ok
11:12:51.0861 5984 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:12:51.0871 5984 WPFFontCache_v0400 - ok
11:12:51.0896 5984 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:12:51.0908 5984 ws2ifsl - ok
11:12:51.0942 5984 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
11:12:52.0075 5984 wscsvc - ok
11:12:52.0084 5984 WSearch - ok
11:12:52.0175 5984 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:12:52.0331 5984 wuauserv - ok
11:12:52.0394 5984 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:12:52.0407 5984 WudfPf - ok
11:12:52.0434 5984 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:12:52.0450 5984 WUDFRd - ok
11:12:52.0484 5984 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:12:52.0632 5984 wudfsvc - ok
11:12:52.0694 5984 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
11:12:52.0710 5984 yukonwlh - ok
11:12:52.0745 5984 ================ Scan global ===============================
11:12:52.0772 5984 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:12:52.0811 5984 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:12:52.0940 5984 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:12:53.0070 5984 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:12:53.0160 5984 [Global] - ok
11:12:53.0161 5984 ================ Scan MBR ==================================
11:12:53.0173 5984 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
11:12:53.0719 5984 \Device\Harddisk0\DR0 - ok
11:12:53.0720 5984 ================ Scan VBR ==================================
11:12:53.0725 5984 [ 17393D815A7969BCD27B29209AE7DE76 ] \Device\Harddisk0\DR0\Partition1
11:12:53.0728 5984 \Device\Harddisk0\DR0\Partition1 - ok
11:12:53.0750 5984 [ 6DBC42B833BBAC5696BDD059A8173142 ] \Device\Harddisk0\DR0\Partition2
11:12:53.0752 5984 \Device\Harddisk0\DR0\Partition2 - ok
11:12:53.0753 5984 ============================================================
11:12:53.0753 5984 Scan finished
11:12:53.0753 5984 ============================================================
11:12:53.0780 4476 Detected object count: 1
11:12:53.0780 4476 Actual detected object count: 1
11:14:22.0003 4476 sptd ( LockedFile.Multi.Generic ) - skipped by user
11:14:22.0003 4476 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
11:14:49.0142 5896 ============================================================
11:14:49.0142 5896 Scan started
11:14:49.0142 5896 Mode: Manual; SigCheck; TDLFS;
11:14:49.0142 5896 ============================================================
11:14:49.0536 5896 ================ Scan system memory ========================
11:14:49.0536 5896 System memory - ok
11:14:49.0537 5896 ================ Scan services =============================
11:14:49.0721 5896 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
11:14:49.0888 5896 ACPI - ok
11:14:50.0045 5896 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:14:50.0067 5896 AdobeARMservice - ok
11:14:50.0125 5896 [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:14:50.0150 5896 AdobeFlashPlayerUpdateSvc - ok
11:14:50.0191 5896 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:14:50.0252 5896 adp94xx - ok
11:14:50.0287 5896 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:14:50.0323 5896 adpahci - ok
11:14:50.0344 5896 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
11:14:50.0376 5896 adpu160m - ok
11:14:50.0399 5896 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:14:50.0431 5896 adpu320 - ok
11:14:50.0496 5896 [ 609A6F49B6AF0F25837F8A0EDDDB0745 ] ADSMService C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
11:14:50.0528 5896 ADSMService ( UnsignedFile.Multi.Generic ) - warning
11:14:50.0528 5896 ADSMService - detected UnsignedFile.Multi.Generic (1)
11:14:50.0555 5896 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:14:50.0612 5896 AeLookupSvc - ok
11:14:50.0651 5896 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
11:14:50.0684 5896 AFD - ok
11:14:50.0714 5896 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:14:50.0736 5896 agp440 - ok
11:14:50.0766 5896 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
11:14:50.0794 5896 aic78xx - ok
11:14:50.0815 5896 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
11:14:50.0859 5896 ALG - ok
11:14:50.0876 5896 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
11:14:50.0900 5896 aliide - ok
11:14:50.0925 5896 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:14:50.0948 5896 amdagp - ok
11:14:50.0969 5896 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
11:14:50.0990 5896 amdide - ok
11:14:51.0011 5896 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
11:14:51.0064 5896 AmdK7 - ok
11:14:51.0094 5896 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:14:51.0137 5896 AmdK8 - ok
11:14:51.0172 5896 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
11:14:51.0212 5896 Appinfo - ok
11:14:51.0280 5896 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:14:51.0302 5896 Apple Mobile Device - ok
11:14:51.0344 5896 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
11:14:51.0366 5896 arc - ok
11:14:51.0401 5896 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:14:51.0426 5896 arcsas - ok
11:14:51.0454 5896 [ 4385E371C25C94C804E9D3152BD9E1F7 ] AsDsm C:\Windows\system32\drivers\AsDsm.sys
11:14:51.0484 5896 AsDsm - ok
11:14:51.0513 5896 [ 5A055A4777CBBC8845DD598CB2EEBF69 ] ASLDRService C:\Program Files\ATK Hotkey\ASLDRSrv.exe
11:14:51.0535 5896 ASLDRService ( UnsignedFile.Multi.Generic ) - warning
11:14:51.0536 5896 ASLDRService - detected UnsignedFile.Multi.Generic (1)
11:14:51.0581 5896 [ 7B4D08D2017AC06689D422E06C43F0AA ] ASMMAP C:\Program Files\ATKGFNEX\ASMMAP.sys
11:14:51.0597 5896 ASMMAP - ok
11:14:51.0690 5896 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:14:51.0711 5896 aspnet_state - ok
11:14:51.0735 5896 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:14:51.0782 5896 AsyncMac - ok
11:14:51.0806 5896 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
11:14:51.0836 5896 atapi - ok
11:14:51.0895 5896 [ 2846F5EE802889D500FCF5CC48B28381 ] athr C:\Windows\system32\DRIVERS\athr.sys
11:14:51.0954 5896 athr - ok
11:14:51.0982 5896 [ 7C157574A181B19B9DCF5F339E25337E ] ATKGFNEXSrv C:\Program Files\ATKGFNEX\GFNEXSrv.exe
11:14:52.0010 5896 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - warning
11:14:52.0011 5896 ATKGFNEXSrv - detected UnsignedFile.Multi.Generic (1)
11:14:52.0054 5896 [ F0D933B42CD0594048E4D5200AE9E417 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
11:14:52.0080 5896 atksgt - ok
11:14:52.0112 5896 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:14:52.0165 5896 AudioEndpointBuilder - ok
11:14:52.0179 5896 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:14:52.0221 5896 Audiosrv - ok
11:14:52.0262 5896 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
11:14:52.0312 5896 Beep - ok
11:14:52.0353 5896 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
11:14:52.0426 5896 BFE - ok
11:14:52.0493 5896 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll
11:14:52.0648 5896 BITS - ok
11:14:52.0687 5896 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:14:52.0730 5896 blbdrive - ok
11:14:52.0796 5896 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:14:52.0825 5896 Bonjour Service - ok
11:14:52.0852 5896 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:14:52.0889 5896 bowser - ok
11:14:52.0922 5896 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
11:14:52.0969 5896 BrFiltLo - ok
11:14:52.0998 5896 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
11:14:53.0057 5896 BrFiltUp - ok
11:14:53.0099 5896 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
11:14:53.0149 5896 Browser - ok
11:14:53.0172 5896 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
11:14:53.0249 5896 Brserid - ok
11:14:53.0270 5896 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
11:14:53.0364 5896 BrSerWdm - ok
11:14:53.0427 5896 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
11:14:53.0557 5896 BrUsbMdm - ok
11:14:53.0593 5896 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
11:14:53.0695 5896 BrUsbSer - ok
11:14:53.0776 5896 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:14:53.0882 5896 BTHMODEM - ok
11:14:53.0910 5896 catchme - ok
11:14:53.0943 5896 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:14:54.0022 5896 cdfs - ok
11:14:54.0069 5896 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:14:54.0109 5896 cdrom - ok
11:14:54.0139 5896 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
11:14:54.0210 5896 CertPropSvc - ok
11:14:54.0250 5896 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
11:14:54.0317 5896 circlass - ok
11:14:54.0357 5896 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
11:14:54.0402 5896 CLFS - ok
11:14:54.0463 5896 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:14:54.0497 5896 clr_optimization_v2.0.50727_32 - ok
11:14:54.0526 5896 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:14:54.0578 5896 clr_optimization_v4.0.30319_32 - ok
11:14:54.0603 5896 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:14:54.0670 5896 CmBatt - ok
11:14:54.0707 5896 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:14:54.0738 5896 cmdide - ok
11:14:54.0823 5896 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:14:54.0848 5896 Compbatt - ok
11:14:54.0866 5896 COMSysApp - ok
11:14:54.0888 5896 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:14:54.0912 5896 crcdisk - ok
11:14:54.0935 5896 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
11:14:55.0006 5896 Crusoe - ok
11:14:55.0050 5896 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:14:55.0104 5896 CryptSvc - ok
11:14:55.0175 5896 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:14:55.0334 5896 DcomLaunch - ok
11:14:55.0389 5896 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:14:55.0436 5896 DfsC - ok
11:14:55.0537 5896 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
11:14:55.0829 5896 DFSR - ok
11:14:55.0869 5896 [ 3BE1651C63954067940E7F473498AD70 ] dgderdrv C:\Windows\system32\drivers\dgderdrv.sys
11:14:55.0891 5896 dgderdrv - ok
11:14:55.0922 5896 [ 10B8F89D146D0E20B1284D47BB4EC6C9 ] dgdersvc C:\Windows\system32\dgdersvc.exe
11:14:55.0971 5896 dgdersvc - ok
11:14:56.0017 5896 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
11:14:56.0085 5896 Dhcp - ok
11:14:56.0125 5896 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
11:14:56.0154 5896 disk - ok
11:14:56.0208 5896 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:14:56.0277 5896 Dnscache - ok
11:14:56.0315 5896 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:14:56.0385 5896 dot3svc - ok
11:14:56.0425 5896 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
11:14:56.0546 5896 DPS - ok
11:14:56.0589 5896 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:14:56.0643 5896 drmkaud - ok
11:14:56.0703 5896 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:14:56.0769 5896 DXGKrnl - ok
11:14:56.0835 5896 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
11:14:56.0903 5896 E1G60 - ok
11:14:56.0949 5896 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
11:14:57.0089 5896 EapHost - ok
11:14:57.0142 5896 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
11:14:57.0172 5896 Ecache - ok
11:14:57.0243 5896 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:14:57.0286 5896 ehRecvr - ok
11:14:57.0311 5896 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
11:14:57.0367 5896 ehSched - ok
11:14:57.0391 5896 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
11:14:57.0435 5896 ehstart - ok
11:14:57.0481 5896 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:14:57.0517 5896 elxstor - ok
11:14:57.0599 5896 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
11:14:57.0785 5896 EMDMgmt - ok
11:14:57.0822 5896 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:14:57.0893 5896 ErrDev - ok
11:14:57.0943 5896 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
11:14:58.0023 5896 EventSystem - ok
11:14:58.0063 5896 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
11:14:58.0112 5896 exfat - ok
11:14:58.0156 5896 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:14:58.0207 5896 fastfat - ok
11:14:58.0237 5896 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:14:58.0287 5896 fdc - ok
11:14:58.0325 5896 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
11:14:58.0427 5896 fdPHost - ok
11:14:58.0466 5896 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
11:14:58.0622 5896 FDResPub - ok
11:14:58.0656 5896 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:14:58.0691 5896 FileInfo - ok
11:14:58.0714 5896 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:14:58.0769 5896 Filetrace - ok
11:14:58.0867 5896 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:14:58.0911 5896 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
11:14:58.0911 5896 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
11:14:58.0945 5896 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:14:59.0007 5896 flpydisk - ok
11:14:59.0052 5896 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:14:59.0088 5896 FltMgr - ok
11:14:59.0170 5896 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
11:14:59.0267 5896 FontCache - ok
11:14:59.0326 5896 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:14:59.0351 5896 FontCache3.0.0.0 - ok
11:14:59.0383 5896 [ 574CEA4D3510EC905C0163C42D305BA5 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
11:14:59.0407 5896 fssfltr - ok
11:14:59.0490 5896 [ 9B1622EBEB31B3411B13382FFCB8737D ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
11:14:59.0552 5896 fsssvc - ok
11:14:59.0562 5896 FsUsbExDisk - ok
11:14:59.0615 5896 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:14:59.0644 5896 Fs_Rec - ok
11:14:59.0688 5896 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:14:59.0720 5896 gagp30kx - ok
11:14:59.0747 5896 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:14:59.0769 5896 GEARAspiWDM - ok
11:14:59.0812 5896 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
11:14:59.0913 5896 gpsvc - ok
11:14:59.0968 5896 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:00.0047 5896 HdAudAddService - ok
11:15:00.0099 5896 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:15:00.0185 5896 HDAudBus - ok
11:15:00.0222 5896 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:15:00.0296 5896 HidBth - ok
11:15:00.0330 5896 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
11:15:00.0414 5896 HidIr - ok
11:15:00.0458 5896 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll
11:15:00.0522 5896 hidserv - ok
11:15:00.0536 5896 [ 854CA287AB7FAF949617A788306D967E ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:15:00.0585 5896 HidUsb - ok
11:15:00.0617 5896 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:15:00.0717 5896 hkmsvc - ok
11:15:00.0744 5896 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
11:15:00.0773 5896 HpCISSs - ok
11:15:00.0810 5896 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:15:00.0865 5896 HTTP - ok
11:15:00.0899 5896 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
11:15:00.0925 5896 i2omp - ok
11:15:00.0947 5896 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:01.0004 5896 i8042prt - ok
11:15:01.0031 5896 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
11:15:01.0062 5896 iaStorV - ok
11:15:01.0110 5896 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:15:01.0122 5896 IDriverT ( UnsignedFile.Multi.Generic ) - warning
11:15:01.0122 5896 IDriverT - detected UnsignedFile.Multi.Generic (1)
11:15:01.0199 5896 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:15:01.0262 5896 idsvc - ok
11:15:01.0306 5896 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:15:01.0329 5896 iirsp - ok
11:15:01.0387 5896 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
11:15:01.0556 5896 IKEEXT - ok
11:15:01.0703 5896 [ 0557AAEE4C86E2C333ACD2BAF42A7619 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
11:15:01.0811 5896 IntcAzAudAddService - ok
11:15:01.0866 5896 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
11:15:01.0893 5896 intelide - ok
11:15:01.0912 5896 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:15:01.0979 5896 intelppm - ok
11:15:02.0009 5896 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:15:02.0091 5896 IPBusEnum - ok
11:15:02.0108 5896 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:02.0154 5896 IpFilterDriver - ok
11:15:02.0187 5896 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:15:02.0400 5896 iphlpsvc - ok
11:15:02.0409 5896 IpInIp - ok
11:15:02.0518 5896 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
11:15:02.0583 5896 IPMIDRV - ok
11:15:02.0603 5896 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
11:15:02.0711 5896 IPNAT - ok
11:15:02.0760 5896 [ E46B17060D3962A384AE484094614788 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:15:02.0801 5896 iPod Service - ok
11:15:02.0826 5896 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:15:02.0876 5896 IRENUM - ok
11:15:02.0914 5896 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:15:02.0950 5896 isapnp - ok
11:15:02.0985 5896 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
11:15:03.0017 5896 iScsiPrt - ok
11:15:03.0048 5896 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
11:15:03.0072 5896 iteatapi - ok
11:15:03.0092 5896 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
11:15:03.0115 5896 iteraid - ok
11:15:03.0134 5896 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:15:03.0159 5896 kbdclass - ok
11:15:03.0178 5896 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:15:03.0225 5896 kbdhid - ok
11:15:03.0256 5896 [ 27BD4AC228EF6C0D490617C32E86A672 ] kbfiltr C:\Windows\system32\DRIVERS\kbfiltr.sys
11:15:03.0276 5896 kbfiltr - ok
11:15:03.0316 5896 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
11:15:03.0398 5896 KeyIso - ok
11:15:03.0457 5896 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:15:03.0516 5896 KSecDD - ok
11:15:03.0581 5896 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
11:15:03.0758 5896 KtmRm - ok
11:15:03.0804 5896 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll
11:15:03.0974 5896 LanmanServer - ok
11:15:04.0034 5896 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:04.0225 5896 LanmanWorkstation - ok
11:15:04.0253 5896 [ F8A7212D0864EF5E9185FB95E6623F4D ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
11:15:04.0278 5896 lirsgt - ok
11:15:04.0314 5896 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:15:04.0384 5896 lltdio - ok
11:15:04.0424 5896 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:15:04.0524 5896 lltdsvc - ok
11:15:04.0546 5896 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:15:04.0667 5896 lmhosts - ok
11:15:04.0757 5896 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:15:04.0792 5896 LSI_FC - ok
11:15:04.0818 5896 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:15:04.0846 5896 LSI_SAS - ok
11:15:04.0885 5896 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:15:04.0932 5896 LSI_SCSI - ok
11:15:04.0980 5896 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
11:15:05.0056 5896 luafv - ok
11:15:05.0098 5896 [ 8039F480C192DD99FED4EBC71FFBF795 ] lullaby C:\Windows\system32\DRIVERS\lullaby.sys
11:15:05.0121 5896 lullaby - ok
11:15:05.0144 5896 [ C6D085C7045200143528136A43A65FDE ] ManyCam C:\Windows\system32\DRIVERS\ManyCam.sys
11:15:05.0212 5896 ManyCam - ok
11:15:05.0254 5896 [ 629CABB0421668C9D3D402A3C3D77E14 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
11:15:05.0292 5896 MBAMProtector - ok
11:15:05.0356 5896 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
11:15:05.0392 5896 MBAMScheduler - ok
11:15:05.0437 5896 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
11:15:05.0482 5896 MBAMService - ok
11:15:05.0549 5896 [ C226CE46CD17FCE6261A9DE406F01C8B ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
11:15:05.0582 5896 McAfee SiteAdvisor Service - ok
11:15:05.0625 5896 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:15:05.0797 5896 Mcx2Svc - ok
11:15:05.0850 5896 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
11:15:05.0877 5896 megasas - ok
11:15:05.0912 5896 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
11:15:05.0955 5896 MegaSR - ok
11:15:05.0986 5896 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
11:15:06.0181 5896 MMCSS - ok
11:15:06.0211 5896 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
11:15:06.0299 5896 Modem - ok
11:15:06.0355 5896 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:15:06.0414 5896 monitor - ok
11:15:06.0456 5896 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:15:06.0487 5896 mouclass - ok
11:15:06.0528 5896 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:15:06.0580 5896 mouhid - ok
11:15:06.0602 5896 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
11:15:06.0631 5896 MountMgr - ok
11:15:06.0675 5896 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:15:06.0706 5896 MozillaMaintenance - ok
11:15:06.0739 5896 [ 8D745200A0928743D9DF22258861A807 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
11:15:06.0796 5896 MpFilter - ok
11:15:06.0857 5896 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
11:15:06.0891 5896 mpio - ok
11:15:07.0017 5896 [ A69630D039C38018689190234F866D77 ] MpKsl5701e724 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E8AFB87C-3E54-499A-907F-93E55E7A16E1}\MpKsl5701e724.sys
11:15:07.0039 5896 MpKsl5701e724 - ok
11:15:07.0064 5896 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:15:07.0119 5896 mpsdrv - ok
11:15:07.0215 5896 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
11:15:07.0342 5896 MpsSvc - ok
11:15:07.0379 5896 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
11:15:07.0419 5896 Mraid35x - ok
11:15:07.0451 5896 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:15:07.0511 5896 MRxDAV - ok
11:15:07.0581 5896 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:07.0625 5896 mrxsmb - ok
11:15:07.0677 5896 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:07.0712 5896 mrxsmb10 - ok
11:15:07.0736 5896 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:07.0802 5896 mrxsmb20 - ok
11:15:07.0835 5896 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
11:15:07.0865 5896 msahci - ok
11:15:07.0916 5896 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:15:07.0947 5896 msdsm - ok
11:15:07.0977 5896 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
11:15:08.0131 5896 MSDTC - ok
11:15:08.0165 5896 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:15:08.0227 5896 Msfs - ok
11:15:08.0258 5896 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:15:08.0293 5896 msisadrv - ok
11:15:08.0330 5896 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:15:08.0436 5896 MSiSCSI - ok
11:15:08.0452 5896 msiserver - ok
11:15:08.0490 5896 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:15:08.0607 5896 MSKSSRV - ok
11:15:08.0817 5896 [ B15ECEAF5B36C6F9C1B3930A6C3DB1DE ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:15:08.0849 5896 MsMpSvc - ok
11:15:08.0889 5896 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:08.0940 5896 MSPCLOCK - ok
11:15:08.0965 5896 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:15:09.0018 5896 MSPQM - ok
11:15:09.0062 5896 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:15:09.0099 5896 MsRPC - ok
11:15:09.0164 5896 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
11:15:09.0195 5896 mssmbios - ok
11:15:09.0216 5896 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:15:09.0289 5896 MSTEE - ok
11:15:09.0328 5896 [ 97AFFA9D95FFE20EEE6229BC6BE166CF ] MTsensor C:\Windows\system32\DRIVERS\ATKACPI.sys
11:15:09.0365 5896 MTsensor - ok
11:15:09.0401 5896 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
11:15:09.0437 5896 Mup - ok
11:15:09.0488 5896 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
11:15:09.0631 5896 napagent - ok
11:15:09.0671 5896 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:15:09.0721 5896 NativeWifiP - ok
11:15:09.0913 5896 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:15:09.0970 5896 NDIS - ok
11:15:10.0014 5896 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:10.0063 5896 NdisTapi - ok
11:15:10.0089 5896 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:10.0145 5896 Ndisuio - ok
11:15:10.0177 5896 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:10.0250 5896 NdisWan - ok
11:15:10.0270 5896 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:15:10.0319 5896 NDProxy - ok
11:15:10.0358 5896 [ 1352E1648213551923A0A822E441553C ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys
11:15:10.0404 5896 Netaapl - ok
11:15:10.0429 5896 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:15:10.0485 5896 NetBIOS - ok
11:15:10.0618 5896 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
11:15:10.0698 5896 netbt - ok
11:15:10.0727 5896 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
11:15:10.0830 5896 Netlogon - ok
11:15:10.0879 5896 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
11:15:11.0040 5896 Netman - ok
11:15:11.0152 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0203 5896 NetMsmqActivator - ok
11:15:11.0222 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0260 5896 NetPipeActivator - ok
11:15:11.0299 5896 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
11:15:11.0498 5896 netprofm - ok
11:15:11.0510 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0662 5896 NetTcpActivator - ok
11:15:11.0746 5896 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:11.0780 5896 NetTcpPortSharing - ok
11:15:11.0835 5896 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:15:11.0865 5896 nfrd960 - ok
11:15:11.0893 5896 [ ECA329684BDE55E3939F73B25E5CFC86 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:15:11.0930 5896 NisDrv - ok
11:15:11.0964 5896 [ 0579ACAB3764CBFBE92E53C5F04E2A0D ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
11:15:12.0031 5896 NisSrv - ok
11:15:12.0073 5896 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:15:12.0234 5896 NlaSvc - ok
11:15:12.0311 5896 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:15:12.0427 5896 Npfs - ok
11:15:12.0487 5896 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
11:15:12.0664 5896 nsi - ok
11:15:12.0727 5896 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:15:12.0812 5896 nsiproxy - ok
11:15:12.0930 5896 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:15:13.0174 5896 Ntfs - ok
11:15:13.0240 5896 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
11:15:13.0333 5896 ntrigdigi - ok
11:15:13.0343 5896 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
11:15:13.0396 5896 Null - ok
11:15:13.0781 5896 [ 5CE5B23855262ACABAECCE156F48DD88 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:14.0446 5896 nvlddmkm - ok
11:15:14.0516 5896 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:15:14.0552 5896 nvraid - ok
11:15:14.0586 5896 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:15:14.0615 5896 nvstor - ok
11:15:14.0659 5896 [ 6DF4CC671CD9704840C5522627F3ED43 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:15:14.0825 5896 nvsvc - ok
11:15:14.0848 5896 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:15:14.0891 5896 nv_agp - ok
11:15:14.0915 5896 NwlnkFlt - ok
11:15:14.0927 5896 NwlnkFwd - ok
11:15:15.0024 5896 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:15:15.0180 5896 odserv - ok
11:15:15.0238 5896 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
11:15:15.0309 5896 ohci1394 - ok
11:15:15.0359 5896 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:15:15.0388 5896 ose - ok
11:15:15.0453 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
11:15:15.0714 5896 p2pimsvc - ok
11:15:15.0738 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
11:15:16.0028 5896 p2psvc - ok
11:15:16.0073 5896 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
11:15:16.0242 5896 Parport - ok
11:15:16.0344 5896 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:15:16.0401 5896 partmgr - ok
11:15:16.0418 5896 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
11:15:16.0630 5896 Parvdm - ok
11:15:16.0748 5896 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
11:15:16.0926 5896 PcaSvc - ok
11:15:16.0937 5896 pccsmcfd - ok
11:15:16.0988 5896 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
11:15:17.0041 5896 pci - ok
11:15:17.0065 5896 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
11:15:17.0112 5896 pciide - ok
11:15:17.0158 5896 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:15:17.0193 5896 pcmcia - ok
11:15:17.0265 5896 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:15:17.0391 5896 PEAUTH - ok
11:15:17.0599 5896 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
11:15:17.0835 5896 pla - ok
11:15:17.0872 5896 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:15:18.0016 5896 PlugPlay - ok
11:15:18.0055 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
11:15:18.0205 5896 PNRPAutoReg - ok
11:15:18.0226 5896 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
11:15:18.0355 5896 PNRPsvc - ok
11:15:18.0400 5896 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:15:18.0538 5896 PolicyAgent - ok
11:15:18.0591 5896 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:15:18.0659 5896 PptpMiniport - ok
11:15:18.0681 5896 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
11:15:18.0737 5896 Processor - ok
11:15:18.0773 5896 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
11:15:18.0936 5896 ProfSvc - ok
11:15:18.0961 5896 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
11:15:19.0060 5896 ProtectedStorage - ok
11:15:19.0124 5896 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
11:15:19.0188 5896 PSched - ok
11:15:19.0264 5896 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:15:19.0477 5896 ql2300 - ok
11:15:19.0555 5896 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:15:19.0591 5896 ql40xx - ok
11:15:19.0654 5896 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
11:15:19.0798 5896 QWAVE - ok
11:15:19.0875 5896 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:15:19.0943 5896 QWAVEdrv - ok
11:15:20.0014 5896 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
11:15:20.0054 5896 RapiMgr - ok
11:15:20.0071 5896 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:15:20.0136 5896 RasAcd - ok
11:15:20.0170 5896 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
11:15:20.0377 5896 RasAuto - ok
11:15:20.0428 5896 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:20.0513 5896 Rasl2tp - ok
11:15:20.0628 5896 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
11:15:20.0782 5896 RasMan - ok
11:15:20.0901 5896 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:20.0950 5896 RasPppoe - ok
11:15:20.0978 5896 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:15:21.0033 5896 RasSstp - ok
11:15:21.0063 5896 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:15:21.0122 5896 rdbss - ok
11:15:21.0156 5896 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:21.0211 5896 RDPCDD - ok
11:15:21.0244 5896 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
11:15:21.0303 5896 rdpdr - ok
11:15:21.0313 5896 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:15:21.0366 5896 RDPENCDD - ok
11:15:21.0406 5896 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:15:21.0453 5896 RDPWD - ok
11:15:21.0493 5896 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:15:21.0618 5896 RemoteAccess - ok
11:15:21.0650 5896 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:15:21.0784 5896 RemoteRegistry - ok
11:15:21.0830 5896 [ C35CA13D3627EBD9DD12A23CE781BC3D ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
11:15:21.0899 5896 rimmptsk - ok
11:15:21.0932 5896 [ C398BCA91216755B098679A8DA8A2300 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
11:15:21.0965 5896 rimsptsk - ok
11:15:21.0977 5896 [ 2A2554CB24506E0A0508FC395C4A1B42 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
11:15:22.0021 5896 rismxdp - ok
11:15:22.0049 5896 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
11:15:22.0150 5896 RpcLocator - ok
11:15:22.0235 5896 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
11:15:22.0412 5896 RpcSs - ok
11:15:22.0456 5896 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:15:22.0615 5896 rspndr - ok
11:15:22.0639 5896 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
11:15:22.0737 5896 SamSs - ok
11:15:22.0755 5896 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:15:22.0789 5896 sbp2port - ok
11:15:22.0830 5896 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:15:22.0990 5896 SCardSvr - ok
11:15:23.0060 5896 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
11:15:23.0236 5896 Schedule - ok
11:15:23.0262 5896 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:15:23.0317 5896 SCPolicySvc - ok
11:15:23.0369 5896 [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:15:23.0425 5896 sdbus - ok
11:15:23.0467 5896 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:15:23.0617 5896 SDRSVC - ok
11:15:23.0642 5896 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:15:23.0760 5896 secdrv - ok
11:15:23.0800 5896 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
11:15:23.0969 5896 seclogon - ok
11:15:24.0005 5896 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll
11:15:24.0185 5896 SENS - ok
11:15:24.0211 5896 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
11:15:24.0327 5896 Serenum - ok
11:15:24.0470 5896 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
11:15:24.0573 5896 Serial - ok
11:15:24.0602 5896 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:15:24.0694 5896 sermouse - ok
11:15:24.0752 5896 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
11:15:24.0912 5896 SessionEnv - ok
11:15:24.0936 5896 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
11:15:24.0984 5896 sffdisk - ok
11:15:25.0002 5896 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:15:25.0056 5896 sffp_mmc - ok
11:15:25.0092 5896 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
11:15:25.0148 5896 sffp_sd - ok
11:15:25.0177 5896 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:15:25.0246 5896 sfloppy - ok
11:15:25.0279 5896 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:15:25.0381 5896 SharedAccess - ok
11:15:25.0425 5896 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:15:25.0561 5896 ShellHWDetection - ok
11:15:25.0623 5896 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:15:25.0654 5896 sisagp - ok
11:15:25.0691 5896 [ 73838461F11FC7DAEE7922C945B2D74F ] SiSGbeLH C:\Windows\system32\DRIVERS\SiSGB6.sys
11:15:25.0723 5896 SiSGbeLH - ok
11:15:25.0753 5896 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
11:15:25.0787 5896 SiSRaid2 - ok
11:15:25.0810 5896 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:15:25.0843 5896 SiSRaid4 - ok
11:15:25.0979 5896 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
11:15:26.0330 5896 slsvc - ok
11:15:26.0369 5896 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
11:15:26.0536 5896 SLUINotify - ok
11:15:26.0576 5896 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:15:26.0622 5896 Smb - ok
11:15:26.0682 5896 [ C8A58FC905C9184FA70E37F71060C64D ] smserial C:\Windows\system32\DRIVERS\smserial.sys
11:15:26.0824 5896 smserial - ok
11:15:26.0874 5896 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:15:26.0994 5896 SNMPTRAP - ok
11:15:27.0071 5896 [ A709DFA1674C1ED61EF7B5F29B38EEB1 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys
11:15:27.0182 5896 SNP2UVC - ok
11:15:27.0210 5896 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
11:15:27.0245 5896 spldr - ok
11:15:27.0270 5896 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
11:15:27.0398 5896 Spooler - ok
11:15:27.0451 5896 [ A80CD850D69D996C832BEA37E3A6AA1E ] sptd C:\Windows\system32\Drivers\sptd.sys
11:15:27.0465 5896 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: A80CD850D69D996C832BEA37E3A6AA1E
11:15:27.0472 5896 sptd ( LockedFile.Multi.Generic ) - warning
11:15:27.0472 5896 sptd - detected LockedFile.Multi.Generic (1)
11:15:27.0550 5896 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:15:27.0606 5896 srv - ok
11:15:27.0628 5896 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:15:27.0709 5896 srv2 - ok
11:15:27.0736 5896 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:15:27.0777 5896 srvnet - ok
11:15:27.0806 5896 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:15:27.0964 5896 SSDPSRV - ok
11:15:28.0014 5896 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:15:28.0166 5896 SstpSvc - ok
11:15:28.0199 5896 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
11:15:28.0376 5896 stisvc - ok
11:15:28.0406 5896 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
11:15:28.0440 5896 swenum - ok
11:15:28.0490 5896 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
11:15:28.0745 5896 swprv - ok
11:15:28.0776 5896 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
11:15:28.0831 5896 Symc8xx - ok
11:15:28.0866 5896 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
11:15:28.0895 5896 Sym_hi - ok
11:15:28.0932 5896 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
11:15:28.0961 5896 Sym_u3 - ok
11:15:29.0004 5896 [ 55F6E55CC2430CA8713387106FA79817 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:15:29.0035 5896 SynTP - ok
11:15:29.0085 5896 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
11:15:29.0309 5896 SysMain - ok
11:15:29.0365 5896 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:15:29.0494 5896 TabletInputService - ok
11:15:29.0633 5896 [ 0C3B2A9C4BD2DD9A6C2E4084314DD719 ] taphss C:\Windows\system32\DRIVERS\taphss.sys
11:15:29.0660 5896 taphss - ok
11:15:29.0752 5896 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:15:29.0908 5896 TapiSrv - ok
11:15:29.0940 5896 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
11:15:30.0091 5896 TBS - ok
11:15:30.0188 5896 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:15:30.0305 5896 Tcpip - ok
11:15:30.0346 5896 [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
11:15:30.0412 5896 Tcpip6 - ok
11:15:30.0450 5896 [ CD21572F83F7EC6E2C20C465967BEDD9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:15:30.0499 5896 tcpipreg - ok
11:15:30.0533 5896 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:15:30.0597 5896 TDPIPE - ok
11:15:30.0617 5896 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:15:30.0678 5896 TDTCP - ok
11:15:30.0722 5896 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:15:30.0773 5896 tdx - ok
11:15:30.0790 5896 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
11:15:30.0830 5896 TermDD - ok
11:15:30.0877 5896 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
11:15:31.0070 5896 TermService - ok
11:15:31.0113 5896 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
11:15:31.0242 5896 Themes - ok
11:15:31.0309 5896 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
11:15:31.0418 5896 THREADORDER - ok
11:15:31.0524 5896 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
11:15:31.0671 5896 TrkWks - ok
11:15:31.0720 5896 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:15:31.0767 5896 TrustedInstaller - ok
11:15:31.0808 5896 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:15:31.0860 5896 tssecsrv - ok
11:15:31.0878 5896 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
11:15:31.0926 5896 tunmp - ok
11:15:31.0949 5896 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:15:31.0995 5896 tunnel - ok
11:15:32.0020 5896 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:15:32.0050 5896 uagp35 - ok
11:15:32.0082 5896 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:15:32.0130 5896 udfs - ok
11:15:32.0177 5896 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:15:32.0317 5896 UI0Detect - ok
11:15:32.0427 5896 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:15:32.0458 5896 uliagpkx - ok
11:15:32.0496 5896 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
11:15:32.0537 5896 uliahci - ok
11:15:32.0555 5896 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
11:15:32.0585 5896 UlSata - ok
11:15:32.0603 5896 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
11:15:32.0634 5896 ulsata2 - ok
11:15:32.0658 5896 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:15:32.0716 5896 umbus - ok
11:15:32.0736 5896 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
11:15:32.0882 5896 upnphost - ok
11:15:32.0913 5896 [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
11:15:32.0947 5896 USBAAPL - ok
11:15:32.0979 5896 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:15:33.0023 5896 usbccgp - ok
11:15:33.0065 5896 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:15:33.0151 5896 usbcir - ok
11:15:33.0184 5896 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
11:15:33.0227 5896 usbehci - ok
11:15:33.0250 5896 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:15:33.0296 5896 usbhub - ok
11:15:33.0325 5896 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
11:15:33.0387 5896 usbohci - ok
11:15:33.0419 5896 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:15:33.0480 5896 usbprint - ok
11:15:33.0521 5896 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:15:33.0564 5896 usbscan - ok
11:15:33.0592 5896 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:15:33.0651 5896 USBSTOR - ok
11:15:33.0684 5896 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
11:15:33.0744 5896 usbuhci - ok
11:15:33.0770 5896 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:15:33.0823 5896 usbvideo - ok
11:15:33.0848 5896 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
11:15:33.0981 5896 UxSms - ok
11:15:34.0020 5896 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
11:15:34.0175 5896 vds - ok
11:15:34.0190 5896 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:15:34.0241 5896 vga - ok
11:15:34.0259 5896 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
11:15:34.0328 5896 VgaSave - ok
11:15:34.0354 5896 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:15:34.0387 5896 viaagp - ok
11:15:34.0428 5896 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
11:15:34.0480 5896 ViaC7 - ok
11:15:34.0498 5896 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
11:15:34.0535 5896 viaide - ok
11:15:34.0560 5896 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:15:34.0591 5896 volmgr - ok
11:15:34.0635 5896 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:15:34.0676 5896 volmgrx - ok
11:15:34.0726 5896 [ 786DB5771F05EF300390399F626BF30A ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:15:34.0762 5896 volsnap - ok
11:15:34.0792 5896 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:15:34.0825 5896 vsmraid - ok
11:15:34.0876 5896 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
11:15:35.0122 5896 VSS - ok
11:15:35.0159 5896 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
11:15:35.0298 5896 W32Time - ok
11:15:35.0415 5896 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:15:35.0517 5896 WacomPen - ok
11:15:35.0555 5896 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
11:15:35.0617 5896 Wanarp - ok
11:15:35.0634 5896 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:15:35.0692 5896 Wanarpv6 - ok
11:15:35.0731 5896 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
11:15:35.0793 5896 WcesComm - ok
11:15:35.0840 5896 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:15:36.0041 5896 wcncsvc - ok
11:15:36.0084 5896 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:15:36.0243 5896 WcsPlugInService - ok
11:15:36.0309 5896 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
11:15:36.0344 5896 Wd - ok
11:15:36.0391 5896 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:15:36.0457 5896 Wdf01000 - ok
11:15:36.0496 5896 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:15:36.0661 5896 WdiServiceHost - ok
11:15:36.0668 5896 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:15:36.0823 5896 WdiSystemHost - ok
11:15:36.0919 5896 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
11:15:37.0072 5896 WebClient - ok
11:15:37.0114 5896 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:15:37.0254 5896 Wecsvc - ok
11:15:37.0294 5896 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:15:37.0439 5896 wercplsupport - ok
11:15:37.0506 5896 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
11:15:37.0649 5896 WerSvc - ok
11:15:37.0749 5896 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:15:37.0779 5896 WinDefend - ok
11:15:37.0797 5896 WinHttpAutoProxySvc - ok
11:15:37.0860 5896 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:15:37.0919 5896 Winmgmt - ok
11:15:38.0004 5896 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
11:15:38.0173 5896 WinRM - ok
11:15:38.0245 5896 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS
11:15:38.0282 5896 winusb - ok
11:15:38.0332 5896 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:15:38.0537 5896 Wlansvc - ok
11:15:38.0642 5896 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:15:38.0712 5896 wlidsvc - ok
11:15:38.0763 5896 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
11:15:38.0820 5896 WmiAcpi - ok
11:15:38.0863 5896 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:15:38.0929 5896 wmiApSrv - ok
11:15:39.0015 5896 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:15:39.0082 5896 WMPNetworkSvc - ok
11:15:39.0128 5896 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:15:39.0296 5896 WPCSvc - ok
11:15:39.0334 5896 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:15:39.0474 5896 WPDBusEnum - ok
11:15:39.0513 5896 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
11:15:39.0548 5896 WpdUsb - ok
11:15:39.0665 5896 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:15:39.0708 5896 WPFFontCache_v0400 - ok
11:15:39.0734 5896 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:15:39.0788 5896 ws2ifsl - ok
11:15:39.0825 5896 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll
11:15:39.0991 5896 wscsvc - ok
11:15:40.0002 5896 WSearch - ok
11:15:40.0091 5896 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:15:40.0304 5896 wuauserv - ok
11:15:40.0355 5896 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:15:40.0408 5896 WudfPf - ok
11:15:40.0449 5896 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:15:40.0494 5896 WUDFRd - ok
11:15:40.0544 5896 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:15:40.0707 5896 wudfsvc - ok
11:15:40.0754 5896 [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
11:15:40.0843 5896 yukonwlh - ok
11:15:40.0866 5896 ================ Scan global ===============================
11:15:40.0898 5896 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
11:15:40.0939 5896 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:15:41.0077 5896 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
11:15:41.0315 5896 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
11:15:41.0426 5896 [Global] - ok
11:15:41.0433 5896 ============================================================
11:15:41.0433 5896 Scan finished
11:15:41.0433 5896 ============================================================
11:15:41.0460 6032 Detected object count: 6
11:15:41.0460 6032 Actual detected object count: 6
11:19:18.0006 6032 ADSMService ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0006 6032 ADSMService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0011 6032 ASLDRService ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0011 6032 ASLDRService ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0012 6032 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0012 6032 ATKGFNEXSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0017 6032 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0017 6032 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0021 6032 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
11:19:18.0021 6032 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:19:18.0026 6032 sptd ( LockedFile.Multi.Generic ) - skipped by user
11:19:18.0026 6032 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
|
|
11.03.2013, 11:33
| #2 |
  | Coupondropdown Hi,
__________________TDSS-Log ist ok... Bitte noch den Rest posten... chris
__________________ |
|
11.03.2013, 13:34
| #3 |
| | Coupondropdown mam lies er nicht druchlaufen und hat wieder den laptop neu gestartet!
__________________ |
|
11.03.2013, 15:27
| #4 |
| | Coupondropdown Hi, gab es eine Meldung oder Bluescreen (wenn ja, welche DLL/Treiber). Prüfe die Ereignisanzeige (Systemsteuerung -> Verwaltung -> Computerverwaltung), dort unter System... http://windows.microsoft.com/de-de/w...n-event-viewer Poste noch das Log von der Bootblockprüfung (aswMBR)... chris
__________________  Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden  ) |
|
11.03.2013, 16:59
| #5 | |
| | CoupondropdownZitat:
was soll ich bei der Ereignisanzeige posten? |
|
11.03.2013, 20:08
| #6 |
| | Coupondropdown das kommt beim quickscan vom aswMBR |
|
11.03.2013, 23:41
| #7 |
| | CoupondropdownCode:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.03.10.05 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 ASUS :: FUXI [Administrator] 11.03.2013 21:37:41 mbam-log-2013-03-11 (21-37-41).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 383698 Laufzeit: 2 Stunde(n), 2 Minute(n), 12 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
13.03.2013, 11:59
| #8 |
| | Coupondropdown Hm, hast Du aswmbr als Admin laufen lassen? Gut, versuchen wir mit einem anderen Tool dem Bootblock zuleibe zu rücken: MBR-Check Lade Dir http://ad13.geekstogo.com/MBRCheck.exe und speichere die Datei auf dem Desktop.
Aus der Ereignisanzeige die Fehlermeldungen posten... chris
__________________ Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden ) |
|
13.03.2013, 17:58
| #9 |
| | Coupondropdown ich kann das programm nur als Admin laufen lassen. MBR-Check Code:
ATTFilter MBRCheck, version 1.2.3
(c) 2010, AD
Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: PEGATRON CORPORATION
BIOS Manufacturer: American Megatrends Inc.
System Manufacturer: ASUSTeK Computer Inc.
System Product Name: X71SL
Logical Drives Mask: 0x0000001c
Kernel Drivers (total 156):
0x82848000 \SystemRoot\system32\ntkrnlpa.exe
0x82815000 \SystemRoot\system32\hal.dll
0x8040B000 \SystemRoot\system32\kdcom.dll
0x80412000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x80482000 \SystemRoot\system32\PSHED.dll
0x80493000 \SystemRoot\system32\BOOTVID.dll
0x8049B000 \SystemRoot\system32\CLFS.SYS
0x804DC000 \SystemRoot\system32\CI.dll
0x8060D000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8068E000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x8069C000 \SystemRoot\System32\Drivers\sppu.sys
0x8079D000 \SystemRoot\System32\Drivers\WMILIB.SYS
0x807A6000 \SystemRoot\System32\Drivers\SCSIPORT.SYS
0x82E0F000 \SystemRoot\system32\drivers\acpi.sys
0x82E55000 \SystemRoot\system32\drivers\msisadrv.sys
0x82E5D000 \SystemRoot\system32\drivers\pci.sys
0x82E84000 \SystemRoot\System32\drivers\partmgr.sys
0x82E94000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x82E97000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x82EA1000 \SystemRoot\system32\drivers\volmgr.sys
0x82EB0000 \SystemRoot\System32\drivers\volmgrx.sys
0x82EFA000 \SystemRoot\system32\drivers\pciide.sys
0x82F01000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x82F0F000 \SystemRoot\System32\drivers\mountmgr.sys
0x82F1F000 \SystemRoot\system32\drivers\atapi.sys
0x82F27000 \SystemRoot\system32\drivers\ataport.SYS
0x82F45000 \SystemRoot\system32\drivers\fltmgr.sys
0x82F77000 \SystemRoot\system32\drivers\fileinfo.sys
0x82F87000 \SystemRoot\system32\DRIVERS\MpFilter.sys
0x82FAF000 \SystemRoot\System32\Drivers\AsDsm.sys
0x82FB9000 \SystemRoot\system32\DRIVERS\lullaby.sys
0x8AA0F000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8AA81000 \SystemRoot\system32\drivers\ndis.sys
0x8AB8C000 \SystemRoot\system32\drivers\msrpc.sys
0x8ABB7000 \SystemRoot\system32\drivers\NETIO.SYS
0x8AC0F000 \SystemRoot\System32\drivers\tcpip.sys
0x8ACFC000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8AE05000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8AF15000 \SystemRoot\system32\drivers\volsnap.sys
0x8AF4E000 \SystemRoot\System32\Drivers\spldr.sys
0x8AF56000 \SystemRoot\System32\Drivers\mup.sys
0x8AF65000 \SystemRoot\System32\drivers\ecache.sys
0x8AF8C000 \SystemRoot\system32\drivers\disk.sys
0x8AF9D000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x8AFBE000 \SystemRoot\system32\drivers\crcdisk.sys
0x8AFE7000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8AFF2000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8AD17000 \SystemRoot\system32\DRIVERS\ATKACPI.sys
0x8AD1F000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x8F803000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x90159000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x9015B000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8AD2E000 \SystemRoot\System32\drivers\watchdog.sys
0x8AD3A000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8AD4D000 \SystemRoot\system32\DRIVERS\kbfiltr.sys
0x8AD55000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8AD60000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x901FB000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8AD8F000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8AD9A000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x8ADA4000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8ADE2000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x82FC1000 \SystemRoot\system32\DRIVERS\SiSGB6.sys
0x82FD1000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8ADF1000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x90200000 \SystemRoot\system32\DRIVERS\athr.sys
0x90325000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x90335000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x90343000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x9035D000 \SystemRoot\system32\DRIVERS\rimmptsk.sys
0x9036E000 \SystemRoot\system32\DRIVERS\rimsptsk.sys
0x90382000 \SystemRoot\system32\DRIVERS\rixdptsk.sys
0x9060D000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x9069A000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x9069E000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x906CD000 \SystemRoot\system32\DRIVERS\storport.sys
0x9070E000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x90719000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x90730000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x9073B000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x9075E000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x9076D000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x90781000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x90796000 \SystemRoot\system32\DRIVERS\termdd.sys
0x907A6000 \SystemRoot\system32\DRIVERS\swenum.sys
0x907A8000 \SystemRoot\system32\DRIVERS\ks.sys
0x907D2000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x907E5000 \SystemRoot\system32\DRIVERS\umbus.sys
0x805BC000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x903D4000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x90A0D000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x90C1B000 \SystemRoot\system32\drivers\portcls.sys
0x90C48000 \SystemRoot\system32\drivers\drmk.sys
0x90E0D000 \SystemRoot\system32\DRIVERS\snp2uvc.sys
0x90FBE000 \SystemRoot\system32\DRIVERS\STREAM.SYS
0x90FCB000 \SystemRoot\system32\DRIVERS\sncduvc.SYS
0x90FD2000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x90FDB000 \SystemRoot\System32\Drivers\Null.SYS
0x90FE2000 \SystemRoot\System32\Drivers\Beep.SYS
0x90FE9000 \SystemRoot\System32\drivers\vga.sys
0x90C6D000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x90FF5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x90E00000 \SystemRoot\system32\drivers\rdpencdd.sys
0x90C8E000 \SystemRoot\System32\Drivers\Msfs.SYS
0x90C99000 \SystemRoot\System32\Drivers\Npfs.SYS
0x90CA7000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x90CB0000 \SystemRoot\system32\DRIVERS\tdx.sys
0x90CC6000 \SystemRoot\system32\DRIVERS\smb.sys
0x90CDA000 \SystemRoot\system32\drivers\afd.sys
0x90D22000 \SystemRoot\System32\DRIVERS\netbt.sys
0x90D54000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x90D5D000 \SystemRoot\system32\DRIVERS\pacer.sys
0x90D73000 \SystemRoot\system32\DRIVERS\netbios.sys
0x90D81000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x90D94000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x90DD0000 \SystemRoot\system32\drivers\nsiproxy.sys
0x90DDA000 \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E8AFB87C-3E54-499A-907F-93E55E7A16E1}\MpKsl5701e724.sys
0x90DE0000 \SystemRoot\System32\Drivers\dfsc.sys
0x90A00000 \SystemRoot\System32\Drivers\crashdmp.sys
0x907F2000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x90DF7000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x9B620000 \SystemRoot\System32\win32k.sys
0x90600000 \SystemRoot\System32\drivers\Dxapi.sys
0x9B840000 \SystemRoot\System32\TSDDD.dll
0x9B860000 \SystemRoot\System32\cdd.dll
0x9B870000 \SystemRoot\System32\ATMFD.DLL
0x8AFC7000 \SystemRoot\system32\drivers\luafv.sys
0x90E08000 \??\C:\Windows\system32\drivers\mbam.sys
0x82FE9000 \SystemRoot\system32\drivers\WudfPf.sys
0xA2E04000 \SystemRoot\system32\drivers\spsys.sys
0xA2EB4000 \SystemRoot\system32\DRIVERS\lltdio.sys
0xA2EC4000 \SystemRoot\system32\DRIVERS\nwifi.sys
0xA2EEE000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xA2EF8000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xA2F0B000 \??\C:\Program Files\ATKGFNEX\ASMMAP.sys
0xA2F12000 \SystemRoot\system32\DRIVERS\asyncmac.sys
0xA2F1B000 \SystemRoot\system32\drivers\HTTP.sys
0xA2F88000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xA2FA5000 \SystemRoot\system32\DRIVERS\bowser.sys
0xA2FBE000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA2FD3000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xA5006000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xA503F000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xA5057000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA507F000 \SystemRoot\System32\DRIVERS\srv.sys
0xA50CE000 \SystemRoot\system32\DRIVERS\atksgt.sys
0xA5111000 \SystemRoot\system32\DRIVERS\lirsgt.sys
0xA5116000 \SystemRoot\system32\DRIVERS\NisDrvWFP.sys
0xA5A0E000 \SystemRoot\system32\drivers\peauth.sys
0xA5AEC000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA5AF6000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA5B02000 \SystemRoot\System32\drivers\dgderdrv.sys
0xA5B0B000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xA5B21000 \??\C:\Users\ASUS\AppData\Local\Temp\aswMBR.sys
0xA5B99000 \SystemRoot\system32\DRIVERS\monitor.sys
0x778F0000 \Windows\System32\ntdll.dll
Processes (total 88):
0 System Idle Process
4 System
480 C:\Windows\System32\smss.exe
612 csrss.exe
664 C:\Windows\System32\wininit.exe
676 csrss.exe
708 C:\Windows\System32\services.exe
740 C:\Windows\System32\lsass.exe
764 C:\Windows\System32\lsm.exe
892 C:\Windows\System32\svchost.exe
936 C:\Windows\System32\nvvsvc.exe
964 C:\Windows\System32\svchost.exe
1004 C:\Windows\System32\winlogon.exe
1036 C:\Program Files\Microsoft Security Client\MsMpEng.exe
1104 C:\Windows\System32\svchost.exe
1180 C:\Windows\System32\svchost.exe
1244 C:\Windows\System32\svchost.exe
1308 C:\Windows\System32\audiodg.exe
1332 C:\Windows\System32\svchost.exe
1352 C:\Windows\System32\SLsvc.exe
1420 C:\Windows\System32\nvvsvc.exe
1468 C:\Windows\System32\svchost.exe
1648 C:\Windows\System32\svchost.exe
1764 C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
1780 C:\Program Files\ATK Hotkey\AsLdrSrv.exe
1792 C:\Program Files\ATKGFNEX\GFNEXSrv.exe
1828 C:\Windows\System32\wlanext.exe
1900 C:\Windows\System32\spoolsv.exe
1948 C:\Windows\System32\svchost.exe
424 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
620 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1576 C:\Program Files\Bonjour\mDNSResponder.exe
1684 C:\Windows\System32\dgdersvc.exe
1456 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
2056 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
2072 C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe
2120 C:\Windows\System32\svchost.exe
2148 C:\Windows\System32\rundll32.exe
2168 C:\Windows\System32\svchost.exe
2220 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
2564 C:\Windows\System32\taskeng.exe
2768 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
3536 C:\Windows\System32\svchost.exe
3580 C:\Windows\System32\svchost.exe
3612 C:\Program Files\Windows Media Player\wmpnetwk.exe
2640 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
2860 C:\Windows\System32\dwm.exe
160 C:\Windows\explorer.exe
2952 C:\Program Files\ATK Hotkey\HControl.exe
816 C:\Program Files\ATK Hotkey\MsgTranAgt.exe
3104 C:\Program Files\Wireless Console 2\wcourier.exe
3008 C:\Program Files\ASUS\ASUS CopyProtect\ASPG.exe
2948 C:\Program Files\P4G\BatteryLife.exe
2976 C:\Program Files\ASUS\Splendid\ACMON.exe
2700 ACEngSvr.exe
2844 C:\Program Files\ATK Hotkey\ATKOSD.exe
3168 C:\Program Files\ATK Hotkey\KBFiltr.exe
3280 C:\Program Files\ATK Hotkey\WDC.exe
3288 C:\Windows\System32\taskeng.exe
2248 C:\Windows\System32\taskeng.exe
3600 C:\Program Files\ASUS\ASUS Live Update\ALU.exe
3664 C:\Program Files\ASUS\SmartLogon\sensorsrv.exe
3496 C:\Program Files\ATK Hotkey\HControlUser.exe
2336 C:\Program Files\ATKOSD2\ATKOSD2.exe
2676 C:\Windows\RtHDVCpl.exe
3544 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3384 C:\Program Files\ASUS\ATK Media\DMedia.exe
1608 C:\Program Files\Microsoft Security Client\msseces.exe
3956 C:\Windows\WindowsMobile\wmdc.exe
3716 C:\Program Files\iTunes\iTunesHelper.exe
3352 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
1604 C:\Program Files\Common Files\Java\Java Update\jusched.exe
3252 C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe
4008 C:\Users\ASUS\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
832 C:\Windows\System32\wuauclt.exe
2904 C:\Program Files\iPod\bin\iPodService.exe
3532 C:\Program Files\Mozilla Firefox\firefox.exe
2836 C:\Program Files\Mozilla Firefox\plugin-container.exe
4508 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
5128 C:\Program Files\McAfee\SiteAdvisor\saUI.exe
2972 C:\Program Files\Mozilla Firefox\plugin-container.exe
4936 C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
4576 C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_6_602_180.exe
4152 C:\Program Files\Windows Media Player\wmpnscfg.exe
5088 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
4840 C:\Program Files\Mozilla Firefox\plugin-container.exe
4732 C:\Users\ASUS\Desktop\MBRCheck.exe
3924 C:\Windows\System32\conime.exe
\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x0000002c`b6d00000 (NTFS)
PhysicalDrive0 Model Number: HitachiHTS543232L9A300, Rev: FB4OC40C
Size Device Name MBR Status
--------------------------------------------
298 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979
Done!
|
|
14.03.2013, 08:46
| #10 |
| | Coupondropdown Hi, ist i. O. Eine Datei sollten wir uns näher ansehen: Dateien Online überprüfen lassen:
Code:
ATTFilter C:\Windows\System32\dgdersvc.exe
chris
__________________ Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden ) |
|
14.03.2013, 11:18
| #11 |
| | Coupondropdown werbung |
|
14.03.2013, 15:27
| #12 |
| | Coupondropdown Hi, wenn du Firefox mit deaktivierten Addons startet, kommen die Popups nicht, richtig? Dann ist eines deiner Addons dafür verantwortlich. Brauchst Du Deine Lesezeichen? Wenn ja wie folgt vorgehen, sonst bei 2 weiter: (1) Lesezeichen als HTML exportieren: Export Firefox bookmarks to an HTML file to back up or transfer bookmarks | Firefox Help, merke Dir den Dateinamen und wo Du die Datei abgespeichert hast. (2) Danach Firefox komplett deinstallieren Firefox deinstallieren | Hilfe zu Firefox, wichtig dabei das Häkchen bei Eigene Daten und Anpassungen entfernen zu machen, sonst funktioniert es nicht richtig (bzw. Du hast das Addon mit der Werbung wieder)... (3) Firefox neu runterladen Webbrowser Firefox auf Deutsch | Schneller, sicherer und anpassbar und installieren. (4) Folgende Addons installieren: "WOT" (http://filepony.de/?q=WOT) und "NoScript" (http://filepony.de/download-noscript//) (5) Falls Du die Lesezeichen wieder importieren möchtest Export Firefox bookmarks to an HTML file to back up or transfer bookmarks | Firefox Help, diesmal aber "Lesezeichen von HTML importieren", dazu die unter (1) gesicherten Lesezeichen angeben (Name und Pfad den Du Dir gemerkt hast). Falls gewünscht, die Addons nachinstallieren die du wirklich brauchst, nach jeder Installation den Firefox neu starten und auf Werbeeinblendungen prüfen. Falls die Werbung wieder kommt, das zuletzt installierte Addon umgehend wieder deinstallieren! So, kommen wir nun zum Updateproblem. Microsoft sagt "tut doch alles", wenn ich mich richtig erinnere. Zur Sicherheit Fixit installieren/laufen lassen: Fehler: Fehler beim Konfigurieren der Windows-Updates. Zurücksetzen von Änderungen. Nicht schalten Sie Ihren Computer, wenn Sie versuchen, Windows-Updates installieren. Poste bitte die Bezeichnungen der Updates die immer wieder angeboten werden. Das kann jetzt dann beliebig kompliziert werden, das reicht von falschen Rechnen, bis zu Timestamps die auseindanderlaufen können. DAs schöne, man muß von CD aus arbeiten, da die Dateien von Windows gesperrt sind (soll heißen, wir brauchen eine Recovery oder Boot-CD). Temporär kannst Du die Updates auch gezielt ausschalten Updates ausblenden | com! – Tipps zu: Windows 7,System-Tools... chris
__________________ Don't bring me downVor dem posten beachten! Spenden (Wer spenden will, kann sich gerne melden ) |
|
15.03.2013, 01:31
| #13 |
| | Coupondropdown Wenn ich FF downloade und ausführe kommt dieses kästchen. Das Admin PW kenne ich nicht und wenn ich auf Fuxi/Asus klicke läuft der download nicht weiter! |
|
18.03.2013, 13:07
| #14 | |
| | CoupondropdownZitat:
|
|
14.03.2013, 09:31
| #15 |
| | CoupondropdownCode:
ATTFilter SHA256: e4309f7866d27064f01447b30bb1aa468b4794674e9f0cda04c0525fa83db1cc
SHA1: fe510793e5a0140efc5778faebd9b79527646820
MD5: 10b8f89d146d0e20b1284d47bb4ec6c9
Dateigröße: 93.3 KB ( 95568 bytes )
Dateiname: dgdersvc.exe
Datei-Typ: Win32 EXE
Erkennungsrate: 0 / 45
Analyse-Datum: 2013-03-14 08:27:45 UTC ( vor 1 Minute )
1
0
Weniger Details
Analyse
Zusätzliche Informationen
Kommentare
Bewertungen
Antivirus Ergebnis Aktualisierung
Agnitum - 20130313
AhnLab-V3 - 20130313
AntiVir - 20130314
Antiy-AVL - 20130313
Avast - 20130314
AVG - 20130314
BitDefender - 20130314
ByteHero - 20130313
CAT-QuickHeal - 20130314
ClamAV - 20130314
Commtouch - 20130313
Comodo - 20130314
DrWeb - 20130314
Emsisoft - 20130314
eSafe - 20130313
ESET-NOD32 - 20130314
F-Prot - 20130314
F-Secure - 20130314
Fortinet - 20130314
GData - 20130314
Ikarus - 20130314
Jiangmin - 20130314
K7AntiVirus - 20130313
Kaspersky - 20130313
Kingsoft - 20130311
Malwarebytes - 20130314
McAfee - 20130314
McAfee-GW-Edition - 20130314
Microsoft - 20130314
MicroWorld-eScan - 20130314
NANO-Antivirus - 20130314
Norman - 20130313
nProtect - 20130313
Panda - 20130313
PCTools - 20130314
Sophos - 20130314
SUPERAntiSpyware - 20130314
Symantec - 20130314
TheHacker - 20130314
TotalDefense - 20130313
TrendMicro - 20130314
TrendMicro-HouseCall - 20130314
VBA32 - 20130313
VIPRE - 20130314
ViRobot - 20130314
Code:
ATTFilter ssdeep
1536:1QT0LBrww3ptYH7CAQFbkUxnqlbg3rciQzoRfkyTtaBqPh:o+igbZqviuKf/TtaB0
TrID
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
ExifTool
SubsystemVersion.........: 4.0
InitializedDataSize......: 28672
ImageVersion.............: 0.0
ProductName..............: Device Error Recovery SDK
FileVersionNumber........: 1.3.950.0
UninitializedDataSize....: 0
LanguageCode.............: Korean
FileFlagsMask............: 0x0017
CharacterSet.............: Unicode
LinkerVersion............: 8.0
FileOS...................: Win32
MIMEType.................: application/octet-stream
LegalCopyright...........: Devguru Co., Ltd. All rights reserved.
FileVersion..............: 1, 3, 950, 0
TimeStamp................: 2010:07:21 02:58:32+01:00
FileType.................: Win32 EXE
PEType...................: PE32
ProductVersion...........: 1, 3, 950, 0
FileDescription..........: Device Error Recovery SDK(x86)
OSVersion................: 4.0
OriginalFilename.........: dgdersvc.exe
Subsystem................: Windows command line
MachineType..............: Intel 386 or later, and compatibles
CompanyName..............: Devguru Co., Ltd.
CodeSize.................: 57344
FileSubtype..............: 0
ProductVersionNumber.....: 1.3.950.0
EntryPoint...............: 0x3ba2
ObjectFileType...........: Dynamic link library
Sigcheck
publisher................: Devguru Co., Ltd.
product..................: Device Error Recovery SDK
copyright................: Devguru Co., Ltd. All rights reserved.
file version.............: 1, 3, 950, 0
original name............: dgdersvc.exe
signing date.............: 2:58 AM 7/21/2010
signers..................: SAMSUNG ELECTRONICS CO.,LTD.; VeriSign Class 3 Code Signing 2004 CA; Class 3 Public Primary Certification Authority
description..............: Device Error Recovery SDK(x86)
Portable Executable structural information
Compilation timedatestamp.....: 2010-07-21 01:58:32
Target machine................: Intel 386 or later processors and compatible processors
Entry point address...........: 0x00003BA2
PE Sections...................:
Name Virtual Address Virtual Size Raw Size Entropy MD5
.text 4096 57150 57344 6.61 35933df3cf2ba9b8c7220abd44065dd8
.rdata 61440 14870 16384 4.90 6de95fa22134f5028b7c4c830d9eafa2
.data 77824 382856 8192 1.41 4cb1a3549f2e18c74cbf29b517aad12f
.rsrc 462848 1348 4096 4.11 e957ff4dccbd725441fa060e7c48dc1c
PE Imports....................:
[[ADVAPI32.dll]]
CloseServiceHandle, SetServiceStatus, RegisterServiceCtrlHandlerW, OpenSCManagerW, OpenServiceW, StartServiceCtrlDispatcherW, DeleteService, CreateServiceW
[[SHELL32.dll]]
SHGetFolderPathW, ShellExecuteW, SHCreateDirectoryExW
[[KERNEL32.dll]]
GetStdHandle, GetConsoleOutputCP, WaitForSingleObject, HeapDestroy, GetLocalTime, FreeEnvironmentStringsA, DeleteCriticalSection, GetCurrentProcess, GetConsoleMode, GetLocaleInfoA, FreeEnvironmentStringsW, SetStdHandle, GetFileTime, GetCPInfo, GetStringTypeA, InterlockedExchange, FindResourceExW, GetSystemTimeAsFileTime, HeapReAlloc, GetStringTypeW, GetOEMCP, InitializeCriticalSection, LoadResource, InterlockedDecrement, SetLastError, ReadConsoleInputA, GetModuleFileNameW, IsDebuggerPresent, HeapAlloc, FlushFileBuffers, GetModuleFileNameA, UnhandledExceptionFilter, TlsGetValue, MultiByteToWideChar, SetFilePointer, SetUnhandledExceptionFilter, TerminateProcess, WriteConsoleA, GlobalAlloc, GetCurrentThreadId, LeaveCriticalSection, WriteConsoleW, HeapFree, EnterCriticalSection, SetHandleCount, SetEvent, QueryPerformanceCounter, GetTickCount, TlsAlloc, GetVersionExA, LoadLibraryA, RtlUnwind, GetStartupInfoA, GetProcAddress, GetProcessHeap, WriteFile, GetFileSizeEx, CreateEventW, CreateFileW, GetFileType, TlsSetValue, CreateFileA, ExitProcess, InterlockedIncrement, GetLastError, LCMapStringW, HeapCreate, GlobalFree, GetConsoleCP, LCMapStringA, GetEnvironmentStringsW, SizeofResource, GetCurrentProcessId, LockResource, GetCommandLineW, WideCharToMultiByte, HeapSize, GetCommandLineA, InterlockedCompareExchange, RaiseException, TlsFree, GetModuleHandleA, CloseHandle, GetACP, GetEnvironmentStrings, IsValidCodePage, SetConsoleMode, FindResourceW, VirtualFree, Sleep, VirtualAlloc
[[dgderapi.dll]]
DGDERInstall, DGDERInitEngine, DGDERCloseEngine
[[USER32.dll]]
UnregisterClassA
PE Resources..................:
Resource type Number of resources
RT_MANIFEST 1
RT_VERSION 1
Resource language Number of resources
KOREAN 1
ENGLISH US 1
Zuerst entdeckt von VirusTotal
2010-09-08 04:19:30 UTC ( vor 2 Jahre, 6 Monate )
Zuletzt entdeckt von VirusTotal
2013-03-14 08:27:45 UTC ( vor 3 Minuten )
Dateinamen (max. 25)
smona130874070612811281392
SCHWAS9-L2-dgdersvc.exe
file-3096155_exe
dgdersvc.exe
dgdersvc.exe
dgdersvc.exe.vir
dgdersvc.ex_
dgdersvc.exe
file-1559778_exe
dgdersvc.exe
|
|
| Themen zu Coupondropdown |
| coupondropdown, malwarebytes, neu, problem, runtergeladen |
Hybrid-Darstellung
