Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   AKM-Virus / 50 Euro - Bitte um Hilfe (https://www.trojaner-board.de/111229-akm-virus-50-euro-bitte-um-hilfe.html)

bobdmb 10.03.2012 18:56
AKM-Virus / 50 Euro - Bitte um Hilfe
 
Hallo!

Ein Freund von mir ist mit seinem Laptop bei mir und er hat den AKM/50 Euro Virus. Es ist nichtmal mehr möglich in den abgesicherten Modus reinzukommen. Habe erstmal mit Ubuntu Live gestartet und die persönlichen Daten auf die externe Festplatte gespeichert.

Habe auch die OTPLE gebrannt und gestartet. Ich würde nun höflich um die Erstellung des Skripts bitten, damit ich den Rechner wieder fixen kann.

Beim System handelts sich um ein Vista System. OTLPE hat mich folgende Frage nicht gefragt: "Do you wish to load the remote registry"

Es hat auch nur die Datei OTL.txt erstellt, keine "extras".

Vielen lieben Dank im Voraus!

Chris4You 10.03.2012 20:08
Hi,

sehr tief ins System eingedrungen, here we go...
(Script auf Stick kopieren und wieder von CD booten, dann Script in OTL kopieren (s.u.) und dann "Run Fixes"...
Nach dem Reboot CD raus, Antimalwarebytes installieren / Updaten und Fullscann...
  • Doppelklick auf die OTL.exe, um das Programm auszuführen.
  • Vista/Win7-User bitte per Rechtsklick und "Ausführen als Administrator" starten.
  • Kopiere den Inhalt der folgenden Codebox komplett in die OTL-Box unter "Custom Scan/Fixes"
http://oldtimer.geekstogo.com/OTL/OTL_Main_Tutorial.gif
Code:
:OTL
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O4 - HKLM..\Run: [VX2bt1oYNKCLnkO] C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe (Cutting Edge Software Inc.)
O4 - HKU\Patrick_ON_C..\Run: [Media Finder]  File not found
O4 - HKU\Patrick_ON_C..\Run: [msnmsgr]  File not found
O4 - HKU\Patrick_ON_C..\Run: [VX2bt1oYNKCLnkO] C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe (Cutting Edge Software Inc.)
O7 - HKU\Patrick_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktop = 1
O7 - HKU\Patrick_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableTaskMgr = 1
O7 - HKU\Patrick_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableRegistryTools = 1
O20 - HKLM Winlogon: Shell - (C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe) - C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe (Cutting Edge Software Inc.)
O20 - HKLM Winlogon: UserInit - (C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe) - C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe (Cutting Edge Software Inc.)
O20 - HKU\Patrick_ON_C Winlogon: Shell - (C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe) - C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe (Cutting Edge Software Inc.)
O20 - HKU\Patrick_ON_C Winlogon: UserInit - (C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe) - C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe (Cutting Edge Software Inc.)

:Commands
[purity]
[emptytemp]
[Reboot]
  • Den roten Run Fixes! Button anklicken.
  • Bitte alles aus dem Ergebnisfenster (Results) herauskopieren.
  • Eine Kopie eines OTL-Fix-Logs wird in einer Textdatei in folgendem Ordner gespeichert:
  • %systemroot%\_OTL

Malwarebytes Antimalware (MAM)
Anleitu
ng&Download hier: http://www.trojaner-board.de/51187-m...i-malware.html
Falls der Download nicht klappt, bitte hierüber eine generische Version runterladen:
http://filepony.de/download-chameleon/
Danach bitte update der Signaturdateien (Reiter "Aktualisierungen" -> Suche nach Aktualisierungen")
Fullscan und alles bereinigen lassen! Log posten.
chris

bobdmb 10.03.2012 20:50
Vielen Dank vorerst! Super-schnelle reaktion und wirksam auch noch..

Hier ist der Log von OTL nach dem fix:
Code:
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\VX2bt1oYNKCLnkO deleted successfully.
C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe moved successfully.
Registry value HKEY_USERS\Patrick_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\Media Finder deleted successfully.
Registry value HKEY_USERS\Patrick_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\msnmsgr deleted successfully.
Registry value HKEY_USERS\Patrick_ON_C\Software\Microsoft\Windows\CurrentVersion\Run\\VX2bt1oYNKCLnkO deleted successfully.
File C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe not found.
Registry value HKEY_USERS\Patrick_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDesktop deleted successfully.
Registry value HKEY_USERS\Patrick_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableTaskMgr deleted successfully.
Registry value HKEY_USERS\Patrick_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\DisableRegistryTools deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe deleted successfully.
File C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe deleted successfully.
File C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe not found.
Registry value HKEY_USERS\Patrick_ON_C\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell:C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe deleted successfully.
File C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe not found.
Registry value HKEY_USERS\Patrick_ON_C\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit:C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe deleted successfully.
File C:\Users\Patrick\AppData\Roaming\h6s5ruij653.exe not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Conny
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: Default User
 
User: Patrick
->Temp folder emptied: 2111853732 bytes
->Temporary Internet Files folder emptied: 342782591 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 47075613 bytes
->Flash cache emptied: 61505 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 279440 bytes
Windows Temp folder emptied: 81506894 bytes
 
Total Files Cleaned = 2,464.00 mb
 
 
OTLPE by OldTimer - Version 3.1.48.0 log created on 03102012_202843
Danach hat das system wieder gestartet - super!

Der MAM Fullscan läuft gerade. Melde mich mit den Ergebnissen.

Chris4You 10.03.2012 21:13
Hi,

ok...

chris

bobdmb 10.03.2012 22:39
Chris,

danke. Hier der Log..

Code:
Malwarebytes Anti-Malware (Test) 1.60.1.1000
www.malwarebytes.org

Datenbank Version: v2012.03.10.04

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Patrick :: CONNY [Administrator]

Schutz: Aktiviert

10.03.2012 20:47:49
mbam-log-2012-03-10 (22-17-39).txt

Art des Suchlaufs: Vollständiger Suchlauf
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 298998
Laufzeit: 1 Stunde(n), 28 Minute(n), 28 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 40
HKCR\CLSID\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCR\TypeLib\{F244A744-534D-4A46-855F-C0C7E9F27DAA} (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCR\Interface\{030C9927-10FC-4169-97A2-55BECD5D88D8} (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.RprtCtrl.1 (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.RprtCtrl (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{258C9770-1713-4021-8D7E-1F184A2BD754} (Adware.SmartShopper) -> Keine Aktion durchgeführt.
HKCR\CLSID\{3E2DFD6A-4E20-4D4C-AA8B-E1F9DBEF3C80} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.IEButton.1 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.IEButton (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\CLSID\{714E0876-FCEE-49CE-A429-B9AD8AEFCB56} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.IEButtonA.1 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.IEButtonA (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\CLSID\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.HbInfoBand.1 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.HbInfoBand (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDEA95CF-F0E6-41E0-BD3D-B00F39A4E939} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\CLSID\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Keine Aktion durchgeführt.
HKCR\gencrawler_gc.GenCrawler (Trojan.Downloader) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{CA4520F3-AE13-4FB1-A513-58E23991C86D} (Trojan.Downloader) -> Keine Aktion durchgeführt.
HKCR\CLSID\{DD15BCC0-5FE9-4690-A957-99FA60ED9D26} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.HbAx.1 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\ShoppingReport2.HbAx (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\Typelib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\Typelib\{D44FD6F0-9746-484E-B5C4-C66688393872} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCR\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C} (Adware.QuestScan) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{5ueDxYLo-I543-1otK-kGTs-C9Y55G4HYphK} (Backdoor.Agent) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{DB38E21A-0133-419d-92AD-ECDFD5244D6D} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EB620C54-E229-4942-87CE-E717109FC8C6} (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKCU\SOFTWARE\MediaHoldings (Malware.Trace) -> Keine Aktion durchgeführt.
HKCU\Software\ShoppingReport2 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\ShoppingReport2 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingReport2 (Adware.Hotbar) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\QUESTSCAN (Adware.QuestScan) -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\QUESTSCAN (Adware.QuestScan) -> Keine Aktion durchgeführt.

Infizierte Registrierungswerte: 3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs|C:\USERS\PATRICK\APPDATA\ROAMING\MEDIA FINDER\EXTENSIONS\GENCRAWLER_GC.DLL (Trojan.Downloader) -> Daten: 1 -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan|DisplayName (Adware.QuestScan) -> Daten: QuestScan 1.0 build 193 -> Keine Aktion durchgeführt.
HKLM\SOFTWARE\QuestScan|DllPath (Adware.QuestScan) -> Daten: C:\Program Files\QuestScan\questscan.dll -> Keine Aktion durchgeführt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 7
C:\Program Files\ShoppingReport2 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
C:\Program Files\ShoppingReport2\Bin (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
C:\Program Files\ShoppingReport2\Bin\2.7.37 (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096} (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\chrome (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\defaults (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\defaults\preferences (Adware.QuestScan) -> Keine Aktion durchgeführt.

Infizierte Dateien: 9
C:\Program Files\ShoppingReport2\Bin\2.7.37\ShoppingReport.dll (Adware.SmartShopper) -> Keine Aktion durchgeführt.
C:\Users\Patrick\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.dll (Trojan.Downloader) -> Keine Aktion durchgeführt.
C:\Program Files\QuestScan\questscan.exe (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\ProgramData\QuestScan\questscan193.exe (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\ShoppingReport2\Uninst.exe (Adware.ShoppingReport2) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\chrome.manifest (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\install.rdf (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\chrome\questscan.jar (Adware.QuestScan) -> Keine Aktion durchgeführt.
C:\Program Files\Mozilla Firefox\extensions\{F0E1168A-B4B5-484C-B77E-0D28E6B64096}\defaults\preferences\prefs.js (Adware.QuestScan) -> Keine Aktion durchgeführt.

(Ende)
liebe Grüße

Chris4You 10.03.2012 22:45
Hi,

alles löschen lassen...
Wegen dem Downloader schauen wir noch nach TDSS...
(hmm, der eigentliche Trojaner ist von MAM nicht erkannt worden...)

TDSS-Killer
Download und Anweisung unter: Wie werden Schadprogramme der Familie Rootkit.Win32.TDSS bekämpft?
Entpacke alle Dateien in einem eigenen Verzeichnis (z. B: C:\TDSS)!
Aufruf über den Explorer duch Doppelklick auf die TDSSKiller.exe.
Stelle den Killer wir folgt ein:
http://saved.im/mtkwmtcxexhp/setting...8_16-25-18.jpg
Dann den Scan starten durch (Start Scan).
Wenn der Scan fertig ist bitte "Report" anwählen (eventuelle Funde erstmal mit Skip übergehen). Es öffnet sich ein Fenster, den Text abkopieren und hier posten...

Packe das Verzeichnis C:\_OTL\MovedFiles (als zip) und lade es wie folgt hoch zu uns..

Datei hochladen:
http://www.trojaner-board.de/54791-a...ner-board.html
Folge den Anweisungen dort und lade die Datei:
Code:
C:\_OTL\MovedFiles
hoch.

Poste zur Sicherheit ein neues OTL-Log...

chris
Ps. Bin dann offline...

bobdmb 11.03.2012 10:46
Hallo Chris,

danke dir. Der Karspersky scan hat 0 - 0 -0 ausgegeben, also nicht gefunden und kein Log.

Die Movedfile habe ich hochgeladen.
Habe in der Zwischenzeit Updates gemacht und zumindest mal Security Essentials installiert, da war ja gar nichts drauf..

Hier die erneuten OTL Logs.

Danke,
LG

PS: habe zumindest einen kleines "Danke" gespendet. Großartig was ihr hier macht.

Chris4You 11.03.2012 10:53
Hi,

sieht eigentlich gut aus, was treibt der Rechner?
File (upload) ist zu den Sicherheits-SW-Herstellern unterwegs (Avira, Kaspersky,... etc.)...

chris

bobdmb 11.03.2012 11:08
Der Rechner scheint soweit einwandfrei zu funktionieren. Werde mal alles was geht updaten.

Melde mich, falls wieder was sein sollte, aber bisher hats echt wunderbar funktioniert. Danke!!

Chris4You 11.03.2012 11:34
Hi,

poste noch das Log vom Killer...

chris

bobdmb 11.03.2012 12:34
Hi - hier ists. Habs gerade nochmal gemacht.

lG

Code:
12:32:10.0114 4520        TDSS rootkit removing tool 2.7.20.0 Mar  9 2012 17:10:43
12:32:10.0406 4520        ============================================================
12:32:10.0406 4520        Current date / time: 2012/03/11 12:32:10.0406
12:32:10.0406 4520        SystemInfo:
12:32:10.0406 4520       
12:32:10.0407 4520        OS Version: 6.0.6002 ServicePack: 2.0
12:32:10.0407 4520        Product type: Workstation
12:32:10.0407 4520        ComputerName: CONNY
12:32:10.0408 4520        UserName: Patrick
12:32:10.0408 4520        Windows directory: C:\Windows
12:32:10.0408 4520        System windows directory: C:\Windows
12:32:10.0408 4520        Processor architecture: Intel x86
12:32:10.0408 4520        Number of processors: 2
12:32:10.0408 4520        Page size: 0x1000
12:32:10.0408 4520        Boot type: Normal boot
12:32:10.0408 4520        ============================================================
12:32:12.0060 4520        Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:32:12.0064 4520        \Device\Harddisk0\DR0:
12:32:12.0065 4520        MBR used
12:32:12.0065 4520        \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950E482
12:32:12.0085 4520        Initialize success
12:32:12.0085 4520        ============================================================
12:32:19.0390 5304        ============================================================
12:32:19.0390 5304        Scan started
12:32:19.0390 5304        Mode: Manual; SigCheck; TDLFS;
12:32:19.0390 5304        ============================================================
12:32:19.0817 5304        ACPI            (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
12:32:20.0118 5304        ACPI - ok
12:32:20.0234 5304        adp94xx        (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
12:32:20.0336 5304        adp94xx - ok
12:32:20.0436 5304        adpahci        (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
12:32:20.0652 5304        adpahci - ok
12:32:20.0699 5304        adpu160m        (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
12:32:20.0789 5304        adpu160m - ok
12:32:20.0842 5304        adpu320        (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
12:32:20.0944 5304        adpu320 - ok
12:32:21.0033 5304        AFD            (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
12:32:21.0131 5304        AFD - ok
12:32:21.0188 5304        agp440          (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
12:32:21.0284 5304        agp440 - ok
12:32:21.0336 5304        aic78xx        (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
12:32:21.0412 5304        aic78xx - ok
12:32:21.0463 5304        aliide          (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
12:32:21.0505 5304        aliide - ok
12:32:21.0543 5304        amdagp          (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
12:32:21.0623 5304        amdagp - ok
12:32:21.0660 5304        amdide          (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
12:32:21.0703 5304        amdide - ok
12:32:21.0739 5304        AmdK7          (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
12:32:21.0916 5304        AmdK7 - ok
12:32:21.0957 5304        AmdK8          (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
12:32:22.0139 5304        AmdK8 - ok
12:32:22.0327 5304        AR5211          (2af8814f1063e05661c319dba6b733ec) C:\Windows\system32\DRIVERS\ar5211.sys
12:32:22.0437 5304        AR5211 - ok
12:32:22.0549 5304        arc            (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
12:32:22.0624 5304        arc - ok
12:32:22.0688 5304        arcsas          (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
12:32:22.0764 5304        arcsas - ok
12:32:22.0848 5304        AsyncMac        (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
12:32:22.0947 5304        AsyncMac - ok
12:32:23.0000 5304        atapi          (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
12:32:23.0050 5304        atapi - ok
12:32:23.0133 5304        athr            (51edff187ed6d0275be0867e9c113693) C:\Windows\system32\DRIVERS\athr.sys
12:32:23.0234 5304        athr - ok
12:32:23.0438 5304        atikmdag        (fe47d549367005b045580ce61ff5924d) C:\Windows\system32\DRIVERS\atikmdag.sys
12:32:23.0636 5304        atikmdag - ok
12:32:23.0816 5304        AtiPcie        (a356e45e8432432c06981ea63a1e0fe8) C:\Windows\system32\DRIVERS\AtiPcie.sys
12:32:23.0889 5304        AtiPcie - ok
12:32:24.0052 5304        Beep            (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
12:32:24.0136 5304        Beep - ok
12:32:24.0215 5304        blbdrive - ok
12:32:24.0352 5304        bowser          (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
12:32:24.0500 5304        bowser - ok
12:32:24.0585 5304        BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
12:32:24.0665 5304        BrFiltLo - ok
12:32:24.0722 5304        BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
12:32:24.0788 5304        BrFiltUp - ok
12:32:24.0875 5304        Brserid        (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
12:32:25.0050 5304        Brserid - ok
12:32:25.0124 5304        BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
12:32:25.0297 5304        BrSerWdm - ok
12:32:25.0365 5304        BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
12:32:25.0513 5304        BrUsbMdm - ok
12:32:25.0567 5304        BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
12:32:25.0698 5304        BrUsbSer - ok
12:32:25.0762 5304        BthEnum        (a820438255f37ab8baa2bd59753a8d81) C:\Windows\system32\DRIVERS\BthEnum.sys
12:32:25.0897 5304        BthEnum - ok
12:32:25.0953 5304        BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
12:32:26.0110 5304        BTHMODEM - ok
12:32:26.0140 5304        BthPan          (b8c3d9ddf85fd197c3e5f849fef71144) C:\Windows\system32\DRIVERS\bthpan.sys
12:32:26.0277 5304        BthPan - ok
12:32:26.0317 5304        BTHPORT        (4a74bbb2b6761789f42a6613479bdb1d) C:\Windows\system32\Drivers\BTHport.sys
12:32:26.0459 5304        BTHPORT - ok
12:32:26.0498 5304        BTHUSB          (1a407f9b707a06f55aa150f9aa072b09) C:\Windows\system32\Drivers\BTHUSB.sys
12:32:26.0641 5304        BTHUSB - ok
12:32:26.0697 5304        cdfs            (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
12:32:26.0831 5304        cdfs - ok
12:32:26.0886 5304        cdrom          (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
12:32:27.0012 5304        cdrom - ok
12:32:27.0057 5304        circlass        (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
12:32:27.0209 5304        circlass - ok
12:32:27.0268 5304        CLFS            (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
12:32:27.0357 5304        CLFS - ok
12:32:27.0473 5304        CmBatt          (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
12:32:27.0564 5304        CmBatt - ok
12:32:27.0613 5304        cmdide          (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
12:32:27.0658 5304        cmdide - ok
12:32:27.0714 5304        Compbatt        (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
12:32:27.0770 5304        Compbatt - ok
12:32:27.0808 5304        crcdisk        (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
12:32:27.0861 5304        crcdisk - ok
12:32:27.0910 5304        Crusoe          (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
12:32:28.0068 5304        Crusoe - ok
12:32:28.0176 5304        DfsC            (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
12:32:28.0299 5304        DfsC - ok
12:32:28.0479 5304        disk            (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
12:32:28.0573 5304        disk - ok
12:32:28.0787 5304        drmkaud        (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
12:32:28.0852 5304        drmkaud - ok
12:32:28.0975 5304        DXGKrnl        (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
12:32:29.0077 5304        DXGKrnl - ok
12:32:29.0133 5304        E1G60          (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
12:32:29.0340 5304        E1G60 - ok
12:32:29.0421 5304        Ecache          (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
12:32:29.0532 5304        Ecache - ok
12:32:29.0650 5304        elxstor        (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
12:32:29.0719 5304        elxstor - ok
12:32:29.0822 5304        exfat          (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
12:32:29.0905 5304        exfat - ok
12:32:29.0951 5304        fastfat        (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
12:32:30.0034 5304        fastfat - ok
12:32:30.0073 5304        fdc            (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
12:32:30.0244 5304        fdc - ok
12:32:30.0303 5304        FileInfo        (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
12:32:30.0394 5304        FileInfo - ok
12:32:30.0439 5304        Filetrace      (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
12:32:30.0543 5304        Filetrace - ok
12:32:30.0581 5304        flpydisk        (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
12:32:30.0721 5304        flpydisk - ok
12:32:30.0771 5304        FltMgr          (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
12:32:30.0854 5304        FltMgr - ok
12:32:30.0917 5304        Fs_Rec          (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
12:32:30.0994 5304        Fs_Rec - ok
12:32:31.0024 5304        gagp30kx        (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
12:32:31.0110 5304        gagp30kx - ok
12:32:31.0255 5304        ghaio          (31b40f40e09513addc460f6a297ad474) C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys
12:32:31.0396 5304        ghaio - ok
12:32:31.0591 5304        HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
12:32:31.0735 5304        HdAudAddService - ok
12:32:31.0823 5304        HDAudBus        (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
12:32:31.0966 5304        HDAudBus - ok
12:32:32.0036 5304        HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
12:32:32.0186 5304        HidBth - ok
12:32:32.0255 5304        HidIr          (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
12:32:32.0395 5304        HidIr - ok
12:32:32.0491 5304        HidUsb          (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
12:32:32.0564 5304        HidUsb - ok
12:32:32.0633 5304        HpCISSs        (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
12:32:32.0694 5304        HpCISSs - ok
12:32:32.0763 5304        HTTP            (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
12:32:32.0887 5304        HTTP - ok
12:32:32.0930 5304        hwdatacard - ok
12:32:32.0996 5304        i2omp          (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
12:32:33.0070 5304        i2omp - ok
12:32:33.0213 5304        i8042prt        (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
12:32:33.0317 5304        i8042prt - ok
12:32:33.0393 5304        iaStorV        (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
12:32:33.0472 5304        iaStorV - ok
12:32:33.0518 5304        iirsp          (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
12:32:33.0586 5304        iirsp - ok
12:32:33.0894 5304        IntcAzAudAddService (aef2fa29204056b81bc4cbf30260dee1) C:\Windows\system32\drivers\RTKVHDA.sys
12:32:34.0098 5304        IntcAzAudAddService - ok
12:32:34.0176 5304        intelide        (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
12:32:34.0219 5304        intelide - ok
12:32:34.0287 5304        intelppm        (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
12:32:34.0392 5304        intelppm - ok
12:32:34.0468 5304        IpFilterDriver  (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:32:34.0590 5304        IpFilterDriver - ok
12:32:34.0627 5304        IpInIp - ok
12:32:34.0676 5304        IPMIDRV        (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
12:32:34.0861 5304        IPMIDRV - ok
12:32:34.0908 5304        IPNAT          (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
12:32:35.0008 5304        IPNAT - ok
12:32:35.0053 5304        IRENUM          (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
12:32:35.0149 5304        IRENUM - ok
12:32:35.0197 5304        isapnp          (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
12:32:35.0271 5304        isapnp - ok
12:32:35.0322 5304        iScsiPrt        (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
12:32:35.0395 5304        iScsiPrt - ok
12:32:35.0434 5304        iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
12:32:35.0493 5304        iteatapi - ok
12:32:35.0526 5304        iteraid        (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
12:32:35.0587 5304        iteraid - ok
12:32:35.0638 5304        kbdclass        (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
12:32:35.0705 5304        kbdclass - ok
12:32:35.0736 5304        kbdhid          (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
12:32:35.0874 5304        kbdhid - ok
12:32:35.0944 5304        kbfiltr        (cc2a86d7bbf14977340dca61bbcba771) C:\Windows\system32\DRIVERS\kbfiltr.sys
12:32:35.0993 5304        kbfiltr - ok
12:32:36.0082 5304        KSecDD          (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
12:32:36.0180 5304        KSecDD - ok
12:32:36.0287 5304        lltdio          (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
12:32:36.0428 5304        lltdio - ok
12:32:36.0518 5304        LSI_FC          (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
12:32:36.0595 5304        LSI_FC - ok
12:32:36.0631 5304        LSI_SAS        (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
12:32:36.0709 5304        LSI_SAS - ok
12:32:36.0770 5304        LSI_SCSI        (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
12:32:36.0848 5304        LSI_SCSI - ok
12:32:36.0905 5304        luafv          (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
12:32:37.0086 5304        luafv - ok
12:32:37.0241 5304        LVPr2Mon        (8be71d7edb8c7494913722059f760dd0) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
12:32:37.0311 5304        LVPr2Mon - ok
12:32:37.0432 5304        LVRS            (a1857fbb9b4930eeb2fd92386c45c529) C:\Windows\system32\DRIVERS\lvrs.sys
12:32:37.0585 5304        LVRS - ok
12:32:38.0052 5304        LVUVC          (3703406af0726badd24c5e552493e5b1) C:\Windows\system32\DRIVERS\lvuvc.sys
12:32:38.0525 5304        LVUVC - ok
12:32:38.0914 5304        MBAMProtector  (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
12:32:38.0974 5304        MBAMProtector - ok
12:32:39.0066 5304        megasas        (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
12:32:39.0123 5304        megasas - ok
12:32:39.0179 5304        Modem          (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
12:32:39.0282 5304        Modem - ok
12:32:39.0328 5304        monitor        (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
12:32:39.0466 5304        monitor - ok
12:32:39.0506 5304        mouclass        (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
12:32:39.0568 5304        mouclass - ok
12:32:39.0607 5304        mouhid          (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
12:32:39.0699 5304        mouhid - ok
12:32:39.0747 5304        MountMgr        (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
12:32:39.0833 5304        MountMgr - ok
12:32:39.0912 5304        MpFilter        (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
12:32:40.0029 5304        MpFilter - ok
12:32:40.0108 5304        mpio            (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
12:32:40.0215 5304        mpio - ok
12:32:40.0385 5304        MpKslda631f79  (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{34FF1C3F-24C2-49CB-8269-858B325158EF}\MpKslda631f79.sys
12:32:40.0457 5304        MpKslda631f79 - ok
12:32:40.0590 5304        MpNWMon        (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
12:32:40.0659 5304        MpNWMon - ok
12:32:40.0732 5304        mpsdrv          (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
12:32:40.0806 5304        mpsdrv - ok
12:32:40.0884 5304        Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
12:32:40.0944 5304        Mraid35x - ok
12:32:41.0018 5304        MRxDAV          (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
12:32:41.0092 5304        MRxDAV - ok
12:32:41.0164 5304        mrxsmb          (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:32:41.0274 5304        mrxsmb - ok
12:32:41.0318 5304        mrxsmb10        (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:32:41.0396 5304        mrxsmb10 - ok
12:32:41.0424 5304        mrxsmb20        (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:32:41.0567 5304        mrxsmb20 - ok
12:32:41.0617 5304        msahci          (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
12:32:41.0667 5304        msahci - ok
12:32:41.0737 5304        msdsm          (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
12:32:41.0838 5304        msdsm - ok
12:32:41.0922 5304        Msfs            (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
12:32:42.0019 5304        Msfs - ok
12:32:42.0088 5304        msisadrv        (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
12:32:42.0149 5304        msisadrv - ok
12:32:42.0211 5304        MSKSSRV        (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
12:32:42.0299 5304        MSKSSRV - ok
12:32:42.0344 5304        MSPCLOCK        (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
12:32:42.0426 5304        MSPCLOCK - ok
12:32:42.0459 5304        MSPQM          (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
12:32:42.0574 5304        MSPQM - ok
12:32:42.0632 5304        MsRPC          (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
12:32:42.0788 5304        MsRPC - ok
12:32:42.0833 5304        mssmbios        (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
12:32:42.0899 5304        mssmbios - ok
12:32:42.0941 5304        MSTEE          (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
12:32:43.0026 5304        MSTEE - ok
12:32:43.0068 5304        MTsensor        (97affa9d95ffe20eee6229bc6be166cf) C:\Windows\system32\DRIVERS\ATKACPI.sys
12:32:43.0119 5304        MTsensor - ok
12:32:43.0155 5304        Mup            (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
12:32:43.0243 5304        Mup - ok
12:32:43.0304 5304        NativeWifiP    (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
12:32:43.0383 5304        NativeWifiP - ok
12:32:43.0448 5304        NDIS            (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
12:32:43.0556 5304        NDIS - ok
12:32:43.0802 5304        NdisTapi        (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
12:32:43.0889 5304        NdisTapi - ok
12:32:43.0960 5304        Ndisuio        (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
12:32:44.0052 5304        Ndisuio - ok
12:32:44.0121 5304        NdisWan        (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
12:32:44.0204 5304        NdisWan - ok
12:32:44.0263 5304        NDProxy        (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
12:32:44.0373 5304        NDProxy - ok
12:32:44.0517 5304        NetBIOS        (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
12:32:44.0635 5304        NetBIOS - ok
12:32:44.0703 5304        netbt          (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
12:32:44.0863 5304        netbt - ok
12:32:45.0047 5304        NETw3v32        (a15f219208843a5a210c8cb391384453) C:\Windows\system32\DRIVERS\NETw3v32.sys
12:32:45.0326 5304        NETw3v32 - ok
12:32:45.0393 5304        nfrd960        (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
12:32:45.0462 5304        nfrd960 - ok
12:32:45.0512 5304        NisDrv          (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:32:45.0602 5304        NisDrv - ok
12:32:45.0670 5304        Npfs            (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
12:32:45.0772 5304        Npfs - ok
12:32:45.0833 5304        nsiproxy        (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
12:32:45.0924 5304        nsiproxy - ok
12:32:46.0019 5304        Ntfs            (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
12:32:46.0511 5304        Ntfs - ok
12:32:46.0556 5304        ntrigdigi      (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
12:32:46.0698 5304        ntrigdigi - ok
12:32:46.0738 5304        Null            (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
12:32:46.0820 5304        Null - ok
12:32:47.0103 5304        nvlddmkm        (cfddedc1151839dd71f78472645214a5) C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:32:47.0615 5304        nvlddmkm - ok
12:32:47.0647 5304        nvraid          (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
12:32:47.0743 5304        nvraid - ok
12:32:47.0783 5304        nvstor          (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
12:32:47.0845 5304        nvstor - ok
12:32:47.0887 5304        nv_agp          (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
12:32:47.0954 5304        nv_agp - ok
12:32:47.0973 5304        NwlnkFlt - ok
12:32:48.0000 5304        NwlnkFwd - ok
12:32:48.0062 5304        ohci1394        (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\DRIVERS\ohci1394.sys
12:32:48.0227 5304        ohci1394 - ok
12:32:48.0475 5304        Parport        (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
12:32:48.0664 5304        Parport - ok
12:32:48.0795 5304        partmgr        (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
12:32:48.0883 5304        partmgr - ok
12:32:48.0970 5304        Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
12:32:49.0099 5304        Parvdm - ok
12:32:49.0165 5304        pci            (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
12:32:49.0233 5304        pci - ok
12:32:49.0291 5304        pciide          (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
12:32:49.0344 5304        pciide - ok
12:32:49.0408 5304        pcmcia          (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys
12:32:49.0483 5304        pcmcia - ok
12:32:49.0592 5304        PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
12:32:49.0824 5304        PEAUTH - ok
12:32:49.0987 5304        PptpMiniport    (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
12:32:50.0122 5304        PptpMiniport - ok
12:32:50.0176 5304        Processor      (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
12:32:50.0336 5304        Processor - ok
12:32:50.0427 5304        PSched          (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
12:32:50.0547 5304        PSched - ok
12:32:50.0603 5304        PxHelp20        (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
12:32:50.0673 5304        PxHelp20 - ok
12:32:50.0774 5304        ql2300          (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
12:32:50.0904 5304        ql2300 - ok
12:32:50.0951 5304        ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
12:32:51.0069 5304        ql40xx - ok
12:32:51.0148 5304        QWAVEdrv        (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
12:32:51.0244 5304        QWAVEdrv - ok
12:32:51.0469 5304        R300            (fe47d549367005b045580ce61ff5924d) C:\Windows\system32\DRIVERS\atikmdag.sys
12:32:51.0659 5304        R300 - ok
12:32:51.0726 5304        RasAcd          (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
12:32:51.0832 5304        RasAcd - ok
12:32:51.0933 5304        Rasl2tp        (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:32:52.0075 5304        Rasl2tp - ok
12:32:52.0142 5304        RasPppoe        (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
12:32:52.0236 5304        RasPppoe - ok
12:32:52.0299 5304        RasSstp        (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
12:32:52.0415 5304        RasSstp - ok
12:32:52.0506 5304        rdbss          (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
12:32:52.0658 5304        rdbss - ok
12:32:52.0729 5304        RDPCDD          (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:32:52.0811 5304        RDPCDD - ok
12:32:52.0966 5304        rdpdr          (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
12:32:53.0149 5304        rdpdr - ok
12:32:53.0285 5304        RDPENCDD        (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
12:32:53.0368 5304        RDPENCDD - ok
12:32:53.0462 5304        RDPWD          (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
12:32:53.0624 5304        RDPWD - ok
12:32:53.0776 5304        RFCOMM          (7ec90c316177ba3f1bce92005264b447) C:\Windows\system32\DRIVERS\rfcomm.sys
12:32:53.0944 5304        RFCOMM - ok
12:32:54.0167 5304        rimsptsk        (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
12:32:54.0264 5304        rimsptsk - ok
12:32:54.0351 5304        rspndr          (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
12:32:54.0485 5304        rspndr - ok
12:32:54.0571 5304        RTL8023xp      (8de22fb05e4a0f797b1e442eb4b3b51c) C:\Windows\system32\DRIVERS\Rtnicxp.sys
12:32:54.0720 5304        RTL8023xp - ok
12:32:54.0776 5304        RTL8169        (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys
12:32:54.0929 5304        RTL8169 - ok
12:32:54.0974 5304        sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
12:32:55.0075 5304        sbp2port - ok
12:32:55.0146 5304        sdbus          (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
12:32:55.0263 5304        sdbus - ok
12:32:55.0309 5304        secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:32:55.0453 5304        secdrv - ok
12:32:55.0499 5304        Serenum        (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
12:32:55.0634 5304        Serenum - ok
12:32:55.0674 5304        Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
12:32:55.0805 5304        Serial - ok
12:32:55.0849 5304        sermouse        (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
12:32:55.0944 5304        sermouse - ok
12:32:56.0020 5304        sffdisk        (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
12:32:56.0095 5304        sffdisk - ok
12:32:56.0137 5304        sffp_mmc        (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
12:32:56.0272 5304        sffp_mmc - ok
12:32:56.0321 5304        sffp_sd        (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys
12:32:56.0394 5304        sffp_sd - ok
12:32:56.0435 5304        sfloppy        (c33bfbd6e9e41fcd9ffef9729e9faed6) C:\Windows\system32\DRIVERS\sfloppy.sys
12:32:56.0521 5304        sfloppy - ok
12:32:56.0581 5304        sisagp          (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
12:32:56.0661 5304        sisagp - ok
12:32:56.0697 5304        SiSRaid2        (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
12:32:56.0755 5304        SiSRaid2 - ok
12:32:56.0794 5304        SiSRaid4        (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
12:32:56.0873 5304        SiSRaid4 - ok
12:32:56.0936 5304        Smb            (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
12:32:57.0066 5304        Smb - ok
12:32:57.0166 5304        smserial        (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys
12:32:57.0396 5304        smserial - ok
12:32:57.0495 5304        spldr          (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
12:32:57.0546 5304        spldr - ok
12:32:57.0654 5304        srv            (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
12:32:57.0755 5304        srv - ok
12:32:57.0806 5304        srv2            (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
12:32:57.0896 5304        srv2 - ok
12:32:57.0938 5304        srvnet          (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
12:32:58.0017 5304        srvnet - ok
12:32:58.0082 5304        StillCam        (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
12:32:58.0152 5304        StillCam - ok
12:32:58.0214 5304        swenum          (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
12:32:58.0264 5304        swenum - ok
12:32:58.0329 5304        Symc8xx        (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
12:32:58.0386 5304        Symc8xx - ok
12:32:58.0428 5304        Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
12:32:58.0487 5304        Sym_hi - ok
12:32:58.0527 5304        Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
12:32:58.0589 5304        Sym_u3 - ok
12:32:58.0780 5304        SynTP          (760e4f5a1e754bbe4a1bd2a0b54f6aa6) C:\Windows\system32\DRIVERS\SynTP.sys
12:32:58.0841 5304        SynTP - ok
12:32:59.0012 5304        Tcpip          (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\drivers\tcpip.sys
12:32:59.0143 5304        Tcpip - ok
12:32:59.0221 5304        Tcpip6          (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\DRIVERS\tcpip.sys
12:32:59.0339 5304        Tcpip6 - ok
12:32:59.0377 5304        tcpipreg        (3fc13f09af9be487c7b4fac4070a036c) C:\Windows\system32\drivers\tcpipreg.sys
12:32:59.0473 5304        tcpipreg - ok
12:32:59.0515 5304        TDPIPE          (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
12:32:59.0617 5304        TDPIPE - ok
12:32:59.0660 5304        TDTCP          (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
12:32:59.0760 5304        TDTCP - ok
12:32:59.0814 5304        tdx            (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
12:32:59.0945 5304        tdx - ok
12:32:59.0997 5304        TermDD          (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
12:33:00.0086 5304        TermDD - ok
12:33:00.0171 5304        TPM            (6d9ad3534a9cf7e4b86c6eae8bc335f6) C:\Windows\system32\drivers\tpm.sys
12:33:00.0237 5304        TPM - ok
12:33:00.0308 5304        tssecsrv        (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:33:00.0405 5304        tssecsrv - ok
12:33:00.0458 5304        tunmp          (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
12:33:00.0525 5304        tunmp - ok
12:33:00.0563 5304        tunnel          (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
12:33:00.0634 5304        tunnel - ok
12:33:00.0674 5304        uagp35          (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
12:33:00.0761 5304        uagp35 - ok
12:33:00.0821 5304        udfs            (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
12:33:00.0906 5304        udfs - ok
12:33:00.0968 5304        uliagpkx        (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
12:33:01.0054 5304        uliagpkx - ok
12:33:01.0102 5304        uliahci        (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
12:33:01.0263 5304        uliahci - ok
12:33:01.0307 5304        UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
12:33:01.0363 5304        UlSata - ok
12:33:01.0398 5304        ulsata2        (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
12:33:01.0461 5304        ulsata2 - ok
12:33:01.0518 5304        umbus          (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
12:33:01.0625 5304        umbus - ok
12:33:01.0708 5304        usbaudio        (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
12:33:01.0833 5304        usbaudio - ok
12:33:01.0892 5304        usbccgp        (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
12:33:02.0019 5304        usbccgp - ok
12:33:02.0082 5304        usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
12:33:02.0258 5304        usbcir - ok
12:33:02.0319 5304        usbehci        (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
12:33:02.0414 5304        usbehci - ok
12:33:02.0459 5304        usbhub          (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
12:33:02.0557 5304        usbhub - ok
12:33:02.0601 5304        usbohci        (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
12:33:02.0679 5304        usbohci - ok
12:33:02.0732 5304        usbprint        (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
12:33:02.0830 5304        usbprint - ok
12:33:02.0919 5304        usbscan        (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
12:33:03.0017 5304        usbscan - ok
12:33:03.0074 5304        USBSTOR        (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:33:03.0195 5304        USBSTOR - ok
12:33:03.0250 5304        usbuhci        (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
12:33:03.0394 5304        usbuhci - ok
12:33:03.0466 5304        usbvideo        (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
12:33:03.0563 5304        usbvideo - ok
12:33:03.0767 5304        vga            (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
12:33:03.0909 5304        vga - ok
12:33:04.0010 5304        VgaSave        (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
12:33:04.0108 5304        VgaSave - ok
12:33:04.0170 5304        viaagp          (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
12:33:04.0251 5304        viaagp - ok
12:33:04.0311 5304        ViaC7          (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
12:33:04.0466 5304        ViaC7 - ok
12:33:04.0518 5304        viaide          (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
12:33:04.0566 5304        viaide - ok
12:33:04.0622 5304        volmgr          (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
12:33:04.0700 5304        volmgr - ok
12:33:04.0770 5304        volmgrx        (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
12:33:04.0852 5304        volmgrx - ok
12:33:04.0919 5304        volsnap        (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
12:33:04.0991 5304        volsnap - ok
12:33:05.0049 5304        vsmraid        (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
12:33:05.0158 5304        vsmraid - ok
12:33:05.0235 5304        WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
12:33:05.0374 5304        WacomPen - ok
12:33:05.0437 5304        Wanarp          (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:33:05.0569 5304        Wanarp - ok
12:33:05.0596 5304        Wanarpv6        (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
12:33:05.0723 5304        Wanarpv6 - ok
12:33:05.0800 5304        Wd              (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
12:33:05.0849 5304        Wd - ok
12:33:05.0926 5304        Wdf01000        (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
12:33:06.0019 5304        Wdf01000 - ok
12:33:06.0181 5304        WmiAcpi        (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
12:33:06.0317 5304        WmiAcpi - ok
12:33:06.0428 5304        WpdUsb          (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
12:33:06.0541 5304        WpdUsb - ok
12:33:06.0671 5304        ws2ifsl        (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
12:33:06.0777 5304        ws2ifsl - ok
12:33:06.0888 5304        WUDFRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:33:07.0043 5304        WUDFRd - ok
12:33:07.0115 5304        MBR (0x1B8)    (64b1e91c5c6c2157642651010728f90f) \Device\Harddisk0\DR0
12:33:07.0220 5304        \Device\Harddisk0\DR0 - ok
12:33:07.0229 5304        Boot (0x1200)  (cf834160f878d197b2f71ce524eeba63) \Device\Harddisk0\DR0\Partition0
12:33:07.0231 5304        \Device\Harddisk0\DR0\Partition0 - ok
12:33:07.0236 5304        ============================================================
12:33:07.0236 5304        Scan finished
12:33:07.0236 5304        ============================================================
12:33:07.0267 5944        Detected object count: 0
12:33:07.0267 5944        Actual detected object count: 0

Chris4You 11.03.2012 13:31
Hi,

sieht ok aus, dann wären wir erstmal durch, wenn sich der Rechner wieder normal verhält (keine Umleitungen im Internet etc.)...

chris


Alle Zeitangaben in WEZ +1. Es ist jetzt 17:35 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131