Scribd Logo
Hochladen

Willkommen bei Scribd!

  • DD

    Hochgeladen von

    Wandi Wakiu
    4 Ansichten13 Seiten
    TDS KILLER

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Verfügbare Formate

    TXT, PDF, TXT oder online auf Scribd lesen

    Stufen Sie dieses Dokument als nützlich ein?

    Sind diese Inhalte unangemessen?

    Dieses Dokument melden
    TDS KILLER

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als TXT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    4 Ansichten13 Seiten

    DD

    Hochgeladen von

    Wandi Wakiu
    TDS KILLER

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Als TXT, PDF, TXT herunterladen oder online auf Scribd lesen
    Markieren Sie unangemessene Inhalte
    von 13

    19:50:12.0625 0508 TDSS rootkit removing tool 2.8.15.

    0 Oct 31 2012 21:47:35


    19:50:14.0015 0508 ============================================================
    19:50:14.0015 0508 Current date / time: 2012/12/19 19:50:14.0015
    19:50:14.0015 0508 SystemInfo:
    19:50:14.0015 0508
    19:50:14.0015 0508 OS Version: 5.1.2600 ServicePack: 2.0
    19:50:14.0015 0508 Product type: Workstation
    19:50:14.0015 0508 ComputerName: AFANZAXP
    19:50:14.0015 0508 UserName: rama
    19:50:14.0015 0508 Windows directory: C:\WINDOWS
    19:50:14.0015 0508 System windows directory: C:\WINDOWS
    19:50:14.0015 0508 Processor architecture: Intel x86
    19:50:14.0015 0508 Number of processors: 2
    19:50:14.0015 0508 Page size: 0x1000
    19:50:14.0015 0508 Boot type: Normal boot
    19:50:14.0015 0508 ============================================================
    19:50:15.0609 0508 Drive \Device\Harddisk0\DR0 - Size: 0x132C570000 (76.69 Gb),
    SectorSize: 0x200, Cylinders: 0x271B, SectorsPerTrack: 0x3F, TracksPerCylinder:
    0xFF, Type 'K0', Flags 0x00000054
    19:50:15.0609 0508 ============================================================
    19:50:15.0609 0508 \Device\Harddisk0\DR0:
    19:50:15.0609 0508 MBR partitions:
    19:50:15.0609 0508 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x
    3F, BlocksNum 0x30D3C74
    19:50:15.0609 0508 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x
    30D3CF2, BlocksNum 0x2711637
    19:50:15.0625 0508 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x
    57E5368, BlocksNum 0x4177332
    19:50:15.0625 0508 ============================================================
    19:50:15.0656 0508 C: <-> \Device\Harddisk0\DR0\Partition1
    19:50:15.0703 0508 D: <-> \Device\Harddisk0\DR0\Partition2
    19:50:15.0781 0508 E: <-> \Device\Harddisk0\DR0\Partition3
    19:50:15.0875 0508 ============================================================
    19:50:15.0875 0508 Initialize success
    19:50:15.0875 0508 ============================================================
    19:50:40.0343 0904 ============================================================
    19:50:40.0343 0904 Scan started
    19:50:40.0343 0904 Mode: Manual; SigCheck; TDLFS;
    19:50:40.0343 0904 ============================================================
    19:50:40.0750 0904 ================ Scan system memory ========================
    19:50:40.0750 0904 System memory - ok
    19:50:40.0750 0904 ================ Scan services =============================
    19:50:40.0812 0904 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4
    C:\WIND
    OWS\system32\drivers\Aavmker4.sys
    19:50:41.0562 0904 Aavmker4 - ok
    19:50:41.0562 0904 Abiosdsk - ok
    19:50:41.0578 0904 abp480n5 - ok
    19:50:41.0609 0904 [ A10C7534F7223F4A73A948967D00E69B ] ACPI
    C:\WIND
    OWS\system32\DRIVERS\ACPI.sys
    19:50:42.0593 0904 ACPI - ok
    19:50:42.0625 0904 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC
    C:\WIND
    OWS\system32\drivers\ACPIEC.sys
    19:50:42.0687 0904 ACPIEC - ok
    19:50:42.0750 0904 [ E934E5CA45CAE47C1769CDCAC3B284EB ] AdobeFlashPlayerUpdateS
    vc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    19:50:42.0765 0904 AdobeFlashPlayerUpdateSvc - ok
    19:50:42.0765 0904 adpu160m - ok
    19:50:42.0796 0904 [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec
    C:\WIND
    OWS\system32\drivers\aec.sys
    19:50:42.0859 0904 aec - ok

    19:50:42.0890 0904 [ 5AC495F4CB807B2B98AD2AD591E6D92E


    OWS\System32\drivers\afd.sys
    19:50:42.0968 0904 AFD - ok
    19:50:42.0968 0904 Aha154x - ok
    19:50:42.0984 0904 aic78u2 - ok
    19:50:42.0984 0904 aic78xx - ok
    19:50:43.0000 0904 [ C7AE0FD3867DB0D42B03B73C18F3D671
    OWS\system32\alrsvc.dll
    19:50:43.0062 0904 Alerter - ok
    19:50:43.0078 0904 [ F1958FBF86D5C004CF19A5951A9514B7
    OWS\System32\alg.exe
    19:50:43.0093 0904 ALG - ok
    19:50:43.0093 0904 AliIde - ok
    19:50:43.0156 0904 [ F6AF59D6EEE5E1C304F7F73706AD11D8
    OWS\system32\drivers\Ambfilt.sys
    19:50:43.0265 0904 Ambfilt - ok
    19:50:43.0265 0904 amsint - ok
    19:50:43.0281 0904 [ 9C3C12975C97119412802B181FBEEFFE
    OWS\System32\appmgmts.dll
    19:50:43.0328 0904 AppMgmt - ok
    19:50:43.0328 0904 asc - ok
    19:50:43.0328 0904 asc3350p - ok
    19:50:43.0343 0904 asc3550 - ok
    19:50:43.0359 0904 [ DE6ED95AEF259979B2830450072A627B
    OWS\system32\drivers\aswFsBlk.sys
    19:50:43.0359 0904 aswFsBlk - ok
    19:50:43.0375 0904 [ 84F0BE324EE111338589F448C3E8BAB2
    OWS\system32\drivers\aswMon2.sys
    19:50:43.0390 0904 aswMon2 - ok
    19:50:43.0406 0904 [ 7C9F0A2AB17D52261A9252A2EB320884
    OWS\system32\drivers\AswRdr.sys
    19:50:43.0406 0904 AswRdr - ok
    19:50:43.0421 0904 [ B32E9AD44A1DBB3E8095E80F8DF32B03
    OWS\system32\drivers\aswSnx.sys
    19:50:43.0437 0904 aswSnx - ok
    19:50:43.0484 0904 [ 67B558895695545FB0568B7541F3BCA7
    OWS\system32\drivers\aswSP.sys
    19:50:43.0500 0904 aswSP - ok
    19:50:43.0515 0904 [ E3E73B2B73A4DFADFDDF557192C4B08A
    OWS\system32\drivers\aswTdi.sys
    19:50:43.0515 0904 aswTdi - ok
    19:50:43.0562 0904 [ 02000ABF34AF4C218C35D257024807D6
    OWS\system32\DRIVERS\asyncmac.sys
    19:50:43.0609 0904 AsyncMac - ok
    19:50:43.0625 0904 [ CDFE4411A69C224BD1D11B2DA92DAC51
    OWS\system32\DRIVERS\atapi.sys
    19:50:43.0703 0904 atapi - ok
    19:50:43.0703 0904 Atdisk - ok
    19:50:43.0703 0904 [ EC88DA854AB7D7752EC8BE11A741BB7F
    OWS\system32\DRIVERS\atmarpc.sys
    19:50:43.0765 0904 Atmarpc - ok
    19:50:43.0796 0904 [ DB66DB626E4882EBEF55F136F12C1829
    OWS\System32\audiosrv.dll
    19:50:43.0843 0904 AudioSrv - ok
    19:50:43.0875 0904 [ D9F724AA26C010A217C97606B160ED68
    OWS\system32\DRIVERS\audstub.sys
    19:50:43.0953 0904 audstub - ok
    19:50:44.0015 0904 [ 8FA553E9AE69808D99C164733A0F9590
    gram Files\AVAST Software\Avast\AvastSvc.exe
    19:50:44.0031 0904 avast! Antivirus - ok

    ] AFD

    C:\WIND

    ] Alerter

    C:\WIND

    ] ALG

    C:\WIND

    ] Ambfilt

    C:\WIND

    ] AppMgmt

    C:\WIND

    ] aswFsBlk

    C:\WIND

    ] aswMon2

    C:\WIND

    ] AswRdr

    C:\WIND

    ] aswSnx

    C:\WIND

    ] aswSP

    C:\WIND

    ] aswTdi

    C:\WIND

    ] AsyncMac

    C:\WIND

    ] atapi

    C:\WIND

    ] Atmarpc

    C:\WIND

    ] AudioSrv

    C:\WIND

    ] audstub

    C:\WIND

    ] avast! Antivirus C:\Pro

    19:50:44.0046 0904 [ DA1F27D85E0D1525F6621372E7B685E9


    OWS\system32\drivers\Beep.sys
    19:50:44.0109 0904 Beep - ok
    19:50:44.0140 0904 [ 2C69EC7E5A311334D10DD95F338FCCEA
    OWS\system32\qmgr.dll
    19:50:44.0265 0904 BITS - ok
    19:50:44.0296 0904 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8
    OWS\System32\browser.dll
    19:50:44.0359 0904 Browser - ok
    19:50:44.0421 0904 [ 90A673FC8E12A79AFBED2576F6A7AAF9
    OWS\system32\drivers\cbidf2k.sys
    19:50:44.0484 0904 cbidf2k - ok
    19:50:44.0484 0904 cd20xrnt - ok
    19:50:44.0500 0904 [ C1B486A7658353D33A10CC15211A873B
    OWS\system32\drivers\Cdaudio.sys
    19:50:44.0562 0904 Cdaudio - ok
    19:50:44.0593 0904 [ CD7D5152DF32B47F4E36F710B35AAE02
    OWS\system32\drivers\Cdfs.sys
    19:50:44.0656 0904 Cdfs - ok
    19:50:44.0687 0904 [ AF9C19B3100FE010496B1A27181FBF72
    OWS\system32\DRIVERS\cdrom.sys
    19:50:44.0750 0904 Cdrom - ok
    19:50:44.0750 0904 Changer - ok
    19:50:44.0765 0904 [ 3192BD04D032A9C4A85A3278C268A13A
    OWS\system32\cisvc.exe
    19:50:44.0828 0904 CiSvc - ok
    19:50:44.0843 0904 [ C8DEC22C4137D7A90F8BDF41CA4B82AE
    OWS\system32\clipsrv.exe
    19:50:44.0906 0904 ClipSrv - ok
    19:50:44.0921 0904 CmdIde - ok
    19:50:44.0921 0904 COMSysApp - ok
    19:50:44.0921 0904 Cpqarray - ok
    19:50:44.0937 0904 [ 10654F9DDCEA9C46CFB77554231BE73B
    OWS\System32\cryptsvc.dll
    19:50:45.0000 0904 CryptSvc - ok
    19:50:45.0000 0904 dac2w2k - ok
    19:50:45.0000 0904 dac960nt - ok
    19:50:45.0015 0904 [ 5C83A4408604F737717AB96371201680
    OWS\system32\rpcss.dll
    19:50:45.0078 0904 DcomLaunch - ok
    19:50:45.0093 0904 [ CB6CA3E5261D65F6F809EED23BF167AA
    OWS\System32\dhcpcsvc.dll
    19:50:45.0171 0904 Dhcp - ok
    19:50:45.0187 0904 [ 00CA44E4534865F8A3B64F7C0984BFF0
    OWS\system32\DRIVERS\disk.sys
    19:50:45.0250 0904 Disk - ok
    19:50:45.0250 0904 dmadmin - ok
    19:50:45.0296 0904 [ C0FBB516E06E243F0CF31F597E7EBF7D
    OWS\system32\drivers\dmboot.sys
    19:50:45.0375 0904 dmboot - ok
    19:50:45.0375 0904 [ F5E7B358A732D09F4BCF2824B88B9E28
    OWS\system32\drivers\dmio.sys
    19:50:45.0453 0904 dmio - ok
    19:50:45.0468 0904 [ E9317282A63CA4D188C0DF5E09C6AC5F
    OWS\system32\drivers\dmload.sys
    19:50:45.0546 0904 dmload - ok
    19:50:45.0562 0904 [ 1639D9964C9E1B2ECCA95C8217D3E70D
    OWS\System32\dmserver.dll
    19:50:45.0625 0904 dmserver - ok
    19:50:45.0656 0904 [ A6F881284AC1150E37D9AE47FF601267

    ] Beep

    C:\WIND

    ] BITS

    C:\WIND

    ] Browser

    C:\WIND

    ] cbidf2k

    C:\WIND

    ] Cdaudio

    C:\WIND

    ] Cdfs

    C:\WIND

    ] Cdrom

    C:\WIND

    ] CiSvc

    C:\WIND

    ] ClipSrv

    C:\WIND

    ] CryptSvc

    C:\WIND

    ] DcomLaunch

    C:\WIND

    ] Dhcp

    C:\WIND

    ] Disk

    C:\WIND

    ] dmboot

    C:\WIND

    ] dmio

    C:\WIND

    ] dmload

    C:\WIND

    ] dmserver

    C:\WIND

    ] DMusic

    C:\WIND

    OWS\system32\drivers\DMusic.sys
    19:50:45.0703 0904 DMusic - ok
    19:50:45.0734 0904 [ 7379DE06FD196E396A00AA97B990C00D ]
    OWS\System32\dnsrslvr.dll
    19:50:45.0796 0904 Dnscache - ok
    19:50:45.0796 0904 dpti2o - ok
    19:50:45.0796 0904 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ]
    OWS\system32\drivers\drmkaud.sys
    19:50:45.0859 0904 drmkaud - ok
    19:50:45.0859 0904 EagleXNt - ok
    19:50:45.0875 0904 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ]
    OWS\System32\ersvc.dll
    19:50:45.0937 0904 ERSvc - ok
    19:50:45.0953 0904 [ C6CE6EEC82F187615D1002BB3BB50ED4 ]
    OWS\system32\services.exe
    19:50:46.0015 0904 Eventlog - ok
    19:50:46.0031 0904 [ ACD36A2DD7D1E9D8A060AA651DC07E63 ]
    OWS\system32\es.dll
    19:50:46.0093 0904 EventSystem - ok
    19:50:46.0125 0904 [ 3117F595E9615E04F05A54FC15A03B20 ]
    OWS\system32\drivers\Fastfat.sys
    19:50:46.0187 0904 Fastfat - ok
    19:50:46.0203 0904 [ E7518DC542D3EBDCB80EDD98462C7821 ]
    ibility C:\WINDOWS\System32\shsvcs.dll
    19:50:46.0265 0904 FastUserSwitchingCompatibility - ok
    19:50:46.0296 0904 [ 50E61833753FFADB5C16FD9A61C592F2 ]
    OWS\system32\DRIVERS\fcusbser.sys
    19:50:46.0296 0904 fcusbser - ok
    19:50:46.0312 0904 [ CED2E8396A8838E59D8FD529C680E02C ]
    OWS\system32\drivers\Fdc.sys
    19:50:46.0375 0904 Fdc - ok
    19:50:46.0406 0904 [ E153AB8A11DE5452BCF5AC7652DBF3ED ]
    OWS\system32\drivers\Fips.sys
    19:50:46.0468 0904 Fips - ok
    19:50:46.0531 0904 [ 0DD1DE43115B93F4D85E889D7A86F548 ]
    OWS\system32\drivers\Flpydisk.sys
    19:50:46.0593 0904 Flpydisk - ok
    19:50:46.0625 0904 [ 157754F0DF355A9E0A6F54721914F9C6 ]
    OWS\system32\DRIVERS\fltMgr.sys
    19:50:46.0687 0904 FltMgr - ok
    19:50:46.0687 0904 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ]
    OWS\system32\drivers\Fs_Rec.sys
    19:50:46.0750 0904 Fs_Rec - ok
    19:50:46.0765 0904 [ 6AC26732762483366C3969C9E4D2259D ]
    OWS\system32\DRIVERS\ftdisk.sys
    19:50:46.0812 0904 Ftdisk - ok
    19:50:46.0843 0904 [ C0F1D4A21DE5A415DF8170616703DEBF ]
    OWS\system32\DRIVERS\msgpc.sys
    19:50:46.0906 0904 Gpc - ok
    19:50:46.0937 0904 [ 506708142BC63DABA64F2D3AD1DCD5BF ]
    ram Files\Google\Update\GoogleUpdate.exe
    19:50:46.0937 0904 gupdate - ok
    19:50:46.0937 0904 [ 506708142BC63DABA64F2D3AD1DCD5BF ]
    ram Files\Google\Update\GoogleUpdate.exe
    19:50:46.0953 0904 gupdatem - ok
    19:50:46.0968 0904 [ 3FCC124B6E08EE0E9351F717DD136939 ]
    OWS\system32\DRIVERS\HDAudBus.sys
    19:50:46.0984 0904 HDAudBus - ok
    19:50:47.0031 0904 [ 8827911A8C37E40C027CBFC88E69D967 ]
    OWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

    Dnscache

    C:\WIND

    drmkaud

    C:\WIND

    ERSvc

    C:\WIND

    Eventlog

    C:\WIND

    EventSystem

    C:\WIND

    Fastfat

    C:\WIND

    FastUserSwitchingCompat
    fcusbser

    C:\WIND

    Fdc

    C:\WIND

    Fips

    C:\WIND

    Flpydisk

    C:\WIND

    FltMgr

    C:\WIND

    Fs_Rec

    C:\WIND

    Ftdisk

    C:\WIND

    Gpc

    C:\WIND

    gupdate

    C:\Prog

    gupdatem

    C:\Prog

    HDAudBus

    C:\WIND

    helpsvc

    C:\WIND

    19:50:47.0093 0904 helpsvc - ok


    19:50:47.0093 0904 HidServ - ok
    19:50:47.0125 0904 [ 1DE6783B918F540149AA69943BDFEBA8
    OWS\system32\DRIVERS\hidusb.sys
    19:50:47.0171 0904 HidUsb - ok
    19:50:47.0171 0904 hpn - ok
    19:50:47.0203 0904 [ C19B522A9AE0BBC3293397F3055E80A1
    OWS\system32\Drivers\HTTP.sys
    19:50:47.0265 0904 HTTP - ok
    19:50:47.0312 0904 [ 064D8581ADF77C25133E7D751D917D83
    OWS\System32\w3ssl.dll
    19:50:47.0375 0904 HTTPFilter - ok
    19:50:47.0375 0904 hwdatacard - ok
    19:50:47.0375 0904 i2omgmt - ok
    19:50:47.0375 0904 i2omp - ok
    19:50:47.0406 0904 [ 5502B58EEF7486EE6F93F3F164DCB808
    OWS\system32\DRIVERS\i8042prt.sys
    19:50:47.0453 0904 i8042prt - ok
    19:50:47.0515 0904 [ C0255E6F43DBDE7F20637A039075318D
    OWS\system32\DRIVERS\igxpmp32.sys
    19:50:47.0609 0904 ialm - ok
    19:50:47.0640 0904 [ F8AA320C6A0409C0380E5D8A99D76EC6
    OWS\system32\DRIVERS\imapi.sys
    19:50:47.0703 0904 Imapi - ok
    19:50:47.0750 0904 [ FA788520BCAC0F5D9D5CDE5615C0D931
    OWS\system32\imapi.exe
    19:50:47.0796 0904 ImapiService - ok
    19:50:47.0812 0904 ini910u - ok
    19:50:47.0921 0904 [ E8656858D8B2DA7C9CF59FB4E5CE32ED
    WINDOWS\system32\drivers\RtkHDAud.sys
    19:50:48.0062 0904 IntcAzAudAddService - ok
    19:50:48.0078 0904 IntelIde - ok
    19:50:48.0109 0904 [ 279FB78702454DFF2BB445F238C048D2
    OWS\system32\DRIVERS\intelppm.sys
    19:50:48.0156 0904 intelppm - ok
    19:50:48.0171 0904 [ 4448006B6BC60E6C027932CFC38D6855
    OWS\system32\DRIVERS\Ip6Fw.sys
    19:50:48.0234 0904 Ip6Fw - ok
    19:50:48.0250 0904 [ 731F22BA402EE4B62748ADAF6363C182
    OWS\system32\DRIVERS\ipfltdrv.sys
    19:50:48.0312 0904 IpFilterDriver - ok
    19:50:48.0312 0904 [ E1EC7F5DA720B640CD8FB8424F1B14BB
    OWS\system32\DRIVERS\ipinip.sys
    19:50:48.0375 0904 IpInIp - ok
    19:50:48.0390 0904 [ B5A8E215AC29D24D60B4D1250EF05ACE
    OWS\system32\DRIVERS\ipnat.sys
    19:50:48.0453 0904 IpNat - ok
    19:50:48.0468 0904 [ 64537AA5C003A6AFEEE1DF819062D0D1
    OWS\system32\DRIVERS\ipsec.sys
    19:50:48.0515 0904 IPSec - ok
    19:50:48.0546 0904 [ 50708DAA1B1CBB7D6AC1CF8F56A24410
    OWS\system32\DRIVERS\irenum.sys
    19:50:48.0671 0904 IRENUM - ok
    19:50:48.0703 0904 [ E504F706CCB699C2596E9A3DA1596E87
    OWS\system32\DRIVERS\isapnp.sys
    19:50:48.0750 0904 isapnp - ok
    19:50:48.0781 0904 [ EBDEE8A2EE5393890A1ACEE971C4C246
    OWS\system32\DRIVERS\kbdclass.sys
    19:50:48.0843 0904 Kbdclass - ok
    19:50:48.0875 0904 [ D93CAD07C5683DB066B0B2D2D3790EAD

    ] HidUsb

    C:\WIND

    ] HTTP

    C:\WIND

    ] HTTPFilter

    C:\WIND

    ] i8042prt

    C:\WIND

    ] ialm

    C:\WIND

    ] Imapi

    C:\WIND

    ] ImapiService

    C:\WIND

    ] IntcAzAudAddService C:\

    ] intelppm

    C:\WIND

    ] Ip6Fw

    C:\WIND

    ] IpFilterDriver C:\WIND
    ] IpInIp

    C:\WIND

    ] IpNat

    C:\WIND

    ] IPSec

    C:\WIND

    ] IRENUM

    C:\WIND

    ] isapnp

    C:\WIND

    ] Kbdclass

    C:\WIND

    ] kmixer

    C:\WIND

    OWS\system32\drivers\kmixer.sys
    19:50:48.0937 0904 kmixer - ok
    19:50:48.0953 0904 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD
    C:\WIND
    OWS\system32\drivers\KSecDD.sys
    19:50:49.0000 0904 KSecDD - ok
    19:50:49.0031 0904 [ 080CF8720A306A64F7A09D1226491791 ] L1e
    C:\WIND
    OWS\system32\DRIVERS\l1e51x86.sys
    19:50:49.0046 0904 L1e - ok
    19:50:49.0046 0904 [ 93D32468D34E000CB3407947D1D6E22A ] lanmanserver
    C:\WIND
    OWS\System32\srvsvc.dll
    19:50:49.0109 0904 lanmanserver - ok
    19:50:49.0125 0904 [ 2C0A7B2AE9C26F2C163627679B42783C ] lanmanworkstation C:\WI
    NDOWS\System32\wkssvc.dll
    19:50:49.0187 0904 lanmanworkstation - ok
    19:50:49.0187 0904 lbrtfdc - ok
    19:50:49.0203 0904 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts
    C:\WIND
    OWS\System32\lmhsvc.dll
    19:50:49.0265 0904 LmHosts - ok
    19:50:49.0265 0904 massfilter - ok
    19:50:49.0281 0904 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger
    C:\WIND
    OWS\System32\msgsvc.dll
    19:50:49.0343 0904 Messenger - ok
    19:50:49.0406 0904 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove
    Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
    19:50:49.0406 0904 Microsoft Office Groove Audit Service - ok
    19:50:49.0437 0904 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd
    C:\WIND
    OWS\system32\drivers\mnmdd.sys
    19:50:49.0484 0904 mnmdd - ok
    19:50:49.0515 0904 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc
    C:\WIND
    OWS\system32\mnmsrvc.exe
    19:50:49.0593 0904 mnmsrvc - ok
    19:50:49.0609 0904 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem
    C:\WIND
    OWS\system32\drivers\Modem.sys
    19:50:49.0671 0904 Modem - ok
    19:50:49.0718 0904 [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] Monfilt
    C:\WIND
    OWS\system32\drivers\Monfilt.sys
    19:50:49.0812 0904 Monfilt - ok
    19:50:49.0812 0904 [ 34E1F0031153E491910E12551400192C ] Mouclass
    C:\WIND
    OWS\system32\DRIVERS\mouclass.sys
    19:50:49.0875 0904 Mouclass - ok
    19:50:49.0906 0904 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid
    C:\WIND
    OWS\system32\DRIVERS\mouhid.sys
    19:50:49.0984 0904 mouhid - ok
    19:50:50.0000 0904 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr
    C:\WIND
    OWS\system32\drivers\MountMgr.sys
    19:50:50.0046 0904 MountMgr - ok
    19:50:50.0078 0904 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\P
    rogram Files\Mozilla Maintenance Service\maintenanceservice.exe
    19:50:50.0093 0904 MozillaMaintenance - ok
    19:50:50.0093 0904 mraid35x - ok
    19:50:50.0109 0904 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV
    C:\WIND
    OWS\system32\DRIVERS\mrxdav.sys
    19:50:50.0171 0904 MRxDAV - ok
    19:50:50.0203 0904 [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb
    C:\WIND
    OWS\system32\DRIVERS\mrxsmb.sys
    19:50:50.0265 0904 MRxSmb - ok
    19:50:50.0296 0904 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC
    C:\WIND
    OWS\system32\msdtc.exe
    19:50:50.0375 0904 MSDTC - ok
    19:50:50.0375 0904 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs
    C:\WIND

    OWS\system32\drivers\Msfs.sys
    19:50:50.0421 0904 Msfs - ok
    19:50:50.0421 0904 MSIServer - ok
    19:50:50.0453 0904 [ AE431A8DD3C1D0D0610CDBAC16057AD0
    OWS\system32\drivers\MSKSSRV.sys
    19:50:50.0515 0904 MSKSSRV - ok
    19:50:50.0515 0904 [ 13E75FEF9DFEB08EEDED9D0246E1F448
    OWS\system32\drivers\MSPCLOCK.sys
    19:50:50.0578 0904 MSPCLOCK - ok
    19:50:50.0578 0904 [ 1988A33FF19242576C3D0EF9CE785DA7
    OWS\system32\drivers\MSPQM.sys
    19:50:50.0625 0904 MSPQM - ok
    19:50:50.0656 0904 [ 469541F8BFD2B32659D5D463A6714BCE
    OWS\system32\DRIVERS\mssmbios.sys
    19:50:50.0828 0904 mssmbios - ok
    19:50:50.0859 0904 [ D48659BB24C48345D926ECB45C1EBDF5
    OWS\system32\DRIVERS\ASACPI.sys
    19:50:50.0875 0904 MTsensor - ok
    19:50:50.0906 0904 [ 82035E0F41C2DD05AE41D27FE6CF7DE1
    OWS\system32\drivers\Mup.sys
    19:50:50.0953 0904 Mup - ok
    19:50:50.0968 0904 [ 558635D3AF1C7546D26067D5D9B6959E
    OWS\system32\drivers\NDIS.sys
    19:50:51.0031 0904 NDIS - ok
    19:50:51.0046 0904 [ 08D43BBDACDF23F34D79E44ED35C1B4C
    OWS\system32\DRIVERS\ndistapi.sys
    19:50:51.0109 0904 NdisTapi - ok
    19:50:51.0125 0904 [ 34D6CD56409DA9A7ED573E1C90A308BF
    OWS\system32\DRIVERS\ndisuio.sys
    19:50:51.0187 0904 Ndisuio - ok
    19:50:51.0187 0904 [ 0B90E255A9490166AB368CD55A529893
    OWS\system32\DRIVERS\ndiswan.sys
    19:50:51.0234 0904 NdisWan - ok
    19:50:51.0250 0904 [ 59FC3FB44D2669BC144FD87826BB571F
    OWS\system32\drivers\NDProxy.sys
    19:50:51.0312 0904 NDProxy - ok
    19:50:51.0312 0904 [ 3A2ACA8FC1D7786902CA434998D7CEB4
    OWS\system32\DRIVERS\netbios.sys
    19:50:51.0359 0904 NetBIOS - ok
    19:50:51.0375 0904 [ 0C80E410CD2F47134407EE7DD19CC86B
    OWS\system32\DRIVERS\netbt.sys
    19:50:51.0421 0904 NetBT - ok
    19:50:51.0453 0904 [ 05AFB5AD06462257BEA7495283C86D50
    OWS\system32\netdde.exe
    19:50:51.0531 0904 NetDDE - ok
    19:50:51.0531 0904 [ 05AFB5AD06462257BEA7495283C86D50
    OWS\system32\netdde.exe
    19:50:51.0593 0904 NetDDEdsdm - ok
    19:50:51.0593 0904 [ 84885F9B82F4D55C6146EBF6065D75D2
    OWS\system32\lsass.exe
    19:50:51.0656 0904 Netlogon - ok
    19:50:51.0703 0904 [ DAB9E6C7105D2EF49876FE92C524F565
    OWS\System32\netman.dll
    19:50:51.0781 0904 Netman - ok
    19:50:51.0796 0904 [ 4E74AF063C3271FBEA20DD940CFD1184
    OWS\System32\mswsock.dll
    19:50:51.0859 0904 Nla - ok
    19:50:51.0875 0904 [ 4F601BCB8F64EA3AC0994F98FED03F8E
    OWS\system32\drivers\Npfs.sys
    19:50:51.0921 0904 Npfs - ok

    ] MSKSSRV

    C:\WIND

    ] MSPCLOCK

    C:\WIND

    ] MSPQM

    C:\WIND

    ] mssmbios

    C:\WIND

    ] MTsensor

    C:\WIND

    ] Mup

    C:\WIND

    ] NDIS

    C:\WIND

    ] NdisTapi

    C:\WIND

    ] Ndisuio

    C:\WIND

    ] NdisWan

    C:\WIND

    ] NDProxy

    C:\WIND

    ] NetBIOS

    C:\WIND

    ] NetBT

    C:\WIND

    ] NetDDE

    C:\WIND

    ] NetDDEdsdm

    C:\WIND

    ] Netlogon

    C:\WIND

    ] Netman

    C:\WIND

    ] Nla

    C:\WIND

    ] Npfs

    C:\WIND

    19:50:51.0968 0904 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs


    C:\WIND
    OWS\system32\drivers\Ntfs.sys
    19:50:52.0046 0904 Ntfs - ok
    19:50:52.0062 0904 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp
    C:\WIND
    OWS\system32\lsass.exe
    19:50:52.0109 0904 NtLmSsp - ok
    19:50:52.0125 0904 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc
    C:\WIND
    OWS\system32\ntmssvc.dll
    19:50:52.0203 0904 NtmsSvc - ok
    19:50:52.0203 0904 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null
    C:\WIND
    OWS\system32\drivers\Null.sys
    19:50:52.0265 0904 Null - ok
    19:50:52.0296 0904 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt
    C:\WIND
    OWS\system32\DRIVERS\nwlnkflt.sys
    19:50:52.0359 0904 NwlnkFlt - ok
    19:50:52.0359 0904 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd
    C:\WIND
    OWS\system32\DRIVERS\nwlnkfwd.sys
    19:50:52.0406 0904 NwlnkFwd - ok
    19:50:52.0484 0904 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv
    C:\Prog
    ram Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    19:50:52.0500 0904 odserv - ok
    19:50:52.0562 0904 [ 5A432A042DAE460ABE7199B758E8606C ] ose
    C:\Prog
    ram Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    19:50:52.0562 0904 ose - ok
    19:50:52.0578 0904 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport
    C:\WIND
    OWS\system32\DRIVERS\parport.sys
    19:50:52.0640 0904 Parport - ok
    19:50:52.0640 0904 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr
    C:\WIND
    OWS\system32\drivers\PartMgr.sys
    19:50:52.0703 0904 PartMgr - ok
    19:50:52.0718 0904 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm
    C:\WIND
    OWS\system32\drivers\ParVdm.sys
    19:50:52.0781 0904 ParVdm - ok
    19:50:52.0921 0904 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI
    C:\WIND
    OWS\system32\DRIVERS\pci.sys
    19:50:52.0968 0904 PCI - ok
    19:50:52.0984 0904 PCIDump - ok
    19:50:52.0984 0904 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde
    C:\WIND
    OWS\system32\DRIVERS\pciide.sys
    19:50:53.0031 0904 PCIIde - ok
    19:50:53.0062 0904 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia
    C:\WIND
    OWS\system32\drivers\Pcmcia.sys
    19:50:53.0125 0904 Pcmcia - ok
    19:50:53.0125 0904 PDCOMP - ok
    19:50:53.0140 0904 PDFRAME - ok
    19:50:53.0140 0904 PDRELI - ok
    19:50:53.0140 0904 PDRFRAME - ok
    19:50:53.0140 0904 perc2 - ok
    19:50:53.0140 0904 perc2hib - ok
    19:50:53.0171 0904 [ C6CE6EEC82F187615D1002BB3BB50ED4 ] PlugPlay
    C:\WIND
    OWS\system32\services.exe
    19:50:53.0218 0904 PlugPlay - ok
    19:50:53.0218 0904 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent
    C:\WIND
    OWS\system32\lsass.exe
    19:50:53.0281 0904 PolicyAgent - ok
    19:50:53.0296 0904 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport
    C:\WIND
    OWS\system32\DRIVERS\raspptp.sys
    19:50:53.0343 0904 PptpMiniport - ok
    19:50:53.0359 0904 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WIN
    DOWS\system32\lsass.exe

    19:50:53.0406 0904 ProtectedStorage - ok


    19:50:53.0406 0904 [ 48671F327553DCF1D27F6197F622A668
    OWS\system32\DRIVERS\psched.sys
    19:50:53.0468 0904 PSched - ok
    19:50:53.0468 0904 [ 80D317BD1C3DBC5D4FE7B1678C60CADD
    OWS\system32\DRIVERS\ptilink.sys
    19:50:53.0515 0904 Ptilink - ok
    19:50:53.0531 0904 ql1080 - ok
    19:50:53.0531 0904 Ql10wnt - ok
    19:50:53.0531 0904 ql12160 - ok
    19:50:53.0531 0904 ql1240 - ok
    19:50:53.0531 0904 ql1280 - ok
    19:50:53.0546 0904 [ FE0D99D6F31E4FAD8159F690D68DED9C
    OWS\system32\DRIVERS\rasacd.sys
    19:50:53.0609 0904 RasAcd - ok
    19:50:53.0625 0904 [ 44DB7A9BDD2FB58747D123FBF1D35ADB
    OWS\System32\rasauto.dll
    19:50:53.0687 0904 RasAuto - ok
    19:50:53.0687 0904 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C
    OWS\system32\DRIVERS\rasl2tp.sys
    19:50:53.0750 0904 Rasl2tp - ok
    19:50:53.0765 0904 [ 41A3C11E3517C962C9B44893BCEC3B34
    OWS\System32\rasmans.dll
    19:50:53.0828 0904 RasMan - ok
    19:50:53.0843 0904 [ 7306EEED8895454CBED4669BE9F79FAA
    OWS\system32\DRIVERS\raspppoe.sys
    19:50:53.0890 0904 RasPppoe - ok
    19:50:53.0890 0904 [ FDBB1D60066FCFBB7452FD8F9829B242
    OWS\system32\DRIVERS\raspti.sys
    19:50:53.0953 0904 Raspti - ok
    19:50:53.0968 0904 [ 29D66245ADBA878FFF574CD66ABD2884
    OWS\system32\DRIVERS\rdbss.sys
    19:50:54.0015 0904 Rdbss - ok
    19:50:54.0031 0904 [ 4912D5B403614CE99C28420F75353332
    OWS\system32\DRIVERS\RDPCDD.sys
    19:50:54.0078 0904 RDPCDD - ok
    19:50:54.0109 0904 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD
    OWS\system32\DRIVERS\rdpdr.sys
    19:50:54.0171 0904 rdpdr - ok
    19:50:54.0203 0904 [ D4F5643D7714EF499AE9527FDCD50894
    OWS\system32\drivers\RDPWD.sys
    19:50:54.0265 0904 RDPWD - ok
    19:50:54.0296 0904 [ 729798E0933076B8FCFCD9934698F164
    OWS\system32\sessmgr.exe
    19:50:54.0359 0904 RDSessMgr - ok
    19:50:54.0359 0904 [ B31B4588E4086D8D84ADBF9845C2402B
    OWS\system32\DRIVERS\redbook.sys
    19:50:54.0421 0904 redbook - ok
    19:50:54.0453 0904 [ 3046DB917E3CFA040632799DD9B14865
    OWS\System32\mprdim.dll
    19:50:54.0531 0904 RemoteAccess - ok
    19:50:54.0531 0904 [ 3151427DB7D87107D1C5BE58FAC53960
    OWS\system32\regsvc.dll
    19:50:54.0593 0904 RemoteRegistry - ok
    19:50:54.0625 0904 [ 793F04A09B15E7C6C11DBDFFAF06C0AB
    OWS\system32\locator.exe
    19:50:54.0687 0904 RpcLocator - ok
    19:50:54.0703 0904 [ 5C83A4408604F737717AB96371201680
    OWS\system32\rpcss.dll
    19:50:54.0765 0904 RpcSs - ok

    ] PSched

    C:\WIND

    ] Ptilink

    C:\WIND

    ] RasAcd

    C:\WIND

    ] RasAuto

    C:\WIND

    ] Rasl2tp

    C:\WIND

    ] RasMan

    C:\WIND

    ] RasPppoe

    C:\WIND

    ] Raspti

    C:\WIND

    ] Rdbss

    C:\WIND

    ] RDPCDD

    C:\WIND

    ] rdpdr

    C:\WIND

    ] RDPWD

    C:\WIND

    ] RDSessMgr

    C:\WIND

    ] redbook

    C:\WIND

    ] RemoteAccess

    C:\WIND

    ] RemoteRegistry C:\WIND
    ] RpcLocator

    C:\WIND

    ] RpcSs

    C:\WIND

    19:50:54.0781 0904 [ 471B3F9741D762ABE75E9DEEA4787E47


    OWS\system32\rsvp.exe
    19:50:54.0843 0904 RSVP - ok
    19:50:54.0875 0904 [ 84885F9B82F4D55C6146EBF6065D75D2
    OWS\system32\lsass.exe
    19:50:54.0937 0904 SamSs - ok
    19:50:55.0015 0904 [ 25D8DE134DF108E3DBC8D7D23B1AA58E
    OWS\System32\SCardSvr.exe
    19:50:55.0078 0904 SCardSvr - ok
    19:50:55.0109 0904 [ 92360854316611F6CC471612213C3D92
    OWS\system32\schedsvc.dll
    19:50:55.0171 0904 Schedule - ok
    19:50:55.0187 0904 [ D26E26EA516450AF9D072635C60387F4
    OWS\system32\DRIVERS\secdrv.sys
    19:50:55.0218 0904 Secdrv - ok
    19:50:55.0218 0904 [ B1E0CE09895376871746F36DC5773B4F
    OWS\System32\seclogon.dll
    19:50:55.0281 0904 seclogon - ok
    19:50:55.0296 0904 [ DFD9870CF39C791D86C4C209DA9FA919
    OWS\system32\sens.dll
    19:50:55.0359 0904 SENS - ok
    19:50:55.0359 0904 [ A2D868AEEFF612E70E213C451A70CAFB
    OWS\system32\DRIVERS\serenum.sys
    19:50:55.0421 0904 serenum - ok
    19:50:55.0421 0904 [ CD9404D115A00D249F70A371B46D5A26
    OWS\system32\DRIVERS\serial.sys
    19:50:55.0468 0904 Serial - ok
    19:50:55.0484 0904 [ 0D13B6DF6E9E101013A7AFB0CE629FE0
    OWS\system32\drivers\Sfloppy.sys
    19:50:55.0531 0904 Sfloppy - ok
    19:50:55.0546 0904 [ 36CC8C01B5E50163037BEF56CB96DEFF
    OWS\System32\ipnathlp.dll
    19:50:55.0609 0904 SharedAccess - ok
    19:50:55.0625 0904 [ E7518DC542D3EBDCB80EDD98462C7821
    DOWS\System32\shsvcs.dll
    19:50:55.0671 0904 ShellHWDetection - ok
    19:50:55.0687 0904 Simbad - ok
    19:50:55.0687 0904 Sparrow - ok
    19:50:55.0687 0904 [ 8E186B8F23295D1E42C573B82B80D548
    OWS\system32\drivers\splitter.sys
    19:50:55.0750 0904 splitter - ok
    19:50:55.0750 0904 [ 7435B108B935E42EA92CA94F59C8E717
    OWS\system32\spoolsv.exe
    19:50:55.0812 0904 Spooler - ok
    19:50:55.0828 0904 [ E41B6D037D6CD08461470AF04500DC24
    OWS\system32\DRIVERS\sr.sys
    19:50:55.0875 0904 sr - ok
    19:50:55.0890 0904 [ 92BDF74F12D6CBEC43C94D4B7F804838
    OWS\system32\srsvc.dll
    19:50:55.0921 0904 srservice - ok
    19:50:55.0921 0904 [ 20B7E396720353E4117D64D9DCB926CA
    OWS\system32\DRIVERS\srv.sys
    19:50:56.0015 0904 Srv - ok
    19:50:56.0046 0904 [ 4B8D61792F7175BED48859CC18CE4E38
    OWS\System32\ssdpsrv.dll
    19:50:56.0078 0904 SSDPSRV - ok
    19:50:56.0093 0904 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6
    OWS\system32\wiaservc.dll
    19:50:56.0187 0904 stisvc - ok
    19:50:56.0203 0904 [ 03C1BAE4766E2450219D20B993D6E046

    ] RSVP

    C:\WIND

    ] SamSs

    C:\WIND

    ] SCardSvr

    C:\WIND

    ] Schedule

    C:\WIND

    ] Secdrv

    C:\WIND

    ] seclogon

    C:\WIND

    ] SENS

    C:\WIND

    ] serenum

    C:\WIND

    ] Serial

    C:\WIND

    ] Sfloppy

    C:\WIND

    ] SharedAccess

    C:\WIND

    ] ShellHWDetection C:\WIN

    ] splitter

    C:\WIND

    ] Spooler

    C:\WIND

    ] sr

    C:\WIND

    ] srservice

    C:\WIND

    ] Srv

    C:\WIND

    ] SSDPSRV

    C:\WIND

    ] stisvc

    C:\WIND

    ] swenum

    C:\WIND

    OWS\system32\DRIVERS\swenum.sys
    19:50:56.0250 0904 swenum - ok
    19:50:56.0265 0904 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D
    OWS\system32\drivers\swmidi.sys
    19:50:56.0312 0904 swmidi - ok
    19:50:56.0312 0904 SwPrv - ok
    19:50:56.0312 0904 symc810 - ok
    19:50:56.0328 0904 symc8xx - ok
    19:50:56.0328 0904 sym_hi - ok
    19:50:56.0328 0904 sym_u3 - ok
    19:50:56.0343 0904 [ 650AD082D46BAC0E64C9C0E0928492FD
    OWS\system32\drivers\sysaudio.sys
    19:50:56.0406 0904 sysaudio - ok
    19:50:56.0421 0904 [ 8B54AA346D1B1B113FFAA75501B8B1B2
    OWS\system32\smlogsvc.exe
    19:50:56.0468 0904 SysmonLog - ok
    19:50:56.0515 0904 [ EB4A4187D74A8EFDCBEA3EA2CB1BDFBD
    OWS\System32\tapisrv.dll
    19:50:56.0578 0904 TapiSrv - ok
    19:50:56.0593 0904 [ 9F4B36614A0FC234525BA224957DE55C
    OWS\system32\DRIVERS\tcpip.sys
    19:50:56.0656 0904 Tcpip - ok
    19:50:56.0687 0904 [ 38D437CF2D98965F239B0ABCD66DCB0F
    OWS\system32\drivers\TDPIPE.sys
    19:50:56.0750 0904 TDPIPE - ok
    19:50:56.0765 0904 [ ED0580AF02502D00AD8C4C066B156BE9
    OWS\system32\drivers\TDTCP.sys
    19:50:56.0828 0904 TDTCP - ok
    19:50:56.0859 0904 [ A540A99C281D933F3D69D55E48727F47
    OWS\system32\DRIVERS\termdd.sys
    19:50:56.0906 0904 TermDD - ok
    19:50:56.0937 0904 [ B60C877D16D9C880B952FDA04ADF16E6
    OWS\System32\termsrv.dll
    19:50:57.0015 0904 TermService - ok
    19:50:57.0109 0904 [ E7518DC542D3EBDCB80EDD98462C7821
    OWS\System32\shsvcs.dll
    19:50:57.0171 0904 Themes - ok
    19:50:57.0203 0904 [ 37DB0A7D097310E8B4DE803FC3119C78
    OWS\system32\tlntsvr.exe
    19:50:57.0234 0904 TlntSvr - ok
    19:50:57.0234 0904 TosIde - ok
    19:50:57.0250 0904 [ 6D9AC544B30F96C57F8206566C1FB6A1
    OWS\system32\trkwks.dll
    19:50:57.0312 0904 TrkWks - ok
    19:50:57.0328 0904 [ 12F70256F140CD7D52C58C7048FDE657
    OWS\system32\drivers\Udfs.sys
    19:50:57.0390 0904 Udfs - ok
    19:50:57.0390 0904 ultra - ok
    19:50:57.0406 0904 [ AFF2E5045961BBC0A602BB6F95EB1345
    OWS\system32\DRIVERS\update.sys
    19:50:57.0453 0904 Update - ok
    19:50:57.0468 0904 [ 0546477BDE979E33294FE97F6B3DE84A
    OWS\System32\upnphost.dll
    19:50:57.0515 0904 upnphost - ok
    19:50:57.0546 0904 [ 3F5DF65B0758675F95A2D43918A740A3
    OWS\System32\ups.exe
    19:50:57.0609 0904 UPS - ok
    19:50:57.0640 0904 [ BFFD9F120CC63BCBAA3D840F3EEF9F79
    OWS\system32\DRIVERS\usbccgp.sys
    19:50:57.0687 0904 usbccgp - ok

    ] swmidi

    C:\WIND

    ] sysaudio

    C:\WIND

    ] SysmonLog

    C:\WIND

    ] TapiSrv

    C:\WIND

    ] Tcpip

    C:\WIND

    ] TDPIPE

    C:\WIND

    ] TDTCP

    C:\WIND

    ] TermDD

    C:\WIND

    ] TermService

    C:\WIND

    ] Themes

    C:\WIND

    ] TlntSvr

    C:\WIND

    ] TrkWks

    C:\WIND

    ] Udfs

    C:\WIND

    ] Update

    C:\WIND

    ] upnphost

    C:\WIND

    ] UPS

    C:\WIND

    ] usbccgp

    C:\WIND

    19:50:57.0718 0904 [ 15E993BA2F6946B2BFBBFCD30398621E


    OWS\system32\DRIVERS\usbehci.sys
    19:50:57.0781 0904 usbehci - ok
    19:50:57.0781 0904 [ C72F40947F92CEA56A8FB532EDF025F1
    OWS\system32\DRIVERS\usbhub.sys
    19:50:57.0843 0904 usbhub - ok
    19:50:57.0843 0904 [ A42369B7CD8886CD7C70F33DA6FCBCF5
    OWS\system32\DRIVERS\usbprint.sys
    19:50:57.0906 0904 usbprint - ok
    19:50:57.0921 0904 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85
    OWS\system32\DRIVERS\usbscan.sys
    19:50:57.0984 0904 usbscan - ok
    19:50:58.0015 0904 [ 6CD7B22193718F1D17A47A1CD6D37E75
    OWS\system32\DRIVERS\USBSTOR.SYS
    19:50:58.0078 0904 usbstor - ok
    19:50:58.0078 0904 [ F8FD1400092E23C8F2F31406EF06167B
    OWS\system32\DRIVERS\usbuhci.sys
    19:50:58.0125 0904 usbuhci - ok
    19:50:58.0125 0904 [ 8A60EDD72B4EA5AEA8202DAF0E427925
    OWS\System32\drivers\vga.sys
    19:50:58.0187 0904 VgaSave - ok
    19:50:58.0187 0904 ViaIde - ok
    19:50:58.0203 0904 [ EE4660083DEBA849FF6C485D944B379B
    OWS\system32\drivers\VolSnap.sys
    19:50:58.0250 0904 VolSnap - ok
    19:50:58.0281 0904 [ 3EE00364AE0FD8D604F46CBAF512838A
    OWS\System32\vssvc.exe
    19:50:58.0328 0904 VSS - ok
    19:50:58.0359 0904 [ 2B281958F5D0CF99ED626E3EF39D5C8D
    OWS\system32\w32time.dll
    19:50:58.0421 0904 W32Time - ok
    19:50:58.0437 0904 [ 984EF0B9788ABF89974CFED4BFBAACBC
    OWS\system32\DRIVERS\wanarp.sys
    19:50:58.0500 0904 Wanarp - ok
    19:50:58.0500 0904 WDICA - ok
    19:50:58.0500 0904 [ 2797F33EBF50466020C430EE4F037933
    OWS\system32\drivers\wdmaud.sys
    19:50:58.0562 0904 wdmaud - ok
    19:50:58.0578 0904 [ 5D0A442864BFBF3B19DCCA4CD29F6E99
    OWS\System32\webclnt.dll
    19:50:58.0625 0904 WebClient - ok
    19:50:58.0687 0904 [ F399242A80C4066FD155EFA4CF96658E
    OWS\system32\wbem\WMIsvc.dll
    19:50:58.0750 0904 winmgmt - ok
    19:50:58.0781 0904 [ C086483E3DBA8C1C0A687EC8D5B3D4C1
    OWS\system32\mspmsnsv.dll
    19:50:58.0859 0904 WmdmPmSN - ok
    19:50:58.0906 0904 [ 1AFF244CA134956C54474F4E2433E4CE
    OWS\System32\advapi32.dll
    19:50:58.0984 0904 Wmi - ok
    19:50:59.0015 0904 [ BA8CECC3E813E1F7C441B20393D4F86C
    OWS\system32\wbem\wmiapsrv.exe
    19:50:59.0078 0904 WmiApSrv - ok
    19:50:59.0218 0904 [ 4D59DAA66C60858CDF4F67A900F42D4A
    OWS\system32\wscsvc.dll
    19:50:59.0281 0904 wscsvc - ok
    19:50:59.0296 0904 [ 13D72740963CBA12D9FF76A7F218BCD8
    OWS\system32\wuauserv.dll
    19:50:59.0359 0904 wuauserv - ok
    19:50:59.0390 0904 [ 5A91E6FEAB9F901302FA7FF768C0120F

    ] usbehci

    C:\WIND

    ] usbhub

    C:\WIND

    ] usbprint

    C:\WIND

    ] usbscan

    C:\WIND

    ] usbstor

    C:\WIND

    ] usbuhci

    C:\WIND

    ] VgaSave

    C:\WIND

    ] VolSnap

    C:\WIND

    ] VSS

    C:\WIND

    ] W32Time

    C:\WIND

    ] Wanarp

    C:\WIND

    ] wdmaud

    C:\WIND

    ] WebClient

    C:\WIND

    ] winmgmt

    C:\WIND

    ] WmdmPmSN

    C:\WIND

    ] Wmi

    C:\WIND

    ] WmiApSrv

    C:\WIND

    ] wscsvc

    C:\WIND

    ] wuauserv

    C:\WIND

    ] WZCSVC

    C:\WIND

    OWS\System32\wzcsvc.dll
    19:50:59.0453 0904 WZCSVC - ok
    19:50:59.0484 0904 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov
    C:\WIND
    OWS\System32\xmlprov.dll
    19:50:59.0546 0904 xmlprov - ok
    19:50:59.0562 0904 ZTEusbmdm6k - ok
    19:50:59.0562 0904 ZTEusbnmea - ok
    19:50:59.0562 0904 ZTEusbser6k - ok
    19:50:59.0562 0904 ================ Scan global ===============================
    19:50:59.0593 0904 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\bas
    esrv.dll
    19:50:59.0593 0904 [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\system32\win
    srv.dll
    19:50:59.0609 0904 [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\system32\win
    srv.dll
    19:50:59.0625 0904 [ C6CE6EEC82F187615D1002BB3BB50ED4 ] C:\WINDOWS\system32\ser
    vices.exe
    19:50:59.0625 0904 [Global] - ok
    19:50:59.0625 0904 ================ Scan MBR ==================================
    19:50:59.0640 0904 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
    19:50:59.0843 0904 \Device\Harddisk0\DR0 - ok
    19:50:59.0843 0904 ================ Scan VBR ==================================
    19:50:59.0843 0904 [ CFF959D851BFEBEA427DB421E35973B7 ] \Device\Harddisk0\DR0\P
    artition1
    19:50:59.0843 0904 \Device\Harddisk0\DR0\Partition1 - ok
    19:50:59.0843 0904 [ 2B385D50FB5B6FB9950319F140B3B144 ] \Device\Harddisk0\DR0\P
    artition2
    19:50:59.0859 0904 \Device\Harddisk0\DR0\Partition2 - ok
    19:50:59.0875 0904 [ 74F576391E652513B13423AE5F4BCAEA ] \Device\Harddisk0\DR0\P
    artition3
    19:50:59.0875 0904 \Device\Harddisk0\DR0\Partition3 - ok
    19:50:59.0875 0904 ============================================================
    19:50:59.0875 0904 Scan finished
    19:50:59.0875 0904 ============================================================
    19:50:59.0984 3488 Detected object count: 0
    19:50:59.0984 3488 Actual detected object count: 0
    19:51:11.0484 2948 Deinitialize success

    Das könnte Ihnen auch gefallen