| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.06.2012, 10:34
| #1 |
 |  Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Habe mir gestern per Mailanhang den hier oftmals beschriebenen Verschlüsselungstrojaner eingefangen. Betriebssystem Windows 7 Über den abgesicherten Modus komme ich noch in den Laptop rein, aber seitdem bekomme ich keine Internetverbindung mehr. Nun sitze ich an einem anderen Rechner im Haus. Hier habe ich Malwarebytes Anti-Malware runtergeladen und per USB-Stick auf dem befallenen Laptop installiert. Ohne Internetverbindung habe ich aber keine Aktualisierung des Programms vornehmen können. Den beschriebenen Weg der offline Aktualisierung konnte ich nicht gehen, da ich bisher die Datei rules.ref nicht gefunden habe. Ohne die Aktualisierung konnte das Programm keine infizierten Dateien finden. Um nichts falsch zu machen habe ich nun Malwarebytes Anti-Malware auf diesem Rechner installiert und (obowhl auf den ersten Blick nicht befallen) den Quick-Scan rüberlaufen lassen mit folgendem Ergebnis: Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.06.13.01 Windows XP x86 NTFS Internet Explorer 6.0.2600.0000 mama :: KELLER [Administrator] Schutz: Aktiviert 13.06.2012 10:43:36 mbam-log-2012-06-13 (11-13-21).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 199808 Laufzeit: 20 Minute(n), 36 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Bertelsmann Fotowelt (Trojan.Agent) -> Keine Aktion durchgeführt. Infizierte Registrierungswerte: 1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|winsys.exe (Trojan.Banker.Gen) -> Daten: C:\WINDOWS\system32\winsys.exe -> Keine Aktion durchgeführt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\uninstall.exe (Trojan.Agent) -> Keine Aktion durchgeführt. (Ende) Wie bekomme ich die Aktualisierung des Programms auf dem zuerst befallenem Laptop hin? Oder sollte ich zunächst den Trojaner auf dem zweiten Rechner entfernen? Und soll defogger und OTL jetzt bereits heruntergeladen und ausgeführt werden oder erst später? Für Hilfe wär ich sehr dankbar Geändert von Linda'84 (13.06.2012 um 10:54 Uhr) |
|
15.06.2012, 18:24
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Funktioniert noch der abgesicherte Modus mit Netzwerktreibern? Mit Internetverbindung?
__________________Abgesicherter Modus zur Bereinigung
__________________ |
|
15.06.2012, 19:39
| #3 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Ja, der abgesicherte Modus läuft noch und auch die Internetverbind geht wieder. Da aber ausdrücklich darauf hingewiesen wurde, ein Thema nicht zu pushen, habe ich darauf verzichtet dies gesondert zu schreiben und auf weitere Hilfe gewartet. Stattdessen habe ich angefangen die angegebenen Schritte durchzuführen.
__________________Ich habe mit Malwarebytes einen Vollscan durchgefühert, bzw mehrmals: Ja, der abgesicherte Modus läuft noch und auch die Internetverbind geht wieder. Da aber ausdrücklich darauf hingewiesen wurde, ein Thema nicht zu pushen, habe ich darauf verzichtet dies gesondert zu schreiben und auf weitere Hilfe gewartet. Stattdessen habe ich angefangen die angegebenen Schritte durchzuführen. Ich habe mit Malwarebytes einen Vollscan durchgefühert, bzw mehrmals: Code:
ATTFilter Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.06.13.05 Windows 7 x86 FAT32 (Abgesichertenmodus/Netzwerkfähig) Internet Explorer 8.0.7600.16385 Linda :: LINDA-PC [Administrator] 13.06.2012 18:15:55 mbam-log-2012-06-13 (18-15-55).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 470244 Laufzeit: 53 Minute(n), 49 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 2 C:\Users\Linda\Kpwmkpwmkpw\lzsrlzslwcv.exe (Trojan.Winlock) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Linda\programme\SoftonicDownloader_fuer_the-panorama-factory.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.06.14.07 Windows 7 x86 NTFS (Abgesichertenmodus/Netzwerkfähig) Internet Explorer 8.0.7600.16385 Linda :: LINDA-PC [Administrator] Schutz: Deaktiviert 14.06.2012 16:43:35 mbam-log-2012-06-14 (16-43-35).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 471322 Laufzeit: 55 Minute(n), 42 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Users\Linda\programme\SoftonicDownloader_fuer_the-panorama-factory.exe (PUP.OfferBundler.ST) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.06.14.07 Windows 7 x86 NTFS (Abgesichertenmodus/Netzwerkfähig) Internet Explorer 8.0.7600.16385 Linda :: LINDA-PC [Administrator] Schutz: Deaktiviert 14.06.2012 17:42:30 mbam-log-2012-06-14 (17-42-30).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 471140 Laufzeit: 55 Minute(n), 18 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Danach dann OTL und auch hier nach Beschreibung verfahren. Allerdings kam dann die Fehlermeldung: Win32Error.Code:223 Die Dateigröße überschreitet die maximal zulässige Größe und kann nicht gespeichert werden Hier musste ich also abbrechen. Wie soll ich nun weiter vorgehen? |
|
15.06.2012, 20:35
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Führ bitte auch ESET aus, danach sehen wir weiter. Hinweis: ESET zeigt durchaus öfter ein paar Fehlalarme. Deswegen soll auch von ESET immer nur erst das Log gepostet und nichts entfernt werden. ESET Online Scanner Bitte während der Online-Scans evtl. vorhandene externe Festplatten einschalten! Bitte während der Scans alle Hintergrundwächter (Anti-Virus-Programm, Firewall, Skriptblocking und ähnliches) abstellen und nicht vergessen, alles hinterher wieder einzuschalten.
 + R Taste und kopiere folgenden Text in das Ausführen Fenster.Code:
ATTFilter "%PROGRAMFILES%\Eset\Eset Online Scanner\log.txt"
Code:
ATTFilter "%PROGRAMFILES(X86)%\Eset\Eset Online Scanner\log.txt"
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
16.06.2012, 13:10
| #5 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun?Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=710f4209d0847247a1c590e158793f7f
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-06-16 12:06:07
# local_time=2012-06-16 02:06:07 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7600 NT
# compatibility_mode=1792 16777215 100 0 20830106 20830106 0 0
# compatibility_mode=5893 16776573 100 94 156662 91472367 0 0
# compatibility_mode=8192 67108863 100 0 99 99 0 0
# scanned=283273
# found=5
# cleaned=0
# scan_time=7191
C:\Program Files\ICQ Away Reader\ICQ Away Reader.exe probably a variant of Win32/VB.NPY trojan (unable to clean) 00000000000000000000000000000000 I
C:\ProgramData\ReviverSoft\Registry Reviver\InstallCache\{05B64610-ED45-40AC-89A3-507F6B6A25B9}\Registry Reviver.msi a variant of Win32/SlowPCfighter application (unable to clean) 00000000000000000000000000000000 I
C:\Users\All Users\ReviverSoft\Registry Reviver\InstallCache\{05B64610-ED45-40AC-89A3-507F6B6A25B9}\Registry Reviver.msi a variant of Win32/SlowPCfighter application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Linda\icq_status_checker17.zip Win32/Adware.ADON application (unable to clean) 00000000000000000000000000000000 I
C:\Users\Linda\AppData\Local\Temp\12.06.2012.zip Win32/Trustezeb.C trojan (unable to clean) 00000000000000000000000000000000 I
|
|
17.06.2012, 20:49
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun?Code:
ATTFilter C:\ProgramData\ReviverSoft\Registry Reviver
Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich. Wir lesen oft genug von Hilfesuchenden, dass deren System nach der Nutzung von Registry Cleanern nicht mehr startet.
Ein sogenanntes False Positive von einem Cleaner kann auch dein System unbootbar machen. Zerstörst Du die Registry, zerstörst Du Windows. Hätte da mal zwei Fragen bevor es weiter geht 1.) Geht der normale Modus von Windows (wieder) uneingeschränkt? 2.) Vermisst du irgendwas im Startmenü? Sind da leere Ordner unter alle Programme oder ist alles vorhanden?
__________________ --> Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? |
|
17.06.2012, 22:38
| #7 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Bei dem Registry-Cleaner muss ich zugeben hab ich keine Ahnung. Weder weiß ich davon, das installiert zu haben noch hab ich ne Idee was man damit tut.Es war aber mal jemand am Laptop der (sio behauptete er und dachte ich) AHnung hat, weil irgendwas nicht ging. Ich weiß aber ehrlich gesagt nicht mehr, was das Problem war, geschweige denn was er gemacht hat :-/ Zu deinen Fragen: 1. Der normale Modus geht, der bekannte weiße Bildschirm mit der Geldforderung taucht nicht mehr auf und auch sonst scheint alles zu klappen 2. Das Startmenü sieht soweit normal auf. Und leere Ordner oder so kann ich nicht finden (Dabei ist mir erst aufgefallen, wie zugemüllt der Laptop ist, sollte ich wohl mal entmüllen demnächst) |
|
18.06.2012, 10:45
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Mach bitte ein neues OTL-Log. Bitte alles nach Möglichkeit hier in CODE-Tags posten. Wird so gemacht: [code] hier steht das Log [/code] Und das ganze sieht dann so aus: Code:
ATTFilter hier steht das Log
Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
Code:
ATTFilter netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%SYSTEMDRIVE%\*.exe
/md5start
wininit.exe
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
CREATERESTOREPOINT
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.06.2012, 16:52
| #9 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Ich bekomme die Fehlermeldung: Win32Error.Code:223. Die Dateigröße überschreitet die maximal zulässige Größe und kann nicht gespeichert werden" Was hab ich falsch gemacht? |
|
18.06.2012, 20:58
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Du hast OTL gerade frisch runtergeladen oder nimmst du eine OTL.exe du schon auf deinem Rechner war? Du hast es schon im abgesicherten Modus ausprobiert das Log zu erstellen? Wenn der CustomScan nicht geht, müssen wir einen normalen Scan machen: Systemscan mit OTL Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.06.2012, 21:06
| #11 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Das war die Version , die ich nach dem trojanerbefall runtergeladen hab. Allerdings vor Eset,. Probiere es jetzt noch mal mit einem erneuten Download und im abgesicherten Modus und melde mich danach wieder. Ich hab nun beides ausprobiert. Erst eine neu runtergeladene otl-exe im abgesicherten Modus gestartet und den customscan wie beschrieben ausgeführt. Danach den normalen Scan mit minimal Output. . Beide Male bekomme ich genau die oben bereits zitierte Fehlermeldung. Geändert von Linda'84 (18.06.2012 um 21:38 Uhr) |
|
18.06.2012, 21:46
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Tja ich hoffe das liegt nicht an dem "tollen" RegistryCleaner den du da installiert hast  Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
18.06.2012, 22:05
| #13 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun?Code:
ATTFilter 22:59:19.0021 2780 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
22:59:19.0246 2780 ============================================================
22:59:19.0246 2780 Current date / time: 2012/06/18 22:59:19.0246
22:59:19.0246 2780 SystemInfo:
22:59:19.0246 2780
22:59:19.0246 2780 OS Version: 6.1.7600 ServicePack: 0.0
22:59:19.0246 2780 Product type: Workstation
22:59:19.0246 2780 ComputerName: LINDA-PC
22:59:19.0246 2780 UserName: Linda
22:59:19.0246 2780 Windows directory: C:\windows
22:59:19.0246 2780 System windows directory: C:\windows
22:59:19.0246 2780 Processor architecture: Intel x86
22:59:19.0246 2780 Number of processors: 2
22:59:19.0246 2780 Page size: 0x1000
22:59:19.0246 2780 Boot type: Normal boot
22:59:19.0246 2780 ============================================================
22:59:20.0631 2780 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:59:20.0631 2780 ============================================================
22:59:20.0631 2780 \Device\Harddisk0\DR0:
22:59:20.0631 2780 MBR partitions:
22:59:20.0631 2780 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x96000
22:59:20.0631 2780 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x96800, BlocksNum 0x11ED5000
22:59:20.0651 2780 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x11F6C000, BlocksNum 0x116C2000
22:59:20.0651 2780 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2362E000, BlocksNum 0x1DFD800
22:59:20.0651 2780 ============================================================
22:59:20.0686 2780 C: <-> \Device\Harddisk0\DR0\Partition1
22:59:20.0726 2780 L: <-> \Device\Harddisk0\DR0\Partition2
22:59:20.0726 2780 ============================================================
22:59:20.0726 2780 Initialize success
22:59:20.0726 2780 ============================================================
23:00:13.0228 1608 ============================================================
23:00:13.0228 1608 Scan started
23:00:13.0228 1608 Mode: Manual; SigCheck; TDLFS;
23:00:13.0228 1608 ============================================================
23:00:13.0823 1608 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\windows\system32\DRIVERS\1394ohci.sys
23:00:14.0043 1608 1394ohci - ok
23:00:14.0108 1608 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\windows\system32\DRIVERS\ACPI.sys
23:00:14.0153 1608 ACPI - ok
23:00:14.0183 1608 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\windows\system32\DRIVERS\acpipmi.sys
23:00:14.0258 1608 AcpiPmi - ok
23:00:14.0403 1608 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:00:14.0428 1608 AdobeARMservice - ok
23:00:14.0488 1608 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys
23:00:14.0543 1608 adp94xx - ok
23:00:14.0583 1608 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys
23:00:14.0633 1608 adpahci - ok
23:00:14.0689 1608 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys
23:00:14.0734 1608 adpu320 - ok
23:00:14.0774 1608 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll
23:00:14.0839 1608 AeLookupSvc - ok
23:00:14.0909 1608 AFD (0db7a48388d54d154ebec120461a0fcd) C:\windows\system32\drivers\afd.sys
23:00:14.0979 1608 AFD - ok
23:00:15.0024 1608 AgereModemAudio (6416f9b6b220f0a890525c38235afad7) C:\Program Files\LSI SoftModem\agrsmsvc.exe
23:00:15.0084 1608 AgereModemAudio - ok
23:00:15.0194 1608 AgereSoftModem (faa5a0b80e011464c7654851ce3d7fe7) C:\windows\system32\DRIVERS\AGRSM.sys
23:00:15.0299 1608 AgereSoftModem - ok
23:00:15.0389 1608 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\DRIVERS\agp440.sys
23:00:15.0424 1608 agp440 - ok
23:00:15.0474 1608 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys
23:00:15.0524 1608 aic78xx - ok
23:00:15.0569 1608 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe
23:00:15.0659 1608 ALG - ok
23:00:15.0694 1608 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\DRIVERS\aliide.sys
23:00:15.0729 1608 aliide - ok
23:00:15.0754 1608 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\DRIVERS\amdagp.sys
23:00:15.0789 1608 amdagp - ok
23:00:15.0809 1608 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\DRIVERS\amdide.sys
23:00:15.0844 1608 amdide - ok
23:00:15.0879 1608 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys
23:00:15.0929 1608 AmdK8 - ok
23:00:15.0949 1608 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys
23:00:15.0999 1608 AmdPPM - ok
23:00:16.0039 1608 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\windows\system32\drivers\amdsata.sys
23:00:16.0074 1608 amdsata - ok
23:00:16.0119 1608 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys
23:00:16.0154 1608 amdsbs - ok
23:00:16.0174 1608 amdxata (869e67d66be326a5a9159fba8746fa70) C:\windows\system32\drivers\amdxata.sys
23:00:16.0209 1608 amdxata - ok
23:00:16.0289 1608 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
23:00:16.0319 1608 AntiVirSchedulerService - ok
23:00:16.0379 1608 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
23:00:16.0409 1608 AntiVirService - ok
23:00:16.0464 1608 AppID (feb834c02ce1e84b6a38f953ca067706) C:\windows\system32\drivers\appid.sys
23:00:16.0544 1608 AppID - ok
23:00:16.0599 1608 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll
23:00:16.0764 1608 AppIDSvc - ok
23:00:16.0799 1608 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\windows\System32\appinfo.dll
23:00:16.0854 1608 Appinfo - ok
23:00:16.0939 1608 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:00:16.0964 1608 Apple Mobile Device - ok
23:00:17.0019 1608 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\windows\System32\appmgmts.dll
23:00:17.0069 1608 AppMgmt - ok
23:00:17.0114 1608 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys
23:00:17.0149 1608 arc - ok
23:00:17.0164 1608 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys
23:00:17.0204 1608 arcsas - ok
23:00:17.0234 1608 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys
23:00:17.0369 1608 AsyncMac - ok
23:00:17.0394 1608 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\DRIVERS\atapi.sys
23:00:17.0429 1608 atapi - ok
23:00:17.0504 1608 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\windows\System32\Audiosrv.dll
23:00:17.0609 1608 AudioEndpointBuilder - ok
23:00:17.0629 1608 Audiosrv (510c873bfa135aa829f4180352772734) C:\windows\System32\Audiosrv.dll
23:00:17.0714 1608 Audiosrv - ok
23:00:17.0794 1608 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\windows\system32\DRIVERS\avgntflt.sys
23:00:17.0844 1608 avgntflt - ok
23:00:17.0894 1608 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\windows\system32\DRIVERS\avipbb.sys
23:00:17.0934 1608 avipbb - ok
23:00:17.0984 1608 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\windows\system32\DRIVERS\avkmgr.sys
23:00:18.0009 1608 avkmgr - ok
23:00:18.0049 1608 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\windows\System32\AxInstSV.dll
23:00:18.0139 1608 AxInstSV - ok
23:00:18.0199 1608 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys
23:00:18.0264 1608 b06bdrv - ok
23:00:18.0329 1608 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys
23:00:18.0399 1608 b57nd60x - ok
23:00:18.0449 1608 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll
23:00:18.0524 1608 BDESVC - ok
23:00:18.0534 1608 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys
23:00:18.0614 1608 Beep - ok
23:00:18.0704 1608 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\windows\System32\bfe.dll
23:00:18.0799 1608 BFE - ok
23:00:18.0859 1608 BITS (53f476476f55a27f580661bde09c4ec4) C:\windows\System32\qmgr.dll
23:00:18.0969 1608 BITS - ok
23:00:18.0994 1608 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys
23:00:19.0044 1608 blbdrive - ok
23:00:19.0154 1608 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
23:00:19.0189 1608 Bonjour Service - ok
23:00:19.0229 1608 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\windows\system32\DRIVERS\bowser.sys
23:00:19.0274 1608 bowser - ok
23:00:19.0289 1608 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys
23:00:19.0339 1608 BrFiltLo - ok
23:00:19.0359 1608 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys
23:00:19.0424 1608 BrFiltUp - ok
23:00:19.0449 1608 Browser (598e1280e7ff3744f4b8329366cc5635) C:\windows\System32\browser.dll
23:00:19.0524 1608 Browser - ok
23:00:19.0559 1608 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys
23:00:19.0639 1608 Brserid - ok
23:00:19.0679 1608 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys
23:00:19.0744 1608 BrSerWdm - ok
23:00:19.0769 1608 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys
23:00:19.0819 1608 BrUsbMdm - ok
23:00:19.0839 1608 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys
23:00:19.0884 1608 BrUsbSer - ok
23:00:19.0934 1608 bthav (971ffd6d2840701661931aaa1ca4376f) C:\windows\system32\drivers\bthav.sys
23:00:19.0974 1608 bthav - ok
23:00:19.0999 1608 BthAvrcp (db99076533ffb38cbec8ac88e4535850) C:\windows\system32\DRIVERS\BthAvrcp.sys
23:00:20.0049 1608 BthAvrcp - ok
23:00:20.0089 1608 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys
23:00:20.0144 1608 BthEnum - ok
23:00:20.0174 1608 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys
23:00:20.0224 1608 BTHMODEM - ok
23:00:20.0254 1608 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys
23:00:20.0309 1608 BthPan - ok
23:00:20.0384 1608 BTHPORT (88059ff1ded4472acd17eebabd393069) C:\windows\System32\Drivers\BTHport.sys
23:00:20.0449 1608 BTHPORT - ok
23:00:20.0489 1608 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll
23:00:20.0579 1608 bthserv - ok
23:00:20.0609 1608 BTHUSB (80e6384beec03b8bd45edea29802d657) C:\windows\System32\Drivers\BTHUSB.sys
23:00:20.0649 1608 BTHUSB - ok
23:00:20.0724 1608 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\windows\system32\drivers\btwaudio.sys
23:00:20.0764 1608 btwaudio - ok
23:00:20.0859 1608 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\windows\system32\drivers\btwavdt.sys
23:00:20.0904 1608 btwavdt - ok
23:00:21.0054 1608 btwdins (7d2dd14e60ce4ff3308d66fda7990546) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:00:21.0104 1608 btwdins - ok
23:00:21.0124 1608 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\windows\system32\DRIVERS\btwl2cap.sys
23:00:21.0149 1608 btwl2cap - ok
23:00:21.0169 1608 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\windows\system32\DRIVERS\btwrchid.sys
23:00:21.0194 1608 btwrchid - ok
23:00:21.0254 1608 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys
23:00:21.0359 1608 cdfs - ok
23:00:21.0434 1608 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\windows\system32\DRIVERS\cdrom.sys
23:00:21.0494 1608 cdrom - ok
23:00:21.0559 1608 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\windows\System32\certprop.dll
23:00:21.0654 1608 CertPropSvc - ok
23:00:21.0714 1608 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys
23:00:21.0829 1608 circlass - ok
23:00:21.0864 1608 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys
23:00:21.0909 1608 CLFS - ok
23:00:21.0979 1608 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:00:22.0019 1608 clr_optimization_v2.0.50727_32 - ok
23:00:22.0084 1608 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:00:22.0119 1608 clr_optimization_v4.0.30319_32 - ok
23:00:22.0144 1608 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys
23:00:22.0179 1608 CmBatt - ok
23:00:22.0204 1608 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\DRIVERS\cmdide.sys
23:00:22.0229 1608 cmdide - ok
23:00:22.0284 1608 CNG (36c252e474b2ffa0f0fbbff20d92a640) C:\windows\system32\Drivers\cng.sys
23:00:22.0334 1608 CNG - ok
23:00:22.0449 1608 Com4QLBEx (f9a79c5b27037821112c50a9c8fb367a) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
23:00:22.0469 1608 Com4QLBEx - ok
23:00:22.0489 1608 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys
23:00:22.0509 1608 Compbatt - ok
23:00:22.0549 1608 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\windows\system32\DRIVERS\CompositeBus.sys
23:00:22.0574 1608 CompositeBus - ok
23:00:22.0579 1608 COMSysApp - ok
23:00:22.0599 1608 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys
23:00:22.0624 1608 crcdisk - ok
23:00:22.0680 1608 CryptSvc (520a108a2657f4bca7fced9ca7d885de) C:\windows\system32\cryptsvc.dll
23:00:22.0745 1608 CryptSvc - ok
23:00:22.0790 1608 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\windows\system32\drivers\csc.sys
23:00:22.0860 1608 CSC - ok
23:00:22.0915 1608 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\windows\System32\cscsvc.dll
23:00:22.0980 1608 CscService - ok
23:00:23.0040 1608 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\windows\system32\rpcss.dll
23:00:23.0140 1608 DcomLaunch - ok
23:00:23.0185 1608 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll
23:00:23.0300 1608 defragsvc - ok
23:00:23.0365 1608 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\windows\system32\Drivers\dfsc.sys
23:00:23.0455 1608 DfsC - ok
23:00:23.0530 1608 Dhcp (c56495fbd770712367cad35e5de72da6) C:\windows\system32\dhcpcore.dll
23:00:23.0620 1608 Dhcp - ok
23:00:23.0675 1608 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys
23:00:23.0755 1608 discache - ok
23:00:23.0800 1608 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys
23:00:23.0835 1608 Disk - ok
23:00:23.0870 1608 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\windows\System32\dnsrslvr.dll
23:00:23.0935 1608 Dnscache - ok
23:00:23.0970 1608 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\windows\System32\dot3svc.dll
23:00:24.0075 1608 dot3svc - ok
23:00:24.0110 1608 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\windows\system32\dps.dll
23:00:24.0195 1608 DPS - ok
23:00:24.0230 1608 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys
23:00:24.0265 1608 drmkaud - ok
23:00:24.0350 1608 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\windows\System32\drivers\dxgkrnl.sys
23:00:24.0445 1608 DXGKrnl - ok
23:00:24.0480 1608 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll
23:00:24.0570 1608 EapHost - ok
23:00:24.0851 1608 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys
23:00:25.0021 1608 ebdrv - ok
23:00:25.0136 1608 EFS (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\System32\lsass.exe
23:00:25.0201 1608 EFS - ok
23:00:25.0286 1608 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\windows\ehome\ehRecvr.exe
23:00:25.0366 1608 ehRecvr - ok
23:00:25.0401 1608 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe
23:00:25.0481 1608 ehSched - ok
23:00:25.0556 1608 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys
23:00:25.0611 1608 elxstor - ok
23:00:25.0636 1608 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\DRIVERS\errdev.sys
23:00:25.0681 1608 ErrDev - ok
23:00:25.0756 1608 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll
23:00:25.0836 1608 EventSystem - ok
23:00:25.0896 1608 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys
23:00:25.0991 1608 exfat - ok
23:00:26.0036 1608 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys
23:00:26.0131 1608 fastfat - ok
23:00:26.0201 1608 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\windows\system32\fxssvc.exe
23:00:26.0281 1608 Fax - ok
23:00:26.0316 1608 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys
23:00:26.0361 1608 fdc - ok
23:00:26.0381 1608 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll
23:00:26.0466 1608 fdPHost - ok
23:00:26.0491 1608 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll
23:00:26.0576 1608 FDResPub - ok
23:00:26.0606 1608 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys
23:00:26.0641 1608 FileInfo - ok
23:00:26.0671 1608 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys
23:00:26.0746 1608 Filetrace - ok
23:00:26.0761 1608 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys
23:00:26.0811 1608 flpydisk - ok
23:00:26.0846 1608 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys
23:00:26.0886 1608 FltMgr - ok
23:00:26.0971 1608 FontCache (7fe4995528a7529a761875151ee3d512) C:\windows\system32\FntCache.dll
23:00:27.0051 1608 FontCache - ok
23:00:27.0106 1608 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:00:27.0136 1608 FontCache3.0.0.0 - ok
23:00:27.0161 1608 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys
23:00:27.0196 1608 FsDepends - ok
23:00:27.0226 1608 Fs_Rec (500a9814fd9446a8126858a5a7f7d273) C:\windows\system32\drivers\Fs_Rec.sys
23:00:27.0261 1608 Fs_Rec - ok
23:00:27.0311 1608 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\windows\system32\DRIVERS\fvevol.sys
23:00:27.0356 1608 fvevol - ok
23:00:27.0406 1608 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys
23:00:27.0451 1608 gagp30kx - ok
23:00:27.0501 1608 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
23:00:27.0526 1608 GEARAspiWDM - ok
23:00:27.0591 1608 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\windows\System32\gpsvc.dll
23:00:27.0676 1608 gpsvc - ok
23:00:27.0781 1608 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
23:00:27.0811 1608 gupdate - ok
23:00:27.0831 1608 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
23:00:27.0861 1608 gupdatem - ok
23:00:27.0896 1608 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:00:27.0936 1608 gusvc - ok
23:00:27.0981 1608 HBtnKey (7dad592a4d28092d584cfb4deef1373d) C:\windows\system32\DRIVERS\cpqbttn.sys
23:00:28.0021 1608 HBtnKey - ok
23:00:28.0046 1608 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys
23:00:28.0096 1608 hcw85cir - ok
23:00:28.0141 1608 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\windows\system32\drivers\HdAudio.sys
23:00:28.0206 1608 HdAudAddService - ok
23:00:28.0231 1608 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\windows\system32\DRIVERS\HDAudBus.sys
23:00:28.0291 1608 HDAudBus - ok
23:00:28.0311 1608 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys
23:00:28.0361 1608 HidBatt - ok
23:00:28.0386 1608 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys
23:00:28.0436 1608 HidBth - ok
23:00:28.0476 1608 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys
23:00:28.0536 1608 HidIr - ok
23:00:28.0566 1608 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\system32\hidserv.dll
23:00:28.0651 1608 hidserv - ok
23:00:28.0681 1608 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\windows\system32\DRIVERS\hidusb.sys
23:00:28.0723 1608 HidUsb - ok
23:00:28.0758 1608 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\windows\system32\kmsvc.dll
23:00:28.0848 1608 hkmsvc - ok
23:00:28.0883 1608 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\windows\system32\ListSvc.dll
23:00:28.0953 1608 HomeGroupListener - ok
23:00:28.0988 1608 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\windows\system32\provsvc.dll
23:00:29.0043 1608 HomeGroupProvider - ok
23:00:29.0153 1608 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
23:00:29.0178 1608 HP Support Assistant Service - ok
23:00:29.0263 1608 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
23:00:29.0293 1608 HPDrvMntSvc.exe - ok
23:00:29.0353 1608 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
23:00:29.0393 1608 HpqKbFiltr - ok
23:00:29.0493 1608 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
23:00:29.0548 1608 hpqwmiex - ok
23:00:29.0583 1608 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\DRIVERS\HpSAMD.sys
23:00:29.0623 1608 HpSAMD - ok
23:00:29.0698 1608 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\windows\system32\drivers\HTTP.sys
23:00:29.0798 1608 HTTP - ok
23:00:29.0823 1608 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\windows\system32\drivers\hwpolicy.sys
23:00:29.0853 1608 hwpolicy - ok
23:00:29.0893 1608 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\DRIVERS\i8042prt.sys
23:00:29.0943 1608 i8042prt - ok
23:00:30.0038 1608 IAANTMON (0d2d28a3f60fb0b69812d6861bcbfebd) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:00:30.0078 1608 IAANTMON - ok
23:00:30.0138 1608 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys
23:00:30.0173 1608 iaStor - ok
23:00:30.0228 1608 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\windows\system32\drivers\iaStorV.sys
23:00:30.0283 1608 iaStorV - ok
23:00:30.0393 1608 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:00:30.0473 1608 idsvc - ok
23:00:30.0958 1608 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\windows\system32\DRIVERS\igdkmd32.sys
23:00:31.0188 1608 igfx - ok
23:00:31.0308 1608 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys
23:00:31.0343 1608 iirsp - ok
23:00:31.0433 1608 IJPLMSVC (2f95bef56aeeeb45de55ec44668e2695) C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
23:00:31.0468 1608 IJPLMSVC ( UnsignedFile.Multi.Generic ) - warning
23:00:31.0468 1608 IJPLMSVC - detected UnsignedFile.Multi.Generic (1)
23:00:31.0603 1608 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\windows\System32\ikeext.dll
23:00:31.0728 1608 IKEEXT - ok
23:00:31.0768 1608 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\DRIVERS\intelide.sys
23:00:31.0803 1608 intelide - ok
23:00:31.0838 1608 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys
23:00:31.0883 1608 intelppm - ok
23:00:31.0913 1608 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll
23:00:32.0013 1608 IPBusEnum - ok
23:00:32.0043 1608 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys
23:00:32.0123 1608 IpFilterDriver - ok
23:00:32.0183 1608 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\windows\System32\iphlpsvc.dll
23:00:32.0283 1608 iphlpsvc - ok
23:00:32.0303 1608 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\windows\system32\DRIVERS\IPMIDrv.sys
23:00:32.0348 1608 IPMIDRV - ok
23:00:32.0378 1608 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys
23:00:32.0458 1608 IPNAT - ok
23:00:32.0608 1608 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
23:00:32.0668 1608 iPod Service - ok
23:00:32.0698 1608 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys
23:00:32.0749 1608 IRENUM - ok
23:00:32.0769 1608 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\DRIVERS\isapnp.sys
23:00:32.0804 1608 isapnp - ok
23:00:32.0849 1608 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\windows\system32\DRIVERS\msiscsi.sys
23:00:32.0894 1608 iScsiPrt - ok
23:00:32.0919 1608 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\DRIVERS\kbdclass.sys
23:00:32.0954 1608 kbdclass - ok
23:00:32.0974 1608 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\windows\system32\DRIVERS\kbdhid.sys
23:00:33.0019 1608 kbdhid - ok
23:00:33.0059 1608 KeyIso (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:00:33.0099 1608 KeyIso - ok
23:00:33.0119 1608 KSecDD (0263364acb9c834ace52fb85c2c064ec) C:\windows\system32\Drivers\ksecdd.sys
23:00:33.0154 1608 KSecDD - ok
23:00:33.0184 1608 KSecPkg (27391db553be2a4e2b0adeea2873b2af) C:\windows\system32\Drivers\ksecpkg.sys
23:00:33.0229 1608 KSecPkg - ok
23:00:33.0274 1608 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll
23:00:33.0379 1608 KtmRm - ok
23:00:33.0429 1608 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\windows\system32\srvsvc.dll
23:00:33.0499 1608 LanmanServer - ok
23:00:33.0544 1608 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\windows\System32\wkssvc.dll
23:00:33.0629 1608 LanmanWorkstation - ok
23:00:33.0754 1608 LightScribeService (fcbdcc6f1801e32244235608e1277752) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
23:00:33.0774 1608 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
23:00:33.0774 1608 LightScribeService - detected UnsignedFile.Multi.Generic (1)
23:00:33.0799 1608 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys
23:00:33.0884 1608 lltdio - ok
23:00:33.0924 1608 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll
23:00:34.0024 1608 lltdsvc - ok
23:00:34.0044 1608 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll
23:00:34.0119 1608 lmhosts - ok
23:00:34.0179 1608 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys
23:00:34.0224 1608 LSI_FC - ok
23:00:34.0259 1608 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys
23:00:34.0304 1608 LSI_SAS - ok
23:00:34.0344 1608 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys
23:00:34.0379 1608 LSI_SAS2 - ok
23:00:34.0404 1608 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys
23:00:34.0449 1608 LSI_SCSI - ok
23:00:34.0469 1608 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys
23:00:34.0559 1608 luafv - ok
23:00:34.0599 1608 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\windows\system32\drivers\mbam.sys
23:00:34.0629 1608 MBAMProtector - ok
23:00:34.0734 1608 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
23:00:34.0784 1608 MBAMService - ok
23:00:34.0819 1608 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\windows\system32\Mcx2Svc.dll
23:00:34.0869 1608 Mcx2Svc - ok
23:00:34.0889 1608 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys
23:00:34.0924 1608 megasas - ok
23:00:34.0944 1608 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys
23:00:34.0989 1608 MegaSR - ok
23:00:35.0014 1608 MfeAVFK (64b96de8c492bd435372d9130a535f1d) C:\windows\system32\drivers\MfeAVFK.sys
23:00:35.0044 1608 MfeAVFK - ok
23:00:35.0079 1608 MfeBOPK (078e87a89d36cc3516f19d5fb518bddc) C:\windows\system32\drivers\MfeBOPK.sys
23:00:35.0104 1608 MfeBOPK - ok
23:00:35.0149 1608 mfehidk (168c565101fd5b9db694efdec91fafa9) C:\windows\system32\drivers\mfehidk.sys
23:00:35.0194 1608 mfehidk - ok
23:00:35.0214 1608 MfeRKDK (e0842f67dc9bc4d21d1e319610ebe9e5) C:\windows\system32\drivers\MfeRKDK.sys
23:00:35.0239 1608 MfeRKDK - ok
23:00:35.0279 1608 mfetdik (43a7acbbd70ecd62f0b63486c72089a3) C:\windows\system32\drivers\mfetdik.sys
23:00:35.0309 1608 mfetdik - ok
23:00:35.0339 1608 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
23:00:35.0414 1608 MMCSS - ok
23:00:35.0439 1608 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys
23:00:35.0519 1608 Modem - ok
23:00:35.0554 1608 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys
23:00:35.0609 1608 monitor - ok
23:00:35.0674 1608 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys
23:00:35.0709 1608 mouclass - ok
23:00:35.0749 1608 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys
23:00:35.0799 1608 mouhid - ok
23:00:35.0834 1608 mountmgr (921c18727c5920d6c0300736646931c2) C:\windows\system32\drivers\mountmgr.sys
23:00:35.0869 1608 mountmgr - ok
23:00:35.0974 1608 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
23:00:36.0019 1608 MozillaMaintenance - ok
23:00:36.0059 1608 mpio (2af5997438c55fb79d33d015c30e1974) C:\windows\system32\DRIVERS\mpio.sys
23:00:36.0104 1608 mpio - ok
23:00:36.0129 1608 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys
23:00:36.0219 1608 mpsdrv - ok
23:00:36.0279 1608 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\windows\system32\mpssvc.dll
23:00:36.0369 1608 MpsSvc - ok
23:00:36.0399 1608 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\windows\system32\drivers\mrxdav.sys
23:00:36.0459 1608 MRxDAV - ok
23:00:36.0499 1608 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\windows\system32\DRIVERS\mrxsmb.sys
23:00:36.0574 1608 mrxsmb - ok
23:00:36.0609 1608 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\windows\system32\DRIVERS\mrxsmb10.sys
23:00:36.0694 1608 mrxsmb10 - ok
23:00:36.0725 1608 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\windows\system32\DRIVERS\mrxsmb20.sys
23:00:36.0785 1608 mrxsmb20 - ok
23:00:36.0815 1608 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\windows\system32\DRIVERS\msahci.sys
23:00:36.0850 1608 msahci - ok
23:00:36.0880 1608 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\windows\system32\DRIVERS\msdsm.sys
23:00:36.0915 1608 msdsm - ok
23:00:36.0950 1608 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe
23:00:36.0995 1608 MSDTC - ok
23:00:37.0045 1608 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys
23:00:37.0115 1608 Msfs - ok
23:00:37.0135 1608 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys
23:00:37.0205 1608 mshidkmdf - ok
23:00:37.0220 1608 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\DRIVERS\msisadrv.sys
23:00:37.0245 1608 msisadrv - ok
23:00:37.0295 1608 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll
23:00:37.0350 1608 MSiSCSI - ok
23:00:37.0360 1608 msiserver - ok
23:00:37.0395 1608 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys
23:00:37.0465 1608 MSKSSRV - ok
23:00:37.0500 1608 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys
23:00:37.0585 1608 MSPCLOCK - ok
23:00:37.0605 1608 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys
23:00:37.0680 1608 MSPQM - ok
23:00:37.0705 1608 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys
23:00:37.0751 1608 MsRPC - ok
23:00:37.0771 1608 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\DRIVERS\mssmbios.sys
23:00:37.0806 1608 mssmbios - ok
23:00:37.0821 1608 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys
23:00:37.0896 1608 MSTEE - ok
23:00:37.0921 1608 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys
23:00:37.0966 1608 MTConfig - ok
23:00:37.0991 1608 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys
23:00:38.0026 1608 Mup - ok
23:00:38.0076 1608 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\windows\system32\qagentRT.dll
23:00:38.0171 1608 napagent - ok
23:00:38.0221 1608 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys
23:00:38.0291 1608 NativeWifiP - ok
23:00:38.0371 1608 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\windows\system32\drivers\ndis.sys
23:00:38.0431 1608 NDIS - ok
23:00:38.0471 1608 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys
23:00:38.0551 1608 NdisCap - ok
23:00:38.0581 1608 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys
23:00:38.0666 1608 NdisTapi - ok
23:00:38.0701 1608 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\windows\system32\DRIVERS\ndisuio.sys
23:00:38.0781 1608 Ndisuio - ok
23:00:38.0806 1608 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\windows\system32\DRIVERS\ndiswan.sys
23:00:38.0911 1608 NdisWan - ok
23:00:38.0931 1608 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\windows\system32\drivers\NDProxy.sys
23:00:39.0021 1608 NDProxy - ok
23:00:39.0046 1608 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys
23:00:39.0131 1608 NetBIOS - ok
23:00:39.0161 1608 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\windows\system32\DRIVERS\netbt.sys
23:00:39.0251 1608 NetBT - ok
23:00:39.0281 1608 Netlogon (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:00:39.0316 1608 Netlogon - ok
23:00:39.0386 1608 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll
23:00:39.0486 1608 Netman - ok
23:00:39.0556 1608 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll
23:00:39.0646 1608 netprofm - ok
23:00:39.0736 1608 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:00:39.0766 1608 NetTcpPortSharing - ok
23:00:40.0331 1608 NETw5s32 (5b2dfa9c5c02ddf2a113cc0f551b59df) C:\windows\system32\DRIVERS\NETw5s32.sys
23:00:40.0631 1608 NETw5s32 - ok
23:00:41.0086 1608 netw5v32 (af1ae2e42b03395560b1cde03230205c) C:\windows\system32\DRIVERS\netw5v32.sys
23:00:41.0276 1608 netw5v32 - ok
23:00:41.0386 1608 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys
23:00:41.0421 1608 nfrd960 - ok
23:00:41.0461 1608 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\windows\System32\nlasvc.dll
23:00:41.0551 1608 NlaSvc - ok
23:00:41.0656 1608 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe
23:00:41.0681 1608 NMSAccess - ok
23:00:41.0711 1608 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys
23:00:41.0786 1608 Npfs - ok
23:00:41.0801 1608 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll
23:00:41.0886 1608 nsi - ok
23:00:41.0896 1608 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys
23:00:41.0971 1608 nsiproxy - ok
23:00:42.0106 1608 Ntfs (187002ce05693c306f43c873f821381f) C:\windows\system32\drivers\Ntfs.sys
23:00:42.0201 1608 Ntfs - ok
23:00:42.0306 1608 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys
23:00:42.0391 1608 Null - ok
23:00:42.0431 1608 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\windows\system32\drivers\nvraid.sys
23:00:42.0476 1608 nvraid - ok
23:00:42.0496 1608 nvstor (4520b63899e867f354ee012d34e11536) C:\windows\system32\drivers\nvstor.sys
23:00:42.0541 1608 nvstor - ok
23:00:42.0571 1608 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\DRIVERS\nv_agp.sys
23:00:42.0616 1608 nv_agp - ok
23:00:42.0656 1608 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\DRIVERS\ohci1394.sys
23:00:42.0721 1608 ohci1394 - ok
23:00:42.0766 1608 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
23:00:42.0836 1608 p2pimsvc - ok
23:00:42.0886 1608 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll
23:00:42.0936 1608 p2psvc - ok
23:00:42.0986 1608 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys
23:00:43.0036 1608 Parport - ok
23:00:43.0071 1608 partmgr (66d3415c159741ade7038a277efff99f) C:\windows\system32\drivers\partmgr.sys
23:00:43.0106 1608 partmgr - ok
23:00:43.0121 1608 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys
23:00:43.0171 1608 Parvdm - ok
23:00:43.0201 1608 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll
23:00:43.0251 1608 PcaSvc - ok
23:00:43.0296 1608 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\windows\system32\DRIVERS\pccsmcfd.sys
23:00:43.0351 1608 pccsmcfd - ok
23:00:43.0381 1608 pci (c858cb77c577780ecc456a892e7e7d0f) C:\windows\system32\DRIVERS\pci.sys
23:00:43.0416 1608 pci - ok
23:00:43.0431 1608 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\DRIVERS\pciide.sys
23:00:43.0466 1608 pciide - ok
23:00:43.0496 1608 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys
23:00:43.0536 1608 pcmcia - ok
23:00:43.0566 1608 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys
23:00:43.0601 1608 pcw - ok
23:00:43.0676 1608 pdfcDispatcher - ok
23:00:43.0781 1608 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys
23:00:43.0881 1608 PEAUTH - ok
23:00:43.0986 1608 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\windows\system32\peerdistsvc.dll
23:00:44.0151 1608 PeerDistSvc - ok
23:00:44.0311 1608 pla (9c1bff7910c89a1d12e57343475840cb) C:\windows\system32\pla.dll
23:00:44.0466 1608 pla - ok
23:00:44.0601 1608 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\windows\system32\umpnpmgr.dll
23:00:44.0671 1608 PlugPlay - ok
23:00:44.0701 1608 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll
23:00:44.0736 1608 PNRPAutoReg - ok
23:00:44.0766 1608 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
23:00:44.0796 1608 PNRPsvc - ok
23:00:44.0841 1608 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\windows\System32\ipsecsvc.dll
23:00:44.0901 1608 PolicyAgent - ok
23:00:44.0941 1608 Power (dbff83f709a91049621c1d35dd45c92c) C:\windows\system32\umpo.dll
23:00:44.0996 1608 Power - ok
23:00:45.0036 1608 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys
23:00:45.0081 1608 PptpMiniport - ok
23:00:45.0101 1608 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys
23:00:45.0141 1608 Processor - ok
23:00:45.0181 1608 ProfSvc (aea3bdbdba667aa6f678cb38907e4f5e) C:\windows\system32\profsvc.dll
23:00:45.0231 1608 ProfSvc - ok
23:00:45.0256 1608 ProtectedStorage (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:00:45.0291 1608 ProtectedStorage - ok
23:00:45.0336 1608 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys
23:00:45.0421 1608 Psched - ok
23:00:45.0476 1608 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\windows\system32\Drivers\PxHelp20.sys
23:00:45.0506 1608 PxHelp20 - ok
23:00:45.0631 1608 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys
23:00:45.0762 1608 ql2300 - ok
23:00:45.0877 1608 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys
23:00:45.0922 1608 ql40xx - ok
23:00:45.0967 1608 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll
23:00:46.0022 1608 QWAVE - ok
23:00:46.0047 1608 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys
23:00:46.0087 1608 QWAVEdrv - ok
23:00:46.0107 1608 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys
23:00:46.0192 1608 RasAcd - ok
23:00:46.0237 1608 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys
23:00:46.0317 1608 RasAgileVpn - ok
23:00:46.0357 1608 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll
23:00:46.0442 1608 RasAuto - ok
23:00:46.0472 1608 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys
23:00:46.0557 1608 Rasl2tp - ok
23:00:46.0607 1608 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\windows\System32\rasmans.dll
23:00:46.0712 1608 RasMan - ok
23:00:46.0737 1608 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys
23:00:46.0837 1608 RasPppoe - ok
23:00:46.0867 1608 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys
23:00:46.0942 1608 RasSstp - ok
23:00:46.0992 1608 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\windows\system32\DRIVERS\rdbss.sys
23:00:47.0097 1608 rdbss - ok
23:00:47.0132 1608 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys
23:00:47.0172 1608 rdpbus - ok
23:00:47.0182 1608 RDPCDD (1e016846895b15a99f9a176a05029075) C:\windows\system32\DRIVERS\RDPCDD.sys
23:00:47.0272 1608 RDPCDD - ok
23:00:47.0312 1608 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\windows\system32\drivers\rdpdr.sys
23:00:47.0377 1608 RDPDR - ok
23:00:47.0412 1608 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys
23:00:47.0492 1608 RDPENCDD - ok
23:00:47.0517 1608 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys
23:00:47.0582 1608 RDPREFMP - ok
23:00:47.0642 1608 RDPWD (c5b8d47a4688de9d335204ea757c2240) C:\windows\system32\drivers\RDPWD.sys
23:00:47.0807 1608 RDPWD - ok
23:00:47.0852 1608 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\windows\system32\drivers\rdyboost.sys
23:00:47.0892 1608 rdyboost - ok
23:00:47.0922 1608 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll
23:00:48.0017 1608 RemoteAccess - ok
23:00:48.0062 1608 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll
23:00:48.0152 1608 RemoteRegistry - ok
23:00:48.0202 1608 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys
23:00:48.0252 1608 RFCOMM - ok
23:00:48.0447 1608 RoxMediaDB10 (85f9924fb26d924c4a10dc620ae2c350) c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
23:00:48.0532 1608 RoxMediaDB10 - ok
23:00:48.0652 1608 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll
23:00:48.0758 1608 RpcEptMapper - ok
23:00:48.0788 1608 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe
23:00:48.0843 1608 RpcLocator - ok
23:00:48.0893 1608 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\windows\system32\rpcss.dll
23:00:48.0978 1608 RpcSs - ok
23:00:49.0043 1608 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys
23:00:49.0128 1608 rspndr - ok
23:00:49.0158 1608 s3cap (5423d8437051e89dd34749f242c98648) C:\windows\system32\DRIVERS\vms3cap.sys
23:00:49.0218 1608 s3cap - ok
23:00:49.0243 1608 SamSs (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:00:49.0278 1608 SamSs - ok
23:00:49.0308 1608 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\windows\system32\DRIVERS\sbp2port.sys
23:00:49.0358 1608 sbp2port - ok
23:00:49.0383 1608 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll
23:00:49.0473 1608 SCardSvr - ok
23:00:49.0503 1608 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\windows\system32\DRIVERS\scfilter.sys
23:00:49.0613 1608 scfilter - ok
23:00:49.0703 1608 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\windows\system32\schedsvc.dll
23:00:49.0768 1608 Schedule - ok
23:00:49.0818 1608 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\windows\System32\certprop.dll
23:00:49.0888 1608 SCPolicySvc - ok
23:00:49.0923 1608 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\windows\System32\SDRSVC.dll
23:00:50.0008 1608 SDRSVC - ok
23:00:50.0048 1608 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys
23:00:50.0123 1608 secdrv - ok
23:00:50.0143 1608 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll
23:00:50.0218 1608 seclogon - ok
23:00:50.0258 1608 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\System32\sens.dll
23:00:50.0348 1608 SENS - ok
23:00:50.0378 1608 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll
23:00:50.0453 1608 SensrSvc - ok
23:00:50.0483 1608 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys
23:00:50.0518 1608 Serenum - ok
23:00:50.0538 1608 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys
23:00:50.0578 1608 Serial - ok
23:00:50.0603 1608 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys
23:00:50.0648 1608 sermouse - ok
23:00:50.0773 1608 ServiceLayer (7d3903af48e6c1dc2704eafcb608d031) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
23:00:50.0808 1608 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
23:00:50.0808 1608 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
23:00:50.0853 1608 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\windows\system32\sessenv.dll
23:00:50.0933 1608 SessionEnv - ok
23:00:50.0953 1608 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\DRIVERS\sffdisk.sys
23:00:51.0008 1608 sffdisk - ok
23:00:51.0028 1608 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\DRIVERS\sffp_mmc.sys
23:00:51.0083 1608 sffp_mmc - ok
23:00:51.0103 1608 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\windows\system32\DRIVERS\sffp_sd.sys
23:00:51.0153 1608 sffp_sd - ok
23:00:51.0178 1608 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys
23:00:51.0228 1608 sfloppy - ok
23:00:51.0288 1608 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll
23:00:51.0388 1608 SharedAccess - ok
23:00:51.0438 1608 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\windows\System32\shsvcs.dll
23:00:51.0508 1608 ShellHWDetection - ok
23:00:51.0528 1608 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\DRIVERS\sisagp.sys
23:00:51.0563 1608 sisagp - ok
23:00:51.0603 1608 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys
23:00:51.0638 1608 SiSRaid2 - ok
23:00:51.0673 1608 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys
23:00:51.0713 1608 SiSRaid4 - ok
23:00:51.0813 1608 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe
23:00:51.0843 1608 SkypeUpdate - ok
23:00:51.0883 1608 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys
23:00:51.0958 1608 Smb - ok
23:00:51.0998 1608 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe
23:00:52.0053 1608 SNMPTRAP - ok
23:00:52.0223 1608 SNP2UVC (d8aba1293b82e7af2f78b67ca46fcb3d) C:\windows\system32\DRIVERS\snp2uvc.sys
23:00:52.0338 1608 SNP2UVC - ok
23:00:52.0428 1608 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys
23:00:52.0463 1608 spldr - ok
23:00:52.0518 1608 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\windows\System32\spoolsv.exe
23:00:52.0588 1608 Spooler - ok
23:00:52.0849 1608 sppsvc (4c287f9069fedbd791178876ee9de536) C:\windows\system32\sppsvc.exe
23:00:53.0044 1608 sppsvc - ok
23:00:53.0119 1608 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\windows\system32\sppuinotify.dll
23:00:53.0204 1608 sppuinotify - ok
23:00:53.0269 1608 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\windows\system32\DRIVERS\srv.sys
23:00:53.0339 1608 srv - ok
23:00:53.0379 1608 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\windows\system32\DRIVERS\srv2.sys
23:00:53.0439 1608 srv2 - ok
23:00:53.0479 1608 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\windows\system32\DRIVERS\srvnet.sys
23:00:53.0534 1608 srvnet - ok
23:00:53.0564 1608 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll
23:00:53.0644 1608 SSDPSRV - ok
23:00:53.0709 1608 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\windows\system32\DRIVERS\ssmdrv.sys
23:00:53.0734 1608 ssmdrv - ok
23:00:53.0754 1608 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll
23:00:53.0844 1608 SstpSvc - ok
23:00:53.0899 1608 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\windows\system32\drivers\StarOpen.sys
23:00:53.0919 1608 StarOpen ( UnsignedFile.Multi.Generic ) - warning
23:00:53.0924 1608 StarOpen - detected UnsignedFile.Multi.Generic (1)
23:00:53.0954 1608 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys
23:00:53.0989 1608 stexstor - ok
23:00:54.0014 1608 STHDA - ok
23:00:54.0074 1608 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\windows\System32\wiaservc.dll
23:00:54.0144 1608 StiSvc - ok
23:00:54.0224 1608 stllssvr (ff5eb78af7dfb68c2fb363537aaf753e) c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
23:00:54.0259 1608 stllssvr - ok
23:00:54.0284 1608 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\windows\system32\DRIVERS\vmstorfl.sys
23:00:54.0319 1608 storflt - ok
23:00:54.0349 1608 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\windows\system32\storsvc.dll
23:00:54.0429 1608 StorSvc - ok
23:00:54.0464 1608 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\windows\system32\DRIVERS\storvsc.sys
23:00:54.0499 1608 storvsc - ok
23:00:54.0599 1608 StumbleUponUpdater (3fb1d84d673b4a9af3856c8843c7a464) C:\Users\Linda\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
23:00:54.0624 1608 StumbleUponUpdater ( UnsignedFile.Multi.Generic ) - warning
23:00:54.0624 1608 StumbleUponUpdater - detected UnsignedFile.Multi.Generic (1)
23:00:54.0669 1608 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\DRIVERS\swenum.sys
23:00:54.0704 1608 swenum - ok
23:00:54.0744 1608 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll
23:00:54.0844 1608 swprv - ok
23:00:54.0894 1608 SynTP (1de40024679cde0e573465253519730e) C:\windows\system32\DRIVERS\SynTP.sys
23:00:54.0934 1608 SynTP - ok
23:00:55.0034 1608 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\windows\system32\sysmain.dll
23:00:55.0149 1608 SysMain - ok
23:00:55.0184 1608 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\windows\System32\TabSvc.dll
23:00:55.0254 1608 TabletInputService - ok
23:00:55.0294 1608 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\windows\System32\tapisrv.dll
23:00:55.0394 1608 TapiSrv - ok
23:00:55.0469 1608 tbhsd (77bd6143c6dce0a1bf7b5571bed860dc) C:\windows\system32\drivers\tbhsd.sys
23:00:55.0494 1608 tbhsd - ok
23:00:55.0519 1608 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll
23:00:55.0619 1608 TBS - ok
23:00:55.0764 1608 Tcpip (55e9965552741f3850cb22cbba9671ed) C:\windows\system32\drivers\tcpip.sys
23:00:55.0864 1608 Tcpip - ok
23:00:56.0059 1608 TCPIP6 (55e9965552741f3850cb22cbba9671ed) C:\windows\system32\DRIVERS\tcpip.sys
23:00:56.0144 1608 TCPIP6 - ok
23:00:56.0239 1608 tcpipreg (e64444523add154f86567c469bc0b17f) C:\windows\system32\drivers\tcpipreg.sys
23:00:56.0324 1608 tcpipreg - ok
23:00:56.0354 1608 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\windows\system32\drivers\tdpipe.sys
23:00:56.0394 1608 TDPIPE - ok
23:00:56.0419 1608 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\windows\system32\drivers\tdtcp.sys
23:00:56.0469 1608 TDTCP - ok
23:00:56.0494 1608 tdx (cb39e896a2a83702d1737bfd402b3542) C:\windows\system32\DRIVERS\tdx.sys
23:00:56.0584 1608 tdx - ok
23:00:56.0854 1608 TeamViewer6 (01a402d34732ca3da91786adcc765069) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
23:00:56.0974 1608 TeamViewer6 - ok
23:00:57.0114 1608 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\windows\system32\DRIVERS\termdd.sys
23:00:57.0149 1608 TermDD - ok
23:00:57.0209 1608 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\windows\System32\termsrv.dll
23:00:57.0309 1608 TermService - ok
23:00:57.0339 1608 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll
23:00:57.0384 1608 Themes - ok
23:00:57.0414 1608 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
23:00:57.0489 1608 THREADORDER - ok
23:00:57.0564 1608 TomTomHOMEService (3199a477f0f06eede41bd55179f8eb05) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
23:00:57.0594 1608 TomTomHOMEService - ok
23:00:57.0634 1608 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\windows\system32\drivers\tpm.sys
23:00:57.0704 1608 TPM - ok
23:00:57.0739 1608 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll
23:00:57.0834 1608 TrkWks - ok
23:00:57.0874 1608 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\windows\servicing\TrustedInstaller.exe
23:00:57.0914 1608 TrustedInstaller - ok
23:00:57.0944 1608 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\windows\system32\DRIVERS\tssecsrv.sys
23:00:58.0029 1608 tssecsrv - ok
23:00:58.0069 1608 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\windows\system32\DRIVERS\tunnel.sys
23:00:58.0139 1608 tunnel - ok
23:00:58.0179 1608 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys
23:00:58.0219 1608 uagp35 - ok
23:00:58.0264 1608 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\windows\system32\DRIVERS\udfs.sys
23:00:58.0374 1608 udfs - ok
23:00:58.0419 1608 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe
23:00:58.0469 1608 UI0Detect - ok
23:00:58.0489 1608 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\DRIVERS\uliagpkx.sys
23:00:58.0514 1608 uliagpkx - ok
23:00:58.0559 1608 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\windows\system32\DRIVERS\umbus.sys
23:00:58.0579 1608 umbus - ok
23:00:58.0614 1608 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys
23:00:58.0634 1608 UmPass - ok
23:00:58.0679 1608 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\windows\System32\umrdp.dll
23:00:58.0709 1608 UmRdpService - ok
23:00:58.0739 1608 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll
23:00:58.0794 1608 upnphost - ok
23:00:58.0839 1608 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys
23:00:58.0869 1608 USBAAPL - ok
23:00:58.0899 1608 usbccgp (c31ae588e403042632dc796cf09e30b0) C:\windows\system32\DRIVERS\usbccgp.sys
23:00:58.0929 1608 usbccgp - ok
23:00:58.0954 1608 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\DRIVERS\usbcir.sys
23:00:58.0994 1608 usbcir - ok
23:00:59.0019 1608 usbehci (e4c436d914768ce965d5e659ba7eebd8) C:\windows\system32\DRIVERS\usbehci.sys
23:00:59.0054 1608 usbehci - ok
23:00:59.0099 1608 usbhub (bdcd7156ec37448f08633fd899823620) C:\windows\system32\DRIVERS\usbhub.sys
23:00:59.0144 1608 usbhub - ok
23:00:59.0164 1608 usbohci (eb2d819a639015253c871cda09d91d58) C:\windows\system32\drivers\usbohci.sys
23:00:59.0219 1608 usbohci - ok
23:00:59.0259 1608 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys
23:00:59.0309 1608 usbprint - ok
23:00:59.0354 1608 usbser (88701eca76145e2c011c0eeff0f7b70e) C:\windows\system32\drivers\usbser.sys
23:00:59.0404 1608 usbser - ok
23:00:59.0439 1608 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\windows\system32\DRIVERS\USBSTOR.SYS
23:00:59.0504 1608 USBSTOR - ok
23:00:59.0529 1608 usbuhci (22480bf4e5a09192e5e30ba4dde79fa4) C:\windows\system32\DRIVERS\usbuhci.sys
23:00:59.0579 1608 usbuhci - ok
23:00:59.0634 1608 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\windows\System32\Drivers\usbvideo.sys
23:00:59.0694 1608 usbvideo - ok
23:00:59.0729 1608 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll
23:00:59.0799 1608 UxSms - ok
23:00:59.0824 1608 VaultSvc (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:00:59.0859 1608 VaultSvc - ok
23:00:59.0899 1608 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\DRIVERS\vdrvroot.sys
23:00:59.0934 1608 vdrvroot - ok
23:00:59.0984 1608 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\windows\System32\vds.exe
23:01:00.0059 1608 vds - ok
23:01:00.0104 1608 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys
23:01:00.0144 1608 vga - ok
23:01:00.0164 1608 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys
23:01:00.0254 1608 VgaSave - ok
23:01:00.0299 1608 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\windows\system32\DRIVERS\vhdmp.sys
23:01:00.0344 1608 vhdmp - ok
23:01:00.0364 1608 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\DRIVERS\viaagp.sys
23:01:00.0399 1608 viaagp - ok
23:01:00.0424 1608 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys
23:01:00.0469 1608 ViaC7 - ok
23:01:00.0504 1608 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\DRIVERS\viaide.sys
23:01:00.0544 1608 viaide - ok
23:01:00.0574 1608 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\windows\system32\DRIVERS\vmbus.sys
23:01:00.0619 1608 vmbus - ok
23:01:00.0664 1608 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\windows\system32\DRIVERS\VMBusHID.sys
23:01:00.0699 1608 VMBusHID - ok
23:01:00.0724 1608 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\windows\system32\DRIVERS\volmgr.sys
23:01:00.0759 1608 volmgr - ok
23:01:00.0794 1608 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys
23:01:00.0839 1608 volmgrx - ok
23:01:00.0869 1608 volsnap (58df9d2481a56edde167e51b334d44fd) C:\windows\system32\DRIVERS\volsnap.sys
23:01:00.0924 1608 volsnap - ok
23:01:00.0974 1608 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys
23:01:01.0019 1608 vsmraid - ok
23:01:01.0119 1608 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\windows\system32\vssvc.exe
23:01:01.0209 1608 VSS - ok
23:01:01.0229 1608 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys
23:01:01.0279 1608 vwifibus - ok
23:01:01.0319 1608 VWiFiFlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys
23:01:01.0359 1608 VWiFiFlt - ok
23:01:01.0384 1608 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys
23:01:01.0444 1608 vwifimp - ok
23:01:01.0489 1608 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll
23:01:01.0589 1608 W32Time - ok
23:01:01.0629 1608 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys
23:01:01.0669 1608 WacomPen - ok
23:01:01.0704 1608 WANARP (692a712062146e96d28ba0b7d75de31b) C:\windows\system32\DRIVERS\wanarp.sys
23:01:01.0779 1608 WANARP - ok
23:01:01.0789 1608 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\windows\system32\DRIVERS\wanarp.sys
23:01:01.0859 1608 Wanarpv6 - ok
23:01:01.0964 1608 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\windows\system32\wbengine.exe
23:01:02.0059 1608 wbengine - ok
23:01:02.0089 1608 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll
23:01:02.0144 1608 WbioSrvc - ok
23:01:02.0199 1608 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\windows\System32\wcncsvc.dll
23:01:02.0254 1608 wcncsvc - ok
23:01:02.0279 1608 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll
23:01:02.0359 1608 WcsPlugInService - ok
23:01:02.0404 1608 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys
23:01:02.0439 1608 Wd - ok
23:01:02.0494 1608 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys
23:01:02.0549 1608 Wdf01000 - ok
23:01:02.0574 1608 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
23:01:02.0619 1608 WdiServiceHost - ok
23:01:02.0629 1608 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
23:01:02.0679 1608 WdiSystemHost - ok
23:01:02.0729 1608 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\windows\System32\webclnt.dll
23:01:02.0809 1608 WebClient - ok
23:01:02.0839 1608 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll
23:01:02.0929 1608 Wecsvc - ok
23:01:02.0949 1608 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll
23:01:03.0039 1608 wercplsupport - ok
23:01:03.0079 1608 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll
23:01:03.0159 1608 WerSvc - ok
23:01:03.0209 1608 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys
23:01:03.0279 1608 WfpLwf - ok
23:01:03.0304 1608 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys
23:01:03.0339 1608 WIMMount - ok
23:01:03.0459 1608 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
23:01:03.0534 1608 WinDefend - ok
23:01:03.0549 1608 WinHttpAutoProxySvc - ok
23:01:03.0639 1608 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll
23:01:03.0734 1608 Winmgmt - ok
23:01:03.0860 1608 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\windows\system32\WsmSvc.dll
23:01:03.0990 1608 WinRM - ok
23:01:04.0080 1608 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\windows\system32\DRIVERS\WinUsb.sys
23:01:04.0115 1608 WinUsb - ok
23:01:04.0195 1608 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll
23:01:04.0290 1608 Wlansvc - ok
23:01:04.0340 1608 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\DRIVERS\wmiacpi.sys
23:01:04.0385 1608 WmiAcpi - ok
23:01:04.0460 1608 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe
23:01:04.0505 1608 wmiApSrv - ok
23:01:04.0665 1608 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
23:01:04.0760 1608 WMPNetworkSvc - ok
23:01:04.0870 1608 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll
23:01:04.0940 1608 WPCSvc - ok
23:01:04.0965 1608 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\windows\system32\wpdbusenum.dll
23:01:05.0025 1608 WPDBusEnum - ok
23:01:05.0080 1608 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys
23:01:05.0150 1608 ws2ifsl - ok
23:01:05.0190 1608 wscsvc (a661a76333057b383a06e65f0073222f) C:\windows\System32\wscsvc.dll
23:01:05.0245 1608 wscsvc - ok
23:01:05.0255 1608 WSearch - ok
23:01:05.0425 1608 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\windows\system32\wuaueng.dll
23:01:05.0555 1608 wuauserv - ok
23:01:05.0645 1608 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\windows\system32\drivers\WudfPf.sys
23:01:05.0730 1608 WudfPf - ok
23:01:05.0765 1608 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\windows\system32\DRIVERS\WUDFRd.sys
23:01:05.0850 1608 WUDFRd - ok
23:01:05.0875 1608 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\windows\System32\WUDFSvc.dll
23:01:05.0965 1608 wudfsvc - ok
23:01:06.0000 1608 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll
23:01:06.0055 1608 WwanSvc - ok
23:01:06.0120 1608 yukonw7 (3eb1576f77b60a6c79dd7742b67219b8) C:\windows\system32\DRIVERS\yk62x86.sys
23:01:06.0195 1608 yukonw7 - ok
23:01:06.0260 1608 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
23:01:06.0595 1608 \Device\Harddisk0\DR0 - ok
23:01:06.0620 1608 Boot (0x1200) (b685b3d2fa35e4c0b3d2cab9959c710d) \Device\Harddisk0\DR0\Partition0
23:01:06.0630 1608 \Device\Harddisk0\DR0\Partition0 - ok
23:01:06.0670 1608 Boot (0x1200) (4711c957e8294acd3a089ef8373bc33a) \Device\Harddisk0\DR0\Partition1
23:01:06.0670 1608 \Device\Harddisk0\DR0\Partition1 - ok
23:01:06.0695 1608 Boot (0x1200) (93e0b218765a6f647c9fd09c61318be6) \Device\Harddisk0\DR0\Partition2
23:01:06.0695 1608 \Device\Harddisk0\DR0\Partition2 - ok
23:01:06.0725 1608 Boot (0x1200) (e759ceb0f139e182a93255ece9bb4b78) \Device\Harddisk0\DR0\Partition3
23:01:06.0725 1608 \Device\Harddisk0\DR0\Partition3 - ok
23:01:06.0730 1608 ============================================================
23:01:06.0730 1608 Scan finished
23:01:06.0730 1608 ============================================================
23:01:06.0755 4160 Detected object count: 5
23:01:06.0755 4160 Actual detected object count: 5
23:01:35.0353 4160 IJPLMSVC ( UnsignedFile.Multi.Generic ) - skipped by user
23:01:35.0353 4160 IJPLMSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:01:35.0353 4160 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
23:01:35.0353 4160 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:01:35.0358 4160 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
23:01:35.0358 4160 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:01:35.0363 4160 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
23:01:35.0363 4160 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:01:35.0368 4160 StumbleUponUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
23:01:35.0368 4160 StumbleUponUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:01:43.0820 3928 ============================================================
23:01:43.0820 3928 Scan started
23:01:43.0820 3928 Mode: Manual; SigCheck; TDLFS;
23:01:43.0820 3928 ============================================================
23:01:44.0270 3928 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\windows\system32\DRIVERS\1394ohci.sys
23:01:44.0335 3928 1394ohci - ok
23:01:44.0385 3928 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\windows\system32\DRIVERS\ACPI.sys
23:01:44.0430 3928 ACPI - ok
23:01:44.0455 3928 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\windows\system32\DRIVERS\acpipmi.sys
23:01:44.0495 3928 AcpiPmi - ok
23:01:44.0595 3928 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:01:44.0625 3928 AdobeARMservice - ok
23:01:44.0670 3928 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\DRIVERS\adp94xx.sys
23:01:44.0720 3928 adp94xx - ok
23:01:44.0760 3928 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\DRIVERS\adpahci.sys
23:01:44.0805 3928 adpahci - ok
23:01:44.0840 3928 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\DRIVERS\adpu320.sys
23:01:44.0880 3928 adpu320 - ok
23:01:44.0920 3928 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll
23:01:44.0955 3928 AeLookupSvc - ok
23:01:45.0010 3928 AFD (0db7a48388d54d154ebec120461a0fcd) C:\windows\system32\drivers\afd.sys
23:01:45.0055 3928 AFD - ok
23:01:45.0080 3928 AgereModemAudio (6416f9b6b220f0a890525c38235afad7) C:\Program Files\LSI SoftModem\agrsmsvc.exe
23:01:45.0110 3928 AgereModemAudio - ok
23:01:45.0215 3928 AgereSoftModem (faa5a0b80e011464c7654851ce3d7fe7) C:\windows\system32\DRIVERS\AGRSM.sys
23:01:45.0280 3928 AgereSoftModem - ok
23:01:45.0305 3928 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\DRIVERS\agp440.sys
23:01:45.0340 3928 agp440 - ok
23:01:45.0365 3928 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\DRIVERS\djsvs.sys
23:01:45.0400 3928 aic78xx - ok
23:01:45.0420 3928 ALG (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe
23:01:45.0455 3928 ALG - ok
23:01:45.0465 3928 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\DRIVERS\aliide.sys
23:01:45.0500 3928 aliide - ok
23:01:45.0520 3928 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\DRIVERS\amdagp.sys
23:01:45.0550 3928 amdagp - ok
23:01:45.0580 3928 amdide (cd5914170297126b6266860198d1d4f0) C:\windows\system32\DRIVERS\amdide.sys
23:01:45.0610 3928 amdide - ok
23:01:45.0635 3928 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\DRIVERS\amdk8.sys
23:01:45.0670 3928 AmdK8 - ok
23:01:45.0690 3928 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys
23:01:45.0725 3928 AmdPPM - ok
23:01:45.0750 3928 amdsata (19ce906b4cdc11fc4fef5745f33a63b6) C:\windows\system32\drivers\amdsata.sys
23:01:45.0786 3928 amdsata - ok
23:01:45.0821 3928 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\DRIVERS\amdsbs.sys
23:01:45.0866 3928 amdsbs - ok
23:01:45.0881 3928 amdxata (869e67d66be326a5a9159fba8746fa70) C:\windows\system32\drivers\amdxata.sys
23:01:45.0916 3928 amdxata - ok
23:01:45.0976 3928 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
23:01:46.0011 3928 AntiVirSchedulerService - ok
23:01:46.0036 3928 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
23:01:46.0066 3928 AntiVirService - ok
23:01:46.0096 3928 AppID (feb834c02ce1e84b6a38f953ca067706) C:\windows\system32\drivers\appid.sys
23:01:46.0136 3928 AppID - ok
23:01:46.0156 3928 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll
23:01:46.0221 3928 AppIDSvc - ok
23:01:46.0236 3928 Appinfo (7dead9e3f65dcb2794f2711003bbf650) C:\windows\System32\appinfo.dll
23:01:46.0271 3928 Appinfo - ok
23:01:46.0331 3928 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:01:46.0356 3928 Apple Mobile Device - ok
23:01:46.0391 3928 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\windows\System32\appmgmts.dll
23:01:46.0426 3928 AppMgmt - ok
23:01:46.0451 3928 arc (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\DRIVERS\arc.sys
23:01:46.0486 3928 arc - ok
23:01:46.0501 3928 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\DRIVERS\arcsas.sys
23:01:46.0536 3928 arcsas - ok
23:01:46.0551 3928 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys
23:01:46.0626 3928 AsyncMac - ok
23:01:46.0641 3928 atapi (338c86357871c167a96ab976519bf59e) C:\windows\system32\DRIVERS\atapi.sys
23:01:46.0671 3928 atapi - ok
23:01:46.0726 3928 AudioEndpointBuilder (510c873bfa135aa829f4180352772734) C:\windows\System32\Audiosrv.dll
23:01:46.0811 3928 AudioEndpointBuilder - ok
23:01:46.0831 3928 Audiosrv (510c873bfa135aa829f4180352772734) C:\windows\System32\Audiosrv.dll
23:01:46.0916 3928 Audiosrv - ok
23:01:46.0961 3928 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\windows\system32\DRIVERS\avgntflt.sys
23:01:46.0991 3928 avgntflt - ok
23:01:47.0026 3928 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\windows\system32\DRIVERS\avipbb.sys
23:01:47.0056 3928 avipbb - ok
23:01:47.0071 3928 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\windows\system32\DRIVERS\avkmgr.sys
23:01:47.0101 3928 avkmgr - ok
23:01:47.0121 3928 AxInstSV (dd6a431b43e34b91a767d1ce33728175) C:\windows\System32\AxInstSV.dll
23:01:47.0166 3928 AxInstSV - ok
23:01:47.0216 3928 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\windows\system32\DRIVERS\bxvbdx.sys
23:01:47.0261 3928 b06bdrv - ok
23:01:47.0296 3928 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys
23:01:47.0336 3928 b57nd60x - ok
23:01:47.0361 3928 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll
23:01:47.0396 3928 BDESVC - ok
23:01:47.0416 3928 Beep (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys
23:01:47.0486 3928 Beep - ok
23:01:47.0536 3928 BFE (85ac71c045ceb054ed48a7841aae0c11) C:\windows\System32\bfe.dll
23:01:47.0621 3928 BFE - ok
23:01:47.0696 3928 BITS (53f476476f55a27f580661bde09c4ec4) C:\windows\System32\qmgr.dll
23:01:47.0786 3928 BITS - ok
23:01:47.0796 3928 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys
23:01:47.0836 3928 blbdrive - ok
23:01:47.0926 3928 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
23:01:47.0961 3928 Bonjour Service - ok
23:01:48.0001 3928 bowser (9a5c671b7fbae4865149bb11f59b91b2) C:\windows\system32\DRIVERS\bowser.sys
23:01:48.0036 3928 bowser - ok
23:01:48.0056 3928 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\DRIVERS\BrFiltLo.sys
23:01:48.0096 3928 BrFiltLo - ok
23:01:48.0116 3928 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\windows\system32\DRIVERS\BrFiltUp.sys
23:01:48.0156 3928 BrFiltUp - ok
23:01:48.0181 3928 Browser (598e1280e7ff3744f4b8329366cc5635) C:\windows\System32\browser.dll
23:01:48.0251 3928 Browser - ok
23:01:48.0291 3928 Brserid (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys
23:01:48.0336 3928 Brserid - ok
23:01:48.0361 3928 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys
23:01:48.0401 3928 BrSerWdm - ok
23:01:48.0416 3928 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys
23:01:48.0456 3928 BrUsbMdm - ok
23:01:48.0471 3928 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys
23:01:48.0506 3928 BrUsbSer - ok
23:01:48.0531 3928 bthav (971ffd6d2840701661931aaa1ca4376f) C:\windows\system32\drivers\bthav.sys
23:01:48.0561 3928 bthav - ok
23:01:48.0596 3928 BthAvrcp (db99076533ffb38cbec8ac88e4535850) C:\windows\system32\DRIVERS\BthAvrcp.sys
23:01:48.0626 3928 BthAvrcp - ok
23:01:48.0656 3928 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys
23:01:48.0686 3928 BthEnum - ok
23:01:48.0706 3928 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\DRIVERS\bthmodem.sys
23:01:48.0746 3928 BTHMODEM - ok
23:01:48.0771 3928 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys
23:01:48.0811 3928 BthPan - ok
23:01:48.0871 3928 BTHPORT (88059ff1ded4472acd17eebabd393069) C:\windows\System32\Drivers\BTHport.sys
23:01:48.0916 3928 BTHPORT - ok
23:01:48.0936 3928 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll
23:01:49.0011 3928 bthserv - ok
23:01:49.0041 3928 BTHUSB (80e6384beec03b8bd45edea29802d657) C:\windows\System32\Drivers\BTHUSB.sys
23:01:49.0076 3928 BTHUSB - ok
23:01:49.0116 3928 btwaudio (d57d29132efe13a83133d9bd449e0cf1) C:\windows\system32\drivers\btwaudio.sys
23:01:49.0141 3928 btwaudio - ok
23:01:49.0166 3928 btwavdt (d282c14a69357d0e1bafaecc2ca98c3a) C:\windows\system32\drivers\btwavdt.sys
23:01:49.0196 3928 btwavdt - ok
23:01:49.0286 3928 btwdins (7d2dd14e60ce4ff3308d66fda7990546) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:01:49.0331 3928 btwdins - ok
23:01:49.0351 3928 btwl2cap (aafd7cb76ba61fbb08e302da208c974a) C:\windows\system32\DRIVERS\btwl2cap.sys
23:01:49.0371 3928 btwl2cap - ok
23:01:49.0391 3928 btwrchid (02eb4d2b05967df2d32f29c84ab1fb17) C:\windows\system32\DRIVERS\btwrchid.sys
23:01:49.0416 3928 btwrchid - ok
23:01:49.0446 3928 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys
23:01:49.0521 3928 cdfs - ok
23:01:49.0546 3928 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\windows\system32\DRIVERS\cdrom.sys
23:01:49.0581 3928 cdrom - ok
23:01:49.0601 3928 CertPropSvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\windows\System32\certprop.dll
23:01:49.0676 3928 CertPropSvc - ok
23:01:49.0696 3928 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\DRIVERS\circlass.sys
23:01:49.0736 3928 circlass - ok
23:01:49.0766 3928 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys
23:01:49.0812 3928 CLFS - ok
23:01:49.0862 3928 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:01:49.0897 3928 clr_optimization_v2.0.50727_32 - ok
23:01:49.0947 3928 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:01:49.0977 3928 clr_optimization_v4.0.30319_32 - ok
23:01:50.0002 3928 CmBatt (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys
23:01:50.0032 3928 CmBatt - ok
23:01:50.0047 3928 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\DRIVERS\cmdide.sys
23:01:50.0082 3928 cmdide - ok
23:01:50.0132 3928 CNG (36c252e474b2ffa0f0fbbff20d92a640) C:\windows\system32\Drivers\cng.sys
23:01:50.0192 3928 CNG - ok
23:01:50.0272 3928 Com4QLBEx (f9a79c5b27037821112c50a9c8fb367a) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
23:01:50.0312 3928 Com4QLBEx - ok
23:01:50.0352 3928 Compbatt (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys
23:01:50.0387 3928 Compbatt - ok
23:01:50.0407 3928 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\windows\system32\DRIVERS\CompositeBus.sys
23:01:50.0437 3928 CompositeBus - ok
23:01:50.0442 3928 COMSysApp - ok
23:01:50.0457 3928 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\DRIVERS\crcdisk.sys
23:01:50.0482 3928 crcdisk - ok
23:01:50.0512 3928 CryptSvc (520a108a2657f4bca7fced9ca7d885de) C:\windows\system32\cryptsvc.dll
23:01:50.0537 3928 CryptSvc - ok
23:01:50.0587 3928 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\windows\system32\drivers\csc.sys
23:01:50.0617 3928 CSC - ok
23:01:50.0667 3928 CscService (56fb5f222ea30d3d3fc459879772cb73) C:\windows\System32\cscsvc.dll
23:01:50.0712 3928 CscService - ok
23:01:50.0772 3928 DcomLaunch (b82cd39e336973359d7c9bf911e8e84f) C:\windows\system32\rpcss.dll
23:01:50.0857 3928 DcomLaunch - ok
23:01:50.0907 3928 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll
23:01:50.0982 3928 defragsvc - ok
23:01:51.0032 3928 DfsC (83d1ecea8faae75604c0fa49ac7ad996) C:\windows\system32\Drivers\dfsc.sys
23:01:51.0067 3928 DfsC - ok
23:01:51.0097 3928 Dhcp (c56495fbd770712367cad35e5de72da6) C:\windows\system32\dhcpcore.dll
23:01:51.0142 3928 Dhcp - ok
23:01:51.0177 3928 discache (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys
23:01:51.0247 3928 discache - ok
23:01:51.0257 3928 Disk (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\DRIVERS\disk.sys
23:01:51.0297 3928 Disk - ok
23:01:51.0332 3928 Dnscache (b15be77a2bacf9c3177d27518afe26a9) C:\windows\System32\dnsrslvr.dll
23:01:51.0367 3928 Dnscache - ok
23:01:51.0402 3928 dot3svc (4408c85c21eea48eb0ce486baeef0502) C:\windows\System32\dot3svc.dll
23:01:51.0477 3928 dot3svc - ok
23:01:51.0502 3928 DPS (7fa81c6e11caa594adb52084da73a1e5) C:\windows\system32\dps.dll
23:01:51.0577 3928 DPS - ok
23:01:51.0612 3928 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys
23:01:51.0652 3928 drmkaud - ok
23:01:51.0727 3928 DXGKrnl (1679a4669326cb1a67cc95658d273234) C:\windows\System32\drivers\dxgkrnl.sys
23:01:51.0787 3928 DXGKrnl - ok
23:01:51.0807 3928 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll
23:01:51.0882 3928 EapHost - ok
23:01:52.0117 3928 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\DRIVERS\evbdx.sys
23:01:52.0242 3928 ebdrv - ok
23:01:52.0352 3928 EFS (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\System32\lsass.exe
23:01:52.0387 3928 EFS - ok
23:01:52.0547 3928 ehRecvr (1697c39978cd69f6fbc15302edcece1f) C:\windows\ehome\ehRecvr.exe
23:01:52.0597 3928 ehRecvr - ok
23:01:52.0642 3928 ehSched (d389bff34f80caede417bf9d1507996a) C:\windows\ehome\ehsched.exe
23:01:52.0692 3928 ehSched - ok
23:01:52.0757 3928 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\DRIVERS\elxstor.sys
23:01:52.0807 3928 elxstor - ok
23:01:52.0837 3928 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\DRIVERS\errdev.sys
23:01:52.0862 3928 ErrDev - ok
23:01:52.0922 3928 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll
23:01:52.0977 3928 EventSystem - ok
23:01:53.0017 3928 exfat (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys
23:01:53.0067 3928 exfat - ok
23:01:53.0102 3928 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys
23:01:53.0157 3928 fastfat - ok
23:01:53.0202 3928 Fax (f7ea23cc5e6bf2181f3f399d54f6efc1) C:\windows\system32\fxssvc.exe
23:01:53.0237 3928 Fax - ok
23:01:53.0267 3928 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\DRIVERS\fdc.sys
23:01:53.0287 3928 fdc - ok
23:01:53.0317 3928 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll
23:01:53.0367 3928 fdPHost - ok
23:01:53.0382 3928 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll
23:01:53.0432 3928 FDResPub - ok
23:01:53.0447 3928 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys
23:01:53.0472 3928 FileInfo - ok
23:01:53.0487 3928 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys
23:01:53.0537 3928 Filetrace - ok
23:01:53.0557 3928 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\DRIVERS\flpydisk.sys
23:01:53.0577 3928 flpydisk - ok
23:01:53.0602 3928 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys
23:01:53.0627 3928 FltMgr - ok
23:01:53.0712 3928 FontCache (7fe4995528a7529a761875151ee3d512) C:\windows\system32\FntCache.dll
23:01:53.0752 3928 FontCache - ok
23:01:53.0807 3928 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:01:53.0832 3928 FontCache3.0.0.0 - ok
23:01:53.0868 3928 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys
23:01:53.0903 3928 FsDepends - ok
23:01:53.0933 3928 Fs_Rec (500a9814fd9446a8126858a5a7f7d273) C:\windows\system32\drivers\Fs_Rec.sys
23:01:53.0968 3928 Fs_Rec - ok
23:01:54.0003 3928 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\windows\system32\DRIVERS\fvevol.sys
23:01:54.0053 3928 fvevol - ok
23:01:54.0083 3928 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\DRIVERS\gagp30kx.sys
23:01:54.0118 3928 gagp30kx - ok
23:01:54.0163 3928 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
23:01:54.0188 3928 GEARAspiWDM - ok
23:01:54.0253 3928 gpsvc (8ba3c04702bf8f927ab36ae8313ca4ee) C:\windows\System32\gpsvc.dll
23:01:54.0308 3928 gpsvc - ok
23:01:54.0383 3928 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
23:01:54.0408 3928 gupdate - ok
23:01:54.0418 3928 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
23:01:54.0448 3928 gupdatem - ok
23:01:54.0483 3928 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:01:54.0513 3928 gusvc - ok
23:01:54.0533 3928 HBtnKey (7dad592a4d28092d584cfb4deef1373d) C:\windows\system32\DRIVERS\cpqbttn.sys
23:01:54.0558 3928 HBtnKey - ok
23:01:54.0588 3928 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys
23:01:54.0628 3928 hcw85cir - ok
23:01:54.0668 3928 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\windows\system32\drivers\HdAudio.sys
23:01:54.0718 3928 HdAudAddService - ok
23:01:54.0743 3928 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\windows\system32\DRIVERS\HDAudBus.sys
23:01:54.0788 3928 HDAudBus - ok
23:01:54.0813 3928 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\DRIVERS\HidBatt.sys
23:01:54.0848 3928 HidBatt - ok
23:01:54.0873 3928 HidBth (89448f40e6df260c206a193a4683ba78) C:\windows\system32\DRIVERS\hidbth.sys
23:01:54.0913 3928 HidBth - ok
23:01:54.0938 3928 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\DRIVERS\hidir.sys
23:01:54.0978 3928 HidIr - ok
23:01:54.0993 3928 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\system32\hidserv.dll
23:01:55.0068 3928 hidserv - ok
23:01:55.0098 3928 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\windows\system32\DRIVERS\hidusb.sys
23:01:55.0138 3928 HidUsb - ok
23:01:55.0163 3928 hkmsvc (741c2a45ca8407e374aaba3e330b7872) C:\windows\system32\kmsvc.dll
23:01:55.0233 3928 hkmsvc - ok
23:01:55.0268 3928 HomeGroupListener (a768ca158bb06782a2835b907f4873c3) C:\windows\system32\ListSvc.dll
23:01:55.0293 3928 HomeGroupListener - ok
23:01:55.0348 3928 HomeGroupProvider (fb08dec5ef43d0c66d83b8e9694e7549) C:\windows\system32\provsvc.dll
23:01:55.0378 3928 HomeGroupProvider - ok
23:01:55.0463 3928 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe
23:01:55.0488 3928 HP Support Assistant Service - ok
23:01:55.0548 3928 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe
23:01:55.0573 3928 HPDrvMntSvc.exe - ok
23:01:55.0588 3928 HpqKbFiltr (1210960ff8928950d2a786895b0c424a) C:\windows\system32\DRIVERS\HpqKbFiltr.sys
23:01:55.0618 3928 HpqKbFiltr - ok
23:01:55.0703 3928 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe
23:01:55.0758 3928 hpqwmiex - ok
23:01:55.0793 3928 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\DRIVERS\HpSAMD.sys
23:01:55.0828 3928 HpSAMD - ok
23:01:55.0893 3928 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\windows\system32\drivers\HTTP.sys
23:01:55.0978 3928 HTTP - ok
23:01:55.0998 3928 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\windows\system32\drivers\hwpolicy.sys
23:01:56.0033 3928 hwpolicy - ok
23:01:56.0053 3928 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\DRIVERS\i8042prt.sys
23:01:56.0088 3928 i8042prt - ok
23:01:56.0138 3928 IAANTMON (0d2d28a3f60fb0b69812d6861bcbfebd) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:01:56.0178 3928 IAANTMON - ok
23:01:56.0223 3928 iaStor (d483687eace0c065ee772481a96e05f5) C:\windows\system32\DRIVERS\iaStor.sys
23:01:56.0258 3928 iaStor - ok
23:01:56.0323 3928 iaStorV (71f1a494fedf4b33c02c4a6a28d6d9e9) C:\windows\system32\drivers\iaStorV.sys
23:01:56.0368 3928 iaStorV - ok
23:01:56.0478 3928 idsvc (5af815eb5bc9802e5a064e2ba62bfc0c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:01:56.0538 3928 idsvc - ok
23:01:56.0984 3928 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\windows\system32\DRIVERS\igdkmd32.sys
23:01:57.0154 3928 igfx - ok
23:01:57.0264 3928 iirsp (4173ff5708f3236cf25195fecd742915) C:\windows\system32\DRIVERS\iirsp.sys
23:01:57.0299 3928 iirsp - ok
23:01:57.0379 3928 IJPLMSVC (2f95bef56aeeeb45de55ec44668e2695) C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
23:01:57.0394 3928 IJPLMSVC ( UnsignedFile.Multi.Generic ) - warning
23:01:57.0394 3928 IJPLMSVC - detected UnsignedFile.Multi.Generic (1)
23:01:57.0464 3928 IKEEXT (fac0ee6562b121b1399d6e855583f7a5) C:\windows\System32\ikeext.dll
23:01:57.0559 3928 IKEEXT - ok
23:01:57.0594 3928 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\DRIVERS\intelide.sys
23:01:57.0629 3928 intelide - ok
23:01:57.0649 3928 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\DRIVERS\intelppm.sys
23:01:57.0684 3928 intelppm - ok
23:01:57.0709 3928 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll
23:01:57.0784 3928 IPBusEnum - ok
23:01:57.0809 3928 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys
23:01:57.0884 3928 IpFilterDriver - ok
23:01:57.0934 3928 iphlpsvc (477397b432a256a50ee7e4339eb9ea14) C:\windows\System32\iphlpsvc.dll
23:01:58.0024 3928 iphlpsvc - ok
23:01:58.0059 3928 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\windows\system32\DRIVERS\IPMIDrv.sys
23:01:58.0094 3928 IPMIDRV - ok
23:01:58.0119 3928 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys
23:01:58.0194 3928 IPNAT - ok
23:01:58.0279 3928 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
23:01:58.0334 3928 iPod Service - ok
23:01:58.0349 3928 IRENUM (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys
23:01:58.0394 3928 IRENUM - ok
23:01:58.0414 3928 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\DRIVERS\isapnp.sys
23:01:58.0449 3928 isapnp - ok
23:01:58.0484 3928 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\windows\system32\DRIVERS\msiscsi.sys
23:01:58.0524 3928 iScsiPrt - ok
23:01:58.0549 3928 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\DRIVERS\kbdclass.sys
23:01:58.0584 3928 kbdclass - ok
23:01:58.0599 3928 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\windows\system32\DRIVERS\kbdhid.sys
23:01:58.0634 3928 kbdhid - ok
23:01:58.0659 3928 KeyIso (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:01:58.0684 3928 KeyIso - ok
23:01:58.0694 3928 KSecDD (0263364acb9c834ace52fb85c2c064ec) C:\windows\system32\Drivers\ksecdd.sys
23:01:58.0719 3928 KSecDD - ok
23:01:58.0744 3928 KSecPkg (27391db553be2a4e2b0adeea2873b2af) C:\windows\system32\Drivers\ksecpkg.sys
23:01:58.0769 3928 KSecPkg - ok
23:01:58.0799 3928 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll
23:01:58.0884 3928 KtmRm - ok
23:01:58.0929 3928 LanmanServer (8f6bf790d3168224c16f2af68a84438c) C:\windows\system32\srvsvc.dll
23:01:58.0969 3928 LanmanServer - ok
23:01:59.0009 3928 LanmanWorkstation (b9891f885dcf1f0513a51cb58493cb1f) C:\windows\System32\wkssvc.dll
23:01:59.0084 3928 LanmanWorkstation - ok
23:01:59.0139 3928 LightScribeService (fcbdcc6f1801e32244235608e1277752) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
23:01:59.0154 3928 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
23:01:59.0154 3928 LightScribeService - detected UnsignedFile.Multi.Generic (1)
23:01:59.0169 3928 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys
23:01:59.0244 3928 lltdio - ok
23:01:59.0274 3928 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll
23:01:59.0359 3928 lltdsvc - ok
23:01:59.0384 3928 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll
23:01:59.0449 3928 lmhosts - ok
23:01:59.0479 3928 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\DRIVERS\lsi_fc.sys
23:01:59.0519 3928 LSI_FC - ok
23:01:59.0534 3928 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\DRIVERS\lsi_sas.sys
23:01:59.0569 3928 LSI_SAS - ok
23:01:59.0599 3928 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\DRIVERS\lsi_sas2.sys
23:01:59.0634 3928 LSI_SAS2 - ok
23:01:59.0659 3928 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\DRIVERS\lsi_scsi.sys
23:01:59.0694 3928 LSI_SCSI - ok
23:01:59.0714 3928 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys
23:01:59.0789 3928 luafv - ok
23:01:59.0819 3928 MBAMProtector (fb097bbc1a18f044bd17bd2fccf97865) C:\windows\system32\drivers\mbam.sys
23:01:59.0849 3928 MBAMProtector - ok
23:01:59.0929 3928 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
23:01:59.0979 3928 MBAMService - ok
23:02:00.0014 3928 Mcx2Svc (e2b0887816ed336685954e3d8fdaa51d) C:\windows\system32\Mcx2Svc.dll
23:02:00.0054 3928 Mcx2Svc - ok
23:02:00.0074 3928 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\DRIVERS\megasas.sys
23:02:00.0109 3928 megasas - ok
23:02:00.0139 3928 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\DRIVERS\MegaSR.sys
23:02:00.0179 3928 MegaSR - ok
23:02:00.0209 3928 MfeAVFK (64b96de8c492bd435372d9130a535f1d) C:\windows\system32\drivers\MfeAVFK.sys
23:02:00.0239 3928 MfeAVFK - ok
23:02:00.0259 3928 MfeBOPK (078e87a89d36cc3516f19d5fb518bddc) C:\windows\system32\drivers\MfeBOPK.sys
23:02:00.0284 3928 MfeBOPK - ok
23:02:00.0344 3928 mfehidk (168c565101fd5b9db694efdec91fafa9) C:\windows\system32\drivers\mfehidk.sys
23:02:00.0389 3928 mfehidk - ok
23:02:00.0419 3928 MfeRKDK (e0842f67dc9bc4d21d1e319610ebe9e5) C:\windows\system32\drivers\MfeRKDK.sys
23:02:00.0439 3928 MfeRKDK - ok
23:02:00.0459 3928 mfetdik (43a7acbbd70ecd62f0b63486c72089a3) C:\windows\system32\drivers\mfetdik.sys
23:02:00.0484 3928 mfetdik - ok
23:02:00.0524 3928 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
23:02:00.0599 3928 MMCSS - ok
23:02:00.0624 3928 Modem (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys
23:02:00.0694 3928 Modem - ok
23:02:00.0714 3928 monitor (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys
23:02:00.0754 3928 monitor - ok
23:02:00.0774 3928 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys
23:02:00.0809 3928 mouclass - ok
23:02:00.0829 3928 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys
23:02:00.0860 3928 mouhid - ok
23:02:00.0885 3928 mountmgr (921c18727c5920d6c0300736646931c2) C:\windows\system32\drivers\mountmgr.sys
23:02:00.0920 3928 mountmgr - ok
23:02:01.0005 3928 MozillaMaintenance (6380ff81dd4d78b23398752d2f46ea43) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
23:02:01.0035 3928 MozillaMaintenance - ok
23:02:01.0060 3928 mpio (2af5997438c55fb79d33d015c30e1974) C:\windows\system32\DRIVERS\mpio.sys
23:02:01.0100 3928 mpio - ok
23:02:01.0115 3928 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys
23:02:01.0185 3928 mpsdrv - ok
23:02:01.0240 3928 MpsSvc (5cd996cecf45cbc3e8d109c86b82d69e) C:\windows\system32\mpssvc.dll
23:02:01.0330 3928 MpsSvc - ok
23:02:01.0430 3928 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\windows\system32\drivers\mrxdav.sys
23:02:01.0470 3928 MRxDAV - ok
23:02:01.0515 3928 mrxsmb (ca7570e42522e24324a12161db14ec02) C:\windows\system32\DRIVERS\mrxsmb.sys
23:02:01.0550 3928 mrxsmb - ok
23:02:01.0595 3928 mrxsmb10 (f965c3ab2b2ae5c378f4562486e35051) C:\windows\system32\DRIVERS\mrxsmb10.sys
23:02:01.0640 3928 mrxsmb10 - ok
23:02:01.0660 3928 mrxsmb20 (25c38264a3c72594dd21d355d70d7a5d) C:\windows\system32\DRIVERS\mrxsmb20.sys
23:02:01.0695 3928 mrxsmb20 - ok
23:02:01.0715 3928 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\windows\system32\DRIVERS\msahci.sys
23:02:01.0750 3928 msahci - ok
23:02:01.0780 3928 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\windows\system32\DRIVERS\msdsm.sys
23:02:01.0820 3928 msdsm - ok
23:02:01.0850 3928 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe
23:02:01.0895 3928 MSDTC - ok
23:02:01.0930 3928 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys
23:02:02.0000 3928 Msfs - ok
23:02:02.0015 3928 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys
23:02:02.0085 3928 mshidkmdf - ok
23:02:02.0100 3928 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\DRIVERS\msisadrv.sys
23:02:02.0130 3928 msisadrv - ok
23:02:02.0170 3928 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll
23:02:02.0240 3928 MSiSCSI - ok
23:02:02.0250 3928 msiserver - ok
23:02:02.0275 3928 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys
23:02:02.0345 3928 MSKSSRV - ok
23:02:02.0360 3928 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys
23:02:02.0435 3928 MSPCLOCK - ok
23:02:02.0450 3928 MSPQM (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys
23:02:02.0520 3928 MSPQM - ok
23:02:02.0545 3928 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys
23:02:02.0585 3928 MsRPC - ok
23:02:02.0615 3928 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\DRIVERS\mssmbios.sys
23:02:02.0655 3928 mssmbios - ok
23:02:02.0670 3928 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys
23:02:02.0740 3928 MSTEE - ok
23:02:02.0755 3928 MTConfig (33599130f44e1f34631cea241de8ac84) C:\windows\system32\DRIVERS\MTConfig.sys
23:02:02.0790 3928 MTConfig - ok
23:02:02.0820 3928 Mup (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys
23:02:02.0855 3928 Mup - ok
23:02:02.0905 3928 napagent (80284f1985c70c86f0b5f86da2dfe1df) C:\windows\system32\qagentRT.dll
23:02:02.0985 3928 napagent - ok
23:02:03.0025 3928 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys
23:02:03.0075 3928 NativeWifiP - ok
23:02:03.0140 3928 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\windows\system32\drivers\ndis.sys
23:02:03.0200 3928 NDIS - ok
23:02:03.0225 3928 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys
23:02:03.0300 3928 NdisCap - ok
23:02:03.0320 3928 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys
23:02:03.0385 3928 NdisTapi - ok
23:02:03.0410 3928 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\windows\system32\DRIVERS\ndisuio.sys
23:02:03.0480 3928 Ndisuio - ok
23:02:03.0505 3928 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\windows\system32\DRIVERS\ndiswan.sys
23:02:03.0575 3928 NdisWan - ok
23:02:03.0595 3928 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\windows\system32\drivers\NDProxy.sys
23:02:03.0665 3928 NDProxy - ok
23:02:03.0685 3928 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys
23:02:03.0755 3928 NetBIOS - ok
23:02:03.0790 3928 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\windows\system32\DRIVERS\netbt.sys
23:02:03.0865 3928 NetBT - ok
23:02:03.0891 3928 Netlogon (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:02:03.0931 3928 Netlogon - ok
23:02:03.0976 3928 Netman (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll
23:02:04.0056 3928 Netman - ok
23:02:04.0101 3928 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll
23:02:04.0186 3928 netprofm - ok
23:02:04.0251 3928 NetTcpPortSharing (fe2aa5a684b0dd9b1fae57b7817c198b) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:02:04.0281 3928 NetTcpPortSharing - ok
23:02:04.0701 3928 NETw5s32 (5b2dfa9c5c02ddf2a113cc0f551b59df) C:\windows\system32\DRIVERS\NETw5s32.sys
23:02:04.0892 3928 NETw5s32 - ok
23:02:05.0332 3928 netw5v32 (af1ae2e42b03395560b1cde03230205c) C:\windows\system32\DRIVERS\netw5v32.sys
23:02:05.0487 3928 netw5v32 - ok
23:02:05.0577 3928 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\DRIVERS\nfrd960.sys
23:02:05.0612 3928 nfrd960 - ok
23:02:05.0657 3928 NlaSvc (2226496e34bd40734946a054b1cd657f) C:\windows\System32\nlasvc.dll
23:02:05.0737 3928 NlaSvc - ok
23:02:05.0792 3928 NMSAccess (7aea4df1ca68fd45dd4bbe1f0243ce7f) C:\Program Files\CDBurnerXP\NMSAccessU.exe
23:02:05.0822 3928 NMSAccess - ok
23:02:05.0852 3928 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys
23:02:05.0922 3928 Npfs - ok
23:02:05.0947 3928 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll
23:02:06.0022 3928 nsi - ok
23:02:06.0037 3928 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys
23:02:06.0107 3928 nsiproxy - ok
23:02:06.0237 3928 Ntfs (187002ce05693c306f43c873f821381f) C:\windows\system32\drivers\Ntfs.sys
23:02:06.0317 3928 Ntfs - ok
23:02:06.0377 3928 Null (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys
23:02:06.0452 3928 Null - ok
23:02:06.0492 3928 nvraid (f1b0bed906f97e16f6d0c3629d2f21c6) C:\windows\system32\drivers\nvraid.sys
23:02:06.0532 3928 nvraid - ok
23:02:06.0577 3928 nvstor (4520b63899e867f354ee012d34e11536) C:\windows\system32\drivers\nvstor.sys
23:02:06.0617 3928 nvstor - ok
23:02:06.0652 3928 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\DRIVERS\nv_agp.sys
23:02:06.0687 3928 nv_agp - ok
23:02:06.0712 3928 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\DRIVERS\ohci1394.sys
23:02:06.0747 3928 ohci1394 - ok
23:02:06.0787 3928 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
23:02:06.0832 3928 p2pimsvc - ok
23:02:06.0867 3928 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll
23:02:06.0912 3928 p2psvc - ok
23:02:06.0942 3928 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\DRIVERS\parport.sys
23:02:06.0982 3928 Parport - ok
23:02:07.0017 3928 partmgr (66d3415c159741ade7038a277efff99f) C:\windows\system32\drivers\partmgr.sys
23:02:07.0052 3928 partmgr - ok
23:02:07.0067 3928 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\DRIVERS\parvdm.sys
23:02:07.0107 3928 Parvdm - ok
23:02:07.0137 3928 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll
23:02:07.0187 3928 PcaSvc - ok
23:02:07.0222 3928 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\windows\system32\DRIVERS\pccsmcfd.sys
23:02:07.0252 3928 pccsmcfd - ok
23:02:07.0282 3928 pci (c858cb77c577780ecc456a892e7e7d0f) C:\windows\system32\DRIVERS\pci.sys
23:02:07.0322 3928 pci - ok
23:02:07.0337 3928 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\DRIVERS\pciide.sys
23:02:07.0372 3928 pciide - ok
23:02:07.0412 3928 pcmcia (f396431b31693e71e8a80687ef523506) C:\windows\system32\DRIVERS\pcmcia.sys
23:02:07.0447 3928 pcmcia - ok
23:02:07.0472 3928 pcw (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys
23:02:07.0507 3928 pcw - ok
23:02:07.0557 3928 pdfcDispatcher - ok
23:02:07.0622 3928 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys
23:02:07.0707 3928 PEAUTH - ok
23:02:07.0807 3928 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\windows\system32\peerdistsvc.dll
23:02:07.0877 3928 PeerDistSvc - ok
23:02:08.0037 3928 pla (9c1bff7910c89a1d12e57343475840cb) C:\windows\system32\pla.dll
23:02:08.0157 3928 pla - ok
23:02:08.0282 3928 PlugPlay (71def5ec79774c798342d0ea16e41780) C:\windows\system32\umpnpmgr.dll
23:02:08.0332 3928 PlugPlay - ok
23:02:08.0377 3928 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll
23:02:08.0417 3928 PNRPAutoReg - ok
23:02:08.0457 3928 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
23:02:08.0502 3928 PNRPsvc - ok
23:02:08.0552 3928 PolicyAgent (48e1b75c6dc0232fd92baae4bd344721) C:\windows\System32\ipsecsvc.dll
23:02:08.0637 3928 PolicyAgent - ok
23:02:08.0692 3928 Power (dbff83f709a91049621c1d35dd45c92c) C:\windows\system32\umpo.dll
23:02:08.0772 3928 Power - ok
23:02:08.0807 3928 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys
23:02:08.0882 3928 PptpMiniport - ok
23:02:08.0907 3928 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\DRIVERS\processr.sys
23:02:08.0942 3928 Processor - ok
23:02:08.0977 3928 ProfSvc (aea3bdbdba667aa6f678cb38907e4f5e) C:\windows\system32\profsvc.dll
23:02:09.0022 3928 ProfSvc - ok
23:02:09.0042 3928 ProtectedStorage (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:02:09.0082 3928 ProtectedStorage - ok
23:02:09.0107 3928 Psched (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys
23:02:09.0182 3928 Psched - ok
23:02:09.0217 3928 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\windows\system32\Drivers\PxHelp20.sys
23:02:09.0242 3928 PxHelp20 - ok
23:02:09.0362 3928 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\DRIVERS\ql2300.sys
23:02:09.0452 3928 ql2300 - ok
23:02:09.0557 3928 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\DRIVERS\ql40xx.sys
23:02:09.0592 3928 ql40xx - ok
23:02:09.0627 3928 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll
23:02:09.0682 3928 QWAVE - ok
23:02:09.0692 3928 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys
23:02:09.0737 3928 QWAVEdrv - ok
23:02:09.0757 3928 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys
23:02:09.0832 3928 RasAcd - ok
23:02:09.0862 3928 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys
23:02:09.0927 3928 RasAgileVpn - ok
23:02:09.0957 3928 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll
23:02:10.0032 3928 RasAuto - ok
23:02:10.0057 3928 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys
23:02:10.0132 3928 Rasl2tp - ok
23:02:10.0177 3928 RasMan (0ce66ec736b7fc526d78f7624c7d2a94) C:\windows\System32\rasmans.dll
23:02:10.0262 3928 RasMan - ok
23:02:10.0287 3928 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys
23:02:10.0357 3928 RasPppoe - ok
23:02:10.0377 3928 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys
23:02:10.0442 3928 RasSstp - ok
23:02:10.0482 3928 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\windows\system32\DRIVERS\rdbss.sys
23:02:10.0562 3928 rdbss - ok
23:02:10.0587 3928 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\DRIVERS\rdpbus.sys
23:02:10.0627 3928 rdpbus - ok
23:02:10.0637 3928 RDPCDD (1e016846895b15a99f9a176a05029075) C:\windows\system32\DRIVERS\RDPCDD.sys
23:02:10.0712 3928 RDPCDD - ok
23:02:10.0752 3928 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\windows\system32\drivers\rdpdr.sys
23:02:10.0787 3928 RDPDR - ok
23:02:10.0812 3928 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys
23:02:10.0877 3928 RDPENCDD - ok
23:02:10.0907 3928 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys
23:02:10.0972 3928 RDPREFMP - ok
23:02:11.0022 3928 RDPWD (c5b8d47a4688de9d335204ea757c2240) C:\windows\system32\drivers\RDPWD.sys
23:02:11.0057 3928 RDPWD - ok
23:02:11.0097 3928 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\windows\system32\drivers\rdyboost.sys
23:02:11.0137 3928 rdyboost - ok
23:02:11.0172 3928 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll
23:02:11.0247 3928 RemoteAccess - ok
23:02:11.0272 3928 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll
23:02:11.0352 3928 RemoteRegistry - ok
23:02:11.0397 3928 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys
23:02:11.0437 3928 RFCOMM - ok
23:02:11.0622 3928 RoxMediaDB10 (85f9924fb26d924c4a10dc620ae2c350) c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
23:02:11.0692 3928 RoxMediaDB10 - ok
23:02:11.0792 3928 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll
23:02:11.0867 3928 RpcEptMapper - ok
23:02:11.0902 3928 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe
23:02:11.0942 3928 RpcLocator - ok
23:02:11.0982 3928 RpcSs (b82cd39e336973359d7c9bf911e8e84f) C:\windows\system32\rpcss.dll
23:02:12.0067 3928 RpcSs - ok
23:02:12.0107 3928 rspndr (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys
23:02:12.0182 3928 rspndr - ok
23:02:12.0207 3928 s3cap (5423d8437051e89dd34749f242c98648) C:\windows\system32\DRIVERS\vms3cap.sys
23:02:12.0237 3928 s3cap - ok
23:02:12.0262 3928 SamSs (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:02:12.0302 3928 SamSs - ok
23:02:12.0327 3928 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\windows\system32\DRIVERS\sbp2port.sys
23:02:12.0362 3928 sbp2port - ok
23:02:12.0382 3928 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll
23:02:12.0457 3928 SCardSvr - ok
23:02:12.0477 3928 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\windows\system32\DRIVERS\scfilter.sys
23:02:12.0547 3928 scfilter - ok
23:02:12.0642 3928 Schedule (df1e5c82e4d09cf8105cc644980c4803) C:\windows\system32\schedsvc.dll
23:02:12.0702 3928 Schedule - ok
23:02:12.0727 3928 SCPolicySvc (628a9e30ec5e18dd5de6be4dbdc12198) C:\windows\System32\certprop.dll
23:02:12.0797 3928 SCPolicySvc - ok
23:02:12.0822 3928 SDRSVC (5fd90abdbfaee85986802622cbb03446) C:\windows\System32\SDRSVC.dll
23:02:12.0862 3928 SDRSVC - ok
23:02:12.0892 3928 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys
23:02:12.0962 3928 secdrv - ok
23:02:12.0983 3928 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll
23:02:13.0058 3928 seclogon - ok
23:02:13.0078 3928 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\windows\System32\sens.dll
23:02:13.0158 3928 SENS - ok
23:02:13.0183 3928 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\windows\system32\sensrsvc.dll
23:02:13.0228 3928 SensrSvc - ok
23:02:13.0263 3928 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\DRIVERS\serenum.sys
23:02:13.0298 3928 Serenum - ok
23:02:13.0323 3928 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\DRIVERS\serial.sys
23:02:13.0358 3928 Serial - ok
23:02:13.0373 3928 sermouse (79bffb520327ff916a582dfea17aa813) C:\windows\system32\DRIVERS\sermouse.sys
23:02:13.0408 3928 sermouse - ok
23:02:13.0518 3928 ServiceLayer (7d3903af48e6c1dc2704eafcb608d031) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
23:02:13.0548 3928 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
23:02:13.0548 3928 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
23:02:13.0593 3928 SessionEnv (8f55ce568c543d5adf45c409d16718fc) C:\windows\system32\sessenv.dll
23:02:13.0673 3928 SessionEnv - ok
23:02:13.0693 3928 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\DRIVERS\sffdisk.sys
23:02:13.0733 3928 sffdisk - ok
23:02:13.0748 3928 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\DRIVERS\sffp_mmc.sys
23:02:13.0788 3928 sffp_mmc - ok
23:02:13.0803 3928 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\windows\system32\DRIVERS\sffp_sd.sys
23:02:13.0843 3928 sffp_sd - ok
23:02:13.0863 3928 sfloppy (db96666cc8312ebc45032f30b007a547) C:\windows\system32\DRIVERS\sfloppy.sys
23:02:13.0898 3928 sfloppy - ok
23:02:13.0943 3928 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll
23:02:14.0028 3928 SharedAccess - ok
23:02:14.0063 3928 ShellHWDetection (cd2e48fa5b29ee2b3b5858056d246ef2) C:\windows\System32\shsvcs.dll
23:02:14.0113 3928 ShellHWDetection - ok
23:02:14.0143 3928 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\DRIVERS\sisagp.sys
23:02:14.0178 3928 sisagp - ok
23:02:14.0198 3928 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\DRIVERS\SiSRaid2.sys
23:02:14.0233 3928 SiSRaid2 - ok
23:02:14.0258 3928 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\DRIVERS\sisraid4.sys
23:02:14.0293 3928 SiSRaid4 - ok
23:02:14.0343 3928 SkypeUpdate (c70aebd3608ed9fcea2a1bae83567ffc) C:\Program Files\Skype\Updater\Updater.exe
23:02:14.0373 3928 SkypeUpdate - ok
23:02:14.0408 3928 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys
23:02:14.0483 3928 Smb - ok
23:02:14.0513 3928 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe
23:02:14.0553 3928 SNMPTRAP - ok
23:02:14.0698 3928 SNP2UVC (d8aba1293b82e7af2f78b67ca46fcb3d) C:\windows\system32\DRIVERS\snp2uvc.sys
23:02:14.0793 3928 SNP2UVC - ok
23:02:14.0888 3928 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys
23:02:14.0923 3928 spldr - ok
23:02:14.0968 3928 Spooler (d1bb750eb51694de183e08b9c33be5b2) C:\windows\System32\spoolsv.exe
23:02:15.0013 3928 Spooler - ok
23:02:15.0258 3928 sppsvc (4c287f9069fedbd791178876ee9de536) C:\windows\system32\sppsvc.exe
23:02:15.0393 3928 sppsvc - ok
23:02:15.0508 3928 sppuinotify (d8e3e19eebdab49dd4a8d3062ead4ec7) C:\windows\system32\sppuinotify.dll
23:02:15.0588 3928 sppuinotify - ok
23:02:15.0663 3928 srv (c4a027b8c0bd3fc0699f41fa5e9e0c87) C:\windows\system32\DRIVERS\srv.sys
23:02:15.0703 3928 srv - ok
23:02:15.0743 3928 srv2 (414bb592cad8a79649d01f9d94318fb3) C:\windows\system32\DRIVERS\srv2.sys
23:02:15.0788 3928 srv2 - ok
23:02:15.0828 3928 srvnet (ff207d67700aa18242aaf985d3e7d8f4) C:\windows\system32\DRIVERS\srvnet.sys
23:02:15.0863 3928 srvnet - ok
23:02:15.0888 3928 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll
23:02:15.0968 3928 SSDPSRV - ok
23:02:16.0008 3928 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\windows\system32\DRIVERS\ssmdrv.sys
23:02:16.0028 3928 ssmdrv - ok
23:02:16.0063 3928 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll
23:02:16.0138 3928 SstpSvc - ok
23:02:16.0163 3928 StarOpen (f92254b0bcfcd10caac7bccc7cb7f467) C:\windows\system32\drivers\StarOpen.sys
23:02:16.0173 3928 StarOpen ( UnsignedFile.Multi.Generic ) - warning
23:02:16.0173 3928 StarOpen - detected UnsignedFile.Multi.Generic (1)
23:02:16.0198 3928 stexstor (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\DRIVERS\stexstor.sys
23:02:16.0233 3928 stexstor - ok
23:02:16.0243 3928 STHDA - ok
23:02:16.0303 3928 StiSvc (a22825e7bb7018e8af3e229a5af17221) C:\windows\System32\wiaservc.dll
23:02:16.0363 3928 StiSvc - ok
23:02:16.0453 3928 stllssvr (ff5eb78af7dfb68c2fb363537aaf753e) c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
23:02:16.0483 3928 stllssvr - ok
23:02:16.0508 3928 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\windows\system32\DRIVERS\vmstorfl.sys
23:02:16.0543 3928 storflt - ok
23:02:16.0583 3928 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\windows\system32\storsvc.dll
23:02:16.0623 3928 StorSvc - ok
23:02:16.0638 3928 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\windows\system32\DRIVERS\storvsc.sys
23:02:16.0673 3928 storvsc - ok
23:02:16.0748 3928 StumbleUponUpdater (3fb1d84d673b4a9af3856c8843c7a464) C:\Users\Linda\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
23:02:16.0758 3928 StumbleUponUpdater ( UnsignedFile.Multi.Generic ) - warning
23:02:16.0758 3928 StumbleUponUpdater - detected UnsignedFile.Multi.Generic (1)
23:02:16.0778 3928 swenum (e58c78a848add9610a4db6d214af5224) C:\windows\system32\DRIVERS\swenum.sys
23:02:16.0813 3928 swenum - ok
23:02:16.0853 3928 swprv (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll
23:02:16.0938 3928 swprv - ok
23:02:16.0968 3928 SynTP (1de40024679cde0e573465253519730e) C:\windows\system32\DRIVERS\SynTP.sys
23:02:17.0002 3928 SynTP - ok
23:02:17.0102 3928 SysMain (04105c8da62353589c29bdaeb8d88bd8) C:\windows\system32\sysmain.dll
23:02:17.0182 3928 SysMain - ok
23:02:17.0207 3928 TabletInputService (fcfb6c552fbc0da299799cbd50ad9fd4) C:\windows\System32\TabSvc.dll
23:02:17.0257 3928 TabletInputService - ok
23:02:17.0292 3928 TapiSrv (2f46b0c70a4adc8c90cf825da3b4feaf) C:\windows\System32\tapisrv.dll
23:02:17.0377 3928 TapiSrv - ok
23:02:17.0427 3928 tbhsd (77bd6143c6dce0a1bf7b5571bed860dc) C:\windows\system32\drivers\tbhsd.sys
23:02:17.0452 3928 tbhsd - ok
23:02:17.0487 3928 TBS (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll
23:02:17.0562 3928 TBS - ok
23:02:17.0692 3928 Tcpip (55e9965552741f3850cb22cbba9671ed) C:\windows\system32\drivers\tcpip.sys
23:02:17.0777 3928 Tcpip - ok
23:02:17.0952 3928 TCPIP6 (55e9965552741f3850cb22cbba9671ed) C:\windows\system32\DRIVERS\tcpip.sys
23:02:18.0037 3928 TCPIP6 - ok
23:02:18.0127 3928 tcpipreg (e64444523add154f86567c469bc0b17f) C:\windows\system32\drivers\tcpipreg.sys
23:02:18.0202 3928 tcpipreg - ok
23:02:18.0227 3928 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\windows\system32\drivers\tdpipe.sys
23:02:18.0262 3928 TDPIPE - ok
23:02:18.0297 3928 TDTCP (7156308896d34ea75a582f9a09e50c17) C:\windows\system32\drivers\tdtcp.sys
23:02:18.0327 3928 TDTCP - ok
23:02:18.0362 3928 tdx (cb39e896a2a83702d1737bfd402b3542) C:\windows\system32\DRIVERS\tdx.sys
23:02:18.0437 3928 tdx - ok
23:02:18.0657 3928 TeamViewer6 (01a402d34732ca3da91786adcc765069) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
23:02:18.0777 3928 TeamViewer6 - ok
23:02:18.0857 3928 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\windows\system32\DRIVERS\termdd.sys
23:02:18.0892 3928 TermDD - ok
23:02:18.0947 3928 TermService (a01e50a04d7b1960b33e92b9080e6a94) C:\windows\System32\termsrv.dll
23:02:19.0042 3928 TermService - ok
23:02:19.0062 3928 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll
23:02:19.0112 3928 Themes - ok
23:02:19.0137 3928 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
23:02:19.0212 3928 THREADORDER - ok
23:02:19.0257 3928 TomTomHOMEService (3199a477f0f06eede41bd55179f8eb05) C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
23:02:19.0287 3928 TomTomHOMEService - ok
23:02:19.0317 3928 TPM (5ad05191dc8b444a7ba4d79b76c42a30) C:\windows\system32\drivers\tpm.sys
23:02:19.0352 3928 TPM - ok
23:02:19.0377 3928 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll
23:02:19.0452 3928 TrkWks - ok
23:02:19.0492 3928 TrustedInstaller (41a4c781d2286208d397d72099304133) C:\windows\servicing\TrustedInstaller.exe
23:02:19.0537 3928 TrustedInstaller - ok
23:02:19.0562 3928 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\windows\system32\DRIVERS\tssecsrv.sys
23:02:19.0632 3928 tssecsrv - ok
23:02:19.0662 3928 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\windows\system32\DRIVERS\tunnel.sys
23:02:19.0737 3928 tunnel - ok
23:02:19.0762 3928 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\DRIVERS\uagp35.sys
23:02:19.0797 3928 uagp35 - ok
23:02:19.0832 3928 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\windows\system32\DRIVERS\udfs.sys
23:02:19.0912 3928 udfs - ok
23:02:19.0962 3928 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe
23:02:20.0002 3928 UI0Detect - ok
23:02:20.0022 3928 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\DRIVERS\uliagpkx.sys
23:02:20.0062 3928 uliagpkx - ok
23:02:20.0082 3928 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\windows\system32\DRIVERS\umbus.sys
23:02:20.0117 3928 umbus - ok
23:02:20.0137 3928 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\DRIVERS\umpass.sys
23:02:20.0172 3928 UmPass - ok
23:02:20.0207 3928 UmRdpService (8ecaca5454844f66386f7be4ae0d7cd1) C:\windows\System32\umrdp.dll
23:02:20.0252 3928 UmRdpService - ok
23:02:20.0287 3928 upnphost (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll
23:02:20.0372 3928 upnphost - ok
23:02:20.0407 3928 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\windows\system32\Drivers\usbaapl.sys
23:02:20.0437 3928 USBAAPL - ok
23:02:20.0467 3928 usbccgp (c31ae588e403042632dc796cf09e30b0) C:\windows\system32\DRIVERS\usbccgp.sys
23:02:20.0502 3928 usbccgp - ok
23:02:20.0522 3928 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\DRIVERS\usbcir.sys
23:02:20.0567 3928 usbcir - ok
23:02:20.0592 3928 usbehci (e4c436d914768ce965d5e659ba7eebd8) C:\windows\system32\DRIVERS\usbehci.sys
23:02:20.0627 3928 usbehci - ok
23:02:20.0667 3928 usbhub (bdcd7156ec37448f08633fd899823620) C:\windows\system32\DRIVERS\usbhub.sys
23:02:20.0707 3928 usbhub - ok
23:02:20.0722 3928 usbohci (eb2d819a639015253c871cda09d91d58) C:\windows\system32\drivers\usbohci.sys
23:02:20.0757 3928 usbohci - ok
23:02:20.0777 3928 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\DRIVERS\usbprint.sys
23:02:20.0817 3928 usbprint - ok
23:02:20.0847 3928 usbser (88701eca76145e2c011c0eeff0f7b70e) C:\windows\system32\drivers\usbser.sys
23:02:20.0882 3928 usbser - ok
23:02:20.0927 3928 USBSTOR (1c4287739a93594e57e2a9e6a3ed7353) C:\windows\system32\DRIVERS\USBSTOR.SYS
23:02:20.0962 3928 USBSTOR - ok
23:02:20.0982 3928 usbuhci (22480bf4e5a09192e5e30ba4dde79fa4) C:\windows\system32\DRIVERS\usbuhci.sys
23:02:21.0012 3928 usbuhci - ok
23:02:21.0052 3928 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\windows\System32\Drivers\usbvideo.sys
23:02:21.0087 3928 usbvideo - ok
23:02:21.0112 3928 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll
23:02:21.0182 3928 UxSms - ok
23:02:21.0207 3928 VaultSvc (c2243ff9e9aad0c30e8b1a0914da15b6) C:\windows\system32\lsass.exe
23:02:21.0247 3928 VaultSvc - ok
23:02:21.0282 3928 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\DRIVERS\vdrvroot.sys
23:02:21.0317 3928 vdrvroot - ok
23:02:21.0372 3928 vds (8c4e7c49d3641bc9e299e466a7f8867d) C:\windows\System32\vds.exe
23:02:21.0422 3928 vds - ok
23:02:21.0457 3928 vga (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys
23:02:21.0492 3928 vga - ok
23:02:21.0517 3928 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys
23:02:21.0587 3928 VgaSave - ok
23:02:21.0617 3928 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\windows\system32\DRIVERS\vhdmp.sys
23:02:21.0662 3928 vhdmp - ok
23:02:21.0692 3928 viaagp (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\DRIVERS\viaagp.sys
23:02:21.0727 3928 viaagp - ok
23:02:21.0757 3928 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\DRIVERS\viac7.sys
23:02:21.0792 3928 ViaC7 - ok
23:02:21.0822 3928 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\DRIVERS\viaide.sys
23:02:21.0857 3928 viaide - ok
23:02:21.0892 3928 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\windows\system32\DRIVERS\vmbus.sys
23:02:21.0932 3928 vmbus - ok
23:02:21.0967 3928 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\windows\system32\DRIVERS\VMBusHID.sys
23:02:21.0997 3928 VMBusHID - ok
23:02:22.0022 3928 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\windows\system32\DRIVERS\volmgr.sys
23:02:22.0047 3928 volmgr - ok
23:02:22.0082 3928 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys
23:02:22.0112 3928 volmgrx - ok
23:02:22.0162 3928 volsnap (58df9d2481a56edde167e51b334d44fd) C:\windows\system32\DRIVERS\volsnap.sys
23:02:22.0187 3928 volsnap - ok
23:02:22.0222 3928 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\DRIVERS\vsmraid.sys
23:02:22.0262 3928 vsmraid - ok
23:02:22.0362 3928 VSS (7ea2bcd94d9cfaf4c556f5cc94532a6c) C:\windows\system32\vssvc.exe
23:02:22.0432 3928 VSS - ok
23:02:22.0452 3928 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys
23:02:22.0492 3928 vwifibus - ok
23:02:22.0512 3928 VWiFiFlt (7090d3436eeb4e7da3373090a23448f7) C:\windows\system32\DRIVERS\vwififlt.sys
23:02:22.0552 3928 VWiFiFlt - ok
23:02:22.0567 3928 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\windows\system32\DRIVERS\vwifimp.sys
23:02:22.0612 3928 vwifimp - ok
23:02:22.0652 3928 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll
23:02:22.0737 3928 W32Time - ok
23:02:22.0767 3928 WacomPen (de3721e89c653aa281428c8a69745d90) C:\windows\system32\DRIVERS\wacompen.sys
23:02:22.0802 3928 WacomPen - ok
23:02:22.0842 3928 WANARP (692a712062146e96d28ba0b7d75de31b) C:\windows\system32\DRIVERS\wanarp.sys
23:02:22.0917 3928 WANARP - ok
23:02:22.0927 3928 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\windows\system32\DRIVERS\wanarp.sys
23:02:22.0997 3928 Wanarpv6 - ok
23:02:23.0132 3928 wbengine (7790b77fe1e5ee47dcc66247095bb4c9) C:\windows\system32\wbengine.exe
23:02:23.0227 3928 wbengine - ok
23:02:23.0257 3928 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll
23:02:23.0307 3928 WbioSrvc - ok
23:02:23.0357 3928 wcncsvc (6d9b75275c3e3a5f51aef81affadb2b6) C:\windows\System32\wcncsvc.dll
23:02:23.0402 3928 wcncsvc - ok
23:02:23.0422 3928 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll
23:02:23.0467 3928 WcsPlugInService - ok
23:02:23.0512 3928 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\DRIVERS\wd.sys
23:02:23.0547 3928 Wd - ok
23:02:23.0597 3928 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys
23:02:23.0647 3928 Wdf01000 - ok
23:02:23.0672 3928 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
23:02:23.0722 3928 WdiServiceHost - ok
23:02:23.0732 3928 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
23:02:23.0782 3928 WdiSystemHost - ok
23:02:23.0832 3928 WebClient (bb5ec38f8d4600119b4720bc5d4211f1) C:\windows\System32\webclnt.dll
23:02:23.0872 3928 WebClient - ok
23:02:23.0902 3928 Wecsvc (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll
23:02:23.0982 3928 Wecsvc - ok
23:02:24.0002 3928 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll
23:02:24.0078 3928 wercplsupport - ok
23:02:24.0098 3928 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll
23:02:24.0178 3928 WerSvc - ok
23:02:24.0198 3928 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys
23:02:24.0273 3928 WfpLwf - ok
23:02:24.0288 3928 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys
23:02:24.0323 3928 WIMMount - ok
23:02:24.0448 3928 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
23:02:24.0508 3928 WinDefend - ok
23:02:24.0523 3928 WinHttpAutoProxySvc - ok
23:02:24.0598 3928 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll
23:02:24.0668 3928 Winmgmt - ok
23:02:24.0778 3928 WinRM (c4f5d3901d1b41d602ddc196e0b95b51) C:\windows\system32\WsmSvc.dll
23:02:24.0888 3928 WinRM - ok
23:02:25.0023 3928 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\windows\system32\DRIVERS\WinUsb.sys
23:02:25.0063 3928 WinUsb - ok
23:02:25.0138 3928 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll
23:02:25.0208 3928 Wlansvc - ok
23:02:25.0238 3928 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\DRIVERS\wmiacpi.sys
23:02:25.0278 3928 WmiAcpi - ok
23:02:25.0318 3928 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe
23:02:25.0358 3928 wmiApSrv - ok
23:02:25.0493 3928 WMPNetworkSvc (77fbd400984cf72ba0fc4b3489d65f74) C:\Program Files\Windows Media Player\wmpnetwk.exe
23:02:25.0558 3928 WMPNetworkSvc - ok
23:02:25.0703 3928 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll
23:02:25.0743 3928 WPCSvc - ok
23:02:25.0768 3928 WPDBusEnum (b7f658a2ebc07129538ad9ab35212637) C:\windows\system32\wpdbusenum.dll
23:02:25.0813 3928 WPDBusEnum - ok
23:02:25.0853 3928 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys
23:02:25.0923 3928 ws2ifsl - ok
23:02:25.0968 3928 wscsvc (a661a76333057b383a06e65f0073222f) C:\windows\System32\wscsvc.dll
23:02:26.0008 3928 wscsvc - ok
23:02:26.0018 3928 WSearch - ok
23:02:26.0184 3928 wuauserv (a33408cc036f9c08142b11be5e93f0a1) C:\windows\system32\wuaueng.dll
23:02:26.0324 3928 wuauserv - ok
23:02:26.0404 3928 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\windows\system32\drivers\WudfPf.sys
23:02:26.0479 3928 WudfPf - ok
23:02:26.0509 3928 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\windows\system32\DRIVERS\WUDFRd.sys
23:02:26.0584 3928 WUDFRd - ok
23:02:26.0609 3928 wudfsvc (ddee3682fe97037c45f4d7ab467cb8b6) C:\windows\System32\WUDFSvc.dll
23:02:26.0689 3928 wudfsvc - ok
23:02:26.0734 3928 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll
23:02:26.0789 3928 WwanSvc - ok
23:02:26.0839 3928 yukonw7 (3eb1576f77b60a6c79dd7742b67219b8) C:\windows\system32\DRIVERS\yk62x86.sys
23:02:26.0894 3928 yukonw7 - ok
23:02:26.0939 3928 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
23:02:27.0259 3928 \Device\Harddisk0\DR0 - ok
23:02:27.0284 3928 Boot (0x1200) (b685b3d2fa35e4c0b3d2cab9959c710d) \Device\Harddisk0\DR0\Partition0
23:02:27.0284 3928 \Device\Harddisk0\DR0\Partition0 - ok
23:02:27.0294 3928 Boot (0x1200) (4711c957e8294acd3a089ef8373bc33a) \Device\Harddisk0\DR0\Partition1
23:02:27.0299 3928 \Device\Harddisk0\DR0\Partition1 - ok
23:02:27.0319 3928 Boot (0x1200) (93e0b218765a6f647c9fd09c61318be6) \Device\Harddisk0\DR0\Partition2
23:02:27.0324 3928 \Device\Harddisk0\DR0\Partition2 - ok
23:02:27.0349 3928 Boot (0x1200) (e759ceb0f139e182a93255ece9bb4b78) \Device\Harddisk0\DR0\Partition3
23:02:27.0354 3928 \Device\Harddisk0\DR0\Partition3 - ok
23:02:27.0354 3928 ============================================================
23:02:27.0354 3928 Scan finished
23:02:27.0354 3928 ============================================================
23:02:27.0374 4832 Detected object count: 5
23:02:27.0374 4832 Actual detected object count: 5
23:03:46.0799 4832 IJPLMSVC ( UnsignedFile.Multi.Generic ) - skipped by user
23:03:46.0799 4832 IJPLMSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:03:46.0799 4832 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
23:03:46.0799 4832 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:03:46.0804 4832 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
23:03:46.0804 4832 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:03:46.0809 4832 StarOpen ( UnsignedFile.Multi.Generic ) - skipped by user
23:03:46.0809 4832 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:03:46.0814 4832 StumbleUponUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
23:03:46.0814 4832 StumbleUponUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
19.06.2012, 07:42
| #14 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.06.2012, 16:17
| #15 |
| | Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun?Code:
ATTFilter ComboFix 12-06-19.01 - Linda 19.06.2012 16:48:55.1.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1252.49.1031.18.3063.1929 [GMT 2:00]
ausgeführt von:: c:\users\Linda\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\chrome_installer11069668.exe
c:\users\Linda\AppData\Local\Temp\jna633869606032700761.tmp
c:\users\Linda\avira_antivir_personal_de.exe
c:\users\Linda\GoogleEarthSetup.exe
c:\users\Linda\ICQ Contact Revealer 1.0 Setup.exe
c:\users\Linda\Nokia_Wireless_Presenter_de.exe
c:\users\Linda\OdfAddInForOfficeSetup-de_4.0.5309.exe
c:\windows\IsUn0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-05-19 bis 2012-06-19 ))))))))))))))))))))))))))))))
.
.
2012-06-19 15:00 . 2012-06-19 15:00 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-06-17 21:32 . 2012-04-28 03:19 177152 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-06-17 21:32 . 2012-04-20 05:05 524800 ----a-w- c:\program files\Internet Explorer\jsdbgui.dll
2012-06-17 21:32 . 2012-04-20 05:08 672856 ----a-w- c:\program files\Internet Explorer\iexplore.exe
2012-06-17 21:32 . 2012-05-15 03:08 981504 ----a-w- c:\windows\system32\wininet.dll
2012-06-17 21:32 . 2012-04-20 05:05 860672 ----a-w- c:\program files\Internet Explorer\iedvtool.dll
2012-06-17 21:30 . 2012-04-24 04:47 1156608 ----a-w- c:\windows\system32\crypt32.dll
2012-06-17 21:30 . 2012-04-24 04:47 139264 ----a-w- c:\windows\system32\cryptsvc.dll
2012-06-17 21:30 . 2012-04-24 04:47 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-06-16 10:04 . 2012-06-16 10:04 -------- d-----w- c:\program files\ESET
2012-06-14 14:42 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-06-13 14:27 . 2012-06-14 14:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-06-13 08:32 . 2012-06-13 08:32 -------- d-----w- c:\users\Linda\AppData\Roaming\Malwarebytes
2012-06-13 08:32 . 2012-06-13 08:32 -------- d-----w- c:\programdata\Malwarebytes
2012-06-12 18:20 . 2012-06-13 18:21 -------- d-----w- c:\users\Linda\Kpwmkpwmkpw
2012-06-06 16:22 . 2012-06-06 16:22 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll
2012-06-06 16:22 . 2012-06-06 16:22 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll
2012-05-21 18:33 . 1998-06-09 03:00 185344 ----a-w- c:\windows\system32\Bdeadmin.cpl
2012-05-21 18:33 . 2012-05-21 18:33 -------- d-----w- c:\program files\Schroedel
2012-05-21 18:33 . 2012-05-21 18:33 -------- d-----w- c:\program files\Common Files\Borland Shared
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-19 14:48 . 2012-06-19 14:48 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{41051FC8-C49D-437D-9B4B-99A4305447B8}\offreg.dll
2012-05-08 19:55 . 2011-10-19 07:57 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys
2012-05-08 19:55 . 2010-03-05 15:53 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-05-08 16:40 . 2012-06-17 21:25 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{41051FC8-C49D-437D-9B4B-99A4305447B8}\mpengine.dll
2012-04-02 04:46 . 2012-05-10 05:44 3958128 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-04-02 04:46 . 2012-05-10 05:44 3902320 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-30 10:29 . 2012-05-10 05:44 1287024 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-03-22 19:12 . 2012-03-22 19:12 4435968 ----a-w- c:\windows\system32\GPhotos.scr
2010-07-06 10:26 . 2010-07-06 10:26 1128916 ----a-w- c:\program files\pdf2wordsetup11.exe
2012-06-06 16:22 . 2011-03-22 12:14 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DB616CFF-D989-48A8-9C85-E2A8D56AB2CA}]
2011-11-22 08:59 269824 ----a-w- c:\users\Linda\AppData\LocalLow\StumbleUpon\IE\StumbleUpon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Linda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Linda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\users\Linda\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-08-16 2736128]
"Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2009-08-22 5148672]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"TouchpadBlocker.exe"="c:\program files\Touchpad Blocker\TouchpadBlocker.exe" [2010-09-09 968704]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2012-01-23 247728]
"Facebook Update"="c:\users\Linda\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2011-10-09 137536]
"Spotify Web Helper"="c:\users\Linda\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-05-07 932528]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2009-07-27 288312]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-17 186904]
"WirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-07-30 1545512]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-15 644696]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-07-05 421888]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-05-08 348624]
"Mobile Partner"="c:\program files\HiSuite\HiSuite.exe" [2011-12-20 547840]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-09-30 252296]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408]
.
c:\users\Linda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Linda\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
EvernoteClipper.lnk - c:\program files\Evernote\Evernote\EvernoteClipper.exe [2012-3-22 1014112]
GmoteServer.lnk - c:\program files\GmoteServer\GmoteServer.exe [2011-10-18 451584]
OpenOffice.org 3.3.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2010-12-13 1198592]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-30 795936]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2007-04-04 01:50 1603152 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
2009-07-16 00:51 1668664 ----a-w- c:\program files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-03-27 03:09 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Complete]
2009-06-18 16:07 563736 ----a-w- c:\program files\PDF Complete\pdfsty.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-07-05 16:36 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
2012-01-23 04:43 247728 ----a-w- c:\program files\TomTom HOME 2\TomTomHOMERunner.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2010-01-12 20:02 37888 ----a-w- c:\program files\Winamp\winampa.exe
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-05-14 136176]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-06-05 160944]
R3 bthav;Bluetooth-AV-Profil;c:\windows\system32\drivers\bthav.sys [2008-07-10 34816]
R3 BthAvrcp;Bluetooth-AVRCP-Profil;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-05-14 136176]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [2012-06-06 113120]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-06-04 4231680]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-13 1120752]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-10-11 36000]
S1 VWiFiFlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-04-04 63928]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2012-05-08 86224]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-04-04 654408]
S2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2009-06-18 635416]
S2 StumbleUponUpdater;StumbleUpon Updater;c:\users\Linda\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe [2011-11-22 18432]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-11-03 2358656]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2012-01-23 92592]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-04-04 22344]
S3 NETw5s32;Intel(R) Wireless WiFi Link Adaptertreiber für Windows 7 32-Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2010-01-13 6755840]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-07-20 313856]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-08-16 11:43 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Inhalt des "geplante Tasks" Ordners
.
2012-06-18 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3790425019-3497394509-997786397-1002Core.job
- c:\users\Linda\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-09 21:29]
.
2012-06-18 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3790425019-3497394509-997786397-1002UA.job
- c:\users\Linda\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-10-09 21:29]
.
2012-06-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-14 14:17]
.
2012-06-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-14 14:17]
.
2012-06-10 c:\windows\Tasks\HPCeeScheduleForLinda.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2009-10-07 02:22]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_DE&c=92&bd=all&pf=cmnb
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_DE&c=92&bd=all&pf=cmnb
uInternet Settings,ProxyOverride = *.local
IE: add to &BOM - c:\\PROGRA~1\\BIET-O~1\\\\AddToBOM.hta
IE: Add to Evernote 4.0 - c:\program files\Evernote\Evernote\EvernoteIE.dll/204
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Linda\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - c:\users\Linda\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~1\Office10\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {{7578ADEA-D65F-4C89-A249-B1C88B6FFC20} - c:\program files\ICQ7.5\ICQ.exe
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Linda\AppData\Roaming\Mozilla\Firefox\Profiles\4xz94l76.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/ig
FF - prefs.js: keyword.URL - hxxp://de.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=302398&p=
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-iSproggler - c:\users\Linda\programme\iSproggler-1.2.0-bin\iSproggler.exe
HKLM-Run-SysTrayApp - c:\program files\IDT\WDM\sttray.exe
MSConfigStartUp-CircleDock - c:\program files\Circle Dock\CircleDock.exe
MSConfigStartUp-PC Suite Tray - c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
AddRemove-Heroes of Might and Magic IV - c:\windows\IsUn0407.exe
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-Schroedel Arbeitsblätter - c:\windows\ISUN0407.EXE
AddRemove-{6F44AF95-3CDE-4513-AD3F-6D45F17BF324} - c:\program files\InstallShield Installation Information\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files\LSI SoftModem\agrsmsvc.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Canon\IJPLM\IJPLMSVC.EXE
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\CDBurnerXP\NMSAccessU.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\system32\taskhost.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\conhost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
c:\windows\system32\PhotoScreensaver.scr
c:\windows\system32\taskhost.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2012-06-19 17:08:16 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2012-06-19 15:08
.
Vor Suchlauf: 11 Verzeichnis(se), 55.041.445.888 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 55.207.628.800 Bytes frei
.
- - End Of File - - 3E85B70615BE7989D2B70D183AC8F6C9
|
|
| Themen zu Verschlüsselungstrojaner - Seitdem kein Internetzugang - Was tun? |
| administrator, anti-malware, autostart, code, datei, dateien, dateisystem, entfernen, ergebnis, explorer, falsch, folge, heuristiks/extra, heuristiks/shuriken, install.exe, internetverbindung, kein internetzugang, laptop, mailanhang, malwarebytes, microsoft, rechner, rules.ref, software, speicher, system32, trojan.agent, trojan.banker.gen, uninstall.exe, verbindung, was tun? |
Button.
Textbox von OTL - wenn OTL auf deutsch ist wird sie mit 
beschriftet
.
Linear-Darstellung
