| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Telekom Brief Abuse bzgl. Spam-MailsWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
04.11.2012, 12:41
| #1 |
 |  Telekom Brief Abuse bzgl. Spam-Mails Hallo Leute, ich wurde von einem Bekanntem beauftrag mich um dessen PC zu kümmern. Er erhielt vor einigen Tagen einen Brief von der Telekom, dass von seinem Anschluss unzählige Spammails verschickt werden. Die Telekom hat daraufhin den Port 25 gesperrt. Hab daraufhin an seinem PC einen Vollscan mit Malwarebytes gemacht. Den Namen habe ich durch * ersetzt. Hier mal die Logdatei: Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Datenbank Version: v2012.09.29.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 * :: * [Administrator] 04.11.2012 11:39:22 mbam-log-2012-11-04 (11-39-22).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|G:\|H:\|I:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 394716 Laufzeit: 39 Minute(n), 14 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VLC Player (Trojan.FakeVLC) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 2 C:\Program Files (x86)\VlcPlus\Uninstall.exe (Trojan.FakeVLC) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\*\AppData\Local\Temp\svchost.exe (Trojan.Agent.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Vielen Dank  |
|
04.11.2012, 13:29
| #2 | |||
| /// TB-Ausbilder  | Telekom Brief Abuse bzgl. Spam-Mails Ich werde dir bei deinem Problem helfen. Eine Bereinigung ist mitunter mit viel Arbeit für Dich (und mich) verbunden. Bevor es los geht, habe ich etwas Lesestoff für dich.
Schritt 1: Laufwerksemulationen abschalten mit Defogger Downloade Dir bitte defogger von jpshortstuff auf Deinem Desktop und starte es:Schritt 2: Scan mit aswMBR Schritt 3: Scan mit dem TDSS-Killer Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.
__________________ |
|
05.11.2012, 18:47
| #3 |
| | Telekom Brief Abuse bzgl. Spam-Mails Hier mal das defogger Ergebnis:
__________________Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 18:46 on 05/11/2012 (Herbert Matzka)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-11-05 18:48:40
-----------------------------
18:48:40.492 OS Version: Windows x64 6.1.7601 Service Pack 1
18:48:40.492 Number of processors: 2 586 0x602
18:48:40.493 ComputerName: HERBERTMATZKA UserName:
18:48:41.266 Initialize success
18:50:28.178 AVAST engine defs: 12110500
18:50:37.123 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005f
18:50:37.125 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
18:50:37.137 Disk 0 MBR read successfully
18:50:37.139 Disk 0 MBR scan
18:50:37.143 Disk 0 Windows 7 default MBR code
18:50:37.153 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13312 MB offset 2048
18:50:37.169 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27265024
18:50:37.180 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 298446 MB offset 27469824
18:50:37.196 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 298620 MB offset 638687232
18:50:37.226 Disk 0 scanning C:\Windows\system32\drivers
18:50:52.519 Service scanning
18:51:07.848 Modules scanning
18:51:07.855 Disk 0 trace - called modules:
18:51:07.870 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll nvstor.sys
18:51:07.876 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004635060]
18:51:07.882 3 CLASSPNP.SYS[fffff8800143b43f] -> nt!IofCallDriver -> [0xfffffa80042555f0]
18:51:07.887 5 ACPI.sys[fffff88000f8c7a1] -> nt!IofCallDriver -> \Device\0000005f[0xfffffa80041893a0]
18:51:08.649 AVAST engine scan C:\Windows
18:51:10.839 AVAST engine scan C:\Windows\system32
18:55:22.141 AVAST engine scan C:\Windows\system32\drivers
18:55:35.450 AVAST engine scan C:\Users\Herbert Matzka
19:00:19.694 File: C:\Users\Herbert Matzka\AppData\Roaming\3968.exe **INFECTED** Win32:Zbot-PTB [Trj]
19:00:19.986 File: C:\Users\Herbert Matzka\AppData\Roaming\9C8C.exe **INFECTED** Win32:Zbot-PTB [Trj]
19:05:33.018 AVAST engine scan C:\ProgramData
19:07:27.642 Scan finished successfully
19:08:49.841 Disk 0 MBR has been saved successfully to "C:\Users\Herbert Matzka\Desktop\MBR.dat"
19:08:49.849 The log file has been saved successfully to "C:\Users\Herbert Matzka\Desktop\aswMBR.txt"
|
|
06.11.2012, 14:24
| #4 |
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Schritt 3 fehlt noch.
__________________  Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
08.11.2012, 17:53
| #5 |
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Hallo, benötigst Du noch weiterhin Hilfe ? Sollte ich innerhalb der nächsten 24 Stunden keine Antwort von dir erhalten, werde ich dein Thema aus meinen Abos nehmen und bekomme dadurch keine Nachricht über neue Antworten. Das Verschwinden der Symptome bedeutet nicht, dass dein System schon sauber ist
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
08.11.2012, 22:49
| #6 |
| | Telekom Brief Abuse bzgl. Spam-Mails Hallo ryder, Danke für deine Mühe. Ja wir benötigen noch Hilfe. Werde mich morgen Abend mit meinem Bekannten zusammensetzen und weiter vorgehen. Hallo, hier ist das "erste" Ergebnis von dem dritten Scan (ich musste es in 2 Teile teilen, da es zu groß ist, ich hoffe das ist ok so): Code:
ATTFilter 20:54:32.0252 0396 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:54:33.0376 0396 ============================================================
20:54:33.0376 0396 Current date / time: 2012/11/09 20:54:33.0376
20:54:33.0376 0396 SystemInfo:
20:54:33.0376 0396
20:54:33.0376 0396 OS Version: 6.1.7601 ServicePack: 1.0
20:54:33.0376 0396 Product type: Workstation
20:54:33.0376 0396 ComputerName: HERBERTMATZKA
20:54:33.0377 0396 UserName: Herbert Matzka
20:54:33.0377 0396 Windows directory: C:\Windows
20:54:33.0377 0396 System windows directory: C:\Windows
20:54:33.0377 0396 Running under WOW64
20:54:33.0377 0396 Processor architecture: Intel x64
20:54:33.0377 0396 Number of processors: 2
20:54:33.0377 0396 Page size: 0x1000
20:54:33.0377 0396 Boot type: Normal boot
20:54:33.0377 0396 ============================================================
20:54:35.0708 0396 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:54:35.0721 0396 ============================================================
20:54:35.0721 0396 \Device\Harddisk0\DR0:
20:54:35.0722 0396 MBR partitions:
20:54:35.0722 0396 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
20:54:35.0722 0396 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x246E7000
20:54:35.0722 0396 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x26119800, BlocksNum 0x2473E000
20:54:35.0722 0396 ============================================================
20:54:35.0748 0396 C: <-> \Device\Harddisk0\DR0\Partition2
20:54:35.0770 0396 D: <-> \Device\Harddisk0\DR0\Partition3
20:54:35.0770 0396 ============================================================
20:54:35.0770 0396 Initialize success
20:54:35.0770 0396 ============================================================
20:56:36.0525 1976 ============================================================
20:56:36.0525 1976 Scan started
20:56:36.0525 1976 Mode: Manual; TDLFS;
20:56:36.0525 1976 ============================================================
20:56:37.0674 1976 ================ Scan system memory ========================
20:56:37.0674 1976 System memory - ok
20:56:37.0675 1976 ================ Scan services =============================
20:56:37.0951 1976 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:56:38.0014 1976 1394ohci - ok
20:56:38.0067 1976 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
20:56:38.0072 1976 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
20:56:38.0098 1976 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:56:38.0101 1976 ACPI - ok
20:56:38.0132 1976 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:56:38.0183 1976 AcpiPmi - ok
20:56:38.0228 1976 [ 6D9FC1E7EA3C548F4D3455F0C3FEEF8C ] AdobeActiveFileMonitor7.0 c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
20:56:38.0230 1976 AdobeActiveFileMonitor7.0 - ok
20:56:38.0324 1976 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:56:38.0330 1976 AdobeFlashPlayerUpdateSvc - ok
20:56:38.0377 1976 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:56:38.0397 1976 adp94xx - ok
20:56:38.0408 1976 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:56:38.0426 1976 adpahci - ok
20:56:38.0449 1976 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:56:38.0457 1976 adpu320 - ok
20:56:38.0486 1976 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:56:38.0487 1976 AeLookupSvc - ok
20:56:38.0523 1976 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:56:38.0538 1976 AFD - ok
20:56:38.0557 1976 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:56:38.0563 1976 agp440 - ok
20:56:38.0712 1976 [ E1B1F152C4E82C85E846D25C9E6E6CC8 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_b5e8a4c.dll
20:56:38.0713 1976 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_b5e8a4c.dll. md5: E1B1F152C4E82C85E846D25C9E6E6CC8
20:56:38.0720 1976 Akamai ( HiddenFile.Multi.Generic ) - warning
20:56:38.0720 1976 Akamai - detected HiddenFile.Multi.Generic (1)
20:56:38.0741 1976 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:56:38.0743 1976 ALG - ok
20:56:38.0778 1976 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:56:38.0782 1976 aliide - ok
20:56:38.0809 1976 [ 8F6C0FF277DBFE5EBED24E3543DA7BFA ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:56:38.0860 1976 AMD External Events Utility - ok
20:56:38.0874 1976 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:56:38.0877 1976 amdide - ok
20:56:38.0906 1976 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:56:38.0910 1976 AmdK8 - ok
20:56:39.0029 1976 [ 9673319070166E26660EBA4EDF316FA2 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
20:56:39.0196 1976 amdkmdag - ok
20:56:39.0219 1976 [ 430D06D63952848E64CBBF23B5C1479E ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
20:56:39.0270 1976 amdkmdap - ok
20:56:39.0312 1976 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:56:39.0313 1976 AmdPPM - ok
20:56:39.0346 1976 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:56:39.0399 1976 amdsata - ok
20:56:39.0416 1976 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:56:39.0423 1976 amdsbs - ok
20:56:39.0435 1976 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:56:39.0436 1976 amdxata - ok
20:56:39.0460 1976 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:56:39.0511 1976 AppID - ok
20:56:39.0533 1976 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:56:39.0534 1976 AppIDSvc - ok
20:56:39.0550 1976 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:56:39.0552 1976 Appinfo - ok
20:56:39.0612 1976 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:56:39.0614 1976 Apple Mobile Device - ok
20:56:39.0628 1976 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:56:39.0631 1976 arc - ok
20:56:39.0642 1976 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:56:39.0649 1976 arcsas - ok
20:56:39.0674 1976 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:56:39.0679 1976 AsyncMac - ok
20:56:39.0701 1976 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:56:39.0702 1976 atapi - ok
20:56:39.0728 1976 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
20:56:39.0780 1976 AtiHdmiService - ok
20:56:39.0816 1976 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:56:39.0833 1976 AudioEndpointBuilder - ok
20:56:39.0842 1976 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:56:39.0846 1976 AudioSrv - ok
20:56:39.0877 1976 [ 9DE4C26D54EBF21091F7CCFB6AB41995 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
20:56:39.0931 1976 avgtp - ok
20:56:39.0964 1976 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:56:39.0966 1976 AxInstSV - ok
20:56:39.0992 1976 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:56:40.0012 1976 b06bdrv - ok
20:56:40.0029 1976 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:56:40.0036 1976 b57nd60a - ok
20:56:40.0055 1976 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:56:40.0057 1976 BDESVC - ok
20:56:40.0074 1976 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:56:40.0079 1976 Beep - ok
20:56:40.0123 1976 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:56:40.0140 1976 BFE - ok
20:56:40.0163 1976 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:56:40.0180 1976 BITS - ok
20:56:40.0190 1976 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:56:40.0196 1976 blbdrive - ok
20:56:40.0242 1976 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:56:40.0245 1976 Bonjour Service - ok
20:56:40.0263 1976 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:56:40.0265 1976 bowser - ok
20:56:40.0276 1976 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:56:40.0282 1976 BrFiltLo - ok
20:56:40.0290 1976 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:56:40.0296 1976 BrFiltUp - ok
20:56:40.0311 1976 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:56:40.0314 1976 Browser - ok
20:56:40.0333 1976 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:56:40.0341 1976 Brserid - ok
20:56:40.0355 1976 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:56:40.0360 1976 BrSerWdm - ok
20:56:40.0370 1976 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:56:40.0374 1976 BrUsbMdm - ok
20:56:40.0381 1976 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:56:40.0384 1976 BrUsbSer - ok
20:56:40.0395 1976 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:56:40.0398 1976 BTHMODEM - ok
20:56:40.0433 1976 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:56:40.0435 1976 bthserv - ok
20:56:40.0445 1976 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:56:40.0450 1976 cdfs - ok
20:56:40.0469 1976 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:56:40.0520 1976 cdrom - ok
20:56:40.0548 1976 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:56:40.0550 1976 CertPropSvc - ok
20:56:40.0587 1976 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\Windows\system32\drivers\cfwids.sys
20:56:40.0641 1976 cfwids - ok
20:56:40.0662 1976 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:56:40.0666 1976 circlass - ok
20:56:40.0687 1976 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:56:40.0691 1976 CLFS - ok
20:56:40.0736 1976 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:56:40.0740 1976 clr_optimization_v2.0.50727_32 - ok
20:56:40.0771 1976 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:56:40.0776 1976 clr_optimization_v2.0.50727_64 - ok
20:56:40.0816 1976 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:56:40.0827 1976 clr_optimization_v4.0.30319_32 - ok
20:56:40.0862 1976 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:56:40.0864 1976 clr_optimization_v4.0.30319_64 - ok
20:56:40.0876 1976 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:56:40.0880 1976 CmBatt - ok
20:56:40.0901 1976 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:56:40.0904 1976 cmdide - ok
20:56:40.0942 1976 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:56:40.0946 1976 CNG - ok
20:56:40.0970 1976 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:56:40.0975 1976 Compbatt - ok
20:56:41.0003 1976 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:56:41.0058 1976 CompositeBus - ok
20:56:41.0065 1976 COMSysApp - ok
20:56:41.0080 1976 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:56:41.0083 1976 crcdisk - ok
20:56:41.0111 1976 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:56:41.0113 1976 CryptSvc - ok
20:56:41.0134 1976 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:56:41.0152 1976 DcomLaunch - ok
20:56:41.0172 1976 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:56:41.0176 1976 defragsvc - ok
20:56:41.0198 1976 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:56:41.0200 1976 DfsC - ok
20:56:41.0220 1976 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:56:41.0224 1976 Dhcp - ok
20:56:41.0232 1976 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:56:41.0232 1976 discache - ok
20:56:41.0248 1976 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:56:41.0249 1976 Disk - ok
20:56:41.0269 1976 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:56:41.0311 1976 Dnscache - ok
20:56:41.0333 1976 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:56:41.0337 1976 dot3svc - ok
20:56:41.0358 1976 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:56:41.0360 1976 DPS - ok
20:56:41.0370 1976 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:56:41.0375 1976 drmkaud - ok
20:56:41.0387 1976 dump_wmimmc - ok
20:56:41.0415 1976 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:56:41.0478 1976 DXGKrnl - ok
20:56:41.0498 1976 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:56:41.0511 1976 EapHost - ok
20:56:41.0562 1976 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:56:41.0627 1976 ebdrv - ok
20:56:41.0662 1976 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:56:41.0716 1976 EFS - ok
20:56:41.0850 1976 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:56:41.0871 1976 ehRecvr - ok
20:56:41.0885 1976 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:56:41.0887 1976 ehSched - ok
20:56:41.0922 1976 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:56:41.0942 1976 elxstor - ok
20:56:41.0961 1976 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:56:41.0966 1976 ErrDev - ok
20:56:41.0999 1976 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:56:42.0003 1976 EventSystem - ok
20:56:42.0028 1976 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:56:42.0036 1976 exfat - ok
20:56:42.0047 1976 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:56:42.0054 1976 fastfat - ok
20:56:42.0088 1976 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:56:42.0107 1976 Fax - ok
20:56:42.0121 1976 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:56:42.0125 1976 fdc - ok
20:56:42.0142 1976 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:56:42.0144 1976 fdPHost - ok
20:56:42.0152 1976 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:56:42.0154 1976 FDResPub - ok
20:56:42.0169 1976 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:56:42.0170 1976 FileInfo - ok
20:56:42.0179 1976 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:56:42.0182 1976 Filetrace - ok
20:56:42.0224 1976 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:56:42.0306 1976 FLEXnet Licensing Service - ok
20:56:42.0323 1976 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:56:42.0327 1976 flpydisk - ok
20:56:42.0349 1976 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:56:42.0352 1976 FltMgr - ok
20:56:42.0389 1976 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:56:42.0407 1976 FontCache - ok
20:56:42.0457 1976 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:56:42.0514 1976 FontCache3.0.0.0 - ok
20:56:42.0548 1976 [ 52B58A46BEEFB238C580B69FD051CB5B ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
20:56:42.0552 1976 ForceWare Intelligent Application Manager (IAM) - ok
20:56:42.0566 1976 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:56:42.0572 1976 FsDepends - ok
20:56:42.0593 1976 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:56:42.0646 1976 Fs_Rec - ok
20:56:42.0669 1976 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:56:42.0671 1976 fvevol - ok
20:56:42.0681 1976 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:56:42.0686 1976 gagp30kx - ok
20:56:42.0739 1976 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:56:42.0790 1976 GEARAspiWDM - ok
20:56:42.0814 1976 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:56:42.0831 1976 gpsvc - ok
20:56:42.0893 1976 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
20:56:42.0899 1976 Greg_Service - ok
20:56:42.0952 1976 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:56:42.0954 1976 gupdate - ok
20:56:42.0976 1976 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:56:42.0977 1976 gupdatem - ok
20:56:42.0987 1976 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:56:42.0990 1976 hcw85cir - ok
20:56:43.0017 1976 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:56:43.0071 1976 HdAudAddService - ok
20:56:43.0097 1976 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:56:43.0098 1976 HDAudBus - ok
20:56:43.0112 1976 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:56:43.0115 1976 HidBatt - ok
20:56:43.0127 1976 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:56:43.0131 1976 HidBth - ok
20:56:43.0143 1976 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:56:43.0147 1976 HidIr - ok
20:56:43.0166 1976 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:56:43.0167 1976 hidserv - ok
20:56:43.0189 1976 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:56:43.0239 1976 HidUsb - ok
20:56:43.0253 1976 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:56:43.0255 1976 hkmsvc - ok
20:56:43.0277 1976 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:56:43.0281 1976 HomeGroupListener - ok
20:56:43.0303 1976 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:56:43.0306 1976 HomeGroupProvider - ok
20:56:43.0326 1976 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:56:43.0380 1976 HpSAMD - ok
20:56:43.0410 1976 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:56:43.0427 1976 HTTP - ok
20:56:43.0431 1976 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:56:43.0432 1976 hwpolicy - ok
20:56:43.0457 1976 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:56:43.0463 1976 i8042prt - ok
20:56:43.0488 1976 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:56:43.0549 1976 iaStorV - ok
20:56:43.0583 1976 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:56:43.0684 1976 idsvc - ok
20:56:43.0714 1976 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:56:43.0720 1976 iirsp - ok
20:56:43.0745 1976 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:56:43.0760 1976 IKEEXT - ok
20:56:43.0818 1976 [ 52D9171838BB92319F23656F502916E9 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:56:43.0871 1976 IntcAzAudAddService - ok
20:56:43.0896 1976 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:56:43.0898 1976 intelide - ok
20:56:43.0908 1976 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:56:43.0914 1976 intelppm - ok
20:56:43.0931 1976 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:56:43.0934 1976 IPBusEnum - ok
20:56:43.0948 1976 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:56:43.0999 1976 IpFilterDriver - ok
20:56:44.0026 1976 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:56:44.0044 1976 iphlpsvc - ok
20:56:44.0064 1976 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:56:44.0115 1976 IPMIDRV - ok
20:56:44.0125 1976 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:56:44.0131 1976 IPNAT - ok
20:56:44.0172 1976 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:56:44.0177 1976 iPod Service - ok
20:56:44.0190 1976 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:56:44.0194 1976 IRENUM - ok
20:56:44.0209 1976 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:56:44.0212 1976 isapnp - ok
20:56:44.0231 1976 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:56:44.0287 1976 iScsiPrt - ok
20:56:44.0307 1976 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:56:44.0312 1976 kbdclass - ok
20:56:44.0338 1976 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:56:44.0390 1976 kbdhid - ok
20:56:44.0404 1976 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:56:44.0405 1976 KeyIso - ok
20:56:44.0425 1976 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:56:44.0434 1976 KSecDD - ok
20:56:44.0460 1976 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:56:44.0462 1976 KSecPkg - ok
20:56:44.0472 1976 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:56:44.0475 1976 ksthunk - ok
20:56:44.0498 1976 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:56:44.0508 1976 KtmRm - ok
20:56:44.0532 1976 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:56:44.0536 1976 LanmanServer - ok
20:56:44.0555 1976 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:56:44.0558 1976 LanmanWorkstation - ok
20:56:44.0583 1976 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:56:44.0588 1976 lltdio - ok
20:56:44.0626 1976 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:56:44.0633 1976 lltdsvc - ok
20:56:44.0649 1976 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:56:44.0650 1976 lmhosts - ok
20:56:44.0667 1976 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:56:44.0672 1976 LSI_FC - ok
20:56:44.0676 1976 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:56:44.0680 1976 LSI_SAS - ok
20:56:44.0695 1976 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:56:44.0697 1976 LSI_SAS2 - ok
20:56:44.0712 1976 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:56:44.0717 1976 LSI_SCSI - ok
20:56:44.0727 1976 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:56:44.0729 1976 luafv - ok
20:56:44.0820 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:44.0822 1976 McAfee SiteAdvisor Service - ok
20:56:44.0852 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:44.0854 1976 McMPFSvc - ok
20:56:44.0874 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:44.0876 1976 mcmscsvc - ok
20:56:44.0882 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:44.0883 1976 McNaiAnn - ok
20:56:44.0901 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:44.0903 1976 McNASvc - ok
20:56:44.0949 1976 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
20:56:44.0956 1976 McODS - ok
20:56:44.0963 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:44.0965 1976 McProxy - ok
20:56:44.0998 1976 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
20:56:45.0001 1976 McShield - ok
20:56:45.0017 1976 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:56:45.0060 1976 Mcx2Svc - ok
20:56:45.0099 1976 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:56:45.0105 1976 megasas - ok
20:56:45.0139 1976 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:56:45.0147 1976 MegaSR - ok
20:56:45.0173 1976 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
20:56:45.0225 1976 mfeapfk - ok
20:56:45.0242 1976 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
20:56:45.0296 1976 mfeavfk - ok
20:56:45.0311 1976 mfeavfk01 - ok
20:56:45.0326 1976 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
20:56:45.0328 1976 mfefire - ok
20:56:45.0352 1976 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
20:56:45.0408 1976 mfefirek - ok
20:56:45.0431 1976 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
20:56:45.0448 1976 mfehidk - ok
20:56:45.0456 1976 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
20:56:45.0508 1976 mfenlfk - ok
20:56:45.0520 1976 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
20:56:45.0572 1976 mferkdet - ok
20:56:45.0606 1976 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
20:56:45.0661 1976 mfevtp - ok
20:56:45.0681 1976 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
20:56:45.0685 1976 mfewfpk - ok
20:56:45.0710 1976 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:56:45.0712 1976 MMCSS - ok
20:56:45.0724 1976 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:56:45.0727 1976 Modem - ok
20:56:45.0738 1976 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:56:45.0739 1976 monitor - ok
20:56:45.0768 1976 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
20:56:45.0772 1976 mouclass - ok
20:56:45.0793 1976 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:56:45.0797 1976 mouhid - ok
20:56:45.0818 1976 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:56:45.0820 1976 mountmgr - ok
20:56:45.0851 1976 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:56:45.0853 1976 MozillaMaintenance - ok
20:56:45.0874 1976 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:56:45.0928 1976 mpio - ok
20:56:45.0943 1976 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:56:45.0948 1976 mpsdrv - ok
20:56:45.0974 1976 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:56:46.0035 1976 MpsSvc - ok
20:56:46.0057 1976 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:56:46.0114 1976 MRxDAV - ok
20:56:46.0130 1976 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:56:46.0132 1976 mrxsmb - ok
20:56:46.0155 1976 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:56:46.0159 1976 mrxsmb10 - ok
20:56:46.0173 1976 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:56:46.0175 1976 mrxsmb20 - ok
20:56:46.0206 1976 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:56:46.0262 1976 msahci - ok
20:56:46.0277 1976 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:56:46.0336 1976 msdsm - ok
20:56:46.0354 1976 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:56:46.0368 1976 MSDTC - ok
20:56:46.0381 1976 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:56:46.0383 1976 Msfs - ok
20:56:46.0403 1976 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:56:46.0408 1976 mshidkmdf - ok
20:56:46.0420 1976 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:56:46.0421 1976 msisadrv - ok
20:56:46.0441 1976 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:56:46.0447 1976 MSiSCSI - ok
20:56:46.0451 1976 msiserver - ok
20:56:46.0475 1976 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:56:46.0477 1976 MSK80Service - ok
20:56:46.0492 1976 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:56:46.0496 1976 MSKSSRV - ok
20:56:46.0504 1976 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:56:46.0509 1976 MSPCLOCK - ok
20:56:46.0517 1976 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:56:46.0520 1976 MSPQM - ok
20:56:46.0544 1976 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:56:46.0548 1976 MsRPC - ok
20:56:46.0569 1976 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:56:46.0570 1976 mssmbios - ok
20:56:46.0580 1976 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:56:46.0584 1976 MSTEE - ok
20:56:46.0596 1976 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:56:46.0606 1976 MTConfig - ok
20:56:46.0628 1976 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:56:46.0629 1976 Mup - ok
20:56:46.0648 1976 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:56:46.0665 1976 napagent - ok
20:56:46.0692 1976 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:56:46.0701 1976 NativeWifiP - ok
20:56:46.0745 1976 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:56:46.0762 1976 NDIS - ok
20:56:46.0774 1976 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:56:46.0779 1976 NdisCap - ok
20:56:46.0797 1976 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:56:46.0800 1976 NdisTapi - ok
20:56:46.0820 1976 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:56:46.0871 1976 Ndisuio - ok
20:56:46.0892 1976 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:56:46.0943 1976 NdisWan - ok
20:56:46.0962 1976 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:56:47.0013 1976 NDProxy - ok
20:56:47.0064 1976 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:56:47.0162 1976 Nero BackItUp Scheduler 4.0 - ok
20:56:47.0173 1976 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:56:47.0175 1976 NetBIOS - ok
20:56:47.0191 1976 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:56:47.0194 1976 NetBT - ok
20:56:47.0212 1976 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:56:47.0214 1976 Netlogon - ok
20:56:47.0238 1976 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:56:47.0243 1976 Netman - ok
20:56:47.0256 1976 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:56:47.0263 1976 netprofm - ok
20:56:47.0286 1976 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:56:47.0291 1976 NetTcpPortSharing - ok
20:56:47.0313 1976 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:56:47.0317 1976 nfrd960 - ok
20:56:47.0346 1976 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:56:47.0350 1976 NlaSvc - ok
20:56:47.0361 1976 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:56:47.0362 1976 Npfs - ok
20:56:47.0365 1976 npggsvc - ok
20:56:47.0370 1976 NPPTNT2 - ok
20:56:47.0384 1976 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:56:47.0386 1976 nsi - ok
20:56:47.0397 1976 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:56:47.0398 1976 nsiproxy - ok
20:56:47.0419 1976 [ 20E179A7FE78B37A02D30C4D34C870E7 ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
20:56:47.0421 1976 nSvcIp - ok
20:56:47.0463 1976 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:56:47.0489 1976 Ntfs - ok
20:56:47.0493 1976 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:56:47.0499 1976 Null - ok
20:56:47.0519 1976 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
20:56:47.0529 1976 NVENETFD - ok
20:56:47.0789 1976 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:56:47.0952 1976 nvlddmkm - ok
20:56:47.0983 1976 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
20:56:48.0040 1976 NVNET - ok
20:56:48.0071 1976 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:56:48.0126 1976 nvraid - ok
20:56:48.0144 1976 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:56:48.0145 1976 nvstor - ok
20:56:48.0170 1976 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:56:48.0176 1976 nv_agp - ok
20:56:48.0209 1976 [ 3CDD83C8D838C04009B3871274B97D36 ] OberonGameConsoleService C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
20:56:48.0210 1976 OberonGameConsoleService - ok
20:56:48.0265 1976 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:56:48.0270 1976 odserv - ok
20:56:48.0286 1976 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:56:48.0292 1976 ohci1394 - ok
20:56:48.0314 1976 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:56:48.0316 1976 ose - ok
20:56:48.0342 1976 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:56:48.0346 1976 p2pimsvc - ok
20:56:48.0367 1976 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:56:48.0373 1976 p2psvc - ok
20:56:48.0391 1976 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:56:48.0395 1976 Parport - ok
20:56:48.0424 1976 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:56:48.0425 1976 partmgr - ok
20:56:48.0438 1976 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:56:48.0441 1976 PcaSvc - ok
20:56:48.0455 1976 PCDSRVC{D368CD8C-4CE20E91-06020101}_0 - ok
20:56:48.0475 1976 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:56:48.0477 1976 pci - ok
20:56:48.0498 1976 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:56:48.0498 1976 pciide - ok
20:56:48.0511 1976 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:56:48.0517 1976 pcmcia - ok
20:56:48.0528 1976 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:56:48.0529 1976 pcw - ok
20:56:48.0549 1976 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:56:48.0573 1976 PEAUTH - ok
20:56:48.0650 1976 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:56:48.0658 1976 PerfHost - ok
20:56:48.0709 1976 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:56:48.0736 1976 pla - ok
20:56:48.0760 1976 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:56:48.0776 1976 PlugPlay - ok
20:56:48.0810 1976 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:56:48.0813 1976 PNRPAutoReg - ok
20:56:48.0825 1976 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:56:48.0828 1976 PNRPsvc - ok
20:56:48.0847 1976 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:56:48.0911 1976 PolicyAgent - ok
20:56:48.0941 1976 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:56:48.0944 1976 Power - ok
20:56:48.0969 1976 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:56:49.0019 1976 PptpMiniport - ok
20:56:49.0045 1976 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:56:49.0058 1976 Processor - ok
20:56:49.0078 1976 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:56:49.0081 1976 ProfSvc - ok
20:56:49.0087 1976 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:56:49.0089 1976 ProtectedStorage - ok
20:56:49.0116 1976 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:56:49.0118 1976 Psched - ok
20:56:49.0136 1976 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:56:49.0137 1976 PxHlpa64 - ok
20:56:49.0187 1976 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:56:49.0239 1976 ql2300 - ok
20:56:49.0255 1976 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:56:49.0259 1976 ql40xx - ok
20:56:49.0286 1976 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:56:49.0290 1976 QWAVE - ok
20:56:49.0305 1976 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:56:49.0310 1976 QWAVEdrv - ok
20:56:49.0321 1976 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:56:49.0325 1976 RasAcd - ok
20:56:49.0336 1976 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:56:49.0339 1976 RasAgileVpn - ok
20:56:49.0352 1976 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:56:49.0354 1976 RasAuto - ok
20:56:49.0377 1976 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:56:49.0426 1976 Rasl2tp - ok
20:56:49.0455 1976 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:56:49.0460 1976 RasMan - ok
20:56:49.0473 1976 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:56:49.0478 1976 RasPppoe - ok
20:56:49.0487 1976 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:56:49.0490 1976 RasSstp - ok
20:56:49.0499 1976 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:56:49.0503 1976 rdbss - ok
20:56:49.0516 1976 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:56:49.0521 1976 rdpbus - ok
20:56:49.0529 1976 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:56:49.0530 1976 RDPCDD - ok
20:56:49.0550 1976 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:56:49.0550 1976 RDPENCDD - ok
20:56:49.0561 1976 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:56:49.0562 1976 RDPREFMP - ok
20:56:49.0615 1976 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:56:49.0671 1976 RDPWD - ok
20:56:49.0686 1976 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:56:49.0689 1976 rdyboost - ok
20:56:49.0711 1976 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:56:49.0714 1976 RemoteAccess - ok
20:56:49.0731 1976 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:56:49.0734 1976 RemoteRegistry - ok
20:56:49.0745 1976 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:56:49.0747 1976 RpcEptMapper - ok
20:56:49.0769 1976 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:56:49.0771 1976 RpcLocator - ok
20:56:49.0793 1976 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:56:49.0797 1976 RpcSs - ok
20:56:49.0809 1976 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:56:49.0813 1976 rspndr - ok
20:56:49.0821 1976 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:56:49.0822 1976 SamSs - ok
20:56:49.0846 1976 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:56:49.0908 1976 sbp2port - ok
20:56:49.0936 1976 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:56:49.0944 1976 SCardSvr - ok
20:56:49.0957 1976 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:56:50.0012 1976 scfilter - ok
20:56:50.0050 1976 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:56:50.0074 1976 Schedule - ok
20:56:50.0090 1976 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:56:50.0091 1976 SCPolicySvc - ok
20:56:50.0111 1976 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:56:50.0114 1976 SDRSVC - ok
20:56:50.0137 1976 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:56:50.0140 1976 secdrv - ok
20:56:50.0150 1976 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:56:50.0152 1976 seclogon - ok
20:56:50.0164 1976 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:56:50.0166 1976 SENS - ok
20:56:50.0182 1976 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:56:50.0184 1976 SensrSvc - ok
20:56:50.0196 1976 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:56:50.0199 1976 Serenum - ok
20:56:50.0226 1976 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:56:50.0229 1976 Serial - ok
20:56:50.0257 1976 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:56:50.0260 1976 sermouse - ok
20:56:50.0293 1976 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:56:50.0296 1976 SessionEnv - ok
20:56:50.0315 1976 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:56:50.0319 1976 sffdisk - ok
20:56:50.0333 1976 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:56:50.0337 1976 sffp_mmc - ok
20:56:50.0342 1976 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:56:50.0393 1976 sffp_sd - ok
20:56:50.0406 1976 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:56:50.0410 1976 sfloppy - ok
20:56:50.0436 1976 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:56:50.0440 1976 SharedAccess - ok
20:56:50.0466 1976 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:56:50.0473 1976 ShellHWDetection - ok
20:56:50.0487 1976 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:56:50.0491 1976 SiSRaid2 - ok
20:56:50.0504 1976 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:56:50.0509 1976 SiSRaid4 - ok
20:56:50.0525 1976 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:56:50.0531 1976 Smb - ok
20:56:50.0566 1976 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:56:50.0568 1976 SNMPTRAP - ok
20:56:50.0582 1976 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:56:50.0582 1976 spldr - ok
20:56:50.0625 1976 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:56:50.0629 1976 Spooler - ok
20:56:50.0817 1976 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:56:50.0836 1976 sppsvc - ok
20:56:50.0866 1976 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:56:50.0877 1976 sppuinotify - ok
20:56:50.0900 1976 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:56:50.0907 1976 srv - ok
20:56:50.0946 1976 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:56:50.0951 1976 srv2 - ok
20:56:50.0956 1976 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:56:50.0958 1976 srvnet - ok
20:56:50.0978 1976 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:56:50.0981 1976 SSDPSRV - ok
20:56:50.0996 1976 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:56:50.0999 1976 SstpSvc - ok
20:56:51.0010 1976 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:56:51.0013 1976 stexstor - ok
20:56:51.0053 1976 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:56:51.0070 1976 stisvc - ok
20:56:51.0096 1976 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:56:51.0100 1976 swenum - ok
20:56:51.0142 1976 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:56:51.0145 1976 SwitchBoard - ok
20:56:51.0168 1976 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:56:51.0181 1976 swprv - ok
20:56:51.0225 1976 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:56:51.0251 1976 SysMain - ok
20:56:51.0276 1976 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:56:51.0279 1976 TabletInputService - ok
20:56:51.0295 1976 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:56:51.0300 1976 TapiSrv - ok
20:56:51.0309 1976 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:56:51.0311 1976 TBS - ok
20:56:51.0354 1976 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:56:51.0389 1976 Tcpip - ok
20:56:51.0418 1976 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:56:51.0428 1976 TCPIP6 - ok
20:56:51.0444 1976 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:56:51.0494 1976 tcpipreg - ok
20:56:51.0513 1976 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:56:51.0519 1976 TDPIPE - ok
20:56:51.0534 1976 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:56:51.0586 1976 TDTCP - ok
20:56:51.0611 1976 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:56:51.0662 1976 tdx - ok
20:56:51.0680 1976 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:56:51.0722 1976 TermDD - ok
20:56:51.0809 1976 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:56:51.0820 1976 TermService - ok
20:56:51.0835 1976 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:56:51.0837 1976 Themes - ok
20:56:51.0852 1976 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:56:51.0853 1976 THREADORDER - ok
20:56:51.0865 1976 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:56:51.0868 1976 TrkWks - ok
20:56:51.0903 1976 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:56:51.0904 1976 TrustedInstaller - ok
20:56:51.0925 1976 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:56:51.0976 1976 tssecsrv - ok
20:56:52.0003 1976 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:56:52.0055 1976 TsUsbFlt - ok
20:56:52.0132 1976 [ 53C9D93D159EE9FF3E23A7BFAFA9CF9E ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
20:56:52.0158 1976 TuneUp.UtilitiesSvc - ok
20:56:52.0185 1976 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
20:56:52.0186 1976 TuneUpUtilitiesDrv - ok
20:56:52.0214 1976 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:56:52.0265 1976 tunnel - ok
20:56:52.0278 1976 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:56:52.0283 1976 uagp35 - ok
20:56:52.0306 1976 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:56:52.0311 1976 udfs - ok
20:56:52.0339 1976 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:56:52.0341 1976 UI0Detect - ok
20:56:52.0360 1976 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:56:52.0364 1976 uliagpkx - ok
20:56:52.0392 1976 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:56:52.0442 1976 umbus - ok
20:56:52.0453 1976 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:56:52.0456 1976 UmPass - ok
20:56:52.0511 1976 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
20:56:52.0512 1976 Updater Service - ok
20:56:52.0530 1976 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:56:52.0536 1976 upnphost - ok
20:56:52.0565 1976 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:56:52.0618 1976 USBAAPL64 - ok
20:56:52.0664 1976 [ 58B3891EA8A2396D69D1F52924598BDB ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
20:56:52.0715 1976 usbbus - ok
20:56:52.0738 1976 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:56:52.0793 1976 usbccgp - ok
20:56:52.0834 1976 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:56:52.0839 1976 usbcir - ok
20:56:52.0854 1976 [ EF3BCEBBFDD4D37EC6B6A3D182004B7E ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
20:56:52.0906 1976 UsbDiag - ok
20:56:52.0924 1976 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:56:52.0976 1976 usbehci - ok
20:56:53.0001 1976 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:56:53.0056 1976 usbhub - ok
20:56:53.0066 1976 [ DEC50411E7AA8DA12C8675F36D961F29 ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
20:56:53.0116 1976 USBModem - ok
20:56:53.0126 1976 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
20:56:53.0178 1976 usbohci - ok
20:56:53.0199 1976 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:56:53.0202 1976 usbprint - ok
20:56:53.0224 1976 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:56:53.0227 1976 usbscan - ok
20:56:53.0239 1976 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:56:53.0289 1976 USBSTOR - ok
20:56:53.0304 1976 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:56:53.0355 1976 usbuhci - ok
20:56:53.0380 1976 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:56:53.0384 1976 UxSms - ok
20:56:53.0411 1976 [ 951A30E6EFB1A2A2D3BB842807661863 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
20:56:53.0413 1976 UxTuneUp - ok
20:56:53.0421 1976 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:56:53.0422 1976 VaultSvc - ok
20:56:53.0446 1976 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:56:53.0446 1976 vdrvroot - ok
20:56:53.0473 1976 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:56:53.0491 1976 vds - ok
20:56:53.0505 1976 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:56:53.0508 1976 vga - ok
20:56:53.0522 1976 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:56:53.0527 1976 VgaSave - ok
20:56:53.0548 1976 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:56:53.0605 1976 vhdmp - ok
20:56:53.0634 1976 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:56:53.0639 1976 viaide - ok
20:56:53.0655 1976 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:56:53.0656 1976 volmgr - ok
20:56:53.0684 1976 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:56:53.0688 1976 volmgrx - ok
20:56:53.0705 1976 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:56:53.0708 1976 volsnap - ok
20:56:53.0720 1976 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:56:53.0727 1976 vsmraid - ok
20:56:53.0769 1976 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:56:53.0804 1976 VSS - ok
20:56:53.0890 1976 [ FD04978FF1DBCB748956D1AB4F694629 ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
20:56:53.0893 1976 vToolbarUpdater13.2.0 - ok
20:56:53.0904 1976 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:56:53.0907 1976 vwifibus - ok
20:56:53.0928 1976 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:56:53.0934 1976 W32Time - ok
20:56:53.0947 1976 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:56:53.0952 1976 WacomPen - ok
20:56:53.0976 1976 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:56:54.0027 1976 WANARP - ok
20:56:54.0038 1976 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:56:54.0039 1976 Wanarpv6 - ok
20:56:54.0072 1976 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:56:54.0099 1976 wbengine - ok
20:56:54.0108 1976 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:56:54.0112 1976 WbioSrvc - ok
20:56:54.0136 1976 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:56:54.0144 1976 wcncsvc - ok
20:56:54.0154 1976 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:56:54.0156 1976 WcsPlugInService - ok
20:56:54.0160 1976 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:56:54.0166 1976 Wd - ok
20:56:54.0184 1976 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:56:54.0201 1976 Wdf01000 - ok
20:56:54.0215 1976 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:56:54.0217 1976 WdiServiceHost - ok
20:56:54.0221 1976 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:56:54.0223 1976 WdiSystemHost - ok
20:56:54.0239 1976 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:56:54.0243 1976 WebClient - ok
20:56:54.0260 1976 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:56:54.0264 1976 Wecsvc - ok
20:56:54.0279 1976 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:56:54.0281 1976 wercplsupport - ok
20:56:54.0302 1976 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:56:54.0305 1976 WerSvc - ok
20:56:54.0313 1976 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:56:54.0316 1976 WfpLwf - ok
20:56:54.0330 1976 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:56:54.0333 1976 WIMMount - ok
20:56:54.0347 1976 WinDefend - ok
20:56:54.0352 1976 WinHttpAutoProxySvc - ok
20:56:54.0406 1976 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:56:54.0409 1976 Winmgmt - ok
20:56:54.0470 1976 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:56:54.0503 1976 WinRM - ok
20:56:54.0537 1976 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:56:54.0588 1976 WinUsb - ok
20:56:54.0623 1976 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:56:54.0640 1976 Wlansvc - ok
20:56:54.0666 1976 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:56:54.0667 1976 WmiAcpi - ok
20:56:54.0679 1976 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:56:54.0682 1976 wmiApSrv - ok
20:56:54.0697 1976 WMPNetworkSvc - ok
20:56:54.0707 1976 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:56:54.0709 1976 WPCSvc - ok
20:56:54.0723 1976 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:56:54.0727 1976 WPDBusEnum - ok
20:56:54.0738 1976 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:56:54.0742 1976 ws2ifsl - ok
20:56:54.0753 1976 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:56:54.0756 1976 wscsvc - ok
20:56:54.0759 1976 WSearch - ok
20:56:54.0829 1976 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:56:54.0872 1976 wuauserv - ok
20:56:54.0885 1976 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:56:54.0937 1976 WudfPf - ok
20:56:54.0977 1976 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:56:55.0029 1976 WUDFRd - ok
20:56:55.0061 1976 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:56:55.0064 1976 wudfsvc - ok
20:56:55.0080 1976 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:56:55.0084 1976 WwanSvc - ok
20:56:55.0111 1976 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
20:56:55.0163 1976 xusb21 - ok
20:56:55.0166 1976 ================ Scan global ===============================
20:56:55.0185 1976 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:56:55.0207 1976 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:56:55.0257 1976 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:56:55.0278 1976 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:56:55.0301 1976 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:56:55.0304 1976 [Global] - ok
20:56:55.0305 1976 ================ Scan MBR ==================================
20:56:55.0318 1976 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:56:56.0718 1976 \Device\Harddisk0\DR0 - ok
20:56:56.0718 1976 ================ Scan VBR ==================================
20:56:56.0725 1976 [ 77740EC78769FB3D43FCA85EC7BEE315 ] \Device\Harddisk0\DR0\Partition1
20:56:56.0727 1976 \Device\Harddisk0\DR0\Partition1 - ok
20:56:56.0736 1976 [ 8A37ECAF24C82C8DB53883521FD202CF ] \Device\Harddisk0\DR0\Partition2
20:56:56.0738 1976 \Device\Harddisk0\DR0\Partition2 - ok
20:56:56.0752 1976 [ FA5D6A5F7FAAAE99A90560378E3B48F5 ] \Device\Harddisk0\DR0\Partition3
20:56:56.0754 1976 \Device\Harddisk0\DR0\Partition3 - ok
20:56:56.0755 1976 ============================================================
20:56:56.0755 1976 Scan finished
20:56:56.0755 1976 ============================================================
20:56:56.0764 4772 Detected object count: 1
20:56:56.0764 4772 Actual detected object count: 1
20:57:41.0426 4772 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
20:57:41.0426 4772 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
21:00:23.0247 4972 ============================================================
21:00:23.0247 4972 Scan started
21:00:23.0247 4972 Mode: Manual; TDLFS;
21:00:23.0247 4972 ============================================================
21:00:23.0638 4972 ================ Scan system memory ========================
21:00:23.0638 4972 System memory - ok
21:00:23.0638 4972 ================ Scan services =============================
21:00:23.0737 4972 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:00:23.0739 4972 1394ohci - ok
21:00:23.0804 4972 [ B33CF4DE909A5B30F526D82053A63C8E ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
21:00:23.0808 4972 ABBYY.Licensing.FineReader.Sprint.9.0 - ok
21:00:23.0835 4972 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:00:23.0837 4972 ACPI - ok
21:00:23.0861 4972 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:00:23.0862 4972 AcpiPmi - ok
21:00:23.0907 4972 [ 6D9FC1E7EA3C548F4D3455F0C3FEEF8C ] AdobeActiveFileMonitor7.0 c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
21:00:23.0908 4972 AdobeActiveFileMonitor7.0 - ok
21:00:23.0981 4972 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:00:23.0982 4972 AdobeFlashPlayerUpdateSvc - ok
21:00:24.0013 4972 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:00:24.0016 4972 adp94xx - ok
21:00:24.0029 4972 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:00:24.0031 4972 adpahci - ok
21:00:24.0045 4972 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:00:24.0046 4972 adpu320 - ok
21:00:24.0064 4972 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:00:24.0065 4972 AeLookupSvc - ok
21:00:24.0094 4972 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:00:24.0096 4972 AFD - ok
21:00:24.0111 4972 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:00:24.0112 4972 agp440 - ok
21:00:24.0203 4972 [ E1B1F152C4E82C85E846D25C9E6E6CC8 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_b5e8a4c.dll
21:00:24.0203 4972 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_b5e8a4c.dll. md5: E1B1F152C4E82C85E846D25C9E6E6CC8
21:00:24.0211 4972 Akamai ( HiddenFile.Multi.Generic ) - warning
21:00:24.0211 4972 Akamai - detected HiddenFile.Multi.Generic (1)
21:00:24.0228 4972 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:00:24.0229 4972 ALG - ok
21:00:24.0248 4972 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:00:24.0248 4972 aliide - ok
21:00:24.0263 4972 [ 8F6C0FF277DBFE5EBED24E3543DA7BFA ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
21:00:24.0265 4972 AMD External Events Utility - ok
21:00:24.0278 4972 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:00:24.0279 4972 amdide - ok
21:00:24.0293 4972 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:00:24.0294 4972 AmdK8 - ok
21:00:24.0391 4972 [ 9673319070166E26660EBA4EDF316FA2 ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
21:00:24.0422 4972 amdkmdag - ok
21:00:24.0464 4972 [ 430D06D63952848E64CBBF23B5C1479E ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
21:00:24.0465 4972 amdkmdap - ok
21:00:24.0482 4972 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:00:24.0483 4972 AmdPPM - ok
21:00:24.0508 4972 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:00:24.0508 4972 amdsata - ok
21:00:24.0519 4972 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:00:24.0521 4972 amdsbs - ok
21:00:24.0530 4972 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:00:24.0531 4972 amdxata - ok
21:00:24.0547 4972 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:00:24.0548 4972 AppID - ok
21:00:24.0562 4972 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:00:24.0563 4972 AppIDSvc - ok
21:00:24.0579 4972 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:00:24.0580 4972 Appinfo - ok
21:00:24.0624 4972 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:00:24.0626 4972 Apple Mobile Device - ok
21:00:24.0640 4972 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:00:24.0641 4972 arc - ok
21:00:24.0654 4972 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:00:24.0654 4972 arcsas - ok
21:00:24.0661 4972 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:00:24.0661 4972 AsyncMac - ok
21:00:24.0680 4972 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:00:24.0680 4972 atapi - ok
21:00:24.0706 4972 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
21:00:24.0707 4972 AtiHdmiService - ok
21:00:24.0736 4972 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:00:24.0740 4972 AudioEndpointBuilder - ok
21:00:24.0753 4972 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:00:24.0756 4972 AudioSrv - ok
21:00:24.0781 4972 [ 9DE4C26D54EBF21091F7CCFB6AB41995 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
21:00:24.0781 4972 avgtp - ok
21:00:24.0801 4972 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:00:24.0802 4972 AxInstSV - ok
21:00:24.0821 4972 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:00:24.0823 4972 b06bdrv - ok
21:00:24.0841 4972 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:00:24.0843 4972 b57nd60a - ok
21:00:24.0867 4972 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:00:24.0868 4972 BDESVC - ok
21:00:24.0878 4972 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:00:24.0879 4972 Beep - ok
21:00:24.0910 4972 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:00:24.0914 4972 BFE - ok
21:00:24.0933 4972 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
21:00:24.0939 4972 BITS - ok
21:00:24.0960 4972 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:00:24.0960 4972 blbdrive - ok
21:00:24.0995 4972 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:00:24.0998 4972 Bonjour Service - ok
21:00:25.0017 4972 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:00:25.0018 4972 bowser - ok
21:00:25.0030 4972 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:00:25.0031 4972 BrFiltLo - ok
21:00:25.0044 4972 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:00:25.0044 4972 BrFiltUp - ok
21:00:25.0065 4972 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:00:25.0066 4972 Browser - ok
21:00:25.0078 4972 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:00:25.0080 4972 Brserid - ok
21:00:25.0092 4972 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:00:25.0093 4972 BrSerWdm - ok
21:00:25.0107 4972 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:00:25.0108 4972 BrUsbMdm - ok
21:00:25.0118 4972 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:00:25.0118 4972 BrUsbSer - ok
21:00:25.0131 4972 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:00:25.0132 4972 BTHMODEM - ok
21:00:25.0153 4972 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:00:25.0154 4972 bthserv - ok
21:00:25.0165 4972 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:00:25.0166 4972 cdfs - ok
21:00:25.0181 4972 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:00:25.0182 4972 cdrom - ok
21:00:25.0202 4972 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:00:25.0203 4972 CertPropSvc - ok
21:00:25.0224 4972 [ 274CE03459896006F7A5069266E0469E ] cfwids C:\Windows\system32\drivers\cfwids.sys
21:00:25.0225 4972 cfwids - ok
21:00:25.0241 4972 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:00:25.0242 4972 circlass - ok
21:00:25.0257 4972 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:00:25.0259 4972 CLFS - ok
21:00:25.0307 4972 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:00:25.0308 4972 clr_optimization_v2.0.50727_32 - ok
21:00:25.0341 4972 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:00:25.0342 4972 clr_optimization_v2.0.50727_64 - ok
21:00:25.0378 4972 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:00:25.0379 4972 clr_optimization_v4.0.30319_32 - ok
21:00:25.0412 4972 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:00:25.0414 4972 clr_optimization_v4.0.30319_64 - ok
21:00:25.0429 4972 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:00:25.0430 4972 CmBatt - ok
21:00:25.0446 4972 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:00:25.0447 4972 cmdide - ok
21:00:25.0479 4972 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:00:25.0481 4972 CNG - ok
21:00:25.0499 4972 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:00:25.0500 4972 Compbatt - ok
21:00:25.0515 4972 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:00:25.0516 4972 CompositeBus - ok
21:00:25.0520 4972 COMSysApp - ok
21:00:25.0534 4972 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:00:25.0534 4972 crcdisk - ok
21:00:25.0556 4972 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:00:25.0558 4972 CryptSvc - ok
21:00:25.0580 4972 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:00:25.0584 4972 DcomLaunch - ok
21:00:25.0642 4972 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:00:25.0645 4972 defragsvc - ok
21:00:25.0668 4972 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:00:25.0669 4972 DfsC - ok
21:00:25.0682 4972 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:00:25.0684 4972 Dhcp - ok
21:00:25.0694 4972 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:00:25.0694 4972 discache - ok
21:00:25.0702 4972 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:00:25.0703 4972 Disk - ok
21:00:25.0722 4972 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:00:25.0724 4972 Dnscache - ok
21:00:25.0745 4972 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:00:25.0747 4972 dot3svc - ok
21:00:25.0770 4972 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:00:25.0771 4972 DPS - ok
21:00:25.0782 4972 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:00:25.0782 4972 drmkaud - ok
21:00:25.0791 4972 dump_wmimmc - ok
21:00:25.0818 4972 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:00:25.0824 4972 DXGKrnl - ok
21:00:25.0844 4972 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:00:25.0845 4972 EapHost - ok
21:00:25.0899 4972 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:00:25.0915 4972 ebdrv - ok
21:00:25.0941 4972 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:00:25.0942 4972 EFS - ok
21:00:25.0974 4972 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:00:25.0978 4972 ehRecvr - ok
21:00:25.0997 4972 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:00:25.0998 4972 ehSched - ok
21:00:26.0017 4972 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:00:26.0020 4972 elxstor - ok
21:00:26.0040 4972 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:00:26.0040 4972 ErrDev - ok
21:00:26.0060 4972 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:00:26.0063 4972 EventSystem - ok
21:00:26.0082 4972 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:00:26.0083 4972 exfat - ok
21:00:26.0101 4972 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:00:26.0102 4972 fastfat - ok
21:00:26.0133 4972 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:00:26.0137 4972 Fax - ok
21:00:26.0150 4972 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:00:26.0151 4972 fdc - ok
21:00:26.0162 4972 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:00:26.0164 4972 fdPHost - ok
21:00:26.0173 4972 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:00:26.0174 4972 FDResPub - ok
21:00:26.0189 4972 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:00:26.0190 4972 FileInfo - ok
21:00:26.0199 4972 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:00:26.0200 4972 Filetrace - ok
21:00:26.0235 4972 [ F76D04F7413B07DAA029F6520B64B4E8 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:00:26.0239 4972 FLEXnet Licensing Service - ok
21:00:26.0252 4972 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:00:26.0253 4972 flpydisk - ok
21:00:26.0278 4972 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:00:26.0279 4972 FltMgr - ok
21:00:26.0318 4972 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:00:26.0325 4972 FontCache - ok
21:00:26.0369 4972 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:00:26.0369 4972 FontCache3.0.0.0 - ok
21:00:26.0401 4972 [ 52B58A46BEEFB238C580B69FD051CB5B ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
21:00:26.0405 4972 ForceWare Intelligent Application Manager (IAM) - ok
21:00:26.0419 4972 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:00:26.0420 4972 FsDepends - ok
21:00:26.0438 4972 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:00:26.0438 4972 Fs_Rec - ok
21:00:26.0448 4972 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:00:26.0449 4972 fvevol - ok
21:00:26.0459 4972 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:00:26.0460 4972 gagp30kx - ok
21:00:26.0484 4972 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:00:26.0485 4972 GEARAspiWDM - ok
21:00:26.0509 4972 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:00:26.0514 4972 gpsvc - ok
21:00:26.0571 4972 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
21:00:26.0577 4972 Greg_Service - ok
21:00:26.0622 4972 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:26.0623 4972 gupdate - ok
21:00:26.0627 4972 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:26.0628 4972 gupdatem - ok
21:00:26.0641 4972 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:00:26.0641 4972 hcw85cir - ok
21:00:26.0671 4972 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:00:26.0673 4972 HdAudAddService - ok
21:00:26.0692 4972 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:00:26.0693 4972 HDAudBus - ok
21:00:26.0707 4972 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:00:26.0708 4972 HidBatt - ok
21:00:26.0722 4972 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:00:26.0723 4972 HidBth - ok
21:00:26.0730 4972 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:00:26.0731 4972 HidIr - ok
21:00:26.0753 4972 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:00:26.0754 4972 hidserv - ok
21:00:26.0775 4972 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:00:26.0776 4972 HidUsb - ok
21:00:26.0790 4972 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:00:26.0792 4972 hkmsvc - ok
21:00:26.0814 4972 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:00:26.0817 4972 HomeGroupListener - ok
21:00:26.0840 4972 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:00:26.0842 4972 HomeGroupProvider - ok
21:00:26.0863 4972 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:00:26.0864 4972 HpSAMD - ok
21:00:26.0896 4972 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:00:26.0901 4972 HTTP - ok
21:00:26.0905 4972 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:00:26.0906 4972 hwpolicy - ok
21:00:26.0927 4972 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:00:26.0928 4972 i8042prt - ok
21:00:26.0950 4972 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:00:26.0952 4972 iaStorV - ok
21:00:26.0986 4972 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:00:26.0991 4972 idsvc - ok
21:00:27.0009 4972 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:00:27.0010 4972 iirsp - ok
21:00:27.0032 4972 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:00:27.0037 4972 IKEEXT - ok
21:00:27.0089 4972 [ 52D9171838BB92319F23656F502916E9 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:00:27.0099 4972 IntcAzAudAddService - ok
21:00:27.0124 4972 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:00:27.0125 4972 intelide - ok
21:00:27.0136 4972 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:00:27.0137 4972 intelppm - ok
21:00:27.0160 4972 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:00:27.0161 4972 IPBusEnum - ok
21:00:27.0177 4972 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:00:27.0178 4972 IpFilterDriver - ok
21:00:27.0205 4972 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:00:27.0209 4972 iphlpsvc - ok
21:00:27.0226 4972 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:00:27.0226 4972 IPMIDRV - ok
21:00:27.0237 4972 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:00:27.0238 4972 IPNAT - ok
21:00:27.0267 4972 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:00:27.0272 4972 iPod Service - ok
21:00:27.0294 4972 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:00:27.0294 4972 IRENUM - ok
21:00:27.0313 4972 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:00:27.0313 4972 isapnp - ok
21:00:27.0326 4972 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:00:27.0328 4972 iScsiPrt - ok
21:00:27.0352 4972 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
21:00:27.0353 4972 kbdclass - ok
21:00:27.0374 4972 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:00:27.0375 4972 kbdhid - ok
21:00:27.0391 4972 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:00:27.0392 4972 KeyIso - ok
21:00:27.0412 4972 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:00:27.0413 4972 KSecDD - ok
21:00:27.0439 4972 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:00:27.0440 4972 KSecPkg - ok
21:00:27.0450 4972 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:00:27.0451 4972 ksthunk - ok
21:00:27.0476 4972 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:00:27.0479 4972 KtmRm - ok
21:00:27.0493 4972 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:00:27.0496 4972 LanmanServer - ok
21:00:27.0517 4972 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:00:27.0520 4972 LanmanWorkstation - ok
21:00:27.0529 4972 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:00:27.0529 4972 lltdio - ok
21:00:27.0547 4972 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:00:27.0550 4972 lltdsvc - ok
21:00:27.0560 4972 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:00:27.0562 4972 lmhosts - ok
21:00:27.0579 4972 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:00:27.0580 4972 LSI_FC - ok
21:00:27.0585 4972 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:00:27.0586 4972 LSI_SAS - ok
21:00:27.0624 4972 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:00:27.0624 4972 LSI_SAS2 - ok
21:00:27.0632 4972 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:00:27.0633 4972 LSI_SCSI - ok
21:00:27.0647 4972 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:00:27.0649 4972 luafv - ok
21:00:27.0712 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:27.0713 4972 McAfee SiteAdvisor Service - ok
21:00:27.0728 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:27.0730 4972 McMPFSvc - ok
21:00:27.0736 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:27.0737 4972 mcmscsvc - ok
21:00:27.0743 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:27.0744 4972 McNaiAnn - ok
21:00:27.0750 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:27.0752 4972 McNASvc - ok
21:00:27.0795 4972 [ 44D0DA102FA7A1BE22FD7499E80DCF9B ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
21:00:27.0797 4972 McODS - ok
21:00:27.0803 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:27.0804 4972 McProxy - ok
21:00:27.0835 4972 [ E998E3B12101288D716558466CBF6AE1 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:00:27.0837 4972 McShield - ok
21:00:27.0854 4972 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:00:27.0856 4972 Mcx2Svc - ok
21:00:27.0870 4972 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:00:27.0870 4972 megasas - ok
21:00:27.0884 4972 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:00:27.0886 4972 MegaSR - ok
21:00:27.0902 4972 [ 01884CB7655C8908B43FF5E364FE6FD2 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
21:00:27.0903 4972 mfeapfk - ok
21:00:27.0929 4972 [ DAB9A9CDFB04E4D68924492AA043019D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
21:00:27.0931 4972 mfeavfk - ok
21:00:27.0934 4972 mfeavfk01 - ok
21:00:27.0955 4972 [ B26782C3D6045B4464017D7926877560 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:00:27.0956 4972 mfefire - ok
21:00:27.0981 4972 [ CE9A3680675C0907ADE16404CA967B49 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
21:00:27.0984 4972 mfefirek - ok
21:00:28.0001 4972 [ 60CF67458DD29CD17E77F2327B1A9A54 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
21:00:28.0005 4972 mfehidk - ok
21:00:28.0018 4972 [ A8129CFB919347F8533C934B365E9202 ] mfenlfk C:\Windows\system32\DRIVERS\mfenlfk.sys
21:00:28.0019 4972 mfenlfk - ok
21:00:28.0032 4972 [ 5041FA2BD2B3A2693B015771BFBF6DCA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
21:00:28.0033 4972 mferkdet - ok
21:00:28.0053 4972 [ 723A5EB6CEF7F408C3D0F15A82A6BFF8 ] mfevtp C:\Windows\system32\mfevtps.exe
21:00:28.0055 4972 mfevtp - ok
21:00:28.0068 4972 [ 919C56DB14A0E1E2AB6DA5D2821DC26E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
21:00:28.0070 4972 mfewfpk - ok
21:00:28.0088 4972 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:00:28.0090 4972 MMCSS - ok
21:00:28.0103 4972 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:00:28.0104 4972 Modem - ok
21:00:28.0116 4972 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:00:28.0117 4972 monitor - ok
21:00:28.0129 4972 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:00:28.0130 4972 mouclass - ok
21:00:28.0138 4972 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
|
|
09.11.2012, 21:09
| #7 |
| | Telekom Brief Abuse bzgl. Spam-Mails hier die zweite Hälfte: Code:
ATTFilter 21:00:28.0139 4972 mouhid - ok
21:00:28.0155 4972 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:00:28.0156 4972 mountmgr - ok
21:00:28.0180 4972 [ 96AA8BA23142CC8E2B30F3CAE0C80254 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:00:28.0181 4972 MozillaMaintenance - ok
21:00:28.0203 4972 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:00:28.0204 4972 mpio - ok
21:00:28.0213 4972 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:00:28.0214 4972 mpsdrv - ok
21:00:28.0236 4972 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:00:28.0241 4972 MpsSvc - ok
21:00:28.0269 4972 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:00:28.0270 4972 MRxDAV - ok
21:00:28.0292 4972 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:00:28.0293 4972 mrxsmb - ok
21:00:28.0317 4972 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:00:28.0319 4972 mrxsmb10 - ok
21:00:28.0327 4972 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:00:28.0328 4972 mrxsmb20 - ok
21:00:28.0351 4972 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:00:28.0352 4972 msahci - ok
21:00:28.0372 4972 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:00:28.0373 4972 msdsm - ok
21:00:28.0383 4972 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:00:28.0385 4972 MSDTC - ok
21:00:28.0402 4972 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:00:28.0402 4972 Msfs - ok
21:00:28.0415 4972 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:00:28.0415 4972 mshidkmdf - ok
21:00:28.0432 4972 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:00:28.0432 4972 msisadrv - ok
21:00:28.0453 4972 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:00:28.0454 4972 MSiSCSI - ok
21:00:28.0458 4972 msiserver - ok
21:00:28.0470 4972 [ ACB01BF1A905356AB7F978C7FE852209 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:00:28.0472 4972 MSK80Service - ok
21:00:28.0487 4972 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:00:28.0487 4972 MSKSSRV - ok
21:00:28.0499 4972 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:00:28.0500 4972 MSPCLOCK - ok
21:00:28.0512 4972 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:00:28.0513 4972 MSPQM - ok
21:00:28.0539 4972 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:00:28.0542 4972 MsRPC - ok
21:00:28.0564 4972 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:00:28.0565 4972 mssmbios - ok
21:00:28.0576 4972 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:00:28.0576 4972 MSTEE - ok
21:00:28.0583 4972 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:00:28.0583 4972 MTConfig - ok
21:00:28.0599 4972 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:00:28.0606 4972 Mup - ok
21:00:28.0627 4972 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:00:28.0630 4972 napagent - ok
21:00:28.0646 4972 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:00:28.0648 4972 NativeWifiP - ok
21:00:28.0674 4972 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:00:28.0679 4972 NDIS - ok
21:00:28.0694 4972 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:00:28.0694 4972 NdisCap - ok
21:00:28.0709 4972 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:00:28.0709 4972 NdisTapi - ok
21:00:28.0732 4972 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:00:28.0733 4972 Ndisuio - ok
21:00:28.0754 4972 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:00:28.0755 4972 NdisWan - ok
21:00:28.0774 4972 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:00:28.0775 4972 NDProxy - ok
21:00:28.0824 4972 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
21:00:28.0829 4972 Nero BackItUp Scheduler 4.0 - ok
21:00:28.0852 4972 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:00:28.0853 4972 NetBIOS - ok
21:00:28.0869 4972 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:00:28.0871 4972 NetBT - ok
21:00:28.0883 4972 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:00:28.0884 4972 Netlogon - ok
21:00:28.0900 4972 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:00:28.0903 4972 Netman - ok
21:00:28.0918 4972 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:00:28.0921 4972 netprofm - ok
21:00:28.0939 4972 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:00:28.0940 4972 NetTcpPortSharing - ok
21:00:28.0950 4972 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:00:28.0951 4972 nfrd960 - ok
21:00:28.0966 4972 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:00:28.0969 4972 NlaSvc - ok
21:00:28.0981 4972 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:00:28.0982 4972 Npfs - ok
21:00:28.0986 4972 npggsvc - ok
21:00:28.0991 4972 NPPTNT2 - ok
21:00:29.0029 4972 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:00:29.0030 4972 nsi - ok
21:00:29.0043 4972 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:00:29.0043 4972 nsiproxy - ok
21:00:29.0056 4972 [ 20E179A7FE78B37A02D30C4D34C870E7 ] nSvcIp C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
21:00:29.0057 4972 nSvcIp - ok
21:00:29.0100 4972 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:00:29.0109 4972 Ntfs - ok
21:00:29.0114 4972 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:00:29.0114 4972 Null - ok
21:00:29.0131 4972 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
21:00:29.0134 4972 NVENETFD - ok
21:00:29.0309 4972 [ DD81FBC57AB9134CDDC5CE90880BFD80 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:00:29.0365 4972 nvlddmkm - ok
21:00:29.0395 4972 [ 909EEDCBD365BB81027D8E742E6B3416 ] NVNET C:\Windows\system32\DRIVERS\nvmf6264.sys
21:00:29.0397 4972 NVNET - ok
21:00:29.0424 4972 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:00:29.0426 4972 nvraid - ok
21:00:29.0441 4972 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:00:29.0442 4972 nvstor - ok
21:00:29.0465 4972 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:00:29.0466 4972 nv_agp - ok
21:00:29.0496 4972 [ 3CDD83C8D838C04009B3871274B97D36 ] OberonGameConsoleService C:\Program Files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe
21:00:29.0496 4972 OberonGameConsoleService - ok
21:00:29.0535 4972 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:00:29.0538 4972 odserv - ok
21:00:29.0556 4972 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:00:29.0557 4972 ohci1394 - ok
21:00:29.0576 4972 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:00:29.0577 4972 ose - ok
21:00:29.0595 4972 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:00:29.0599 4972 p2pimsvc - ok
21:00:29.0621 4972 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:00:29.0624 4972 p2psvc - ok
21:00:29.0644 4972 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:00:29.0645 4972 Parport - ok
21:00:29.0669 4972 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:00:29.0670 4972 partmgr - ok
21:00:29.0683 4972 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:00:29.0685 4972 PcaSvc - ok
21:00:29.0692 4972 PCDSRVC{D368CD8C-4CE20E91-06020101}_0 - ok
21:00:29.0712 4972 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:00:29.0713 4972 pci - ok
21:00:29.0735 4972 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:00:29.0735 4972 pciide - ok
21:00:29.0748 4972 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:00:29.0749 4972 pcmcia - ok
21:00:29.0765 4972 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:00:29.0766 4972 pcw - ok
21:00:29.0786 4972 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:00:29.0790 4972 PEAUTH - ok
21:00:29.0853 4972 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:00:29.0855 4972 PerfHost - ok
21:00:29.0921 4972 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:00:29.0929 4972 pla - ok
21:00:29.0955 4972 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:00:29.0958 4972 PlugPlay - ok
21:00:29.0972 4972 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:00:29.0974 4972 PNRPAutoReg - ok
21:00:29.0987 4972 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:00:29.0990 4972 PNRPsvc - ok
21:00:30.0009 4972 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:00:30.0013 4972 PolicyAgent - ok
21:00:30.0036 4972 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:00:30.0039 4972 Power - ok
21:00:30.0055 4972 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:00:30.0057 4972 PptpMiniport - ok
21:00:30.0065 4972 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:00:30.0066 4972 Processor - ok
21:00:30.0090 4972 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:00:30.0092 4972 ProfSvc - ok
21:00:30.0099 4972 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:00:30.0101 4972 ProtectedStorage - ok
21:00:30.0119 4972 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:00:30.0121 4972 Psched - ok
21:00:30.0139 4972 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
21:00:30.0140 4972 PxHlpa64 - ok
21:00:30.0173 4972 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:00:30.0181 4972 ql2300 - ok
21:00:30.0192 4972 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:00:30.0193 4972 ql40xx - ok
21:00:30.0214 4972 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:00:30.0217 4972 QWAVE - ok
21:00:30.0225 4972 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:00:30.0226 4972 QWAVEdrv - ok
21:00:30.0233 4972 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:00:30.0234 4972 RasAcd - ok
21:00:30.0248 4972 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:00:30.0249 4972 RasAgileVpn - ok
21:00:30.0263 4972 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:00:30.0265 4972 RasAuto - ok
21:00:30.0289 4972 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:00:30.0290 4972 Rasl2tp - ok
21:00:30.0316 4972 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:00:30.0320 4972 RasMan - ok
21:00:30.0335 4972 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:00:30.0336 4972 RasPppoe - ok
21:00:30.0348 4972 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:00:30.0349 4972 RasSstp - ok
21:00:30.0378 4972 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:00:30.0380 4972 rdbss - ok
21:00:30.0395 4972 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:00:30.0395 4972 rdpbus - ok
21:00:30.0408 4972 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:00:30.0408 4972 RDPCDD - ok
21:00:30.0420 4972 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:00:30.0421 4972 RDPENCDD - ok
21:00:30.0431 4972 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:00:30.0432 4972 RDPREFMP - ok
21:00:30.0460 4972 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:00:30.0462 4972 RDPWD - ok
21:00:30.0482 4972 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:00:30.0483 4972 rdyboost - ok
21:00:30.0507 4972 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:00:30.0508 4972 RemoteAccess - ok
21:00:30.0518 4972 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:00:30.0520 4972 RemoteRegistry - ok
21:00:30.0532 4972 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:00:30.0534 4972 RpcEptMapper - ok
21:00:30.0556 4972 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:00:30.0557 4972 RpcLocator - ok
21:00:30.0571 4972 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:00:30.0575 4972 RpcSs - ok
21:00:30.0587 4972 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:00:30.0588 4972 rspndr - ok
21:00:30.0600 4972 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:00:30.0601 4972 SamSs - ok
21:00:30.0624 4972 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:00:30.0625 4972 sbp2port - ok
21:00:30.0642 4972 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:00:30.0645 4972 SCardSvr - ok
21:00:30.0661 4972 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:00:30.0662 4972 scfilter - ok
21:00:30.0695 4972 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:00:30.0702 4972 Schedule - ok
21:00:30.0727 4972 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:00:30.0728 4972 SCPolicySvc - ok
21:00:30.0748 4972 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:00:30.0750 4972 SDRSVC - ok
21:00:30.0766 4972 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:00:30.0766 4972 secdrv - ok
21:00:30.0787 4972 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:00:30.0789 4972 seclogon - ok
21:00:30.0801 4972 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:00:30.0803 4972 SENS - ok
21:00:30.0811 4972 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:00:30.0813 4972 SensrSvc - ok
21:00:30.0825 4972 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:00:30.0825 4972 Serenum - ok
21:00:30.0837 4972 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:00:30.0838 4972 Serial - ok
21:00:30.0861 4972 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:00:30.0861 4972 sermouse - ok
21:00:30.0897 4972 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:00:30.0899 4972 SessionEnv - ok
21:00:30.0918 4972 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:00:30.0919 4972 sffdisk - ok
21:00:30.0928 4972 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:00:30.0929 4972 sffp_mmc - ok
21:00:30.0933 4972 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:00:30.0933 4972 sffp_sd - ok
21:00:30.0951 4972 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:00:30.0952 4972 sfloppy - ok
21:00:30.0972 4972 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:00:30.0975 4972 SharedAccess - ok
21:00:31.0003 4972 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:00:31.0006 4972 ShellHWDetection - ok
21:00:31.0015 4972 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:00:31.0016 4972 SiSRaid2 - ok
21:00:31.0024 4972 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:00:31.0025 4972 SiSRaid4 - ok
21:00:31.0037 4972 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:00:31.0038 4972 Smb - ok
21:00:31.0070 4972 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:00:31.0071 4972 SNMPTRAP - ok
21:00:31.0077 4972 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:00:31.0078 4972 spldr - ok
21:00:31.0102 4972 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:00:31.0106 4972 Spooler - ok
21:00:31.0178 4972 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:00:31.0197 4972 sppsvc - ok
21:00:31.0245 4972 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:00:31.0247 4972 sppuinotify - ok
21:00:31.0270 4972 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:00:31.0273 4972 srv - ok
21:00:31.0281 4972 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:00:31.0283 4972 srv2 - ok
21:00:31.0289 4972 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:00:31.0291 4972 srvnet - ok
21:00:31.0306 4972 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:00:31.0309 4972 SSDPSRV - ok
21:00:31.0316 4972 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:00:31.0318 4972 SstpSvc - ok
21:00:31.0330 4972 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:00:31.0330 4972 stexstor - ok
21:00:31.0356 4972 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:00:31.0361 4972 stisvc - ok
21:00:31.0383 4972 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:00:31.0384 4972 swenum - ok
21:00:31.0429 4972 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:00:31.0432 4972 SwitchBoard - ok
21:00:31.0446 4972 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:00:31.0450 4972 swprv - ok
21:00:31.0495 4972 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:00:31.0505 4972 SysMain - ok
21:00:31.0521 4972 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:00:31.0523 4972 TabletInputService - ok
21:00:31.0540 4972 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:00:31.0543 4972 TapiSrv - ok
21:00:31.0554 4972 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:00:31.0556 4972 TBS - ok
21:00:31.0600 4972 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:00:31.0610 4972 Tcpip - ok
21:00:31.0658 4972 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:00:31.0667 4972 TCPIP6 - ok
21:00:31.0680 4972 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:00:31.0681 4972 tcpipreg - ok
21:00:31.0700 4972 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:00:31.0701 4972 TDPIPE - ok
21:00:31.0712 4972 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:00:31.0713 4972 TDTCP - ok
21:00:31.0731 4972 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:00:31.0732 4972 tdx - ok
21:00:31.0750 4972 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:00:31.0751 4972 TermDD - ok
21:00:31.0779 4972 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:00:31.0784 4972 TermService - ok
21:00:31.0796 4972 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:00:31.0798 4972 Themes - ok
21:00:31.0813 4972 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:00:31.0815 4972 THREADORDER - ok
21:00:31.0827 4972 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:00:31.0829 4972 TrkWks - ok
21:00:31.0865 4972 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:00:31.0866 4972 TrustedInstaller - ok
21:00:31.0887 4972 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:00:31.0888 4972 tssecsrv - ok
21:00:31.0906 4972 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:00:31.0907 4972 TsUsbFlt - ok
21:00:31.0978 4972 [ 53C9D93D159EE9FF3E23A7BFAFA9CF9E ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
21:00:31.0988 4972 TuneUp.UtilitiesSvc - ok
21:00:32.0005 4972 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys
21:00:32.0006 4972 TuneUpUtilitiesDrv - ok
21:00:32.0026 4972 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:00:32.0027 4972 tunnel - ok
21:00:32.0040 4972 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:00:32.0041 4972 uagp35 - ok
21:00:32.0060 4972 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:00:32.0062 4972 udfs - ok
21:00:32.0076 4972 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:00:32.0078 4972 UI0Detect - ok
21:00:32.0097 4972 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:00:32.0098 4972 uliagpkx - ok
21:00:32.0112 4972 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
21:00:32.0113 4972 umbus - ok
21:00:32.0124 4972 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:00:32.0124 4972 UmPass - ok
21:00:32.0166 4972 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
21:00:32.0167 4972 Updater Service - ok
21:00:32.0183 4972 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:00:32.0187 4972 upnphost - ok
21:00:32.0210 4972 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:00:32.0211 4972 USBAAPL64 - ok
21:00:32.0235 4972 [ 58B3891EA8A2396D69D1F52924598BDB ] usbbus C:\Windows\system32\DRIVERS\lgx64bus.sys
21:00:32.0235 4972 usbbus - ok
21:00:32.0250 4972 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:00:32.0251 4972 usbccgp - ok
21:00:32.0279 4972 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:00:32.0280 4972 usbcir - ok
21:00:32.0291 4972 [ EF3BCEBBFDD4D37EC6B6A3D182004B7E ] UsbDiag C:\Windows\system32\DRIVERS\lgx64diag.sys
21:00:32.0292 4972 UsbDiag - ok
21:00:32.0303 4972 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:00:32.0304 4972 usbehci - ok
21:00:32.0321 4972 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:00:32.0323 4972 usbhub - ok
21:00:32.0336 4972 [ DEC50411E7AA8DA12C8675F36D961F29 ] USBModem C:\Windows\system32\DRIVERS\lgx64modem.sys
21:00:32.0337 4972 USBModem - ok
21:00:32.0347 4972 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:00:32.0347 4972 usbohci - ok
21:00:32.0361 4972 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:00:32.0362 4972 usbprint - ok
21:00:32.0386 4972 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:00:32.0387 4972 usbscan - ok
21:00:32.0400 4972 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:00:32.0401 4972 USBSTOR - ok
21:00:32.0416 4972 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:00:32.0416 4972 usbuhci - ok
21:00:32.0425 4972 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:00:32.0427 4972 UxSms - ok
21:00:32.0439 4972 [ 951A30E6EFB1A2A2D3BB842807661863 ] UxTuneUp C:\Windows\System32\uxtuneup.dll
21:00:32.0441 4972 UxTuneUp - ok
21:00:32.0449 4972 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:00:32.0451 4972 VaultSvc - ok
21:00:32.0474 4972 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:00:32.0475 4972 vdrvroot - ok
21:00:32.0502 4972 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:00:32.0507 4972 vds - ok
21:00:32.0517 4972 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:00:32.0517 4972 vga - ok
21:00:32.0534 4972 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:00:32.0535 4972 VgaSave - ok
21:00:32.0552 4972 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:00:32.0553 4972 vhdmp - ok
21:00:32.0571 4972 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:00:32.0572 4972 viaide - ok
21:00:32.0576 4972 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:00:32.0577 4972 volmgr - ok
21:00:32.0610 4972 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:00:32.0613 4972 volmgrx - ok
21:00:32.0640 4972 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:00:32.0642 4972 volsnap - ok
21:00:32.0657 4972 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:00:32.0659 4972 vsmraid - ok
21:00:32.0698 4972 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:00:32.0708 4972 VSS - ok
21:00:32.0768 4972 [ FD04978FF1DBCB748956D1AB4F694629 ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
21:00:32.0772 4972 vToolbarUpdater13.2.0 - ok
21:00:32.0782 4972 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
21:00:32.0783 4972 vwifibus - ok
21:00:32.0799 4972 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:00:32.0802 4972 W32Time - ok
21:00:32.0810 4972 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:00:32.0811 4972 WacomPen - ok
21:00:32.0822 4972 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:00:32.0823 4972 WANARP - ok
21:00:32.0826 4972 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:00:32.0827 4972 Wanarpv6 - ok
21:00:32.0876 4972 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:00:32.0885 4972 wbengine - ok
21:00:32.0920 4972 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:00:32.0923 4972 WbioSrvc - ok
21:00:32.0939 4972 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:00:32.0943 4972 wcncsvc - ok
21:00:32.0957 4972 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:00:32.0959 4972 WcsPlugInService - ok
21:00:32.0963 4972 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:00:32.0964 4972 Wd - ok
21:00:32.0980 4972 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:00:32.0983 4972 Wdf01000 - ok
21:00:32.0993 4972 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:00:32.0995 4972 WdiServiceHost - ok
21:00:32.0999 4972 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:00:33.0001 4972 WdiSystemHost - ok
21:00:33.0017 4972 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:00:33.0020 4972 WebClient - ok
21:00:33.0039 4972 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:00:33.0041 4972 Wecsvc - ok
21:00:33.0057 4972 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:00:33.0059 4972 wercplsupport - ok
21:00:33.0072 4972 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:00:33.0074 4972 WerSvc - ok
21:00:33.0083 4972 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:00:33.0084 4972 WfpLwf - ok
21:00:33.0100 4972 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:00:33.0101 4972 WIMMount - ok
21:00:33.0117 4972 WinDefend - ok
21:00:33.0122 4972 WinHttpAutoProxySvc - ok
21:00:33.0168 4972 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:00:33.0170 4972 Winmgmt - ok
21:00:33.0215 4972 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:00:33.0227 4972 WinRM - ok
21:00:33.0257 4972 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:00:33.0258 4972 WinUsb - ok
21:00:33.0285 4972 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:00:33.0291 4972 Wlansvc - ok
21:00:33.0311 4972 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:00:33.0312 4972 WmiAcpi - ok
21:00:33.0324 4972 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:00:33.0326 4972 wmiApSrv - ok
21:00:33.0334 4972 WMPNetworkSvc - ok
21:00:33.0344 4972 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:00:33.0346 4972 WPCSvc - ok
21:00:33.0360 4972 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:00:33.0363 4972 WPDBusEnum - ok
21:00:33.0366 4972 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:00:33.0367 4972 ws2ifsl - ok
21:00:33.0382 4972 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:00:33.0384 4972 wscsvc - ok
21:00:33.0387 4972 WSearch - ok
21:00:33.0441 4972 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:00:33.0454 4972 wuauserv - ok
21:00:33.0464 4972 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:00:33.0465 4972 WudfPf - ok
21:00:33.0489 4972 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:00:33.0490 4972 WUDFRd - ok
21:00:33.0506 4972 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:00:33.0508 4972 wudfsvc - ok
21:00:33.0525 4972 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:00:33.0528 4972 WwanSvc - ok
21:00:33.0548 4972 [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
21:00:33.0549 4972 xusb21 - ok
21:00:33.0552 4972 ================ Scan global ===============================
21:00:33.0572 4972 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:00:33.0594 4972 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:00:33.0611 4972 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:00:33.0632 4972 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:00:33.0655 4972 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:00:33.0658 4972 [Global] - ok
21:00:33.0658 4972 ================ Scan MBR ==================================
21:00:33.0672 4972 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:00:33.0946 4972 \Device\Harddisk0\DR0 - ok
21:00:33.0947 4972 ================ Scan VBR ==================================
21:00:33.0950 4972 [ 77740EC78769FB3D43FCA85EC7BEE315 ] \Device\Harddisk0\DR0\Partition1
21:00:33.0951 4972 \Device\Harddisk0\DR0\Partition1 - ok
21:00:33.0965 4972 [ 8A37ECAF24C82C8DB53883521FD202CF ] \Device\Harddisk0\DR0\Partition2
21:00:33.0966 4972 \Device\Harddisk0\DR0\Partition2 - ok
21:00:33.0981 4972 [ FA5D6A5F7FAAAE99A90560378E3B48F5 ] \Device\Harddisk0\DR0\Partition3
21:00:33.0983 4972 \Device\Harddisk0\DR0\Partition3 - ok
21:00:33.0983 4972 ============================================================
21:00:33.0983 4972 Scan finished
21:00:33.0983 4972 ============================================================
21:00:33.0991 0648 Detected object count: 1
21:00:33.0991 0648 Actual detected object count: 1
21:01:44.0854 0648 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
21:01:44.0854 0648 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
|
|
09.11.2012, 21:15
| #8 | ||
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Gut, dann jetzt bitte Combofix ausführen. Scan mit Combofix
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
10.11.2012, 20:59
| #9 |
| | Telekom Brief Abuse bzgl. Spam-Mails Hallo, hier das Ergenis von combofix: Code:
ATTFilter ComboFix 12-11-09.02 - Herbert Matzka 10.11.2012 20:25:51.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.4095.2966 [GMT 1:00]
ausgeführt von:: c:\users\Herbert Matzka\Desktop\ComboFix.exe
AV: McAfee Anti-Virus und Anti-Spyware *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
FW: McAfee Firewall *Disabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
SP: McAfee Anti-Virus und Anti-Spyware *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Common Files\packardbell.ico
c:\programdata\FullRemove.exe
c:\users\Herbert Matzka\AppData\Roaming\.#
c:\users\Herbert Matzka\AppData\Roaming\BBF0.exe
c:\windows\IsUn0407.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-10-10 bis 2012-11-10 ))))))))))))))))))))))))))))))
.
.
2012-11-10 19:32 . 2012-11-10 19:32 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-07 13:36 . 2012-11-07 13:36 -------- d-----w- c:\users\Herbert Matzka\AppData\Local\Oblivion
2012-11-07 13:29 . 2012-11-07 13:29 -------- d-----w- c:\program files (x86)\Bethesda Softworks
2012-11-07 13:28 . 2005-04-03 22:02 753664 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2012-11-07 13:28 . 2005-04-03 22:02 69714 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2012-11-07 13:28 . 2005-04-03 22:01 274432 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2012-11-07 13:28 . 2005-04-03 22:00 184320 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2012-11-07 13:28 . 2005-04-03 22:00 63488 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe
2012-11-07 13:28 . 2005-04-03 21:59 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2012-11-07 13:28 . 2012-11-07 13:28 200836 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2012-11-07 13:28 . 2012-11-07 13:28 331908 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2012-11-04 08:38 . 2012-11-04 08:38 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-11-04 08:38 . 2012-11-04 08:38 588728 ----a-w- c:\program files (x86)\Mozilla Firefox\gkmedias.dll
2012-11-04 08:38 . 2012-11-04 08:38 43960 ----a-w- c:\program files (x86)\Mozilla Firefox\mozglue.dll
2012-11-04 08:38 . 2012-11-04 08:38 157352 ----a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice_installer.exe
2012-11-04 08:38 . 2012-11-04 08:38 129976 ----a-w- c:\program files (x86)\Mozilla Firefox\maintenanceservice.exe
2012-10-30 19:43 . 2012-10-30 19:43 -------- d-----w- c:\users\Herbert Matzka\AppData\Roaming\.terasology
2012-10-26 03:46 . 2012-10-26 03:46 -------- d-----w- c:\windows\Sun
2012-10-22 16:04 . 2012-11-09 19:51 -------- d-----w- c:\program files (x86)\AVG Secure Search
2012-10-21 18:04 . 2012-10-21 18:04 -------- d-----w- c:\users\Herbert Matzka\AppData\Local\CRE
2012-10-20 16:42 . 2012-10-20 16:42 -------- d-----w- c:\program files (x86)\Common Files\Java
2012-10-20 16:41 . 2012-10-20 16:41 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-20 16:41 . 2012-10-20 16:41 -------- d-----w- c:\program files (x86)\Java
2012-10-19 20:43 . 2012-11-07 14:19 -------- d-----w- c:\users\Herbert Matzka\AppData\Roaming\.minecraft
2012-10-19 20:42 . 2012-10-20 16:41 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-19 20:42 . 2012-10-20 16:41 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-26 02:25 . 2012-08-31 23:41 893552 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
2012-10-26 02:25 . 2012-08-31 23:41 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
2012-10-26 02:25 . 2011-08-14 13:34 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-10-22 16:04 . 2012-08-23 11:15 30568 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-10-09 14:18 . 2012-05-06 13:13 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-09 14:18 . 2012-02-08 21:11 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-09-29 18:54 . 2011-10-12 14:53 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-09-23 12:13 . 2011-08-14 13:34 893552 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-09-23 12:13 . 2011-08-14 13:34 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-09-23 12:13 . 2011-10-08 23:17 1236816 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-09-14 19:19 . 2012-10-10 16:41 2048 ----a-w- c:\windows\system32\tzres.dll
2012-09-14 18:28 . 2012-10-10 16:41 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-09-11 20:55 . 2011-08-04 14:33 64462936 ----a-w- c:\windows\system32\MRT.exe
2012-08-31 18:19 . 2012-10-10 16:43 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-30 18:03 . 2012-10-10 16:43 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-30 17:12 . 2012-10-10 16:43 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2012-08-30 17:12 . 2012-10-10 16:43 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2012-08-24 18:05 . 2012-10-10 16:42 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-08-24 16:57 . 2012-10-10 16:42 172544 ----a-w- c:\windows\SysWow64\wintrust.dll
2012-08-24 11:15 . 2012-09-23 12:16 17810944 ----a-w- c:\windows\system32\mshtml.dll
2012-08-24 10:39 . 2012-09-23 12:16 10925568 ----a-w- c:\windows\system32\ieframe.dll
2012-08-24 10:31 . 2012-09-23 12:16 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 10:22 . 2012-09-23 12:16 1346048 ----a-w- c:\windows\system32\urlmon.dll
2012-08-24 10:21 . 2012-09-23 12:16 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 10:20 . 2012-09-23 12:16 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 10:18 . 2012-09-23 12:16 237056 ----a-w- c:\windows\system32\url.dll
2012-08-24 10:17 . 2012-09-23 12:16 85504 ----a-w- c:\windows\system32\jsproxy.dll
2012-08-24 10:14 . 2012-09-23 12:16 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2012-08-24 10:14 . 2012-09-23 12:16 816640 ----a-w- c:\windows\system32\jscript.dll
2012-08-24 10:13 . 2012-09-23 12:16 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 10:12 . 2012-09-23 12:16 2144768 ----a-w- c:\windows\system32\iertutil.dll
2012-08-24 10:11 . 2012-09-23 12:16 729088 ----a-w- c:\windows\system32\msfeeds.dll
2012-08-24 10:10 . 2012-09-23 12:16 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-08-24 10:09 . 2012-09-23 12:16 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-24 10:04 . 2012-09-23 12:16 248320 ----a-w- c:\windows\system32\ieui.dll
2012-08-24 06:59 . 2012-09-23 12:16 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
2012-08-24 06:51 . 2012-09-23 12:16 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2012-08-24 06:51 . 2012-09-23 12:16 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2012-08-24 06:47 . 2012-09-23 12:16 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2012-08-24 06:47 . 2012-09-23 12:16 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2012-08-24 06:43 . 2012-09-23 12:16 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2012-08-22 18:12 . 2012-09-11 20:22 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12 . 2012-09-11 20:22 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12 . 2012-09-11 20:22 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-08-22 18:12 . 2012-09-11 20:22 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-08-21 21:01 . 2012-09-26 19:43 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2012-08-21 11:01 . 2012-10-01 12:21 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-08-21 11:01 . 2012-07-20 18:58 125872 ----a-w- c:\windows\system32\GEARAspi64.dll
2012-08-21 11:01 . 2012-07-20 18:58 106928 ----a-w- c:\windows\SysWow64\GEARAspi.dll
2012-08-20 18:48 . 2012-10-10 16:43 243200 ----a-w- c:\windows\system32\wow64.dll
2012-08-20 18:48 . 2012-10-10 16:43 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-08-20 18:48 . 2012-10-10 16:43 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-08-20 18:48 . 2012-10-10 16:43 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-08-20 18:48 . 2012-10-10 16:43 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-08-20 18:48 . 2012-10-10 16:43 424448 ----a-w- c:\windows\system32\KernelBase.dll
2012-08-20 18:48 . 2012-10-10 16:43 1162240 ----a-w- c:\windows\system32\kernel32.dll
2012-08-20 18:46 . 2012-10-10 16:43 338432 ----a-w- c:\windows\system32\conhost.exe
2012-08-20 18:38 . 2012-10-10 16:42 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-08-20 18:38 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-08-20 17:40 . 2012-10-10 16:43 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2012-08-20 17:38 . 2012-10-10 16:43 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-08-20 17:38 . 2012-10-10 16:43 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2012-08-20 17:37 . 2012-10-10 16:43 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2012-08-20 17:37 . 2012-10-10 16:43 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-08-20 17:32 . 2012-10-10 16:43 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:43 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:43 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-08-20 17:32 . 2012-10-10 16:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2010-08-03 10:11 819200 --sha-w- c:\windows\SysWOW64\xvidcore.dll
2010-08-03 10:11 180224 --sha-w- c:\windows\SysWOW64\xvidvfw.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-11-09 19:51 1796552 ----a-w- c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll" [2012-11-09 1796552]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Herbert Matzka\AppData\Local\Akamai\netsession_win.exe" [2012-08-10 4440896]
"Rynga"="c:\program files (x86)\Rynga.com\Rynga\Rynga.exe" [2012-09-06 23069072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-25 588648]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-13 98304]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-21 1675160]
"EEventManager"="c:\program files (x86)\Epson Software\Event Manager\EEventManager.exe" [2010-08-30 979328]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-11-09 997320]
"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5.5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"ROC_roc_ssl_v12"="c:\program files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" [2012-10-22 1020512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 dump_wmimmc;dump_wmimmc;c:\aeriagames\Wolfteam-DE\GameGuard\dump_wmimmc.sys [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-02-22 100912]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 OberonGameConsoleService;Oberon Media Game Console service;c:\program files (x86)\Packard Bell GameZone\GameConsole\OberonGameConsoleService.exe [2009-08-29 44312]
R3 PCDSRVC{D368CD8C-4CE20E91-06020101}_0;PCDSRVC{D368CD8C-4CE20E91-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\users\admini~1\appdata\local\temp\an7ndlmg13co\pcdrdiag\bin\pcdsrvc_x64.pkms [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-02-22 289664]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-10-22 30568]
S1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2012-02-22 75936]
S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048]
S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-13 202752]
S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-08-28 1150496]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2011-01-27 249936]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2012-03-20 210584]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-03-20 162192]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2011-12-13 2028864]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160]
S2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe [2012-10-22 711112]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-02-22 65264]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-02-22 487296]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2011-06-06 11856]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - mfeavfk01
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Inhalt des "geplante Tasks" Ordners
.
2012-11-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-06 14:18]
.
2012-11-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-07-28 15:47]
.
2012-11-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-07-28 15:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-11-17 9608224]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDY&co=DE&userid=b811a925-5018-4d2d-b39f-f78ecd07b8ec&affid=111583&searchtype=hp&babsrc=lnkry_nt
mDefault_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&m=imedia_s1300&r=17360110gd8f2951418j45f564816r
mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0407&m=imedia_s1300&r=17360110gd8f2951418j45f564816r
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = 127.0.0.1:9421;<local>;*.local
uSearchAssistant = hxxp://feed.helperbar.com/?publisher=OPENCANDY&dpid=OPENCANDY&co=DE&userid=b811a925-5018-4d2d-b39f-f78ecd07b8ec&affid=111583&searchtype=ds&babsrc=lnkry&q={searchTerms}
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
FF - ProfilePath - c:\users\Herbert Matzka\AppData\Roaming\Mozilla\Firefox\Profiles\gcam7pyj.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851647&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)
FF - prefs.js: browser.startup.homepage - hxxp://www.searchqu.com/406
FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2851647&SearchSource=2&q=
FF - prefs.js: network.proxy.type - 0
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
BHO-{99079a25-328f-4bd4-be04-00955acaa0a7} - c:\progra~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
Toolbar-Locked - (no file)
Toolbar-{99079a25-328f-4bd4-be04-00955acaa0a7} - c:\progra~2\WI3C8A~1\Datamngr\ToolBar\searchqudtx.dll
Toolbar-10 - (no file)
Wow6432Node-HKLM-Run-ROC_roc_dec12 - c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe
Wow6432Node-HKLM-Run-HF_G_Jul - c:\program files (x86)\AVG Secure Search\HF_G_Jul.exe
Wow6432Node-HKLM-Run-ROC_ROC_JULY_P1 - c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-Adobe Acrobat 5.0 - c:\windows\ISUN0407.EXE
AddRemove-{33A22B2D-55BA-4508-B767-BF2E9C21A73F} - c:\program files (x86)\InstallShield Installation Information\{33A22B2D-55BA-4508-B767-BF2E9C21A73F}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_b5e8a4c.dll"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{D368CD8C-4CE20E91-06020101}_0]
"ImagePath"="\??\c:\users\admini~1\appdata\local\temp\an7ndlmg13co\pcdrdiag\bin\pcdsrvc_x64.pkms"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2012-11-10 20:33:55
ComboFix-quarantined-files.txt 2012-11-10 19:33
.
Vor Suchlauf: 11 Verzeichnis(se), 223.154.671.616 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 226.055.909.376 Bytes frei
.
- - End Of File - - 006B6C29FF5932FD89F557D623EE3E66
|
|
11.11.2012, 16:31
| #10 |
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Das sieht doch schon mal erfreulich aus. Es geht weiter mit Restebeseitigung: Schritt 1: AdwCleaner: Werbeprogramme suchen und löschen Schritt 2: Customscan mit OTL Schritt 3: Scan mit SecurityCheck Downloade Dir bitte SecurityCheck
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
13.11.2012, 14:42
| #11 |
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Hallo, benötigst Du noch weiterhin Hilfe ? Sollte ich innerhalb der nächsten 24 Stunden keine Antwort von dir erhalten, werde ich dein Thema aus meinen Abos nehmen und bekomme dadurch keine Nachricht über neue Antworten. Das Verschwinden der Symptome bedeutet nicht, dass dein System schon sauber ist
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
14.11.2012, 17:27
| #12 |
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Fehlende Rückmeldung Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten. PM an mich falls Du denoch weiter machen willst. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
16.11.2012, 16:17
| #13 |
| /// TB-Ausbilder | Telekom Brief Abuse bzgl. Spam-Mails Fehlende Rückmeldung Dieses Thema wurde aus den Abos gelöscht. Somit bekomm ich keine Benachrichtigung über neue Antworten. PM an mich falls Du denoch weiter machen willst. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und einen eigenen Thread erstellen
__________________ Digitale Freibeuter gegen Malware! Keine Hilfe per PM! |
|
| Themen zu Telekom Brief Abuse bzgl. Spam-Mails |
| administrator, anschluss, anti-malware, appdata, autostart, brief, dateien, explorer, gelöscht, install, install.exe, leute, logdatei, malwarebytes, microsoft, namen, port, quarantäne, service, software, speicher, svchost.exe, telekom, temp, trojan.agent.ge, uninstall.exe, version, vlc player |
Textbox.
Linear-Darstellung
