| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Ukash Bundespolizei Infektion - Logs anbeiWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
25.11.2012, 15:51
| #9 |
 |  Ukash Bundespolizei Infektion - Logs anbei Der OLT-Fix hat beim Scan wieder den kritischen Fehler generiert (System startet in 1min neu), aber war lange vor dem Zwangsneustart fertig. Das Log sah auch so "fertig" aus wie die obigen, korrekt gelaufenen Fixes: Code:
ATTFilter All processes killed
========== OTL ==========
========== FILES ==========
File\Folder C:\ProgramData\*.exe not found.
File\Folder C:\ProgramData\*.dll not found.
File\Folder C:\ProgramData\*.tmp not found.
File\Folder C:\ProgramData\TEMP not found.
File\Folder C:\Users\Zellerli\*.tmp not found.
File\Folder C:\Users\Zellerli\AppData\Local\Temp\*.exe not found.
File\Folder C:\Users\Zellerli\AppData\LocalLow\Sun\Java\Deployment\cache not found.
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\Zellerli\Desktop\cmd.bat deleted successfully.
C:\Users\Zellerli\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Public
User: Zellerli
->Temp folder emptied: 569859 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 11252012_151821
Files\Folders moved on Reboot...
C:\Users\Zellerli\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Zellerli\AppData\Local\Temp\Plan Auftritte.doc not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
Malwarebytes Anti-Rootkit hat mir gratuliert und nichts gefunden: Code:
ATTFilter Malwarebytes Anti-Rootkit 1.1.0.1009
www.malwarebytes.org
Database version: v2012.11.25.02
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Zellerli :: LAEMMERSPIEL [administrator]
25.11.2012 15:36:58
mbar-log-2012-11-25 (15-36-58).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: PUP | PUM | P2P
Objects scanned: 27805
Time elapsed: 7 minute(s), 33 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Ich drücke Scan, es scannt und findet eine verdächtige, verschlüsselte Datei mit mittlerem Risiko. Die C:\Windows\system32\Drivers\sptd.sys Ich wähle "copy to quarantine" und drücke "continue". Es erscheint der Bericht (1474 objects, 1 threat, 1 quarantined) und wieder der Startbildschirm mit dem Button "Start scan" und "close". Scanne ich wieder, findet er wieder diese Datei (obwohl sie doch in Quarantäne ist... ?). Drücke ich "close", kommt keinerlei weitere Aufforderung (z.B. zum Neustart). Auch nach einem manuellen Neustart, geht dieser Kreislauf weiter (wieder der gleiche Fund). edit: Habe diesmal "delete" gewählt und er will neu starten. Nach dem Neustart ist die File weg und der Scan ist ganz clean. Log-Files gibt es dazu mehrere. Das hier ist das erste (wo ich nur quarantäniert habe), brauchst du andere Logs, sag bescheid!: Code:
ATTFilter 15:38:39.0792 5396 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:38:39.0807 5396 ============================================================
15:38:39.0807 5396 Current date / time: 2012/11/25 15:38:39.0807
15:38:39.0807 5396 SystemInfo:
15:38:39.0807 5396
15:38:39.0807 5396 OS Version: 6.1.7601 ServicePack: 1.0
15:38:39.0807 5396 Product type: Workstation
15:38:39.0807 5396 ComputerName: LAEMMERSPIEL
15:38:39.0807 5396 UserName: Zellerli
15:38:39.0807 5396 Windows directory: C:\Windows
15:38:39.0807 5396 System windows directory: C:\Windows
15:38:39.0807 5396 Running under WOW64
15:38:39.0807 5396 Processor architecture: Intel x64
15:38:39.0807 5396 Number of processors: 4
15:38:39.0807 5396 Page size: 0x1000
15:38:39.0807 5396 Boot type: Normal boot
15:38:39.0807 5396 ============================================================
15:38:40.0728 5396 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
15:38:40.0728 5396 Drive \Device\Harddisk1\DR1 - Size: 0x74000000 (1.81 Gb), SectorSize: 0x200, Cylinders: 0xEC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:38:40.0759 5396 ============================================================
15:38:40.0759 5396 \Device\Harddisk0\DR0:
15:38:40.0759 5396 MBR partitions:
15:38:40.0759 5396 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:38:40.0759 5396 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x73313AB0
15:38:40.0790 5396 \Device\Harddisk1\DR1:
15:38:40.0790 5396 MBR partitions:
15:38:40.0790 5396 ============================================================
15:38:40.0853 5396 C: <-> \Device\Harddisk0\DR0\Partition2
15:38:40.0853 5396 ============================================================
15:38:40.0853 5396 Initialize success
15:38:40.0853 5396 ============================================================
15:38:51.0289 5012 ============================================================
15:38:51.0289 5012 Scan started
15:38:51.0289 5012 Mode: Manual;
15:38:51.0289 5012 ============================================================
15:38:51.0695 5012 ================ Scan system memory ========================
15:38:51.0695 5012 System memory - ok
15:38:51.0695 5012 ================ Scan services =============================
15:38:51.0897 5012 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:38:51.0897 5012 1394ohci - ok
15:38:51.0960 5012 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:38:51.0960 5012 ACPI - ok
15:38:52.0022 5012 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:38:52.0022 5012 AcpiPmi - ok
15:38:52.0241 5012 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:38:52.0241 5012 AdobeARMservice - ok
15:38:52.0303 5012 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:38:52.0303 5012 adp94xx - ok
...
[Skript gekürzt wegen Zeichenüberschreitung: Hier standen diverse Files aus dem Ordner, alle mit "ok" - brauchst du das volle Skript, werde ich es als Anhang hochladen!]
...
15:39:08.0121 5012 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:39:08.0137 5012 Spooler - ok
15:39:08.0324 5012 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:39:08.0355 5012 sppsvc - ok
15:39:08.0387 5012 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:39:08.0387 5012 sppuinotify - ok
15:39:08.0418 5012 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
15:39:08.0418 5012 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
15:39:08.0418 5012 sptd ( LockedFile.Multi.Generic ) - warning
15:39:08.0418 5012 sptd - detected LockedFile.Multi.Generic (1)
15:39:08.0511 5012 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:39:08.0511 5012 srv - ok
15:39:08.0699 5012 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:39:08.0699 5012 srv2 - ok
15:39:08.0714 5012 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:39:08.0714 5012 srvnet - ok
15:39:08.0761 5012 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:39:08.0761 5012 SSDPSRV - ok
15:39:08.0761 5012 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:39:08.0761 5012 SstpSvc - ok
15:39:08.0823 5012 Steam Client Service - ok
15:39:08.0855 5012 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:39:08.0855 5012 stexstor - ok
15:39:09.0011 5012 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:39:09.0011 5012 stisvc - ok
15:39:09.0073 5012 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
15:39:09.0073 5012 storflt - ok
15:39:09.0120 5012 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
15:39:09.0120 5012 StorSvc - ok
15:39:09.0213 5012 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
15:39:09.0213 5012 storvsc - ok
15:39:09.0276 5012 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:39:09.0276 5012 swenum - ok
15:39:09.0323 5012 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:39:09.0323 5012 swprv - ok
15:39:09.0416 5012 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:39:09.0432 5012 SysMain - ok
15:39:09.0525 5012 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:39:09.0525 5012 TabletInputService - ok
15:39:09.0635 5012 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:39:09.0635 5012 TapiSrv - ok
15:39:09.0681 5012 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:39:09.0681 5012 TBS - ok
15:39:09.0900 5012 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:39:09.0931 5012 Tcpip - ok
15:39:10.0025 5012 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:39:10.0040 5012 TCPIP6 - ok
15:39:10.0118 5012 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:39:10.0118 5012 tcpipreg - ok
15:39:10.0165 5012 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:39:10.0165 5012 TDPIPE - ok
15:39:10.0368 5012 [ 1226A953D4FDBDFD570DA5CEE66EAA55 ] TDslMgrService C:\Program Files (x86)\DSL-Manager\DslMgrSvc.exe
15:39:10.0493 5012 TDslMgrService - ok
15:39:10.0555 5012 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:39:10.0555 5012 TDTCP - ok
15:39:10.0664 5012 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:39:10.0664 5012 tdx - ok
15:39:10.0680 5012 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:39:10.0680 5012 TermDD - ok
15:39:10.0836 5012 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:39:10.0836 5012 TermService - ok
15:39:10.0851 5012 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:39:10.0867 5012 Themes - ok
15:39:10.0883 5012 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:39:10.0883 5012 THREADORDER - ok
15:39:10.0898 5012 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:39:10.0914 5012 TrkWks - ok
15:39:11.0007 5012 [ 8DE922CD4FEA6F83B10805DF965B9A08 ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
15:39:11.0007 5012 truecrypt - ok
15:39:11.0101 5012 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:39:11.0101 5012 TrustedInstaller - ok
15:39:11.0163 5012 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:39:11.0163 5012 tssecsrv - ok
15:39:11.0241 5012 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:39:11.0241 5012 TsUsbFlt - ok
15:39:11.0304 5012 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:39:11.0304 5012 tunnel - ok
15:39:11.0319 5012 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:39:11.0319 5012 uagp35 - ok
15:39:11.0382 5012 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:39:11.0382 5012 udfs - ok
15:39:11.0413 5012 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:39:11.0413 5012 UI0Detect - ok
15:39:11.0444 5012 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:39:11.0444 5012 uliagpkx - ok
15:39:11.0507 5012 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
15:39:11.0507 5012 umbus - ok
15:39:11.0538 5012 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:39:11.0538 5012 UmPass - ok
15:39:11.0600 5012 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
15:39:11.0616 5012 UmRdpService - ok
15:39:11.0694 5012 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
15:39:11.0694 5012 UMVPFSrv - ok
15:39:11.0709 5012 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:39:11.0725 5012 upnphost - ok
15:39:11.0741 5012 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:39:11.0741 5012 usbaudio - ok
15:39:11.0819 5012 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:39:11.0819 5012 usbccgp - ok
15:39:11.0881 5012 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:39:11.0881 5012 usbcir - ok
15:39:11.0943 5012 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:39:11.0943 5012 usbehci - ok
15:39:12.0006 5012 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:39:12.0006 5012 usbhub - ok
15:39:12.0037 5012 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:39:12.0037 5012 usbohci - ok
15:39:12.0084 5012 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:39:12.0084 5012 usbprint - ok
15:39:12.0099 5012 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:39:12.0099 5012 USBSTOR - ok
15:39:12.0162 5012 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:39:12.0162 5012 usbuhci - ok
15:39:12.0224 5012 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
15:39:12.0224 5012 usb_rndisx - ok
15:39:12.0240 5012 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:39:12.0240 5012 UxSms - ok
15:39:12.0271 5012 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:39:12.0271 5012 VaultSvc - ok
15:39:12.0333 5012 [ 6922612DCD53E825CDEB59227E2FB8E4 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
15:39:12.0333 5012 VBoxDrv - ok
15:39:12.0380 5012 [ 560BA2FB23485907C9D46AA4AFF6888A ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
15:39:12.0380 5012 VBoxUSB - ok
15:39:12.0443 5012 [ 955C497F1DFDBC2808F2700145EA918C ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
15:39:12.0443 5012 VBoxUSBMon - ok
15:39:12.0458 5012 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:39:12.0458 5012 vdrvroot - ok
15:39:12.0521 5012 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:39:12.0536 5012 vds - ok
15:39:12.0552 5012 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:39:12.0552 5012 vga - ok
15:39:12.0567 5012 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:39:12.0567 5012 VgaSave - ok
15:39:12.0645 5012 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:39:12.0645 5012 vhdmp - ok
15:39:12.0770 5012 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:39:12.0770 5012 viaide - ok
15:39:12.0833 5012 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
15:39:12.0833 5012 vmbus - ok
15:39:12.0895 5012 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
15:39:12.0895 5012 VMBusHID - ok
15:39:12.0973 5012 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:39:12.0973 5012 volmgr - ok
15:39:13.0051 5012 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:39:13.0051 5012 volmgrx - ok
15:39:13.0067 5012 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:39:13.0067 5012 volsnap - ok
15:39:13.0223 5012 [ 4F4125C8E7FB75FED141316E0DFEBE4F ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
15:39:13.0223 5012 vpnagent - ok
15:39:13.0301 5012 [ 13E6D95E7AC67ABB7A1196557EF8849F ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys
15:39:13.0301 5012 vpnva - ok
15:39:13.0332 5012 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:39:13.0347 5012 vsmraid - ok
15:39:13.0425 5012 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:39:13.0441 5012 VSS - ok
15:39:13.0457 5012 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:39:13.0457 5012 vwifibus - ok
15:39:13.0488 5012 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:39:13.0488 5012 W32Time - ok
15:39:13.0581 5012 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
15:39:13.0597 5012 W3SVC - ok
15:39:13.0613 5012 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:39:13.0613 5012 WacomPen - ok
15:39:13.0628 5012 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:39:13.0628 5012 WANARP - ok
15:39:13.0628 5012 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:39:13.0628 5012 Wanarpv6 - ok
15:39:13.0659 5012 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
15:39:13.0659 5012 WAS - ok
15:39:13.0737 5012 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:39:13.0753 5012 wbengine - ok
15:39:13.0769 5012 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:39:13.0769 5012 WbioSrvc - ok
15:39:13.0800 5012 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
15:39:13.0800 5012 WcesComm - ok
15:39:13.0862 5012 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:39:13.0862 5012 wcncsvc - ok
15:39:13.0878 5012 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:39:13.0878 5012 WcsPlugInService - ok
15:39:13.0893 5012 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:39:13.0893 5012 Wd - ok
15:39:13.0956 5012 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:39:13.0971 5012 Wdf01000 - ok
15:39:13.0987 5012 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:39:13.0987 5012 WdiServiceHost - ok
15:39:13.0987 5012 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:39:14.0003 5012 WdiSystemHost - ok
15:39:14.0065 5012 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:39:14.0081 5012 WebClient - ok
15:39:14.0096 5012 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:39:14.0096 5012 Wecsvc - ok
15:39:14.0112 5012 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:39:14.0112 5012 wercplsupport - ok
15:39:14.0143 5012 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:39:14.0143 5012 WerSvc - ok
15:39:14.0159 5012 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:39:14.0159 5012 WfpLwf - ok
15:39:14.0174 5012 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:39:14.0174 5012 WIMMount - ok
15:39:14.0174 5012 WinDefend - ok
15:39:14.0190 5012 WinHttpAutoProxySvc - ok
15:39:14.0237 5012 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:39:14.0237 5012 Winmgmt - ok
15:39:14.0330 5012 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:39:14.0361 5012 WinRM - ok
15:39:14.0439 5012 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:39:14.0439 5012 WinUsb - ok
15:39:14.0471 5012 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:39:14.0486 5012 Wlansvc - ok
15:39:14.0642 5012 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:39:14.0658 5012 wlidsvc - ok
15:39:14.0705 5012 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:39:14.0705 5012 WmiAcpi - ok
15:39:14.0720 5012 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:39:14.0736 5012 wmiApSrv - ok
15:39:14.0736 5012 WMPNetworkSvc - ok
15:39:14.0751 5012 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:39:14.0751 5012 WPCSvc - ok
15:39:14.0814 5012 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:39:14.0814 5012 WPDBusEnum - ok
15:39:14.0845 5012 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:39:14.0845 5012 ws2ifsl - ok
15:39:14.0861 5012 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:39:14.0861 5012 wscsvc - ok
15:39:14.0861 5012 WSearch - ok
15:39:14.0970 5012 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:39:14.0985 5012 wuauserv - ok
15:39:15.0032 5012 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:39:15.0032 5012 WudfPf - ok
15:39:15.0063 5012 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:39:15.0063 5012 WUDFRd - ok
15:39:15.0126 5012 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:39:15.0141 5012 wudfsvc - ok
15:39:15.0157 5012 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:39:15.0157 5012 WwanSvc - ok
15:39:15.0188 5012 ================ Scan global ===============================
15:39:15.0204 5012 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:39:15.0266 5012 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:39:15.0282 5012 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:39:15.0297 5012 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:39:15.0329 5012 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:39:15.0329 5012 [Global] - ok
15:39:15.0329 5012 ================ Scan MBR ==================================
15:39:15.0344 5012 [ A3095E5B8060D0D6B97E87EC1BB50C3C ] \Device\Harddisk0\DR0
15:39:15.0422 5012 \Device\Harddisk0\DR0 - ok
15:39:15.0438 5012 [ BB51795341398A02FBB2FAB12C9A32E1 ] \Device\Harddisk1\DR1
15:39:15.0500 5012 \Device\Harddisk1\DR1 - ok
15:39:15.0500 5012 ================ Scan VBR ==================================
15:39:15.0500 5012 [ 0BD4D2F48AB403B4B7C748D7AE8CA845 ] \Device\Harddisk0\DR0\Partition1
15:39:15.0500 5012 \Device\Harddisk0\DR0\Partition1 - ok
15:39:15.0500 5012 [ 8C22E1A68D07F4139D4DE3E73E63A73D ] \Device\Harddisk0\DR0\Partition2
15:39:15.0500 5012 \Device\Harddisk0\DR0\Partition2 - ok
15:39:15.0500 5012 ============================================================
15:39:15.0500 5012 Scan finished
15:39:15.0500 5012 ============================================================
15:39:15.0516 5372 Detected object count: 1
15:39:15.0516 5372 Actual detected object count: 1
15:40:02.0113 5372 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
15:40:02.0113 5372 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
15:40:21.0457 5668 ============================================================
15:40:21.0457 5668 Scan started
15:40:21.0457 5668 Mode: Manual;
15:40:21.0457 5668 ============================================================
15:40:21.0722 5668 ================ Scan system memory ========================
15:40:21.0722 5668 System memory - ok
15:40:21.0722 5668 ================ Scan services =============================
15:40:21.0910 5668 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:40:21.0910 5668 1394ohci - ok
15:40:21.0972 5668 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:40:21.0972 5668 ACPI - ok
15:40:22.0034 5668 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:40:22.0034 5668 AcpiPmi - ok
15:40:22.0206 5668 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:40:22.0206 5668 AdobeARMservice - ok
15:40:22.0237 5668 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:40:22.0253 5668 adp94xx - ok
15:40:22.0268 5668 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:40:22.0268 5668 adpahci - ok
15:40:22.0284 5668 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:40:22.0284 5668 adpu320 - ok
15:40:22.0315 5668 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:40:22.0315 5668 AeLookupSvc - ok
15:40:22.0378 5668 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:40:22.0393 5668 AFD - ok
15:40:22.0440 5668 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:40:22.0440 5668 agp440 - ok
15:40:22.0456 5668 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:40:22.0456 5668 ALG - ok
15:40:22.0487 5668 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:40:22.0487 5668 aliide - ok
15:40:22.0534 5668 [ B4143CB1DD16AE73C6177C72F33450A6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:40:22.0534 5668 AMD External Events Utility - ok
15:40:22.0549 5668 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:40:22.0549 5668 amdide - ok
15:40:22.0565 5668 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:40:22.0565 5668 AmdK8 - ok
15:40:22.0705 5668 [ D1D06810BF7E21F5763EB06CB7E7262B ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
15:40:22.0721 5668 amdkmdag - ok
15:40:22.0752 5668 [ 6BA71D6616B56816E57394D77DD1BB6F ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:40:22.0752 5668 amdkmdap - ok
15:40:22.0768 5668 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:40:22.0768 5668 AmdPPM - ok
15:40:22.0830 5668 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:40:22.0830 5668 amdsata - ok
15:40:22.0846 5668 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:40:22.0846 5668 amdsbs - ok
15:40:22.0861 5668 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:40:22.0861 5668 amdxata - ok
15:40:22.0986 5668 [ C27D46B06D340293670450FCE9DFB166 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:40:22.0986 5668 AntiVirSchedulerService - ok
15:40:23.0064 5668 [ 72D90E56563165984224493069C69ED4 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:40:23.0064 5668 AntiVirService - ok
15:40:23.0314 5668 [ FB32F046A2578755FA0DA5052C6A9CD3 ] Apache2.2 C:\xamppDaten\xampp\apache\bin\httpd.exe
15:40:23.0314 5668 Apache2.2 - ok
15:40:23.0407 5668 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
15:40:23.0407 5668 AppHostSvc - ok
15:40:23.0454 5668 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:40:23.0454 5668 AppID - ok
15:40:23.0485 5668 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:40:23.0485 5668 AppIDSvc - ok
15:40:23.0548 5668 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:40:23.0548 5668 Appinfo - ok
15:40:23.0579 5668 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
15:40:23.0579 5668 AppMgmt - ok
15:40:23.0579 5668 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:40:23.0594 5668 arc - ok
15:40:23.0610 5668 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:40:23.0610 5668 arcsas - ok
15:40:23.0766 5668 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:40:23.0766 5668 aspnet_state - ok
15:40:23.0797 5668 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:40:23.0797 5668 AsyncMac - ok
15:40:23.0860 5668 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:40:23.0860 5668 atapi - ok
15:40:23.0891 5668 [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
15:40:23.0891 5668 AtiHdmiService - ok
15:40:24.0062 5668 [ D1D06810BF7E21F5763EB06CB7E7262B ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
15:40:24.0078 5668 atikmdag - ok
15:40:24.0156 5668 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:40:24.0156 5668 AudioEndpointBuilder - ok
15:40:24.0172 5668 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:40:24.0172 5668 AudioSrv - ok
15:40:24.0234 5668 [ B1224E6B086CD6548315B04AB575A23E ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:40:24.0234 5668 avgntflt - ok
15:40:24.0250 5668 [ ED45F12CFA62B83765C9C1496758CC87 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:40:24.0250 5668 avipbb - ok
15:40:24.0312 5668 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:40:24.0312 5668 AxInstSV - ok
15:40:24.0328 5668 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:40:24.0328 5668 b06bdrv - ok
15:40:24.0343 5668 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:40:24.0359 5668 b57nd60a - ok
15:40:24.0390 5668 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:40:24.0390 5668 BDESVC - ok
15:40:24.0406 5668 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:40:24.0406 5668 Beep - ok
15:40:24.0437 5668 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:40:24.0452 5668 BFE - ok
15:40:24.0499 5668 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:40:24.0499 5668 BITS - ok
15:40:24.0515 5668 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:40:24.0530 5668 blbdrive - ok
15:40:24.0593 5668 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:40:24.0593 5668 bowser - ok
15:40:24.0608 5668 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:40:24.0608 5668 BrFiltLo - ok
15:40:24.0624 5668 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:40:24.0624 5668 BrFiltUp - ok
15:40:24.0686 5668 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:40:24.0686 5668 Browser - ok
15:40:24.0702 5668 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:40:24.0702 5668 Brserid - ok
15:40:24.0718 5668 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:40:24.0718 5668 BrSerWdm - ok
15:40:24.0733 5668 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:40:24.0733 5668 BrUsbMdm - ok
15:40:24.0749 5668 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:40:24.0749 5668 BrUsbSer - ok
15:40:24.0764 5668 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:40:24.0764 5668 BTHMODEM - ok
15:40:24.0780 5668 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:40:24.0780 5668 bthserv - ok
15:40:24.0796 5668 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:40:24.0796 5668 cdfs - ok
15:40:24.0858 5668 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:40:24.0874 5668 cdrom - ok
15:40:24.0920 5668 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:40:24.0936 5668 CertPropSvc - ok
15:40:24.0936 5668 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:40:24.0936 5668 circlass - ok
15:40:24.0967 5668 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:40:24.0967 5668 CLFS - ok
15:40:25.0030 5668 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:40:25.0045 5668 clr_optimization_v2.0.50727_32 - ok
15:40:25.0076 5668 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:40:25.0076 5668 clr_optimization_v2.0.50727_64 - ok
15:40:25.0201 5668 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:40:25.0201 5668 clr_optimization_v4.0.30319_32 - ok
15:40:25.0217 5668 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:40:25.0232 5668 clr_optimization_v4.0.30319_64 - ok
15:40:25.0248 5668 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:40:25.0248 5668 CmBatt - ok
15:40:25.0264 5668 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:40:25.0264 5668 cmdide - ok
15:40:25.0326 5668 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:40:25.0326 5668 CNG - ok
15:40:25.0342 5668 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:40:25.0342 5668 Compbatt - ok
15:40:25.0357 5668 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:40:25.0357 5668 CompositeBus - ok
15:40:25.0373 5668 COMSysApp - ok
15:40:25.0388 5668 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:40:25.0388 5668 crcdisk - ok
15:40:25.0451 5668 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:40:25.0451 5668 CryptSvc - ok
15:40:25.0529 5668 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
15:40:25.0529 5668 CSC - ok
15:40:25.0607 5668 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
15:40:25.0607 5668 CscService - ok
15:40:25.0685 5668 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:40:25.0685 5668 DcomLaunch - ok
15:40:25.0716 5668 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:40:25.0716 5668 defragsvc - ok
15:40:25.0778 5668 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:40:25.0778 5668 DfsC - ok
15:40:25.0856 5668 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:40:25.0856 5668 Dhcp - ok
15:40:25.0872 5668 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:40:25.0872 5668 discache - ok
15:40:25.0872 5668 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:40:25.0872 5668 Disk - ok
15:40:25.0934 5668 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:40:25.0934 5668 Dnscache - ok
15:40:25.0997 5668 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:40:26.0012 5668 dot3svc - ok
15:40:26.0075 5668 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:40:26.0075 5668 DPS - ok
15:40:26.0106 5668 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:40:26.0106 5668 drmkaud - ok
15:40:26.0168 5668 [ D52EEB224DF107AAD9059597F0EB95CC ] DslMNLwf C:\Windows\system32\DRIVERS\dslmnlwf.sys
15:40:26.0168 5668 DslMNLwf - ok
15:40:26.0200 5668 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:40:26.0200 5668 DXGKrnl - ok
15:40:26.0215 5668 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:40:26.0231 5668 EapHost - ok
15:40:26.0293 5668 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:40:26.0309 5668 ebdrv - ok
15:40:26.0371 5668 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:40:26.0371 5668 EFS - ok
15:40:26.0418 5668 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:40:26.0434 5668 ehRecvr - ok
15:40:26.0449 5668 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:40:26.0449 5668 ehSched - ok
15:40:26.0480 5668 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:40:26.0480 5668 elxstor - ok
15:40:26.0543 5668 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:40:26.0543 5668 ErrDev - ok
15:40:26.0605 5668 [ 84486624268E078255BC7AA47F0960BC ] etdrv C:\Windows\etdrv.sys
15:40:26.0605 5668 etdrv - ok
15:40:26.0621 5668 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:40:26.0636 5668 EventSystem - ok
15:40:26.0636 5668 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:40:26.0652 5668 exfat - ok
15:40:26.0668 5668 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:40:26.0668 5668 fastfat - ok
15:40:26.0730 5668 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:40:26.0746 5668 Fax - ok
15:40:26.0761 5668 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:40:26.0761 5668 fdc - ok
15:40:26.0777 5668 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:40:26.0777 5668 fdPHost - ok
15:40:26.0792 5668 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:40:26.0792 5668 FDResPub - ok
15:40:26.0792 5668 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:40:26.0808 5668 FileInfo - ok
15:40:26.0808 5668 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:40:26.0808 5668 Filetrace - ok
15:40:26.0824 5668 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:40:26.0824 5668 flpydisk - ok
15:40:26.0886 5668 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:40:26.0886 5668 FltMgr - ok
15:40:26.0964 5668 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:40:26.0980 5668 FontCache - ok
15:40:27.0089 5668 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:40:27.0089 5668 FontCache3.0.0.0 - ok
15:40:27.0120 5668 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:40:27.0120 5668 FsDepends - ok
15:40:27.0167 5668 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:40:27.0167 5668 Fs_Rec - ok
15:40:27.0229 5668 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:40:27.0245 5668 fvevol - ok
15:40:27.0245 5668 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:40:27.0245 5668 gagp30kx - ok
15:40:27.0307 5668 [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv C:\Windows\gdrv.sys
15:40:27.0307 5668 gdrv - ok
15:40:27.0385 5668 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:40:27.0385 5668 gpsvc - ok
15:40:27.0494 5668 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:40:27.0510 5668 gupdate - ok
15:40:27.0510 5668 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:40:27.0510 5668 gupdatem - ok
15:40:27.0572 5668 [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64 C:\Windows\GVTDrv64.sys
15:40:27.0572 5668 GVTDrv64 - ok
15:40:27.0588 5668 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:40:27.0588 5668 hcw85cir - ok
15:40:27.0666 5668 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:40:27.0666 5668 HdAudAddService - ok
15:40:27.0744 5668 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:40:27.0744 5668 HDAudBus - ok
15:40:27.0760 5668 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:40:27.0760 5668 HidBatt - ok
15:40:27.0775 5668 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:40:27.0775 5668 HidBth - ok
15:40:27.0791 5668 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:40:27.0806 5668 HidIr - ok
15:40:27.0838 5668 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:40:27.0838 5668 hidserv - ok
15:40:27.0900 5668 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:40:27.0900 5668 HidUsb - ok
15:40:27.0962 5668 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:40:27.0962 5668 hkmsvc - ok
15:40:28.0025 5668 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:40:28.0025 5668 HomeGroupListener - ok
15:40:28.0056 5668 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:40:28.0072 5668 HomeGroupProvider - ok
15:40:28.0103 5668 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:40:28.0103 5668 HpSAMD - ok
15:40:28.0181 5668 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:40:28.0181 5668 HTTP - ok
15:40:28.0243 5668 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:40:28.0243 5668 hwpolicy - ok
15:40:28.0306 5668 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:40:28.0306 5668 i8042prt - ok
15:40:28.0368 5668 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:40:28.0368 5668 iaStorV - ok
15:40:28.0430 5668 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:40:28.0430 5668 IDriverT - ok
15:40:28.0477 5668 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:40:28.0493 5668 idsvc - ok
15:40:28.0508 5668 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:40:28.0524 5668 iirsp - ok
15:40:28.0602 5668 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:40:28.0602 5668 IKEEXT - ok
15:40:28.0758 5668 [ A4A57A57020849117EF7B1D905F2A16A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:40:28.0774 5668 IntcAzAudAddService - ok
15:40:28.0774 5668 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:40:28.0774 5668 intelide - ok
15:40:28.0789 5668 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:40:28.0789 5668 intelppm - ok
15:40:28.0805 5668 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:40:28.0805 5668 IPBusEnum - ok
15:40:28.0852 5668 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:40:28.0852 5668 IpFilterDriver - ok
15:40:28.0914 5668 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:40:28.0914 5668 iphlpsvc - ok
15:40:28.0976 5668 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:40:28.0976 5668 IPMIDRV - ok
15:40:28.0992 5668 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:40:28.0992 5668 IPNAT - ok
15:40:28.0992 5668 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:40:28.0992 5668 IRENUM - ok
15:40:29.0054 5668 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:40:29.0054 5668 isapnp - ok
15:40:29.0117 5668 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:40:29.0117 5668 iScsiPrt - ok
15:40:29.0132 5668 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:40:29.0132 5668 kbdclass - ok
15:40:29.0210 5668 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:40:29.0210 5668 kbdhid - ok
15:40:29.0210 5668 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:40:29.0226 5668 KeyIso - ok
15:40:29.0273 5668 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:40:29.0288 5668 KSecDD - ok
15:40:29.0335 5668 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:40:29.0335 5668 KSecPkg - ok
15:40:29.0351 5668 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:40:29.0351 5668 ksthunk - ok
15:40:29.0366 5668 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:40:29.0382 5668 KtmRm - ok
15:40:29.0444 5668 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:40:29.0444 5668 LanmanServer - ok
15:40:29.0507 5668 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:40:29.0507 5668 LanmanWorkstation - ok
15:40:29.0694 5668 [ 4ADC135F525D38A498F83B089228CC2D ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
15:40:29.0694 5668 LBTServ - ok
15:40:29.0756 5668 [ 24E09882BA51B9830AE029888A3AAF18 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
15:40:29.0756 5668 LHidFilt - ok
15:40:29.0788 5668 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:40:29.0788 5668 lltdio - ok
15:40:29.0803 5668 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:40:29.0803 5668 lltdsvc - ok
15:40:29.0834 5668 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:40:29.0834 5668 lmhosts - ok
15:40:29.0850 5668 [ 2F94325D8C10E2B715F3D753C2422AAC ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
15:40:29.0850 5668 LMouFilt - ok
15:40:29.0881 5668 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:40:29.0881 5668 LSI_FC - ok
15:40:29.0897 5668 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:40:29.0897 5668 LSI_SAS - ok
15:40:29.0912 5668 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:40:29.0912 5668 LSI_SAS2 - ok
15:40:29.0928 5668 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:40:29.0928 5668 LSI_SCSI - ok
15:40:29.0944 5668 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:40:29.0944 5668 luafv - ok
15:40:30.0006 5668 [ B8BE35421B9E8DC1AB4B0CB7B9B0328B ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
15:40:30.0006 5668 LUsbFilt - ok
15:40:30.0037 5668 [ EF586B959F747E74C76603FF16AE417B ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
15:40:30.0037 5668 LVRS64 - ok
15:40:30.0178 5668 [ EDF73BFA1BD24D74D1D64DC0ED28A7CD ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
15:40:30.0193 5668 LVUVC64 - ok
15:40:30.0256 5668 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:40:30.0271 5668 Mcx2Svc - ok
15:40:30.0334 5668 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
15:40:30.0334 5668 MDM - ok
15:40:30.0349 5668 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:40:30.0349 5668 megasas - ok
15:40:30.0380 5668 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:40:30.0380 5668 MegaSR - ok
15:40:30.0396 5668 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:40:30.0396 5668 MMCSS - ok
15:40:30.0412 5668 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:40:30.0412 5668 Modem - ok
15:40:30.0427 5668 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:40:30.0443 5668 monitor - ok
15:40:30.0458 5668 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:40:30.0458 5668 mouclass - ok
15:40:30.0474 5668 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:40:30.0474 5668 mouhid - ok
15:40:30.0536 5668 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:40:30.0536 5668 mountmgr - ok
15:40:30.0599 5668 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:40:30.0599 5668 mpio - ok
15:40:30.0599 5668 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:40:30.0599 5668 mpsdrv - ok
15:40:30.0677 5668 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:40:30.0692 5668 MpsSvc - ok
15:40:30.0739 5668 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:40:30.0739 5668 MRxDAV - ok
15:40:30.0802 5668 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:40:30.0802 5668 mrxsmb - ok
15:40:30.0864 5668 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:40:30.0864 5668 mrxsmb10 - ok
15:40:30.0942 5668 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:40:30.0942 5668 mrxsmb20 - ok
15:40:30.0942 5668 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:40:30.0958 5668 msahci - ok
15:40:31.0004 5668 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:40:31.0004 5668 msdsm - ok
15:40:31.0020 5668 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:40:31.0020 5668 MSDTC - ok
15:40:31.0051 5668 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:40:31.0051 5668 Msfs - ok
15:40:31.0067 5668 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:40:31.0067 5668 mshidkmdf - ok
15:40:31.0114 5668 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:40:31.0114 5668 msisadrv - ok
15:40:31.0160 5668 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:40:31.0160 5668 MSiSCSI - ok
15:40:31.0160 5668 msiserver - ok
15:40:31.0192 5668 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:40:31.0192 5668 MSKSSRV - ok
15:40:31.0223 5668 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:40:31.0223 5668 MSPCLOCK - ok
15:40:31.0223 5668 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:40:31.0223 5668 MSPQM - ok
15:40:31.0301 5668 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:40:31.0301 5668 MsRPC - ok
15:40:31.0348 5668 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:40:31.0348 5668 mssmbios - ok
15:40:31.0363 5668 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:40:31.0363 5668 MSTEE - ok
15:40:31.0379 5668 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:40:31.0379 5668 MTConfig - ok
15:40:31.0394 5668 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:40:31.0394 5668 Mup - ok
15:40:31.0644 5668 [ 21EEF976D53A0BCB603ABFF4AB6E4C88 ] MySQL C:\xamppDaten\xampp\mysql\bin\mysqld.exe
15:40:31.0660 5668 MySQL - ok
15:40:31.0722 5668 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:40:31.0738 5668 napagent - ok
15:40:31.0753 5668 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:40:31.0769 5668 NativeWifiP - ok
15:40:31.0831 5668 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:40:31.0847 5668 NDIS - ok
15:40:31.0847 5668 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:40:31.0847 5668 NdisCap - ok
15:40:31.0862 5668 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:40:31.0862 5668 NdisTapi - ok
15:40:31.0909 5668 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:40:31.0909 5668 Ndisuio - ok
15:40:31.0972 5668 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:40:31.0972 5668 NdisWan - ok
15:40:32.0034 5668 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:40:32.0034 5668 NDProxy - ok
15:40:32.0050 5668 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:40:32.0050 5668 NetBIOS - ok
15:40:32.0112 5668 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:40:32.0128 5668 NetBT - ok
15:40:32.0143 5668 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:40:32.0143 5668 Netlogon - ok
15:40:32.0174 5668 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:40:32.0174 5668 Netman - ok
15:40:32.0237 5668 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:40:32.0237 5668 NetMsmqActivator - ok
15:40:32.0252 5668 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:40:32.0252 5668 NetPipeActivator - ok
15:40:32.0284 5668 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:40:32.0284 5668 netprofm - ok
15:40:32.0284 5668 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:40:32.0284 5668 NetTcpActivator - ok
15:40:32.0299 5668 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:40:32.0299 5668 NetTcpPortSharing - ok
15:40:32.0315 5668 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:40:32.0315 5668 nfrd960 - ok
15:40:32.0330 5668 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:40:32.0330 5668 NlaSvc - ok
15:40:32.0346 5668 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:40:32.0346 5668 Npfs - ok
15:40:32.0362 5668 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:40:32.0362 5668 nsi - ok
15:40:32.0377 5668 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:40:32.0377 5668 nsiproxy - ok
15:40:32.0455 5668 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:40:32.0471 5668 Ntfs - ok
15:40:32.0486 5668 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:40:32.0486 5668 Null - ok
15:40:32.0549 5668 [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
15:40:32.0549 5668 nusb3hub - ok
15:40:32.0611 5668 [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
15:40:32.0611 5668 nusb3xhc - ok
15:40:32.0674 5668 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:40:32.0689 5668 nvraid - ok
15:40:32.0689 5668 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:40:32.0705 5668 nvstor - ok
15:40:32.0752 5668 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:40:32.0752 5668 nv_agp - ok
15:40:32.0814 5668 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:40:32.0814 5668 ohci1394 - ok
15:40:32.0876 5668 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:40:32.0876 5668 ose - ok
15:40:32.0908 5668 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:40:32.0923 5668 p2pimsvc - ok
15:40:32.0939 5668 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:40:32.0939 5668 p2psvc - ok
15:40:32.0954 5668 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:40:32.0954 5668 Parport - ok
15:40:33.0017 5668 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:40:33.0017 5668 partmgr - ok
15:40:33.0032 5668 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:40:33.0048 5668 PcaSvc - ok
15:40:33.0095 5668 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:40:33.0110 5668 pci - ok
15:40:33.0110 5668 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:40:33.0110 5668 pciide - ok
15:40:33.0126 5668 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:40:33.0126 5668 pcmcia - ok
15:40:33.0142 5668 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:40:33.0142 5668 pcw - ok
15:40:33.0173 5668 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:40:33.0173 5668 PEAUTH - ok
15:40:33.0235 5668 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
15:40:33.0235 5668 PeerDistSvc - ok
15:40:33.0329 5668 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:40:33.0329 5668 PerfHost - ok
15:40:33.0407 5668 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:40:33.0422 5668 pla - ok
15:40:33.0500 5668 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:40:33.0500 5668 PlugPlay - ok
15:40:33.0500 5668 PnkBstrA - ok
15:40:33.0516 5668 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:40:33.0516 5668 PNRPAutoReg - ok
15:40:33.0532 5668 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:40:33.0547 5668 PNRPsvc - ok
15:40:33.0610 5668 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:40:33.0625 5668 PolicyAgent - ok
15:40:33.0641 5668 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:40:33.0656 5668 Power - ok
15:40:33.0703 5668 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:40:33.0703 5668 PptpMiniport - ok
15:40:33.0734 5668 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:40:33.0734 5668 Processor - ok
15:40:33.0797 5668 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:40:33.0812 5668 ProfSvc - ok
15:40:33.0812 5668 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:40:33.0812 5668 ProtectedStorage - ok
15:40:33.0890 5668 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:40:33.0890 5668 Psched - ok
15:40:33.0953 5668 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
15:40:33.0968 5668 PSI_SVC_2 - ok
15:40:34.0000 5668 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:40:34.0015 5668 ql2300 - ok
15:40:34.0031 5668 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:40:34.0031 5668 ql40xx - ok
15:40:34.0046 5668 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:40:34.0046 5668 QWAVE - ok
15:40:34.0062 5668 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:40:34.0062 5668 QWAVEdrv - ok
15:40:34.0187 5668 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
15:40:34.0187 5668 RapiMgr - ok
15:40:34.0202 5668 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:40:34.0202 5668 RasAcd - ok
15:40:34.0218 5668 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:40:34.0234 5668 RasAgileVpn - ok
15:40:34.0234 5668 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:40:34.0249 5668 RasAuto - ok
15:40:34.0312 5668 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:34.0312 5668 Rasl2tp - ok
15:40:34.0374 5668 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:40:34.0374 5668 RasMan - ok
15:40:34.0390 5668 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:34.0390 5668 RasPppoe - ok
15:40:34.0405 5668 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:40:34.0421 5668 RasSstp - ok
15:40:34.0468 5668 [ 81DDBF4FE998EF1F4BA230F7E8D8C67E ] Razerlow C:\Windows\system32\drivers\DB3G.sys
15:40:34.0468 5668 Razerlow - ok
15:40:34.0530 5668 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:40:34.0530 5668 rdbss - ok
15:40:34.0546 5668 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:40:34.0561 5668 rdpbus - ok
15:40:34.0561 5668 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:34.0577 5668 RDPCDD - ok
15:40:34.0639 5668 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
15:40:34.0639 5668 RDPDR - ok
15:40:34.0639 5668 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:40:34.0639 5668 RDPENCDD - ok
15:40:34.0639 5668 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:40:34.0655 5668 RDPREFMP - ok
15:40:34.0702 5668 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:40:34.0702 5668 RDPWD - ok
15:40:34.0764 5668 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:40:34.0764 5668 rdyboost - ok
15:40:34.0795 5668 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:40:34.0795 5668 RemoteAccess - ok
15:40:34.0811 5668 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:40:34.0826 5668 RemoteRegistry - ok
15:40:34.0936 5668 [ A10B40CF9EB57D24E44717A2D38A00F4 ] RivaTuner64 C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
15:40:34.0936 5668 RivaTuner64 - ok
15:40:34.0951 5668 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:40:34.0951 5668 RpcEptMapper - ok
15:40:34.0967 5668 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:40:34.0967 5668 RpcLocator - ok
15:40:35.0029 5668 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:40:35.0045 5668 RpcSs - ok
15:40:35.0045 5668 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:40:35.0045 5668 rspndr - ok
15:40:35.0107 5668 [ C20F64FCD5E2B40310A1774495877ACD ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
15:40:35.0107 5668 RTHDMIAzAudService - ok
15:40:35.0185 5668 [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:40:35.0185 5668 RTL8167 - ok
15:40:35.0248 5668 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
15:40:35.0248 5668 s3cap - ok
15:40:35.0263 5668 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:40:35.0263 5668 SamSs - ok
15:40:35.0326 5668 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:40:35.0326 5668 sbp2port - ok
15:40:35.0326 5668 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:40:35.0341 5668 SCardSvr - ok
15:40:35.0372 5668 [ 07237C66E05DA6778E9F3CB67FA00736 ] SCDEmu C:\Windows\system32\drivers\SCDEmu.sys
15:40:35.0372 5668 SCDEmu - ok
15:40:35.0435 5668 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:40:35.0435 5668 scfilter - ok
15:40:35.0497 5668 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:40:35.0513 5668 Schedule - ok
15:40:35.0591 5668 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:40:35.0591 5668 SCPolicySvc - ok
15:40:35.0638 5668 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:40:35.0653 5668 SDRSVC - ok
15:40:35.0653 5668 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:40:35.0653 5668 secdrv - ok
15:40:35.0731 5668 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:40:35.0731 5668 seclogon - ok
15:40:35.0747 5668 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:40:35.0747 5668 SENS - ok
15:40:35.0778 5668 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:40:35.0778 5668 SensrSvc - ok
15:40:35.0794 5668 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:40:35.0794 5668 Serenum - ok
15:40:35.0809 5668 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:40:35.0809 5668 Serial - ok
15:40:35.0856 5668 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:40:35.0856 5668 sermouse - ok
15:40:35.0934 5668 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:40:35.0934 5668 SessionEnv - ok
15:40:35.0996 5668 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:40:35.0996 5668 sffdisk - ok
15:40:36.0012 5668 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:40:36.0012 5668 sffp_mmc - ok
15:40:36.0028 5668 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:40:36.0028 5668 sffp_sd - ok
15:40:36.0043 5668 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:40:36.0043 5668 sfloppy - ok
15:40:36.0074 5668 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:40:36.0090 5668 SharedAccess - ok
15:40:36.0152 5668 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:40:36.0152 5668 ShellHWDetection - ok
15:40:36.0168 5668 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:40:36.0168 5668 SiSRaid2 - ok
15:40:36.0184 5668 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:40:36.0184 5668 SiSRaid4 - ok
15:40:36.0199 5668 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:40:36.0199 5668 Smb - ok
15:40:36.0215 5668 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:40:36.0215 5668 SNMPTRAP - ok
15:40:36.0277 5668 [ 5F9785E7535F8F602CB294A54962C9E7 ] speedfan C:\Windows\syswow64\speedfan.sys
15:40:36.0277 5668 speedfan - ok
15:40:36.0308 5668 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:40:36.0308 5668 spldr - ok
15:40:36.0371 5668 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:40:36.0386 5668 Spooler - ok
15:40:36.0511 5668 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:40:36.0527 5668 sppsvc - ok
15:40:36.0542 5668 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:40:36.0542 5668 sppuinotify - ok
15:40:36.0574 5668 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys
15:40:36.0574 5668 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
15:40:36.0574 5668 sptd ( LockedFile.Multi.Generic ) - warning
15:40:36.0574 5668 sptd - detected LockedFile.Multi.Generic (1)
15:40:36.0636 5668 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:40:36.0652 5668 srv - ok
15:40:36.0714 5668 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:40:36.0714 5668 srv2 - ok
15:40:36.0745 5668 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:40:36.0745 5668 srvnet - ok
15:40:36.0761 5668 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:40:36.0776 5668 SSDPSRV - ok
15:40:36.0792 5668 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:40:36.0792 5668 SstpSvc - ok
15:40:36.0823 5668 Steam Client Service - ok
15:40:36.0870 5668 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:40:36.0870 5668 stexstor - ok
15:40:36.0932 5668 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:40:36.0932 5668 stisvc - ok
15:40:36.0995 5668 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
15:40:36.0995 5668 storflt - ok
15:40:37.0026 5668 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
15:40:37.0026 5668 StorSvc - ok
15:40:37.0088 5668 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
15:40:37.0088 5668 storvsc - ok
15:40:37.0166 5668 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:40:37.0166 5668 swenum - ok
15:40:37.0182 5668 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:40:37.0198 5668 swprv - ok
15:40:37.0276 5668 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:40:37.0307 5668 SysMain - ok
15:40:37.0354 5668 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:40:37.0369 5668 TabletInputService - ok
15:40:37.0432 5668 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:40:37.0432 5668 TapiSrv - ok
15:40:37.0447 5668 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:40:37.0447 5668 TBS - ok
15:40:37.0541 5668 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:40:37.0556 5668 Tcpip - ok
15:40:37.0619 5668 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:40:37.0634 5668 TCPIP6 - ok
15:40:37.0681 5668 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:40:37.0681 5668 tcpipreg - ok
15:40:37.0697 5668 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:40:37.0697 5668 TDPIPE - ok
15:40:37.0775 5668 [ 1226A953D4FDBDFD570DA5CEE66EAA55 ] TDslMgrService C:\Program Files (x86)\DSL-Manager\DslMgrSvc.exe
15:40:37.0775 5668 TDslMgrService - ok
15:40:37.0837 5668 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:40:37.0837 5668 TDTCP - ok
15:40:37.0900 5668 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:40:37.0900 5668 tdx - ok
15:40:37.0915 5668 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:40:37.0915 5668 TermDD - ok
15:40:37.0993 5668 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:40:37.0993 5668 TermService - ok
15:40:38.0009 5668 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:40:38.0024 5668 Themes - ok
15:40:38.0040 5668 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:40:38.0040 5668 THREADORDER - ok
15:40:38.0056 5668 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:40:38.0071 5668 TrkWks - ok
15:40:38.0134 5668 [ 8DE922CD4FEA6F83B10805DF965B9A08 ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
15:40:38.0134 5668 truecrypt - ok
15:40:38.0227 5668 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:40:38.0227 5668 TrustedInstaller - ok
15:40:38.0290 5668 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:38.0290 5668 tssecsrv - ok
15:40:38.0352 5668 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:40:38.0352 5668 TsUsbFlt - ok
15:40:38.0414 5668 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:40:38.0414 5668 tunnel - ok
15:40:38.0430 5668 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:40:38.0430 5668 uagp35 - ok
15:40:38.0492 5668 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:40:38.0492 5668 udfs - ok
15:40:38.0524 5668 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:40:38.0524 5668 UI0Detect - ok
15:40:38.0539 5668 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:40:38.0539 5668 uliagpkx - ok
15:40:38.0602 5668 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
15:40:38.0602 5668 umbus - ok
15:40:38.0617 5668 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:40:38.0617 5668 UmPass - ok
15:40:38.0633 5668 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
15:40:38.0648 5668 UmRdpService - ok
15:40:38.0711 5668 [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
15:40:38.0726 5668 UMVPFSrv - ok
15:40:38.0742 5668 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:40:38.0742 5668 upnphost - ok
15:40:38.0758 5668 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:40:38.0758 5668 usbaudio - ok
15:40:38.0820 5668 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:38.0820 5668 usbccgp - ok
15:40:38.0882 5668 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:40:38.0882 5668 usbcir - ok
15:40:38.0945 5668 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:40:38.0945 5668 usbehci - ok
15:40:38.0992 5668 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:40:39.0007 5668 usbhub - ok
15:40:39.0038 5668 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:40:39.0038 5668 usbohci - ok
15:40:39.0054 5668 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:40:39.0054 5668 usbprint - ok
15:40:39.0070 5668 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:39.0070 5668 USBSTOR - ok
15:40:39.0132 5668 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:40:39.0132 5668 usbuhci - ok
15:40:39.0179 5668 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
15:40:39.0179 5668 usb_rndisx - ok
15:40:39.0194 5668 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:40:39.0194 5668 UxSms - ok
15:40:39.0210 5668 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:40:39.0226 5668 VaultSvc - ok
15:40:39.0288 5668 [ 6922612DCD53E825CDEB59227E2FB8E4 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
15:40:39.0288 5668 VBoxDrv - ok
15:40:39.0335 5668 [ 560BA2FB23485907C9D46AA4AFF6888A ] VBoxUSB C:\Windows\system32\Drivers\VBoxUSB.sys
15:40:39.0335 5668 VBoxUSB - ok
15:40:39.0382 5668 [ 955C497F1DFDBC2808F2700145EA918C ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
15:40:39.0382 5668 VBoxUSBMon - ok
15:40:39.0413 5668 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:40:39.0413 5668 vdrvroot - ok
15:40:39.0444 5668 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:40:39.0460 5668 vds - ok
15:40:39.0491 5668 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:39.0491 5668 vga - ok
15:40:39.0506 5668 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:40:39.0506 5668 VgaSave - ok
15:40:39.0538 5668 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:40:39.0538 5668 vhdmp - ok
15:40:39.0569 5668 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:40:39.0569 5668 viaide - ok
15:40:39.0600 5668 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
15:40:39.0600 5668 vmbus - ok
15:40:39.0616 5668 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
15:40:39.0616 5668 VMBusHID - ok
15:40:39.0631 5668 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:40:39.0631 5668 volmgr - ok
15:40:39.0694 5668 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:40:39.0694 5668 volmgrx - ok
15:40:39.0709 5668 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:40:39.0709 5668 volsnap - ok
15:40:39.0787 5668 [ 4F4125C8E7FB75FED141316E0DFEBE4F ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
15:40:39.0787 5668 vpnagent - ok
15:40:39.0818 5668 [ 13E6D95E7AC67ABB7A1196557EF8849F ] vpnva C:\Windows\system32\DRIVERS\vpnva64.sys
15:40:39.0818 5668 vpnva - ok
15:40:39.0834 5668 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:40:39.0834 5668 vsmraid - ok
15:40:39.0881 5668 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:40:39.0896 5668 VSS - ok
15:40:39.0912 5668 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:40:39.0912 5668 vwifibus - ok
15:40:39.0943 5668 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:40:39.0943 5668 W32Time - ok
15:40:39.0990 5668 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
15:40:39.0990 5668 W3SVC - ok
15:40:40.0006 5668 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:40:40.0006 5668 WacomPen - ok
15:40:40.0021 5668 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:40:40.0021 5668 WANARP - ok
15:40:40.0021 5668 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:40:40.0021 5668 Wanarpv6 - ok
15:40:40.0037 5668 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
15:40:40.0037 5668 WAS - ok
15:40:40.0068 5668 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:40:40.0068 5668 wbengine - ok
15:40:40.0084 5668 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:40:40.0099 5668 WbioSrvc - ok
15:40:40.0115 5668 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
15:40:40.0115 5668 WcesComm - ok
15:40:40.0177 5668 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:40:40.0193 5668 wcncsvc - ok
15:40:40.0208 5668 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:40:40.0208 5668 WcsPlugInService - ok
15:40:40.0208 5668 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:40:40.0208 5668 Wd - ok
15:40:40.0286 5668 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:40:40.0286 5668 Wdf01000 - ok
15:40:40.0318 5668 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:40:40.0318 5668 WdiServiceHost - ok
15:40:40.0318 5668 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:40:40.0318 5668 WdiSystemHost - ok
15:40:40.0333 5668 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:40:40.0333 5668 WebClient - ok
15:40:40.0349 5668 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:40:40.0349 5668 Wecsvc - ok
15:40:40.0364 5668 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:40:40.0364 5668 wercplsupport - ok
15:40:40.0380 5668 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:40:40.0380 5668 WerSvc - ok
15:40:40.0396 5668 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:40:40.0396 5668 WfpLwf - ok
15:40:40.0411 5668 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:40:40.0411 5668 WIMMount - ok
15:40:40.0411 5668 WinDefend - ok
15:40:40.0427 5668 WinHttpAutoProxySvc - ok
15:40:40.0474 5668 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:40:40.0474 5668 Winmgmt - ok
15:40:40.0520 5668 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:40:40.0536 5668 WinRM - ok
15:40:40.0583 5668 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:40:40.0583 5668 WinUsb - ok
15:40:40.0630 5668 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:40:40.0645 5668 Wlansvc - ok
15:40:40.0770 5668 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:40:40.0786 5668 wlidsvc - ok
15:40:40.0817 5668 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:40:40.0817 5668 WmiAcpi - ok
15:40:40.0832 5668 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:40:40.0832 5668 wmiApSrv - ok
15:40:40.0848 5668 WMPNetworkSvc - ok
15:40:40.0848 5668 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:40:40.0848 5668 WPCSvc - ok
15:40:40.0926 5668 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:40:40.0926 5668 WPDBusEnum - ok
15:40:40.0942 5668 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:40:40.0942 5668 ws2ifsl - ok
15:40:40.0957 5668 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:40:40.0957 5668 wscsvc - ok
15:40:40.0957 5668 WSearch - ok
15:40:41.0066 5668 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:40:41.0098 5668 wuauserv - ok
15:40:41.0144 5668 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:40:41.0160 5668 WudfPf - ok
15:40:41.0176 5668 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:41.0176 5668 WUDFRd - ok
15:40:41.0238 5668 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:40:41.0254 5668 wudfsvc - ok
15:40:41.0269 5668 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:40:41.0269 5668 WwanSvc - ok
15:40:41.0285 5668 ================ Scan global ===============================
15:40:41.0316 5668 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:40:41.0363 5668 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:40:41.0378 5668 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:40:41.0394 5668 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:40:41.0425 5668 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:40:41.0425 5668 [Global] - ok
15:40:41.0425 5668 ================ Scan MBR ==================================
15:40:41.0425 5668 [ A3095E5B8060D0D6B97E87EC1BB50C3C ] \Device\Harddisk0\DR0
15:40:41.0519 5668 \Device\Harddisk0\DR0 - ok
15:40:41.0519 5668 [ BB51795341398A02FBB2FAB12C9A32E1 ] \Device\Harddisk1\DR1
15:40:41.0566 5668 \Device\Harddisk1\DR1 - ok
15:40:41.0566 5668 ================ Scan VBR ==================================
15:40:41.0566 5668 [ 0BD4D2F48AB403B4B7C748D7AE8CA845 ] \Device\Harddisk0\DR0\Partition1
15:40:41.0566 5668 \Device\Harddisk0\DR0\Partition1 - ok
15:40:41.0581 5668 [ 8C22E1A68D07F4139D4DE3E73E63A73D ] \Device\Harddisk0\DR0\Partition2
15:40:41.0581 5668 \Device\Harddisk0\DR0\Partition2 - ok
15:40:41.0581 5668 ============================================================
15:40:41.0581 5668 Scan finished
15:40:41.0581 5668 ============================================================
15:40:41.0597 4392 Detected object count: 1
15:40:41.0597 4392 Actual detected object count: 1
15:40:56.0666 4392 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
15:40:56.0666 4392 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
15:41:21.0455 4640 Deinitialize success
Geändert von zellerli (25.11.2012 um 16:08 Uhr) |
| Themen zu Ukash Bundespolizei Infektion - Logs anbei |
| 7-zip, adobe reader xi, antivir, autorun, avira, bho, computer, education, error, excel, fehler, flash player, helper, iexplore.exe, install.exe, jdownloader, league of legends, logfile, object, pando media booster, plug-in, poweriso, realtek, registry, rundll, scan, security, server, software, spotify web helper, storm, svchost.exe, teamspeak, trojaner, usb 3.0, virtualbox, visual studio, wgsdgsdgdsgsd.exe, windows |
Baum-Darstellung