Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
"C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt

"C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt


Log-Analyse und Auswertung: "C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 16.12.2012, 18:17   #3
Gepetto
 
"C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt - Standard

"C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt


Wow, danke für die schnelle Antwort - da blieb ja nichtmal Zeit zum Kaffee holen!
Hier der Report, den der TDSSKiller ausgegeben hat:

18:13:33.0087 4248 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:13:33.0477 4248 ============================================================
18:13:33.0477 4248 Current date / time: 2012/12/16 18:13:33.0477
18:13:33.0477 4248 SystemInfo:
18:13:33.0477 4248
18:13:33.0477 4248 OS Version: 6.1.7601 ServicePack: 1.0
18:13:33.0477 4248 Product type: Workstation
18:13:33.0477 4248 ComputerName: LAPTOPNAME_GEÄNDERT
18:13:33.0477 4248 UserName: NAME_GEÄNDERT
18:13:33.0477 4248 Windows directory: C:\Windows
18:13:33.0477 4248 System windows directory: C:\Windows
18:13:33.0477 4248 Running under WOW64
18:13:33.0477 4248 Processor architecture: Intel x64
18:13:33.0477 4248 Number of processors: 4
18:13:33.0477 4248 Page size: 0x1000
18:13:33.0477 4248 Boot type: Normal boot
18:13:33.0477 4248 ============================================================
18:13:33.0867 4248 Drive \Device\Harddisk1\DR1 - Size: 0xEC580000 (3.69 Gb), SectorSize: 0x200, Cylinders: 0x1E2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
18:13:33.0882 4248 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:13:33.0882 4248 Drive \Device\Harddisk1\DR1 - Size: 0xEC580000 (3.69 Gb), SectorSize: 0x200, Cylinders: 0x1E2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:13:33.0882 4248 ============================================================
18:13:33.0882 4248 \Device\Harddisk1\DR1:
18:13:33.0898 4248 MBR partitions:
18:13:33.0898 4248 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x760C00
18:13:33.0898 4248 \Device\Harddisk0\DR0:
18:13:33.0898 4248 MBR partitions:
18:13:33.0898 4248 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2500800, BlocksNum 0x32000
18:13:33.0913 4248 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2533000, BlocksNum 0x37E52800
18:13:33.0913 4248 \Device\Harddisk1\DR1:
18:13:33.0913 4248 MBR partitions:
18:13:33.0913 4248 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x760C00
18:13:33.0913 4248 ============================================================
18:13:33.0929 4248 C: <-> \Device\Harddisk0\DR0\Partition2
18:13:33.0929 4248 ============================================================
18:13:33.0929 4248 Initialize success
18:13:33.0929 4248 ============================================================
18:13:37.0813 4632 ============================================================
18:13:37.0813 4632 Scan started
18:13:37.0813 4632 Mode: Manual; SigCheck; TDLFS;
18:13:37.0813 4632 ============================================================
18:13:38.0921 4632 ================ Scan system memory ========================
18:13:38.0921 4632 System memory - ok
18:13:38.0921 4632 ================ Scan services =============================
18:13:39.0155 4632 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:13:39.0186 4632 1394ohci - ok
18:13:39.0280 4632 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:13:39.0295 4632 ACPI - ok
18:13:39.0342 4632 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:13:39.0358 4632 AcpiPmi - ok
18:13:39.0561 4632 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:13:39.0576 4632 AdobeARMservice - ok
18:13:39.0748 4632 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:13:39.0763 4632 AdobeFlashPlayerUpdateSvc - ok
18:13:39.0826 4632 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:13:39.0841 4632 adp94xx - ok
18:13:39.0873 4632 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:13:39.0888 4632 adpahci - ok
18:13:39.0935 4632 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:13:39.0951 4632 adpu320 - ok
18:13:39.0966 4632 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:13:39.0997 4632 AeLookupSvc - ok
18:13:40.0075 4632 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:13:40.0091 4632 AFD - ok
18:13:40.0153 4632 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:13:40.0169 4632 agp440 - ok
18:13:40.0200 4632 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:13:40.0216 4632 ALG - ok
18:13:40.0247 4632 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:13:40.0263 4632 aliide - ok
18:13:40.0294 4632 [ F687D4976EFF550FB0BE45A5CB19F18F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:13:40.0309 4632 AMD External Events Utility - ok
18:13:40.0387 4632 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:13:40.0387 4632 amdide - ok
18:13:40.0419 4632 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:13:40.0434 4632 AmdK8 - ok
18:13:40.0575 4632 [ 74687C33C4AD25A975BBB1EA1E8B3884 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:13:40.0653 4632 amdkmdag - ok
18:13:40.0668 4632 [ C7F56ED86327A78E7F8A5CC503A98BD6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:13:40.0668 4632 amdkmdap - ok
18:13:40.0699 4632 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:13:40.0699 4632 AmdPPM - ok
18:13:40.0746 4632 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:13:40.0746 4632 amdsata - ok
18:13:40.0777 4632 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:13:40.0777 4632 amdsbs - ok
18:13:40.0809 4632 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:13:40.0809 4632 amdxata - ok
18:13:40.0933 4632 [ 9F1B3EB9B3D29E898C4D4AA5613CDFB2 ] AntiVirFireWallService C:\Program Files (x86)\Avira\AntiVir Desktop\avfwsvc.exe
18:13:40.0949 4632 AntiVirFireWallService - ok
18:13:40.0996 4632 [ 56BEB1292DC71E49C824455EC582BFCE ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc.exe
18:13:41.0011 4632 AntiVirMailService - ok
18:13:41.0089 4632 [ 7ABE4092C35E7D4596487DFA075D84E1 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
18:13:41.0089 4632 AntiVirSchedulerService - ok
18:13:41.0167 4632 [ 5A37FFA608AE126C9702F5C07E07FC08 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
18:13:41.0183 4632 AntiVirService - ok
18:13:41.0245 4632 [ 5F2F39626586536CA86F402A1C947463 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
18:13:41.0261 4632 AntiVirWebService - ok
18:13:41.0323 4632 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:13:41.0370 4632 AppID - ok
18:13:41.0386 4632 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:13:41.0417 4632 AppIDSvc - ok
18:13:41.0495 4632 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:13:41.0526 4632 Appinfo - ok
18:13:41.0573 4632 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:13:41.0573 4632 arc - ok
18:13:41.0589 4632 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:13:41.0604 4632 arcsas - ok
18:13:41.0760 4632 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:13:41.0760 4632 aspnet_state - ok
18:13:41.0791 4632 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:13:41.0823 4632 AsyncMac - ok
18:13:41.0916 4632 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:13:41.0932 4632 atapi - ok
18:13:41.0979 4632 [ E642491F64E58CD5BC8FB8B347DCF65F ] athr C:\Windows\system32\DRIVERS\athrx.sys
18:13:42.0025 4632 athr - ok
18:13:42.0181 4632 [ 74687C33C4AD25A975BBB1EA1E8B3884 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:13:42.0259 4632 atikmdag - ok
18:13:42.0353 4632 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:13:42.0400 4632 AudioEndpointBuilder - ok
18:13:42.0447 4632 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:13:42.0493 4632 AudioSrv - ok
18:13:42.0540 4632 [ C5B223B2C174147D00F64E0D783459C7 ] avfwim C:\Windows\system32\DRIVERS\avfwim.sys
18:13:42.0556 4632 avfwim - ok
18:13:42.0618 4632 [ C7B2A376DCF4E1528B26358A9B341F4C ] avfwot C:\Windows\system32\DRIVERS\avfwot.sys
18:13:42.0634 4632 avfwot - ok
18:13:42.0681 4632 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
18:13:42.0681 4632 avgntflt - ok
18:13:42.0743 4632 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
18:13:42.0743 4632 avipbb - ok
18:13:42.0759 4632 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
18:13:42.0774 4632 avkmgr - ok
18:13:42.0837 4632 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:13:42.0852 4632 AxInstSV - ok
18:13:42.0899 4632 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:13:42.0915 4632 b06bdrv - ok
18:13:42.0946 4632 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:13:42.0961 4632 b57nd60a - ok
18:13:43.0071 4632 [ 2D659B569A76CDB83B815675A80D7096 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
18:13:43.0195 4632 BCM43XX - ok
18:13:43.0242 4632 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:13:43.0273 4632 BDESVC - ok
18:13:43.0320 4632 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:13:43.0398 4632 Beep - ok
18:13:43.0476 4632 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:13:43.0523 4632 BFE - ok
18:13:43.0601 4632 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:13:43.0648 4632 BITS - ok
18:13:43.0663 4632 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:13:43.0695 4632 blbdrive - ok
18:13:43.0757 4632 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:13:43.0788 4632 bowser - ok
18:13:43.0819 4632 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:13:43.0882 4632 BrFiltLo - ok
18:13:43.0882 4632 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:13:43.0897 4632 BrFiltUp - ok
18:13:43.0929 4632 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:13:43.0944 4632 Browser - ok
18:13:43.0975 4632 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:13:44.0007 4632 Brserid - ok
18:13:44.0022 4632 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:13:44.0053 4632 BrSerWdm - ok
18:13:44.0085 4632 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:13:44.0131 4632 BrUsbMdm - ok
18:13:44.0163 4632 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:13:44.0178 4632 BrUsbSer - ok
18:13:44.0241 4632 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
18:13:44.0303 4632 BthEnum - ok
18:13:44.0350 4632 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:13:44.0381 4632 BTHMODEM - ok
18:13:44.0412 4632 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
18:13:44.0428 4632 BthPan - ok
18:13:44.0490 4632 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
18:13:44.0537 4632 BTHPORT - ok
18:13:44.0599 4632 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:13:44.0646 4632 bthserv - ok
18:13:44.0693 4632 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
18:13:44.0740 4632 BTHUSB - ok
18:13:44.0771 4632 [ 73A1C54749FE4F0019241E36C796AB86 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys
18:13:44.0787 4632 btwampfl - ok
18:13:44.0802 4632 [ 1872074ED0A3FB22E3F1E3197B984BFA ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
18:13:44.0802 4632 btwaudio - ok
18:13:44.0833 4632 [ 691CF076C33AB1C3A5B2FD5450300733 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
18:13:44.0849 4632 btwavdt - ok
18:13:44.0943 4632 [ 4E6AC6475EF653BDFFDA67A74B9591D8 ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
18:13:44.0974 4632 btwdins - ok
18:13:44.0989 4632 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
18:13:45.0005 4632 btwl2cap - ok
18:13:45.0021 4632 [ C9273B20DEC8CE38DBCE5D29DE63C907 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
18:13:45.0036 4632 btwrchid - ok
18:13:45.0067 4632 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:13:45.0130 4632 cdfs - ok
18:13:45.0208 4632 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:13:45.0255 4632 cdrom - ok
18:13:45.0333 4632 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:13:45.0426 4632 CertPropSvc - ok
18:13:45.0473 4632 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:13:45.0504 4632 circlass - ok
18:13:45.0567 4632 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:13:45.0582 4632 CLFS - ok
18:13:45.0660 4632 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:13:45.0660 4632 clr_optimization_v2.0.50727_32 - ok
18:13:45.0691 4632 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:13:45.0691 4632 clr_optimization_v2.0.50727_64 - ok
18:13:45.0832 4632 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:13:45.0847 4632 clr_optimization_v4.0.30319_32 - ok
18:13:45.0894 4632 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:13:45.0894 4632 clr_optimization_v4.0.30319_64 - ok
18:13:45.0941 4632 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:13:45.0972 4632 CmBatt - ok
18:13:46.0003 4632 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:13:46.0019 4632 cmdide - ok
18:13:46.0066 4632 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
18:13:46.0097 4632 CNG - ok
18:13:46.0128 4632 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:13:46.0144 4632 Compbatt - ok
18:13:46.0206 4632 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:13:46.0253 4632 CompositeBus - ok
18:13:46.0269 4632 COMSysApp - ok
18:13:46.0300 4632 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:13:46.0300 4632 crcdisk - ok
18:13:46.0362 4632 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:13:46.0409 4632 CryptSvc - ok
18:13:46.0471 4632 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:13:46.0518 4632 DcomLaunch - ok
18:13:46.0565 4632 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:13:46.0627 4632 defragsvc - ok
18:13:46.0721 4632 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:13:46.0768 4632 DfsC - ok
18:13:46.0830 4632 [ 388039F99CE8769024EE0438352ACA99 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
18:13:46.0830 4632 dg_ssudbus - ok
18:13:46.0908 4632 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:13:46.0939 4632 Dhcp - ok
18:13:46.0986 4632 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:13:47.0017 4632 discache - ok
18:13:47.0049 4632 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:13:47.0049 4632 Disk - ok
18:13:47.0111 4632 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:13:47.0142 4632 Dnscache - ok
18:13:47.0189 4632 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:13:47.0251 4632 dot3svc - ok
18:13:47.0283 4632 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
18:13:47.0298 4632 Dot4 - ok
18:13:47.0345 4632 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
18:13:47.0392 4632 Dot4Print - ok
18:13:47.0423 4632 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
18:13:47.0454 4632 dot4usb - ok
18:13:47.0501 4632 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:13:47.0548 4632 DPS - ok
18:13:47.0610 4632 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:13:47.0641 4632 drmkaud - ok
18:13:47.0704 4632 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:13:47.0735 4632 DXGKrnl - ok
18:13:47.0766 4632 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:13:47.0813 4632 EapHost - ok
18:13:47.0907 4632 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:13:48.0016 4632 ebdrv - ok
18:13:48.0094 4632 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:13:48.0141 4632 EFS - ok
18:13:48.0250 4632 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:13:48.0281 4632 ehRecvr - ok
18:13:48.0312 4632 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:13:48.0328 4632 ehSched - ok
18:13:48.0375 4632 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:13:48.0390 4632 elxstor - ok
18:13:48.0437 4632 [ DE9402E080E9E3C94A9FD3FCF65DE369 ] enecir C:\Windows\system32\DRIVERS\enecir.sys
18:13:48.0453 4632 enecir - ok
18:13:48.0468 4632 [ E17EB95358F396E27D573A1B20F891F8 ] enecirhid C:\Windows\system32\DRIVERS\enecirhid.sys
18:13:48.0499 4632 enecirhid ( UnsignedFile.Multi.Generic ) - warning
18:13:48.0499 4632 enecirhid - detected UnsignedFile.Multi.Generic (1)
18:13:48.0546 4632 [ 8492D808C79BD6FE439F77BE84956CDF ] enecirhidma C:\Windows\system32\DRIVERS\enecirhidma.sys
18:13:48.0562 4632 enecirhidma ( UnsignedFile.Multi.Generic ) - warning
18:13:48.0562 4632 enecirhidma - detected UnsignedFile.Multi.Generic (1)
18:13:48.0640 4632 [ C97DF8DBB45B2FF2B36317A6380CD177 ] ePowerSvc C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
18:13:48.0655 4632 ePowerSvc - ok
18:13:48.0671 4632 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:13:48.0702 4632 ErrDev - ok
18:13:48.0765 4632 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:13:48.0811 4632 EventSystem - ok
18:13:48.0827 4632 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:13:48.0858 4632 exfat - ok
18:13:48.0874 4632 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:13:48.0936 4632 fastfat - ok
18:13:49.0030 4632 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:13:49.0077 4632 Fax - ok
18:13:49.0123 4632 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:13:49.0139 4632 fdc - ok
18:13:49.0155 4632 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:13:49.0201 4632 fdPHost - ok
18:13:49.0217 4632 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:13:49.0264 4632 FDResPub - ok
18:13:49.0279 4632 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:13:49.0279 4632 FileInfo - ok
18:13:49.0326 4632 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:13:49.0373 4632 Filetrace - ok
18:13:49.0389 4632 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:13:49.0420 4632 flpydisk - ok
18:13:49.0482 4632 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:13:49.0482 4632 FltMgr - ok
18:13:49.0560 4632 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
18:13:49.0623 4632 FontCache - ok
18:13:49.0716 4632 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:13:49.0716 4632 FontCache3.0.0.0 - ok
18:13:49.0747 4632 [ 305380D5D33BFDEAAF14D73E969239FC ] FPSensor C:\Windows\system32\Drivers\FPSensor.sys
18:13:49.0763 4632 FPSensor - ok
18:13:49.0794 4632 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:13:49.0794 4632 FsDepends - ok
18:13:49.0857 4632 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:13:49.0872 4632 Fs_Rec - ok
18:13:49.0935 4632 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:13:49.0950 4632 fvevol - ok
18:13:49.0966 4632 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:13:49.0981 4632 gagp30kx - ok
18:13:49.0997 4632 ghsmdm - ok
18:13:50.0059 4632 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:13:50.0106 4632 gpsvc - ok
18:13:50.0169 4632 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
18:13:50.0169 4632 GREGService - ok
18:13:50.0356 4632 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:13:50.0356 4632 gupdate - ok
18:13:50.0403 4632 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:13:50.0418 4632 gupdatem - ok
18:13:50.0449 4632 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:13:50.0496 4632 hcw85cir - ok
18:13:50.0574 4632 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:13:50.0637 4632 HdAudAddService - ok
18:13:50.0668 4632 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:13:50.0699 4632 HDAudBus - ok
18:13:50.0746 4632 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:13:50.0761 4632 HECIx64 - ok
18:13:50.0777 4632 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:13:50.0793 4632 HidBatt - ok
18:13:50.0808 4632 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:13:50.0839 4632 HidBth - ok
18:13:50.0855 4632 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:13:50.0886 4632 HidIr - ok
18:13:50.0917 4632 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:13:50.0964 4632 hidserv - ok
18:13:51.0058 4632 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:13:51.0073 4632 HidUsb - ok
18:13:51.0120 4632 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:13:51.0167 4632 hkmsvc - ok
18:13:51.0229 4632 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:13:51.0261 4632 HomeGroupListener - ok
18:13:51.0307 4632 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:13:51.0339 4632 HomeGroupProvider - ok
18:13:51.0401 4632 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:13:51.0417 4632 HpSAMD - ok
18:13:51.0432 4632 HTCAND64 - ok
18:13:51.0495 4632 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:13:51.0541 4632 HTTP - ok
18:13:51.0588 4632 hwdatacard - ok
18:13:51.0651 4632 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:13:51.0651 4632 hwpolicy - ok
18:13:51.0729 4632 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:13:51.0744 4632 i8042prt - ok
18:13:51.0791 4632 [ 0E899D0DB39617AA0B2F992E7E95B5EB ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:13:51.0807 4632 IAANTMON - ok
18:13:51.0838 4632 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:13:51.0838 4632 iaStor - ok
18:13:51.0885 4632 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:13:51.0900 4632 iaStorV - ok
18:13:52.0009 4632 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
18:13:52.0025 4632 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:13:52.0025 4632 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:13:52.0119 4632 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:13:52.0134 4632 idsvc - ok
18:13:52.0228 4632 [ 607013AF90E9107664F7204613DB5631 ] IGBASVC C:\Program Files (x86)\Acer Bio Protection\BASVC.exe
18:13:52.0290 4632 IGBASVC ( UnsignedFile.Multi.Generic ) - warning
18:13:52.0290 4632 IGBASVC - detected UnsignedFile.Multi.Generic (1)
18:13:52.0337 4632 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:13:52.0353 4632 iirsp - ok
18:13:52.0415 4632 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:13:52.0477 4632 IKEEXT - ok
18:13:52.0524 4632 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
18:13:52.0540 4632 Impcd - ok
18:13:52.0618 4632 [ FEADC18677A85A123E95A9B976101120 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:13:52.0696 4632 IntcAzAudAddService - ok
18:13:52.0727 4632 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:13:52.0727 4632 intelide - ok
18:13:52.0774 4632 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:13:52.0789 4632 intelppm - ok
18:13:52.0836 4632 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:13:52.0867 4632 IPBusEnum - ok
18:13:52.0930 4632 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:13:52.0977 4632 IpFilterDriver - ok
18:13:53.0086 4632 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:13:53.0101 4632 iphlpsvc - ok
18:13:53.0148 4632 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:13:53.0195 4632 IPMIDRV - ok
18:13:53.0242 4632 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:13:53.0273 4632 IPNAT - ok
18:13:53.0304 4632 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:13:53.0320 4632 IRENUM - ok
18:13:53.0367 4632 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:13:53.0382 4632 isapnp - ok
18:13:53.0429 4632 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:13:53.0445 4632 iScsiPrt - ok
18:13:53.0476 4632 [ 5BD76F820656AEAA2DCE66EED8DA84B9 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
18:13:53.0491 4632 JMCR - ok
18:13:53.0523 4632 [ E662CB468A1CFF3A57E120A212FADD57 ] johci C:\Windows\system32\DRIVERS\johci.sys
18:13:53.0538 4632 johci - ok
18:13:53.0585 4632 [ 08DD34F74D65E1C8F238565570952630 ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
18:13:53.0601 4632 k57nd60a - ok
18:13:53.0616 4632 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:13:53.0632 4632 kbdclass - ok
18:13:53.0694 4632 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:13:53.0725 4632 kbdhid - ok
18:13:53.0757 4632 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:13:53.0772 4632 KeyIso - ok
18:13:53.0803 4632 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:13:53.0819 4632 KSecDD - ok
18:13:53.0866 4632 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:13:53.0881 4632 KSecPkg - ok
18:13:53.0913 4632 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:13:53.0960 4632 ksthunk - ok
18:13:54.0006 4632 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:13:54.0069 4632 KtmRm - ok
18:13:54.0178 4632 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:13:54.0225 4632 LanmanServer - ok
18:13:54.0318 4632 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:13:54.0381 4632 LanmanWorkstation - ok
18:13:54.0412 4632 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:13:54.0443 4632 lltdio - ok
18:13:54.0474 4632 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:13:54.0537 4632 lltdsvc - ok
18:13:54.0568 4632 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:13:54.0599 4632 lmhosts - ok
18:13:54.0662 4632 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:13:54.0677 4632 LMS - ok
18:13:54.0693 4632 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:13:54.0708 4632 LSI_FC - ok
18:13:54.0708 4632 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:13:54.0724 4632 LSI_SAS - ok
18:13:54.0724 4632 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:13:54.0740 4632 LSI_SAS2 - ok
18:13:54.0740 4632 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:13:54.0755 4632 LSI_SCSI - ok
18:13:54.0786 4632 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:13:54.0849 4632 luafv - ok
18:13:54.0896 4632 massfilter_hs - ok
18:13:54.0958 4632 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:13:54.0974 4632 Mcx2Svc - ok
18:13:54.0989 4632 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:13:55.0005 4632 megasas - ok
18:13:55.0005 4632 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:13:55.0020 4632 MegaSR - ok
18:13:55.0052 4632 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:13:55.0114 4632 MMCSS - ok
18:13:55.0114 4632 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:13:55.0145 4632 Modem - ok
18:13:55.0223 4632 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:13:55.0254 4632 monitor - ok
18:13:55.0317 4632 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:13:55.0332 4632 mouclass - ok
18:13:55.0364 4632 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:13:55.0395 4632 mouhid - ok
18:13:55.0457 4632 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:13:55.0457 4632 mountmgr - ok
18:13:55.0566 4632 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
18:13:55.0582 4632 MpFilter - ok
18:13:55.0644 4632 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:13:55.0660 4632 mpio - ok
18:13:55.0676 4632 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:13:55.0722 4632 mpsdrv - ok
18:13:55.0785 4632 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:13:55.0847 4632 MpsSvc - ok
18:13:55.0894 4632 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:13:55.0925 4632 MRxDAV - ok
18:13:55.0988 4632 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:13:56.0019 4632 mrxsmb - ok
18:13:56.0066 4632 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:13:56.0097 4632 mrxsmb10 - ok
18:13:56.0112 4632 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:13:56.0144 4632 mrxsmb20 - ok
18:13:56.0222 4632 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:13:56.0237 4632 msahci - ok
18:13:56.0253 4632 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:13:56.0253 4632 msdsm - ok
18:13:56.0284 4632 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:13:56.0300 4632 MSDTC - ok
18:13:56.0331 4632 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:13:56.0378 4632 Msfs - ok
18:13:56.0393 4632 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:13:56.0424 4632 mshidkmdf - ok
18:13:56.0487 4632 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:13:56.0502 4632 msisadrv - ok
18:13:56.0518 4632 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:13:56.0565 4632 MSiSCSI - ok
18:13:56.0580 4632 msiserver - ok
18:13:56.0596 4632 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:13:56.0627 4632 MSKSSRV - ok
18:13:56.0736 4632 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:13:56.0752 4632 MsMpSvc - ok
18:13:56.0768 4632 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:13:56.0830 4632 MSPCLOCK - ok
18:13:56.0861 4632 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:13:56.0908 4632 MSPQM - ok
18:13:56.0955 4632 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:13:56.0970 4632 MsRPC - ok
18:13:57.0017 4632 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:13:57.0017 4632 mssmbios - ok
18:13:57.0048 4632 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:13:57.0080 4632 MSTEE - ok
18:13:57.0095 4632 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:13:57.0126 4632 MTConfig - ok
18:13:57.0142 4632 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:13:57.0158 4632 Mup - ok
18:13:57.0220 4632 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:13:57.0267 4632 napagent - ok
18:13:57.0314 4632 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:13:57.0360 4632 NativeWifiP - ok
18:13:57.0407 4632 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:13:57.0438 4632 NDIS - ok
18:13:57.0485 4632 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:13:57.0532 4632 NdisCap - ok
18:13:57.0563 4632 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:13:57.0594 4632 NdisTapi - ok
18:13:57.0657 4632 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:13:57.0704 4632 Ndisuio - ok
18:13:57.0750 4632 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:13:57.0797 4632 NdisWan - ok
18:13:57.0860 4632 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:13:57.0922 4632 NDProxy - ok
18:13:57.0969 4632 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:13:57.0984 4632 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:13:57.0984 4632 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:13:58.0016 4632 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:13:58.0062 4632 NetBIOS - ok
18:13:58.0125 4632 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:13:58.0172 4632 NetBT - ok
18:13:58.0187 4632 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:13:58.0203 4632 Netlogon - ok
18:13:58.0234 4632 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:13:58.0296 4632 Netman - ok
18:13:58.0359 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:13:58.0359 4632 NetMsmqActivator - ok
18:13:58.0374 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:13:58.0390 4632 NetPipeActivator - ok
18:13:58.0406 4632 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:13:58.0452 4632 netprofm - ok
18:13:58.0499 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:13:58.0515 4632 NetTcpActivator - ok
18:13:58.0515 4632 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:13:58.0515 4632 NetTcpPortSharing - ok
18:13:58.0546 4632 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:13:58.0562 4632 nfrd960 - ok
18:13:58.0640 4632 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:13:58.0640 4632 NisDrv - ok
18:13:58.0702 4632 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
18:13:58.0718 4632 NisSrv - ok
18:13:58.0764 4632 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:13:58.0796 4632 NlaSvc - ok
18:13:58.0827 4632 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:13:58.0858 4632 Npfs - ok
18:13:58.0874 4632 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:13:58.0905 4632 nsi - ok
18:13:58.0920 4632 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:13:58.0952 4632 nsiproxy - ok
18:13:59.0045 4632 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:13:59.0108 4632 Ntfs - ok
18:13:59.0123 4632 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:13:59.0170 4632 Null - ok
18:13:59.0201 4632 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:13:59.0217 4632 nvraid - ok
18:13:59.0248 4632 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:13:59.0248 4632 nvstor - ok
18:13:59.0310 4632 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:13:59.0326 4632 nv_agp - ok
18:13:59.0388 4632 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:13:59.0404 4632 ohci1394 - ok
18:13:59.0435 4632 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:13:59.0482 4632 p2pimsvc - ok
18:13:59.0498 4632 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:13:59.0513 4632 p2psvc - ok
18:13:59.0560 4632 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:13:59.0576 4632 Parport - ok
18:13:59.0622 4632 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:13:59.0638 4632 partmgr - ok
18:13:59.0654 4632 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:13:59.0685 4632 PcaSvc - ok
18:13:59.0700 4632 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:13:59.0716 4632 pci - ok
18:13:59.0763 4632 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:13:59.0778 4632 pciide - ok
18:13:59.0810 4632 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:13:59.0825 4632 pcmcia - ok
18:13:59.0841 4632 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:13:59.0841 4632 pcw - ok
18:13:59.0872 4632 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:13:59.0950 4632 PEAUTH - ok
18:14:00.0075 4632 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:14:00.0090 4632 PerfHost - ok
18:14:00.0168 4632 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:14:00.0262 4632 pla - ok
18:14:00.0324 4632 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:14:00.0340 4632 PlugPlay - ok
18:14:00.0371 4632 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:14:00.0371 4632 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
18:14:00.0371 4632 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
18:14:00.0387 4632 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:14:00.0418 4632 PNRPAutoReg - ok
18:14:00.0449 4632 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:14:00.0465 4632 PNRPsvc - ok
18:14:00.0527 4632 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:14:00.0574 4632 PolicyAgent - ok
18:14:00.0605 4632 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:14:00.0652 4632 Power - ok
18:14:00.0714 4632 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:14:00.0761 4632 PptpMiniport - ok
18:14:00.0792 4632 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:14:00.0808 4632 Processor - ok
18:14:00.0870 4632 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:14:00.0917 4632 ProfSvc - ok
18:14:00.0948 4632 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:14:00.0948 4632 ProtectedStorage - ok
18:14:01.0026 4632 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:14:01.0058 4632 Psched - ok
18:14:01.0089 4632 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:14:01.0151 4632 ql2300 - ok
18:14:01.0167 4632 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:14:01.0182 4632 ql40xx - ok
18:14:01.0198 4632 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:14:01.0229 4632 QWAVE - ok
18:14:01.0229 4632 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:14:01.0245 4632 QWAVEdrv - ok
18:14:01.0245 4632 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:14:01.0307 4632 RasAcd - ok
18:14:01.0354 4632 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:14:01.0385 4632 RasAgileVpn - ok
18:14:01.0416 4632 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:14:01.0448 4632 RasAuto - ok
18:14:01.0510 4632 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:14:01.0557 4632 Rasl2tp - ok
18:14:01.0619 4632 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:14:01.0666 4632 RasMan - ok
18:14:01.0713 4632 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:14:01.0760 4632 RasPppoe - ok
18:14:01.0791 4632 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:14:01.0838 4632 RasSstp - ok
18:14:01.0900 4632 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:14:01.0947 4632 rdbss - ok
18:14:01.0978 4632 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:14:01.0994 4632 rdpbus - ok
18:14:02.0009 4632 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:14:02.0072 4632 RDPCDD - ok
18:14:02.0072 4632 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:14:02.0134 4632 RDPENCDD - ok
18:14:02.0150 4632 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:14:02.0196 4632 RDPREFMP - ok
18:14:02.0274 4632 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:14:02.0306 4632 RdpVideoMiniport - ok
18:14:02.0352 4632 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:14:02.0368 4632 RDPWD - ok
18:14:02.0430 4632 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:14:02.0430 4632 rdyboost - ok
18:14:02.0462 4632 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:14:02.0508 4632 RemoteAccess - ok
18:14:02.0524 4632 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:14:02.0571 4632 RemoteRegistry - ok
18:14:02.0618 4632 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
18:14:02.0649 4632 RFCOMM - ok
18:14:02.0680 4632 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:14:02.0742 4632 RpcEptMapper - ok
18:14:02.0789 4632 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:14:02.0805 4632 RpcLocator - ok
18:14:02.0867 4632 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:14:02.0898 4632 RpcSs - ok
18:14:02.0930 4632 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:14:02.0976 4632 rspndr - ok
18:14:03.0008 4632 [ 4E821C740A675F6D040BE41D59A62B1D ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
18:14:03.0023 4632 RTHDMIAzAudService - ok
18:14:03.0023 4632 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:14:03.0039 4632 SamSs - ok
18:14:03.0101 4632 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:14:03.0117 4632 sbp2port - ok
18:14:03.0148 4632 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:14:03.0195 4632 SCardSvr - ok
18:14:03.0242 4632 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:14:03.0288 4632 scfilter - ok
18:14:03.0351 4632 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:14:03.0429 4632 Schedule - ok
18:14:03.0476 4632 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:14:03.0507 4632 SCPolicySvc - ok
18:14:03.0554 4632 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
18:14:03.0600 4632 sdbus - ok
18:14:03.0647 4632 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:14:03.0663 4632 SDRSVC - ok
18:14:03.0710 4632 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:14:03.0772 4632 seclogon - ok
18:14:03.0819 4632 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:14:03.0850 4632 SENS - ok
18:14:03.0881 4632 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:14:03.0912 4632 SensrSvc - ok
18:14:03.0944 4632 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:14:03.0959 4632 Serenum - ok
18:14:03.0990 4632 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:14:04.0022 4632 Serial - ok
18:14:04.0068 4632 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:14:04.0084 4632 sermouse - ok
18:14:04.0146 4632 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:14:04.0193 4632 SessionEnv - ok
18:14:04.0256 4632 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:14:04.0287 4632 sffdisk - ok
18:14:04.0287 4632 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:14:04.0302 4632 sffp_mmc - ok
18:14:04.0302 4632 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:14:04.0334 4632 sffp_sd - ok
18:14:04.0349 4632 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:14:04.0396 4632 sfloppy - ok
18:14:04.0443 4632 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:14:04.0505 4632 SharedAccess - ok
18:14:04.0552 4632 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:14:04.0599 4632 ShellHWDetection - ok
18:14:04.0614 4632 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:14:04.0630 4632 SiSRaid2 - ok
18:14:04.0630 4632 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:14:04.0646 4632 SiSRaid4 - ok
18:14:04.0770 4632 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:14:04.0770 4632 SkypeUpdate - ok
18:14:04.0802 4632 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:14:04.0848 4632 Smb - ok
18:14:04.0880 4632 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:14:04.0911 4632 SNMPTRAP - ok
18:14:04.0926 4632 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:14:04.0926 4632 spldr - ok
18:14:04.0989 4632 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:14:05.0020 4632 Spooler - ok
18:14:05.0114 4632 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:14:05.0270 4632 sppsvc - ok
18:14:05.0316 4632 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:14:05.0348 4632 sppuinotify - ok
18:14:05.0410 4632 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:14:05.0426 4632 srv - ok
18:14:05.0457 4632 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:14:05.0519 4632 srv2 - ok
18:14:05.0550 4632 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:14:05.0566 4632 srvnet - ok
18:14:05.0613 4632 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:14:05.0660 4632 SSDPSRV - ok
18:14:05.0675 4632 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:14:05.0706 4632 SstpSvc - ok
18:14:05.0769 4632 [ AD42CA614E086BCADBD53FFFC404AC24 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
18:14:05.0784 4632 ssudmdm - ok
18:14:05.0878 4632 Steam Client Service - ok
18:14:05.0909 4632 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:14:05.0925 4632 stexstor - ok
18:14:06.0003 4632 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:14:06.0050 4632 stisvc - ok
18:14:06.0221 4632 [ DD7F11E64E90043B895724DBDC668CD7 ] STRATO HiDrive Service C:\Program Files (x86)\STRATO AG\STRATO HiDrive\STRATO HiDrive Service.exe
18:14:06.0221 4632 STRATO HiDrive Service ( UnsignedFile.Multi.Generic ) - warning
18:14:06.0221 4632 STRATO HiDrive Service - detected UnsignedFile.Multi.Generic (1)
18:14:06.0268 4632 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:14:06.0284 4632 swenum - ok
18:14:06.0408 4632 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:14:06.0424 4632 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
18:14:06.0424 4632 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
18:14:06.0455 4632 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:14:06.0518 4632 swprv - ok
18:14:06.0564 4632 [ 5AEEC2BB8065B563ADBC88CA22588953 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:14:06.0580 4632 SynTP - ok
18:14:06.0658 4632 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:14:06.0736 4632 SysMain - ok
18:14:06.0798 4632 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:14:06.0814 4632 TabletInputService - ok
18:14:06.0970 4632 [ C0255D8E3ABE790694927624603F8F10 ] TabletServiceWacom C:\Windows\system32\Wacom_Tablet.exe
18:14:07.0157 4632 TabletServiceWacom - ok
18:14:07.0220 4632 [ BCD6A90D6FD757CE9C29DDC850F7F231 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
18:14:07.0251 4632 tap0901 - ok
18:14:07.0313 4632 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:14:07.0360 4632 TapiSrv - ok
18:14:07.0391 4632 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:14:07.0438 4632 TBS - ok
18:14:07.0532 4632 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:14:07.0594 4632 Tcpip - ok
18:14:07.0641 4632 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:14:07.0672 4632 TCPIP6 - ok
18:14:07.0734 4632 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:14:07.0750 4632 tcpipreg - ok
18:14:07.0781 4632 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:14:07.0797 4632 TDPIPE - ok
18:14:07.0859 4632 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:14:07.0875 4632 TDTCP - ok
18:14:07.0937 4632 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:14:07.0984 4632 tdx - ok
18:14:08.0031 4632 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:14:08.0046 4632 TermDD - ok
18:14:08.0109 4632 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:14:08.0171 4632 TermService - ok
18:14:08.0218 4632 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:14:08.0234 4632 Themes - ok
18:14:08.0265 4632 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:14:08.0296 4632 THREADORDER - ok
18:14:08.0327 4632 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:14:08.0358 4632 TrkWks - ok
18:14:08.0436 4632 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:14:08.0499 4632 TrustedInstaller - ok
18:14:08.0577 4632 [ 2670B4F69E530C9DE602488CA8C55AD3 ] trustms C:\Windows\system32\drivers\trustms.sys
18:14:08.0577 4632 trustms - ok
18:14:08.0639 4632 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:14:08.0686 4632 tssecsrv - ok
18:14:08.0733 4632 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:14:08.0764 4632 TsUsbFlt - ok
18:14:08.0842 4632 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:14:08.0889 4632 tunnel - ok
18:14:08.0951 4632 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
18:14:08.0951 4632 TurboB - ok
18:14:09.0014 4632 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
18:14:09.0029 4632 TurboBoost - ok
18:14:09.0045 4632 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:14:09.0045 4632 uagp35 - ok
18:14:09.0107 4632 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:14:09.0138 4632 udfs - ok
18:14:09.0170 4632 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:14:09.0185 4632 UI0Detect - ok
18:14:09.0216 4632 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:14:09.0232 4632 uliagpkx - ok
18:14:09.0279 4632 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:14:09.0310 4632 umbus - ok
18:14:09.0341 4632 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:14:09.0357 4632 UmPass - ok
18:14:09.0450 4632 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:14:09.0482 4632 UNS - ok
18:14:09.0528 4632 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
18:14:09.0544 4632 Updater Service - ok
18:14:09.0591 4632 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:14:09.0638 4632 upnphost - ok
18:14:09.0700 4632 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:14:09.0716 4632 usbaudio - ok
18:14:09.0716 4632 usbbus - ok
18:14:09.0794 4632 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:14:09.0809 4632 usbccgp - ok
18:14:09.0872 4632 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:14:09.0887 4632 usbcir - ok
18:14:09.0903 4632 UsbDiag - ok
18:14:09.0903 4632 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:14:09.0934 4632 usbehci - ok
18:14:09.0996 4632 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:14:10.0028 4632 usbhub - ok
18:14:10.0028 4632 USBModem - ok
18:14:10.0074 4632 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:14:10.0121 4632 usbohci - ok
18:14:10.0152 4632 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:14:10.0184 4632 usbprint - ok
18:14:10.0215 4632 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:14:10.0230 4632 USBSTOR - ok
18:14:10.0308 4632 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:14:10.0324 4632 usbuhci - ok
18:14:10.0386 4632 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:14:10.0433 4632 usbvideo - ok
18:14:10.0464 4632 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:14:10.0511 4632 UxSms - ok
18:14:10.0558 4632 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:14:10.0558 4632 VaultSvc - ok
18:14:10.0574 4632 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:14:10.0574 4632 vdrvroot - ok
18:14:10.0636 4632 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:14:10.0698 4632 vds - ok
18:14:10.0745 4632 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:14:10.0761 4632 vga - ok
18:14:10.0776 4632 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:14:10.0823 4632 VgaSave - ok
18:14:10.0870 4632 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:14:10.0886 4632 vhdmp - ok
18:14:10.0948 4632 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:14:10.0948 4632 viaide - ok
18:14:10.0964 4632 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:14:10.0979 4632 volmgr - ok
18:14:11.0042 4632 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:14:11.0057 4632 volmgrx - ok
18:14:11.0073 4632 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:14:11.0088 4632 volsnap - ok
18:14:11.0120 4632 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:14:11.0135 4632 vsmraid - ok
18:14:11.0213 4632 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:14:11.0291 4632 VSS - ok
18:14:11.0307 4632 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:14:11.0338 4632 vwifibus - ok
18:14:11.0385 4632 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:14:11.0432 4632 vwififlt - ok
18:14:11.0463 4632 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:14:11.0478 4632 vwifimp - ok
18:14:11.0510 4632 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:14:11.0541 4632 W32Time - ok
18:14:11.0603 4632 [ 37E4600E2CDAD3C1A3613A25B97D457C ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
18:14:11.0603 4632 wacmoumonitor - ok
18:14:11.0650 4632 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
18:14:11.0650 4632 wacommousefilter - ok
18:14:11.0666 4632 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:14:11.0681 4632 WacomPen - ok
18:14:11.0712 4632 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys
18:14:11.0712 4632 wacomvhid - ok
18:14:11.0775 4632 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:14:11.0822 4632 WANARP - ok
18:14:11.0822 4632 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:14:11.0853 4632 Wanarpv6 - ok
18:14:11.0931 4632 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:14:11.0978 4632 wbengine - ok
18:14:12.0009 4632 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:14:12.0024 4632 WbioSrvc - ok
18:14:12.0071 4632 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:14:12.0118 4632 wcncsvc - ok
18:14:12.0149 4632 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:14:12.0165 4632 WcsPlugInService - ok
18:14:12.0180 4632 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:14:12.0196 4632 Wd - ok
18:14:12.0258 4632 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:14:12.0290 4632 Wdf01000 - ok
18:14:12.0305 4632 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:14:12.0336 4632 WdiServiceHost - ok
18:14:12.0352 4632 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:14:12.0368 4632 WdiSystemHost - ok
18:14:12.0414 4632 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:14:12.0446 4632 WebClient - ok
18:14:12.0492 4632 [ D5BA7D43FA2EF656BF7E98A188391E40 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:14:12.0508 4632 Wecsvc - ok
18:14:12.0539 4632 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:14:12.0602 4632 wercplsupport - ok
18:14:12.0633 4632 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:14:12.0680 4632 WerSvc - ok
18:14:12.0695 4632 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:14:12.0742 4632 WfpLwf - ok
18:14:12.0758 4632 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:14:12.0758 4632 WIMMount - ok
18:14:12.0789 4632 WinDefend - ok
18:14:12.0789 4632 WinHttpAutoProxySvc - ok
18:14:12.0867 4632 [ 136760C1E9697BAF4ECDEAE5590A0806 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:14:12.0882 4632 Winmgmt - ok
18:14:12.0976 4632 [ 3BB6B401A780BF434C8F58137DE10BF7 ] WinRM C:\Windows\system32\WsmSvc.dll
18:14:13.0085 4632 WinRM - ok
18:14:13.0179 4632 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:14:13.0210 4632 WinUsb - ok
18:14:13.0241 4632 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:14:13.0288 4632 Wlansvc - ok
18:14:13.0444 4632 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:14:13.0491 4632 wlidsvc - ok
18:14:13.0538 4632 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:14:13.0569 4632 WmiAcpi - ok
18:14:13.0631 4632 [ 4DF841632B62A7CF19A79A05046A8AB1 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:14:13.0647 4632 wmiApSrv - ok
18:14:13.0678 4632 WMPNetworkSvc - ok
18:14:13.0709 4632 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:14:13.0709 4632 WPCSvc - ok
18:14:13.0772 4632 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:14:13.0787 4632 WPDBusEnum - ok
18:14:13.0818 4632 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:14:13.0865 4632 ws2ifsl - ok
18:14:13.0896 4632 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:14:13.0928 4632 wscsvc - ok
18:14:13.0928 4632 WSearch - ok
18:14:14.0037 4632 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:14:14.0130 4632 wuauserv - ok
18:14:14.0193 4632 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:14:14.0208 4632 WudfPf - ok
18:14:14.0240 4632 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:14:14.0271 4632 WUDFRd - ok
18:14:14.0318 4632 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:14:14.0333 4632 wudfsvc - ok
18:14:14.0364 4632 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:14:14.0380 4632 WwanSvc - ok
18:14:14.0411 4632 ================ Scan global ===============================
18:14:14.0442 4632 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:14:14.0489 4632 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
18:14:14.0505 4632 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
18:14:14.0536 4632 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:14:14.0567 4632 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:14:14.0567 4632 [Global] - ok
18:14:14.0567 4632 ================ Scan MBR ==================================
18:14:14.0567 4632 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
18:14:14.0739 4632 \Device\Harddisk1\DR1 - ok
18:14:14.0754 4632 [ 9C51D3FD2697BD2AE931BE1D6F1E6FFA ] \Device\Harddisk0\DR0
18:14:15.0191 4632 \Device\Harddisk0\DR0 - ok
18:14:15.0191 4632 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
18:14:15.0363 4632 \Device\Harddisk1\DR1 - ok
18:14:15.0363 4632 ================ Scan VBR ==================================
18:14:15.0363 4632 [ 65D78D257916AB0B90A43803481BFC9A ] \Device\Harddisk1\DR1\Partition1
18:14:15.0363 4632 \Device\Harddisk1\DR1\Partition1 - ok
18:14:15.0378 4632 [ 65D316E57884CFD5000111E3435A6CB8 ] \Device\Harddisk0\DR0\Partition1
18:14:15.0378 4632 \Device\Harddisk0\DR0\Partition1 - ok
18:14:15.0394 4632 [ 45C14CA7380C607610EF273E179FD7A9 ] \Device\Harddisk0\DR0\Partition2
18:14:15.0394 4632 \Device\Harddisk0\DR0\Partition2 - ok
18:14:15.0394 4632 [ 65D78D257916AB0B90A43803481BFC9A ] \Device\Harddisk1\DR1\Partition1
18:14:15.0394 4632 \Device\Harddisk1\DR1\Partition1 - ok
18:14:15.0394 4632 ============================================================
18:14:15.0394 4632 Scan finished
18:14:15.0394 4632 ============================================================
18:14:15.0410 3980 Detected object count: 8
18:14:15.0410 3980 Actual detected object count: 8
18:14:34.0145 3980 enecirhid ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 enecirhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 enecirhidma ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 enecirhidma ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 IGBASVC ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 IGBASVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 STRATO HiDrive Service ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 STRATO HiDrive Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:14:34.0145 3980 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
18:14:34.0145 3980 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
__________________
 

Themen zu "C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt
akamai, antivir, avira, bho, c:\windows\system32\cmd.exe, error, fehler, firefox, flash player, frage, helper, hijack, home, install.exe, jdownloader, logfile, mywinlocker, openvpn, plug-in, problem, programm, realtek, registry, scan, security, sketchup, spotify web helper, svchost.exe, system, teamspeak, trojaner, viren, windows


« Tabs öffnen sich selbständig und blockieren PC | GVU Trojaner 05.12.2012 »


Ähnliche Themen: "C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt


  1. Trojaner "c:\windows\system32\svchost.exe "Avast - Infektion geblockt"
    Log-Analyse und Auswertung - 07.06.2015 (16)
  2. Nach Windows Start soll "msbblqt.exe" ausgeführt werden
    Plagegeister aller Art und deren Bekämpfung - 10.10.2014 (10)
  3. Fehlermeldung bei Systemstart von WINDOWS 7 64-bit: RegSvr32 "Fehler beim Laden des Moduls ""."
    Log-Analyse und Auswertung - 17.08.2014 (10)
  4. Windows 7: Fehlermeldung bei Systemstart- RegSvr32 "Fehler beim Laden des Moduls ""."
    Alles rund um Windows - 12.08.2014 (18)
  5. Windows 7: Fehlermeldung bei Systemstart- RegSvr32 "Fehler beim Laden des Moduls ""."
    Log-Analyse und Auswertung - 16.06.2014 (11)
  6. Windows 7 PRO, SP1 wird zunehmend langsamer! Gefunden "DealPly", "HideIcon" und andere
    Log-Analyse und Auswertung - 06.11.2013 (19)
  7. AVG erkennt andauernd potentielle Bedrohungen. z.B. C:\Windows\System32\Drivers\spgc.sys";"Infiziert"
    Plagegeister aller Art und deren Bekämpfung - 16.10.2013 (13)
  8. ohne mein zutun wird "http://wisersearch.com/?channel=de" als Startseite ausgeführt.
    Log-Analyse und Auswertung - 26.09.2013 (19)
  9. "Skype" und "Minianwendungen" werden nicht mehr ausgeführt (Windows 7)
    Log-Analyse und Auswertung - 21.05.2013 (3)
  10. virus? computer langsam und "rundll" wird bei systemstart angezeigt. wieso?
    Plagegeister aller Art und deren Bekämpfung - 27.11.2012 (3)
  11. "C:\Windows\System32\wermgr.exe" wird von AntiVir im Zusammenhang mit Flooding gemeldet
    Log-Analyse und Auswertung - 07.02.2012 (1)
  12. "WORM/Rbot.425984" in "C:\WINDOWS\system32†\smss.exe"
    Plagegeister aller Art und deren Bekämpfung - 11.08.2010 (39)
  13. "Fehler beim Laden von C:\Windows\system32\sshnas.dll" bei jedem Systemstart
    Plagegeister aller Art und deren Bekämpfung - 30.05.2010 (7)
  14. "TR/Agent.ruo" in "C:\Windows\System32\wineoam.dll.VIR"
    Plagegeister aller Art und deren Bekämpfung - 28.03.2010 (1)
  15. TR/Agent.ruo im Ordner "windows/system32" in der Datei "d3stez.dll"
    Plagegeister aller Art und deren Bekämpfung - 27.03.2010 (1)
  16. "Fehler beim Laden von C:\Windows\system32\sshnas21.dll" bei Systemstart
    Plagegeister aller Art und deren Bekämpfung - 21.01.2010 (0)
  17. "Ein Bild" wird immer noch dem Systemstart hochgeladen
    Plagegeister aller Art und deren Bekämpfung - 21.06.2008 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema "C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt - Wow, danke für die schnelle Antwort - da blieb ja nichtmal Zeit zum Kaffee holen! Hier der Report, den der TDSSKiller ausgegeben hat: 18:13:33.0087 4248 TDSS rootkit removing tool 2.8.15.0 - "C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt...
Archiv
Du betrachtest: "C:\Windows\System32\cmd.exe" wird bei Systemstart ausgeführt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19