Hallo, ich habe mir die Server.exe eingefangen. Dort kommt bei jedem Start ein paar Meldungen und es geht auch auf meine Computer Leistung. Und da ich total Begeistert bin von diesem Forum hab ich mir gedacht dass ich hier mal Frage wie ich dass ding da wegbekomme.
MfG Marci

Hi
Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

• Starte bitte die
  OTL.exe
  .
  Vista und Win7 User mit Rechtsklick "als Administrator starten"
• Kopiere nun den Inhalt in die
  Textbox.

Code: Alles auswählenAufklappen

ATTFilter

activex
netsvcs
msconfig
%SYSTEMDRIVE%\*.
%PROGRAMFILES%\*.exe
%LOCALAPPDATA%\*.exe
%systemroot%\*. /mp /s
C:\Windows\system32\*.tsp
/md5start
userinit.exe
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
ws2ifsl.sys
sceclt.dll
ntelogon.dll
winlogon.exe
logevent.dll
user32.DLL
explorer.exe
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
/md5stop
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\*.dll /lockedfiles
%USERPROFILE%\*.*
%USERPROFILE%\Local Settings\Temp\*.exe
%USERPROFILE%\Local Settings\Temp\*.dll
%USERPROFILE%\Application Data\*.exe
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems|Windows /rs
CREATERESTOREPOINT
         

• Schliesse bitte nun alle Programme. (Wichtig)
• Klicke nun bitte auf den Quick Scan Button.
• Kopiere
  nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread

Hier sind die Sachen im Anhang hoffe es ist richtig :S

hi

dieses script sowie evtl. folgende scripts sind nur für den jeweiligen user.
wenn ihr probleme habt, eröffnet eigene topics und wartet auf, für euch angepasste scripts.


• Starte bitte die OTL.exe
• Kopiere nun das Folgende in die Textbox.

Code: Alles auswählenAufklappen

ATTFilter

:OTL
O4 - HKCU..\Run: [HKCU] C:\Users\Marci´s\AppData\Roaming\install\server.exe ()
[2013.01.02 21:47:08 | 000,102,581 | -H-- | M] () -- C:\Users\Marci´s\AppData\Roaming\cglogs.dat
 :Files
C:\Users\Marci´s\AppData\Roaming\install
:Commands
[EMPTYFLASH] 
[emptytemp]
         

• Schliesse bitte nun alle Programme.
• Klicke nun bitte auf den Fix Button.
• OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
• Nach dem Neustart findest Du ein Textdokument, dessen inhalt in deiner nächsten antwort hier reinkopieren.
starte in den normalen modus.

falls du keine symbole hast, dann rechtsklick, ansicht, desktop symbole einblenden

Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang
in den Thread posten!



Drücke bitte die + E Taste.

• Öffne dein Systemlaufwerk ( meistens C: )
• Suche nun
  folgenden Ordner: _OTL und öffne diesen.
• Mache einen Rechtsklick auf den Ordner Movedfiles --> Senden an --> Zip-Komprimierter Ordner
• 
  Dies wird eine Movedfiles.zip Datei in _OTL erstellen
• Lade diese bitte in unseren Uploadchannel
  hoch. ( Durchsuchen --> C:\_OTL\Movedfiles.zip )

Teile mir mit ob der Upload problemlos geklappt hat. Danke im voraus

Das von OTL:
All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\HKCU deleted successfully.
C:\Users\Marci´s\AppData\Roaming\install\server.exe moved successfully.
C:\Users\Marci´s\AppData\Roaming\cglogs.dat moved successfully.
========== COMMANDS ==========

[EMPTYFLASH]

User: Administrator

User: Administrator.Marci´s-Laptop
->Flash cache emptied: 0 bytes

User: All Users

User: Default
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Default.migrated

User: hedev

User: Marci´s
->Flash cache emptied: 1871 bytes

User: Marciïs

User: Public

Total Flash Files Cleaned = 0,00 mb


[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 0 bytes

User: Administrator.Marci´s-Laptop
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default.migrated

User: hedev
->Temp folder emptied: 43164427 bytes

User: Marci´s
->Temp folder emptied: 84955317 bytes
->Temporary Internet Files folder emptied: 13665007 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 20106594 bytes
->Google Chrome cache emptied: 387819210 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Marciïs

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1192084 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 62295161 bytes

Total Files Cleaned = 585,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01032013_193644

Files\Folders moved on Reboot...
C:\Users\Marci´s\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Das mit dem Upload hat wunderbar geklappt

Danke
download tdss killer:
http://www.trojaner-board.de/82358-t...entfernen.html
Klicke auf Change parameters
• Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system
• Klick auf OK und anschließend auf Start scan
- bei funden erst mal immer skip wählen, log posten

Ich kapiere leider die Anleitung nicht und weiß auch nicht genau was ich jetzt downloaden muss

#edit: kapiert, runterscrollen :P

und die Haken setzen wie beschrieben.

20:34:52.0683 1652 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:34:52.0768 1652 ============================================================
20:34:52.0768 1652 Current date / time: 2013/01/03 20:34:52.0768
20:34:52.0768 1652 SystemInfo:
20:34:52.0768 1652
20:34:52.0768 1652 OS Version: 6.2.9200 ServicePack: 0.0
20:34:52.0768 1652 Product type: Workstation
20:34:52.0768 1652 ComputerName: MARCI´S-LAPTOP
20:34:52.0769 1652 UserName: Marci´s
20:34:52.0769 1652 Windows directory: C:\WINDOWS
20:34:52.0769 1652 System windows directory: C:\WINDOWS
20:34:52.0769 1652 Running under WOW64
20:34:52.0769 1652 Processor architecture: Intel x64
20:34:52.0769 1652 Number of processors: 4
20:34:52.0769 1652 Page size: 0x1000
20:34:52.0769 1652 Boot type: Normal boot
20:34:52.0769 1652 ============================================================
20:34:53.0170 1652 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:34:53.0173 1652 ============================================================
20:34:53.0173 1652 \Device\Harddisk0\DR0:
20:34:53.0174 1652 MBR partitions:
20:34:53.0174 1652 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2328800, BlocksNum 0x32000
20:34:53.0174 1652 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x235A800, BlocksNum 0x1BFE2000
20:34:53.0174 1652 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1E33C800, BlocksNum 0x1C049000
20:34:53.0174 1652 ============================================================
20:34:53.0202 1652 C: <-> \Device\Harddisk0\DR0\Partition2
20:34:53.0246 1652 D: <-> \Device\Harddisk0\DR0\Partition3
20:34:53.0246 1652 ============================================================
20:34:53.0246 1652 Initialize success
20:34:53.0246 1652 ============================================================
20:35:32.0391 3992 ============================================================
20:35:32.0391 3992 Scan started
20:35:32.0391 3992 Mode: Manual; SigCheck; TDLFS;
20:35:32.0391 3992 ============================================================
20:35:34.0047 3992 ================ Scan system memory ========================
20:35:34.0047 3992 System memory - ok
20:35:34.0048 3992 ================ Scan services =============================
20:35:34.0303 3992 [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
20:35:34.0416 3992 1394ohci - ok
20:35:34.0450 3992 [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
20:35:34.0481 3992 3ware - ok
20:35:34.0518 3992 [ 975AABEB243B800C23626D6B652C5A9C ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
20:35:34.0541 3992 ACPI - ok
20:35:34.0640 3992 [ DC968C37822117E576B933F34A2D130C ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
20:35:34.0654 3992 acpiex - ok
20:35:34.0697 3992 [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
20:35:34.0730 3992 acpipagr - ok
20:35:34.0765 3992 [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
20:35:34.0790 3992 AcpiPmi - ok
20:35:34.0827 3992 [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
20:35:34.0857 3992 acpitime - ok
20:35:34.0959 3992 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
20:35:34.0974 3992 AdobeActiveFileMonitor9.0 - ok
20:35:35.0024 3992 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:35:35.0035 3992 AdobeARMservice - ok
20:35:35.0165 3992 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:35:35.0177 3992 AdobeFlashPlayerUpdateSvc - ok
20:35:35.0220 3992 [ 93C6388592B99925C1D1576E465BC80F ] adp94xx C:\WINDOWS\system32\drivers\adp94xx.sys
20:35:35.0243 3992 adp94xx - ok
20:35:35.0285 3992 [ D27763E0247292654E7F7D16444C7C72 ] adpahci C:\WINDOWS\system32\drivers\adpahci.sys
20:35:35.0304 3992 adpahci - ok
20:35:35.0348 3992 [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320 C:\WINDOWS\system32\drivers\adpu320.sys
20:35:35.0364 3992 adpu320 - ok
20:35:35.0407 3992 [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
20:35:35.0444 3992 AeLookupSvc - ok
20:35:35.0491 3992 [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD C:\WINDOWS\system32\drivers\afd.sys
20:35:35.0539 3992 AFD - ok
20:35:35.0585 3992 [ 01590377A5AB19E792528C628A2A68F9 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
20:35:35.0600 3992 agp440 - ok
20:35:35.0649 3992 [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG C:\WINDOWS\System32\alg.exe
20:35:35.0680 3992 ALG - ok
20:35:35.0717 3992 [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
20:35:35.0753 3992 AllUserInstallAgent - ok
20:35:35.0790 3992 [ 4C1E3649C89C7D542CD18ECC5210099D ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
20:35:35.0822 3992 AMD External Events Utility - ok
20:35:35.0857 3992 [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
20:35:35.0893 3992 AmdK8 - ok
20:35:36.0117 3992 [ A3C0A15B39F979E8F3EABA901D72ECD7 ] amdkmdag C:\WINDOWS\system32\DRIVERS\atikmdag.sys
20:35:36.0395 3992 amdkmdag - ok
20:35:36.0426 3992 [ 20F3CD38B107C1BD747C0EA37D450165 ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
20:35:36.0474 3992 amdkmdap - ok
20:35:36.0510 3992 [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
20:35:36.0544 3992 AmdPPM - ok
20:35:36.0623 3992 [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
20:35:36.0635 3992 amdsata - ok
20:35:36.0672 3992 [ 00452671904F5EE94B50BF0219C97164 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
20:35:36.0688 3992 amdsbs - ok
20:35:36.0717 3992 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
20:35:36.0729 3992 amdxata - ok
20:35:36.0803 3992 [ 823F34D1DEF120A657BB7529ABF4461F ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll
20:35:36.0827 3992 AppHostSvc - ok
20:35:36.0847 3992 [ 83B3682CE922FB0F415734B26D9D6233 ] AppID C:\WINDOWS\system32\drivers\appid.sys
20:35:36.0877 3992 AppID - ok
20:35:36.0906 3992 [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
20:35:36.0930 3992 AppIDSvc - ok
20:35:36.0959 3992 [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo C:\WINDOWS\System32\appinfo.dll
20:35:36.0994 3992 Appinfo - ok
20:35:37.0046 3992 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:35:37.0055 3992 Apple Mobile Device - ok
20:35:37.0090 3992 [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:35:37.0133 3992 AppMgmt - ok
20:35:37.0162 3992 [ E933401B392387F4BE34DE8BAF1722A7 ] arc C:\WINDOWS\system32\drivers\arc.sys
20:35:37.0175 3992 arc - ok
20:35:37.0215 3992 [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
20:35:37.0229 3992 arcsas - ok
20:35:37.0335 3992 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:35:37.0359 3992 aspnet_state - ok
20:35:37.0395 3992 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
20:35:37.0414 3992 aswFsBlk - ok
20:35:37.0447 3992 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
20:35:37.0456 3992 aswMonFlt - ok
20:35:37.0506 3992 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
20:35:37.0537 3992 aswSnx - ok
20:35:37.0554 3992 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
20:35:37.0570 3992 aswSP - ok
20:35:37.0602 3992 [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:35:37.0640 3992 AsyncMac - ok
20:35:37.0679 3992 [ A721FF570C2387E383BDDEA9632863C9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
20:35:37.0691 3992 atapi - ok
20:35:37.0771 3992 [ DECE3E2832F125A41A02FB59F4C54EEA ] athr C:\WINDOWS\system32\DRIVERS\athrx.sys
20:35:37.0878 3992 athr - ok
20:35:37.0908 3992 [ 87DAD8D354E312DB16636DC71EB39E5E ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdW86.sys
20:35:37.0932 3992 AtiHDAudioService - ok
20:35:37.0969 3992 [ FB7602C5C508BE281368AAE0B61B51C6 ] AtiHdmiService C:\WINDOWS\system32\drivers\AtiHdmi.sys
20:35:37.0979 3992 AtiHdmiService - ok
20:35:38.0012 3992 [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
20:35:38.0039 3992 AudioEndpointBuilder - ok
20:35:38.0085 3992 [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
20:35:38.0118 3992 Audiosrv - ok
20:35:38.0186 3992 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
20:35:38.0193 3992 avast! Antivirus - ok
20:35:38.0222 3992 [ 89491EF71D5EA011127832C588002853 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
20:35:38.0252 3992 AxInstSV - ok
20:35:38.0298 3992 [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
20:35:38.0340 3992 b06bdrv - ok
20:35:38.0381 3992 [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
20:35:38.0402 3992 BasicDisplay - ok
20:35:38.0434 3992 [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
20:35:38.0464 3992 BasicRender - ok
20:35:38.0505 3992 [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
20:35:38.0535 3992 BDESVC - ok
20:35:38.0574 3992 [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:35:38.0603 3992 Beep - ok
20:35:38.0640 3992 [ 7253B5371136DAF5D38AFB2C42D2B78F ] BFE C:\WINDOWS\System32\bfe.dll
20:35:38.0664 3992 BFE - ok
20:35:38.0733 3992 [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS C:\WINDOWS\System32\qmgr.dll
20:35:38.0800 3992 BITS - ok
20:35:38.0847 3992 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:35:38.0863 3992 Bonjour Service - ok
20:35:38.0876 3992 [ B17AC10B47C7FCB44D22A1F06415840E ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
20:35:38.0910 3992 bowser - ok
20:35:38.0952 3992 [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
20:35:38.0994 3992 BrokerInfrastructure - ok
20:35:39.0105 3992 [ 310068BDA80B1D55C36580FD8A873FAF ] Browser C:\WINDOWS\System32\browser.dll
20:35:39.0159 3992 Browser - ok
20:35:39.0207 3992 [ FC79BE6D8FBC8699E9980F657D281BE9 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
20:35:39.0234 3992 BthAvrcpTg - ok
20:35:39.0271 3992 [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
20:35:39.0315 3992 BthHFEnum - ok
20:35:39.0411 3992 [ 6F7368071FCDDB96C0527A6E5D7C1906 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
20:35:39.0454 3992 bthhfhid - ok
20:35:39.0535 3992 [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
20:35:39.0569 3992 BTHMODEM - ok
20:35:39.0605 3992 [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv C:\WINDOWS\system32\bthserv.dll
20:35:39.0621 3992 bthserv - ok
20:35:39.0652 3992 [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
20:35:39.0670 3992 cdfs - ok
20:35:39.0697 3992 [ 339BFF85D788268752DA8C9644B188EE ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
20:35:39.0734 3992 cdrom - ok
20:35:39.0776 3992 [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
20:35:39.0812 3992 CertPropSvc - ok
20:35:39.0850 3992 [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass C:\WINDOWS\System32\drivers\circlass.sys
20:35:39.0906 3992 circlass - ok
20:35:39.0946 3992 [ 9905168708DB68849B879B5548F68AB3 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
20:35:39.0965 3992 CLFS - ok
20:35:40.0017 3992 [ 2DC8538A2260647484A6C921CA837313 ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
20:35:40.0042 3992 CmBatt - ok
20:35:40.0091 3992 [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
20:35:40.0116 3992 CNG - ok
20:35:40.0131 3992 [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
20:35:40.0172 3992 CompositeBus - ok
20:35:40.0177 3992 COMSysApp - ok
20:35:40.0192 3992 [ D9CB0782AF819548072AA45B70F8B22D ] condrv C:\WINDOWS\system32\drivers\condrv.sys
20:35:40.0207 3992 condrv - ok
20:35:40.0241 3992 [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
20:35:40.0271 3992 CryptSvc - ok
20:35:40.0317 3992 [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC C:\WINDOWS\system32\drivers\csc.sys
20:35:40.0348 3992 CSC - ok
20:35:40.0391 3992 [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService C:\WINDOWS\System32\cscsvc.dll
20:35:40.0433 3992 CscService - ok
20:35:40.0510 3992 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:35:40.0533 3992 cvhsvc - ok
20:35:40.0566 3992 [ C4D01BD86D6B207275FC143EEA951D75 ] dam C:\WINDOWS\system32\drivers\dam.sys
20:35:40.0578 3992 dam - ok
20:35:40.0648 3992 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:35:40.0689 3992 DcomLaunch - ok
20:35:40.0727 3992 [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc C:\WINDOWS\System32\defragsvc.dll
20:35:40.0763 3992 defragsvc - ok
20:35:40.0795 3992 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
20:35:40.0804 3992 Desura Install Service - ok
20:35:40.0842 3992 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
20:35:40.0874 3992 DeviceAssociationService - ok
20:35:40.0909 3992 [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
20:35:40.0943 3992 DeviceInstall - ok
20:35:40.0979 3992 [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
20:35:41.0004 3992 Dfsc - ok
20:35:41.0062 3992 [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
20:35:41.0072 3992 dg_ssudbus - ok
20:35:41.0140 3992 [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
20:35:41.0159 3992 Dhcp - ok
20:35:41.0193 3992 [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache C:\WINDOWS\system32\drivers\discache.sys
20:35:41.0213 3992 discache - ok
20:35:41.0242 3992 [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk C:\WINDOWS\system32\drivers\disk.sys
20:35:41.0257 3992 disk - ok
20:35:41.0291 3992 [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
20:35:41.0316 3992 dmvsc - ok
20:35:41.0353 3992 [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:35:41.0380 3992 Dnscache - ok
20:35:41.0411 3992 [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc C:\WINDOWS\System32\dot3svc.dll
20:35:41.0432 3992 dot3svc - ok
20:35:41.0458 3992 [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys
20:35:41.0469 3992 dot4 - ok
20:35:41.0493 3992 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D ] Dot4Print C:\WINDOWS\System32\drivers\Dot4Prt.sys
20:35:41.0500 3992 Dot4Print - ok
20:35:41.0516 3992 [ B7D595F2F464F7B628AD53F06547792C ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys
20:35:41.0524 3992 dot4usb - ok
20:35:41.0559 3992 [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS C:\WINDOWS\system32\dps.dll
20:35:41.0581 3992 DPS - ok
20:35:41.0614 3992 [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:35:41.0628 3992 drmkaud - ok
20:35:41.0682 3992 [ 9CF46FDF163E06B83D03FF929EF2296C ] DsiWMIService C:\Program Files (x86)\Launch Manager\dsiwmis.exe
20:35:41.0695 3992 DsiWMIService - ok
20:35:41.0738 3992 [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
20:35:41.0758 3992 DsmSvc - ok
20:35:41.0810 3992 [ 898BF1647BBF012B38EF45C7F9F7A67E ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
20:35:41.0877 3992 DXGKrnl - ok
20:35:41.0881 3992 EagleX64 - ok
20:35:41.0930 3992 [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost C:\WINDOWS\System32\eapsvc.dll
20:35:41.0961 3992 Eaphost - ok
20:35:42.0060 3992 [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
20:35:42.0184 3992 ebdrv - ok
20:35:42.0220 3992 [ F702AB6181513303AB0FC8D59E52708B ] EFS C:\WINDOWS\System32\lsass.exe
20:35:42.0244 3992 EFS - ok
20:35:42.0274 3992 [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
20:35:42.0286 3992 EhStorClass - ok
20:35:42.0306 3992 [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
20:35:42.0318 3992 EhStorTcgDrv - ok
20:35:42.0396 3992 [ 2AEE0416C54A1A86D035366DE192B2F0 ] ePowerSvc C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
20:35:42.0423 3992 ePowerSvc - ok
20:35:42.0445 3992 [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
20:35:42.0469 3992 ErrDev - ok
20:35:42.0533 3992 [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem C:\WINDOWS\system32\es.dll
20:35:42.0568 3992 EventSystem - ok
20:35:42.0589 3992 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
20:35:42.0629 3992 exfat - ok
20:35:42.0654 3992 [ 60996602A7111FD2D086E803F33E4282 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
20:35:42.0669 3992 fastfat - ok
20:35:42.0706 3992 [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax C:\WINDOWS\system32\fxssvc.exe
20:35:42.0749 3992 Fax - ok
20:35:42.0772 3992 [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
20:35:42.0798 3992 fdc - ok
20:35:42.0826 3992 [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost C:\WINDOWS\system32\fdPHost.dll
20:35:42.0847 3992 fdPHost - ok
20:35:42.0887 3992 [ 872506AAB591E8908DF4461475AF92DF ] FDResPub C:\WINDOWS\system32\fdrespub.dll
20:35:42.0918 3992 FDResPub - ok
20:35:42.0946 3992 [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
20:35:42.0961 3992 fhsvc - ok
20:35:43.0005 3992 [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
20:35:43.0020 3992 FileInfo - ok
20:35:43.0048 3992 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
20:35:43.0078 3992 Filetrace - ok
20:35:43.0102 3992 [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
20:35:43.0133 3992 flpydisk - ok
20:35:43.0151 3992 [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:35:43.0169 3992 FltMgr - ok
20:35:43.0220 3992 [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache C:\WINDOWS\system32\FntCache.dll
20:35:43.0288 3992 FontCache - ok
20:35:43.0335 3992 [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:35:43.0347 3992 FontCache3.0.0.0 - ok
20:35:43.0370 3992 [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
20:35:43.0383 3992 FsDepends - ok
20:35:43.0423 3992 [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:35:43.0434 3992 Fs_Rec - ok
20:35:43.0477 3992 [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
20:35:43.0500 3992 fvevol - ok
20:35:43.0519 3992 [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
20:35:43.0549 3992 FxPPM - ok
20:35:43.0578 3992 [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
20:35:43.0591 3992 gagp30kx - ok
20:35:43.0619 3992 [ A445F190738FCEF39F165793E3648E6F ] GameMouseFilter C:\WINDOWS\System32\Drivers\QXKJGameMouse.sys
20:35:43.0654 3992 GameMouseFilter - ok
20:35:43.0700 3992 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
20:35:43.0710 3992 GamesAppService - ok
20:35:43.0741 3992 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:35:43.0748 3992 GEARAspiWDM - ok
20:35:43.0781 3992 [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
20:35:43.0811 3992 gencounter - ok
20:35:43.0848 3992 [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
20:35:43.0863 3992 GPIOClx0101 - ok
20:35:43.0902 3992 [ 5358678C6370F2ADC5291849F6503262 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
20:35:43.0959 3992 gpsvc - ok
20:35:44.0048 3992 [ 0191DEE9B9EB7902AF2CF4F67301095D ] GREGService C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
20:35:44.0056 3992 GREGService - ok
20:35:44.0121 3992 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:35:44.0131 3992 gupdate - ok
20:35:44.0136 3992 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:35:44.0143 3992 gupdatem - ok
20:35:44.0181 3992 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\WINDOWS\system32\DRIVERS\hamachi.sys
20:35:44.0189 3992 hamachi - ok
20:35:44.0233 3992 [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
20:35:44.0261 3992 HDAudBus - ok
20:35:44.0295 3992 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
20:35:44.0304 3992 HECIx64 - ok
20:35:44.0331 3992 [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
20:35:44.0344 3992 HidBatt - ok
20:35:44.0390 3992 [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
20:35:44.0416 3992 HidBth - ok
20:35:44.0445 3992 [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
20:35:44.0457 3992 hidi2c - ok
20:35:44.0476 3992 [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
20:35:44.0515 3992 HidIr - ok
20:35:44.0552 3992 [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv C:\WINDOWS\system32\hidserv.dll
20:35:44.0580 3992 hidserv - ok
20:35:44.0607 3992 [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
20:35:44.0620 3992 HidUsb - ok
20:35:44.0655 3992 [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
20:35:44.0690 3992 hkmsvc - ok
20:35:44.0725 3992 [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
20:35:44.0760 3992 HomeGroupListener - ok
20:35:44.0787 3992 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
20:35:44.0808 3992 HomeGroupProvider - ok
20:35:44.0895 3992 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
20:35:44.0923 3992 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
20:35:44.0924 3992 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
20:35:44.0957 3992 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
20:35:44.0980 3992 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
20:35:44.0981 3992 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
20:35:45.0015 3992 [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
20:35:45.0027 3992 HpSAMD - ok
20:35:45.0072 3992 [ 29CB98187BB5711F7759540976D295FC ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
20:35:45.0105 3992 HTTP - ok
20:35:45.0154 3992 HWDeviceService64.exe - ok
20:35:45.0178 3992 [ 2A98301068801700906C06649860FE94 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
20:35:45.0189 3992 hwpolicy - ok
20:35:45.0221 3992 [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
20:35:45.0243 3992 hyperkbd - ok
20:35:45.0262 3992 [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
20:35:45.0295 3992 HyperVideo - ok
20:35:45.0317 3992 [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
20:35:45.0344 3992 i8042prt - ok
20:35:45.0389 3992 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\WINDOWS\system32\drivers\iaStor.sys
20:35:45.0405 3992 iaStor - ok
20:35:45.0452 3992 [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
20:35:45.0475 3992 iaStorV - ok
20:35:45.0550 3992 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:35:45.0568 3992 IDriverT ( UnsignedFile.Multi.Generic ) - warning
20:35:45.0568 3992 IDriverT - detected UnsignedFile.Multi.Generic (1)
20:35:45.0609 3992 [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp C:\WINDOWS\system32\drivers\iirsp.sys
20:35:45.0620 3992 iirsp - ok
20:35:45.0680 3992 [ A8FE84361B11953F651DFDF1B9A36F88 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
20:35:45.0731 3992 IKEEXT - ok
20:35:45.0810 3992 [ E8017F1662D9142F45CEAB694D013C00 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
20:35:45.0894 3992 IntcAzAudAddService - ok
20:35:45.0940 3992 [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
20:35:45.0950 3992 intelide - ok
20:35:45.0972 3992 [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
20:35:45.0992 3992 intelppm - ok
20:35:46.0033 3992 [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:35:46.0076 3992 IpFilterDriver - ok
20:35:46.0149 3992 [ CAC5202757EF68C4849B0DFFA75F6D3C ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
20:35:46.0200 3992 iphlpsvc - ok
20:35:46.0218 3992 [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
20:35:46.0241 3992 IPMIDRV - ok
20:35:46.0273 3992 [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
20:35:46.0315 3992 IPNAT - ok
20:35:46.0377 3992 [ 0F261EC4F514926177C70C1832374231 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:35:46.0397 3992 iPod Service - ok
20:35:46.0440 3992 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
20:35:46.0453 3992 IRENUM - ok
20:35:46.0490 3992 [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
20:35:46.0499 3992 isapnp - ok
20:35:46.0534 3992 [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
20:35:46.0553 3992 iScsiPrt - ok
20:35:46.0602 3992 [ CB30BC4ECF8B96BC090EC5DA09E9B17D ] k57nd60a C:\WINDOWS\system32\DRIVERS\k57nd60a.sys
20:35:46.0623 3992 k57nd60a - ok
20:35:46.0661 3992 [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
20:35:46.0672 3992 kbdclass - ok
20:35:46.0706 3992 [ FFD0D5735CFAE91FF2786E9089F8604A ] kbdfdo C:\WINDOWS\System32\drivers\qxkjvk.sys
20:35:46.0724 3992 kbdfdo - ok
20:35:46.0757 3992 [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
20:35:46.0770 3992 kbdhid - ok
20:35:46.0804 3992 [ FB6C185092E18011EF49989425C2AA87 ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
20:35:46.0827 3992 kdnic - ok
20:35:46.0842 3992 [ F702AB6181513303AB0FC8D59E52708B ] KeyIso C:\WINDOWS\system32\lsass.exe
20:35:46.0856 3992 KeyIso - ok
20:35:46.0912 3992 [ DFA480F6DED551464F3A5B959F437800 ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
20:35:46.0924 3992 KSecDD - ok
20:35:46.0966 3992 [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
20:35:46.0982 3992 KSecPkg - ok
20:35:47.0007 3992 [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
20:35:47.0026 3992 ksthunk - ok
20:35:47.0064 3992 [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
20:35:47.0087 3992 KtmRm - ok
20:35:47.0126 3992 [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
20:35:47.0154 3992 LanmanServer - ok
20:35:47.0190 3992 [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
20:35:47.0218 3992 LanmanWorkstation - ok
20:35:47.0275 3992 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
20:35:47.0286 3992 Live Updater Service - ok
20:35:47.0327 3992 [ CEEFD29FC551F289810B0B9381B321DC ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
20:35:47.0344 3992 lltdio - ok
20:35:47.0381 3992 [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
20:35:47.0412 3992 lltdsvc - ok
20:35:47.0425 3992 [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
20:35:47.0458 3992 lmhosts - ok
20:35:47.0510 3992 [ 23DE5B62B0445A6F874BE633C95B483E ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:35:47.0521 3992 LMS - ok
20:35:47.0556 3992 [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
20:35:47.0569 3992 LSI_SAS - ok
20:35:47.0606 3992 [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
20:35:47.0622 3992 LSI_SAS2 - ok
20:35:47.0651 3992 [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI C:\WINDOWS\system32\drivers\lsi_scsi.sys
20:35:47.0664 3992 LSI_SCSI - ok
20:35:47.0681 3992 [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
20:35:47.0693 3992 LSI_SSS - ok
20:35:47.0726 3992 [ 8FEFDCEE40B75FD23B4BC60DA6576113 ] LSM C:\WINDOWS\System32\lsm.dll
20:35:47.0757 3992 LSM - ok
20:35:47.0793 3992 [ 2BDC5D711FA61307CE6190D47C956368 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
20:35:47.0828 3992 luafv - ok
20:35:47.0846 3992 [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas C:\WINDOWS\system32\drivers\megasas.sys
20:35:47.0859 3992 megasas - ok
20:35:47.0898 3992 [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR C:\WINDOWS\system32\drivers\MegaSR.sys
20:35:47.0918 3992 MegaSR - ok
20:35:47.0947 3992 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS C:\WINDOWS\system32\mmcss.dll
20:35:47.0962 3992 MMCSS - ok
20:35:48.0034 3992 [ 38106C7BD34EAE89D2769AC0BA2E846B ] Mobile Partner. RunOuc C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
20:35:48.0058 3992 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - warning
20:35:48.0058 3992 Mobile Partner. RunOuc - detected UnsignedFile.Multi.Generic (1)
20:35:48.0078 3992 [ 780098AD5DA8A4822E2563984C85EF7B ] Modem C:\WINDOWS\system32\drivers\modem.sys
20:35:48.0106 3992 Modem - ok
20:35:48.0131 3992 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor C:\WINDOWS\system32\DRIVERS\monitor.sys
20:35:48.0143 3992 monitor - ok
20:35:48.0181 3992 [ 618446B98C79776654340CE27C73485E ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
20:35:48.0195 3992 mouclass - ok
20:35:48.0233 3992 [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
20:35:48.0247 3992 mouhid - ok
20:35:48.0275 3992 [ 89D263DBF08119CE16273991C120D6DD ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
20:35:48.0287 3992 mountmgr - ok
20:35:48.0332 3992 [ 313265CF4F5F02ED927774DA1DB3FE00 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:35:48.0342 3992 MozillaMaintenance - ok
20:35:48.0376 3992 [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
20:35:48.0401 3992 mpsdrv - ok
20:35:48.0454 3992 [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
20:35:48.0501 3992 MpsSvc - ok
20:35:48.0535 3992 [ 866AF645A3B1F4358C4201CE089839EA ] MQAC C:\WINDOWS\system32\drivers\mqac.sys
20:35:48.0555 3992 MQAC - ok
20:35:48.0592 3992 [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
20:35:48.0618 3992 MRxDAV - ok
20:35:48.0660 3992 [ 877D60D6E4156EC4A2E0B6871D41BED9 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:35:48.0679 3992 mrxsmb - ok
20:35:48.0726 3992 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
20:35:48.0743 3992 mrxsmb10 - ok
20:35:48.0778 3992 [ E078446D4B8622AA6030C7B8A1A08962 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
20:35:48.0806 3992 mrxsmb20 - ok
20:35:48.0835 3992 [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
20:35:48.0869 3992 MsBridge - ok
20:35:48.0896 3992 [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
20:35:48.0930 3992 MSDTC - ok
20:35:48.0983 3992 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:35:48.0997 3992 Msfs - ok
20:35:49.0035 3992 [ C9BFB0353099B071E70299549C18C8AE ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
20:35:49.0046 3992 msgpiowin32 - ok
20:35:49.0074 3992 [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
20:35:49.0103 3992 mshidkmdf - ok
20:35:49.0134 3992 [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
20:35:49.0155 3992 mshidumdf - ok
20:35:49.0177 3992 [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
20:35:49.0187 3992 msisadrv - ok
20:35:49.0216 3992 [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
20:35:49.0241 3992 MSiSCSI - ok
20:35:49.0245 3992 msiserver - ok
20:35:49.0276 3992 [ 509809566E49F4411055864EA8D437CD ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:35:49.0306 3992 MSKSSRV - ok
20:35:49.0339 3992 [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
20:35:49.0367 3992 MsLldp - ok
20:35:49.0413 3992 [ 80FF037D6184FFACB2740A50C7949D20 ] MSMQ C:\WINDOWS\system32\mqsvc.exe
20:35:49.0437 3992 MSMQ - ok
20:35:49.0453 3992 [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:35:49.0465 3992 MSPCLOCK - ok
20:35:49.0497 3992 [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:35:49.0512 3992 MSPQM - ok
20:35:49.0545 3992 [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
20:35:49.0564 3992 MsRPC - ok
20:35:49.0587 3992 [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
20:35:49.0598 3992 mssmbios - ok
20:35:49.0610 3992 [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
20:35:49.0634 3992 MSTEE - ok
20:35:49.0653 3992 [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
20:35:49.0666 3992 MTConfig - ok
20:35:49.0686 3992 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup C:\WINDOWS\system32\Drivers\mup.sys
20:35:49.0698 3992 Mup - ok
20:35:49.0710 3992 [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
20:35:49.0723 3992 mvumis - ok
20:35:49.0761 3992 [ 4B18840511D720BA118D3017E8165875 ] napagent C:\WINDOWS\system32\qagentRT.dll
20:35:49.0789 3992 napagent - ok
20:35:49.0831 3992 [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
20:35:49.0852 3992 NativeWifiP - ok
20:35:49.0910 3992 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate c:\Program Files (x86)\Nero\Update\NASvc.exe
20:35:49.0927 3992 NAUpdate - ok
20:35:49.0949 3992 [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
20:35:49.0966 3992 NcaSvc - ok
20:35:49.0998 3992 [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
20:35:50.0031 3992 NcdAutoSetup - ok
20:35:50.0079 3992 [ 0F89AE618DBA5D8AB7A2DFCC375F4159 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
20:35:50.0119 3992 NDIS - ok
20:35:50.0140 3992 [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
20:35:50.0173 3992 NdisCap - ok
20:35:50.0203 3992 [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
20:35:50.0232 3992 NdisImPlatform - ok
20:35:50.0259 3992 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:35:50.0271 3992 NdisTapi - ok
20:35:50.0284 3992 [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:35:50.0314 3992 Ndisuio - ok
20:35:50.0345 3992 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:35:50.0372 3992 NdisWan - ok
20:35:50.0377 3992 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:35:50.0395 3992 NDISWANLEGACY - ok
20:35:50.0400 3992 [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:35:50.0413 3992 NDProxy - ok
20:35:50.0431 3992 [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
20:35:50.0445 3992 Ndu - ok
20:35:50.0477 3992 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
20:35:50.0484 3992 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
20:35:50.0484 3992 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
20:35:50.0497 3992 [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:35:50.0512 3992 NetBIOS - ok
20:35:50.0534 3992 [ 7CEC25C682D319D484630B3952C31A11 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:35:50.0563 3992 NetBT - ok
20:35:50.0575 3992 [ F702AB6181513303AB0FC8D59E52708B ] Netlogon C:\WINDOWS\system32\lsass.exe
20:35:50.0590 3992 Netlogon - ok
20:35:50.0632 3992 [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman C:\WINDOWS\System32\netman.dll
20:35:50.0660 3992 Netman - ok
20:35:50.0718 3992 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:50.0780 3992 NetMsmqActivator - ok
20:35:50.0784 3992 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:50.0797 3992 NetPipeActivator - ok
20:35:50.0823 3992 [ 20F6FD63E6D456114BC8056D62792786 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
20:35:50.0863 3992 netprofm - ok
20:35:50.0868 3992 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:50.0880 3992 NetTcpActivator - ok
20:35:50.0886 3992 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:50.0899 3992 NetTcpPortSharing - ok
20:35:50.0932 3992 [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960 C:\WINDOWS\system32\drivers\nfrd960.sys
20:35:50.0943 3992 nfrd960 - ok
20:35:50.0987 3992 [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
20:35:51.0027 3992 NlaSvc - ok
20:35:51.0123 3992 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
20:35:51.0212 3992 NOBU - ok
20:35:51.0233 3992 [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:35:51.0246 3992 Npfs - ok
20:35:51.0277 3992 [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
20:35:51.0308 3992 npsvctrig - ok
20:35:51.0342 3992 [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi C:\WINDOWS\system32\nsisvc.dll
20:35:51.0372 3992 nsi - ok
20:35:51.0397 3992 [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
20:35:51.0420 3992 nsiproxy - ok
20:35:51.0508 3992 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:35:51.0592 3992 Ntfs - ok
20:35:51.0651 3992 [ 9A308FCDCCA98A15B6F62D36A272160E ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
20:35:51.0703 3992 NTI IScheduleSvc - ok
20:35:51.0719 3992 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
20:35:51.0726 3992 NTIDrvr - ok
20:35:51.0761 3992 [ 4163ADE07DB51843AE31F65B94F5398D ] Null C:\WINDOWS\system32\drivers\Null.sys
20:35:51.0774 3992 Null - ok
20:35:51.0804 3992 [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
20:35:51.0818 3992 nvraid - ok
20:35:51.0860 3992 [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
20:35:51.0874 3992 nvstor - ok
20:35:51.0898 3992 [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
20:35:51.0912 3992 nv_agp - ok
20:35:51.0957 3992 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:35:51.0969 3992 ose - ok
20:35:52.0128 3992 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:35:52.0294 3992 osppsvc - ok
20:35:52.0348 3992 [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
20:35:52.0404 3992 p2pimsvc - ok
20:35:52.0434 3992 [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
20:35:52.0465 3992 p2psvc - ok
20:35:52.0498 3992 [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport C:\WINDOWS\System32\drivers\parport.sys
20:35:52.0528 3992 Parport - ok
20:35:52.0565 3992 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
20:35:52.0578 3992 partmgr - ok
20:35:52.0609 3992 [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
20:35:52.0638 3992 PcaSvc - ok
20:35:52.0670 3992 [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci C:\WINDOWS\system32\drivers\pci.sys
20:35:52.0686 3992 pci - ok
20:35:52.0706 3992 [ F9908D274D458220F91E89B54D78D837 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
20:35:52.0717 3992 pciide - ok
20:35:52.0758 3992 [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
20:35:52.0775 3992 pcmcia - ok
20:35:52.0816 3992 [ CEBBAD5391C2644560C55628A40BFD27 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
20:35:52.0827 3992 pcw - ok
20:35:52.0855 3992 [ EF9B4F3136B4C45F421ADE6871659FB6 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
20:35:52.0867 3992 pdc - ok
20:35:52.0921 3992 [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
20:35:52.0949 3992 PEAUTH - ok
20:35:53.0018 3992 [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc C:\WINDOWS\system32\peerdistsvc.dll
20:35:53.0114 3992 PeerDistSvc - ok
20:35:53.0231 3992 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
20:35:53.0262 3992 PerfHost - ok
20:35:53.0323 3992 [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla C:\WINDOWS\system32\pla.dll
20:35:53.0381 3992 pla - ok
20:35:53.0421 3992 [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
20:35:53.0437 3992 PlugPlay - ok
20:35:53.0467 3992 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
20:35:53.0475 3992 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
20:35:53.0475 3992 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
20:35:53.0480 3992 PnkBstrA - ok
20:35:53.0518 3992 [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
20:35:53.0542 3992 PNRPAutoReg - ok
20:35:53.0560 3992 [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
20:35:53.0578 3992 PNRPsvc - ok
20:35:53.0622 3992 [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
20:35:53.0654 3992 PolicyAgent - ok
20:35:53.0696 3992 [ F1E067F56373F11EA4B785CAE823740A ] Power C:\WINDOWS\system32\umpo.dll
20:35:53.0714 3992 Power - ok
20:35:53.0758 3992 [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:35:53.0789 3992 PptpMiniport - ok
20:35:53.0948 3992 [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
20:35:54.0058 3992 PrintNotify - ok
20:35:54.0085 3992 [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor C:\WINDOWS\System32\drivers\processr.sys
20:35:54.0117 3992 Processor - ok
20:35:54.0151 3992 [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc C:\WINDOWS\system32\profsvc.dll
20:35:54.0190 3992 ProfSvc - ok
20:35:54.0231 3992 [ EB8034147D4820CD31BFCB11A2A652DF ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
20:35:54.0261 3992 Psched - ok
20:35:54.0292 3992 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\WINDOWS\system32\Drivers\PxHlpa64.sys
20:35:54.0301 3992 PxHlpa64 - ok
20:35:54.0343 3992 [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE C:\WINDOWS\system32\qwave.dll
20:35:54.0379 3992 QWAVE - ok
20:35:54.0415 3992 [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
20:35:54.0429 3992 QWAVEdrv - ok
20:35:54.0462 3992 [ 873C60F8178100557740A832FCE10B5F ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:35:54.0498 3992 RasAcd - ok
20:35:54.0530 3992 [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
20:35:54.0554 3992 RasAgileVpn - ok
20:35:54.0588 3992 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:35:54.0626 3992 RasAuto - ok
20:35:54.0645 3992 [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:35:54.0671 3992 Rasl2tp - ok
20:35:54.0708 3992 [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:35:54.0743 3992 RasMan - ok
20:35:54.0781 3992 [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:35:54.0798 3992 RasPppoe - ok
20:35:54.0832 3992 [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
20:35:54.0849 3992 RasSstp - ok
20:35:54.0879 3992 [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:35:54.0896 3992 rdbss - ok
20:35:54.0921 3992 [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
20:35:54.0932 3992 rdpbus - ok
20:35:54.0967 3992 [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
20:35:54.0995 3992 RDPDR - ok
20:35:55.0032 3992 [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
20:35:55.0045 3992 RdpVideoMiniport - ok
20:35:55.0081 3992 [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:35:55.0112 3992 RDPWD - ok
20:35:55.0152 3992 [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
20:35:55.0168 3992 rdyboost - ok
20:35:55.0210 3992 [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:35:55.0237 3992 RemoteAccess - ok
20:35:55.0264 3992 [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:35:55.0302 3992 RemoteRegistry - ok
20:35:55.0363 3992 [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
20:35:55.0379 3992 RpcEptMapper - ok
20:35:55.0415 3992 [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator C:\WINDOWS\system32\locator.exe
20:35:55.0429 3992 RpcLocator - ok
20:35:55.0481 3992 [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs C:\WINDOWS\system32\rpcss.dll
20:35:55.0505 3992 RpcSs - ok
20:35:55.0526 3992 [ E04E770DD198B9399640717145E79EBF ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
20:35:55.0554 3992 rspndr - ok
20:35:55.0590 3992 [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
20:35:55.0602 3992 s3cap - ok
20:35:55.0631 3992 [ F702AB6181513303AB0FC8D59E52708B ] SamSs C:\WINDOWS\system32\lsass.exe
20:35:55.0646 3992 SamSs - ok
20:35:55.0674 3992 [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
20:35:55.0707 3992 sbp2port - ok
20:35:55.0752 3992 [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
20:35:55.0775 3992 SCardSvr - ok
20:35:55.0805 3992 [ 5D7733A12756B267FCA021672B26BC9E ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
20:35:55.0833 3992 scfilter - ok
20:35:55.0891 3992 [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:35:55.0956 3992 Schedule - ok
20:35:55.0987 3992 [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
20:35:56.0005 3992 SCPolicySvc - ok
20:35:56.0039 3992 [ AAAB993BDFA5C0D1CB505E16E4D7B4A2 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
20:35:56.0056 3992 sdbus - ok
20:35:56.0096 3992 [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
20:35:56.0121 3992 SDRSVC - ok
20:35:56.0150 3992 [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
20:35:56.0163 3992 sdstor - ok
20:35:56.0175 3992 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
20:35:56.0189 3992 secdrv - ok
20:35:56.0219 3992 [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon C:\WINDOWS\system32\seclogon.dll
20:35:56.0253 3992 seclogon - ok
20:35:56.0291 3992 [ 9C51620998F0763039DFA6BF68E475ED ] SENS C:\WINDOWS\System32\sens.dll
20:35:56.0320 3992 SENS - ok
20:35:56.0358 3992 [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
20:35:56.0376 3992 SensrSvc - ok
20:35:56.0400 3992 [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
20:35:56.0434 3992 SerCx - ok
20:35:56.0470 3992 [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
20:35:56.0516 3992 Serenum - ok
20:35:56.0581 3992 [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial C:\WINDOWS\System32\drivers\serial.sys
20:35:56.0595 3992 Serial - ok
20:35:56.0662 3992 [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
20:35:56.0690 3992 sermouse - ok
20:35:56.0740 3992 [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv C:\WINDOWS\system32\sessenv.dll
20:35:56.0760 3992 SessionEnv - ok
20:35:56.0805 3992 [ 7EE65419B29302C795714FF8073969A1 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
20:35:56.0833 3992 sfloppy - ok
20:35:56.0881 3992 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\WINDOWS\system32\DRIVERS\Sftfslh.sys
20:35:56.0905 3992 Sftfs - ok
20:35:56.0968 3992 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:35:56.0988 3992 sftlist - ok
20:35:57.0007 3992 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\WINDOWS\system32\DRIVERS\Sftplaylh.sys
20:35:57.0020 3992 Sftplay - ok
20:35:57.0041 3992 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\WINDOWS\system32\DRIVERS\Sftredirlh.sys
20:35:57.0049 3992 Sftredir - ok
20:35:57.0064 3992 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\WINDOWS\system32\DRIVERS\Sftvollh.sys
20:35:57.0072 3992 Sftvol - ok
20:35:57.0090 3992 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:35:57.0102 3992 sftvsa - ok
20:35:57.0148 3992 [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:35:57.0183 3992 SharedAccess - ok
20:35:57.0291 3992 [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:35:57.0322 3992 ShellHWDetection - ok
20:35:57.0350 3992 [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
20:35:57.0362 3992 SiSRaid2 - ok
20:35:57.0385 3992 [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
20:35:57.0398 3992 SiSRaid4 - ok
20:35:57.0443 3992 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:35:57.0452 3992 SkypeUpdate - ok
20:35:57.0483 3992 [ 19555D03CB179BED8B8AAA239A36BDA4 ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
20:35:57.0491 3992 SmbDrvI - ok
20:35:57.0536 3992 [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
20:35:57.0570 3992 SNMPTRAP - ok
20:35:57.0599 3992 [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
20:35:57.0619 3992 spaceport - ok
20:35:57.0641 3992 [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
20:35:57.0673 3992 SpbCx - ok
20:35:57.0719 3992 [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler C:\WINDOWS\System32\spoolsv.exe
20:35:57.0765 3992 Spooler - ok
20:35:57.0879 3992 [ EC84D961501054F87A6878EC5D53388F ] sppsvc C:\WINDOWS\system32\sppsvc.exe
20:35:58.0023 3992 sppsvc - ok
20:35:58.0059 3992 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:35:58.0084 3992 srv - ok
20:35:58.0124 3992 [ C2106BB710AA34A046126AED7BCA6964 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
20:35:58.0160 3992 srv2 - ok
20:35:58.0192 3992 [ 9400C71F5A1A380B494B6922F007D485 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
20:35:58.0210 3992 srvnet - ok
20:35:58.0257 3992 [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:35:58.0280 3992 SSDPSRV - ok
20:35:58.0315 3992 [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
20:35:58.0336 3992 SstpSvc - ok
20:35:58.0372 3992 [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
20:35:58.0383 3992 ssudmdm - ok
20:35:58.0405 3992 Steam Client Service - ok
20:35:58.0446 3992 [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
20:35:58.0458 3992 stexstor - ok
20:35:58.0516 3992 [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc C:\WINDOWS\System32\wiaservc.dll
20:35:58.0541 3992 stisvc - ok
20:35:58.0573 3992 [ C588BBD37B432CE3204E5765B459E6B2 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
20:35:58.0587 3992 storahci - ok
20:35:58.0618 3992 [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
20:35:58.0632 3992 storflt - ok
20:35:58.0668 3992 [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc C:\WINDOWS\system32\storsvc.dll
20:35:58.0703 3992 StorSvc - ok
20:35:58.0729 3992 [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
20:35:58.0741 3992 storvsc - ok
20:35:58.0767 3992 [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp C:\WINDOWS\System32\drivers\storvsp.sys
20:35:58.0781 3992 storvsp - ok
20:35:58.0807 3992 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc C:\WINDOWS\system32\svsvc.dll
20:35:58.0843 3992 svsvc - ok
20:35:58.0873 3992 [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum C:\WINDOWS\System32\drivers\swenum.sys
20:35:58.0884 3992 swenum - ok
20:35:58.0935 3992 [ 502F9488540051F3E6C39889ECFA76BB ] swprv C:\WINDOWS\System32\swprv.dll
20:35:58.0966 3992 swprv - ok
20:35:59.0005 3992 [ 3F45C3FE208CA5E68832B65C597A35A6 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
20:35:59.0021 3992 SynTP - ok
20:35:59.0103 3992 [ DC21E1F06343773D7E24362DCEF7944B ] SysMain C:\WINDOWS\system32\sysmain.dll
20:35:59.0175 3992 SysMain - ok
20:35:59.0210 3992 [ 079244F281621FEDCC161D3923E858FE ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
20:35:59.0242 3992 SystemEventsBroker - ok
20:35:59.0295 3992 [ 1A78D70D7A02C920A18843426682899B ] SystemStore C:\Program Files (x86)\Freemium\SystemStore\Freemium.SystemStore.WindowsService.exe
20:35:59.0308 3992 SystemStore ( UnsignedFile.Multi.Generic ) - warning
20:35:59.0308 3992 SystemStore - detected UnsignedFile.Multi.Generic (1)
20:35:59.0416 3992 [ 7017BC8488459E3B7BE018B84285CD13 ] SystemStoreService C:\Program Files (x86)\SelfUpdater\SystemStore.exe
20:35:59.0479 3992 SystemStoreService ( UnsignedFile.Multi.Generic ) - warning
20:35:59.0479 3992 SystemStoreService - detected UnsignedFile.Multi.Generic (1)
20:35:59.0510 3992 [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
20:35:59.0527 3992 TabletInputService - ok
20:35:59.0564 3992 [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:35:59.0601 3992 TapiSrv - ok
20:35:59.0670 3992 [ 1D644E2D0FC395A055AB1C23C3B43631 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
20:35:59.0759 3992 Tcpip - ok
20:35:59.0802 3992 [ 1D644E2D0FC395A055AB1C23C3B43631 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:35:59.0858 3992 TCPIP6 - ok
20:35:59.0896 3992 [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
20:35:59.0913 3992 tcpipreg - ok
20:35:59.0952 3992 [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
20:35:59.0979 3992 tdx - ok
20:36:00.0021 3992 [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
20:36:00.0032 3992 terminpt - ok
20:36:00.0064 3992 [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService C:\WINDOWS\System32\termsrv.dll
20:36:00.0101 3992 TermService - ok
20:36:00.0131 3992 [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes C:\WINDOWS\system32\themeservice.dll
20:36:00.0163 3992 Themes - ok
20:36:00.0191 3992 [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER C:\WINDOWS\system32\mmcss.dll
20:36:00.0205 3992 THREADORDER - ok
20:36:00.0237 3992 [ 52066C139CC189468845D5BE557B25EB ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
20:36:00.0265 3992 TimeBroker - ok
20:36:00.0301 3992 [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
20:36:00.0320 3992 TPM - ok
20:36:00.0361 3992 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks C:\WINDOWS\System32\trkwks.dll
20:36:00.0394 3992 TrkWks - ok
20:36:00.0454 3992 [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
20:36:00.0477 3992 TrustedInstaller - ok
20:36:00.0502 3992 [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
20:36:00.0515 3992 TsUsbFlt - ok
20:36:00.0542 3992 [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
20:36:00.0565 3992 TsUsbGD - ok
20:36:00.0757 3992 [ E8985332F611F56ADBCFF987E7D67D51 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
20:36:00.0830 3992 TuneUp.UtilitiesSvc - ok
20:36:00.0861 3992 [ 7BC3381C0713F613B31ACDE38B71CB53 ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
20:36:00.0867 3992 TuneUpUtilitiesDrv - ok
20:36:00.0901 3992 [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
20:36:00.0918 3992 tunnel - ok
20:36:00.0932 3992 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
20:36:00.0945 3992 uagp35 - ok
20:36:00.0978 3992 [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
20:36:00.0992 3992 UASPStor - ok
20:36:01.0028 3992 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
20:36:01.0036 3992 UBHelper - ok
20:36:01.0070 3992 [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
20:36:01.0085 3992 UCX01000 - ok
20:36:01.0105 3992 [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
20:36:01.0128 3992 udfs - ok
20:36:01.0176 3992 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
20:36:01.0214 3992 UI0Detect - ok
20:36:01.0246 3992 [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
20:36:01.0259 3992 uliagpkx - ok
20:36:01.0277 3992 [ 02CEB3FE6152668A7BA420B93B664860 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
20:36:01.0291 3992 umbus - ok
20:36:01.0311 3992 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
20:36:01.0339 3992 UmPass - ok
20:36:01.0380 3992 [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService C:\WINDOWS\System32\umrdp.dll
20:36:01.0405 3992 UmRdpService - ok
20:36:01.0518 3992 [ CC3775100ABA633984F73DFAE1F55CAE ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
20:36:01.0590 3992 UNS - ok
20:36:01.0628 3992 [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost C:\WINDOWS\System32\upnphost.dll
20:36:01.0655 3992 upnphost - ok
20:36:01.0687 3992 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
20:36:01.0706 3992 USBAAPL64 - ok
20:36:01.0742 3992 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
20:36:01.0765 3992 usbccgp - ok
20:36:01.0830 3992 [ B395B62B62F28106218FA6FB17F4C797 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
20:36:01.0870 3992 usbcir - ok
20:36:01.0901 3992 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
20:36:01.0914 3992 usbehci - ok
20:36:01.0961 3992 [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
20:36:01.0985 3992 usbhub - ok
20:36:02.0012 3992 [ B7A948501424805571BF562BB0BFE31D ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
20:36:02.0035 3992 USBHUB3 - ok
20:36:02.0067 3992 [ 325F6179009B5A7F6118951A5BA422AB ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
20:36:02.0080 3992 usbohci - ok
20:36:02.0120 3992 [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
20:36:02.0153 3992 usbprint - ok
20:36:02.0182 3992 [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan C:\WINDOWS\System32\drivers\usbscan.sys
20:36:02.0201 3992 usbscan - ok
20:36:02.0236 3992 [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
20:36:02.0251 3992 USBSTOR - ok
20:36:02.0263 3992 [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
20:36:02.0287 3992 usbuhci - ok
20:36:02.0321 3992 [ 09799E701B4327097E9F63D3FE221083 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
20:36:02.0363 3992 usbvideo - ok
20:36:02.0393 3992 [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
20:36:02.0411 3992 USBXHCI - ok
20:36:02.0451 3992 [ 0089C14DFBBEB6B3A22BE14A44A4CE1F ] UxTuneUp C:\WINDOWS\System32\uxtuneup.dll
20:36:02.0463 3992 UxTuneUp - ok
20:36:02.0486 3992 [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc C:\WINDOWS\system32\lsass.exe
20:36:02.0501 3992 VaultSvc - ok
20:36:02.0533 3992 [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
20:36:02.0545 3992 vdrvroot - ok
20:36:02.0588 3992 [ 00FBA165A1167738802DA5D0EE78EF10 ] vds C:\WINDOWS\System32\vds.exe
20:36:02.0631 3992 vds - ok
20:36:02.0650 3992 [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
20:36:02.0665 3992 VerifierExt - ok
20:36:02.0706 3992 [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
20:36:02.0731 3992 vhdmp - ok
20:36:02.0755 3992 [ F5B4A14B00E89250C50982AC762DDD1D ] viaide C:\WINDOWS\system32\drivers\viaide.sys
20:36:02.0768 3992 viaide - ok
20:36:02.0804 3992 [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid C:\WINDOWS\System32\drivers\Vid.sys
20:36:02.0843 3992 Vid - ok
20:36:02.0863 3992 [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
20:36:02.0877 3992 vmbus - ok
20:36:02.0910 3992 [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
20:36:02.0942 3992 VMBusHID - ok
20:36:02.0985 3992 [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr C:\WINDOWS\System32\drivers\vmbusr.sys
20:36:02.0999 3992 vmbusr - ok
20:36:03.0033 3992 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
20:36:03.0052 3992 vmicheartbeat - ok
20:36:03.0059 3992 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
20:36:03.0076 3992 vmickvpexchange - ok
20:36:03.0083 3992 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
20:36:03.0114 3992 vmicrdv - ok
20:36:03.0121 3992 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
20:36:03.0140 3992 vmicshutdown - ok
20:36:03.0146 3992 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
20:36:03.0161 3992 vmictimesync - ok
20:36:03.0168 3992 [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
20:36:03.0186 3992 vmicvss - ok
20:36:03.0224 3992 [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
20:36:03.0236 3992 volmgr - ok
20:36:03.0278 3992 [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
20:36:03.0298 3992 volmgrx - ok
20:36:03.0342 3992 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
20:36:03.0362 3992 volsnap - ok
20:36:03.0391 3992 [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci C:\WINDOWS\System32\drivers\vpci.sys
20:36:03.0403 3992 vpci - ok
20:36:03.0419 3992 [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp C:\WINDOWS\System32\drivers\vpcivsp.sys
20:36:03.0444 3992 vpcivsp - ok
20:36:03.0473 3992 [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
20:36:03.0487 3992 vsmraid - ok
20:36:03.0543 3992 [ EA658570314042C914964FC72AB50E6B ] VSS C:\WINDOWS\system32\vssvc.exe
20:36:03.0601 3992 VSS - ok
20:36:03.0626 3992 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
20:36:03.0644 3992 VSTXRAID - ok
20:36:03.0672 3992 [ 62460A45435A26A334907E3F2EA45611 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
20:36:03.0686 3992 vwifibus - ok
20:36:03.0700 3992 [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
20:36:03.0714 3992 vwififlt - ok
20:36:03.0744 3992 [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
20:36:03.0767 3992 vwifimp - ok
20:36:03.0804 3992 [ F690B6EEAA94576727B24376D7ED3601 ] W32Time C:\WINDOWS\system32\w32time.dll
20:36:03.0836 3992 W32Time - ok
20:36:03.0920 3992 [ 901CC968412F8155B08D7ABE0171166A ] W3SVC C:\WINDOWS\system32\inetsrv\iisw3adm.dll
20:36:03.0943 3992 W3SVC - ok
20:36:03.0973 3992 [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
20:36:03.0994 3992 WacomPen - ok
20:36:04.0029 3992 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:36:04.0043 3992 Wanarp - ok
20:36:04.0050 3992 [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:36:04.0063 3992 Wanarpv6 - ok
20:36:04.0072 3992 [ 901CC968412F8155B08D7ABE0171166A ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll
20:36:04.0089 3992 WAS - ok
20:36:04.0163 3992 [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine C:\WINDOWS\system32\wbengine.exe
20:36:04.0227 3992 wbengine - ok
20:36:04.0262 3992 [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
20:36:04.0296 3992 WbioSrvc - ok
20:36:04.0316 3992 [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
20:36:04.0335 3992 Wcmsvc - ok
20:36:04.0372 3992 [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
20:36:04.0396 3992 wcncsvc - ok
20:36:04.0432 3992 [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
20:36:04.0450 3992 WcsPlugInService - ok
20:36:04.0486 3992 [ B3A4D918DAB90505B6BC7B70632913CB ] Wd C:\WINDOWS\system32\drivers\wd.sys
20:36:04.0499 3992 Wd - ok
20:36:04.0520 3992 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
20:36:04.0533 3992 WdBoot - ok
20:36:04.0649 3992 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
20:36:04.0675 3992 Wdf01000 - ok
20:36:04.0751 3992 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
20:36:04.0767 3992 WdFilter - ok
20:36:04.0801 3992 [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
20:36:04.0825 3992 WdiServiceHost - ok
20:36:04.0830 3992 [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
20:36:04.0854 3992 WdiSystemHost - ok
20:36:04.0898 3992 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:36:04.0927 3992 WebClient - ok
20:36:04.0952 3992 [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
20:36:04.0986 3992 Wecsvc - ok
20:36:05.0002 3992 [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
20:36:05.0033 3992 wercplsupport - ok
20:36:05.0041 3992 [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
20:36:05.0086 3992 WerSvc - ok
20:36:05.0111 3992 [ F09BB0754A64733F04707B0395391911 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
20:36:05.0126 3992 WFPLWFS - ok
20:36:05.0175 3992 [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
20:36:05.0193 3992 WiaRpc - ok
20:36:05.0217 3992 [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
20:36:05.0229 3992 WIMMount - ok
20:36:05.0250 3992 WinDefend - ok
20:36:05.0294 3992 [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
20:36:05.0321 3992 WinHttpAutoProxySvc - ok
20:36:05.0392 3992 [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:36:05.0425 3992 Winmgmt - ok
20:36:05.0501 3992 [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM C:\WINDOWS\system32\WsmSvc.dll
20:36:05.0600 3992 WinRM - ok
20:36:05.0637 3992 [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUsb.sys
20:36:05.0671 3992 WinUsb - ok
20:36:05.0741 3992 [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
20:36:05.0793 3992 WlanSvc - ok
20:36:05.0867 3992 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:36:05.0876 3992 wlcrasvc - ok
20:36:05.0932 3992 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
20:36:06.0006 3992 wlidsvc - ok
20:36:06.0040 3992 [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
20:36:06.0052 3992 WmiAcpi - ok
20:36:06.0091 3992 [ D113499052C5E541906B727779F0F959 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
20:36:06.0117 3992 wmiApSrv - ok
20:36:06.0137 3992 WMPNetworkSvc - ok
20:36:06.0163 3992 [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
20:36:06.0177 3992 wpcfltr - ok
20:36:06.0207 3992 [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
20:36:06.0234 3992 WPCSvc - ok
20:36:06.0266 3992 [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
20:36:06.0285 3992 WPDBusEnum - ok
20:36:06.0316 3992 [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
20:36:06.0336 3992 WpdUpFltr - ok
20:36:06.0372 3992 [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
20:36:06.0385 3992 ws2ifsl - ok
20:36:06.0400 3992 [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
20:36:06.0418 3992 wscsvc - ok
20:36:06.0422 3992 WSearch - ok
20:36:06.0497 3992 [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService C:\WINDOWS\System32\WSService.dll
20:36:06.0603 3992 WSService - ok
20:36:06.0681 3992 [ F2CF90BBFB637AA2DC3CAAF64661EA43 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
20:36:06.0807 3992 wuauserv - ok
20:36:06.0845 3992 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
20:36:06.0869 3992 WudfPf - ok
20:36:06.0887 3992 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
20:36:06.0918 3992 WUDFRd - ok
20:36:06.0924 3992 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:36:06.0940 3992 WUDFSensorLP - ok
20:36:06.0989 3992 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
20:36:07.0005 3992 wudfsvc - ok
20:36:07.0011 3992 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:36:07.0025 3992 WUDFWpdFs - ok
20:36:07.0030 3992 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
20:36:07.0044 3992 WUDFWpdMtp - ok
20:36:07.0080 3992 [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
20:36:07.0102 3992 WwanSvc - ok
20:36:07.0117 3992 ================ Scan global ===============================
20:36:07.0170 3992 [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\WINDOWS\system32\basesrv.dll
20:36:07.0210 3992 [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\WINDOWS\system32\winsrv.dll
20:36:07.0255 3992 [ BD7C6949984D19AAA609896B675E7357 ] C:\WINDOWS\system32\sxssrv.dll
20:36:07.0301 3992 [ 8F226143046435C75C033B0C52E90FFE ] C:\WINDOWS\system32\services.exe
20:36:07.0309 3992 [Global] - ok
20:36:07.0309 3992 ================ Scan MBR ==================================
20:36:07.0324 3992 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:36:07.0724 3992 \Device\Harddisk0\DR0 - ok
20:36:07.0725 3992 ================ Scan VBR ==================================
20:36:07.0727 3992 [ AA0A2E900BADA24DB7B1FCDAA14B0C29 ] \Device\Harddisk0\DR0\Partition1
20:36:07.0729 3992 \Device\Harddisk0\DR0\Partition1 - ok
20:36:07.0740 3992 [ 05E2A6D370E211CB3160A138524F2D4F ] \Device\Harddisk0\DR0\Partition2
20:36:07.0742 3992 \Device\Harddisk0\DR0\Partition2 - ok
20:36:07.0769 3992 [ ABB636EBAA4B0B0E4C974B273399C58E ] \Device\Harddisk0\DR0\Partition3
20:36:07.0771 3992 \Device\Harddisk0\DR0\Partition3 - ok
20:36:07.0771 3992 ============================================================
20:36:07.0771 3992 Scan finished
20:36:07.0771 3992 ============================================================
20:36:07.0783 4076 Detected object count: 8
20:36:07.0784 4076 Actual detected object count: 8
20:37:48.0018 4076 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0018 4076 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0019 4076 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0019 4076 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0020 4076 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0021 4076 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0022 4076 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0022 4076 Mobile Partner. RunOuc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0023 4076 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0024 4076 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0025 4076 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0025 4076 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0027 4076 SystemStore ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0027 4076 SystemStore ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:37:48.0028 4076 SystemStoreService ( UnsignedFile.Multi.Generic ) - skipped by user
20:37:48.0029 4076 SystemStoreService ( UnsignedFile.Multi.Generic ) - User select action: Skip

Hi
combofix:

Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!
Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich
ziehen und eine Bereinigung der Infektion noch erschweren.

Downloade dir bitte Combofix von einem dieser Downloadspiegel

Link 1
Link 2


WICHTIG - Speichere Combofix auf deinem Desktop

• Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.


Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Wenn ich das Starten möchte kommt diese Meldung:
This operating system is not supported!
ComboFix only runs on:
-Windows XP (32 bit)
-Windows Vista (32/64 bit)
-Windows 7 (32/64 bit)

Windows 2000 is no longer supported.

Ich habe Windows 8 64bit.
Was kann ich tun damit es funktioniert?

Aja, sorry.
malwarebytes:
Downloade Dir bitte Malwarebytes

• Installiere
  das Programm in den vorgegebenen Pfad.
  Vista und Win7 User mit Rechtsklick "als Administrator starten"
• Starte Malwarebytes, klicke auf Aktualisierung --> Suche
  nach Aktualisierung
• Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
• Wenn der Scan beendet
  ist, klicke auf Ergebnisse anzeigen.
• Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
• Poste
  das Logfile, welches sich in Notepad öffnet, hier in den Thread.
• Nachträglich kannst du den Bericht unter "Log Dateien" finden.

Läuft jetzt seit einer stunde durch

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Datenbank Version: v2013.01.05.06

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16466
Marci´s :: MARCI´S-LAPTOP [Administrator]

05.01.2013 19:22:54
mbam-log-2013-01-05 (19-22-54).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|Q:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 563697
Laufzeit: 1 Stunde(n), 16 Minute(n), 58 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 1
C:\_OTL\MovedFiles\01032013_193644\C_Users\Marci´s\AppData\Roaming\install\server.exe (Trojan.PWS) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

NA TOLL -.- jetzt nach dem neustart nach ca 5min hängt sich der pc ganz auf ich kann nichts mehr machen das schreib ich über das Handy

Jetzt kommt diese Meldung

Hi
poste die bitte als Text.

lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.