TR/Barys.17770 in C:\Users\***3knwx21a9vgpo.exe

Temeraire87 · 03.06.2013, 16:30

Hallo,

heute hat Avira einen Sicherheitshinweis angezeigt:

"Der Zugriff auf die Datei 'C:\Users\***3knwx21a9vgpo.exe', die ein Virus oder unerwünschtes Programm 'TR/Barys.17770' enthält, wurde verweigert."

Bisher habe ich dagegen noch nichts unternommen, lediglich die Schritte hier im Forum befolgt, mir OTL sowie GMER runtergeladen und die dementsprechenden Scans gemacht.

Ich habe das Ereignisprotokoll von Avira und die Logfiles OTL.txt, Extras.txt sowie Gmer.txt als Anhang hochgeladen.

Habe gestern bereits gemerkt, dass plötzlich ein Browser-Fenster aufgegangen ist, ohne dass ich etwas geöffnet habe, aber habe mir nichts weiter dazu gedacht. Das gleiche Problem hatte ich heute dann mehrmals und vorhin kam dann -wie bereits erwähnt- der Sicherheitshinweis von Avira.

Zudem ist mir aufgefallen, dass seit der Trennung des Internets und der Deaktiviterung von Avira (zwecks Erstellen der Logfiles) und anschließendem Wieder-Aktivieren des Internets + Avira, im Sicherheitscenter von Windows nun angezeigt wird, dass Avira Desktop angeblich deaktiviert sei. Habe bereits mehrfach nachgeschaut, aber habe Avira ganz sicher wieder aktiviert (aktiviertes Avira-Icon wird mir auch angezeigt).

Falls es hilfreich ist, ich verwende die Windows 7 Home Premium-Edition (64-Bit-System)

Wie soll ich nun vorgehen?

Vielen Dank bereits im Voraus für eure Hilfe!

markusg · 03.06.2013, 16:33

Hi,

otl fix

Fixen mit OTL

Starte bitte die OTL.exe.
Kopiere nun den Inhalt aus der Codebox in die Textbox.

Code:

ATTFilter

:OTL
O4 - HKCU..\Run: [noc] C:\Users\acer\AppData\Roaming\noc\dan.bat ()
[2013.06.02 22:12:59 | 000,000,000 | RHSD | C] -- C:\Users\acer\AppData\Roaming\ilmv
[2013.06.02 22:12:50 | 000,739,856 | ---- | C] (Google Inc.) -- C:\Users\acer\AppData\Roaming\chromebrowser.exe
[2013.06.02 22:12:48 | 000,600,378 | ---- | M] () -- C:\Users\acer\lopdpe8bw72gu.exe
[2013.06.02 22:12:45 | 000,274,944 | ---- | M] () -- C:\Users\acer\3knwx21a9vgpo.exe
[2013.06.02 22:12:42 | 000,030,720 | ---- | C] () -- C:\Users\acer\f55hyhzdojz67.exe
:files
C:\Users\acer\AppData\Roaming\noc
:Commands
[emptytemp]

Solltest du deinen Benutzernamen z. B. durch "*****" unkenntlich gemacht haben, so füge an entsprechender Stelle deinen richtigen Benutzernamen ein. Andernfalls wird der Fix nicht funktionieren.
Schließe bitte nun alle Programme.
Klicke nun bitte auf den Fix Button.
OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
Nach dem Neustart findest Du ein Textdokument auf deinem Desktop.
( Auch zu finden unter C:\_OTL\MovedFiles\<Uhrzeit_Datum>.txt)
Kopiere nun den Inhalt hier in Deinen Thread

Hinweis: Die Datei bitte wie in der Anleitung zum UpChannel angegeben auch da hochladen. Bitte NICHT die ZIP-Datei hier als Anhang
in den Thread posten!

Drücke bitte die

+ E Taste.

Öffne dein Systemlaufwerk ( meistens C: )
Suche nun
folgenden Ordner: _OTL und öffne diesen.
Mache einen Rechtsklick auf den Ordner Movedfiles --> Senden an --> Zip-Komprimierter Ordner
Dies wird eine Movedfiles.zip Datei in _OTL erstellen
Lade diese bitte in unseren Uploadchannel
hoch. ( Durchsuchen --> C:\_OTL\Movedfiles.zip )

Teile mir mit ob der Upload problemlos geklappt hat. Danke im voraus

Temeraire87 · 03.06.2013, 16:49

Danke für die ausführliche Beschreibung, allerdings scheitert es schon daran, dass ich den Ordner _OTL nicht finde :S

markusg · 03.06.2013, 16:53

hast du den fix ausgeführt und neugestartet, dann liegt er direkt auf c:

Temeraire87 · 03.06.2013, 17:14

Oh man, manchmal hab ich echt Tomaten auf den Augen *schäm*

Ja, hab ich.

Hier ist der Logfile nach dem Fix:

Zitat:

All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\noc deleted successfully.
C:\Users\acer\AppData\Roaming\noc\dan.bat moved successfully.
C:\Users\acer\AppData\Roaming\ilmv folder moved successfully.
C:\Users\acer\AppData\Roaming\chromebrowser.exe moved successfully.
C:\Users\acer\lopdpe8bw72gu.exe moved successfully.
C:\Users\acer\3knwx21a9vgpo.exe moved successfully.
C:\Users\acer\f55hyhzdojz67.exe moved successfully.
========== FILES ==========
C:\Users\acer\AppData\Roaming\noc folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: acer
->Temp folder emptied: 805395316 bytes
->Temporary Internet Files folder emptied: 1142450618 bytes
->Java cache emptied: 2566960 bytes
->FireFox cache emptied: 94723513 bytes
->Google Chrome cache emptied: 66121995 bytes
->Apple Safari cache emptied: 8281088 bytes
->Flash cache emptied: 2820968 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 761900802 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42304945 bytes
RecycleBin emptied: 120089037 bytes

Total Files Cleaned = 2.906,00 mb

OTL by OldTimer - Version 3.2.69.0 log created on 06032013_175123

Files\Folders moved on Reboot...
C:\Users\acer\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\acer\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Den Ordner _OTL habe ich nun zwar gefunden, doch beim Versuch den Ordner MovedFiles an Zip-kompremierter-Ordner zu senden, kam die Fehlermeldung "Datei nicht gefunden oder keine Leseberechtigung" und von Avira ein Sicherheitshinweis, dass die Datei 'C:\_OTL\MovedFiles\...\3knwx21a9vgo.exe' die ein Virus oder unerwünschtes Programm 'TR/Barys.17770' enthält, wurde verweigert.

markusg · 03.06.2013, 17:17

dann lass avira mal den einen Fund löschen, und versuch das mit dem packen noch mal.

Temeraire87 · 03.06.2013, 17:23

Super, jetzt ging's - hab die Datei im Upload-Channel hochgeladen

markusg · 03.06.2013, 17:24

Ich danke.
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Temeraire87 · 03.06.2013, 17:31

Wer hier zu danken hat, das bin ganz klar ich

Zitat:

18:28:38.0248 3704 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:28:38.0341 3704 ============================================================
18:28:38.0341 3704 Current date / time: 2013/06/03 18:28:38.0341
18:28:38.0341 3704 SystemInfo:
18:28:38.0341 3704
18:28:38.0342 3704 OS Version: 6.1.7601 ServicePack: 1.0
18:28:38.0342 3704 Product type: Workstation
18:28:38.0342 3704 ComputerName: ACER-PC
18:28:38.0343 3704 UserName: acer
18:28:38.0343 3704 Windows directory: C:\Windows
18:28:38.0343 3704 System windows directory: C:\Windows
18:28:38.0343 3704 Running under WOW64
18:28:38.0343 3704 Processor architecture: Intel x64
18:28:38.0344 3704 Number of processors: 4
18:28:38.0344 3704 Page size: 0x1000
18:28:38.0344 3704 Boot type: Normal boot
18:28:38.0344 3704 ============================================================
18:28:38.0916 3704 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:28:38.0927 3704 ============================================================
18:28:38.0927 3704 \Device\Harddisk0\DR0:
18:28:38.0927 3704 MBR partitions:
18:28:38.0927 3704 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770800, BlocksNum 0x32000
18:28:38.0927 3704 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A2800, BlocksNum 0x38BE3030
18:28:38.0927 3704 ============================================================
18:28:38.0948 3704 C: <-> \Device\Harddisk0\DR0\Partition2
18:28:38.0948 3704 ============================================================
18:28:38.0948 3704 Initialize success
18:28:38.0948 3704 ============================================================
18:29:01.0443 4840 ============================================================
18:29:01.0443 4840 Scan started
18:29:01.0443 4840 Mode: Manual;
18:29:01.0444 4840 ============================================================
18:29:01.0638 4840 ================ Scan system memory ========================
18:29:01.0638 4840 System memory - ok
18:29:01.0639 4840 ================ Scan services =============================
18:29:01.0858 4840 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:29:01.0863 4840 1394ohci - ok
18:29:01.0991 4840 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
18:29:01.0992 4840 ACDaemon - ok
18:29:02.0059 4840 [ 6CE02D42183CDF31315F208AE35F153F ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
18:29:02.0062 4840 acedrv11 - ok
18:29:02.0132 4840 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:29:02.0136 4840 ACPI - ok
18:29:02.0191 4840 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:29:02.0193 4840 AcpiPmi - ok
18:29:02.0325 4840 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:29:02.0329 4840 AdobeFlashPlayerUpdateSvc - ok
18:29:02.0401 4840 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:29:02.0408 4840 adp94xx - ok
18:29:02.0435 4840 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:29:02.0440 4840 adpahci - ok
18:29:02.0471 4840 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:29:02.0474 4840 adpu320 - ok
18:29:02.0532 4840 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:29:02.0533 4840 AeLookupSvc - ok
18:29:02.0601 4840 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\Windows\syswow64\drivers\Afc.sys
18:29:02.0602 4840 Afc - ok
18:29:02.0668 4840 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:29:02.0674 4840 AFD - ok
18:29:02.0738 4840 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
18:29:02.0739 4840 AgereModemAudio - ok
18:29:02.0780 4840 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
18:29:02.0796 4840 AgereSoftModem - ok
18:29:02.0856 4840 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:29:02.0858 4840 agp440 - ok
18:29:02.0899 4840 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:29:02.0901 4840 ALG - ok
18:29:02.0946 4840 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:29:02.0947 4840 aliide - ok
18:29:02.0984 4840 [ 41A0813F22D3330C0CA71CE5BBD42B12 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:29:02.0986 4840 AMD External Events Utility - ok
18:29:03.0023 4840 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:29:03.0024 4840 amdide - ok
18:29:03.0082 4840 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:29:03.0084 4840 AmdK8 - ok
18:29:03.0126 4840 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:29:03.0128 4840 AmdPPM - ok
18:29:03.0165 4840 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
18:29:03.0167 4840 amdsata - ok
18:29:03.0197 4840 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:29:03.0200 4840 amdsbs - ok
18:29:03.0239 4840 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
18:29:03.0239 4840 amdxata - ok
18:29:03.0271 4840 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
18:29:03.0273 4840 AmUStor - ok
18:29:03.0392 4840 [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
18:29:03.0393 4840 AntiVirSchedulerService - ok
18:29:03.0484 4840 [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
18:29:03.0486 4840 AntiVirService - ok
18:29:03.0532 4840 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:29:03.0534 4840 AppID - ok
18:29:03.0564 4840 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:29:03.0565 4840 AppIDSvc - ok
18:29:03.0606 4840 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
18:29:03.0608 4840 Appinfo - ok
18:29:03.0701 4840 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:29:03.0703 4840 Apple Mobile Device - ok
18:29:03.0730 4840 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:29:03.0732 4840 arc - ok
18:29:03.0758 4840 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:29:03.0760 4840 arcsas - ok
18:29:03.0774 4840 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:29:03.0775 4840 AsyncMac - ok
18:29:03.0820 4840 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:29:03.0821 4840 atapi - ok
18:29:03.0883 4840 [ 88A02B6046356E6BE4E387FAA7451439 ] athr C:\Windows\system32\DRIVERS\athrx.sys
18:29:03.0902 4840 athr - ok
18:29:04.0066 4840 [ 37456BE85384E4CC38DC899F07F88C45 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:29:04.0206 4840 atikmdag - ok
18:29:04.0273 4840 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:29:04.0279 4840 AudioEndpointBuilder - ok
18:29:04.0290 4840 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:29:04.0296 4840 AudioSrv - ok
18:29:04.0356 4840 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
18:29:04.0357 4840 avgntflt - ok
18:29:04.0421 4840 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
18:29:04.0422 4840 avipbb - ok
18:29:04.0457 4840 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
18:29:04.0457 4840 avkmgr - ok
18:29:04.0515 4840 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:29:04.0518 4840 AxInstSV - ok
18:29:04.0571 4840 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:29:04.0577 4840 b06bdrv - ok
18:29:04.0611 4840 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:29:04.0615 4840 b57nd60a - ok
18:29:04.0685 4840 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
18:29:04.0703 4840 BCM43XX - ok
18:29:04.0735 4840 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:29:04.0736 4840 BDESVC - ok
18:29:04.0764 4840 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:29:04.0765 4840 Beep - ok
18:29:04.0840 4840 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:29:04.0848 4840 BFE - ok
18:29:04.0881 4840 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
18:29:04.0891 4840 BITS - ok
18:29:04.0913 4840 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:29:04.0914 4840 blbdrive - ok
18:29:04.0983 4840 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:29:04.0988 4840 Bonjour Service - ok
18:29:05.0032 4840 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:29:05.0034 4840 bowser - ok
18:29:05.0068 4840 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:29:05.0070 4840 BrFiltLo - ok
18:29:05.0099 4840 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:29:05.0100 4840 BrFiltUp - ok
18:29:05.0152 4840 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:29:05.0154 4840 Browser - ok
18:29:05.0176 4840 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:29:05.0181 4840 Brserid - ok
18:29:05.0199 4840 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:29:05.0201 4840 BrSerWdm - ok
18:29:05.0207 4840 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:29:05.0208 4840 BrUsbMdm - ok
18:29:05.0223 4840 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:29:05.0224 4840 BrUsbSer - ok
18:29:05.0236 4840 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:29:05.0238 4840 BTHMODEM - ok
18:29:05.0271 4840 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:29:05.0272 4840 bthserv - ok
18:29:05.0313 4840 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:29:05.0315 4840 cdfs - ok
18:29:05.0370 4840 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:29:05.0373 4840 cdrom - ok
18:29:05.0426 4840 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:29:05.0427 4840 CertPropSvc - ok
18:29:05.0444 4840 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:29:05.0445 4840 circlass - ok
18:29:05.0474 4840 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:29:05.0479 4840 CLFS - ok
18:29:05.0551 4840 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:29:05.0554 4840 clr_optimization_v2.0.50727_32 - ok
18:29:05.0613 4840 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:29:05.0615 4840 clr_optimization_v2.0.50727_64 - ok
18:29:05.0708 4840 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:29:05.0710 4840 clr_optimization_v4.0.30319_32 - ok
18:29:05.0736 4840 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:29:05.0738 4840 clr_optimization_v4.0.30319_64 - ok
18:29:05.0768 4840 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:29:05.0769 4840 CmBatt - ok
18:29:05.0792 4840 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:29:05.0794 4840 cmdide - ok
18:29:05.0851 4840 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
18:29:05.0858 4840 CNG - ok
18:29:05.0894 4840 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:29:05.0895 4840 Compbatt - ok
18:29:05.0943 4840 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:29:05.0944 4840 CompositeBus - ok
18:29:05.0959 4840 COMSysApp - ok
18:29:05.0982 4840 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:29:05.0983 4840 crcdisk - ok
18:29:06.0039 4840 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:29:06.0041 4840 CryptSvc - ok
18:29:06.0104 4840 [ 48297BF3339BC56DD7D7524D7A1740AA ] DBService C:\Program Files (x86)\Common Files\DATA BECKER Shared\DBService.exe
18:29:06.0107 4840 DBService - ok
18:29:06.0158 4840 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:29:06.0167 4840 DcomLaunch - ok
18:29:06.0203 4840 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:29:06.0207 4840 defragsvc - ok
18:29:06.0248 4840 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:29:06.0250 4840 DfsC - ok
18:29:06.0268 4840 dgderdrv - ok
18:29:06.0318 4840 [ 421D371E96480DD3A14EA37D0D2757D1 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
18:29:06.0320 4840 dg_ssudbus - ok
18:29:06.0360 4840 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:29:06.0364 4840 Dhcp - ok
18:29:06.0401 4840 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:29:06.0402 4840 discache - ok
18:29:06.0440 4840 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:29:06.0441 4840 Disk - ok
18:29:06.0472 4840 [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr C:\Windows\syswow64\Drivers\DKbFltr.sys
18:29:06.0473 4840 DKbFltr - ok
18:29:06.0523 4840 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:29:06.0525 4840 Dnscache - ok
18:29:06.0582 4840 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:29:06.0587 4840 dot3svc - ok
18:29:06.0609 4840 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:29:06.0612 4840 DPS - ok
18:29:06.0655 4840 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:29:06.0656 4840 drmkaud - ok
18:29:06.0713 4840 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:29:06.0725 4840 DXGKrnl - ok
18:29:06.0757 4840 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:29:06.0759 4840 EapHost - ok
18:29:06.0861 4840 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:29:06.0949 4840 ebdrv - ok
18:29:06.0990 4840 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:29:06.0991 4840 EFS - ok
18:29:07.0064 4840 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:29:07.0076 4840 ehRecvr - ok
18:29:07.0109 4840 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:29:07.0112 4840 ehSched - ok
18:29:07.0163 4840 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:29:07.0172 4840 elxstor - ok
18:29:07.0256 4840 [ FB67AA8AC61B9365ADD546139A21BED6 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
18:29:07.0265 4840 ePowerSvc - ok
18:29:07.0298 4840 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:29:07.0299 4840 ErrDev - ok
18:29:07.0368 4840 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:29:07.0374 4840 EventSystem - ok
18:29:07.0408 4840 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:29:07.0412 4840 exfat - ok
18:29:07.0435 4840 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:29:07.0438 4840 fastfat - ok
18:29:07.0490 4840 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:29:07.0498 4840 Fax - ok
18:29:07.0520 4840 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:29:07.0522 4840 fdc - ok
18:29:07.0541 4840 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:29:07.0543 4840 fdPHost - ok
18:29:07.0558 4840 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:29:07.0559 4840 FDResPub - ok
18:29:07.0586 4840 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:29:07.0587 4840 FileInfo - ok
18:29:07.0603 4840 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:29:07.0604 4840 Filetrace - ok
18:29:07.0615 4840 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:29:07.0617 4840 flpydisk - ok
18:29:07.0658 4840 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:29:07.0661 4840 FltMgr - ok
18:29:07.0724 4840 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
18:29:07.0739 4840 FontCache - ok
18:29:07.0802 4840 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:29:07.0804 4840 FontCache3.0.0.0 - ok
18:29:07.0834 4840 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:29:07.0837 4840 FsDepends - ok
18:29:07.0873 4840 [ DDEE99DC54EFA20BD5A442CD733C4462 ] FsUsbExDisk C:\Windows\SysWOW64\FsUsbExDisk.SYS
18:29:07.0875 4840 FsUsbExDisk - ok
18:29:07.0928 4840 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:29:07.0929 4840 Fs_Rec - ok
18:29:07.0975 4840 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:29:07.0979 4840 fvevol - ok
18:29:08.0018 4840 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:29:08.0020 4840 gagp30kx - ok
18:29:08.0076 4840 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:29:08.0088 4840 gpsvc - ok
18:29:08.0168 4840 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
18:29:08.0178 4840 Greg_Service - ok
18:29:08.0279 4840 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:29:08.0280 4840 gupdate - ok
18:29:08.0320 4840 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:29:08.0322 4840 gupdatem - ok
18:29:08.0344 4840 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:29:08.0347 4840 gusvc - ok
18:29:08.0367 4840 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:29:08.0368 4840 hcw85cir - ok
18:29:08.0424 4840 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:29:08.0429 4840 HdAudAddService - ok
18:29:08.0445 4840 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:29:08.0447 4840 HDAudBus - ok
18:29:08.0481 4840 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
18:29:08.0482 4840 HECIx64 - ok
18:29:08.0496 4840 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:29:08.0497 4840 HidBatt - ok
18:29:08.0517 4840 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:29:08.0520 4840 HidBth - ok
18:29:08.0559 4840 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:29:08.0560 4840 HidIr - ok
18:29:08.0585 4840 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:29:08.0586 4840 hidserv - ok
18:29:08.0643 4840 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:29:08.0645 4840 HidUsb - ok
18:29:08.0679 4840 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:29:08.0681 4840 hkmsvc - ok
18:29:08.0730 4840 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:29:08.0733 4840 HomeGroupListener - ok
18:29:08.0774 4840 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:29:08.0777 4840 HomeGroupProvider - ok
18:29:08.0824 4840 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:29:08.0826 4840 HpSAMD - ok
18:29:08.0900 4840 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:29:08.0910 4840 HTTP - ok
18:29:08.0947 4840 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:29:08.0948 4840 hwpolicy - ok
18:29:08.0991 4840 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:29:08.0993 4840 i8042prt - ok
18:29:09.0055 4840 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
18:29:09.0059 4840 IAANTMON - ok
18:29:09.0080 4840 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
18:29:09.0084 4840 iaStor - ok
18:29:09.0141 4840 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:29:09.0146 4840 iaStorV - ok
18:29:09.0196 4840 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:29:09.0207 4840 idsvc - ok
18:29:09.0387 4840 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:29:09.0553 4840 igfx - ok
18:29:09.0596 4840 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:29:09.0597 4840 iirsp - ok
18:29:09.0648 4840 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:29:09.0657 4840 IKEEXT - ok
18:29:09.0752 4840 [ 42943BB3AB7A405B30EFF7C8283CC129 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:29:09.0767 4840 IntcAzAudAddService - ok
18:29:09.0803 4840 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:29:09.0804 4840 intelide - ok
18:29:09.0824 4840 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:29:09.0825 4840 intelppm - ok
18:29:09.0846 4840 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:29:09.0849 4840 IPBusEnum - ok
18:29:09.0896 4840 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:29:09.0898 4840 IpFilterDriver - ok
18:29:09.0955 4840 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:29:09.0961 4840 iphlpsvc - ok
18:29:09.0998 4840 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:29:10.0000 4840 IPMIDRV - ok
18:29:10.0033 4840 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:29:10.0035 4840 IPNAT - ok
18:29:10.0062 4840 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:29:10.0063 4840 IRENUM - ok
18:29:10.0087 4840 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:29:10.0088 4840 isapnp - ok
18:29:10.0114 4840 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:29:10.0119 4840 iScsiPrt - ok
18:29:10.0175 4840 [ 0C6635413077E415CA31AD2F4E648FC1 ] IT9135BDA C:\Windows\system32\Drivers\IT9135BDA.sys
18:29:10.0178 4840 IT9135BDA - ok
18:29:10.0224 4840 [ D85F3F18E44F7447B5F1BA5C85BAEB7C ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
18:29:10.0227 4840 k57nd60a - ok
18:29:10.0262 4840 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
18:29:10.0263 4840 kbdclass - ok
18:29:10.0298 4840 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
18:29:10.0299 4840 kbdhid - ok
18:29:10.0323 4840 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:29:10.0324 4840 KeyIso - ok
18:29:10.0373 4840 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:29:10.0375 4840 KSecDD - ok
18:29:10.0420 4840 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:29:10.0423 4840 KSecPkg - ok
18:29:10.0446 4840 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:29:10.0447 4840 ksthunk - ok
18:29:10.0483 4840 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:29:10.0489 4840 KtmRm - ok
18:29:10.0514 4840 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys
18:29:10.0516 4840 L1E - ok
18:29:10.0560 4840 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:29:10.0563 4840 LanmanServer - ok
18:29:10.0614 4840 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:29:10.0616 4840 LanmanWorkstation - ok
18:29:10.0726 4840 [ 6771CAC91BB89E15B13C27F1E3CDD320 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
18:29:10.0733 4840 LBTServ - ok
18:29:10.0765 4840 [ CEB6E18DCFAD5C72B81C7DA1AC3C1CC1 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:29:10.0767 4840 LHidFilt - ok
18:29:10.0798 4840 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:29:10.0800 4840 lltdio - ok
18:29:10.0836 4840 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:29:10.0844 4840 lltdsvc - ok
18:29:10.0860 4840 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:29:10.0862 4840 lmhosts - ok
18:29:10.0887 4840 [ F9E48F18BE4D2B365F138987B8E7885B ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:29:10.0888 4840 LMouFilt - ok
18:29:10.0959 4840 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
18:29:10.0962 4840 LMS - ok
18:29:10.0998 4840 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:29:11.0000 4840 LSI_FC - ok
18:29:11.0005 4840 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:29:11.0007 4840 LSI_SAS - ok
18:29:11.0022 4840 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:29:11.0024 4840 LSI_SAS2 - ok
18:29:11.0031 4840 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:29:11.0033 4840 LSI_SCSI - ok
18:29:11.0052 4840 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:29:11.0054 4840 luafv - ok
18:29:11.0097 4840 [ 51B20B742C9E35ADE40B840F6F4F5EE2 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
18:29:11.0098 4840 LUsbFilt - ok
18:29:11.0151 4840 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:29:11.0153 4840 Mcx2Svc - ok
18:29:11.0188 4840 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:29:11.0189 4840 megasas - ok
18:29:11.0211 4840 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:29:11.0215 4840 MegaSR - ok
18:29:11.0252 4840 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:29:11.0253 4840 MMCSS - ok
18:29:11.0270 4840 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:29:11.0271 4840 Modem - ok
18:29:11.0298 4840 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:29:11.0299 4840 monitor - ok
18:29:11.0326 4840 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
18:29:11.0327 4840 mouclass - ok
18:29:11.0364 4840 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:29:11.0365 4840 mouhid - ok
18:29:11.0419 4840 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:29:11.0421 4840 mountmgr - ok
18:29:11.0472 4840 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:29:11.0475 4840 MozillaMaintenance - ok
18:29:11.0513 4840 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:29:11.0516 4840 mpio - ok
18:29:11.0550 4840 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:29:11.0551 4840 mpsdrv - ok
18:29:11.0601 4840 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:29:11.0609 4840 MpsSvc - ok
18:29:11.0640 4840 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:29:11.0643 4840 MRxDAV - ok
18:29:11.0676 4840 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:29:11.0678 4840 mrxsmb - ok
18:29:11.0715 4840 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:29:11.0719 4840 mrxsmb10 - ok
18:29:11.0737 4840 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:29:11.0739 4840 mrxsmb20 - ok
18:29:11.0782 4840 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:29:11.0783 4840 msahci - ok
18:29:11.0803 4840 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:29:11.0806 4840 msdsm - ok
18:29:11.0828 4840 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:29:11.0831 4840 MSDTC - ok
18:29:11.0876 4840 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:29:11.0877 4840 Msfs - ok
18:29:11.0894 4840 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:29:11.0895 4840 mshidkmdf - ok
18:29:11.0909 4840 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:29:11.0910 4840 msisadrv - ok
18:29:11.0941 4840 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:29:11.0945 4840 MSiSCSI - ok
18:29:11.0950 4840 msiserver - ok
18:29:11.0978 4840 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:29:11.0979 4840 MSKSSRV - ok
18:29:11.0999 4840 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:29:12.0000 4840 MSPCLOCK - ok
18:29:12.0013 4840 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:29:12.0014 4840 MSPQM - ok
18:29:12.0066 4840 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:29:12.0071 4840 MsRPC - ok
18:29:12.0112 4840 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:29:12.0112 4840 mssmbios - ok
18:29:12.0141 4840 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:29:12.0143 4840 MSTEE - ok
18:29:12.0154 4840 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:29:12.0156 4840 MTConfig - ok
18:29:12.0176 4840 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:29:12.0177 4840 Mup - ok
18:29:12.0205 4840 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
18:29:12.0206 4840 mwlPSDFilter - ok
18:29:12.0242 4840 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
18:29:12.0243 4840 mwlPSDNServ - ok
18:29:12.0258 4840 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
18:29:12.0259 4840 mwlPSDVDisk - ok
18:29:12.0341 4840 [ 2F139207F618EC2933830227EEFFDDB4 ] MWLService C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
18:29:12.0347 4840 MWLService - ok
18:29:12.0398 4840 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:29:12.0403 4840 napagent - ok
18:29:12.0454 4840 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:29:12.0458 4840 NativeWifiP - ok
18:29:12.0527 4840 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:29:12.0537 4840 NDIS - ok
18:29:12.0578 4840 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:29:12.0579 4840 NdisCap - ok
18:29:12.0605 4840 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:29:12.0606 4840 NdisTapi - ok
18:29:12.0646 4840 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:29:12.0648 4840 Ndisuio - ok
18:29:12.0686 4840 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:29:12.0689 4840 NdisWan - ok
18:29:12.0738 4840 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:29:12.0740 4840 NDProxy - ok
18:29:12.0774 4840 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:29:12.0776 4840 NetBIOS - ok
18:29:12.0828 4840 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:29:12.0832 4840 NetBT - ok
18:29:12.0858 4840 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:29:12.0860 4840 Netlogon - ok
18:29:12.0896 4840 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:29:12.0901 4840 Netman - ok
18:29:12.0924 4840 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:29:12.0930 4840 netprofm - ok
18:29:12.0955 4840 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:29:12.0957 4840 NetTcpPortSharing - ok
18:29:12.0994 4840 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:29:12.0995 4840 nfrd960 - ok
18:29:13.0050 4840 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:29:13.0054 4840 NlaSvc - ok
18:29:13.0066 4840 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:29:13.0068 4840 Npfs - ok
18:29:13.0096 4840 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:29:13.0097 4840 nsi - ok
18:29:13.0108 4840 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:29:13.0109 4840 nsiproxy - ok
18:29:13.0184 4840 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:29:13.0206 4840 Ntfs - ok
18:29:13.0266 4840 [ 14E66F603FB187713AEB02AD3B0390CF ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
18:29:13.0267 4840 NTI IScheduleSvc - ok
18:29:13.0302 4840 [ FD324CCE1D4D5BB5AF65F8E55B462C7E ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
18:29:13.0303 4840 NTIBackupSvc - ok
18:29:13.0345 4840 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
18:29:13.0346 4840 NTIDrvr - ok
18:29:13.0375 4840 [ 3F6268A2EC33CD38CF75C880AF8DED42 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
18:29:13.0377 4840 NTISchedulerSvc - ok
18:29:13.0410 4840 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:29:13.0411 4840 Null - ok
18:29:13.0460 4840 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:29:13.0463 4840 nvraid - ok
18:29:13.0487 4840 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:29:13.0490 4840 nvstor - ok
18:29:13.0521 4840 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:29:13.0524 4840 nv_agp - ok
18:29:13.0554 4840 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:29:13.0556 4840 ohci1394 - ok
18:29:13.0625 4840 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:29:13.0628 4840 ose - ok
18:29:13.0824 4840 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:29:13.0955 4840 osppsvc - ok
18:29:13.0998 4840 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:29:14.0003 4840 p2pimsvc - ok
18:29:14.0028 4840 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:29:14.0033 4840 p2psvc - ok
18:29:14.0060 4840 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:29:14.0062 4840 Parport - ok
18:29:14.0095 4840 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:29:14.0096 4840 partmgr - ok
18:29:14.0119 4840 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:29:14.0121 4840 PcaSvc - ok
18:29:14.0171 4840 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:29:14.0174 4840 pci - ok
18:29:14.0196 4840 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:29:14.0197 4840 pciide - ok
18:29:14.0218 4840 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:29:14.0222 4840 pcmcia - ok
18:29:14.0250 4840 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:29:14.0251 4840 pcw - ok
18:29:14.0275 4840 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:29:14.0283 4840 PEAUTH - ok
18:29:14.0367 4840 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:29:14.0369 4840 PerfHost - ok
18:29:14.0449 4840 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:29:14.0465 4840 pla - ok
18:29:14.0524 4840 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:29:14.0529 4840 PlugPlay - ok
18:29:14.0547 4840 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:29:14.0549 4840 PNRPAutoReg - ok
18:29:14.0565 4840 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:29:14.0568 4840 PNRPsvc - ok
18:29:14.0619 4840 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:29:14.0629 4840 PolicyAgent - ok
18:29:14.0676 4840 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:29:14.0679 4840 Power - ok
18:29:14.0733 4840 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:29:14.0735 4840 PptpMiniport - ok
18:29:14.0760 4840 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:29:14.0762 4840 Processor - ok
18:29:14.0814 4840 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:29:14.0817 4840 ProfSvc - ok
18:29:14.0824 4840 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:29:14.0826 4840 ProtectedStorage - ok
18:29:14.0876 4840 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:29:14.0877 4840 Psched - ok
18:29:14.0928 4840 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:29:14.0946 4840 ql2300 - ok
18:29:14.0984 4840 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:29:14.0986 4840 ql40xx - ok
18:29:15.0020 4840 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:29:15.0025 4840 QWAVE - ok
18:29:15.0037 4840 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:29:15.0039 4840 QWAVEdrv - ok
18:29:15.0056 4840 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:29:15.0057 4840 RasAcd - ok
18:29:15.0088 4840 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:29:15.0090 4840 RasAgileVpn - ok
18:29:15.0109 4840 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:29:15.0112 4840 RasAuto - ok
18:29:15.0153 4840 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:29:15.0156 4840 Rasl2tp - ok
18:29:15.0200 4840 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:29:15.0205 4840 RasMan - ok
18:29:15.0231 4840 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:29:15.0233 4840 RasPppoe - ok
18:29:15.0256 4840 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:29:15.0258 4840 RasSstp - ok
18:29:15.0306 4840 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:29:15.0310 4840 rdbss - ok
18:29:15.0324 4840 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:29:15.0325 4840 rdpbus - ok
18:29:15.0351 4840 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:29:15.0352 4840 RDPCDD - ok
18:29:15.0366 4840 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:29:15.0367 4840 RDPENCDD - ok
18:29:15.0378 4840 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:29:15.0379 4840 RDPREFMP - ok
18:29:15.0418 4840 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:29:15.0421 4840 RDPWD - ok
18:29:15.0467 4840 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:29:15.0470 4840 rdyboost - ok
18:29:15.0503 4840 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:29:15.0506 4840 RemoteAccess - ok
18:29:15.0536 4840 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:29:15.0539 4840 RemoteRegistry - ok
18:29:15.0565 4840 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:29:15.0567 4840 RpcEptMapper - ok
18:29:15.0575 4840 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:29:15.0577 4840 RpcLocator - ok
18:29:15.0613 4840 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
18:29:15.0617 4840 RpcSs - ok
18:29:15.0646 4840 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:29:15.0647 4840 rspndr - ok
18:29:15.0699 4840 [ B5A4B7D779CF4070DF408DE18BD33B02 ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
18:29:15.0703 4840 RS_Service - ok
18:29:15.0756 4840 [ 7421A35C45484B95E83B5E9E107CEFC2 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
18:29:15.0758 4840 RTHDMIAzAudService - ok
18:29:15.0769 4840 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:29:15.0770 4840 SamSs - ok
18:29:15.0813 4840 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:29:15.0816 4840 sbp2port - ok
18:29:15.0852 4840 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:29:15.0858 4840 SCardSvr - ok
18:29:15.0886 4840 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:29:15.0888 4840 scfilter - ok
18:29:15.0941 4840 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:29:15.0954 4840 Schedule - ok
18:29:15.0994 4840 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:29:15.0995 4840 SCPolicySvc - ok
18:29:16.0033 4840 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:29:16.0036 4840 SDRSVC - ok
18:29:16.0060 4840 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:29:16.0061 4840 secdrv - ok
18:29:16.0097 4840 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:29:16.0099 4840 seclogon - ok
18:29:16.0117 4840 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:29:16.0118 4840 SENS - ok
18:29:16.0143 4840 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:29:16.0145 4840 SensrSvc - ok
18:29:16.0164 4840 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:29:16.0165 4840 Serenum - ok
18:29:16.0196 4840 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:29:16.0198 4840 Serial - ok
18:29:16.0242 4840 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:29:16.0244 4840 sermouse - ok
18:29:16.0302 4840 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:29:16.0304 4840 SessionEnv - ok
18:29:16.0346 4840 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:29:16.0347 4840 sffdisk - ok
18:29:16.0360 4840 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:29:16.0361 4840 sffp_mmc - ok
18:29:16.0376 4840 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:29:16.0378 4840 sffp_sd - ok
18:29:16.0411 4840 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:29:16.0412 4840 sfloppy - ok
18:29:16.0459 4840 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:29:16.0464 4840 SharedAccess - ok
18:29:16.0506 4840 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:29:16.0510 4840 ShellHWDetection - ok
18:29:16.0534 4840 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:29:16.0536 4840 SiSRaid2 - ok
18:29:16.0564 4840 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:29:16.0566 4840 SiSRaid4 - ok
18:29:16.0633 4840 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
18:29:16.0635 4840 SkypeUpdate - ok
18:29:16.0655 4840 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:29:16.0657 4840 Smb - ok
18:29:16.0693 4840 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:29:16.0695 4840 SNMPTRAP - ok
18:29:16.0723 4840 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:29:16.0724 4840 spldr - ok
18:29:16.0767 4840 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:29:16.0772 4840 Spooler - ok
18:29:16.0891 4840 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:29:16.0949 4840 sppsvc - ok
18:29:16.0993 4840 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:29:16.0995 4840 sppuinotify - ok
18:29:17.0047 4840 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:29:17.0056 4840 srv - ok
18:29:17.0077 4840 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:29:17.0082 4840 srv2 - ok
18:29:17.0098 4840 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:29:17.0101 4840 srvnet - ok
18:29:17.0131 4840 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:29:17.0134 4840 SSDPSRV - ok
18:29:17.0149 4840 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:29:17.0151 4840 SstpSvc - ok
18:29:17.0192 4840 [ A97BFF59B3B983FDBDCD8AE6CF3C1E2D ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
18:29:17.0195 4840 ssudmdm - ok
18:29:17.0218 4840 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:29:17.0220 4840 stexstor - ok
18:29:17.0266 4840 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:29:17.0274 4840 stisvc - ok
18:29:17.0314 4840 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:29:17.0315 4840 swenum - ok
18:29:17.0348 4840 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:29:17.0355 4840 swprv - ok
18:29:17.0388 4840 [ ED6D1424E5B0C21A57B28DD8508D6843 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
18:29:17.0390 4840 SynTP - ok
18:29:17.0462 4840 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:29:17.0481 4840 SysMain - ok
18:29:17.0514 4840 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:29:17.0516 4840 TabletInputService - ok
18:29:17.0538 4840 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:29:17.0541 4840 TapiSrv - ok
18:29:17.0569 4840 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:29:17.0570 4840 TBS - ok
18:29:17.0653 4840 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:29:17.0677 4840 Tcpip - ok
18:29:17.0706 4840 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:29:17.0718 4840 TCPIP6 - ok
18:29:17.0756 4840 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:29:17.0757 4840 tcpipreg - ok
18:29:17.0784 4840 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:29:17.0785 4840 TDPIPE - ok
18:29:17.0821 4840 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:29:17.0823 4840 TDTCP - ok
18:29:17.0847 4840 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:29:17.0850 4840 tdx - ok
18:29:17.0881 4840 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:29:17.0883 4840 TermDD - ok
18:29:17.0931 4840 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:29:17.0939 4840 TermService - ok
18:29:17.0967 4840 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:29:17.0969 4840 Themes - ok
18:29:17.0997 4840 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:29:17.0999 4840 THREADORDER - ok
18:29:18.0034 4840 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:29:18.0036 4840 TrkWks - ok
18:29:18.0108 4840 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:29:18.0109 4840 TrustedInstaller - ok
18:29:18.0150 4840 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:29:18.0152 4840 tssecsrv - ok
18:29:18.0203 4840 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:29:18.0204 4840 TsUsbFlt - ok
18:29:18.0260 4840 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:29:18.0262 4840 tunnel - ok
18:29:18.0289 4840 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:29:18.0291 4840 uagp35 - ok
18:29:18.0331 4840 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
18:29:18.0331 4840 UBHelper - ok
18:29:18.0368 4840 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:29:18.0373 4840 udfs - ok
18:29:18.0397 4840 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:29:18.0400 4840 UI0Detect - ok
18:29:18.0435 4840 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:29:18.0437 4840 uliagpkx - ok
18:29:18.0496 4840 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:29:18.0497 4840 umbus - ok
18:29:18.0544 4840 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:29:18.0546 4840 UmPass - ok
18:29:18.0636 4840 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
18:29:18.0660 4840 UNS - ok
18:29:18.0729 4840 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
18:29:18.0732 4840 Updater Service - ok
18:29:18.0763 4840 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:29:18.0768 4840 upnphost - ok
18:29:18.0816 4840 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
18:29:18.0818 4840 usbaudio - ok
18:29:18.0871 4840 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:29:18.0872 4840 usbccgp - ok
18:29:18.0892 4840 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:29:18.0894 4840 usbcir - ok
18:29:18.0926 4840 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
18:29:18.0928 4840 usbehci - ok
18:29:18.0958 4840 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:29:18.0963 4840 usbhub - ok
18:29:18.0994 4840 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
18:29:18.0995 4840 usbohci - ok
18:29:19.0033 4840 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:29:19.0034 4840 usbprint - ok
18:29:19.0069 4840 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:29:19.0070 4840 usbscan - ok
18:29:19.0130 4840 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:29:19.0132 4840 USBSTOR - ok
18:29:19.0174 4840 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
18:29:19.0176 4840 usbuhci - ok
18:29:19.0205 4840 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
18:29:19.0207 4840 usbvideo - ok
18:29:19.0246 4840 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
18:29:19.0248 4840 usb_rndisx - ok
18:29:19.0293 4840 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:29:19.0295 4840 UxSms - ok
18:29:19.0314 4840 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:29:19.0315 4840 VaultSvc - ok
18:29:19.0351 4840 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:29:19.0352 4840 vdrvroot - ok
18:29:19.0395 4840 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:29:19.0402 4840 vds - ok
18:29:19.0430 4840 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:29:19.0431 4840 vga - ok
18:29:19.0445 4840 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:29:19.0446 4840 VgaSave - ok
18:29:19.0481 4840 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:29:19.0485 4840 vhdmp - ok
18:29:19.0494 4840 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:29:19.0496 4840 viaide - ok
18:29:19.0606 4840 [ 3D542F5DADE8B181AB261C648C15462D ] VmbService C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
18:29:19.0608 4840 VmbService - ok
18:29:19.0661 4840 [ 1E4D31FEC921300C5F262C52F5FCC666 ] vodafone_K3805-z_dc_enum C:\Windows\system32\DRIVERS\vodafone_K3805-z_dc_enum.sys
18:29:19.0663 4840 vodafone_K3805-z_dc_enum - ok
18:29:19.0685 4840 [ CD9E990F5E9DA640FF9B61CCDF8F6F41 ] vodafone_zte_cdc_acm C:\Windows\system32\DRIVERS\vodafone_zte_cdc_acm.sys
18:29:19.0687 4840 vodafone_zte_cdc_acm - ok
18:29:19.0751 4840 [ 38D96C6C41281FD87DFE97C21AE19F9C ] vodafone_zte_cdc_ecm C:\Windows\system32\DRIVERS\vodafone_zte_cdc_ecm.sys
18:29:19.0753 4840 vodafone_zte_cdc_ecm - ok
18:29:19.0832 4840 [ 8B011E1083749E0333B7142C20DBD8D3 ] vodafone_zte_cpo C:\Windows\system32\DRIVERS\vodafone_zte_cpo.sys
18:29:19.0834 4840 vodafone_zte_cpo - ok
18:29:19.0870 4840 [ 050CBF9057BC646F6CDD3F14879916A0 ] vodafone_zte_ecm_enum C:\Windows\system32\DRIVERS\vodafone_zte_ecm_enum.sys
18:29:19.0872 4840 vodafone_zte_ecm_enum - ok
18:29:19.0893 4840 [ 050CBF9057BC646F6CDD3F14879916A0 ] vodafone_zte_ecm_enum_filter C:\Windows\system32\DRIVERS\vodafone_zte_ecm_enum_filter.sys
18:29:19.0895 4840 vodafone_zte_ecm_enum_filter - ok
18:29:19.0910 4840 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:29:19.0912 4840 volmgr - ok
18:29:19.0964 4840 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:29:19.0969 4840 volmgrx - ok
18:29:19.0992 4840 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:29:19.0997 4840 volsnap - ok
18:29:20.0041 4840 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:29:20.0044 4840 vsmraid - ok
18:29:20.0105 4840 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:29:20.0126 4840 VSS - ok
18:29:20.0147 4840 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:29:20.0148 4840 vwifibus - ok
18:29:20.0167 4840 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:29:20.0168 4840 vwififlt - ok
18:29:20.0195 4840 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:29:20.0196 4840 vwifimp - ok
18:29:20.0236 4840 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:29:20.0241 4840 W32Time - ok
18:29:20.0258 4840 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:29:20.0259 4840 WacomPen - ok
18:29:20.0300 4840 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:29:20.0302 4840 WANARP - ok
18:29:20.0306 4840 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:29:20.0307 4840 Wanarpv6 - ok
18:29:20.0387 4840 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:29:20.0408 4840 WatAdminSvc - ok
18:29:20.0483 4840 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:29:20.0502 4840 wbengine - ok
18:29:20.0529 4840 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:29:20.0533 4840 WbioSrvc - ok
18:29:20.0585 4840 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:29:20.0591 4840 wcncsvc - ok
18:29:20.0607 4840 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:29:20.0610 4840 WcsPlugInService - ok
18:29:20.0629 4840 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:29:20.0630 4840 Wd - ok
18:29:20.0687 4840 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:29:20.0696 4840 Wdf01000 - ok
18:29:20.0707 4840 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:29:20.0710 4840 WdiServiceHost - ok
18:29:20.0714 4840 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:29:20.0717 4840 WdiSystemHost - ok
18:29:20.0755 4840 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:29:20.0759 4840 WebClient - ok
18:29:20.0783 4840 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:29:20.0787 4840 Wecsvc - ok
18:29:20.0806 4840 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:29:20.0808 4840 wercplsupport - ok
18:29:20.0821 4840 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:29:20.0823 4840 WerSvc - ok
18:29:20.0856 4840 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:29:20.0857 4840 WfpLwf - ok
18:29:20.0868 4840 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:29:20.0869 4840 WIMMount - ok
18:29:20.0898 4840 WinDefend - ok
18:29:20.0903 4840 WinHttpAutoProxySvc - ok
18:29:20.0965 4840 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:29:20.0968 4840 Winmgmt - ok
18:29:21.0046 4840 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:29:21.0071 4840 WinRM - ok
18:29:21.0137 4840 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:29:21.0139 4840 WinUsb - ok
18:29:21.0173 4840 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:29:21.0182 4840 Wlansvc - ok
18:29:21.0201 4840 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:29:21.0202 4840 WmiAcpi - ok
18:29:21.0226 4840 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:29:21.0229 4840 wmiApSrv - ok
18:29:21.0269 4840 WMPNetworkSvc - ok
18:29:21.0299 4840 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:29:21.0301 4840 WPCSvc - ok
18:29:21.0342 4840 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:29:21.0344 4840 WPDBusEnum - ok
18:29:21.0363 4840 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:29:21.0364 4840 ws2ifsl - ok
18:29:21.0384 4840 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:29:21.0386 4840 wscsvc - ok
18:29:21.0391 4840 WSearch - ok
18:29:21.0476 4840 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:29:21.0506 4840 wuauserv - ok
18:29:21.0554 4840 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:29:21.0556 4840 WudfPf - ok
18:29:21.0594 4840 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:29:21.0597 4840 WUDFRd - ok
18:29:21.0645 4840 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:29:21.0647 4840 wudfsvc - ok
18:29:21.0682 4840 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
18:29:21.0686 4840 WwanSvc - ok
18:29:21.0707 4840 ================ Scan global ===============================
18:29:21.0727 4840 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:29:21.0770 4840 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:29:21.0779 4840 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:29:21.0802 4840 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:29:21.0834 4840 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:29:21.0838 4840 [Global] - ok
18:29:21.0838 4840 ================ Scan MBR ==================================
18:29:21.0854 4840 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
18:29:22.0070 4840 \Device\Harddisk0\DR0 - ok
18:29:22.0071 4840 ================ Scan VBR ==================================
18:29:22.0075 4840 [ FAD8C3E69D2581D71ECB8D5C67BAF418 ] \Device\Harddisk0\DR0\Partition1
18:29:22.0081 4840 \Device\Harddisk0\DR0\Partition1 - ok
18:29:22.0098 4840 [ BFD2E257BEFA1FEF97773673998F95E0 ] \Device\Harddisk0\DR0\Partition2
18:29:22.0101 4840 \Device\Harddisk0\DR0\Partition2 - ok
18:29:22.0102 4840 ============================================================
18:29:22.0102 4840 Scan finished
18:29:22.0102 4840 ============================================================
18:29:22.0119 4136 Detected object count: 0
18:29:22.0119 4136 Actual detected object count: 0
18:29:37.0539 1384 Deinitialize success

markusg · 03.06.2013, 18:24

leider hast du das Programm nicht konfiguriert, wie angegeben, bitte noch mal.

Temeraire87 · 03.06.2013, 20:02

Ups :S

Jetzt sollte es hoffentlich stimmen:

Zitat:

20:44:03.0023 5052 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:44:03.0280 5052 ============================================================
20:44:03.0281 5052 Current date / time: 2013/06/03 20:44:03.0280
20:44:03.0281 5052 SystemInfo:
20:44:03.0281 5052
20:44:03.0281 5052 OS Version: 6.1.7601 ServicePack: 1.0
20:44:03.0281 5052 Product type: Workstation
20:44:03.0281 5052 ComputerName: ACER-PC
20:44:03.0281 5052 UserName: acer
20:44:03.0281 5052 Windows directory: C:\Windows
20:44:03.0281 5052 System windows directory: C:\Windows
20:44:03.0281 5052 Running under WOW64
20:44:03.0282 5052 Processor architecture: Intel x64
20:44:03.0282 5052 Number of processors: 4
20:44:03.0282 5052 Page size: 0x1000
20:44:03.0282 5052 Boot type: Normal boot
20:44:03.0282 5052 ============================================================
20:44:03.0983 5052 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:44:03.0989 5052 ============================================================
20:44:03.0989 5052 \Device\Harddisk0\DR0:
20:44:03.0990 5052 MBR partitions:
20:44:03.0990 5052 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1770800, BlocksNum 0x32000
20:44:03.0990 5052 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A2800, BlocksNum 0x38BE3030
20:44:03.0990 5052 ============================================================
20:44:04.0015 5052 C: <-> \Device\Harddisk0\DR0\Partition2
20:44:04.0015 5052 ============================================================
20:44:04.0015 5052 Initialize success
20:44:04.0015 5052 ============================================================
20:51:22.0789 2536 ============================================================
20:51:22.0789 2536 Scan started
20:51:22.0789 2536 Mode: Manual; SigCheck; TDLFS;
20:51:22.0789 2536 ============================================================
20:51:22.0939 2536 ================ Scan system memory ========================
20:51:22.0939 2536 System memory - ok
20:51:22.0939 2536 ================ Scan services =============================
20:51:23.0119 2536 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:51:23.0239 2536 1394ohci - ok
20:51:23.0359 2536 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:51:23.0409 2536 ACDaemon - ok
20:51:23.0489 2536 [ 6CE02D42183CDF31315F208AE35F153F ] acedrv11 C:\Windows\system32\drivers\acedrv11.sys
20:51:23.0519 2536 acedrv11 - ok
20:51:23.0579 2536 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:51:23.0599 2536 ACPI - ok
20:51:23.0649 2536 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:51:23.0679 2536 AcpiPmi - ok
20:51:23.0819 2536 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:51:23.0859 2536 AdobeFlashPlayerUpdateSvc - ok
20:51:23.0909 2536 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:51:23.0949 2536 adp94xx - ok
20:51:23.0999 2536 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:51:24.0029 2536 adpahci - ok
20:51:24.0039 2536 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:51:24.0059 2536 adpu320 - ok
20:51:24.0089 2536 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:51:24.0159 2536 AeLookupSvc - ok
20:51:24.0229 2536 [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc C:\Windows\syswow64\drivers\Afc.sys
20:51:24.0249 2536 Afc - ok
20:51:24.0299 2536 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:51:24.0359 2536 AFD - ok
20:51:24.0429 2536 [ B65F8DBA54F251906BBE8611B5A0E7AB ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
20:51:24.0489 2536 AgereModemAudio - ok
20:51:24.0539 2536 [ A6AB6F0ACE87DA76B4C401813D18BE95 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
20:51:24.0589 2536 AgereSoftModem - ok
20:51:24.0639 2536 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:51:24.0659 2536 agp440 - ok
20:51:24.0690 2536 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:51:24.0750 2536 ALG - ok
20:51:24.0820 2536 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:51:24.0840 2536 aliide - ok
20:51:24.0890 2536 [ 41A0813F22D3330C0CA71CE5BBD42B12 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
20:51:24.0950 2536 AMD External Events Utility - ok
20:51:24.0970 2536 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:51:24.0990 2536 amdide - ok
20:51:25.0030 2536 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:51:25.0070 2536 AmdK8 - ok
20:51:25.0080 2536 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:51:25.0130 2536 AmdPPM - ok
20:51:25.0180 2536 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:51:25.0200 2536 amdsata - ok
20:51:25.0240 2536 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:51:25.0270 2536 amdsbs - ok
20:51:25.0290 2536 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:51:25.0300 2536 amdxata - ok
20:51:25.0340 2536 [ 391887990CDAA83DE5C56C3FDE966DA1 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
20:51:25.0390 2536 AmUStor - ok
20:51:25.0510 2536 [ D9A92E6DD41C5ADC045AE485026AA40C ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:51:25.0530 2536 AntiVirSchedulerService - ok
20:51:25.0620 2536 [ 66A7A38F7C439153B758548375EB9E5E ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:51:25.0650 2536 AntiVirService - ok
20:51:25.0690 2536 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:51:25.0770 2536 AppID - ok
20:51:25.0790 2536 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:51:25.0860 2536 AppIDSvc - ok
20:51:25.0890 2536 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
20:51:25.0920 2536 Appinfo - ok
20:51:26.0010 2536 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:51:26.0040 2536 Apple Mobile Device - ok
20:51:26.0070 2536 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:51:26.0090 2536 arc - ok
20:51:26.0110 2536 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:51:26.0120 2536 arcsas - ok
20:51:26.0150 2536 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:51:26.0220 2536 AsyncMac - ok
20:51:26.0270 2536 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:51:26.0280 2536 atapi - ok
20:51:26.0340 2536 [ 88A02B6046356E6BE4E387FAA7451439 ] athr C:\Windows\system32\DRIVERS\athrx.sys
20:51:26.0370 2536 athr - ok
20:51:26.0530 2536 [ 37456BE85384E4CC38DC899F07F88C45 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
20:51:26.0650 2536 atikmdag - ok
20:51:26.0730 2536 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:51:26.0820 2536 AudioEndpointBuilder - ok
20:51:26.0830 2536 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:51:26.0880 2536 AudioSrv - ok
20:51:26.0940 2536 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
20:51:26.0960 2536 avgntflt - ok
20:51:27.0010 2536 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
20:51:27.0040 2536 avipbb - ok
20:51:27.0070 2536 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
20:51:27.0090 2536 avkmgr - ok
20:51:27.0140 2536 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:51:27.0230 2536 AxInstSV - ok
20:51:27.0270 2536 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:51:27.0320 2536 b06bdrv - ok
20:51:27.0360 2536 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:51:27.0400 2536 b57nd60a - ok
20:51:27.0460 2536 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
20:51:27.0520 2536 BCM43XX - ok
20:51:27.0560 2536 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:51:27.0600 2536 BDESVC - ok
20:51:27.0620 2536 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:51:27.0700 2536 Beep - ok
20:51:27.0760 2536 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:51:27.0850 2536 BFE - ok
20:51:27.0880 2536 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:51:27.0990 2536 BITS - ok
20:51:28.0020 2536 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:51:28.0050 2536 blbdrive - ok
20:51:28.0120 2536 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:51:28.0140 2536 Bonjour Service - ok
20:51:28.0190 2536 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:51:28.0210 2536 bowser - ok
20:51:28.0250 2536 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:51:28.0280 2536 BrFiltLo - ok
20:51:28.0300 2536 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:51:28.0320 2536 BrFiltUp - ok
20:51:28.0370 2536 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:51:28.0410 2536 Browser - ok
20:51:28.0430 2536 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:51:28.0500 2536 Brserid - ok
20:51:28.0520 2536 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:51:28.0570 2536 BrSerWdm - ok
20:51:28.0590 2536 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:51:28.0660 2536 BrUsbMdm - ok
20:51:28.0670 2536 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:51:28.0690 2536 BrUsbSer - ok
20:51:28.0710 2536 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:51:28.0740 2536 BTHMODEM - ok
20:51:28.0770 2536 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:51:28.0830 2536 bthserv - ok
20:51:28.0870 2536 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:51:28.0930 2536 cdfs - ok
20:51:28.0980 2536 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
20:51:29.0010 2536 cdrom - ok
20:51:29.0060 2536 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:51:29.0130 2536 CertPropSvc - ok
20:51:29.0160 2536 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:51:29.0190 2536 circlass - ok
20:51:29.0220 2536 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:51:29.0240 2536 CLFS - ok
20:51:29.0320 2536 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:51:29.0340 2536 clr_optimization_v2.0.50727_32 - ok
20:51:29.0380 2536 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:51:29.0400 2536 clr_optimization_v2.0.50727_64 - ok
20:51:29.0500 2536 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:51:29.0520 2536 clr_optimization_v4.0.30319_32 - ok
20:51:29.0550 2536 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:51:29.0570 2536 clr_optimization_v4.0.30319_64 - ok
20:51:29.0590 2536 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:51:29.0620 2536 CmBatt - ok
20:51:29.0640 2536 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:51:29.0660 2536 cmdide - ok
20:51:29.0701 2536 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:51:29.0751 2536 CNG - ok
20:51:29.0791 2536 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:51:29.0801 2536 Compbatt - ok
20:51:29.0841 2536 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:51:29.0881 2536 CompositeBus - ok
20:51:29.0891 2536 COMSysApp - ok
20:51:29.0921 2536 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:51:29.0931 2536 crcdisk - ok
20:51:29.0971 2536 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:51:30.0031 2536 CryptSvc - ok
20:51:30.0091 2536 [ 48297BF3339BC56DD7D7524D7A1740AA ] DBService C:\Program Files (x86)\Common Files\DATA BECKER Shared\DBService.exe
20:51:30.0141 2536 DBService ( UnsignedFile.Multi.Generic ) - warning
20:51:30.0141 2536 DBService - detected UnsignedFile.Multi.Generic (1)
20:51:30.0191 2536 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:51:30.0251 2536 DcomLaunch - ok
20:51:30.0291 2536 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:51:30.0381 2536 defragsvc - ok
20:51:30.0441 2536 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:51:30.0511 2536 DfsC - ok
20:51:30.0531 2536 dgderdrv - ok
20:51:30.0591 2536 [ 421D371E96480DD3A14EA37D0D2757D1 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
20:51:30.0611 2536 dg_ssudbus - ok
20:51:30.0651 2536 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:51:30.0701 2536 Dhcp - ok
20:51:30.0741 2536 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:51:30.0791 2536 discache - ok
20:51:30.0821 2536 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:51:30.0841 2536 Disk - ok
20:51:30.0871 2536 [ D5BCB77BE83CF99F508943945D46343D ] DKbFltr C:\Windows\syswow64\Drivers\DKbFltr.sys
20:51:30.0891 2536 DKbFltr - ok
20:51:30.0941 2536 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:51:30.0981 2536 Dnscache - ok
20:51:31.0041 2536 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:51:31.0111 2536 dot3svc - ok
20:51:31.0131 2536 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:51:31.0201 2536 DPS - ok
20:51:31.0221 2536 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:51:31.0251 2536 drmkaud - ok
20:51:31.0311 2536 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:51:31.0361 2536 DXGKrnl - ok
20:51:31.0381 2536 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:51:31.0451 2536 EapHost - ok
20:51:31.0571 2536 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:51:31.0651 2536 ebdrv - ok
20:51:31.0691 2536 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:51:31.0761 2536 EFS - ok
20:51:31.0841 2536 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:51:31.0921 2536 ehRecvr - ok
20:51:31.0941 2536 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:51:32.0001 2536 ehSched - ok
20:51:32.0041 2536 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:51:32.0071 2536 elxstor - ok
20:51:32.0151 2536 [ FB67AA8AC61B9365ADD546139A21BED6 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
20:51:32.0201 2536 ePowerSvc - ok
20:51:32.0231 2536 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:51:32.0261 2536 ErrDev - ok
20:51:32.0301 2536 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:51:32.0361 2536 EventSystem - ok
20:51:32.0391 2536 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:51:32.0441 2536 exfat - ok
20:51:32.0461 2536 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:51:32.0521 2536 fastfat - ok
20:51:32.0581 2536 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:51:32.0711 2536 Fax - ok
20:51:32.0731 2536 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:51:32.0751 2536 fdc - ok
20:51:32.0781 2536 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:51:32.0821 2536 fdPHost - ok
20:51:32.0841 2536 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:51:32.0911 2536 FDResPub - ok
20:51:32.0931 2536 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:51:32.0951 2536 FileInfo - ok
20:51:32.0981 2536 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:51:33.0051 2536 Filetrace - ok
20:51:33.0061 2536 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:51:33.0091 2536 flpydisk - ok
20:51:33.0131 2536 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:51:33.0151 2536 FltMgr - ok
20:51:33.0211 2536 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
20:51:33.0271 2536 FontCache - ok
20:51:33.0331 2536 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:51:33.0351 2536 FontCache3.0.0.0 - ok
20:51:33.0381 2536 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:51:33.0401 2536 FsDepends - ok
20:51:33.0441 2536 [ DDEE99DC54EFA20BD5A442CD733C4462 ] FsUsbExDisk C:\Windows\SysWOW64\FsUsbExDisk.SYS
20:51:33.0461 2536 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
20:51:33.0461 2536 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
20:51:33.0511 2536 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:51:33.0531 2536 Fs_Rec - ok
20:51:33.0581 2536 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:51:33.0611 2536 fvevol - ok
20:51:33.0641 2536 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:51:33.0661 2536 gagp30kx - ok
20:51:33.0711 2536 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:51:33.0791 2536 gpsvc - ok
20:51:33.0871 2536 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
20:51:33.0931 2536 Greg_Service - ok
20:51:34.0031 2536 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:51:34.0061 2536 gupdate - ok
20:51:34.0111 2536 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:51:34.0131 2536 gupdatem - ok
20:51:34.0151 2536 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:51:34.0171 2536 gusvc - ok
20:51:34.0191 2536 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:51:34.0231 2536 hcw85cir - ok
20:51:34.0281 2536 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:51:34.0331 2536 HdAudAddService - ok
20:51:34.0351 2536 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:51:34.0381 2536 HDAudBus - ok
20:51:34.0421 2536 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:51:34.0431 2536 HECIx64 - ok
20:51:34.0471 2536 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:51:34.0491 2536 HidBatt - ok
20:51:34.0521 2536 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:51:34.0551 2536 HidBth - ok
20:51:34.0571 2536 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:51:34.0601 2536 HidIr - ok
20:51:34.0621 2536 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:51:34.0691 2536 hidserv - ok
20:51:34.0731 2536 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
20:51:34.0761 2536 HidUsb - ok
20:51:34.0791 2536 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:51:34.0871 2536 hkmsvc - ok
20:51:34.0921 2536 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:51:34.0971 2536 HomeGroupListener - ok
20:51:35.0011 2536 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:51:35.0041 2536 HomeGroupProvider - ok
20:51:35.0101 2536 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:51:35.0121 2536 HpSAMD - ok
20:51:35.0191 2536 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:51:35.0281 2536 HTTP - ok
20:51:35.0321 2536 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:51:35.0331 2536 hwpolicy - ok
20:51:35.0411 2536 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:51:35.0431 2536 i8042prt - ok
20:51:35.0491 2536 [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
20:51:35.0521 2536 IAANTMON - ok
20:51:35.0541 2536 [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:51:35.0551 2536 iaStor - ok
20:51:35.0611 2536 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:51:35.0631 2536 iaStorV - ok
20:51:35.0691 2536 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:51:35.0722 2536 idsvc - ok
20:51:35.0882 2536 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:51:35.0992 2536 igfx - ok
20:51:36.0022 2536 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:51:36.0042 2536 iirsp - ok
20:51:36.0092 2536 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:51:36.0182 2536 IKEEXT - ok
20:51:36.0272 2536 [ 42943BB3AB7A405B30EFF7C8283CC129 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:51:36.0342 2536 IntcAzAudAddService - ok
20:51:36.0382 2536 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:51:36.0402 2536 intelide - ok
20:51:36.0432 2536 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:51:36.0462 2536 intelppm - ok
20:51:36.0482 2536 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:51:36.0552 2536 IPBusEnum - ok
20:51:36.0602 2536 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:51:36.0652 2536 IpFilterDriver - ok
20:51:36.0702 2536 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:51:36.0742 2536 iphlpsvc - ok
20:51:36.0772 2536 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:51:36.0792 2536 IPMIDRV - ok
20:51:36.0822 2536 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:51:36.0892 2536 IPNAT - ok
20:51:36.0922 2536 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:51:36.0962 2536 IRENUM - ok
20:51:36.0992 2536 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:51:37.0012 2536 isapnp - ok
20:51:37.0032 2536 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:51:37.0052 2536 iScsiPrt - ok
20:51:37.0092 2536 [ 0C6635413077E415CA31AD2F4E648FC1 ] IT9135BDA C:\Windows\system32\Drivers\IT9135BDA.sys
20:51:37.0132 2536 IT9135BDA - ok
20:51:37.0172 2536 [ D85F3F18E44F7447B5F1BA5C85BAEB7C ] k57nd60a C:\Windows\system32\DRIVERS\k57nd60a.sys
20:51:37.0192 2536 k57nd60a - ok
20:51:37.0242 2536 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:51:37.0262 2536 kbdclass - ok
20:51:37.0312 2536 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:51:37.0332 2536 kbdhid - ok
20:51:37.0352 2536 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:51:37.0362 2536 KeyIso - ok
20:51:37.0402 2536 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:51:37.0422 2536 KSecDD - ok
20:51:37.0472 2536 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:51:37.0512 2536 KSecPkg - ok
20:51:37.0542 2536 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:51:37.0602 2536 ksthunk - ok
20:51:37.0632 2536 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:51:37.0702 2536 KtmRm - ok
20:51:37.0732 2536 [ 2AC603C3188C704CFCE353659AA7AD71 ] L1E C:\Windows\system32\DRIVERS\L1E62x64.sys
20:51:37.0752 2536 L1E - ok
20:51:37.0802 2536 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:51:37.0862 2536 LanmanServer - ok
20:51:37.0892 2536 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:51:37.0962 2536 LanmanWorkstation - ok
20:51:38.0072 2536 [ 6771CAC91BB89E15B13C27F1E3CDD320 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
20:51:38.0112 2536 LBTServ - ok
20:51:38.0142 2536 [ CEB6E18DCFAD5C72B81C7DA1AC3C1CC1 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
20:51:38.0162 2536 LHidFilt - ok
20:51:38.0182 2536 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:51:38.0242 2536 lltdio - ok
20:51:38.0272 2536 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:51:38.0342 2536 lltdsvc - ok
20:51:38.0362 2536 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:51:38.0412 2536 lmhosts - ok
20:51:38.0432 2536 [ F9E48F18BE4D2B365F138987B8E7885B ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
20:51:38.0452 2536 LMouFilt - ok
20:51:38.0502 2536 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:51:38.0532 2536 LMS - ok
20:51:38.0572 2536 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:51:38.0592 2536 LSI_FC - ok
20:51:38.0592 2536 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:51:38.0612 2536 LSI_SAS - ok
20:51:38.0622 2536 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:51:38.0642 2536 LSI_SAS2 - ok
20:51:38.0652 2536 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:51:38.0672 2536 LSI_SCSI - ok
20:51:38.0702 2536 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:51:38.0772 2536 luafv - ok
20:51:38.0812 2536 [ 51B20B742C9E35ADE40B840F6F4F5EE2 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys
20:51:38.0832 2536 LUsbFilt - ok
20:51:38.0862 2536 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:51:38.0902 2536 Mcx2Svc - ok
20:51:38.0932 2536 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:51:38.0952 2536 megasas - ok
20:51:38.0972 2536 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:51:38.0992 2536 MegaSR - ok
20:51:39.0022 2536 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:51:39.0092 2536 MMCSS - ok
20:51:39.0112 2536 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:51:39.0152 2536 Modem - ok
20:51:39.0182 2536 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:51:39.0212 2536 monitor - ok
20:51:39.0242 2536 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:51:39.0262 2536 mouclass - ok
20:51:39.0302 2536 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:51:39.0322 2536 mouhid - ok
20:51:39.0352 2536 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:51:39.0382 2536 mountmgr - ok
20:51:39.0432 2536 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:51:39.0452 2536 MozillaMaintenance - ok
20:51:39.0492 2536 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:51:39.0522 2536 mpio - ok
20:51:39.0552 2536 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:51:39.0612 2536 mpsdrv - ok
20:51:39.0662 2536 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:51:39.0742 2536 MpsSvc - ok
20:51:39.0782 2536 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:51:39.0832 2536 MRxDAV - ok
20:51:39.0872 2536 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:51:39.0912 2536 mrxsmb - ok
20:51:39.0952 2536 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:51:39.0992 2536 mrxsmb10 - ok
20:51:40.0012 2536 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:51:40.0042 2536 mrxsmb20 - ok
20:51:40.0072 2536 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:51:40.0102 2536 msahci - ok
20:51:40.0122 2536 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:51:40.0142 2536 msdsm - ok
20:51:40.0152 2536 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:51:40.0172 2536 MSDTC - ok
20:51:40.0222 2536 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:51:40.0272 2536 Msfs - ok
20:51:40.0302 2536 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:51:40.0362 2536 mshidkmdf - ok
20:51:40.0392 2536 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:51:40.0402 2536 msisadrv - ok
20:51:40.0432 2536 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:51:40.0502 2536 MSiSCSI - ok
20:51:40.0512 2536 msiserver - ok
20:51:40.0542 2536 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:51:40.0582 2536 MSKSSRV - ok
20:51:40.0602 2536 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:51:40.0652 2536 MSPCLOCK - ok
20:51:40.0672 2536 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:51:40.0722 2536 MSPQM - ok
20:51:40.0772 2536 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:51:40.0792 2536 MsRPC - ok
20:51:40.0822 2536 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:51:40.0842 2536 mssmbios - ok
20:51:40.0882 2536 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:51:40.0942 2536 MSTEE - ok
20:51:40.0962 2536 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:51:40.0982 2536 MTConfig - ok
20:51:41.0002 2536 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:51:41.0022 2536 Mup - ok
20:51:41.0042 2536 [ 6FFECC25B39DC7652A0CEC0ADA9DB589 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
20:51:41.0052 2536 mwlPSDFilter - ok
20:51:41.0092 2536 [ 0BEFE32CA56D6EE89D58175725596A85 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
20:51:41.0102 2536 mwlPSDNServ - ok
20:51:41.0122 2536 [ D43BC633B8660463E446E28E14A51262 ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
20:51:41.0132 2536 mwlPSDVDisk - ok
20:51:41.0212 2536 [ 2F139207F618EC2933830227EEFFDDB4 ] MWLService C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe
20:51:41.0232 2536 MWLService - ok
20:51:41.0282 2536 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:51:41.0352 2536 napagent - ok
20:51:41.0392 2536 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:51:41.0432 2536 NativeWifiP - ok
20:51:41.0502 2536 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:51:41.0542 2536 NDIS - ok
20:51:41.0582 2536 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:51:41.0652 2536 NdisCap - ok
20:51:41.0672 2536 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:51:41.0742 2536 NdisTapi - ok
20:51:41.0782 2536 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:51:41.0852 2536 Ndisuio - ok
20:51:41.0892 2536 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:51:41.0942 2536 NdisWan - ok
20:51:41.0982 2536 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:51:42.0052 2536 NDProxy - ok
20:51:42.0092 2536 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:51:42.0152 2536 NetBIOS - ok
20:51:42.0192 2536 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:51:42.0262 2536 NetBT - ok
20:51:42.0272 2536 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:51:42.0282 2536 Netlogon - ok
20:51:42.0322 2536 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:51:42.0382 2536 Netman - ok
20:51:42.0402 2536 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:51:42.0482 2536 netprofm - ok
20:51:42.0502 2536 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:51:42.0522 2536 NetTcpPortSharing - ok
20:51:42.0552 2536 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:51:42.0572 2536 nfrd960 - ok
20:51:42.0622 2536 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:51:42.0652 2536 NlaSvc - ok
20:51:42.0692 2536 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:51:42.0742 2536 Npfs - ok
20:51:42.0762 2536 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:51:42.0812 2536 nsi - ok
20:51:42.0832 2536 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:51:42.0892 2536 nsiproxy - ok
20:51:42.0942 2536 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:51:43.0002 2536 Ntfs - ok
20:51:43.0062 2536 [ 14E66F603FB187713AEB02AD3B0390CF ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
20:51:43.0082 2536 NTI IScheduleSvc - ok
20:51:43.0122 2536 [ FD324CCE1D4D5BB5AF65F8E55B462C7E ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
20:51:43.0142 2536 NTIBackupSvc - ok
20:51:43.0192 2536 [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
20:51:43.0212 2536 NTIDrvr - ok
20:51:43.0242 2536 [ 3F6268A2EC33CD38CF75C880AF8DED42 ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
20:51:43.0272 2536 NTISchedulerSvc - ok
20:51:43.0292 2536 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:51:43.0342 2536 Null - ok
20:51:43.0392 2536 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:51:43.0422 2536 nvraid - ok
20:51:43.0432 2536 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:51:43.0452 2536 nvstor - ok
20:51:43.0492 2536 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:51:43.0512 2536 nv_agp - ok
20:51:43.0532 2536 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:51:43.0572 2536 ohci1394 - ok
20:51:43.0642 2536 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:51:43.0662 2536 ose - ok
20:51:43.0853 2536 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:51:43.0973 2536 osppsvc - ok
20:51:44.0063 2536 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:51:44.0113 2536 p2pimsvc - ok
20:51:44.0143 2536 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:51:44.0173 2536 p2psvc - ok
20:51:44.0193 2536 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:51:44.0213 2536 Parport - ok
20:51:44.0253 2536 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:51:44.0273 2536 partmgr - ok
20:51:44.0303 2536 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:51:44.0343 2536 PcaSvc - ok
20:51:44.0373 2536 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:51:44.0403 2536 pci - ok
20:51:44.0423 2536 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:51:44.0443 2536 pciide - ok
20:51:44.0463 2536 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:51:44.0493 2536 pcmcia - ok
20:51:44.0513 2536 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:51:44.0523 2536 pcw - ok
20:51:44.0553 2536 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:51:44.0633 2536 PEAUTH - ok
20:51:44.0713 2536 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:51:44.0743 2536 PerfHost - ok
20:51:44.0803 2536 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:51:44.0893 2536 pla - ok
20:51:44.0943 2536 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:51:44.0993 2536 PlugPlay - ok
20:51:45.0003 2536 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:51:45.0033 2536 PNRPAutoReg - ok
20:51:45.0043 2536 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:51:45.0063 2536 PNRPsvc - ok
20:51:45.0113 2536 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:51:45.0183 2536 PolicyAgent - ok
20:51:45.0213 2536 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:51:45.0283 2536 Power - ok
20:51:45.0323 2536 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:51:45.0373 2536 PptpMiniport - ok
20:51:45.0393 2536 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:51:45.0433 2536 Processor - ok
20:51:45.0473 2536 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:51:45.0533 2536 ProfSvc - ok
20:51:45.0553 2536 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:51:45.0563 2536 ProtectedStorage - ok
20:51:45.0613 2536 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:51:45.0693 2536 Psched - ok
20:51:45.0733 2536 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:51:45.0783 2536 ql2300 - ok
20:51:45.0813 2536 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:51:45.0833 2536 ql40xx - ok
20:51:45.0863 2536 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:51:45.0903 2536 QWAVE - ok
20:51:45.0903 2536 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:51:45.0933 2536 QWAVEdrv - ok
20:51:45.0973 2536 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:51:46.0033 2536 RasAcd - ok
20:51:46.0043 2536 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:51:46.0103 2536 RasAgileVpn - ok
20:51:46.0123 2536 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:51:46.0173 2536 RasAuto - ok
20:51:46.0213 2536 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:51:46.0273 2536 Rasl2tp - ok
20:51:46.0313 2536 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:51:46.0373 2536 RasMan - ok
20:51:46.0403 2536 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:51:46.0453 2536 RasPppoe - ok
20:51:46.0473 2536 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:51:46.0523 2536 RasSstp - ok
20:51:46.0563 2536 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:51:46.0623 2536 rdbss - ok
20:51:46.0643 2536 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:51:46.0663 2536 rdpbus - ok
20:51:46.0703 2536 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:51:46.0773 2536 RDPCDD - ok
20:51:46.0803 2536 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:51:46.0853 2536 RDPENCDD - ok
20:51:46.0863 2536 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:51:46.0903 2536 RDPREFMP - ok
20:51:46.0943 2536 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:51:46.0973 2536 RDPWD - ok
20:51:47.0023 2536 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:51:47.0053 2536 rdyboost - ok
20:51:47.0073 2536 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:51:47.0143 2536 RemoteAccess - ok
20:51:47.0173 2536 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:51:47.0243 2536 RemoteRegistry - ok
20:51:47.0253 2536 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:51:47.0323 2536 RpcEptMapper - ok
20:51:47.0333 2536 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:51:47.0353 2536 RpcLocator - ok
20:51:47.0403 2536 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:51:47.0463 2536 RpcSs - ok
20:51:47.0493 2536 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:51:47.0563 2536 rspndr - ok
20:51:47.0613 2536 [ B5A4B7D779CF4070DF408DE18BD33B02 ] RS_Service C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
20:51:47.0653 2536 RS_Service ( UnsignedFile.Multi.Generic ) - warning
20:51:47.0653 2536 RS_Service - detected UnsignedFile.Multi.Generic (1)
20:51:47.0703 2536 [ 7421A35C45484B95E83B5E9E107CEFC2 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
20:51:47.0723 2536 RTHDMIAzAudService - ok
20:51:47.0743 2536 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:51:47.0753 2536 SamSs - ok
20:51:47.0793 2536 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:51:47.0813 2536 sbp2port - ok
20:51:47.0843 2536 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:51:47.0903 2536 SCardSvr - ok
20:51:47.0923 2536 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:51:47.0983 2536 scfilter - ok
20:51:48.0043 2536 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:51:48.0113 2536 Schedule - ok
20:51:48.0163 2536 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:51:48.0203 2536 SCPolicySvc - ok
20:51:48.0263 2536 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:51:48.0313 2536 SDRSVC - ok
20:51:48.0343 2536 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:51:48.0403 2536 secdrv - ok
20:51:48.0443 2536 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:51:48.0513 2536 seclogon - ok
20:51:48.0533 2536 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:51:48.0583 2536 SENS - ok
20:51:48.0593 2536 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:51:48.0653 2536 SensrSvc - ok
20:51:48.0683 2536 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:51:48.0703 2536 Serenum - ok
20:51:48.0733 2536 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:51:48.0773 2536 Serial - ok
20:51:48.0813 2536 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:51:48.0843 2536 sermouse - ok
20:51:48.0893 2536 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:51:48.0973 2536 SessionEnv - ok
20:51:49.0003 2536 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:51:49.0043 2536 sffdisk - ok
20:51:49.0063 2536 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:51:49.0103 2536 sffp_mmc - ok
20:51:49.0113 2536 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:51:49.0143 2536 sffp_sd - ok
20:51:49.0173 2536 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:51:49.0203 2536 sfloppy - ok
20:51:49.0243 2536 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:51:49.0323 2536 SharedAccess - ok
20:51:49.0363 2536 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:51:49.0433 2536 ShellHWDetection - ok
20:51:49.0463 2536 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:51:49.0473 2536 SiSRaid2 - ok
20:51:49.0503 2536 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:51:49.0523 2536 SiSRaid4 - ok
20:51:49.0573 2536 [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:51:49.0633 2536 SkypeUpdate - ok
20:51:49.0643 2536 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:51:49.0713 2536 Smb - ok
20:51:49.0753 2536 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:51:49.0783 2536 SNMPTRAP - ok
20:51:49.0813 2536 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:51:49.0833 2536 spldr - ok
20:51:49.0883 2536 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:51:49.0923 2536 Spooler - ok
20:51:50.0013 2536 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:51:50.0133 2536 sppsvc - ok
20:51:50.0163 2536 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:51:50.0223 2536 sppuinotify - ok
20:51:50.0263 2536 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:51:50.0283 2536 srv - ok
20:51:50.0303 2536 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:51:50.0343 2536 srv2 - ok
20:51:50.0383 2536 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:51:50.0413 2536 srvnet - ok
20:51:50.0443 2536 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:51:50.0513 2536 SSDPSRV - ok
20:51:50.0533 2536 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:51:50.0583 2536 SstpSvc - ok
20:51:50.0613 2536 [ A97BFF59B3B983FDBDCD8AE6CF3C1E2D ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
20:51:50.0643 2536 ssudmdm - ok
20:51:50.0663 2536 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:51:50.0683 2536 stexstor - ok
20:51:50.0734 2536 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:51:50.0774 2536 stisvc - ok
20:51:50.0814 2536 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:51:50.0834 2536 swenum - ok
20:51:50.0874 2536 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:51:50.0954 2536 swprv - ok
20:51:50.0994 2536 [ ED6D1424E5B0C21A57B28DD8508D6843 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:51:51.0014 2536 SynTP - ok
20:51:51.0084 2536 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:51:51.0154 2536 SysMain - ok
20:51:51.0194 2536 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:51:51.0224 2536 TabletInputService - ok
20:51:51.0244 2536 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:51:51.0314 2536 TapiSrv - ok
20:51:51.0344 2536 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:51:51.0384 2536 TBS - ok
20:51:51.0464 2536 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:51:51.0534 2536 Tcpip - ok
20:51:51.0584 2536 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:51:51.0634 2536 TCPIP6 - ok
20:51:51.0684 2536 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:51:51.0704 2536 tcpipreg - ok
20:51:51.0734 2536 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:51:51.0764 2536 TDPIPE - ok
20:51:51.0804 2536 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:51:51.0834 2536 TDTCP - ok
20:51:51.0884 2536 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:51:51.0964 2536 tdx - ok
20:51:52.0004 2536 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:51:52.0034 2536 TermDD - ok
20:51:52.0084 2536 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:51:52.0154 2536 TermService - ok
20:51:52.0184 2536 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:51:52.0214 2536 Themes - ok
20:51:52.0244 2536 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:51:52.0294 2536 THREADORDER - ok
20:51:52.0304 2536 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:51:52.0364 2536 TrkWks - ok
20:51:52.0434 2536 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:51:52.0504 2536 TrustedInstaller - ok
20:51:52.0544 2536 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:51:52.0604 2536 tssecsrv - ok
20:51:52.0654 2536 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:51:52.0704 2536 TsUsbFlt - ok
20:51:52.0764 2536 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:51:52.0814 2536 tunnel - ok
20:51:52.0844 2536 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:51:52.0864 2536 uagp35 - ok
20:51:52.0914 2536 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
20:51:52.0924 2536 UBHelper - ok
20:51:52.0964 2536 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:51:53.0034 2536 udfs - ok
20:51:53.0054 2536 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:51:53.0084 2536 UI0Detect - ok
20:51:53.0104 2536 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:51:53.0124 2536 uliagpkx - ok
20:51:53.0174 2536 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:51:53.0214 2536 umbus - ok
20:51:53.0234 2536 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:51:53.0264 2536 UmPass - ok
20:51:53.0354 2536 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
20:51:53.0424 2536 UNS - ok
20:51:53.0484 2536 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
20:51:53.0524 2536 Updater Service - ok
20:51:53.0554 2536 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:51:53.0634 2536 upnphost - ok
20:51:53.0674 2536 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:51:53.0714 2536 usbaudio - ok
20:51:53.0754 2536 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:51:53.0794 2536 usbccgp - ok
20:51:53.0824 2536 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:51:53.0854 2536 usbcir - ok
20:51:53.0874 2536 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:51:53.0904 2536 usbehci - ok
20:51:53.0954 2536 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:51:53.0984 2536 usbhub - ok
20:51:53.0994 2536 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:51:54.0034 2536 usbohci - ok
20:51:54.0074 2536 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:51:54.0104 2536 usbprint - ok
20:51:54.0144 2536 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:51:54.0164 2536 usbscan - ok
20:51:54.0214 2536 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:51:54.0254 2536 USBSTOR - ok
20:51:54.0264 2536 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:51:54.0304 2536 usbuhci - ok
20:51:54.0334 2536 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:51:54.0354 2536 usbvideo - ok
20:51:54.0404 2536 [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys
20:51:54.0454 2536 usb_rndisx - ok
20:51:54.0474 2536 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:51:54.0534 2536 UxSms - ok
20:51:54.0544 2536 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:51:54.0554 2536 VaultSvc - ok
20:51:54.0584 2536 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:51:54.0604 2536 vdrvroot - ok
20:51:54.0654 2536 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:51:54.0714 2536 vds - ok
20:51:54.0744 2536 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:51:54.0764 2536 vga - ok
20:51:54.0784 2536 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:51:54.0854 2536 VgaSave - ok
20:51:54.0884 2536 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:51:54.0914 2536 vhdmp - ok
20:51:54.0924 2536 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:51:54.0944 2536 viaide - ok
20:51:55.0034 2536 [ 3D542F5DADE8B181AB261C648C15462D ] VmbService C:\Program Files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
20:51:55.0054 2536 VmbService ( UnsignedFile.Multi.Generic ) - warning
20:51:55.0054 2536 VmbService - detected UnsignedFile.Multi.Generic (1)
20:51:55.0114 2536 [ 1E4D31FEC921300C5F262C52F5FCC666 ] vodafone_K3805-z_dc_enum C:\Windows\system32\DRIVERS\vodafone_K3805-z_dc_enum.sys
20:51:55.0144 2536 vodafone_K3805-z_dc_enum - ok
20:51:55.0164 2536 [ CD9E990F5E9DA640FF9B61CCDF8F6F41 ] vodafone_zte_cdc_acm C:\Windows\system32\DRIVERS\vodafone_zte_cdc_acm.sys
20:51:55.0204 2536 vodafone_zte_cdc_acm - ok
20:51:55.0254 2536 [ 38D96C6C41281FD87DFE97C21AE19F9C ] vodafone_zte_cdc_ecm C:\Windows\system32\DRIVERS\vodafone_zte_cdc_ecm.sys
20:51:55.0274 2536 vodafone_zte_cdc_ecm - ok
20:51:55.0344 2536 [ 8B011E1083749E0333B7142C20DBD8D3 ] vodafone_zte_cpo C:\Windows\system32\DRIVERS\vodafone_zte_cpo.sys
20:51:55.0384 2536 vodafone_zte_cpo - ok
20:51:55.0414 2536 [ 050CBF9057BC646F6CDD3F14879916A0 ] vodafone_zte_ecm_enum C:\Windows\system32\DRIVERS\vodafone_zte_ecm_enum.sys
20:51:55.0454 2536 vodafone_zte_ecm_enum - ok
20:51:55.0464 2536 [ 050CBF9057BC646F6CDD3F14879916A0 ] vodafone_zte_ecm_enum_filter C:\Windows\system32\DRIVERS\vodafone_zte_ecm_enum_filter.sys
20:51:55.0484 2536 vodafone_zte_ecm_enum_filter - ok
20:51:55.0504 2536 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:51:55.0524 2536 volmgr - ok
20:51:55.0564 2536 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:51:55.0604 2536 volmgrx - ok
20:51:55.0644 2536 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:51:55.0664 2536 volsnap - ok
20:51:55.0704 2536 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:51:55.0724 2536 vsmraid - ok
20:51:55.0784 2536 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:51:55.0864 2536 VSS - ok
20:51:55.0884 2536 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:51:55.0924 2536 vwifibus - ok
20:51:55.0934 2536 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:51:55.0974 2536 vwififlt - ok
20:51:56.0004 2536 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:51:56.0024 2536 vwifimp - ok
20:51:56.0064 2536 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:51:56.0124 2536 W32Time - ok
20:51:56.0154 2536 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:51:56.0184 2536 WacomPen - ok
20:51:56.0214 2536 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:51:56.0294 2536 WANARP - ok
20:51:56.0294 2536 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:51:56.0334 2536 Wanarpv6 - ok
20:51:56.0404 2536 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:51:56.0464 2536 WatAdminSvc - ok
20:51:56.0534 2536 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:51:56.0594 2536 wbengine - ok
20:51:56.0624 2536 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:51:56.0654 2536 WbioSrvc - ok
20:51:56.0704 2536 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:51:56.0745 2536 wcncsvc - ok
20:51:56.0765 2536 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:51:56.0795 2536 WcsPlugInService - ok
20:51:56.0825 2536 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:51:56.0835 2536 Wd - ok
20:51:56.0905 2536 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:51:56.0945 2536 Wdf01000 - ok
20:51:56.0965 2536 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:51:57.0045 2536 WdiServiceHost - ok
20:51:57.0045 2536 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:51:57.0075 2536 WdiSystemHost - ok
20:51:57.0115 2536 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:51:57.0155 2536 WebClient - ok
20:51:57.0175 2536 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:51:57.0245 2536 Wecsvc - ok
20:51:57.0255 2536 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:51:57.0305 2536 wercplsupport - ok
20:51:57.0335 2536 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:51:57.0405 2536 WerSvc - ok
20:51:57.0435 2536 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:51:57.0485 2536 WfpLwf - ok
20:51:57.0505 2536 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:51:57.0525 2536 WIMMount - ok
20:51:57.0545 2536 WinDefend - ok
20:51:57.0555 2536 WinHttpAutoProxySvc - ok
20:51:57.0615 2536 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:51:57.0685 2536 Winmgmt - ok
20:51:57.0775 2536 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:51:57.0885 2536 WinRM - ok
20:51:57.0965 2536 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:51:58.0015 2536 WinUsb - ok
20:51:58.0045 2536 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:51:58.0095 2536 Wlansvc - ok
20:51:58.0125 2536 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:51:58.0155 2536 WmiAcpi - ok
20:51:58.0175 2536 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:51:58.0215 2536 wmiApSrv - ok
20:51:58.0255 2536 WMPNetworkSvc - ok
20:51:58.0285 2536 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:51:58.0325 2536 WPCSvc - ok
20:51:58.0355 2536 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:51:58.0385 2536 WPDBusEnum - ok
20:51:58.0415 2536 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:51:58.0475 2536 ws2ifsl - ok
20:51:58.0485 2536 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:51:58.0525 2536 wscsvc - ok
20:51:58.0525 2536 WSearch - ok
20:51:58.0615 2536 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:51:58.0695 2536 wuauserv - ok
20:51:58.0735 2536 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:51:58.0775 2536 WudfPf - ok
20:51:58.0835 2536 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:51:58.0855 2536 WUDFRd - ok
20:51:58.0905 2536 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:51:58.0935 2536 wudfsvc - ok
20:51:58.0975 2536 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:51:59.0015 2536 WwanSvc - ok
20:51:59.0045 2536 ================ Scan global ===============================
20:51:59.0065 2536 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:51:59.0105 2536 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:51:59.0125 2536 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:51:59.0155 2536 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:51:59.0185 2536 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:51:59.0185 2536 [Global] - ok
20:51:59.0185 2536 ================ Scan MBR ==================================
20:51:59.0205 2536 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:51:59.0565 2536 \Device\Harddisk0\DR0 - ok
20:51:59.0565 2536 ================ Scan VBR ==================================
20:51:59.0575 2536 [ FAD8C3E69D2581D71ECB8D5C67BAF418 ] \Device\Harddisk0\DR0\Partition1
20:51:59.0575 2536 \Device\Harddisk0\DR0\Partition1 - ok
20:51:59.0605 2536 [ BFD2E257BEFA1FEF97773673998F95E0 ] \Device\Harddisk0\DR0\Partition2
20:51:59.0605 2536 \Device\Harddisk0\DR0\Partition2 - ok
20:51:59.0605 2536 ============================================================
20:51:59.0605 2536 Scan finished
20:51:59.0605 2536 ============================================================
20:51:59.0615 2456 Detected object count: 4
20:51:59.0615 2456 Actual detected object count: 4

markusg · 03.06.2013, 20:34

Hi,
Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Temeraire87 · 03.06.2013, 21:17

Hallo,

[code]
Combofix Logfile:

Code:

ATTFilter

ComboFix 13-06-03.06 - acer 03.06.2013  22:02:38.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.3956.2801 [GMT 2:00]
ausgeführt von:: c:\users\acer\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Common Files\Acer GameZone online.ico
c:\users\acer\AppData\Roaming\.#
c:\windows\SysWow64\AF9100EX.dll
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\System32\MASetupCleaner.exe
c:\windows\SysWow64\System32\muzapp.exe
c:\windows\wininit.ini
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-05-03 bis 2013-06-03  ))))))))))))))))))))))))))))))
.
.
2013-06-03 20:08 . 2013-06-03 20:08	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-06-03 15:51 . 2013-06-03 16:20	--------	d-----w-	C:\_OTL
2013-06-03 15:13 . 2013-06-03 15:13	--------	d-----w-	c:\program files (x86)\7-Zip
2013-05-28 17:18 . 2013-05-28 17:18	--------	d-----w-	c:\program files\WEB.DE MailCheck
2013-05-28 17:18 . 2013-05-28 17:18	--------	d-----w-	c:\program files (x86)\WEB.DE MailCheck
2013-05-28 14:37 . 2013-05-28 14:37	--------	d-----w-	c:\programdata\UUdb
2013-05-28 14:37 . 2013-05-28 14:37	--------	d-----w-	c:\programdata\1und1DesktopIconsInstaller
2013-05-18 13:18 . 2013-05-18 13:19	--------	d-----w-	c:\programdata\Kalorio
2013-05-18 13:18 . 2013-05-18 13:18	--------	d-----w-	c:\program files (x86)\Kalorio
2013-05-15 09:54 . 2013-04-10 06:01	265064	----a-w-	c:\windows\system32\drivers\dxgmms1.sys
2013-05-15 09:54 . 2013-04-10 06:01	983400	----a-w-	c:\windows\system32\drivers\dxgkrnl.sys
2013-05-15 09:54 . 2011-02-03 11:25	144384	----a-w-	c:\windows\system32\cdd.dll
2013-05-15 09:54 . 2013-02-27 05:52	14172672	----a-w-	c:\windows\system32\shell32.dll
2013-05-15 09:54 . 2013-02-27 05:52	197120	----a-w-	c:\windows\system32\shdocvw.dll
2013-05-15 09:54 . 2013-02-27 05:48	1930752	----a-w-	c:\windows\system32\authui.dll
2013-05-15 09:54 . 2013-02-27 06:02	111448	----a-w-	c:\windows\system32\consent.exe
2013-05-15 09:54 . 2013-02-27 05:47	70144	----a-w-	c:\windows\system32\appinfo.dll
2013-05-15 09:54 . 2013-02-27 04:49	1796096	----a-w-	c:\windows\SysWow64\authui.dll
2013-05-15 09:53 . 2013-03-19 05:53	48640	----a-w-	c:\windows\system32\wwanprotdim.dll
2013-05-15 09:53 . 2013-03-19 05:53	230400	----a-w-	c:\windows\system32\wwansvc.dll
2013-05-15 09:53 . 2013-04-10 03:30	3153920	----a-w-	c:\windows\system32\win32k.sys
2013-05-14 13:15 . 2013-05-14 13:16	--------	d-----w-	c:\program files\GIMP 2
2013-05-11 07:00 . 2013-04-03 07:58	203672	----a-w-	c:\windows\system32\drivers\ssudmdm.sys
2013-05-11 07:00 . 2013-04-03 07:58	103064	----a-w-	c:\windows\system32\drivers\ssudbus.sys
2013-05-09 14:24 . 2013-05-09 14:24	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2013-05-07 13:58 . 2013-05-07 13:57	83160	----a-w-	c:\windows\system32\drivers\avnetflt.sys
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 12:11 . 2010-05-08 08:26	75016696	----a-w-	c:\windows\system32\MRT.exe
2013-05-14 21:29 . 2012-04-02 08:48	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-14 21:29 . 2011-06-06 17:02	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-01 12:33 . 2013-05-01 12:33	1054720	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-05-01 12:33 . 2013-05-01 12:33	226304	----a-w-	c:\windows\system32\elshyph.dll
2013-05-01 12:33 . 2013-05-01 12:33	185344	----a-w-	c:\windows\SysWow64\elshyph.dll
2013-05-01 12:33 . 2013-05-01 12:33	719360	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2013-05-01 12:33 . 2013-05-01 12:33	158720	----a-w-	c:\windows\SysWow64\msls31.dll
2013-05-01 12:33 . 2013-05-01 12:33	150528	----a-w-	c:\windows\SysWow64\iexpress.exe
2013-05-01 12:33 . 2013-05-01 12:33	138752	----a-w-	c:\windows\SysWow64\wextract.exe
2013-05-01 12:33 . 2013-05-01 12:33	73728	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2013-05-01 12:33 . 2013-05-01 12:33	61952	----a-w-	c:\windows\SysWow64\tdc.ocx
2013-05-01 12:33 . 2013-05-01 12:33	523264	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-05-01 12:33 . 2013-05-01 12:33	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2013-05-01 12:33 . 2013-05-01 12:33	38400	----a-w-	c:\windows\SysWow64\imgutil.dll
2013-05-01 12:33 . 2013-05-01 12:33	361984	----a-w-	c:\windows\SysWow64\html.iec
2013-05-01 12:33 . 2013-05-01 12:33	23040	----a-w-	c:\windows\SysWow64\licmgr10.dll
2013-05-01 12:33 . 2013-05-01 12:33	197120	----a-w-	c:\windows\system32\msrating.dll
2013-05-01 12:33 . 2013-05-01 12:33	1441280	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-05-01 12:33 . 2013-05-01 12:33	137216	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-05-01 12:33 . 2013-05-01 12:33	12800	----a-w-	c:\windows\SysWow64\mshta.exe
2013-05-01 12:33 . 2013-05-01 12:33	110592	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2013-05-01 12:33 . 2013-05-01 12:33	97280	----a-w-	c:\windows\system32\mshtmled.dll
2013-05-01 12:33 . 2013-05-01 12:33	92160	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-05-01 12:33 . 2013-05-01 12:33	905728	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-05-01 12:33 . 2013-05-01 12:33	81408	----a-w-	c:\windows\system32\icardie.dll
2013-05-01 12:33 . 2013-05-01 12:33	77312	----a-w-	c:\windows\system32\tdc.ocx
2013-05-01 12:33 . 2013-05-01 12:33	762368	----a-w-	c:\windows\system32\ieapfltr.dll
2013-05-01 12:33 . 2013-05-01 12:33	62976	----a-w-	c:\windows\system32\pngfilt.dll
2013-05-01 12:33 . 2013-05-01 12:33	599552	----a-w-	c:\windows\system32\vbscript.dll
2013-05-01 12:33 . 2013-05-01 12:33	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2013-05-01 12:33 . 2013-05-01 12:33	51200	----a-w-	c:\windows\system32\imgutil.dll
2013-05-01 12:33 . 2013-05-01 12:33	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-05-01 12:33 . 2013-05-01 12:33	452096	----a-w-	c:\windows\system32\dxtmsft.dll
2013-05-01 12:33 . 2013-05-01 12:33	441856	----a-w-	c:\windows\system32\html.iec
2013-05-01 12:33 . 2013-05-01 12:33	281600	----a-w-	c:\windows\system32\dxtrans.dll
2013-05-01 12:33 . 2013-05-01 12:33	27648	----a-w-	c:\windows\system32\licmgr10.dll
2013-05-01 12:33 . 2013-05-01 12:33	270848	----a-w-	c:\windows\system32\iedkcs32.dll
2013-05-01 12:33 . 2013-05-01 12:33	247296	----a-w-	c:\windows\system32\webcheck.dll
2013-05-01 12:33 . 2013-05-01 12:33	235008	----a-w-	c:\windows\system32\url.dll
2013-05-01 12:33 . 2013-05-01 12:33	216064	----a-w-	c:\windows\system32\msls31.dll
2013-05-01 12:33 . 2013-05-01 12:33	173568	----a-w-	c:\windows\system32\ieUnatt.exe
2013-05-01 12:33 . 2013-05-01 12:33	167424	----a-w-	c:\windows\system32\iexpress.exe
2013-05-01 12:33 . 2013-05-01 12:33	1509376	----a-w-	c:\windows\system32\inetcpl.cpl
2013-05-01 12:33 . 2013-05-01 12:33	149504	----a-w-	c:\windows\system32\occache.dll
2013-05-01 12:33 . 2013-05-01 12:33	144896	----a-w-	c:\windows\system32\wextract.exe
2013-05-01 12:33 . 2013-05-01 12:33	1400416	----a-w-	c:\windows\system32\ieapfltr.dat
2013-05-01 12:33 . 2013-05-01 12:33	13824	----a-w-	c:\windows\system32\mshta.exe
2013-05-01 12:33 . 2013-05-01 12:33	136192	----a-w-	c:\windows\system32\iepeers.dll
2013-05-01 12:33 . 2013-05-01 12:33	135680	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-05-01 12:33 . 2013-05-01 12:33	12800	----a-w-	c:\windows\system32\msfeedssync.exe
2013-05-01 12:33 . 2013-05-01 12:33	102912	----a-w-	c:\windows\system32\inseng.dll
2013-04-13 05:49 . 2013-05-15 09:53	135168	----a-w-	c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 09:53	350208	----a-w-	c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 09:53	308736	----a-w-	c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 09:53	111104	----a-w-	c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 09:53	474624	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 09:53	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-24 16:00	1656680	----a-w-	c:\windows\system32\drivers\ntfs.sys
2013-03-28 02:15 . 2013-03-28 02:15	28600	----a-w-	c:\windows\system32\drivers\avkmgr.sys
2013-03-28 02:15 . 2013-03-28 02:15	130016	----a-w-	c:\windows\system32\drivers\avipbb.sys
2013-03-28 02:15 . 2013-03-28 02:15	100712	----a-w-	c:\windows\system32\drivers\avgntflt.sys
2013-03-19 06:04 . 2013-04-12 12:27	5550424	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-12 12:27	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-12 12:27	3968856	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-12 12:27	3913560	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-12 12:27	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-12 12:27	112640	----a-w-	c:\windows\system32\smss.exe
2010-05-19 16:54 . 2010-05-19 17:27	2253400	----a-w-	c:\program files\TeamViewerQS-wq.exe
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{17166733-40EA-4432-A85C-AE672FF0E236}]
2011-05-11 15:38	154216	----a-w-	c:\programdata\1und1InternetExplorerAddon\BHOXML.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-09-11 05:41	120104	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-12-09 98304]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-05-07 345312]
"MailCheck IE Broker"="c:\program files (x86)\WEB.DE MailCheck\IE\WEB.DE_MailCheck_Broker.exe" [2013-05-27 1516608]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-11-01 1100368]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\SysWOW64\FsUsbExDisk.SYS;c:\windows\SysWOW64\FsUsbExDisk.SYS [x]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys;c:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [x]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 vodafone_zte_cdc_acm;Vodafone Vodafone ZTE CDC-ACM driver (ZTE);c:\windows\system32\DRIVERS\vodafone_zte_cdc_acm.sys;c:\windows\SYSNATIVE\DRIVERS\vodafone_zte_cdc_acm.sys [x]
R3 vodafone_zte_cdc_ecm;vodafone_zte_cdc_ecm;c:\windows\system32\DRIVERS\vodafone_zte_cdc_ecm.sys;c:\windows\SYSNATIVE\DRIVERS\vodafone_zte_cdc_ecm.sys [x]
R3 vodafone_zte_cpo;Vodafone Vodafone ZTE Install;c:\windows\system32\DRIVERS\vodafone_zte_cpo.sys;c:\windows\SYSNATIVE\DRIVERS\vodafone_zte_cpo.sys [x]
R3 vodafone_zte_ecm_enum;Vodafone Vodafone ZTE DC Enumerator (ZTE);c:\windows\system32\DRIVERS\vodafone_zte_ecm_enum.sys;c:\windows\SYSNATIVE\DRIVERS\vodafone_zte_ecm_enum.sys [x]
R3 vodafone_zte_ecm_enum_filter;vodafone_zte_ecm_enum_filter;c:\windows\system32\DRIVERS\vodafone_zte_ecm_enum_filter.sys;c:\windows\SYSNATIVE\DRIVERS\vodafone_zte_ecm_enum_filter.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys;c:\windows\SYSNATIVE\drivers\acedrv11.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 DBService;DATA BECKER Update Service;c:\program files (x86)\Common Files\DATA BECKER Shared\DBService.exe;c:\program files (x86)\Common Files\DATA BECKER Shared\DBService.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe;c:\program files (x86)\Acer\Registration\GregHSRW.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [x]
S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 VmbService;Vodafone-Mobile-Broadband-Dienst;c:\program files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe;c:\program files (x86)\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 vodafone_K3805-z_dc_enum;vodafone_K3805-z_dc_enum;c:\windows\system32\DRIVERS\vodafone_K3805-z_dc_enum.sys;c:\windows\SYSNATIVE\DRIVERS\vodafone_K3805-z_dc_enum.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-05-24 20:49	1165776	----a-w-	c:\program files (x86)\Google\Chrome\Application\27.0.1453.94\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-03 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-02 21:29]
.
2013-06-03 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1965137076-4088743610-1118242732-1000Core.job
- c:\users\acer\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-12-21 16:49]
.
2013-06-03 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1965137076-4088743610-1118242732-1000UA.job
- c:\users\acer\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-12-21 16:49]
.
2013-06-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-04 21:14]
.
2013-06-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-04 21:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2009-09-11 05:44	137512	----a-w-	c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-29 8312352]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://go.web.de/tb/ie_startpage
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>;*.local
IE: An OneNote s&enden - c:\progra~2\MICROS~2\Office14\ONBttnIE.dll/105
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Nach Microsoft E&xcel exportieren - c:\progra~2\MICROS~2\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
Handler: webde - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - c:\program files (x86)\WEB.DE MailCheck\IE\WEB.DE_MailCheck.dll
FF - ProfilePath - c:\users\acer\AppData\Roaming\Mozilla\Firefox\Profiles\9nhnlwl1.default\
FF - prefs.js: browser.search.selectedEngine - My Web Search
FF - prefs.js: browser.startup.homepage - hxxp://home.mywebsearch.com/index.jhtml?ptb=057836B7-941A-4A51-8D42-30A58CFDC205&n=77fc1ddc&p2=^UX^xdm080^YY^de&si=CL7MsqTM6LQCFQu7zAodTBcAUA
FF - prefs.js: network.proxy.type - 0
.
.
------- Dateityp-Verknüpfung -------
.
JSEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
SafeBoot-mcmscsvc
SafeBoot-MCODS
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-JNLP - c:\windows\system32\javaws.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-03  22:11:06
ComboFix-quarantined-files.txt  2013-06-03 20:11
.
Vor Suchlauf: 11 Verzeichnis(se), 376.325.713.920 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 376.161.419.264 Bytes frei
.
- - End Of File - - DB1E5CF2728ED5FD974838AEA8D2F80B

--- --- ---

markusg · 03.06.2013, 21:48

Hi,
malwarebytes:
Downloade Dir bitte Malwarebytes

Installiere
das Programm in den vorgegebenen Pfad.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Starte Malwarebytes, klicke auf Aktualisierung --> Suche
nach Aktualisierung
Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
Wenn der Scan beendet
ist, klicke auf Ergebnisse anzeigen.
Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste
das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter "Log Dateien" finden.

Temeraire87 · 03.06.2013, 23:25

Es wurden 4 Dateien im _OTL-Ordner gefunden oO

Hier nun der Logfile:

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.06.03.09

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16576
acer :: ACER-PC [Administrator]

03.06.2013 22:56:24
mbam-log-2013-06-03 (22-56-24).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 397803
Laufzeit: 1 Stunde(n), 20 Minute(n), 

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 4
C:\_OTL\MovedFiles.zip (Trojan.Bitcoin) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\06032013_175123\C_Users\acer\lopdpe8bw72gu.exe (Trojan.BitMiner) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\06032013_175123\C_Users\acer\AppData\Roaming\noc\chp.exe (Trojan.Bitcoin) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\_OTL\MovedFiles\06032013_175123\C_Users\acer\AppData\Roaming\noc\scvhost.exe (Trojan.BitMiner) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

03.06.2013, 17:17	#6
markusg /// Malware-holic	$TR/Barys.17770 in C:\Users\*3knwx21a9vgpo.exe - Standard$ TR/Barys.17770 in C:\Users\3knwx21a9vgpo.exe dann lass avira mal den einen Fund löschen, und versuch das mit dem packen noch mal. __________________ --> TR/Barys.17770 in C:\Users\**3knwx21a9vgpo.exe

TR/Barys.17770 in C:\Users\***3knwx21a9vgpo.exe

Log-Analyse und Auswertung: TR/Barys.17770 in C:\Users\***3knwx21a9vgpo.exe