| |
| |||||||
Log-Analyse und Auswertung: Sehr hoher physikalischer SpeicherverbrauchWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
19.06.2013, 10:46
| #1 |
 |  Sehr hoher physikalischer Speicherverbrauch Schönen guten Tag! Ich habe folgendes Problem: Vor zwei Tagen ist mein Computer abgestürzt. In der Fehlermeldung stand zwar Bluescreen, allerdings war es ein Blackscreen mit einem Sound'stopp'. Ich habe mich sofort darum gekümmert, den PC gereinigt von Staub etc, sogut es ging und meine Avira Antivir durchlaufen lassen, ohne jegliche Funde. Seitdem ist mein physikalischer Speicher besorgniserregend hoch; wenn ich Mozilla offen habe und WoW auf bis zu 90 %; und das Gehäuse wird doch relativ warm, trotz der Reinigungsaktion. Die Lüfter funktionieren, ich spüre einen guten Luftzug an beiden Öffnungen, daher habe ich ein 'hardware-Problem' erstmal ausgeschlossen. Vor einigen Wochen hatte ich außerdem einen sogenannten 'bundespolizeivirus', der mir jegliche Aktionen untersagt hat, den ich durch eine Systemwiederherstellung entfernt habe - hoffe ich zumindest ^^ Nun, um bei der Software komplett sicher zu sein, und da ich nicht sehr viel mit den Logs anfangen kann, habe ich OTL und GMER Logs, wo ihr mir hoffentlich gute Rückmeldung gebt. Mit nur Mozilla geöffnet habe ich bereits einen Physikalischen Speicherverbrauch von 49 %. mache ich mir da umsonst Panik? Ich hoffe auf schnelle Rückmeldung, und dass ich nichts relevantes vergessen habe :> Liebste Grüße (PS.: Die zweite file von OTL (Extras) ist leider als Editor Dokument zu groß und ich bin mir nicht sicher, wie ich sie anders hochladen soll. Falls sie dringend benötigt wird um da was rauszufinden bräuchte ich eine Erklärung, wie ich das machen soll oder einen Link dahin ^^) |
|
19.06.2013, 10:50
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Sehr hoher physikalischer Speicherverbrauch Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die jemals fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs posten!  Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
19.06.2013, 10:55
| #3 |
| | Sehr hoher physikalischer Speicherverbrauch Ah ok, hier erstmal das Extras log
__________________OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 19.06.2013 11:05:39 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\***\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16614)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
3,00 Gb Total Physical Memory | 2,08 Gb Available Physical Memory | 69,33% Memory free
6,00 Gb Paging File | 4,74 Gb Available in Paging File | 79,06% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 455,45 Gb Total Space | 297,70 Gb Free Space | 65,36% Space Free | Partition Type: NTFS
Drive D: | 455,96 Gb Total Space | 455,81 Gb Free Space | 99,97% Space Free | Partition Type: NTFS
Computer Name: *** | User Name: *** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-163258237-1650205322-2287557129-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
========== Security Center Settings ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
========== Authorized Applications List ==========
========== Vista Active Open Ports Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0621297C-FD11-4883-9DD6-19BFBC8078E0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{11128EC3-A881-4A81-A5A6-94570639F2E8}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{36DCC0FF-C650-4D0D-AB57-39B96ED8EDD5}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{36F472A0-2DDA-4DCB-8231-304925219830}" = lport=138 | protocol=17 | dir=in | app=system |
"{37C035AD-BE09-46EE-81A4-5A2959ACCFE9}" = lport=139 | protocol=6 | dir=in | app=system |
"{44486CF0-5C87-44A5-927F-C9E37593A339}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{510AEF52-8086-420D-AE71-FA52208869C9}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe |
"{6249E055-78D2-46AA-A4CD-03777D455C91}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{71DEF4C4-480B-4563-8738-D413023DFEE3}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{74AB67CD-472F-4408-ACF0-B5AA6AFF1D57}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 |
"{77B37C33-D023-44B6-B85C-2AC72FC9AF9F}" = lport=10243 | protocol=6 | dir=in | app=system |
"{7E54B9A1-C8EB-4815-AA63-D1E082F298D9}" = rport=10243 | protocol=6 | dir=out | app=system |
"{86FD424E-7A7B-40E7-A9EF-2712C1C59C25}" = rport=137 | protocol=17 | dir=out | app=system |
"{8837BF10-AF27-484A-B352-03C227E9C683}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{88D565F4-17D9-45F9-B5AE-D3A553587C09}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8AADB850-A439-4E0A-9106-4CF964E829BD}" = rport=138 | protocol=17 | dir=out | app=system |
"{8CBC43FD-4221-4626-98D7-27E854783EF5}" = rport=445 | protocol=6 | dir=out | app=system |
"{90398AEF-D6E7-4EBE-B8B8-6E023F98F623}" = rport=139 | protocol=6 | dir=out | app=system |
"{984D3850-7F91-4F2E-B87E-0B4BFAFFC906}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{A32D3518-3149-4B82-87B4-24ED7877AEF5}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{AC044C7E-2C90-4610-84FF-15C02F88A00F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{BFF07756-FE53-4FF9-AF87-92AD189AEEBF}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C2F1F1D1-5A79-4DFA-A191-8C1E8DAC3440}" = lport=2869 | protocol=6 | dir=in | app=system |
"{C9AB32D1-2AE1-4898-B1E9-09FCFD91C594}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CDC4A5D6-121A-4DF5-A85D-7C286353F2B7}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{D4FFBFCB-1B84-4B64-ACF2-789B7DF7E054}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{D9320272-EC0C-47C3-A3E4-ED994903AABC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{E5E1D3EF-E9EE-405E-A3A1-1BD339DF8295}" = lport=137 | protocol=17 | dir=in | app=system |
"{F1FBBF6C-EF68-4AEE-A5E8-4433E9D96CDE}" = lport=445 | protocol=6 | dir=in | app=system |
"{F400F799-8E7C-437B-889E-B09AFE333557}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FF5BC137-55E6-4646-ACB2-5C7BDCB93B1C}" = lport=2869 | protocol=6 | dir=in | app=system |
========== Vista Active Application Exception List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0985D804-5002-4D09-8097-6CF4B66FEE2C}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{0D6F7354-65ED-4032-AE37-7D1287FA0D74}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{12F170FE-9DCC-4B2E-98F0-27C4735506FB}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{1580367C-B94C-4423-AE6F-874CE1556078}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{20D8E22E-F255-411A-80FA-D7BAEC04FBF8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{212CABDB-F67B-4230-93BA-6CBD6B9A87FB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{302D2B4A-5B7C-4677-B816-911D6D99900F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{3050E595-CA5E-4CE5-848B-0FDA4CE12A5D}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{31DBFC25-196D-43E5-8891-2F46D82060DE}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{335F7ADB-264E-40FA-AE22-F67ADDD67370}" = dir=in | app=c:\program files (x86)\windows live\sync\windowslivesync.exe |
"{352B2DEF-0B8F-4FC9-86C4-6A9B6DE496BC}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{3A3EE54F-3100-47C3-859D-226FB5B61781}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{3D5D9EA5-7647-4EFA-8544-FF2EA42E7B6B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4055D3C6-7EE8-4E13-9B1F-0E06F9FB6A4A}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{40EA1B02-E280-4EB4-AB90-3D787B4249BE}" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"{466B35D3-A936-4588-A3CA-42A7535BD54D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{4C57E988-10C4-489C-B9F7-3E35F1891F7A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{55F452EE-21F2-465D-BB95-3AC821F4313D}" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe |
"{5A4C3DD1-BD33-49D3-A1A4-3F1A9F12519E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5DF0F4F2-8D42-41F7-A25C-11FC50053871}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{5F49BFBE-B260-44AF-8A94-AA0AB57E4B04}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{612E3124-6F2F-43DC-A371-69A27700E6E7}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{635419C4-D4F4-47DD-AE6E-2EBD2ECD4EA7}" = dir=in | app=c:\program files (x86)\windows live\messenger\wlcsdk.exe |
"{66275465-53B6-4B3B-9731-59464F376FE5}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{68B0BC4D-3B9E-4E05-806C-80EF48580AF9}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6B9158AC-8D3F-4EFA-9912-4AB4D60F09B7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{76D9408A-1E8F-42B4-B6A5-1E1A89297CFE}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{78966C82-AD8B-4260-A335-D3DD8FA5757B}" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.patch.exe |
"{798AA76A-0ECB-4E42-B2AC-2165511B1DC2}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"{7CBDE81E-F481-4EE1-89A1-279243966B3C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{7D1BBE3C-AE57-4ADD-9C07-A88314F3CD46}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{7D5918A3-B466-43A8-B19A-021063AA6D62}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{86F6824D-EA40-4C79-945E-81C0AB02CBD5}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"{87134750-69BC-4D75-BE54-3E9FDAC677EA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1267\agent.exe |
"{89C096E6-BCDF-48AA-843F-23AF986CD77F}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{8F48BE68-3933-4F87-AA0C-6F2A99DA8BBB}" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"{918BB2EE-4B47-49FA-99A9-2BC385CDAD1E}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{9313B1FD-6636-453B-84E2-7E54177A930A}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{959C345A-C94E-4DF2-9009-B72D5F643562}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{96E9B7E9-5D8D-4AC2-9E06-6A35B5B6DAD4}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe |
"{9892AABE-C8E0-495F-9191-EBDEFFFFEC67}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{9FFDF505-A2E3-4F81-A023-2B1437FF52DA}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe |
"{A607929F-919E-440C-ABF5-FE9BFAC9C0B4}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A8497946-8CAF-4FAB-83E1-DE1012D52D12}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{AEFC4447-7B3D-42C9-A6CA-32117A69E582}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{B0A928DC-47E1-4D92-A262-3F8AB51D21E8}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{B144F40B-74E9-4ED4-9477-81F165D9C118}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B695FFEA-890F-49CA-97B6-2AA798945E00}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BB057B04-8CAD-4F63-A620-9E2BC8BD0996}" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe |
"{C13ADE53-157E-465C-91D3-2A4E38D9A489}" = protocol=6 | dir=out | app=system |
"{C3CD716C-4A4A-470A-9E99-96EF511AB501}" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.patch.exe |
"{C42911F7-6344-4577-AA90-33A8CCB5BD14}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{C5E58375-0651-46E9-A81F-D66DCFFFAA72}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{C913802E-DAEC-42F1-932F-848DD942D9EE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CBF4286C-5488-4508-8E19-207415B94AF4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CC227B97-E201-42B7-8E5B-3D395B991F64}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{CD068738-95CE-4B42-9351-46EC124A82DE}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{D4DBD1CC-ABE0-4C70-9BE6-2401323A8D7B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DB98338C-6146-46E7-AA12-B5F88ECE0760}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{DB9B7FC5-B75C-4D05-A64D-4A02BD5978E1}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1363\agent.exe |
"{EC10B3F5-4D28-4D69-A5BD-2144535CA621}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
"{F878BC22-9921-4254-A424-474E9222CDF7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{0A8E9F2F-3DF1-45A1-A012-3D8A5555342F}C:\program files (x86)\world of warcraft\launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"TCP Query User{0C060EC0-C55D-490E-8073-CA519F998770}C:\programdata\battle.net\agent\agent.1637\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"TCP Query User{0C8CE793-42FB-4DEA-BC9A-DE3E9CB572A2}C:\program files (x86)\world of warcraft\backgrounddownloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\backgrounddownloader.exe |
"TCP Query User{0E58090C-CD49-4E9B-9276-BA16D5D76E59}C:\program files (x86)\world of warcraft\backgrounddownloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\backgrounddownloader.exe |
"TCP Query User{0FDC0BA5-1B46-49DF-8B42-6C21D3BD1297}C:\program files (x86)\world of warcraft\temp\wow-4.1.0.2346-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.1.0.2346-enus-tools-downloader.exe |
"TCP Query User{14C13B19-976C-43A7-BAD0-D696684CEE12}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"TCP Query User{16F352F2-B3DE-45A5-B818-1B450FA74F7B}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe |
"TCP Query User{2474E956-2FAA-47F7-883A-8D48284EE5CE}C:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe |
"TCP Query User{270A6738-ED86-4E10-AD38-5607F6C7FFAD}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2617-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2617-enus-tools-downloader.exe |
"TCP Query User{286B38A1-CD2A-4607-B309-C0D2E107A05B}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe |
"TCP Query User{28C8ECF2-DA9B-4B50-9802-4AC45389F6EE}C:\program files (x86)\world of warcraft\temp\wow-4.2.0.2506-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.0.2506-enus-tools-downloader.exe |
"TCP Query User{302025BE-1ED1-4C91-9483-4692EDEAA336}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe |
"TCP Query User{5F922211-E738-4793-B7F7-8329825E035E}C:\program files (x86)\world of warcraft\temp\wow-4.2.0.2492-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.0.2492-enus-tools-downloader.exe |
"TCP Query User{74457D0F-2B49-485C-A9A2-71CB6F9CA58F}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe |
"TCP Query User{75C186AE-F049-4E9E-BCB8-1F70552ADA4B}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2727-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2727-enus-tools-downloader.exe |
"TCP Query User{7BC40846-F21D-406C-BBDD-43327CA082B1}C:\programdata\battle.net\agent\agent.1544\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"TCP Query User{8D7E490F-8711-4C8A-8906-9CD1D56F170B}C:\program files (x86)\world of warcraft\temp\wow-4.1.0.2317-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.1.0.2317-enus-tools-downloader.exe |
"TCP Query User{9B62DF8D-2F90-48D5-A9C0-E6CB667AF8CB}C:\programdata\battle.net\agent\agent.1040\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"TCP Query User{AF09B539-C65D-4177-BC6A-6E3D4B6ECD47}C:\program files (x86)\world of warcraft\temp\wow-4.2.0.2552-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.0.2552-enus-tools-downloader.exe |
"TCP Query User{D94C7C2C-C7C5-4826-BC54-CEA71FEEDEB9}C:\programdata\battle.net\agent\agent.749\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.749\agent.exe |
"TCP Query User{D968B6C3-FF66-45BD-B575-56BE55F595E4}C:\program files (x86)\world of warcraft\temp\wow-4.0.1.2210-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.0.1.2210-enus-tools-downloader.exe |
"TCP Query User{E053F428-C0A2-4081-BDAE-7DA8576A99DE}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe |
"TCP Query User{F64885C2-1924-4A4B-B0D0-6D54049B56DF}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2609-enus-tools-downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2609-enus-tools-downloader.exe |
"UDP Query User{25B0EA99-34D8-41B5-BD6E-D58B0D755BA5}C:\program files (x86)\world of warcraft\temp\wow-4.2.0.2506-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.0.2506-enus-tools-downloader.exe |
"UDP Query User{31C62531-8F45-460E-BFCE-D88020C86132}C:\programdata\battle.net\agent\agent.1040\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1040\agent.exe |
"UDP Query User{4055C581-0A3B-40F5-8599-B310A202971B}C:\program files (x86)\world of warcraft\temp\wow-4.2.0.2492-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.0.2492-enus-tools-downloader.exe |
"UDP Query User{471CA7C9-7370-4C72-99A7-3C2D813B8613}C:\programdata\battle.net\agent\agent.749\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.749\agent.exe |
"UDP Query User{482C8588-9641-48E3-AD15-A114AAB7D2E3}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2730-enus-tools-downloader.exe |
"UDP Query User{515AF6B0-9AD8-4E0E-82B4-CEE0D389AB20}C:\program files (x86)\world of warcraft\launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\launcher.exe |
"UDP Query User{5E1ECB89-97E2-434C-A196-8E1DE393A5A5}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2617-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2617-enus-tools-downloader.exe |
"UDP Query User{62633325-D06F-4FC6-BEBB-850AD39C6DED}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2683-enus-tools-downloader.exe |
"UDP Query User{643E3492-30FC-478F-843C-42A767ADDF64}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2706-enus-tools-downloader.exe |
"UDP Query User{6AE434C3-3040-48FE-B4A5-8417044224F2}C:\programdata\battle.net\agent\agent.1637\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"UDP Query User{779AD986-E3E4-4C75-910D-B475ED372616}C:\program files (x86)\world of warcraft\backgrounddownloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\backgrounddownloader.exe |
"UDP Query User{837C47E2-D574-49C1-A7E4-5512D5982D29}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2756-enus-tools-downloader.exe |
"UDP Query User{856D237B-FB43-45E8-B096-31AA3FB23C43}C:\program files (x86)\world of warcraft\backgrounddownloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\backgrounddownloader.exe |
"UDP Query User{904230D5-3EF1-4868-B20C-E406AED5EFCE}C:\program files (x86)\world of warcraft\temp\wow-4.2.0.2552-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.0.2552-enus-tools-downloader.exe |
"UDP Query User{A15E2094-EFE5-4E60-BCEA-9E0759731063}C:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.3-5.0.15890-enus-downloader.exe |
"UDP Query User{A2CC7E3F-29A4-4F07-A186-1EC332B12B66}C:\program files (x86)\world of warcraft\temp\wow-4.1.0.2317-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.1.0.2317-enus-tools-downloader.exe |
"UDP Query User{B1800755-6CA0-4599-8C08-FD67C65259FE}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2685-enus-tools-downloader.exe |
"UDP Query User{CD16237E-170A-4376-B266-97A3A58D0A0F}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2727-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2727-enus-tools-downloader.exe |
"UDP Query User{CFAAA444-725D-4FE4-8A26-10E5056A51DF}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2609-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2609-enus-tools-downloader.exe |
"UDP Query User{D412CE62-1342-418C-B172-ED1DF842FAFD}C:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.2.1.2736-enus-tools-downloader.exe |
"UDP Query User{E283006E-E91A-4F9A-8249-8405C58D91EC}C:\program files (x86)\world of warcraft\temp\wow-4.0.1.2210-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.0.1.2210-enus-tools-downloader.exe |
"UDP Query User{E989BC3A-85FF-44BB-8279-12F70F2A2F38}C:\programdata\battle.net\agent\agent.1544\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"UDP Query User{F59F7B95-79EE-4196-BCAA-A542B836A017}C:\program files (x86)\world of warcraft\temp\wow-4.1.0.2346-enus-tools-downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\world of warcraft\temp\wow-4.1.0.2346-enus-tools-downloader.exe |
========== HKEY_LOCAL_MACHINE Uninstall List ==========
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Windows Mobile-Gerätecenter
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007
"{90120000-002A-0407-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (German) 2007
"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007
"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller-Treiber 280.19
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD-Audiotreiber 1.3.18.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240D9}" = WinZip 17.0
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}" = Adobe Photoshop Elements 8.0
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}" = Nero InfoTool Help
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live-Uploadtool
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{2348B586-C9AE-46CE-936C-A68E9426E214}" = Nero StartSmart Help
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 37
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 21
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2BA722D1-48D1-406E-9123-8AE5431D63EF}" = Windows Live Fotogalerie
"{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App
"{330e1566-027d-4d04-a8c5-011f9f6e8bc7}" = Nero 9 Essentials
"{33CF58F5-48D8-4575-83D6-96F574E4D83A}" = Nero DriveSpeed
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{3EFEF049-23D4-4B46-8903-4592FEA51018}" = Windows Live Movie Maker
"{41E654A9-26D0-4EAC-854B-0FA824FFFABB}" = Windows Live Messenger
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}" = Nero StartSmart OEM
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{52B97218-98CB-4B8B-9283-D213C85E1AA4}" = Windows Live Anmelde-Assistent
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress
"{5AF4B3C4-C393-48D7-AC7E-8E7615579548}" = Adobe AIR
"{5B3A354B-C059-4861-A85B-CA46F1089E15}" = Creative USB Headsets
"{5FC68772-6D56-41C6-9DF1-24E868198AE6}" = Windows Live Call
"{62F7DA7E-CCCB-439C-A760-00C3926E761F}" = Microsoft Works
"{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell" = WildTangent Games App
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76618402-179D-4699-A66B-D351C59436BC}" = Windows Live Sync
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart
"{7E350663-86D3-466A-AB79-28156A9ABF6E}_is1" = Hamster Free VideoConvertor
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Packard Bell Recovery Management
"{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help
"{869200DB-287A-4DC0-B02B-2B6787FBCD4C}" = Nero DiscSpeed
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0017-0407-0000-0000000FF1CE}" = Microsoft Office SharePoint Designer MUI (German) 2007
"{90120000-0017-0407-0000-0000000FF1CE}_OMUI.de-de_{2733AA87-26FC-41B0-9D2F-3092345BC370}" = Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_OMUI.de-de_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}_OMUI.de-de_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}_OMUI.de-de_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_OMUI.de-de_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0407-1000-0000000FF1CE}_OMUI.de-de_{A6353E8F-5B8D-47CC-8737-DFF032ED3973}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_OMUI.de-de_{A6353E8F-5B8D-47CC-8737-DFF032ED3973}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2007
"{90120000-00A1-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2007
"{90120000-00BA-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0100-0407-0000-0000000FF1CE}" = Microsoft Office O MUI (German) 2007
"{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0101-0407-0000-0000000FF1CE}" = Microsoft Office X MUI (German) 2007
"{90120000-0101-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195
"{95120000-00AF-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (German)
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A99968BE-C155-474C-0089-33239DEE1CE2}" = NFS Underground
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Deutsch
"{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center
"{B3DAF54F-DB25-4586-9EF1-96D24BB14088}" = Windows Movie Maker 2.6
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter
"{BEEFC4F8-2909-48B3-AFAA-55D3533FDEDD}" = Creative MediaSource 5
"{C4D738F7-996A-4C81-B8FA-C4E26D767E41}" = Windows Live Mail
"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Norton Online Backup
"{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade
"{CC019E3F-59D2-4486-8D4B-878105B62A71}" = Nero DiscSpeed Help
"{E0A4805D-280A-4DD7-9E74-3A5F85E302A1}" = Windows Live Writer
"{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}" = eBay Worldwide
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant
"{E5C7D048-F9B4-4219-B323-8BDB01A2563D}" = Nero DriveSpeed Help
"{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Packard Bell Updater
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1A14CB2-A048-45A6-AFDA-3571296E1D76}" = Creative Media Toolbox 6
"{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}" = Nero ControlCenter
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F8FF18EE-264A-43FD-B2F6-5EAD40798C2F}" = Windows Live Essentials
"{FBCDFD61-7DCF-4E71-9226-873BA0053139}" = Nero InfoTool
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Photoshop Elements 8.0" = Adobe Photoshop Elements 8.0
"Avira AntiVir Desktop" = Avira Free Antivirus
"AVMWLANCLI" = AVM FRITZ!WLAN
"BrowserCompanion" = BrowserCompanion
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"DivX Setup" = DivX-Setup
"Free Audio CD Burner_is1" = Free Audio CD Burner version 1.4.7
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.11.33.1005
"GPL Ghostscript 9.00" = GPL Ghostscript 9.00
"Hamster Free ZIP Archiver_is1" = Hamster Free ZIP Archiver 1.2.0.6
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"Hotkey Utility" = Hotkey Utility
"Identity Card" = Identity Card
"McAfee Security Scan" = McAfee Security Scan Plus
"Mozilla Firefox 21.0 (x86 de)" = Mozilla Firefox 21.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NCLauncher_GameForge" = NC Launcher (GameForge)
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"OMUI.de-de" = Microsoft Office Language Pack 2007 - German/Deutsch
"Packard Bell InfoCentre" = Packard Bell InfoCentre
"Packard Bell Registration" = Packard Bell Registration
"Packard Bell Screensaver" = Packard Bell ScreenSaver
"Packard Bell Software Suite SE" = Packard Bell Software Suite SE
"Packard Bell Welcome Center" = Welcome Center
"SysInfo" = Creative Systeminformationen
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"Uninstall_is1" = Uninstall 1.0.0.1
"Uninstaller_B4736000_Creative Media Toolbox 6" = Creative Media Toolbox 6 (Shared Components)
"Universal Document Converter_is1" = Universal Document Converter (Demo)
"WildTangent packardbell Master Uninstall" = Packard Bell Games
"WinGimp-2.0_is1" = GIMP 2.6.11
"WinLiveSuite_Wave3" = Windows Live Essentials
"World of Warcraft" = World of Warcraft
"World of Warcraft Public Test" = World of Warcraft Public Test
"WT078791" = Bejeweled 2 Deluxe
"WT078806" = Insaniquarium Deluxe
"WT078833" = Zuma Deluxe
"WT078960" = Blasterball 3
"WT078964" = Bob the Builder Can-Do-Zoo
"WT079020" = Faerie Solitaire
"WT079024" = FATE - The Traitor Soul
"WT079064" = Jewel Quest
"WT079068" = Jewel Quest Solitaire 3
"WT079108" = Penguins!
"WT079116" = Polar Bowler
"WT079120" = Polar Golfer
"WT079124" = Polar Pool
"WT079177" = Virtual Villagers - A New Home
"WT079184" = Yahtzee
"WT079363" = Build-a-lot 2
"WT079366" = Chicken Invaders 3 - Revenge of the Yolk
"WT079395" = Escape Rosecliff Island
"WT079397" = Mahjongg Artifacts
"WT079421" = Virtual Families
"YTdetect" = Yahoo! Detect
========== HKEY_USERS Uninstall List ==========
[HKEY_USERS\S-1-5-21-163258237-1650205322-2287557129-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"101a9f93b8f0bb6f" = Curse Client
"World of Logs Client (4.2)" = World of Logs Client (4.2)
========== Last 20 Event Log Errors ==========
[ Application Events ]
Error - 12.06.2013 06:28:04 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DivXUpdate.exe, Version: 1.0.6.88,
Zeitstempel: 0x511afc59 Name des fehlerhaften Moduls: netprofm.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a5bda75 Ausnahmecode: 0xc0000005 Fehleroffset: 0x6f7f2505
ID
des fehlerhaften Prozesses: 0x930 Startzeit der fehlerhaften Anwendung: 0x01ce6738202619ca
Pfad
der fehlerhaften Anwendung: C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
Pfad
des fehlerhaften Moduls: netprofm.dll Berichtskennung: c34bf4a6-d34a-11e2-8de3-bc05430334ff
Error - 12.06.2013 10:09:24 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Wow-64.exe, Version: 5.3.0.17055,
Zeitstempel: 0x51b67f7a Name des fehlerhaften Moduls: Wow-64.exe, Version: 5.3.0.17055,
Zeitstempel: 0x51b67f7a Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000124ca0
ID
des fehlerhaften Prozesses: 0xbf8 Startzeit der fehlerhaften Anwendung: 0x01ce6767bf920ce7
Pfad
der fehlerhaften Anwendung: C:\Program Files (x86)\World of Warcraft\Wow-64.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\World of Warcraft\Wow-64.exe Berichtskennung:
aef1480b-d369-11e2-8de3-bc05430334ff
Error - 12.06.2013 11:45:18 | Computer Name = *** | Source = Application Hang | ID = 1002
Description = Programm wmplayer.exe, Version 12.0.7601.17514 kann nicht mehr unter
Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf
in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem
zu suchen. Prozess-ID: f40 Startzeit: 01ce6776bdaf0b30 Endzeit: 1052 Anwendungspfad:
C:\Program Files (x86)\Windows Media Player\wmplayer.exe Berichts-ID: 02b16878-d377-11e2-8de3-bc05430334ff
Error - 13.06.2013 13:35:47 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DivXUpdate.exe, Version: 1.0.6.88,
Zeitstempel: 0x511afc59 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17725,
Zeitstempel: 0x4ec49b8f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0002e3be ID des fehlerhaften
Prozesses: 0xa40 Startzeit der fehlerhaften Anwendung: 0x01ce684f72aee50e Pfad der
fehlerhaften Anwendung: C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe Pfad
des fehlerhaften Moduls: C:\Windows\SysWOW64\ntdll.dll Berichtskennung: adfb7331-d44f-11e2-b219-bc05430334ff
Error - 14.06.2013 14:44:37 | Computer Name = *** | Source = Application Hang | ID = 1002
Description = Programm Wow-64.exe, Version 5.3.0.17055 kann nicht mehr unter Windows
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 95c Startzeit:
01ce692f2db9b0b0 Endzeit: 40 Anwendungspfad: C:\Program Files (x86)\World of Warcraft\Wow-64.exe
Berichts-ID:
7371edc0-d522-11e2-bc45-bc05430334ff
Error - 15.06.2013 03:16:46 | Computer Name = *** | Source = Application Hang | ID = 1002
Description = Programm Wow-64.exe, Version 5.3.0.17055 kann nicht mehr unter Windows
ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung,
um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1134 Startzeit:
01ce69983d70c7ee Endzeit: 69 Anwendungspfad: C:\Program Files (x86)\World of Warcraft\Wow-64.exe
Berichts-ID:
862384eb-d58b-11e2-acec-bc05430334ff
Error - 15.06.2013 05:46:38 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DivXUpdate.exe, Version: 1.0.6.88,
Zeitstempel: 0x511afc59 Name des fehlerhaften Moduls: netprofm.dll_unloaded, Version:
0.0.0.0, Zeitstempel: 0x4a5bda75 Ausnahmecode: 0xc0000005 Fehleroffset: 0x70be2505
ID
des fehlerhaften Prozesses: 0xccc Startzeit der fehlerhaften Anwendung: 0x01ce699686904938
Pfad
der fehlerhaften Anwendung: C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
Pfad
des fehlerhaften Moduls: netprofm.dll Berichtskennung: 78dbef7e-d5a0-11e2-acec-bc05430334ff
Error - 15.06.2013 18:20:11 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Wow-64.exe, Version: 5.3.0.17055,
Zeitstempel: 0x51b67f7a Name des fehlerhaften Moduls: Wow-64.exe, Version: 5.3.0.17055,
Zeitstempel: 0x51b67f7a Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000027b140
ID
des fehlerhaften Prozesses: 0x984 Startzeit der fehlerhaften Anwendung: 0x01ce69f85846cd49
Pfad
der fehlerhaften Anwendung: C:\Program Files (x86)\World of Warcraft\Wow-64.exe
Pfad
des fehlerhaften Moduls: C:\Program Files (x86)\World of Warcraft\Wow-64.exe Berichtskennung:
bdf7add6-d609-11e2-9d19-bc05430334ff
Error - 18.06.2013 14:20:17 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567,
Zeitstempel: 0x4d672ee4 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.17725,
Zeitstempel: 0x4ec4aa8e Ausnahmecode: 0xc0000005 Fehleroffset: 0x000000000004e4b4
ID
des fehlerhaften Prozesses: 0x6a8 Startzeit der fehlerhaften Anwendung: 0x01ce6c5058ffa947
Pfad
der fehlerhaften Anwendung: C:\Windows\Explorer.EXE Pfad des fehlerhaften Moduls:
C:\Windows\SYSTEM32\ntdll.dll Berichtskennung: b9d69aaa-d843-11e2-bbc6-bc05430334ff
Error - 18.06.2013 14:39:46 | Computer Name = *** | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: DivXUpdate.exe, Version: 1.0.6.88,
Zeitstempel: 0x511afc59 Name des fehlerhaften Moduls: ole32.dll, Version: 6.1.7601.17514,
Zeitstempel: 0x4ce7b96f Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000e31f ID des fehlerhaften
Prozesses: 0xdac Startzeit der fehlerhaften Anwendung: 0x01ce6c520ab5968f Pfad der
fehlerhaften Anwendung: C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe Pfad
des fehlerhaften Moduls: C:\Windows\syswow64\ole32.dll Berichtskennung: 72cd691d-d846-11e2-b637-bc05430334ff
[ System Events ]
Error - 18.06.2013 14:21:41 | Computer Name = *** | Source = Service Control Manager | ID = 7038
Description = Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser"
mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%1330 Vergewissern
Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft
Management Console (MMC).
Error - 18.06.2013 14:21:41 | Computer Name = *** | Source = Service Control Manager | ID = 7000
Description = Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden
Fehlers nicht gestartet: %%1069
Error - 18.06.2013 14:31:42 | Computer Name = *** | Source = DCOM | ID = 10005
Description =
Error - 18.06.2013 14:31:42 | Computer Name = *** | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
Windows Search erreicht.
Error - 18.06.2013 14:31:42 | Computer Name = *** | Source = Service Control Manager | ID = 7000
Description = Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht
gestartet: %%1053
Error - 18.06.2013 14:32:43 | Computer Name = *** | Source = WMPNetworkSvc | ID = 866300
Description =
Error - 18.06.2013 14:32:47 | Computer Name = *** | Source = Service Control Manager | ID = 7038
Description = Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser"
mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%1330 Vergewissern
Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft
Management Console (MMC).
Error - 18.06.2013 14:32:47 | Computer Name = *** | Source = Service Control Manager | ID = 7000
Description = Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden
Fehlers nicht gestartet: %%1069
Error - 19.06.2013 01:02:47 | Computer Name = *** | Source = Service Control Manager | ID = 7038
Description = Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser"
mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%1330 Vergewissern
Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft
Management Console (MMC).
Error - 19.06.2013 01:02:47 | Computer Name = *** | Source = Service Control Manager | ID = 7000
Description = Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden
Fehlers nicht gestartet: %%1069
< End of report >
Bei Antivir habe ich grad nicht auf die Schnelle rausgefunden wie ich da ein Logfile kriege, ich informiere mich da nach der Arbeit heute abend drüber. Danke |
|
19.06.2013, 11:08
| #4 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Sehr hoher physikalischer SpeicherverbrauchZitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.06.2013, 12:04
| #5 |
| | Sehr hoher physikalischer Speicherverbrauch Hi, habe nachgeschaut; es sind keine Funde oder Warnungen vorhanden bei Avira, von daher kann ich leider keine Logs nachweisen. |
|
19.06.2013, 12:12
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Sehr hoher physikalischer Speicherverbrauch Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
Note: Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread. Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards. Bitte die drei Tools MBAR / aswMBR / TDSSkiller nun ausführen und die Logs in CODE-Tags posten MBAR (Malwarebytes Anti-Rootkit) Downloade dir bitte  Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers aswMBR Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ --> Sehr hoher physikalischer Speicherverbrauch |
|
19.06.2013, 14:32
| #7 |
| | Sehr hoher physikalischer Speicherverbrauch Sooo, alles durchlaufen lassen folgendes kam dabei raus: Vor dem Reboot: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.06.0.1003
www.malwarebytes.org
Database version: v2013.06.19.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
*** :: HÜBSCHER [administrator]
19.06.2013 13:40:40
mbar-log-2013-06-19 (13-40-40).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: Deep Anti-Rootkit Scan | PUP
Objects scanned: 261195
Time elapsed: 16 minute(s), 54 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 3
c:\$Recycle.Bin\S-1-5-21-163258237-1650205322-2287557129-1000\$35a31653b014859e84063f0d67032bcc\U (Trojan.Siredef.C) -> Delete on reboot.
c:\$Recycle.Bin\S-1-5-21-163258237-1650205322-2287557129-1000\$35a31653b014859e84063f0d67032bcc\L (Trojan.Siredef.C) -> Delete on reboot.
c:\$Recycle.Bin\S-1-5-21-163258237-1650205322-2287557129-1000\$35a31653b014859e84063f0d67032bcc (Trojan.Siredef.C) -> Delete on reboot.
Files Detected: 4
c:\Users\***\AppData\Roaming\skype.dat (Malware.Packer.HGX1) -> Delete on reboot.
c:\$Recycle.Bin\S-1-5-21-163258237-1650205322-2287557129-1000\$35a31653b014859e84063f0d67032bcc\@ (Trojan.Siredef.C) -> Delete on reboot.
c:\Users\***\AppData\Local\Temp\RarSFX1\proxycheck.exe (Trojan.Zbot.AI) -> Delete on reboot.
c:\Users\***\AppData\Local\Temp\RarSFX2\proxycheck.exe (Trojan.Zbot.AI) -> Delete on reboot.
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.06.0.1003
www.malwarebytes.org
Database version: v2013.06.19.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
*** :: HÜBSCHER [administrator]
19.06.2013 14:04:37
mbar-log-2013-06-19 (14-04-37).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: Deep Anti-Rootkit Scan | PUP
Objects scanned: 261211
Time elapsed: 22 minute(s), 2 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
Code:
ATTFilter aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-06-19 14:43:33
-----------------------------
14:43:33.365 OS Version: Windows x64 6.1.7601 Service Pack 1
14:43:33.365 Number of processors: 2 586 0x170A
14:43:33.365 ComputerName: HÜBSCHER UserName:
14:43:45.564 Initialize success
14:44:03.894 AVAST engine defs: 13061900
14:44:06.640 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
14:44:06.640 Disk 0 Vendor: WDC_WD10EADS-22M2B0 01.00A01 Size: 953869MB BusType: 3
14:44:07.014 Disk 0 MBR read successfully
14:44:07.014 Disk 0 MBR scan
14:44:07.030 Disk 0 Windows 7 default MBR code
14:44:07.045 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 20480 MB offset 2048
14:44:07.061 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 41945088
14:44:07.092 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 466382 MB offset 42149888
14:44:07.123 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 466905 MB offset 997300224
14:44:07.248 Disk 0 scanning C:\Windows\system32\drivers
14:44:28.324 Service scanning
14:45:12.941 Modules scanning
14:45:12.941 Disk 0 trace - called modules:
14:45:12.971 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS intelide.sys
14:45:12.971 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80033f5060]
14:45:12.971 3 CLASSPNP.SYS[fffff8800145143f] -> nt!IofCallDriver -> [0xfffffa8002f5b520]
14:45:12.971 5 ACPI.sys[fffff88000f0c7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa8002f57680]
14:45:14.971 AVAST engine scan C:\Windows
14:45:23.746 AVAST engine scan C:\Windows\system32
14:49:43.532 AVAST engine scan C:\Windows\system32\drivers
14:49:55.722 AVAST engine scan C:\Users\***
15:18:00.453 AVAST engine scan C:\ProgramData
15:22:53.016 Scan finished successfully
15:23:36.290 Disk 0 MBR has been saved successfully to "C:\Users\***\Desktop\MBR.dat"
15:23:36.300 The log file has been saved successfully to "C:\Users\***\Desktop\aswMBR.txt"
Code:
ATTFilter 15:24:10.0703 1680 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:24:10.0973 1680 ============================================================
15:24:10.0973 1680 Current date / time: 2013/06/19 15:24:10.0973
15:24:10.0973 1680 SystemInfo:
15:24:10.0973 1680
15:24:10.0973 1680 OS Version: 6.1.7601 ServicePack: 1.0
15:24:10.0973 1680 Product type: Workstation
15:24:10.0973 1680 ComputerName: HÜBSCHER
15:24:10.0973 1680 UserName: Katharina
15:24:10.0973 1680 Windows directory: C:\Windows
15:24:10.0973 1680 System windows directory: C:\Windows
15:24:10.0973 1680 Running under WOW64
15:24:10.0973 1680 Processor architecture: Intel x64
15:24:10.0973 1680 Number of processors: 2
15:24:10.0973 1680 Page size: 0x1000
15:24:10.0973 1680 Boot type: Normal boot
15:24:10.0973 1680 ============================================================
15:24:12.0293 1680 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:24:12.0353 1680 ============================================================
15:24:12.0353 1680 \Device\Harddisk0\DR0:
15:24:12.0353 1680 MBR partitions:
15:24:12.0353 1680 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2800800, BlocksNum 0x32000
15:24:12.0353 1680 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2832800, BlocksNum 0x38EE7000
15:24:12.0353 1680 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B719800, BlocksNum 0x38FEC800
15:24:12.0353 1680 ============================================================
15:24:12.0413 1680 C: <-> \Device\Harddisk0\DR0\Partition2
15:24:12.0453 1680 D: <-> \Device\Harddisk0\DR0\Partition3
15:24:12.0453 1680 ============================================================
15:24:12.0453 1680 Initialize success
15:24:12.0453 1680 ============================================================
15:25:16.0374 3724 ============================================================
15:25:16.0374 3724 Scan started
15:25:16.0374 3724 Mode: Manual; SigCheck; TDLFS;
15:25:16.0374 3724 ============================================================
15:25:18.0159 3724 ================ Scan system memory ========================
15:25:18.0159 3724 System memory - ok
15:25:18.0159 3724 ================ Scan services =============================
15:25:18.0315 3724 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:25:18.0455 3724 1394ohci - ok
15:25:18.0486 3724 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:25:18.0502 3724 ACPI - ok
15:25:18.0533 3724 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:25:18.0611 3724 AcpiPmi - ok
15:25:18.0689 3724 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
15:25:18.0736 3724 AdobeActiveFileMonitor8.0 - ok
15:25:18.0814 3724 [ 11A52CF7B265631DEEB24C6149309EFF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:25:18.0845 3724 AdobeARMservice - ok
15:25:18.0939 3724 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:25:18.0986 3724 AdobeFlashPlayerUpdateSvc - ok
15:25:19.0032 3724 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
15:25:19.0064 3724 adp94xx - ok
15:25:19.0079 3724 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
15:25:19.0095 3724 adpahci - ok
15:25:19.0110 3724 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
15:25:19.0126 3724 adpu320 - ok
15:25:19.0157 3724 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:25:19.0329 3724 AeLookupSvc - ok
15:25:19.0376 3724 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:25:19.0469 3724 AFD - ok
15:25:19.0516 3724 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:25:19.0532 3724 agp440 - ok
15:25:19.0547 3724 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:25:19.0610 3724 ALG - ok
15:25:19.0625 3724 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:25:19.0656 3724 aliide - ok
15:25:19.0656 3724 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:25:19.0688 3724 amdide - ok
15:25:19.0703 3724 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:25:19.0766 3724 AmdK8 - ok
15:25:19.0766 3724 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
15:25:19.0781 3724 AmdPPM - ok
15:25:19.0828 3724 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:25:19.0844 3724 amdsata - ok
15:25:19.0859 3724 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
15:25:19.0875 3724 amdsbs - ok
15:25:19.0890 3724 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:25:19.0906 3724 amdxata - ok
15:25:19.0984 3724 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
15:25:20.0062 3724 AntiVirSchedulerService - ok
15:25:20.0078 3724 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
15:25:20.0124 3724 AntiVirService - ok
15:25:20.0171 3724 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:25:20.0327 3724 AppID - ok
15:25:20.0374 3724 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:25:20.0436 3724 AppIDSvc - ok
15:25:20.0468 3724 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
15:25:20.0530 3724 Appinfo - ok
15:25:20.0546 3724 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
15:25:20.0561 3724 arc - ok
15:25:20.0577 3724 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
15:25:20.0577 3724 arcsas - ok
15:25:20.0592 3724 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:25:20.0639 3724 AsyncMac - ok
15:25:20.0670 3724 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:25:20.0686 3724 atapi - ok
15:25:20.0717 3724 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:25:20.0795 3724 AudioEndpointBuilder - ok
15:25:20.0826 3724 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:25:20.0873 3724 AudioSrv - ok
15:25:20.0920 3724 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
15:25:21.0014 3724 avgntflt - ok
15:25:21.0060 3724 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
15:25:21.0076 3724 avipbb - ok
15:25:21.0092 3724 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
15:25:21.0107 3724 avkmgr - ok
15:25:21.0138 3724 [ C6F4C466B654C1BE98AF31418BB5AC30 ] AVM WLAN Connection Service C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
15:25:21.0170 3724 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - warning
15:25:21.0170 3724 AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic (1)
15:25:21.0216 3724 [ 1DC2F715792CF33428AD7993ACBD224D ] avmeject C:\Windows\system32\drivers\avmeject.sys
15:25:21.0232 3724 avmeject - ok
15:25:21.0279 3724 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:25:21.0357 3724 AxInstSV - ok
15:25:21.0388 3724 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
15:25:21.0435 3724 b06bdrv - ok
15:25:21.0482 3724 [ A375AA8F1549BA51CFBCBD9A4AE0C2D3 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:25:21.0497 3724 b57nd60a - ok
15:25:21.0528 3724 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:25:21.0591 3724 BDESVC - ok
15:25:21.0606 3724 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:25:21.0669 3724 Beep - ok
15:25:21.0762 3724 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:25:21.0840 3724 BFE - ok
15:25:21.0887 3724 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:25:21.0934 3724 BITS - ok
15:25:21.0965 3724 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:25:21.0981 3724 blbdrive - ok
15:25:22.0012 3724 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:25:22.0043 3724 bowser - ok
15:25:22.0059 3724 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:25:22.0152 3724 BrFiltLo - ok
15:25:22.0152 3724 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:25:22.0168 3724 BrFiltUp - ok
15:25:22.0199 3724 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:25:22.0246 3724 Browser - ok
15:25:22.0262 3724 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:25:22.0293 3724 Brserid - ok
15:25:22.0308 3724 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:25:22.0340 3724 BrSerWdm - ok
15:25:22.0355 3724 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:25:22.0402 3724 BrUsbMdm - ok
15:25:22.0418 3724 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:25:22.0433 3724 BrUsbSer - ok
15:25:22.0449 3724 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
15:25:22.0480 3724 BTHMODEM - ok
15:25:22.0542 3724 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:25:22.0620 3724 bthserv - ok
15:25:22.0636 3724 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:25:22.0667 3724 cdfs - ok
15:25:22.0714 3724 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:25:22.0761 3724 cdrom - ok
15:25:22.0808 3724 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:25:22.0854 3724 CertPropSvc - ok
15:25:22.0870 3724 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
15:25:22.0886 3724 circlass - ok
15:25:22.0917 3724 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:25:22.0932 3724 CLFS - ok
15:25:22.0995 3724 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:25:23.0057 3724 clr_optimization_v2.0.50727_32 - ok
15:25:23.0104 3724 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:25:23.0151 3724 clr_optimization_v2.0.50727_64 - ok
15:25:23.0322 3724 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:25:23.0385 3724 clr_optimization_v4.0.30319_32 - ok
15:25:23.0416 3724 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:25:23.0432 3724 clr_optimization_v4.0.30319_64 - ok
15:25:23.0447 3724 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:25:23.0463 3724 CmBatt - ok
15:25:23.0478 3724 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:25:23.0494 3724 cmdide - ok
15:25:23.0541 3724 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
15:25:23.0603 3724 CNG - ok
15:25:23.0634 3724 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:25:23.0666 3724 Compbatt - ok
15:25:23.0697 3724 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:25:23.0744 3724 CompositeBus - ok
15:25:23.0759 3724 COMSysApp - ok
15:25:23.0775 3724 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
15:25:23.0790 3724 crcdisk - ok
15:25:23.0822 3724 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
15:25:23.0853 3724 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
15:25:23.0853 3724 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
15:25:23.0884 3724 [ D03466C36EF0E5C7694FF38B45271D9D ] Creative Media Toolbox 6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
15:25:23.0900 3724 Creative Media Toolbox 6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
15:25:23.0900 3724 Creative Media Toolbox 6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
15:25:23.0946 3724 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:25:24.0024 3724 CryptSvc - ok
15:25:24.0056 3724 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:25:24.0118 3724 DcomLaunch - ok
15:25:24.0165 3724 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:25:24.0212 3724 defragsvc - ok
15:25:24.0258 3724 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:25:24.0305 3724 DfsC - ok
15:25:24.0352 3724 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:25:24.0430 3724 Dhcp - ok
15:25:24.0430 3724 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:25:24.0477 3724 discache - ok
15:25:24.0492 3724 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
15:25:24.0508 3724 Disk - ok
15:25:24.0539 3724 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:25:24.0586 3724 Dnscache - ok
15:25:24.0617 3724 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:25:24.0648 3724 dot3svc - ok
15:25:24.0680 3724 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:25:24.0726 3724 DPS - ok
15:25:24.0742 3724 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:25:24.0773 3724 drmkaud - ok
15:25:24.0820 3724 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:25:24.0867 3724 DXGKrnl - ok
15:25:24.0898 3724 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:25:24.0929 3724 EapHost - ok
15:25:24.0992 3724 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
15:25:25.0070 3724 ebdrv - ok
15:25:25.0101 3724 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:25:25.0148 3724 EFS - ok
15:25:25.0194 3724 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:25:25.0272 3724 ehRecvr - ok
15:25:25.0304 3724 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:25:25.0366 3724 ehSched - ok
15:25:25.0397 3724 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
15:25:25.0428 3724 elxstor - ok
15:25:25.0444 3724 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:25:25.0475 3724 ErrDev - ok
15:25:25.0522 3724 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:25:25.0569 3724 EventSystem - ok
15:25:25.0584 3724 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:25:25.0616 3724 exfat - ok
15:25:25.0616 3724 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:25:25.0662 3724 fastfat - ok
15:25:25.0725 3724 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:25:25.0803 3724 Fax - ok
15:25:25.0803 3724 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:25:25.0834 3724 fdc - ok
15:25:25.0850 3724 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:25:25.0896 3724 fdPHost - ok
15:25:25.0912 3724 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:25:25.0943 3724 FDResPub - ok
15:25:25.0959 3724 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:25:25.0974 3724 FileInfo - ok
15:25:26.0006 3724 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:25:26.0084 3724 Filetrace - ok
15:25:26.0115 3724 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:25:26.0162 3724 FLEXnet Licensing Service - ok
15:25:26.0177 3724 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:25:26.0208 3724 flpydisk - ok
15:25:26.0240 3724 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:25:26.0271 3724 FltMgr - ok
15:25:26.0333 3724 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
15:25:26.0380 3724 FontCache - ok
15:25:26.0411 3724 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:25:26.0427 3724 FontCache3.0.0.0 - ok
15:25:26.0458 3724 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:25:26.0458 3724 FsDepends - ok
15:25:26.0489 3724 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:25:26.0505 3724 Fs_Rec - ok
15:25:26.0552 3724 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:25:26.0583 3724 fvevol - ok
15:25:26.0645 3724 [ 4632BB93B668004965246D7911E2DD05 ] fwlanusb4 C:\Windows\system32\DRIVERS\fwlanusb4.sys
15:25:26.0708 3724 fwlanusb4 - ok
15:25:26.0723 3724 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
15:25:26.0739 3724 gagp30kx - ok
15:25:26.0801 3724 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
15:25:26.0848 3724 GamesAppService - ok
15:25:26.0895 3724 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:25:26.0957 3724 gpsvc - ok
15:25:27.0020 3724 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
15:25:27.0098 3724 Greg_Service - ok
15:25:27.0191 3724 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:25:27.0207 3724 gupdate - ok
15:25:27.0238 3724 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:25:27.0254 3724 gupdatem - ok
15:25:27.0269 3724 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:25:27.0316 3724 hcw85cir - ok
15:25:27.0347 3724 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:25:27.0363 3724 HdAudAddService - ok
15:25:27.0394 3724 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
15:25:27.0425 3724 HDAudBus - ok
15:25:27.0441 3724 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
15:25:27.0456 3724 HidBatt - ok
15:25:27.0472 3724 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
15:25:27.0488 3724 HidBth - ok
15:25:27.0488 3724 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
15:25:27.0519 3724 HidIr - ok
15:25:27.0550 3724 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:25:27.0581 3724 hidserv - ok
15:25:27.0612 3724 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:25:27.0628 3724 HidUsb - ok
15:25:27.0659 3724 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:25:27.0690 3724 hkmsvc - ok
15:25:27.0722 3724 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:25:27.0768 3724 HomeGroupListener - ok
15:25:27.0800 3724 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:25:27.0831 3724 HomeGroupProvider - ok
15:25:27.0862 3724 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:25:27.0862 3724 HpSAMD - ok
15:25:27.0924 3724 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:25:27.0987 3724 HTTP - ok
15:25:28.0034 3724 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:25:28.0034 3724 hwpolicy - ok
15:25:28.0080 3724 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:25:28.0096 3724 i8042prt - ok
15:25:28.0112 3724 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:25:28.0127 3724 iaStorV - ok
15:25:28.0174 3724 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:25:28.0252 3724 idsvc - ok
15:25:28.0439 3724 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:25:28.0580 3724 igfx - ok
15:25:28.0580 3724 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
15:25:28.0595 3724 iirsp - ok
15:25:28.0626 3724 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:25:28.0704 3724 IKEEXT - ok
15:25:28.0782 3724 [ 52D9171838BB92319F23656F502916E9 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:25:28.0860 3724 IntcAzAudAddService - ok
15:25:28.0876 3724 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:25:28.0892 3724 intelide - ok
15:25:28.0907 3724 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:25:28.0938 3724 intelppm - ok
15:25:28.0954 3724 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:25:29.0001 3724 IPBusEnum - ok
15:25:29.0032 3724 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:25:29.0063 3724 IpFilterDriver - ok
15:25:29.0094 3724 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:25:29.0172 3724 iphlpsvc - ok
15:25:29.0204 3724 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:25:29.0235 3724 IPMIDRV - ok
15:25:29.0250 3724 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:25:29.0313 3724 IPNAT - ok
15:25:29.0328 3724 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:25:29.0422 3724 IRENUM - ok
15:25:29.0438 3724 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:25:29.0438 3724 isapnp - ok
15:25:29.0469 3724 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:25:29.0484 3724 iScsiPrt - ok
15:25:29.0516 3724 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:25:29.0531 3724 kbdclass - ok
15:25:29.0578 3724 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:25:29.0609 3724 kbdhid - ok
15:25:29.0640 3724 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:25:29.0656 3724 KeyIso - ok
15:25:29.0687 3724 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:25:29.0687 3724 KSecDD - ok
15:25:29.0718 3724 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:25:29.0734 3724 KSecPkg - ok
15:25:29.0750 3724 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:25:29.0796 3724 ksthunk - ok
15:25:29.0828 3724 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:25:29.0874 3724 KtmRm - ok
15:25:29.0937 3724 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:25:30.0030 3724 LanmanServer - ok
15:25:30.0062 3724 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:25:30.0108 3724 LanmanWorkstation - ok
15:25:30.0155 3724 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:25:30.0202 3724 lltdio - ok
15:25:30.0233 3724 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:25:30.0296 3724 lltdsvc - ok
15:25:30.0311 3724 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:25:30.0342 3724 lmhosts - ok
15:25:30.0374 3724 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
15:25:30.0389 3724 LSI_FC - ok
15:25:30.0405 3724 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
15:25:30.0420 3724 LSI_SAS - ok
15:25:30.0420 3724 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:25:30.0436 3724 LSI_SAS2 - ok
15:25:30.0436 3724 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:25:30.0452 3724 LSI_SCSI - ok
15:25:30.0467 3724 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:25:30.0514 3724 luafv - ok
15:25:30.0576 3724 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
15:25:30.0608 3724 McComponentHostService - ok
15:25:30.0654 3724 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:25:30.0686 3724 Mcx2Svc - ok
15:25:30.0686 3724 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
15:25:30.0701 3724 megasas - ok
15:25:30.0701 3724 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
15:25:30.0717 3724 MegaSR - ok
15:25:30.0748 3724 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:25:30.0795 3724 MMCSS - ok
15:25:30.0795 3724 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:25:30.0842 3724 Modem - ok
15:25:30.0842 3724 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:25:30.0873 3724 monitor - ok
15:25:30.0904 3724 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:25:30.0920 3724 mouclass - ok
15:25:30.0935 3724 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:25:30.0966 3724 mouhid - ok
15:25:30.0982 3724 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:25:30.0998 3724 mountmgr - ok
15:25:31.0044 3724 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:25:31.0060 3724 MozillaMaintenance - ok
15:25:31.0091 3724 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:25:31.0107 3724 mpio - ok
15:25:31.0122 3724 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:25:31.0154 3724 mpsdrv - ok
15:25:31.0200 3724 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:25:31.0278 3724 MpsSvc - ok
15:25:31.0310 3724 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:25:31.0325 3724 MRxDAV - ok
15:25:31.0356 3724 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:25:31.0434 3724 mrxsmb - ok
15:25:31.0466 3724 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:25:31.0481 3724 mrxsmb10 - ok
15:25:31.0497 3724 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:25:31.0512 3724 mrxsmb20 - ok
15:25:31.0528 3724 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:25:31.0544 3724 msahci - ok
15:25:31.0559 3724 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:25:31.0575 3724 msdsm - ok
15:25:31.0590 3724 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:25:31.0637 3724 MSDTC - ok
15:25:31.0668 3724 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:25:31.0700 3724 Msfs - ok
15:25:31.0715 3724 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:25:31.0762 3724 mshidkmdf - ok
15:25:31.0809 3724 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:25:31.0840 3724 msisadrv - ok
15:25:31.0871 3724 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:25:31.0918 3724 MSiSCSI - ok
15:25:31.0934 3724 msiserver - ok
15:25:31.0949 3724 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:25:31.0996 3724 MSKSSRV - ok
15:25:32.0012 3724 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:25:32.0043 3724 MSPCLOCK - ok
15:25:32.0058 3724 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:25:32.0105 3724 MSPQM - ok
15:25:32.0136 3724 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:25:32.0152 3724 MsRPC - ok
15:25:32.0168 3724 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:25:32.0183 3724 mssmbios - ok
15:25:32.0183 3724 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:25:32.0230 3724 MSTEE - ok
15:25:32.0246 3724 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
15:25:32.0261 3724 MTConfig - ok
15:25:32.0277 3724 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:25:32.0292 3724 Mup - ok
15:25:32.0339 3724 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:25:32.0402 3724 napagent - ok
15:25:32.0448 3724 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:25:32.0480 3724 NativeWifiP - ok
15:25:32.0542 3724 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:25:32.0589 3724 NDIS - ok
15:25:32.0604 3724 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:25:32.0636 3724 NdisCap - ok
15:25:32.0651 3724 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:25:32.0682 3724 NdisTapi - ok
15:25:32.0714 3724 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:25:32.0760 3724 Ndisuio - ok
15:25:32.0776 3724 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:25:32.0823 3724 NdisWan - ok
15:25:32.0854 3724 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:25:32.0901 3724 NDProxy - ok
15:25:32.0979 3724 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
15:25:33.0041 3724 Nero BackItUp Scheduler 4.0 - ok
15:25:33.0057 3724 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:25:33.0135 3724 NetBIOS - ok
15:25:33.0166 3724 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:25:33.0197 3724 NetBT - ok
15:25:33.0213 3724 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:25:33.0228 3724 Netlogon - ok
15:25:33.0260 3724 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:25:33.0306 3724 Netman - ok
15:25:33.0338 3724 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:25:33.0384 3724 netprofm - ok
15:25:33.0416 3724 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:25:33.0540 3724 NetTcpPortSharing - ok
15:25:33.0556 3724 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
15:25:33.0572 3724 nfrd960 - ok
15:25:33.0587 3724 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:25:33.0603 3724 NlaSvc - ok
15:25:33.0634 3724 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:25:33.0665 3724 Npfs - ok
15:25:33.0665 3724 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:25:33.0712 3724 nsi - ok
15:25:33.0728 3724 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:25:33.0806 3724 nsiproxy - ok
15:25:33.0852 3724 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:25:33.0915 3724 Ntfs - ok
15:25:33.0915 3724 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:25:33.0962 3724 Null - ok
15:25:34.0024 3724 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
15:25:34.0040 3724 NVHDA - ok
15:25:34.0274 3724 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:25:34.0570 3724 nvlddmkm - ok
15:25:34.0695 3724 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:25:34.0726 3724 nvraid - ok
15:25:34.0757 3724 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:25:34.0773 3724 nvstor - ok
15:25:34.0804 3724 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:25:34.0835 3724 nvsvc - ok
15:25:34.0913 3724 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:25:35.0022 3724 nvUpdatusService - ok
15:25:35.0054 3724 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:25:35.0054 3724 nv_agp - ok
15:25:35.0163 3724 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:25:35.0225 3724 odserv - ok
15:25:35.0241 3724 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:25:35.0272 3724 ohci1394 - ok
15:25:35.0319 3724 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:25:35.0350 3724 ose - ok
15:25:35.0366 3724 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:25:35.0428 3724 p2pimsvc - ok
15:25:35.0459 3724 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:25:35.0490 3724 p2psvc - ok
15:25:35.0522 3724 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
15:25:35.0537 3724 Parport - ok
15:25:35.0553 3724 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:25:35.0568 3724 partmgr - ok
15:25:35.0584 3724 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:25:35.0615 3724 PcaSvc - ok
15:25:35.0631 3724 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:25:35.0646 3724 pci - ok
15:25:35.0678 3724 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:25:35.0693 3724 pciide - ok
15:25:35.0709 3724 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
15:25:35.0724 3724 pcmcia - ok
15:25:35.0740 3724 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:25:35.0756 3724 pcw - ok
15:25:35.0771 3724 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:25:35.0834 3724 PEAUTH - ok
15:25:35.0912 3724 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:25:35.0958 3724 PerfHost - ok
15:25:36.0021 3724 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:25:36.0130 3724 pla - ok
15:25:36.0177 3724 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:25:36.0239 3724 PlugPlay - ok
15:25:36.0270 3724 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:25:36.0286 3724 PNRPAutoReg - ok
15:25:36.0317 3724 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:25:36.0333 3724 PNRPsvc - ok
15:25:36.0348 3724 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:25:36.0395 3724 PolicyAgent - ok
15:25:36.0426 3724 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:25:36.0473 3724 Power - ok
15:25:36.0520 3724 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:25:36.0598 3724 PptpMiniport - ok
15:25:36.0645 3724 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
15:25:36.0676 3724 Processor - ok
15:25:36.0723 3724 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:25:36.0785 3724 ProfSvc - ok
15:25:36.0801 3724 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:25:36.0816 3724 ProtectedStorage - ok
15:25:36.0863 3724 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:25:36.0910 3724 Psched - ok
15:25:36.0941 3724 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
15:25:36.0957 3724 PxHlpa64 - ok
15:25:36.0988 3724 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
15:25:37.0019 3724 ql2300 - ok
15:25:37.0019 3724 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
15:25:37.0035 3724 ql40xx - ok
15:25:37.0050 3724 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:25:37.0082 3724 QWAVE - ok
15:25:37.0097 3724 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:25:37.0128 3724 QWAVEdrv - ok
15:25:37.0191 3724 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
15:25:37.0222 3724 RapiMgr - ok
15:25:37.0238 3724 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:25:37.0269 3724 RasAcd - ok
15:25:37.0300 3724 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:25:37.0347 3724 RasAgileVpn - ok
15:25:37.0362 3724 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:25:37.0409 3724 RasAuto - ok
15:25:37.0440 3724 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:25:37.0518 3724 Rasl2tp - ok
15:25:37.0550 3724 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:25:37.0596 3724 RasMan - ok
15:25:37.0628 3724 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:25:37.0659 3724 RasPppoe - ok
15:25:37.0706 3724 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:25:37.0737 3724 RasSstp - ok
15:25:37.0784 3724 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:25:37.0815 3724 rdbss - ok
15:25:37.0830 3724 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
15:25:37.0846 3724 rdpbus - ok
15:25:37.0862 3724 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:25:37.0908 3724 RDPCDD - ok
15:25:37.0924 3724 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:25:37.0971 3724 RDPENCDD - ok
15:25:37.0986 3724 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:25:38.0018 3724 RDPREFMP - ok
15:25:38.0080 3724 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:25:38.0142 3724 RdpVideoMiniport - ok
15:25:38.0189 3724 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:25:38.0220 3724 RDPWD - ok
15:25:38.0252 3724 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:25:38.0267 3724 rdyboost - ok
15:25:38.0298 3724 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:25:38.0345 3724 RemoteAccess - ok
15:25:38.0376 3724 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:25:38.0439 3724 RemoteRegistry - ok
15:25:38.0470 3724 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:25:38.0517 3724 RpcEptMapper - ok
15:25:38.0532 3724 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:25:38.0564 3724 RpcLocator - ok
15:25:38.0626 3724 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:25:38.0673 3724 RpcSs - ok
15:25:38.0704 3724 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:25:38.0751 3724 rspndr - ok
15:25:38.0766 3724 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:25:38.0766 3724 SamSs - ok
15:25:38.0798 3724 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:25:38.0813 3724 sbp2port - ok
15:25:38.0829 3724 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:25:38.0876 3724 SCardSvr - ok
15:25:38.0907 3724 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:25:38.0938 3724 scfilter - ok
15:25:38.0985 3724 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:25:39.0047 3724 Schedule - ok
15:25:39.0078 3724 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:25:39.0110 3724 SCPolicySvc - ok
15:25:39.0141 3724 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:25:39.0188 3724 SDRSVC - ok
15:25:39.0219 3724 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:25:39.0266 3724 secdrv - ok
15:25:39.0297 3724 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:25:39.0328 3724 seclogon - ok
15:25:39.0344 3724 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:25:39.0390 3724 SENS - ok
15:25:39.0422 3724 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:25:39.0468 3724 SensrSvc - ok
15:25:39.0484 3724 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
15:25:39.0484 3724 Serenum - ok
15:25:39.0515 3724 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
15:25:39.0531 3724 Serial - ok
15:25:39.0562 3724 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
15:25:39.0578 3724 sermouse - ok
15:25:39.0624 3724 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:25:39.0671 3724 SessionEnv - ok
15:25:39.0702 3724 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:25:39.0734 3724 sffdisk - ok
15:25:39.0749 3724 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:25:39.0780 3724 sffp_mmc - ok
15:25:39.0796 3724 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:25:39.0827 3724 sffp_sd - ok
15:25:39.0843 3724 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
15:25:39.0858 3724 sfloppy - ok
15:25:39.0890 3724 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:25:39.0952 3724 SharedAccess - ok
15:25:39.0983 3724 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:25:40.0014 3724 ShellHWDetection - ok
15:25:40.0030 3724 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:25:40.0030 3724 SiSRaid2 - ok
15:25:40.0046 3724 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
15:25:40.0061 3724 SiSRaid4 - ok
15:25:40.0092 3724 [ 01ACB9228C303DE1FFF82B807D28B2B0 ] skfiltv C:\Windows\system32\drivers\skfiltv.sys
15:25:40.0124 3724 skfiltv - ok
15:25:40.0139 3724 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:25:40.0186 3724 Smb - ok
15:25:40.0217 3724 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:25:40.0248 3724 SNMPTRAP - ok
15:25:40.0264 3724 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:25:40.0280 3724 spldr - ok
15:25:40.0311 3724 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:25:40.0358 3724 Spooler - ok
15:25:40.0467 3724 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:25:40.0592 3724 sppsvc - ok
15:25:40.0592 3724 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:25:40.0654 3724 sppuinotify - ok
15:25:40.0685 3724 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:25:40.0732 3724 srv - ok
15:25:40.0763 3724 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:25:40.0794 3724 srv2 - ok
15:25:40.0826 3724 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:25:40.0857 3724 srvnet - ok
15:25:40.0888 3724 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:25:40.0935 3724 SSDPSRV - ok
15:25:40.0966 3724 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:25:40.0997 3724 SstpSvc - ok
15:25:41.0091 3724 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:25:41.0184 3724 Stereo Service - ok
15:25:41.0200 3724 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
15:25:41.0216 3724 stexstor - ok
15:25:41.0262 3724 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:25:41.0294 3724 stisvc - ok
15:25:41.0309 3724 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
15:25:41.0325 3724 swenum - ok
15:25:41.0340 3724 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:25:41.0403 3724 swprv - ok
15:25:41.0450 3724 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:25:41.0512 3724 SysMain - ok
15:25:41.0543 3724 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:25:41.0559 3724 TabletInputService - ok
15:25:41.0590 3724 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:25:41.0637 3724 TapiSrv - ok
15:25:41.0668 3724 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:25:41.0699 3724 TBS - ok
15:25:41.0746 3724 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:25:41.0808 3724 Tcpip - ok
15:25:41.0840 3724 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:25:41.0871 3724 TCPIP6 - ok
15:25:41.0902 3724 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:25:41.0933 3724 tcpipreg - ok
15:25:41.0964 3724 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:25:42.0011 3724 TDPIPE - ok
15:25:42.0042 3724 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:25:42.0058 3724 TDTCP - ok
15:25:42.0105 3724 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:25:42.0152 3724 tdx - ok
15:25:42.0183 3724 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
15:25:42.0183 3724 TermDD - ok
15:25:42.0230 3724 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:25:42.0276 3724 TermService - ok
15:25:42.0292 3724 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:25:42.0323 3724 Themes - ok
15:25:42.0339 3724 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:25:42.0370 3724 THREADORDER - ok
15:25:42.0386 3724 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:25:42.0432 3724 TrkWks - ok
15:25:42.0479 3724 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:25:42.0542 3724 TrustedInstaller - ok
15:25:42.0573 3724 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:25:42.0620 3724 tssecsrv - ok
15:25:42.0666 3724 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:25:42.0729 3724 TsUsbFlt - ok
15:25:42.0791 3724 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:25:42.0838 3724 tunnel - ok
15:25:42.0869 3724 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
15:25:42.0885 3724 uagp35 - ok
15:25:42.0916 3724 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:25:42.0963 3724 udfs - ok
15:25:42.0994 3724 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:25:43.0010 3724 UI0Detect - ok
15:25:43.0041 3724 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:25:43.0056 3724 uliagpkx - ok
15:25:43.0088 3724 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:25:43.0134 3724 umbus - ok
15:25:43.0150 3724 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
15:25:43.0181 3724 UmPass - ok
15:25:43.0244 3724 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
15:25:43.0290 3724 Updater Service - ok
15:25:43.0322 3724 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:25:43.0368 3724 upnphost - ok
15:25:43.0384 3724 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:25:43.0415 3724 usbaudio - ok
15:25:43.0446 3724 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:25:43.0462 3724 usbccgp - ok
15:25:43.0509 3724 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:25:43.0524 3724 usbcir - ok
15:25:43.0540 3724 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
15:25:43.0571 3724 usbehci - ok
15:25:43.0602 3724 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:25:43.0649 3724 usbhub - ok
15:25:43.0712 3724 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:25:43.0774 3724 usbohci - ok
15:25:43.0868 3724 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:25:43.0883 3724 usbprint - ok
15:25:43.0899 3724 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:25:43.0930 3724 USBSTOR - ok
15:25:43.0977 3724 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:25:43.0977 3724 usbuhci - ok
15:25:44.0008 3724 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
15:25:44.0039 3724 usb_rndisx - ok
15:25:44.0070 3724 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:25:44.0133 3724 UxSms - ok
15:25:44.0148 3724 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:25:44.0164 3724 VaultSvc - ok
15:25:44.0180 3724 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:25:44.0195 3724 vdrvroot - ok
15:25:44.0226 3724 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:25:44.0273 3724 vds - ok
15:25:44.0289 3724 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:25:44.0304 3724 vga - ok
15:25:44.0320 3724 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:25:44.0351 3724 VgaSave - ok
15:25:44.0398 3724 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:25:44.0414 3724 vhdmp - ok
15:25:44.0429 3724 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:25:44.0445 3724 viaide - ok
15:25:44.0460 3724 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:25:44.0476 3724 volmgr - ok
15:25:44.0523 3724 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:25:44.0538 3724 volmgrx - ok
15:25:44.0554 3724 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:25:44.0570 3724 volsnap - ok
15:25:44.0585 3724 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
15:25:44.0601 3724 vsmraid - ok
15:25:44.0648 3724 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:25:44.0726 3724 VSS - ok
15:25:44.0741 3724 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:25:44.0772 3724 vwifibus - ok
15:25:44.0788 3724 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:25:44.0850 3724 W32Time - ok
15:25:44.0850 3724 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
15:25:44.0882 3724 WacomPen - ok
15:25:44.0913 3724 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:25:44.0944 3724 WANARP - ok
15:25:44.0960 3724 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:25:44.0991 3724 Wanarpv6 - ok
15:25:45.0053 3724 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:25:45.0131 3724 wbengine - ok
15:25:45.0147 3724 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:25:45.0178 3724 WbioSrvc - ok
15:25:45.0209 3724 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
15:25:45.0240 3724 WcesComm - ok
15:25:45.0272 3724 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:25:45.0303 3724 wcncsvc - ok
15:25:45.0318 3724 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:25:45.0350 3724 WcsPlugInService - ok
15:25:45.0365 3724 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
15:25:45.0381 3724 Wd - ok
15:25:45.0428 3724 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:25:45.0459 3724 Wdf01000 - ok
15:25:45.0474 3724 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:25:45.0568 3724 WdiServiceHost - ok
15:25:45.0568 3724 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:25:45.0584 3724 WdiSystemHost - ok
15:25:45.0615 3724 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:25:45.0662 3724 WebClient - ok
15:25:45.0662 3724 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:25:45.0708 3724 Wecsvc - ok
15:25:45.0740 3724 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:25:45.0771 3724 wercplsupport - ok
15:25:45.0786 3724 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:25:45.0833 3724 WerSvc - ok
15:25:45.0849 3724 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:25:45.0880 3724 WfpLwf - ok
15:25:45.0911 3724 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:25:45.0911 3724 WIMMount - ok
15:25:45.0974 3724 WinDefend - ok
15:25:45.0989 3724 WinHttpAutoProxySvc - ok
15:25:46.0083 3724 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:25:46.0192 3724 Winmgmt - ok
15:25:46.0301 3724 WinRing0_1_2_0 - ok
15:25:46.0379 3724 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:25:46.0504 3724 WinRM - ok
15:25:46.0566 3724 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:25:46.0613 3724 Wlansvc - ok
15:25:46.0629 3724 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:25:46.0660 3724 WmiAcpi - ok
15:25:46.0691 3724 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:25:46.0722 3724 wmiApSrv - ok
15:25:46.0754 3724 WMPNetworkSvc - ok
15:25:46.0769 3724 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:25:46.0816 3724 WPCSvc - ok
15:25:46.0863 3724 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:25:46.0894 3724 WPDBusEnum - ok
15:25:46.0910 3724 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:25:46.0956 3724 ws2ifsl - ok
15:25:47.0003 3724 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:25:47.0050 3724 wscsvc - ok
15:25:47.0050 3724 WSearch - ok
15:25:47.0112 3724 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:25:47.0175 3724 wuauserv - ok
15:25:47.0206 3724 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:25:47.0253 3724 WudfPf - ok
15:25:47.0284 3724 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:25:47.0315 3724 WUDFRd - ok
15:25:47.0346 3724 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:25:47.0378 3724 wudfsvc - ok
15:25:47.0393 3724 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
15:25:47.0440 3724 WwanSvc - ok
15:25:47.0471 3724 ================ Scan global ===============================
15:25:47.0502 3724 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:25:47.0534 3724 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:25:47.0534 3724 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:25:47.0549 3724 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:25:47.0596 3724 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:25:47.0596 3724 [Global] - ok
15:25:47.0596 3724 ================ Scan MBR ==================================
15:25:47.0612 3724 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:25:47.0877 3724 \Device\Harddisk0\DR0 - ok
15:25:47.0877 3724 ================ Scan VBR ==================================
15:25:47.0877 3724 [ F4C7226356F2E5712F6BD45C06053487 ] \Device\Harddisk0\DR0\Partition1
15:25:47.0892 3724 \Device\Harddisk0\DR0\Partition1 - ok
15:25:47.0908 3724 [ 2CEACF2EF69626BC727321A532C31ECD ] \Device\Harddisk0\DR0\Partition2
15:25:47.0908 3724 \Device\Harddisk0\DR0\Partition2 - ok
15:25:47.0924 3724 [ AAAD0A69DA9D82EE5E0DD5A81C3AD2FA ] \Device\Harddisk0\DR0\Partition3
15:25:47.0939 3724 \Device\Harddisk0\DR0\Partition3 - ok
15:25:47.0939 3724 ============================================================
15:25:47.0939 3724 Scan finished
15:25:47.0939 3724 ============================================================
15:25:47.0955 4040 Detected object count: 3
15:25:47.0955 4040 Actual detected object count: 3
15:26:32.0162 4040 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:26:32.0162 4040 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:26:32.0172 4040 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:26:32.0172 4040 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:26:32.0172 4040 Creative Media Toolbox 6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:26:32.0172 4040 Creative Media Toolbox 6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:26:38.0862 2100 Deinitialize success
Wegen der Wärme habe ich schon etwas kühlendes neben den Computer gepackt und hoffe, dass mir die Grafikkarte nicht nochmal ausfällt, allerdings ist der Speicherverbrauch immer noch relativ hoch. Liebe Grüße |
|
19.06.2013, 15:17
| #8 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Sehr hoher physikalischer SpeicherverbrauchZitat:
Lesestoff:Rootkit-Warnung Dein Computer wurde mit einem besonderen Schädling infiziert, der sich vor herkömmlichen Virenscannern und dem Betriebssystem selbst verstecken kann. Zusätzlich hat so ein Schädling meist auch Backdoor-Funktionalität, reißt also ganz bewußt Löcher durch alle Schutzmaßnahmen, damit er weiteren Schadcode nachladen oder die Daten, die er so sammelt, an die "bösen Jungs" weiterleiten kann. Was heißt das jetzt für dich?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.06.2013, 16:09
| #9 |
| | Sehr hoher physikalischer Speicherverbrauch Oha das klingt fies.. Ich würde den Computer schon gerne wieder fit machen, obwohl ich in Betracht ziehe mir in etwas mehr als einem Monat einen neuen zu kaufen ^^ Ich gebe meinen alten dann allerdings meiner Mutter. Ich bin trotzdem sehr an meinen Computer gebunden, vor allem in nächster Zeit - Ich würd das mit dem bereinigen gerne machen ^^ Danke für die superschnelle Antwort schonmal und hoffentlich geht hier alles gut xX |
|
19.06.2013, 16:16
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Sehr hoher physikalischer Speicherverbrauch Dann bitte jetzt Combofix ausführen: Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.06.2013, 17:00
| #11 |
| | Sehr hoher physikalischer Speicherverbrauch So, es hat fast ne halbe Stunde gedauert oder so, nun bin ich natürlich an der Grenze zur Panik, denn da stand 'normalerweise 10 minuten' ... Hier der Log: Code:
ATTFilter Combofix Logfile: Bitte bitte keine schlechten Nachrichten ^^ |
|
19.06.2013, 18:49
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Sehr hoher physikalischer Speicherverbrauch Combofix-Skript
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.06.2013, 08:50
| #13 |
| | Sehr hoher physikalischer Speicherverbrauch So hier der Log: Es ging nicht auf den Desktop, ich hab versucht das umzustellen, die alte exe datei war aber auch nicht auf dem Desktop gespeichert, sondern im Download-Ordner. Combofix Logfile: Code:
ATTFilter ComboFix 13-06-18.02 - *** 20.06.2013 9:23.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.3071.1816 [GMT 2:00]
ausgeführt von:: c:\users\***\Downloads\ComboFix.exe
Benutzte Befehlsschalter :: c:\users\***\Desktop\CFScript.txt
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tcbhn.lnk"
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\***\AppData\Roaming\BrowserCompanion
c:\users\***\AppData\Roaming\BrowserCompanion\tcbhn.exe
c:\users\***\AppData\Roaming\BrowserCompanion\valuese.xml
c:\users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\tcbhn.lnk
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-05-20 bis 2013-06-20 ))))))))))))))))))))))))))))))
.
.
2013-06-20 07:34 . 2013-06-20 07:34 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-06-20 07:34 . 2013-06-20 07:34 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-06-20 07:14 . 2013-06-17 00:10 9552976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{93205C59-E9F2-4F04-91CB-67A60C4F0416}\mpengine.dll
2013-06-19 16:55 . 2013-06-19 16:55 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-06-19 16:55 . 2013-06-12 19:47 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-06-19 12:21 . 2013-06-19 12:21 -------- d-----w- c:\windows\system32\wbem\Framework
2013-06-18 18:25 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll
2013-06-18 18:25 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-06-18 18:25 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-06-18 18:25 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2013-06-18 18:25 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2013-06-18 18:25 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2013-06-18 18:25 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-06-18 18:25 . 2012-05-04 11:00 366592 ----a-w- c:\windows\system32\qdvd.dll
2013-06-18 18:25 . 2012-05-04 09:59 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2013-06-12 21:33 . 2013-05-17 01:25 257536 ----a-w- c:\program files (x86)\Internet Explorer\ieproxy.dll
2013-06-12 15:50 . 2013-05-10 05:49 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-06-12 15:50 . 2013-05-10 03:20 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-06-12 15:48 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-06-12 15:48 . 2013-03-31 22:52 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-06-11 19:53 . 2013-06-11 19:53 9089416 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-12 21:34 . 2011-02-17 18:41 75825640 ----a-w- c:\windows\system32\MRT.exe
2013-06-12 19:48 . 2012-06-15 09:18 867240 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-06-12 19:48 . 2011-02-07 14:03 789416 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-06-11 19:54 . 2012-10-04 19:41 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-11 19:54 . 2011-05-14 17:29 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-02 00:06 . 2011-02-03 19:17 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-15 07:12 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 07:12 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 07:12 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 07:12 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 07:12 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 07:12 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-12 14:45 . 2013-04-23 17:15 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-10 06:01 . 2013-05-15 07:12 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-04-10 06:01 . 2013-05-15 07:12 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-04-10 03:30 . 2013-05-15 07:12 3153920 ----a-w- c:\windows\system32\win32k.sys
2013-03-29 01:53 . 2013-03-29 01:53 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-29 01:53 . 2013-03-29 01:53 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-29 01:53 . 2013-03-29 01:53 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-29 01:53 . 2013-03-29 01:53 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-29 01:53 . 2013-03-29 01:53 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-29 01:53 . 2013-03-29 01:53 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-29 01:53 . 2013-03-29 01:53 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-29 01:53 . 2013-03-29 01:53 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-29 01:53 . 2013-03-29 01:53 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-29 01:53 . 2013-03-29 01:53 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-29 01:53 . 2013-03-29 01:53 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-29 01:53 . 2013-03-29 01:53 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-29 01:53 . 2013-03-29 01:53 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-29 01:53 . 2013-03-29 01:53 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-29 01:53 . 2013-03-29 01:53 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-29 01:53 . 2013-03-29 01:53 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-29 01:53 . 2013-03-29 01:53 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-29 01:53 . 2013-03-29 01:53 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-29 01:53 . 2013-03-29 01:53 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-29 01:53 . 2013-03-29 01:53 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-29 01:53 . 2013-03-29 01:53 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-29 01:53 . 2013-03-29 01:53 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-29 01:53 . 2013-03-29 01:53 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-29 01:53 . 2013-03-29 01:53 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-29 01:53 . 2013-03-29 01:53 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-29 01:53 . 2013-03-29 01:53 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-29 01:53 . 2013-03-29 01:53 441856 ----a-w- c:\windows\system32\html.iec
2013-03-29 01:53 . 2013-03-29 01:53 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-29 01:53 . 2013-03-29 01:53 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-29 01:53 . 2013-03-29 01:53 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-29 01:53 . 2013-03-29 01:53 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-29 01:53 . 2013-03-29 01:53 235008 ----a-w- c:\windows\system32\url.dll
2013-03-29 01:53 . 2013-03-29 01:53 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-29 01:53 . 2013-03-29 01:53 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-29 01:53 . 2013-03-29 01:53 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-29 01:53 . 2013-03-29 01:53 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-29 01:53 . 2013-03-29 01:53 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-29 01:53 . 2013-03-29 01:53 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-29 01:53 . 2013-03-29 01:53 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-29 01:53 . 2013-03-29 01:53 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-29 01:53 . 2013-03-29 01:53 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-29 01:53 . 2013-03-29 01:53 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-29 01:53 . 2013-03-29 01:53 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-29 01:53 . 2013-03-29 01:53 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-29 01:53 . 2013-03-29 01:53 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-29 01:53 . 2013-03-29 01:53 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-29 01:53 . 2013-03-29 01:53 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-29 01:53 . 2013-03-29 01:53 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-29 01:53 . 2013-03-29 01:53 12800 ----a-w- c:\windows\system32\msfeedssync.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{00cbb66b-1d3b-46d3-9577-323a336acb50}]
c:\program files (x86)\BrowserCompanion\jsloader.dll [BU]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2012-11-30 3093624]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Hotkey Utility"="c:\program files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe" [2010-03-26 563744]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-24 588648]
"AVMWlanClient"="c:\program files (x86)\avmwlanstick\wlangui.exe" [2010-10-22 2105344]
"VolPanel"="c:\program files (x86)\Creative\USB Headsets\Volume Panel\VolPanlu.exe" [2008-08-27 233588]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"HFALoader"="c:\program files (x86)\HamsterSoft\Free ZIP Archiver\Hamster.Archiver.UI.exe" [2011-05-10 2925056]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-08-08 348664]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2013-01-30 450560]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
c:\users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2011-4-17 0]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [x]
R3 avmeject;AVM Eject;c:\windows\system32\drivers\avmeject.sys;c:\windows\SYSNATIVE\drivers\avmeject.sys [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 Creative Media Toolbox 6 Licensing Service;Creative Media Toolbox 6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 skfiltv;skfiltv;c:\windows\system32\drivers\skfiltv.sys;c:\windows\SYSNATIVE\drivers\skfiltv.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\***\AppData\Local\Temp\tmp3CD1.tmp;c:\users\***\AppData\Local\Temp\tmp3CD1.tmp [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [x]
S3 fwlanusb4;FRITZ!WLAN N/G;c:\windows\system32\DRIVERS\fwlanusb4.sys;c:\windows\SYSNATIVE\DRIVERS\fwlanusb4.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - WS2IFSL
.
Inhalt des "geplante Tasks" Ordners
.
2013-06-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-04 19:54]
.
2013-06-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-03 19:14]
.
2013-06-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-03 19:14]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-11-17 9608224]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = about:blank
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube to MP3 Converter - c:\users\***\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
TCP: DhcpNameServer = 192.168.178.1
Handler: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -
Handler: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -
Handler: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} -
FF - ProfilePath - c:\users\***\AppData\Roaming\Mozilla\Firefox\Profiles\vwj4fvyu.default-1357586922145\
FF - prefs.js: network.proxy.type - 0
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Toolbar-Locked - (no file)
AddRemove-BrowserCompanion - c:\program files (x86)\BrowserCompanion\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\WinRing0_1_2_0]
"ImagePath"="\??\c:\users\***\AppData\Local\Temp\tmp3CD1.tmp"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-06-20 09:46:37
ComboFix-quarantined-files.txt 2013-06-20 07:46
ComboFix2.txt 2013-06-19 15:57
.
Vor Suchlauf: 16 Verzeichnis(se), 354.101.264.384 Bytes frei
Nach Suchlauf: 17 Verzeichnis(se), 354.028.396.544 Bytes frei
.
- - End Of File - - C8FF310D09B401D47E3FD6B94CFA320D
A36C5E4F47E84449FF07ED3517B43A31 [/CODE] |
|
20.06.2013, 09:16
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Sehr hoher physikalischer Speicherverbrauch Ok, bitte mach frische Logs mit MBAR (vor dem Scanner aktualisieren) und tdsskiller
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.06.2013, 09:53
| #15 |
| | Sehr hoher physikalischer Speicherverbrauch Jo, mbar aktualisiert: Code:
ATTFilter Malwarebytes Anti-Rootkit BETA 1.06.0.1003
www.malwarebytes.org
Database version: v2013.06.20.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16618
*** :: HÜBSCHER [administrator]
20.06.2013 10:36:04
mbar-log-2013-06-20 (10-36-04).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: Deep Anti-Rootkit Scan | PUP
Objects scanned: 261888
Time elapsed: 13 minute(s), 20 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
und Tdss: Code:
ATTFilter 10:50:22.0435 5932 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:50:22.0735 5932 ============================================================
10:50:22.0735 5932 Current date / time: 2013/06/20 10:50:22.0735
10:50:22.0735 5932 SystemInfo:
10:50:22.0735 5932
10:50:22.0735 5932 OS Version: 6.1.7601 ServicePack: 1.0
10:50:22.0735 5932 Product type: Workstation
10:50:22.0735 5932 ComputerName: HÜBSCHER
10:50:22.0735 5932 UserName: ***
10:50:22.0735 5932 Windows directory: C:\Windows
10:50:22.0735 5932 System windows directory: C:\Windows
10:50:22.0735 5932 Running under WOW64
10:50:22.0735 5932 Processor architecture: Intel x64
10:50:22.0735 5932 Number of processors: 2
10:50:22.0735 5932 Page size: 0x1000
10:50:22.0735 5932 Boot type: Normal boot
10:50:22.0735 5932 ============================================================
10:50:24.0085 5932 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:50:24.0105 5932 ============================================================
10:50:24.0105 5932 \Device\Harddisk0\DR0:
10:50:24.0125 5932 MBR partitions:
10:50:24.0125 5932 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2800800, BlocksNum 0x32000
10:50:24.0125 5932 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2832800, BlocksNum 0x38EE7000
10:50:24.0125 5932 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3B719800, BlocksNum 0x38FEC800
10:50:24.0125 5932 ============================================================
10:50:24.0145 5932 C: <-> \Device\Harddisk0\DR0\Partition2
10:50:24.0175 5932 D: <-> \Device\Harddisk0\DR0\Partition3
10:50:24.0175 5932 ============================================================
10:50:24.0175 5932 Initialize success
10:50:24.0175 5932 ============================================================
10:50:30.0185 2120 ============================================================
10:50:30.0185 2120 Scan started
10:50:30.0185 2120 Mode: Manual; SigCheck; TDLFS;
10:50:30.0185 2120 ============================================================
10:50:30.0745 2120 ================ Scan system memory ========================
10:50:30.0745 2120 System memory - ok
10:50:30.0745 2120 ================ Scan services =============================
10:50:30.0905 2120 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:50:31.0105 2120 1394ohci - ok
10:50:31.0135 2120 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:50:31.0155 2120 ACPI - ok
10:50:31.0175 2120 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:50:31.0245 2120 AcpiPmi - ok
10:50:31.0325 2120 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
10:50:31.0355 2120 AdobeActiveFileMonitor8.0 - ok
10:50:31.0455 2120 [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:50:31.0465 2120 AdobeARMservice - ok
10:50:31.0575 2120 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:50:31.0595 2120 AdobeFlashPlayerUpdateSvc - ok
10:50:31.0645 2120 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:50:31.0675 2120 adp94xx - ok
10:50:31.0695 2120 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:50:31.0715 2120 adpahci - ok
10:50:31.0735 2120 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:50:31.0755 2120 adpu320 - ok
10:50:31.0775 2120 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:50:31.0915 2120 AeLookupSvc - ok
10:50:31.0965 2120 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:50:32.0005 2120 AFD - ok
10:50:32.0035 2120 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:50:32.0045 2120 agp440 - ok
10:50:32.0055 2120 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:50:32.0125 2120 ALG - ok
10:50:32.0135 2120 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:50:32.0145 2120 aliide - ok
10:50:32.0155 2120 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:50:32.0175 2120 amdide - ok
10:50:32.0205 2120 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:50:32.0245 2120 AmdK8 - ok
10:50:32.0255 2120 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:50:32.0275 2120 AmdPPM - ok
10:50:32.0315 2120 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:50:32.0335 2120 amdsata - ok
10:50:32.0355 2120 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:50:32.0365 2120 amdsbs - ok
10:50:32.0385 2120 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:50:32.0405 2120 amdxata - ok
10:50:32.0475 2120 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
10:50:32.0515 2120 AntiVirSchedulerService - ok
10:50:32.0535 2120 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
10:50:32.0555 2120 AntiVirService - ok
10:50:32.0605 2120 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:50:32.0735 2120 AppID - ok
10:50:32.0755 2120 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:50:32.0805 2120 AppIDSvc - ok
10:50:32.0845 2120 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
10:50:32.0895 2120 Appinfo - ok
10:50:32.0945 2120 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
10:50:32.0955 2120 arc - ok
10:50:32.0965 2120 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:50:32.0985 2120 arcsas - ok
10:50:33.0005 2120 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:50:33.0055 2120 AsyncMac - ok
10:50:33.0075 2120 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:50:33.0095 2120 atapi - ok
10:50:33.0145 2120 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:50:33.0195 2120 AudioEndpointBuilder - ok
10:50:33.0235 2120 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:50:33.0265 2120 AudioSrv - ok
10:50:33.0315 2120 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
10:50:33.0475 2120 avgntflt - ok
10:50:33.0505 2120 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
10:50:33.0515 2120 avipbb - ok
10:50:33.0535 2120 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
10:50:33.0545 2120 avkmgr - ok
10:50:33.0575 2120 [ C6F4C466B654C1BE98AF31418BB5AC30 ] AVM WLAN Connection Service C:\Program Files (x86)\avmwlanstick\WlanNetService.exe
10:50:33.0605 2120 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - warning
10:50:33.0605 2120 AVM WLAN Connection Service - detected UnsignedFile.Multi.Generic (1)
10:50:33.0645 2120 [ 1DC2F715792CF33428AD7993ACBD224D ] avmeject C:\Windows\system32\drivers\avmeject.sys
10:50:33.0655 2120 avmeject - ok
10:50:33.0695 2120 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:50:33.0775 2120 AxInstSV - ok
10:50:33.0815 2120 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
10:50:33.0865 2120 b06bdrv - ok
10:50:33.0905 2120 [ A375AA8F1549BA51CFBCBD9A4AE0C2D3 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:50:33.0925 2120 b57nd60a - ok
10:50:33.0955 2120 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:50:34.0015 2120 BDESVC - ok
10:50:34.0035 2120 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:50:34.0085 2120 Beep - ok
10:50:34.0145 2120 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:50:34.0195 2120 BFE - ok
10:50:34.0255 2120 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
10:50:34.0335 2120 BITS - ok
10:50:34.0395 2120 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:50:34.0415 2120 blbdrive - ok
10:50:34.0445 2120 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:50:34.0485 2120 bowser - ok
10:50:34.0505 2120 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:50:34.0545 2120 BrFiltLo - ok
10:50:34.0565 2120 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:50:34.0575 2120 BrFiltUp - ok
10:50:34.0585 2120 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:50:34.0635 2120 BridgeMP - ok
10:50:34.0655 2120 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:50:34.0685 2120 Browser - ok
10:50:34.0705 2120 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:50:34.0735 2120 Brserid - ok
10:50:34.0755 2120 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:50:34.0785 2120 BrSerWdm - ok
10:50:34.0805 2120 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:50:34.0845 2120 BrUsbMdm - ok
10:50:34.0855 2120 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:50:34.0865 2120 BrUsbSer - ok
10:50:34.0885 2120 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:50:34.0895 2120 BTHMODEM - ok
10:50:34.0945 2120 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:50:34.0985 2120 bthserv - ok
10:50:35.0025 2120 catchme - ok
10:50:35.0045 2120 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:50:35.0085 2120 cdfs - ok
10:50:35.0145 2120 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:50:35.0165 2120 cdrom - ok
10:50:35.0205 2120 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:50:35.0255 2120 CertPropSvc - ok
10:50:35.0265 2120 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:50:35.0295 2120 circlass - ok
10:50:35.0315 2120 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:50:35.0335 2120 CLFS - ok
10:50:35.0395 2120 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:50:35.0425 2120 clr_optimization_v2.0.50727_32 - ok
10:50:35.0475 2120 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:50:35.0505 2120 clr_optimization_v2.0.50727_64 - ok
10:50:35.0535 2120 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:50:35.0555 2120 clr_optimization_v4.0.30319_32 - ok
10:50:35.0585 2120 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:50:35.0595 2120 clr_optimization_v4.0.30319_64 - ok
10:50:35.0615 2120 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:50:35.0625 2120 CmBatt - ok
10:50:35.0645 2120 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:50:35.0655 2120 cmdide - ok
10:50:35.0695 2120 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
10:50:35.0735 2120 CNG - ok
10:50:35.0765 2120 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:50:35.0775 2120 Compbatt - ok
10:50:35.0815 2120 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:50:35.0845 2120 CompositeBus - ok
10:50:35.0865 2120 COMSysApp - ok
10:50:35.0885 2120 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:50:35.0895 2120 crcdisk - ok
10:50:35.0935 2120 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
10:50:35.0945 2120 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
10:50:35.0945 2120 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
10:50:35.0985 2120 [ D03466C36EF0E5C7694FF38B45271D9D ] Creative Media Toolbox 6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\MT6Licensing.exe
10:50:36.0005 2120 Creative Media Toolbox 6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
10:50:36.0005 2120 Creative Media Toolbox 6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
10:50:36.0045 2120 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:50:36.0115 2120 CryptSvc - ok
10:50:36.0155 2120 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:50:36.0215 2120 DcomLaunch - ok
10:50:36.0245 2120 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:50:36.0295 2120 defragsvc - ok
10:50:36.0325 2120 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:50:36.0365 2120 DfsC - ok
10:50:36.0405 2120 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:50:36.0465 2120 Dhcp - ok
10:50:36.0485 2120 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:50:36.0515 2120 discache - ok
10:50:36.0555 2120 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:50:36.0565 2120 Disk - ok
10:50:36.0595 2120 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:50:36.0655 2120 Dnscache - ok
10:50:36.0685 2120 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:50:36.0735 2120 dot3svc - ok
10:50:36.0765 2120 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:50:36.0815 2120 DPS - ok
10:50:36.0845 2120 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:50:36.0875 2120 drmkaud - ok
10:50:36.0905 2120 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:50:36.0935 2120 DXGKrnl - ok
10:50:36.0975 2120 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:50:37.0015 2120 EapHost - ok
10:50:37.0085 2120 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
10:50:37.0205 2120 ebdrv - ok
10:50:37.0235 2120 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:50:37.0285 2120 EFS - ok
10:50:37.0345 2120 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:50:37.0465 2120 ehRecvr - ok
10:50:37.0495 2120 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:50:37.0545 2120 ehSched - ok
10:50:37.0575 2120 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:50:37.0595 2120 elxstor - ok
10:50:37.0645 2120 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:50:37.0725 2120 ErrDev - ok
10:50:37.0765 2120 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:50:37.0815 2120 EventSystem - ok
10:50:37.0835 2120 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:50:37.0875 2120 exfat - ok
10:50:37.0885 2120 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:50:37.0935 2120 fastfat - ok
10:50:37.0995 2120 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:50:38.0065 2120 Fax - ok
10:50:38.0085 2120 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:50:38.0095 2120 fdc - ok
10:50:38.0115 2120 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:50:38.0165 2120 fdPHost - ok
10:50:38.0175 2120 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:50:38.0215 2120 FDResPub - ok
10:50:38.0235 2120 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:50:38.0245 2120 FileInfo - ok
10:50:38.0275 2120 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:50:38.0315 2120 Filetrace - ok
10:50:38.0365 2120 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:50:38.0385 2120 FLEXnet Licensing Service - ok
10:50:38.0405 2120 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:50:38.0435 2120 flpydisk - ok
10:50:38.0455 2120 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:50:38.0475 2120 FltMgr - ok
10:50:38.0535 2120 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
10:50:38.0637 2120 FontCache - ok
10:50:38.0689 2120 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:50:38.0699 2120 FontCache3.0.0.0 - ok
10:50:38.0739 2120 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:50:38.0759 2120 FsDepends - ok
10:50:38.0801 2120 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:50:38.0811 2120 Fs_Rec - ok
10:50:38.0881 2120 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:50:38.0901 2120 fvevol - ok
10:50:38.0971 2120 [ 4632BB93B668004965246D7911E2DD05 ] fwlanusb4 C:\Windows\system32\DRIVERS\fwlanusb4.sys
10:50:39.0061 2120 fwlanusb4 - ok
10:50:39.0121 2120 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:50:39.0141 2120 gagp30kx - ok
10:50:39.0231 2120 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:50:39.0251 2120 GamesAppService - ok
10:50:39.0331 2120 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:50:39.0401 2120 gpsvc - ok
10:50:39.0521 2120 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
10:50:39.0571 2120 Greg_Service - ok
10:50:39.0671 2120 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:50:39.0691 2120 gupdate - ok
10:50:39.0721 2120 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:50:39.0741 2120 gupdatem - ok
10:50:39.0771 2120 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:50:39.0811 2120 hcw85cir - ok
10:50:39.0881 2120 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:50:39.0921 2120 HdAudAddService - ok
10:50:39.0961 2120 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:50:39.0991 2120 HDAudBus - ok
10:50:40.0011 2120 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:50:40.0031 2120 HidBatt - ok
10:50:40.0051 2120 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:50:40.0071 2120 HidBth - ok
10:50:40.0081 2120 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:50:40.0091 2120 HidIr - ok
10:50:40.0121 2120 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
10:50:40.0191 2120 hidserv - ok
10:50:40.0251 2120 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:50:40.0271 2120 HidUsb - ok
10:50:40.0311 2120 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:50:40.0341 2120 hkmsvc - ok
10:50:40.0381 2120 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:50:40.0431 2120 HomeGroupListener - ok
10:50:40.0461 2120 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:50:40.0491 2120 HomeGroupProvider - ok
10:50:40.0511 2120 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:50:40.0521 2120 HpSAMD - ok
10:50:40.0571 2120 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:50:40.0621 2120 HTTP - ok
10:50:40.0661 2120 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:50:40.0671 2120 hwpolicy - ok
10:50:40.0721 2120 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
10:50:40.0731 2120 i8042prt - ok
10:50:40.0761 2120 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:50:40.0781 2120 iaStorV - ok
10:50:40.0811 2120 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:50:40.0841 2120 idsvc - ok
10:50:40.0971 2120 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:50:41.0111 2120 igfx - ok
10:50:41.0131 2120 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:50:41.0141 2120 iirsp - ok
10:50:41.0171 2120 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:50:41.0221 2120 IKEEXT - ok
10:50:41.0301 2120 [ 52D9171838BB92319F23656F502916E9 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:50:41.0361 2120 IntcAzAudAddService - ok
10:50:41.0393 2120 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:50:41.0403 2120 intelide - ok
10:50:41.0423 2120 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:50:41.0443 2120 intelppm - ok
10:50:41.0463 2120 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:50:41.0513 2120 IPBusEnum - ok
10:50:41.0553 2120 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:50:41.0603 2120 IpFilterDriver - ok
10:50:41.0633 2120 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:50:41.0683 2120 iphlpsvc - ok
10:50:41.0713 2120 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:50:41.0733 2120 IPMIDRV - ok
10:50:41.0743 2120 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:50:41.0793 2120 IPNAT - ok
10:50:41.0813 2120 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:50:41.0883 2120 IRENUM - ok
10:50:41.0930 2120 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:50:41.0935 2120 isapnp - ok
10:50:41.0965 2120 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:50:41.0985 2120 iScsiPrt - ok
10:50:41.0995 2120 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:50:42.0015 2120 kbdclass - ok
10:50:42.0055 2120 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:50:42.0075 2120 kbdhid - ok
10:50:42.0095 2120 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:50:42.0105 2120 KeyIso - ok
10:50:42.0135 2120 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:50:42.0145 2120 KSecDD - ok
10:50:42.0185 2120 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:50:42.0195 2120 KSecPkg - ok
10:50:42.0205 2120 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:50:42.0255 2120 ksthunk - ok
10:50:42.0285 2120 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:50:42.0335 2120 KtmRm - ok
10:50:42.0375 2120 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
10:50:42.0425 2120 LanmanServer - ok
10:50:42.0465 2120 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:50:42.0515 2120 LanmanWorkstation - ok
10:50:42.0555 2120 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:50:42.0595 2120 lltdio - ok
10:50:42.0615 2120 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:50:42.0665 2120 lltdsvc - ok
10:50:42.0685 2120 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:50:42.0715 2120 lmhosts - ok
10:50:42.0735 2120 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:50:42.0745 2120 LSI_FC - ok
10:50:42.0775 2120 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:50:42.0785 2120 LSI_SAS - ok
10:50:42.0805 2120 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:50:42.0815 2120 LSI_SAS2 - ok
10:50:42.0825 2120 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:50:42.0835 2120 LSI_SCSI - ok
10:50:42.0855 2120 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:50:42.0905 2120 luafv - ok
10:50:42.0935 2120 mbamswissarmy - ok
10:50:42.0985 2120 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
10:50:42.0995 2120 McComponentHostService - ok
10:50:43.0025 2120 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:50:43.0045 2120 Mcx2Svc - ok
10:50:43.0075 2120 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:50:43.0085 2120 megasas - ok
10:50:43.0105 2120 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:50:43.0125 2120 MegaSR - ok
10:50:43.0145 2120 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:50:43.0185 2120 MMCSS - ok
10:50:43.0215 2120 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:50:43.0255 2120 Modem - ok
10:50:43.0275 2120 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:50:43.0295 2120 monitor - ok
10:50:43.0325 2120 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:50:43.0335 2120 mouclass - ok
10:50:43.0355 2120 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:50:43.0385 2120 mouhid - ok
10:50:43.0405 2120 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:50:43.0425 2120 mountmgr - ok
10:50:43.0455 2120 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:50:43.0475 2120 MozillaMaintenance - ok
10:50:43.0505 2120 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:50:43.0525 2120 mpio - ok
10:50:43.0525 2120 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:50:43.0565 2120 mpsdrv - ok
10:50:43.0605 2120 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:50:43.0655 2120 MpsSvc - ok
10:50:43.0685 2120 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:50:43.0715 2120 MRxDAV - ok
10:50:43.0735 2120 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:50:43.0795 2120 mrxsmb - ok
10:50:43.0825 2120 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:50:43.0855 2120 mrxsmb10 - ok
10:50:43.0865 2120 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:50:43.0875 2120 mrxsmb20 - ok
10:50:43.0895 2120 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:50:43.0905 2120 msahci - ok
10:50:43.0915 2120 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:50:43.0935 2120 msdsm - ok
10:50:43.0955 2120 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:50:43.0975 2120 MSDTC - ok
10:50:44.0015 2120 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:50:44.0045 2120 Msfs - ok
10:50:44.0055 2120 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:50:44.0105 2120 mshidkmdf - ok
10:50:44.0135 2120 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:50:44.0145 2120 msisadrv - ok
10:50:44.0175 2120 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:50:44.0225 2120 MSiSCSI - ok
10:50:44.0225 2120 msiserver - ok
10:50:44.0255 2120 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:50:44.0305 2120 MSKSSRV - ok
10:50:44.0325 2120 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:50:44.0355 2120 MSPCLOCK - ok
10:50:44.0355 2120 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:50:44.0405 2120 MSPQM - ok
10:50:44.0435 2120 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:50:44.0455 2120 MsRPC - ok
10:50:44.0485 2120 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:50:44.0505 2120 mssmbios - ok
10:50:44.0505 2120 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:50:44.0555 2120 MSTEE - ok
10:50:44.0575 2120 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:50:44.0585 2120 MTConfig - ok
10:50:44.0605 2120 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:50:44.0615 2120 Mup - ok
10:50:44.0655 2120 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:50:44.0705 2120 napagent - ok
10:50:44.0755 2120 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:50:44.0795 2120 NativeWifiP - ok
10:50:44.0845 2120 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:50:44.0865 2120 NDIS - ok
10:50:44.0885 2120 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:50:44.0915 2120 NdisCap - ok
10:50:44.0935 2120 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:50:44.0965 2120 NdisTapi - ok
10:50:45.0005 2120 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:50:45.0055 2120 Ndisuio - ok
10:50:45.0085 2120 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:50:45.0125 2120 NdisWan - ok
10:50:45.0145 2120 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:50:45.0195 2120 NDProxy - ok
10:50:45.0265 2120 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
10:50:45.0285 2120 Nero BackItUp Scheduler 4.0 - ok
10:50:45.0315 2120 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:50:45.0365 2120 NetBIOS - ok
10:50:45.0405 2120 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:50:45.0445 2120 NetBT - ok
10:50:45.0485 2120 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:50:45.0495 2120 Netlogon - ok
10:50:45.0525 2120 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:50:45.0575 2120 Netman - ok
10:50:45.0595 2120 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:50:45.0655 2120 netprofm - ok
10:50:45.0685 2120 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:50:45.0695 2120 NetTcpPortSharing - ok
10:50:45.0715 2120 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:50:45.0735 2120 nfrd960 - ok
10:50:45.0755 2120 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:50:45.0785 2120 NlaSvc - ok
10:50:45.0805 2120 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:50:45.0835 2120 Npfs - ok
10:50:45.0845 2120 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:50:45.0895 2120 nsi - ok
10:50:45.0905 2120 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:50:45.0955 2120 nsiproxy - ok
10:50:46.0017 2120 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:50:46.0067 2120 Ntfs - ok
10:50:46.0087 2120 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:50:46.0137 2120 Null - ok
10:50:46.0177 2120 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
10:50:46.0197 2120 NVHDA - ok
10:50:46.0407 2120 [ FCBA1C22727939E7CFF9EB08FE9692AB ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:50:46.0697 2120 nvlddmkm - ok
10:50:46.0717 2120 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:50:46.0737 2120 nvraid - ok
10:50:46.0777 2120 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:50:46.0797 2120 nvstor - ok
10:50:46.0837 2120 [ 10C232F6CFFD51D2332898AE7AE0FF23 ] nvsvc C:\Windows\system32\nvvsvc.exe
10:50:46.0867 2120 nvsvc - ok
10:50:46.0967 2120 [ 4789E020D2617046862D1790FC235FF6 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:50:47.0027 2120 nvUpdatusService - ok
10:50:47.0037 2120 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:50:47.0047 2120 nv_agp - ok
10:50:47.0117 2120 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:50:47.0157 2120 odserv - ok
10:50:47.0187 2120 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:50:47.0217 2120 ohci1394 - ok
10:50:47.0257 2120 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:50:47.0267 2120 ose - ok
10:50:47.0297 2120 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:50:47.0367 2120 p2pimsvc - ok
10:50:47.0407 2120 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:50:47.0437 2120 p2psvc - ok
10:50:47.0477 2120 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:50:47.0497 2120 Parport - ok
10:50:47.0537 2120 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:50:47.0547 2120 partmgr - ok
10:50:47.0567 2120 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:50:47.0597 2120 PcaSvc - ok
10:50:47.0617 2120 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:50:47.0627 2120 pci - ok
10:50:47.0657 2120 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:50:47.0667 2120 pciide - ok
10:50:47.0687 2120 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:50:47.0707 2120 pcmcia - ok
10:50:47.0717 2120 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:50:47.0727 2120 pcw - ok
10:50:47.0747 2120 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:50:47.0817 2120 PEAUTH - ok
10:50:47.0897 2120 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:50:47.0927 2120 PerfHost - ok
10:50:47.0997 2120 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:50:48.0067 2120 pla - ok
10:50:48.0117 2120 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:50:48.0177 2120 PlugPlay - ok
10:50:48.0197 2120 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:50:48.0237 2120 PNRPAutoReg - ok
10:50:48.0257 2120 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:50:48.0267 2120 PNRPsvc - ok
10:50:48.0287 2120 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:50:48.0357 2120 PolicyAgent - ok
10:50:48.0377 2120 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
10:50:48.0427 2120 Power - ok
10:50:48.0477 2120 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:50:48.0517 2120 PptpMiniport - ok
10:50:48.0547 2120 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:50:48.0567 2120 Processor - ok
10:50:48.0597 2120 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:50:48.0657 2120 ProfSvc - ok
10:50:48.0667 2120 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:50:48.0677 2120 ProtectedStorage - ok
10:50:48.0727 2120 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:50:48.0777 2120 Psched - ok
10:50:48.0797 2120 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:50:48.0807 2120 PxHlpa64 - ok
10:50:48.0847 2120 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:50:48.0897 2120 ql2300 - ok
10:50:48.0907 2120 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:50:48.0927 2120 ql40xx - ok
10:50:48.0947 2120 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:50:48.0967 2120 QWAVE - ok
10:50:48.0977 2120 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:50:49.0017 2120 QWAVEdrv - ok
10:50:49.0067 2120 [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
10:50:49.0087 2120 RapiMgr - ok
10:50:49.0107 2120 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:50:49.0147 2120 RasAcd - ok
10:50:49.0177 2120 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:50:49.0217 2120 RasAgileVpn - ok
10:50:49.0237 2120 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:50:49.0267 2120 RasAuto - ok
10:50:49.0307 2120 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:50:49.0357 2120 Rasl2tp - ok
10:50:49.0387 2120 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:50:49.0437 2120 RasMan - ok
10:50:49.0457 2120 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:50:49.0507 2120 RasPppoe - ok
10:50:49.0557 2120 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:50:49.0617 2120 RasSstp - ok
10:50:49.0647 2120 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:50:49.0697 2120 rdbss - ok
10:50:49.0717 2120 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:50:49.0737 2120 rdpbus - ok
10:50:49.0747 2120 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:50:49.0787 2120 RDPCDD - ok
10:50:49.0807 2120 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:50:49.0867 2120 RDPENCDD - ok
10:50:49.0877 2120 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:50:49.0917 2120 RDPREFMP - ok
10:50:49.0967 2120 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:50:50.0017 2120 RdpVideoMiniport - ok
10:50:50.0057 2120 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:50:50.0087 2120 RDPWD - ok
10:50:50.0107 2120 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:50:50.0127 2120 rdyboost - ok
10:50:50.0157 2120 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:50:50.0207 2120 RemoteAccess - ok
10:50:50.0237 2120 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:50:50.0287 2120 RemoteRegistry - ok
10:50:50.0307 2120 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:50:50.0357 2120 RpcEptMapper - ok
10:50:50.0387 2120 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:50:50.0407 2120 RpcLocator - ok
10:50:50.0447 2120 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:50:50.0477 2120 RpcSs - ok
10:50:50.0507 2120 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:50:50.0547 2120 rspndr - ok
10:50:50.0567 2120 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:50:50.0587 2120 SamSs - ok
10:50:50.0617 2120 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:50:50.0627 2120 sbp2port - ok
10:50:50.0637 2120 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:50:50.0687 2120 SCardSvr - ok
10:50:50.0717 2120 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:50:50.0767 2120 scfilter - ok
10:50:50.0807 2120 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:50:50.0867 2120 Schedule - ok
10:50:50.0897 2120 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:50:50.0927 2120 SCPolicySvc - ok
10:50:50.0957 2120 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:50:51.0027 2120 SDRSVC - ok
10:50:51.0047 2120 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:50:51.0097 2120 secdrv - ok
10:50:51.0127 2120 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:50:51.0157 2120 seclogon - ok
10:50:51.0167 2120 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
10:50:51.0227 2120 SENS - ok
10:50:51.0237 2120 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:50:51.0257 2120 SensrSvc - ok
10:50:51.0287 2120 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:50:51.0297 2120 Serenum - ok
10:50:51.0317 2120 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:50:51.0347 2120 Serial - ok
10:50:51.0377 2120 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:50:51.0407 2120 sermouse - ok
10:50:51.0427 2120 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:50:51.0477 2120 SessionEnv - ok
10:50:51.0507 2120 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:50:51.0527 2120 sffdisk - ok
10:50:51.0807 2120 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:50:51.0837 2120 sffp_mmc - ok
10:50:51.0915 2120 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:50:52.0056 2120 sffp_sd - ok
10:50:52.0094 2120 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:50:52.0112 2120 sfloppy - ok
10:50:52.0145 2120 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:50:52.0257 2120 SharedAccess - ok
10:50:52.0286 2120 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:50:52.0335 2120 ShellHWDetection - ok
10:50:52.0360 2120 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:50:52.0370 2120 SiSRaid2 - ok
10:50:52.0380 2120 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:50:52.0390 2120 SiSRaid4 - ok
10:50:52.0433 2120 [ 01ACB9228C303DE1FFF82B807D28B2B0 ] skfiltv C:\Windows\system32\drivers\skfiltv.sys
10:50:52.0482 2120 skfiltv - ok
10:50:52.0522 2120 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:50:52.0572 2120 Smb - ok
10:50:52.0616 2120 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:50:52.0644 2120 SNMPTRAP - ok
10:50:52.0664 2120 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:50:52.0674 2120 spldr - ok
10:50:52.0724 2120 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:50:52.0764 2120 Spooler - ok
10:50:52.0864 2120 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:50:53.0026 2120 sppsvc - ok
10:50:53.0051 2120 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:50:53.0106 2120 sppuinotify - ok
10:50:53.0136 2120 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:50:53.0216 2120 srv - ok
10:50:53.0236 2120 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:50:53.0278 2120 srv2 - ok
10:50:53.0288 2120 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:50:53.0318 2120 srvnet - ok
10:50:53.0348 2120 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:50:53.0388 2120 SSDPSRV - ok
10:50:53.0428 2120 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:50:53.0470 2120 SstpSvc - ok
10:50:53.0600 2120 [ 5A19667A580B1CE886EAF968B9743F45 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:50:53.0620 2120 Stereo Service - ok
10:50:53.0640 2120 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:50:53.0670 2120 stexstor - ok
10:50:53.0732 2120 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:50:53.0772 2120 stisvc - ok
10:50:53.0814 2120 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
10:50:53.0824 2120 swenum - ok
10:50:53.0844 2120 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:50:53.0904 2120 swprv - ok
10:50:53.0966 2120 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:50:54.0046 2120 SysMain - ok
10:50:54.0088 2120 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:50:54.0118 2120 TabletInputService - ok
10:50:54.0168 2120 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:50:54.0218 2120 TapiSrv - ok
10:50:54.0238 2120 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:50:54.0268 2120 TBS - ok
10:50:54.0338 2120 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:50:54.0388 2120 Tcpip - ok
10:50:54.0418 2120 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:50:54.0458 2120 TCPIP6 - ok
10:50:54.0498 2120 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:50:54.0518 2120 tcpipreg - ok
10:50:54.0548 2120 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:50:54.0618 2120 TDPIPE - ok
10:50:54.0678 2120 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:50:54.0708 2120 TDTCP - ok
10:50:54.0738 2120 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:50:54.0778 2120 tdx - ok
10:50:54.0798 2120 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:50:54.0808 2120 TermDD - ok
10:50:54.0848 2120 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:50:54.0888 2120 TermService - ok
10:50:54.0898 2120 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:50:54.0938 2120 Themes - ok
10:50:54.0972 2120 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:50:55.0040 2120 THREADORDER - ok
10:50:55.0074 2120 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:50:55.0122 2120 TrkWks - ok
10:50:55.0174 2120 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:50:55.0234 2120 TrustedInstaller - ok
10:50:55.0286 2120 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:50:55.0326 2120 tssecsrv - ok
10:50:55.0396 2120 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:50:55.0458 2120 TsUsbFlt - ok
10:50:55.0508 2120 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:50:55.0548 2120 tunnel - ok
10:50:55.0568 2120 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:50:55.0588 2120 uagp35 - ok
10:50:55.0618 2120 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:50:55.0678 2120 udfs - ok
10:50:55.0738 2120 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:50:55.0778 2120 UI0Detect - ok
10:50:55.0788 2120 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:50:55.0808 2120 uliagpkx - ok
10:50:55.0848 2120 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:50:55.0878 2120 umbus - ok
10:50:55.0888 2120 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:50:55.0918 2120 UmPass - ok
10:50:55.0988 2120 [ F9EC9ACD504D823D9B9CA98A4F8D3CA2 ] Updater Service C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
10:50:55.0998 2120 Updater Service - ok
10:50:56.0018 2120 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:50:56.0068 2120 upnphost - ok
10:50:56.0098 2120 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:50:56.0128 2120 usbaudio - ok
10:50:56.0158 2120 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:50:56.0198 2120 usbccgp - ok
10:50:56.0228 2120 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:50:56.0238 2120 usbcir - ok
10:50:56.0268 2120 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
10:50:56.0298 2120 usbehci - ok
10:50:56.0338 2120 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:50:56.0368 2120 usbhub - ok
10:50:56.0398 2120 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:50:56.0428 2120 usbohci - ok
10:50:56.0448 2120 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:50:56.0468 2120 usbprint - ok
10:50:56.0478 2120 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:50:56.0528 2120 USBSTOR - ok
10:50:56.0568 2120 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:50:56.0608 2120 usbuhci - ok
10:50:56.0738 2120 [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
10:50:56.0788 2120 usb_rndisx - ok
10:50:56.0848 2120 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:50:56.0908 2120 UxSms - ok
10:50:56.0941 2120 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:50:56.0960 2120 VaultSvc - ok
10:50:56.0980 2120 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:50:57.0000 2120 vdrvroot - ok
10:50:57.0040 2120 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:50:57.0100 2120 vds - ok
10:50:57.0120 2120 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:50:57.0140 2120 vga - ok
10:50:57.0160 2120 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:50:57.0200 2120 VgaSave - ok
10:50:57.0240 2120 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:50:57.0250 2120 vhdmp - ok
10:50:57.0290 2120 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:50:57.0300 2120 viaide - ok
10:50:57.0320 2120 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:50:57.0350 2120 volmgr - ok
10:50:57.0412 2120 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:50:57.0442 2120 volmgrx - ok
10:50:57.0472 2120 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:50:57.0492 2120 volsnap - ok
10:50:57.0524 2120 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:50:57.0554 2120 vsmraid - ok
10:50:57.0646 2120 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:50:57.0789 2120 VSS - ok
10:50:57.0814 2120 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
10:50:57.0840 2120 vwifibus - ok
10:50:57.0870 2120 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:50:57.0960 2120 W32Time - ok
10:50:57.0996 2120 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:50:58.0039 2120 WacomPen - ok
10:50:58.0092 2120 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:50:58.0142 2120 WANARP - ok
10:50:58.0142 2120 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:50:58.0182 2120 Wanarpv6 - ok
10:50:58.0242 2120 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:50:58.0322 2120 wbengine - ok
10:50:58.0332 2120 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:50:58.0362 2120 WbioSrvc - ok
10:50:58.0402 2120 [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
10:50:58.0432 2120 WcesComm - ok
10:50:58.0453 2120 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:50:58.0484 2120 wcncsvc - ok
10:50:58.0504 2120 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:50:58.0534 2120 WcsPlugInService - ok
10:50:58.0594 2120 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:50:58.0624 2120 Wd - ok
10:50:58.0676 2120 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:50:58.0706 2120 Wdf01000 - ok
10:50:58.0726 2120 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:50:58.0838 2120 WdiServiceHost - ok
10:50:58.0848 2120 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:50:58.0869 2120 WdiSystemHost - ok
10:50:58.0900 2120 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:50:58.0962 2120 WebClient - ok
10:50:58.0992 2120 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:50:59.0063 2120 Wecsvc - ok
10:50:59.0084 2120 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:50:59.0146 2120 wercplsupport - ok
10:50:59.0166 2120 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:50:59.0236 2120 WerSvc - ok
10:50:59.0298 2120 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:50:59.0348 2120 WfpLwf - ok
10:50:59.0371 2120 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:50:59.0380 2120 WIMMount - ok
10:50:59.0450 2120 WinDefend - ok
10:50:59.0510 2120 WinHttpAutoProxySvc - ok
10:50:59.0566 2120 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:50:59.0654 2120 Winmgmt - ok
10:50:59.0777 2120 WinRing0_1_2_0 - ok
10:50:59.0856 2120 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:50:59.0955 2120 WinRM - ok
10:51:00.0038 2120 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:51:00.0078 2120 Wlansvc - ok
10:51:00.0128 2120 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:51:00.0168 2120 WmiAcpi - ok
10:51:00.0206 2120 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:51:00.0230 2120 wmiApSrv - ok
10:51:00.0270 2120 WMPNetworkSvc - ok
10:51:00.0280 2120 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:51:00.0320 2120 WPCSvc - ok
10:51:00.0350 2120 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:51:00.0390 2120 WPDBusEnum - ok
10:51:00.0420 2120 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:51:00.0470 2120 ws2ifsl - ok
10:51:00.0552 2120 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
10:51:00.0592 2120 wscsvc - ok
10:51:00.0602 2120 WSearch - ok
10:51:00.0702 2120 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:51:00.0782 2120 wuauserv - ok
10:51:00.0824 2120 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:51:00.0894 2120 WudfPf - ok
10:51:00.0914 2120 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:51:00.0954 2120 WUDFRd - ok
10:51:00.0974 2120 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:51:01.0006 2120 wudfsvc - ok
10:51:01.0046 2120 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
10:51:01.0096 2120 WwanSvc - ok
10:51:01.0168 2120 ================ Scan global ===============================
10:51:01.0188 2120 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:51:01.0218 2120 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:51:01.0228 2120 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:51:01.0258 2120 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:51:01.0298 2120 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:51:01.0308 2120 [Global] - ok
10:51:01.0308 2120 ================ Scan MBR ==================================
10:51:01.0328 2120 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:51:01.0632 2120 \Device\Harddisk0\DR0 - ok
10:51:01.0642 2120 ================ Scan VBR ==================================
10:51:01.0642 2120 [ F4C7226356F2E5712F6BD45C06053487 ] \Device\Harddisk0\DR0\Partition1
10:51:01.0642 2120 \Device\Harddisk0\DR0\Partition1 - ok
10:51:01.0662 2120 [ 2CEACF2EF69626BC727321A532C31ECD ] \Device\Harddisk0\DR0\Partition2
10:51:01.0662 2120 \Device\Harddisk0\DR0\Partition2 - ok
10:51:01.0692 2120 [ AAAD0A69DA9D82EE5E0DD5A81C3AD2FA ] \Device\Harddisk0\DR0\Partition3
10:51:01.0702 2120 \Device\Harddisk0\DR0\Partition3 - ok
10:51:01.0702 2120 ============================================================
10:51:01.0702 2120 Scan finished
10:51:01.0702 2120 ============================================================
10:51:01.0732 4996 Detected object count: 3
10:51:01.0732 4996 Actual detected object count: 3
10:51:08.0320 4996 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:51:08.0320 4996 AVM WLAN Connection Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:51:08.0330 4996 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:51:08.0330 4996 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:51:08.0330 4996 Creative Media Toolbox 6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:51:08.0330 4996 Creative Media Toolbox 6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
| Themen zu Sehr hoher physikalischer Speicherverbrauch |
| avira antivir, bluescreen, computer, fehlermeldung, funktionieren, gereinigt, link, malware.packer.hgx1, nichts, problem, rückmeldung, sound, speicher, systemwiederherstellung, trojan.siredef.c, trojan.zbot.ai |
Linear-Darstellung
