BKA 100 € /UKASH:Laptop gesperrt, Kasperski Rescue Disk wird nicht erkannt

markusg · 09.07.2013, 20:22

scheint aber nicht zu klappen, kopiers halt Zeile für Zeile.

Calixus · 09.07.2013, 20:34

Hier nochmal nach "Zeile für Zeile" *seufz*

und Log Zeile für Zeile...

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 09-07-2013 01
Ran by SYSTEM at 2013-07-09 21:30:00 Run:3
Running from I:\
Boot Mode: Recovery
==============================================

HKU\media\Software\Microsoft\Command Processor\\AutoRun => Value deleted successfully.
C:\Users\media\AppData\Local\Temp\nkycluhccthobtqcj.exe => Moved successfully.
HKU\media\Software\Microsoft\Windows\CurrentVersion\Run\\qcgce2mrvjq91kk1e7pnbb19m52fx => Value deleted successfully.
"C:\Users\media\AppData\Local\Temp\nkycluhccthobtqcj.exe" => File/Directory not found.
HKU\media\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
HKU\media\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value not found.
HKU\media\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value not found.
HKU\media\Software\Microsoft\Command Processor\\AutoRun => Value not found.

==== End of Fixlog ====

markusg · 09.07.2013, 20:59

neustarten und upload durchführen bitte, sollte nu klappen.

Calixus · 09.07.2013, 21:02

Nur um sicher zu gehen

:

Infizierten Rechner im normalen Modus neu starten, defogger, OTL ausführen und logs uploaden?

markusg · 09.07.2013, 21:11

nein du sollst, wie unter dem Script geschrieben, neustarten, den Quarantäne ordner packen und hochladen.

Calixus · 09.07.2013, 21:24

Ah jetzt ja

Sorry ... ich bin nicht so der Geek, wie es aussieht

.

Hier das gepackte Verzeichnis:

markusg · 09.07.2013, 21:25

doch nicht hier anhängen oder willst du, dass da jeder drauf zugreift?
lösch den anhang bitte.
dann:
Downloade dir bitte

TDSSKiller.exe und speichere diese Datei auf dem Desktop

Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
Drücke Start Scan
Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Calixus · 09.07.2013, 21:36

So Upload für Merkbefreite ist jetzt auch erledigt

Hier das TDSSKiller - Log:

Code:

ATTFilter

22:33:02.0009 5868  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:33:04.0013 5868  ============================================================
22:33:04.0013 5868  Current date / time: 2013/07/09 22:33:04.0013
22:33:04.0013 5868  SystemInfo:
22:33:04.0013 5868  
22:33:04.0013 5868  OS Version: 6.1.7600 ServicePack: 0.0
22:33:04.0013 5868  Product type: Workstation
22:33:04.0013 5868  ComputerName: HP-ENVY
22:33:04.0014 5868  UserName: media
22:33:04.0014 5868  Windows directory: C:\Windows
22:33:04.0014 5868  System windows directory: C:\Windows
22:33:04.0014 5868  Running under WOW64
22:33:04.0014 5868  Processor architecture: Intel x64
22:33:04.0014 5868  Number of processors: 8
22:33:04.0014 5868  Page size: 0x1000
22:33:04.0014 5868  Boot type: Normal boot
22:33:04.0014 5868  ============================================================
22:33:06.0372 5868  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:33:06.0695 5868  Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:33:06.0705 5868  ============================================================
22:33:06.0705 5868  \Device\Harddisk0\DR0:
22:33:06.0797 5868  MBR partitions:
22:33:06.0797 5868  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
22:33:06.0797 5868  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22D83000
22:33:06.0797 5868  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22DE7000, BlocksNum 0x2613800
22:33:06.0797 5868  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
22:33:06.0797 5868  \Device\Harddisk1\DR1:
22:33:06.0798 5868  MBR partitions:
22:33:06.0798 5868  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
22:33:06.0798 5868  ============================================================
22:33:07.0044 5868  C: <-> \Device\Harddisk0\DR0\Partition2
22:33:07.0082 5868  D: <-> \Device\Harddisk1\DR1\Partition1
22:33:07.0297 5868  E: <-> \Device\Harddisk0\DR0\Partition3
22:33:07.0336 5868  F: <-> \Device\Harddisk0\DR0\Partition4
22:33:07.0336 5868  ============================================================
22:33:07.0336 5868  Initialize success
22:33:07.0336 5868  ============================================================
22:33:10.0985 6652  ============================================================
22:33:10.0985 6652  Scan started
22:33:10.0985 6652  Mode: Manual; 
22:33:10.0985 6652  ============================================================
22:33:14.0797 6652  ================ Scan system memory ========================
22:33:14.0797 6652  System memory - ok
22:33:14.0798 6652  ================ Scan services =============================
22:33:14.0941 6652  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
22:33:14.0943 6652  1394ohci - ok
22:33:15.0062 6652  [ 7EEB488346FBFA3731276C3EE8A8FD9E ] AAV UpdateService C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
22:33:15.0064 6652  AAV UpdateService - ok
22:33:15.0089 6652  [ 1CFFE9C06E66A57DAE1452E449A58240 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
22:33:15.0090 6652  Accelerometer - ok
22:33:15.0124 6652  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
22:33:15.0128 6652  ACPI - ok
22:33:15.0150 6652  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
22:33:15.0150 6652  AcpiPmi - ok
22:33:15.0265 6652  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:33:15.0266 6652  AdobeARMservice - ok
22:33:15.0400 6652  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:33:15.0403 6652  AdobeFlashPlayerUpdateSvc - ok
22:33:15.0440 6652  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
22:33:15.0446 6652  adp94xx - ok
22:33:15.0484 6652  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
22:33:15.0488 6652  adpahci - ok
22:33:15.0527 6652  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
22:33:15.0529 6652  adpu320 - ok
22:33:15.0556 6652  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:33:15.0556 6652  AeLookupSvc - ok
22:33:15.0638 6652  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
22:33:15.0639 6652  AESTFilters - ok
22:33:15.0687 6652  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
22:33:15.0692 6652  AFD - ok
22:33:15.0724 6652  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
22:33:15.0725 6652  agp440 - ok
22:33:15.0744 6652  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:33:15.0746 6652  ALG - ok
22:33:15.0772 6652  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
22:33:15.0773 6652  aliide - ok
22:33:15.0822 6652  [ 4C1E3649C89C7D542CD18ECC5210099D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:33:15.0824 6652  AMD External Events Utility - ok
22:33:15.0932 6652  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
22:33:15.0933 6652  amdide - ok
22:33:15.0985 6652  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
22:33:15.0986 6652  AmdK8 - ok
22:33:16.0220 6652  [ A3C0A15B39F979E8F3EABA901D72ECD7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:33:16.0439 6652  amdkmdag - ok
22:33:16.0606 6652  [ 20F3CD38B107C1BD747C0EA37D450165 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:33:16.0613 6652  amdkmdap - ok
22:33:16.0660 6652  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:33:16.0661 6652  AmdPPM - ok
22:33:16.0763 6652  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:33:16.0765 6652  amdsata - ok
22:33:16.0895 6652  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
22:33:16.0897 6652  amdsbs - ok
22:33:16.0977 6652  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:33:16.0979 6652  amdxata - ok
22:33:17.0150 6652  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
22:33:17.0151 6652  AppID - ok
22:33:17.0261 6652  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:33:17.0262 6652  AppIDSvc - ok
22:33:17.0392 6652  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
22:33:17.0394 6652  Appinfo - ok
22:33:17.0455 6652  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
22:33:17.0457 6652  arc - ok
22:33:17.0524 6652  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
22:33:17.0526 6652  arcsas - ok
22:33:17.0624 6652  ASPI - ok
22:33:17.0756 6652  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:33:17.0804 6652  aspnet_state - ok
22:33:17.0839 6652  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:33:17.0857 6652  AsyncMac - ok
22:33:17.0940 6652  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
22:33:17.0942 6652  atapi - ok
22:33:18.0027 6652  [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:33:18.0028 6652  AtiHDAudioService - ok
22:33:18.0131 6652  [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
22:33:18.0132 6652  AtiHdmiService - ok
22:33:18.0171 6652  [ B4BDE3F758A34658A37DFED3D9783CD8 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
22:33:18.0172 6652  atksgt - ok
22:33:18.0304 6652  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:33:18.0315 6652  AudioEndpointBuilder - ok
22:33:18.0348 6652  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:33:18.0352 6652  AudioSrv - ok
22:33:18.0388 6652  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:33:18.0390 6652  AxInstSV - ok
22:33:18.0422 6652  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
22:33:18.0427 6652  b06bdrv - ok
22:33:18.0457 6652  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:33:18.0461 6652  b57nd60a - ok
22:33:18.0541 6652  [ E046CB1958CEBFFF7866E56588B10FC1 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
22:33:18.0867 6652  BCM43XX - ok
22:33:18.0921 6652  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:33:18.0923 6652  BDESVC - ok
22:33:18.0996 6652  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:33:18.0997 6652  Beep - ok
22:33:19.0046 6652  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
22:33:19.0054 6652  BFE - ok
22:33:19.0440 6652  [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\BASHDefs\20130702.001\BHDrvx64.sys
22:33:19.0453 6652  BHDrvx64 - ok
22:33:19.0488 6652  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
22:33:19.0505 6652  BITS - ok
22:33:19.0535 6652  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:33:19.0536 6652  blbdrive - ok
22:33:19.0581 6652  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:33:19.0582 6652  bowser - ok
22:33:19.0602 6652  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:33:19.0603 6652  BrFiltLo - ok
22:33:19.0609 6652  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:33:19.0609 6652  BrFiltUp - ok
22:33:19.0650 6652  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
22:33:19.0652 6652  Browser - ok
22:33:19.0678 6652  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:33:19.0681 6652  Brserid - ok
22:33:19.0720 6652  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:33:19.0721 6652  BrSerWdm - ok
22:33:19.0733 6652  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:33:19.0734 6652  BrUsbMdm - ok
22:33:19.0740 6652  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:33:19.0741 6652  BrUsbSer - ok
22:33:19.0783 6652  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
22:33:19.0784 6652  BthEnum - ok
22:33:19.0807 6652  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:33:19.0808 6652  BTHMODEM - ok
22:33:19.0826 6652  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:33:19.0828 6652  BthPan - ok
22:33:20.0118 6652  [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
22:33:20.0124 6652  BTHPORT - ok
22:33:20.0208 6652  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:33:20.0210 6652  bthserv - ok
22:33:20.0243 6652  [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
22:33:20.0245 6652  BTHUSB - ok
22:33:20.0366 6652  [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
22:33:20.0368 6652  btwaudio - ok
22:33:20.0428 6652  [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
22:33:20.0430 6652  btwavdt - ok
22:33:20.0523 6652  [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:33:20.0535 6652  btwdins - ok
22:33:20.0563 6652  [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
22:33:20.0564 6652  btwl2cap - ok
22:33:20.0570 6652  [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
22:33:20.0571 6652  btwrchid - ok
22:33:20.0655 6652  [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys
22:33:20.0657 6652  ccSet_NIS - ok
22:33:20.0684 6652  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:33:20.0686 6652  cdfs - ok
22:33:20.0717 6652  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:33:20.0719 6652  cdrom - ok
22:33:20.0752 6652  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:33:20.0753 6652  CertPropSvc - ok
22:33:20.0775 6652  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:33:20.0776 6652  circlass - ok
22:33:20.0790 6652  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:33:20.0795 6652  CLFS - ok
22:33:20.0840 6652  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:33:20.0842 6652  clr_optimization_v2.0.50727_32 - ok
22:33:20.0874 6652  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:33:20.0875 6652  clr_optimization_v2.0.50727_64 - ok
22:33:20.0989 6652  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:33:21.0372 6652  clr_optimization_v4.0.30319_32 - ok
22:33:21.0395 6652  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:33:21.0424 6652  clr_optimization_v4.0.30319_64 - ok
22:33:21.0481 6652  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:33:21.0482 6652  CmBatt - ok
22:33:21.0494 6652  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
22:33:21.0495 6652  cmdide - ok
22:33:21.0545 6652  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
22:33:21.0550 6652  CNG - ok
22:33:21.0578 6652  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:33:21.0579 6652  Compbatt - ok
22:33:21.0589 6652  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:33:21.0590 6652  CompositeBus - ok
22:33:21.0599 6652  COMSysApp - ok
22:33:21.0634 6652  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
22:33:21.0635 6652  crcdisk - ok
22:33:21.0676 6652  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:33:21.0678 6652  CryptSvc - ok
22:33:21.0705 6652  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:33:21.0711 6652  DcomLaunch - ok
22:33:21.0741 6652  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:33:21.0745 6652  defragsvc - ok
22:33:21.0786 6652  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:33:21.0788 6652  DfsC - ok
22:33:21.0810 6652  dgderdrv - ok
22:33:21.0829 6652  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:33:21.0852 6652  Dhcp - ok
22:33:21.0910 6652  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:33:21.0910 6652  discache - ok
22:33:21.0947 6652  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
22:33:21.0948 6652  Disk - ok
22:33:21.0986 6652  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:33:21.0988 6652  Dnscache - ok
22:33:22.0004 6652  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
22:33:22.0008 6652  dot3svc - ok
22:33:22.0063 6652  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
22:33:22.0065 6652  Dot4 - ok
22:33:22.0113 6652  [ 85135AD27E79B689335C08167D917CDE ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:33:22.0115 6652  Dot4Print - ok
22:33:22.0152 6652  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
22:33:22.0153 6652  dot4usb - ok
22:33:22.0166 6652  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
22:33:22.0168 6652  DPS - ok
22:33:22.0188 6652  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:33:22.0188 6652  drmkaud - ok
22:33:22.0212 6652  [ A298AEA9FCA253E7EFF040A08C7C6376 ] DVMIO           C:\Windows\system32\DRIVERS\dvmio.sys
22:33:22.0213 6652  DVMIO - ok
22:33:22.0294 6652  [ 5ED4E98390C0B6D90B5FE2B9C188EEF3 ] DvmMDES         C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
22:33:22.0296 6652  DvmMDES - ok
22:33:22.0320 6652  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:33:22.0342 6652  DXGKrnl - ok
22:33:22.0365 6652  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:33:22.0367 6652  EapHost - ok
22:33:22.0440 6652  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
22:33:22.0499 6652  ebdrv - ok
22:33:22.0591 6652  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:33:22.0596 6652  eeCtrl - ok
22:33:22.0638 6652  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
22:33:22.0640 6652  EFS - ok
22:33:22.0691 6652  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:33:22.0698 6652  ehRecvr - ok
22:33:22.0726 6652  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:33:22.0728 6652  ehSched - ok
22:33:22.0782 6652  [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
22:33:22.0783 6652  ElbyCDIO - ok
22:33:22.0817 6652  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
22:33:22.0823 6652  elxstor - ok
22:33:22.0889 6652  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:33:22.0891 6652  EraserUtilRebootDrv - ok
22:33:22.0909 6652  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
22:33:22.0910 6652  ErrDev - ok
22:33:22.0945 6652  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:33:22.0949 6652  EventSystem - ok
22:33:22.0981 6652  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:33:22.0983 6652  exfat - ok
22:33:22.0994 6652  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:33:22.0997 6652  fastfat - ok
22:33:23.0026 6652  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
22:33:23.0034 6652  Fax - ok
22:33:23.0079 6652  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:33:23.0081 6652  fdc - ok
22:33:23.0094 6652  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:33:23.0094 6652  fdPHost - ok
22:33:23.0109 6652  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:33:23.0110 6652  FDResPub - ok
22:33:23.0118 6652  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:33:23.0119 6652  FileInfo - ok
22:33:23.0126 6652  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:33:23.0126 6652  Filetrace - ok
22:33:23.0159 6652  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:33:23.0160 6652  flpydisk - ok
22:33:23.0177 6652  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:33:23.0181 6652  FltMgr - ok
22:33:23.0240 6652  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
22:33:23.0263 6652  FontCache - ok
22:33:23.0312 6652  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:33:23.0313 6652  FontCache3.0.0.0 - ok
22:33:23.0323 6652  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:33:23.0324 6652  FsDepends - ok
22:33:23.0357 6652  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:33:23.0359 6652  Fs_Rec - ok
22:33:23.0404 6652  [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:33:23.0406 6652  fvevol - ok
22:33:23.0433 6652  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
22:33:23.0435 6652  gagp30kx - ok
22:33:23.0473 6652  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
22:33:23.0480 6652  gpsvc - ok
22:33:23.0593 6652  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:33:23.0595 6652  gupdate - ok
22:33:23.0610 6652  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:33:23.0611 6652  gupdatem - ok
22:33:23.0621 6652  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:33:23.0622 6652  hcw85cir - ok
22:33:23.0656 6652  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:33:23.0660 6652  HdAudAddService - ok
22:33:23.0696 6652  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:33:23.0697 6652  HDAudBus - ok
22:33:23.0788 6652  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
22:33:23.0789 6652  HECIx64 - ok
22:33:23.0799 6652  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
22:33:23.0801 6652  HidBatt - ok
22:33:23.0851 6652  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
22:33:23.0853 6652  HidBth - ok
22:33:23.0880 6652  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:33:23.0882 6652  HidIr - ok
22:33:23.0899 6652  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
22:33:23.0900 6652  hidserv - ok
22:33:23.0948 6652  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:33:23.0949 6652  HidUsb - ok
22:33:23.0978 6652  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:33:23.0980 6652  hkmsvc - ok
22:33:23.0996 6652  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:33:23.0999 6652  HomeGroupListener - ok
22:33:24.0059 6652  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:33:24.0062 6652  HomeGroupProvider - ok
22:33:24.0180 6652  [ C84BCC03858DAEAC4DB1E95EFCCE1934 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
22:33:24.0182 6652  HP Health Check Service - ok
22:33:24.0291 6652  [ A2DE0A67C77EBC6DFAD3D55232790ADD ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
22:33:24.0292 6652  HP Wireless Assistant Service - ok
22:33:24.0315 6652  [ CECF7CB10E778F921CF41858C653EA15 ] hpdoccardsvc    C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
22:33:24.0317 6652  hpdoccardsvc - ok
22:33:24.0388 6652  [ 05712FDDBD45A5864EB326FAABC6A4E3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
22:33:24.0389 6652  hpdskflt - ok
22:33:24.0490 6652  [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:33:24.0494 6652  hpqcxs08 - ok
22:33:24.0576 6652  [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:33:24.0577 6652  hpqddsvc - ok
22:33:24.0610 6652  [ EF3EA06057132138B4E5895A61601DBE ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
22:33:24.0612 6652  hpqwmiex - ok
22:33:24.0643 6652  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
22:33:24.0644 6652  HpSAMD - ok
22:33:24.0700 6652  [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:33:24.0734 6652  HPSLPSVC - ok
22:33:24.0749 6652  [ AA036CC5F5221D9B915F4D4DCE74BA9A ] hpsrv           C:\Windows\system32\Hpservice.exe
22:33:24.0750 6652  hpsrv - ok
22:33:24.0798 6652  [ B6492D01712A22FF3FEA25A999DBD321 ] HPWMISVC        C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
22:33:24.0799 6652  HPWMISVC - ok
22:33:24.0858 6652  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:33:24.0865 6652  HTTP - ok
22:33:24.0883 6652  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:33:24.0884 6652  hwpolicy - ok
22:33:24.0927 6652  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:33:24.0929 6652  i8042prt - ok
22:33:24.0958 6652  [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
22:33:24.0961 6652  iaStor - ok
22:33:25.0009 6652  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:33:25.0014 6652  iaStorV - ok
22:33:25.0063 6652  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:33:25.0074 6652  idsvc - ok
22:33:25.0199 6652  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\IPSDefs\20130705.001\IDSvia64.sys
22:33:25.0202 6652  IDSVia64 - ok
22:33:25.0771 6652  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:33:25.0875 6652  igfx - ok
22:33:25.0942 6652  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
22:33:25.0943 6652  iirsp - ok
22:33:26.0009 6652  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
22:33:26.0032 6652  IKEEXT - ok
22:33:26.0071 6652  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
22:33:26.0072 6652  intelide - ok
22:33:26.0141 6652  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:33:26.0143 6652  intelppm - ok
22:33:26.0189 6652  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:33:26.0191 6652  IPBusEnum - ok
22:33:26.0303 6652  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:33:26.0304 6652  IpFilterDriver - ok
22:33:26.0406 6652  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:33:26.0411 6652  iphlpsvc - ok
22:33:26.0433 6652  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:33:26.0435 6652  IPMIDRV - ok
22:33:26.0464 6652  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:33:26.0466 6652  IPNAT - ok
22:33:26.0542 6652  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:33:26.0543 6652  IRENUM - ok
22:33:26.0620 6652  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
22:33:26.0631 6652  isapnp - ok
22:33:26.0684 6652  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
22:33:26.0689 6652  iScsiPrt - ok
22:33:26.0753 6652  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:33:26.0754 6652  kbdclass - ok
22:33:26.0796 6652  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:33:26.0797 6652  kbdhid - ok
22:33:26.0821 6652  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
22:33:26.0822 6652  KeyIso - ok
22:33:26.0886 6652  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:33:26.0888 6652  KSecDD - ok
22:33:26.0904 6652  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:33:26.0907 6652  KSecPkg - ok
22:33:26.0933 6652  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:33:26.0934 6652  ksthunk - ok
22:33:26.0966 6652  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:33:26.0971 6652  KtmRm - ok
22:33:27.0092 6652  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:33:27.0095 6652  LanmanServer - ok
22:33:27.0211 6652  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:33:27.0213 6652  LanmanWorkstation - ok
22:33:27.0476 6652  [ 955982BF4421B77722196552B62E8DC2 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
22:33:27.0477 6652  lirsgt - ok
22:33:27.0632 6652  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:33:27.0634 6652  lltdio - ok
22:33:27.0723 6652  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:33:27.0727 6652  lltdsvc - ok
22:33:27.0787 6652  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:33:27.0789 6652  lmhosts - ok
22:33:28.0318 6652  [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:33:28.0402 6652  LMS - ok
22:33:29.0011 6652  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
22:33:29.0013 6652  LSI_FC - ok
22:33:29.0048 6652  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
22:33:29.0049 6652  LSI_SAS - ok
22:33:29.0087 6652  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:33:29.0107 6652  LSI_SAS2 - ok
22:33:29.0147 6652  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:33:29.0149 6652  LSI_SCSI - ok
22:33:29.0212 6652  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:33:29.0214 6652  luafv - ok
22:33:29.0298 6652  [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
22:33:29.0299 6652  MBAMProtector - ok
22:33:29.0473 6652  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:33:29.0477 6652  MBAMScheduler - ok
22:33:29.0499 6652  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:33:29.0509 6652  MBAMService - ok
22:33:29.0558 6652  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:33:29.0561 6652  Mcx2Svc - ok
22:33:29.0577 6652  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
22:33:29.0590 6652  megasas - ok
22:33:29.0633 6652  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
22:33:29.0638 6652  MegaSR - ok
22:33:29.0665 6652  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:33:29.0666 6652  MMCSS - ok
22:33:29.0700 6652  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:33:29.0701 6652  Modem - ok
22:33:29.0729 6652  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:33:29.0729 6652  monitor - ok
22:33:29.0797 6652  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:33:29.0799 6652  mouclass - ok
22:33:29.0885 6652  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:33:29.0886 6652  mouhid - ok
22:33:30.0026 6652  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:33:30.0029 6652  mountmgr - ok
22:33:30.0062 6652  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
22:33:30.0065 6652  mpio - ok
22:33:30.0116 6652  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:33:30.0118 6652  mpsdrv - ok
22:33:30.0553 6652  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:33:30.0569 6652  MpsSvc - ok
22:33:30.0590 6652  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:33:30.0592 6652  MRxDAV - ok
22:33:30.0653 6652  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:33:30.0655 6652  mrxsmb - ok
22:33:30.0704 6652  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:33:30.0708 6652  mrxsmb10 - ok
22:33:30.0741 6652  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:33:30.0743 6652  mrxsmb20 - ok
22:33:30.0764 6652  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
22:33:30.0765 6652  msahci - ok
22:33:30.0791 6652  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
22:33:30.0793 6652  msdsm - ok
22:33:30.0809 6652  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:33:30.0812 6652  MSDTC - ok
22:33:30.0840 6652  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:33:30.0841 6652  Msfs - ok
22:33:30.0861 6652  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:33:30.0862 6652  mshidkmdf - ok
22:33:30.0876 6652  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
22:33:30.0877 6652  msisadrv - ok
22:33:30.0903 6652  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:33:30.0907 6652  MSiSCSI - ok
22:33:30.0912 6652  msiserver - ok
22:33:30.0936 6652  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:33:30.0937 6652  MSKSSRV - ok
22:33:30.0945 6652  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:33:30.0946 6652  MSPCLOCK - ok
22:33:30.0951 6652  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:33:30.0952 6652  MSPQM - ok
22:33:30.0978 6652  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:33:30.0983 6652  MsRPC - ok
22:33:31.0017 6652  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:33:31.0018 6652  mssmbios - ok
22:33:31.0029 6652  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:33:31.0030 6652  MSTEE - ok
22:33:31.0037 6652  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
22:33:31.0038 6652  MTConfig - ok
22:33:31.0051 6652  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:33:31.0052 6652  Mup - ok
22:33:31.0076 6652  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
22:33:31.0084 6652  napagent - ok
22:33:31.0122 6652  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:33:31.0127 6652  NativeWifiP - ok
22:33:31.0220 6652  [ 56540E526B46E379A476FB5BC381B290 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\VirusDefs\20130709.002\ENG64.SYS
22:33:31.0222 6652  NAVENG - ok
22:33:31.0851 6652  [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\VirusDefs\20130709.002\EX64.SYS
22:33:31.0862 6652  NAVEX15 - ok
22:33:31.0948 6652  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:33:31.0973 6652  NDIS - ok
22:33:32.0007 6652  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:33:32.0008 6652  NdisCap - ok
22:33:32.0030 6652  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:33:32.0031 6652  NdisTapi - ok
22:33:32.0051 6652  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:33:32.0052 6652  Ndisuio - ok
22:33:32.0068 6652  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:33:32.0072 6652  NdisWan - ok
22:33:32.0089 6652  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:33:32.0091 6652  NDProxy - ok
22:33:32.0221 6652  [ B6EB664BD5E25413E730BCB54CF64272 ] NeroMediaHomeService.4 C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
22:33:32.0224 6652  NeroMediaHomeService.4 - ok
22:33:32.0287 6652  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:33:32.0289 6652  Net Driver HPZ12 - ok
22:33:32.0313 6652  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:33:32.0315 6652  NetBIOS - ok
22:33:32.0334 6652  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:33:32.0339 6652  NetBT - ok
22:33:32.0363 6652  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
22:33:32.0365 6652  Netlogon - ok
22:33:32.0404 6652  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:33:32.0412 6652  Netman - ok
22:33:32.0460 6652  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:33:32.0481 6652  NetMsmqActivator - ok
22:33:32.0510 6652  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:33:32.0512 6652  NetPipeActivator - ok
22:33:32.0568 6652  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:33:32.0577 6652  netprofm - ok
22:33:32.0585 6652  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:33:32.0587 6652  NetTcpActivator - ok
22:33:32.0595 6652  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:33:32.0597 6652  NetTcpPortSharing - ok
22:33:32.0817 6652  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
22:33:33.0272 6652  netw5v64 - ok
22:33:33.0322 6652  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
22:33:33.0324 6652  nfrd960 - ok
22:33:33.0416 6652  [ 1BF9D6476061B31CD7FC2BF848529A56 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
22:33:33.0418 6652  NIS - ok
22:33:33.0461 6652  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:33:33.0468 6652  NlaSvc - ok
22:33:33.0489 6652  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:33:33.0490 6652  Npfs - ok
22:33:33.0499 6652  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:33:33.0502 6652  nsi - ok
22:33:33.0517 6652  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:33:33.0518 6652  nsiproxy - ok
22:33:33.0593 6652  [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:33:33.0637 6652  Ntfs - ok
22:33:33.0685 6652  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:33:33.0688 6652  Null - ok
22:33:33.0713 6652  [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
22:33:33.0716 6652  nusb3hub - ok
22:33:33.0732 6652  [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:33:33.0736 6652  nusb3xhc - ok
22:33:33.0781 6652  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:33:33.0784 6652  nvraid - ok
22:33:33.0828 6652  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:33:33.0832 6652  nvstor - ok
22:33:33.0871 6652  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
22:33:33.0873 6652  nv_agp - ok
22:33:33.0897 6652  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
22:33:33.0899 6652  ohci1394 - ok
22:33:33.0921 6652  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:33:33.0928 6652  p2pimsvc - ok
22:33:33.0957 6652  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:33:33.0966 6652  p2psvc - ok
22:33:34.0022 6652  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:33:34.0025 6652  Parport - ok
22:33:34.0066 6652  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:33:34.0068 6652  partmgr - ok
22:33:34.0087 6652  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:33:34.0093 6652  PcaSvc - ok
22:33:34.0109 6652  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
22:33:34.0113 6652  pci - ok
22:33:34.0124 6652  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
22:33:34.0126 6652  pciide - ok
22:33:34.0157 6652  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:33:34.0161 6652  pcmcia - ok
22:33:34.0176 6652  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:33:34.0178 6652  pcw - ok
22:33:34.0205 6652  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:33:34.0225 6652  PEAUTH - ok
22:33:34.0482 6652  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:33:34.0485 6652  PerfHost - ok
22:33:34.0745 6652  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
22:33:34.0770 6652  pla - ok
22:33:34.0855 6652  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:33:34.0865 6652  PlugPlay - ok
22:33:34.0934 6652  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:33:34.0937 6652  Pml Driver HPZ12 - ok
22:33:34.0964 6652  PnkBstrA - ok
22:33:34.0978 6652  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:33:34.0982 6652  PNRPAutoReg - ok
22:33:35.0005 6652  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:33:35.0011 6652  PNRPsvc - ok
22:33:35.0043 6652  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
22:33:35.0045 6652  Point64 - ok
22:33:35.0078 6652  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:33:35.0088 6652  PolicyAgent - ok
22:33:35.0142 6652  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:33:35.0148 6652  Power - ok
22:33:35.0175 6652  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:33:35.0178 6652  PptpMiniport - ok
22:33:35.0195 6652  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:33:35.0197 6652  Processor - ok
22:33:35.0239 6652  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
22:33:35.0244 6652  ProfSvc - ok
22:33:35.0271 6652  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:33:35.0273 6652  ProtectedStorage - ok
22:33:35.0288 6652  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:33:35.0291 6652  Psched - ok
22:33:35.0358 6652  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
22:33:35.0386 6652  ql2300 - ok
22:33:35.0440 6652  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
22:33:35.0443 6652  ql40xx - ok
22:33:35.0464 6652  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:33:35.0470 6652  QWAVE - ok
22:33:35.0481 6652  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:33:35.0483 6652  QWAVEdrv - ok
22:33:35.0493 6652  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:33:35.0494 6652  RasAcd - ok
22:33:35.0515 6652  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:33:35.0517 6652  RasAgileVpn - ok
22:33:35.0531 6652  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:33:35.0535 6652  RasAuto - ok
22:33:35.0553 6652  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:33:35.0555 6652  Rasl2tp - ok
22:33:35.0587 6652  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
22:33:35.0594 6652  RasMan - ok
22:33:35.0609 6652  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:33:35.0611 6652  RasPppoe - ok
22:33:35.0627 6652  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:33:35.0629 6652  RasSstp - ok
22:33:35.0645 6652  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:33:35.0650 6652  rdbss - ok
22:33:35.0672 6652  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:33:35.0673 6652  rdpbus - ok
22:33:35.0686 6652  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:33:35.0686 6652  RDPCDD - ok
22:33:35.0706 6652  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:33:35.0706 6652  RDPENCDD - ok
22:33:35.0725 6652  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:33:35.0726 6652  RDPREFMP - ok
22:33:35.0766 6652  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:33:35.0770 6652  RDPWD - ok
22:33:35.0790 6652  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:33:35.0794 6652  rdyboost - ok
22:33:35.0816 6652  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:33:35.0819 6652  RemoteAccess - ok
22:33:35.0835 6652  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:33:35.0840 6652  RemoteRegistry - ok
22:33:35.0863 6652  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:33:35.0866 6652  RFCOMM - ok
22:33:35.0881 6652  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:33:35.0884 6652  RpcEptMapper - ok
22:33:35.0899 6652  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:33:35.0901 6652  RpcLocator - ok
22:33:35.0922 6652  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
22:33:35.0929 6652  RpcSs - ok
22:33:35.0940 6652  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:33:35.0943 6652  rspndr - ok
22:33:35.0979 6652  [ 907C4464381B5EBDFDC60F6C7D0DEDFC ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
22:33:35.0983 6652  RSUSBSTOR - ok
22:33:36.0016 6652  [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:33:36.0020 6652  RTL8167 - ok
22:33:36.0026 6652  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
22:33:36.0028 6652  SamSs - ok
22:33:36.0075 6652  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
22:33:36.0077 6652  sbp2port - ok
22:33:36.0101 6652  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:33:36.0107 6652  SCardSvr - ok
22:33:36.0121 6652  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:33:36.0123 6652  scfilter - ok
22:33:36.0164 6652  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
22:33:36.0186 6652  Schedule - ok
22:33:36.0243 6652  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:33:36.0244 6652  SCPolicySvc - ok
22:33:36.0260 6652  [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
22:33:36.0263 6652  sdbus - ok
22:33:36.0279 6652  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:33:36.0284 6652  SDRSVC - ok
22:33:36.0339 6652  [ B85BBDBB3B429C5DF976EA9D710C2E12 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
22:33:36.0342 6652  SeaPort - ok
22:33:36.0366 6652  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:33:36.0367 6652  secdrv - ok
22:33:36.0382 6652  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
22:33:36.0385 6652  seclogon - ok
22:33:36.0405 6652  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
22:33:36.0408 6652  SENS - ok
22:33:36.0429 6652  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:33:36.0433 6652  SensrSvc - ok
22:33:36.0457 6652  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:33:36.0458 6652  Serenum - ok
22:33:36.0470 6652  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:33:36.0472 6652  Serial - ok
22:33:36.0489 6652  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
22:33:36.0490 6652  sermouse - ok
22:33:36.0515 6652  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
22:33:36.0525 6652  SessionEnv - ok
22:33:36.0538 6652  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
22:33:36.0538 6652  sffdisk - ok
22:33:36.0548 6652  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:33:36.0549 6652  sffp_mmc - ok
22:33:36.0560 6652  [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
22:33:36.0560 6652  sffp_sd - ok
22:33:36.0564 6652  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
22:33:36.0565 6652  sfloppy - ok
22:33:36.0587 6652  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:33:36.0590 6652  SharedAccess - ok
22:33:36.0606 6652  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:33:36.0611 6652  ShellHWDetection - ok
22:33:36.0627 6652  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:33:36.0628 6652  SiSRaid2 - ok
22:33:36.0642 6652  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
22:33:36.0643 6652  SiSRaid4 - ok
22:33:36.0690 6652  [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:33:36.0693 6652  SkypeUpdate - ok
22:33:36.0712 6652  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:33:36.0715 6652  Smb - ok
22:33:36.0732 6652  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:33:36.0736 6652  SNMPTRAP - ok
22:33:36.0745 6652  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:33:36.0746 6652  spldr - ok
22:33:36.0795 6652  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
22:33:36.0799 6652  Spooler - ok
22:33:36.0950 6652  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:33:37.0013 6652  sppsvc - ok
22:33:37.0027 6652  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:33:37.0030 6652  sppuinotify - ok
22:33:37.0153 6652  [ 2FD9346F9D76CB4192D37329CFA47A82 ] SRTSP           C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS
22:33:37.0166 6652  SRTSP - ok
22:33:37.0208 6652  [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX          C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS
22:33:37.0209 6652  SRTSPX - ok
22:33:37.0261 6652  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:33:37.0269 6652  srv - ok
22:33:37.0297 6652  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:33:37.0305 6652  srv2 - ok
22:33:37.0328 6652  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
22:33:37.0333 6652  SrvHsfHDA - ok
22:33:37.0378 6652  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
22:33:37.0420 6652  SrvHsfV92 - ok
22:33:37.0447 6652  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
22:33:37.0457 6652  SrvHsfWinac - ok
22:33:37.0488 6652  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:33:37.0491 6652  srvnet - ok
22:33:37.0519 6652  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:33:37.0525 6652  SSDPSRV - ok
22:33:37.0538 6652  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:33:37.0541 6652  SstpSvc - ok
22:33:37.0641 6652  [ 5752BACEF32A6803528D05A6FB266758 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
22:33:37.0644 6652  STacSV - ok
22:33:37.0685 6652  Steam Client Service - ok
22:33:37.0701 6652  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
22:33:37.0702 6652  stexstor - ok
22:33:37.0739 6652  [ 936A4D05F7A790B8AAB3B6BE61651E0E ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
22:33:37.0748 6652  STHDA - ok
22:33:37.0795 6652  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
22:33:37.0797 6652  StillCam - ok
22:33:37.0839 6652  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
22:33:37.0852 6652  stisvc - ok
22:33:37.0883 6652  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:33:37.0885 6652  swenum - ok
22:33:37.0937 6652  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:33:37.0949 6652  swprv - ok
22:33:38.0033 6652  [ 52DC0048D667757A8A2E4C87182890AC ] SymDS           C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS
22:33:38.0041 6652  SymDS - ok
22:33:38.0138 6652  [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA          C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS
22:33:38.0172 6652  SymEFA - ok
22:33:38.0217 6652  [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
22:33:38.0222 6652  SymEvent - ok
22:33:38.0289 6652  [ BFD99DC6C7FEB2F8B20D488FDF3A9A55 ] SymIM           C:\Windows\system32\DRIVERS\SymIMv.sys
22:33:38.0291 6652  SymIM - ok
22:33:38.0335 6652  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS
22:33:38.0340 6652  SymIRON - ok
22:33:38.0376 6652  [ 9CDCA70485BD6B9D230365F67C31F132 ] SymNetS         C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS
22:33:38.0383 6652  SymNetS - ok
22:33:38.0430 6652  [ 7369D6268E21481A8DCB8E94063C47B1 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:33:38.0436 6652  SynTP - ok
22:33:38.0489 6652  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
22:33:38.0540 6652  SysMain - ok
22:33:38.0555 6652  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:33:38.0558 6652  TabletInputService - ok
22:33:38.0572 6652  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:33:38.0575 6652  TapiSrv - ok
22:33:38.0591 6652  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:33:38.0592 6652  TBS - ok
22:33:38.0665 6652  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:33:38.0714 6652  Tcpip - ok
22:33:38.0770 6652  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:33:38.0785 6652  TCPIP6 - ok
22:33:38.0820 6652  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:33:38.0822 6652  tcpipreg - ok
22:33:38.0834 6652  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:33:38.0836 6652  TDPIPE - ok
22:33:38.0871 6652  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:33:38.0872 6652  TDTCP - ok
22:33:38.0888 6652  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:33:38.0890 6652  tdx - ok
22:33:38.0915 6652  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:33:38.0917 6652  TermDD - ok
22:33:38.0951 6652  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
22:33:38.0977 6652  TermService - ok
22:33:39.0006 6652  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:33:39.0008 6652  Themes - ok
22:33:39.0032 6652  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:33:39.0034 6652  THREADORDER - ok
22:33:39.0044 6652  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:33:39.0047 6652  TrkWks - ok
22:33:39.0095 6652  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:33:39.0096 6652  TrustedInstaller - ok
22:33:39.0111 6652  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:33:39.0112 6652  tssecsrv - ok
22:33:39.0143 6652  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:33:39.0145 6652  tunnel - ok
22:33:39.0167 6652  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
22:33:39.0169 6652  uagp35 - ok
22:33:39.0197 6652  [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:33:39.0202 6652  udfs - ok
22:33:39.0240 6652  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:33:39.0243 6652  UI0Detect - ok
22:33:39.0294 6652  [ FDB805B2749DACE784BD05125979B478 ] uigxrdr         C:\Windows\system32\DRIVERS\uigxrdr.sys
22:33:39.0297 6652  uigxrdr - ok
22:33:39.0320 6652  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
22:33:39.0322 6652  uliagpkx - ok
22:33:39.0350 6652  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:33:39.0352 6652  umbus - ok
22:33:39.0375 6652  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:33:39.0377 6652  UmPass - ok
22:33:39.0880 6652  [ 0FADD949576A164B4E51E716F46B6C33 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:33:39.0903 6652  UNS - ok
22:33:40.0006 6652  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:33:40.0015 6652  upnphost - ok
22:33:40.0074 6652  [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:33:40.0077 6652  usbaudio - ok
22:33:40.0113 6652  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:33:40.0115 6652  usbccgp - ok
22:33:40.0135 6652  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
22:33:40.0137 6652  usbcir - ok
22:33:40.0171 6652  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:33:40.0173 6652  usbehci - ok
22:33:40.0275 6652  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:33:40.0281 6652  usbhub - ok
22:33:40.0304 6652  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:33:40.0306 6652  usbohci - ok
22:33:40.0316 6652  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:33:40.0318 6652  usbprint - ok
22:33:40.0362 6652  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:33:40.0383 6652  usbscan - ok
22:33:40.0409 6652  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:33:40.0412 6652  USBSTOR - ok
22:33:40.0423 6652  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:33:40.0424 6652  usbuhci - ok
22:33:40.0453 6652  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
22:33:40.0457 6652  usbvideo - ok
22:33:40.0472 6652  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:33:40.0475 6652  UxSms - ok
22:33:40.0488 6652  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
22:33:40.0490 6652  VaultSvc - ok
22:33:40.0533 6652  [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
22:33:40.0534 6652  VClone - ok
22:33:40.0590 6652  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
22:33:40.0592 6652  vdrvroot - ok
22:33:40.0623 6652  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
22:33:40.0668 6652  vds - ok
22:33:40.0716 6652  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:33:40.0718 6652  vga - ok
22:33:40.0740 6652  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:33:40.0742 6652  VgaSave - ok
22:33:40.0766 6652  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
22:33:40.0771 6652  vhdmp - ok
22:33:40.0780 6652  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
22:33:40.0782 6652  viaide - ok
22:33:40.0788 6652  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
22:33:40.0790 6652  volmgr - ok
22:33:40.0805 6652  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:33:40.0808 6652  volmgrx - ok
22:33:40.0900 6652  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:33:40.0906 6652  volsnap - ok
22:33:40.0959 6652  [ ABD9B4A7E2D0AE51A3B8DF1AF3152D61 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
22:33:40.0963 6652  vpcbus - ok
22:33:41.0003 6652  [ 8ACDA395841538CE9713A67FE8B2A3EB ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
22:33:41.0005 6652  vpcnfltr - ok
22:33:41.0047 6652  [ 31924E31BC315773E6D149B157DB46D5 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
22:33:41.0050 6652  vpcusb - ok
22:33:41.0151 6652  [ C5B651E52540E6F46DA66574C74B4898 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
22:33:41.0174 6652  vpcvmm - ok
22:33:41.0200 6652  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
22:33:41.0204 6652  vsmraid - ok
22:33:41.0292 6652  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
22:33:41.0326 6652  VSS - ok
22:33:41.0337 6652  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:33:41.0338 6652  vwifibus - ok
22:33:41.0367 6652  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:33:41.0369 6652  vwififlt - ok
22:33:41.0387 6652  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:33:41.0387 6652  vwifimp - ok
22:33:41.0412 6652  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:33:41.0418 6652  W32Time - ok
22:33:41.0434 6652  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
22:33:41.0435 6652  WacomPen - ok
22:33:41.0457 6652  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:33:41.0459 6652  WANARP - ok
22:33:41.0462 6652  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:33:41.0463 6652  Wanarpv6 - ok
22:33:41.0529 6652  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:33:41.0565 6652  WatAdminSvc - ok
22:33:41.0632 6652  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
22:33:41.0667 6652  wbengine - ok
22:33:41.0687 6652  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:33:41.0692 6652  WbioSrvc - ok
22:33:41.0801 6652  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:33:41.0806 6652  wcncsvc - ok
22:33:41.0832 6652  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:33:41.0835 6652  WcsPlugInService - ok
22:33:41.0908 6652  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
22:33:41.0909 6652  Wd - ok
22:33:41.0963 6652  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:33:41.0981 6652  Wdf01000 - ok
22:33:42.0005 6652  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:33:42.0008 6652  WdiServiceHost - ok
22:33:42.0012 6652  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:33:42.0015 6652  WdiSystemHost - ok
22:33:42.0040 6652  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
22:33:42.0045 6652  WebClient - ok
22:33:42.0070 6652  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:33:42.0074 6652  Wecsvc - ok
22:33:42.0084 6652  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:33:42.0087 6652  wercplsupport - ok
22:33:42.0104 6652  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:33:42.0107 6652  WerSvc - ok
22:33:42.0121 6652  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:33:42.0121 6652  WfpLwf - ok
22:33:42.0135 6652  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:33:42.0136 6652  WIMMount - ok
22:33:42.0172 6652  [ 8258726D076C8FFF994F468712DDFBAB ] WindowBlinds    C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe
22:33:42.0174 6652  WindowBlinds - ok
22:33:42.0181 6652  WinHttpAutoProxySvc - ok
22:33:42.0682 6652  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:33:42.0685 6652  Winmgmt - ok
22:33:42.0760 6652  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:33:42.0859 6652  WinRM - ok
22:33:42.0927 6652  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:33:42.0928 6652  WinUsb - ok
22:33:42.0962 6652  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:33:42.0982 6652  Wlansvc - ok
22:33:43.0111 6652  [ 98F138897EF4246381D197CB81846D62 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:33:43.0165 6652  wlidsvc - ok
22:33:43.0208 6652  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:33:43.0209 6652  WmiAcpi - ok
22:33:43.0270 6652  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:33:43.0273 6652  wmiApSrv - ok
22:33:43.0316 6652  WMPNetworkSvc - ok
22:33:43.0336 6652  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:33:43.0340 6652  WPCSvc - ok
22:33:43.0367 6652  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:33:43.0371 6652  WPDBusEnum - ok
22:33:43.0389 6652  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:33:43.0390 6652  ws2ifsl - ok
22:33:43.0426 6652  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
22:33:43.0428 6652  WSDPrintDevice - ok
22:33:43.0431 6652  WSearch - ok
22:33:43.0506 6652  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:33:43.0556 6652  wuauserv - ok
22:33:43.0583 6652  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:33:43.0585 6652  WudfPf - ok
22:33:43.0616 6652  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:33:43.0618 6652  WUDFRd - ok
22:33:43.0649 6652  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:33:43.0652 6652  wudfsvc - ok
22:33:43.0671 6652  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:33:43.0676 6652  WwanSvc - ok
22:33:43.0771 6652  X6va011 - ok
22:33:43.0820 6652  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
22:33:43.0825 6652  yukonw7 - ok
22:33:44.0107 6652  [ 74983ADDCA2D9618512C088D856D6615 ] {55662437-DA8C-40c0-AADA-2C816A897A49} c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
22:33:44.0110 6652  {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
22:33:44.0139 6652  ================ Scan global ===============================
22:33:44.0161 6652  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:33:44.0238 6652  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
22:33:44.0268 6652  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
22:33:44.0299 6652  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:33:44.0329 6652  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:33:44.0332 6652  [Global] - ok
22:33:44.0333 6652  ================ Scan MBR ==================================
22:33:44.0338 6652  [ CCB87189F4FBFB8299CC27FAC1F024AC ] \Device\Harddisk0\DR0
22:33:45.0591 6652  \Device\Harddisk0\DR0 - ok
22:33:45.0596 6652  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
22:33:45.0602 6652  \Device\Harddisk1\DR1 - ok
22:33:45.0603 6652  ================ Scan VBR ==================================
22:33:45.0658 6652  [ 15C9011486BFB7FC57705EC30DCD0F02 ] \Device\Harddisk0\DR0\Partition1
22:33:45.0662 6652  \Device\Harddisk0\DR0\Partition1 - ok
22:33:45.0695 6652  [ 6338E3F4A2D6523CB144909A583C51AF ] \Device\Harddisk0\DR0\Partition2
22:33:45.0699 6652  \Device\Harddisk0\DR0\Partition2 - ok
22:33:45.0742 6652  [ 2C6EACBB7C4018705D933444B18EAA02 ] \Device\Harddisk0\DR0\Partition3
22:33:45.0746 6652  \Device\Harddisk0\DR0\Partition3 - ok
22:33:45.0776 6652  [ A0A16FEF63687A6DD61B5DAD62531395 ] \Device\Harddisk0\DR0\Partition4
22:33:45.0800 6652  \Device\Harddisk0\DR0\Partition4 - ok
22:33:45.0806 6652  [ 80282DE08264BAD1601E7828F2FA0AB8 ] \Device\Harddisk1\DR1\Partition1
22:33:45.0809 6652  \Device\Harddisk1\DR1\Partition1 - ok
22:33:45.0810 6652  ============================================================
22:33:45.0810 6652  Scan finished
22:33:45.0810 6652  ============================================================
22:33:45.0826 4956  Detected object count: 0
22:33:45.0826 4956  Actual detected object count: 0
22:33:54.0569 2452  Deinitialize success

markusg · 09.07.2013, 21:37

Sorry, ich hab schon wieder was zu nörgeln. der TDSS Killer ist nicht nach Anleitung konfiguriert.
Arbeite lieber langsam, und dafür vernünftig, spart uns beiden Nerfen :-)b

Calixus · 09.07.2013, 21:49

Seufz

Hier nochmal und hoffentlich richtig:

Code:

ATTFilter

22:44:42.0646 5496  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:44:42.0904 5496  ============================================================
22:44:42.0904 5496  Current date / time: 2013/07/09 22:44:42.0904
22:44:42.0904 5496  SystemInfo:
22:44:42.0904 5496  
22:44:42.0904 5496  OS Version: 6.1.7600 ServicePack: 0.0
22:44:42.0904 5496  Product type: Workstation
22:44:42.0904 5496  ComputerName: HP-ENVY
22:44:42.0905 5496  UserName: media
22:44:42.0905 5496  Windows directory: C:\Windows
22:44:42.0905 5496  System windows directory: C:\Windows
22:44:42.0905 5496  Running under WOW64
22:44:42.0905 5496  Processor architecture: Intel x64
22:44:42.0905 5496  Number of processors: 8
22:44:42.0905 5496  Page size: 0x1000
22:44:42.0905 5496  Boot type: Normal boot
22:44:42.0905 5496  ============================================================
22:44:43.0305 5496  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:44:43.0648 5496  Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:44:43.0659 5496  ============================================================
22:44:43.0659 5496  \Device\Harddisk0\DR0:
22:44:43.0660 5496  MBR partitions:
22:44:43.0660 5496  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
22:44:43.0660 5496  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22D83000
22:44:43.0660 5496  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22DE7000, BlocksNum 0x2613800
22:44:43.0660 5496  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
22:44:43.0660 5496  \Device\Harddisk1\DR1:
22:44:43.0688 5496  MBR partitions:
22:44:43.0688 5496  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
22:44:43.0688 5496  ============================================================
22:44:43.0720 5496  C: <-> \Device\Harddisk0\DR0\Partition2
22:44:43.0759 5496  D: <-> \Device\Harddisk1\DR1\Partition1
22:44:43.0796 5496  E: <-> \Device\Harddisk0\DR0\Partition3
22:44:43.0811 5496  F: <-> \Device\Harddisk0\DR0\Partition4
22:44:43.0811 5496  ============================================================
22:44:43.0811 5496  Initialize success
22:44:43.0811 5496  ============================================================
22:45:21.0412 6768  ============================================================
22:45:21.0412 6768  Scan started
22:45:21.0412 6768  Mode: Manual; SigCheck; TDLFS; 
22:45:21.0412 6768  ============================================================
22:45:22.0038 6768  ================ Scan system memory ========================
22:45:22.0038 6768  System memory - ok
22:45:22.0039 6768  ================ Scan services =============================
22:45:22.0215 6768  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
22:45:22.0357 6768  1394ohci - ok
22:45:22.0470 6768  [ 7EEB488346FBFA3731276C3EE8A8FD9E ] AAV UpdateService C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
22:45:22.0493 6768  AAV UpdateService - ok
22:45:22.0521 6768  [ 1CFFE9C06E66A57DAE1452E449A58240 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
22:45:22.0540 6768  Accelerometer - ok
22:45:22.0572 6768  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
22:45:22.0588 6768  ACPI - ok
22:45:22.0607 6768  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
22:45:22.0668 6768  AcpiPmi - ok
22:45:22.0731 6768  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:45:22.0759 6768  AdobeARMservice - ok
22:45:22.0900 6768  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:45:22.0930 6768  AdobeFlashPlayerUpdateSvc - ok
22:45:22.0956 6768  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
22:45:22.0984 6768  adp94xx - ok
22:45:23.0000 6768  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
22:45:23.0025 6768  adpahci - ok
22:45:23.0051 6768  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
22:45:23.0063 6768  adpu320 - ok
22:45:23.0080 6768  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:45:23.0136 6768  AeLookupSvc - ok
22:45:23.0253 6768  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe
22:45:23.0309 6768  AESTFilters - ok
22:45:23.0380 6768  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
22:45:23.0436 6768  AFD - ok
22:45:23.0456 6768  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
22:45:23.0482 6768  agp440 - ok
22:45:23.0493 6768  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:45:23.0568 6768  ALG - ok
22:45:23.0579 6768  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
22:45:23.0601 6768  aliide - ok
22:45:23.0645 6768  [ 4C1E3649C89C7D542CD18ECC5210099D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:45:23.0689 6768  AMD External Events Utility - ok
22:45:23.0693 6768  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
22:45:23.0704 6768  amdide - ok
22:45:23.0734 6768  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
22:45:23.0780 6768  AmdK8 - ok
22:45:24.0014 6768  [ A3C0A15B39F979E8F3EABA901D72ECD7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:45:24.0159 6768  amdkmdag - ok
22:45:24.0192 6768  [ 20F3CD38B107C1BD747C0EA37D450165 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:45:24.0246 6768  amdkmdap - ok
22:45:24.0275 6768  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:45:24.0328 6768  AmdPPM - ok
22:45:24.0371 6768  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:45:24.0400 6768  amdsata - ok
22:45:24.0427 6768  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
22:45:24.0440 6768  amdsbs - ok
22:45:24.0468 6768  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:45:24.0494 6768  amdxata - ok
22:45:24.0515 6768  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
22:45:24.0546 6768  AppID - ok
22:45:24.0559 6768  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:45:24.0600 6768  AppIDSvc - ok
22:45:24.0616 6768  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
22:45:24.0643 6768  Appinfo - ok
22:45:24.0670 6768  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
22:45:24.0682 6768  arc - ok
22:45:24.0706 6768  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
22:45:24.0718 6768  arcsas - ok
22:45:24.0747 6768  ASPI - ok
22:45:24.0830 6768  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:45:24.0854 6768  aspnet_state - ok
22:45:24.0871 6768  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:45:24.0936 6768  AsyncMac - ok
22:45:24.0972 6768  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
22:45:24.0983 6768  atapi - ok
22:45:25.0018 6768  [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:45:25.0030 6768  AtiHDAudioService - ok
22:45:25.0046 6768  [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
22:45:25.0072 6768  AtiHdmiService ( UnsignedFile.Multi.Generic ) - warning
22:45:25.0072 6768  AtiHdmiService - detected UnsignedFile.Multi.Generic (1)
22:45:25.0120 6768  [ B4BDE3F758A34658A37DFED3D9783CD8 ] atksgt          C:\Windows\system32\DRIVERS\atksgt.sys
22:45:25.0140 6768  atksgt - ok
22:45:25.0167 6768  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:45:25.0212 6768  AudioEndpointBuilder - ok
22:45:25.0236 6768  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:45:25.0270 6768  AudioSrv - ok
22:45:25.0287 6768  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:45:25.0341 6768  AxInstSV - ok
22:45:25.0380 6768  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
22:45:25.0432 6768  b06bdrv - ok
22:45:25.0456 6768  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:45:25.0486 6768  b57nd60a - ok
22:45:25.0583 6768  [ E046CB1958CEBFFF7866E56588B10FC1 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
22:45:25.0626 6768  BCM43XX - ok
22:45:25.0636 6768  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:45:25.0692 6768  BDESVC - ok
22:45:25.0703 6768  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:45:25.0773 6768  Beep - ok
22:45:25.0831 6768  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
22:45:25.0924 6768  BFE - ok
22:45:26.0130 6768  [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\BASHDefs\20130702.001\BHDrvx64.sys
22:45:26.0168 6768  BHDrvx64 - ok
22:45:26.0202 6768  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\System32\qmgr.dll
22:45:26.0256 6768  BITS - ok
22:45:26.0301 6768  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:45:26.0347 6768  blbdrive - ok
22:45:26.0405 6768  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:45:26.0452 6768  bowser - ok
22:45:26.0484 6768  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:45:26.0555 6768  BrFiltLo - ok
22:45:26.0574 6768  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:45:26.0600 6768  BrFiltUp - ok
22:45:26.0642 6768  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
22:45:26.0708 6768  Browser - ok
22:45:26.0744 6768  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:45:26.0806 6768  Brserid - ok
22:45:26.0819 6768  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:45:26.0853 6768  BrSerWdm - ok
22:45:26.0874 6768  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:45:26.0926 6768  BrUsbMdm - ok
22:45:26.0933 6768  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:45:26.0969 6768  BrUsbSer - ok
22:45:27.0024 6768  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
22:45:27.0073 6768  BthEnum - ok
22:45:27.0106 6768  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:45:27.0138 6768  BTHMODEM - ok
22:45:27.0158 6768  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:45:27.0196 6768  BthPan - ok
22:45:27.0237 6768  [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
22:45:27.0282 6768  BTHPORT - ok
22:45:27.0333 6768  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:45:27.0396 6768  bthserv - ok
22:45:27.0417 6768  [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
22:45:27.0430 6768  BTHUSB - ok
22:45:27.0457 6768  [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
22:45:27.0468 6768  btwaudio - ok
22:45:27.0503 6768  [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
22:45:27.0529 6768  btwavdt - ok
22:45:27.0609 6768  [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:45:27.0651 6768  btwdins - ok
22:45:27.0661 6768  [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
22:45:27.0671 6768  btwl2cap - ok
22:45:27.0675 6768  [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
22:45:27.0685 6768  btwrchid - ok
22:45:27.0754 6768  [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys
22:45:27.0779 6768  ccSet_NIS - ok
22:45:27.0799 6768  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:45:27.0845 6768  cdfs - ok
22:45:27.0873 6768  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:45:27.0907 6768  cdrom - ok
22:45:27.0941 6768  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:45:27.0973 6768  CertPropSvc - ok
22:45:27.0998 6768  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:45:28.0040 6768  circlass - ok
22:45:28.0063 6768  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:45:28.0078 6768  CLFS - ok
22:45:28.0121 6768  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:45:28.0131 6768  clr_optimization_v2.0.50727_32 - ok
22:45:28.0163 6768  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:45:28.0173 6768  clr_optimization_v2.0.50727_64 - ok
22:45:28.0271 6768  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:45:28.0293 6768  clr_optimization_v4.0.30319_32 - ok
22:45:28.0318 6768  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:45:28.0340 6768  clr_optimization_v4.0.30319_64 - ok
22:45:28.0354 6768  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:45:28.0396 6768  CmBatt - ok
22:45:28.0409 6768  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
22:45:28.0420 6768  cmdide - ok
22:45:28.0460 6768  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
22:45:28.0508 6768  CNG - ok
22:45:28.0526 6768  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:45:28.0536 6768  Compbatt - ok
22:45:28.0551 6768  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:45:28.0585 6768  CompositeBus - ok
22:45:28.0589 6768  COMSysApp - ok
22:45:28.0615 6768  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
22:45:28.0626 6768  crcdisk - ok
22:45:28.0666 6768  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:45:28.0743 6768  CryptSvc - ok
22:45:28.0780 6768  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:45:28.0863 6768  DcomLaunch - ok
22:45:28.0897 6768  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:45:28.0950 6768  defragsvc - ok
22:45:28.0992 6768  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:45:29.0018 6768  DfsC - ok
22:45:29.0041 6768  dgderdrv - ok
22:45:29.0060 6768  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:45:29.0100 6768  Dhcp - ok
22:45:29.0124 6768  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:45:29.0198 6768  discache - ok
22:45:29.0228 6768  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
22:45:29.0240 6768  Disk - ok
22:45:29.0285 6768  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:45:29.0360 6768  Dnscache - ok
22:45:29.0378 6768  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
22:45:29.0462 6768  dot3svc - ok
22:45:29.0528 6768  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
22:45:29.0580 6768  Dot4 - ok
22:45:29.0636 6768  [ 85135AD27E79B689335C08167D917CDE ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:45:29.0691 6768  Dot4Print - ok
22:45:29.0724 6768  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
22:45:29.0757 6768  dot4usb - ok
22:45:29.0781 6768  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
22:45:29.0830 6768  DPS - ok
22:45:29.0860 6768  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:45:29.0906 6768  drmkaud - ok
22:45:29.0934 6768  [ A298AEA9FCA253E7EFF040A08C7C6376 ] DVMIO           C:\Windows\system32\DRIVERS\dvmio.sys
22:45:29.0954 6768  DVMIO - ok
22:45:30.0027 6768  [ 5ED4E98390C0B6D90B5FE2B9C188EEF3 ] DvmMDES         C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
22:45:30.0054 6768  DvmMDES - ok
22:45:30.0084 6768  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:45:30.0106 6768  DXGKrnl - ok
22:45:30.0121 6768  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:45:30.0173 6768  EapHost - ok
22:45:30.0278 6768  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
22:45:30.0333 6768  ebdrv - ok
22:45:30.0434 6768  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:45:30.0468 6768  eeCtrl - ok
22:45:30.0486 6768  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
22:45:30.0540 6768  EFS - ok
22:45:30.0601 6768  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:45:30.0680 6768  ehRecvr - ok
22:45:30.0699 6768  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:45:30.0728 6768  ehSched - ok
22:45:30.0771 6768  [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
22:45:30.0798 6768  ElbyCDIO - ok
22:45:30.0835 6768  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
22:45:30.0866 6768  elxstor - ok
22:45:30.0912 6768  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:45:30.0924 6768  EraserUtilRebootDrv - ok
22:45:30.0932 6768  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
22:45:30.0960 6768  ErrDev - ok
22:45:31.0000 6768  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:45:31.0042 6768  EventSystem - ok
22:45:31.0078 6768  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:45:31.0128 6768  exfat - ok
22:45:31.0149 6768  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:45:31.0192 6768  fastfat - ok
22:45:31.0230 6768  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
22:45:31.0283 6768  Fax - ok
22:45:31.0311 6768  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:45:31.0344 6768  fdc - ok
22:45:31.0366 6768  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:45:31.0418 6768  fdPHost - ok
22:45:31.0440 6768  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:45:31.0471 6768  FDResPub - ok
22:45:31.0482 6768  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:45:31.0494 6768  FileInfo - ok
22:45:31.0497 6768  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:45:31.0543 6768  Filetrace - ok
22:45:31.0556 6768  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:45:31.0583 6768  flpydisk - ok
22:45:31.0608 6768  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:45:31.0622 6768  FltMgr - ok
22:45:31.0662 6768  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
22:45:31.0729 6768  FontCache - ok
22:45:31.0768 6768  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:45:31.0778 6768  FontCache3.0.0.0 - ok
22:45:31.0787 6768  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:45:31.0798 6768  FsDepends - ok
22:45:31.0838 6768  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:45:31.0849 6768  Fs_Rec - ok
22:45:31.0894 6768  [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:45:31.0930 6768  fvevol - ok
22:45:31.0948 6768  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
22:45:31.0960 6768  gagp30kx - ok
22:45:31.0987 6768  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
22:45:32.0010 6768  gpsvc - ok
22:45:32.0108 6768  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:45:32.0131 6768  gupdate - ok
22:45:32.0142 6768  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:45:32.0155 6768  gupdatem - ok
22:45:32.0159 6768  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:45:32.0198 6768  hcw85cir - ok
22:45:32.0220 6768  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:45:32.0253 6768  HdAudAddService - ok
22:45:32.0277 6768  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:45:32.0311 6768  HDAudBus - ok
22:45:32.0352 6768  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
22:45:32.0363 6768  HECIx64 - ok
22:45:32.0372 6768  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
22:45:32.0401 6768  HidBatt - ok
22:45:32.0432 6768  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
22:45:32.0482 6768  HidBth - ok
22:45:32.0512 6768  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:45:32.0539 6768  HidIr - ok
22:45:32.0554 6768  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
22:45:32.0585 6768  hidserv - ok
22:45:32.0629 6768  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:45:32.0672 6768  HidUsb - ok
22:45:32.0701 6768  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:45:32.0787 6768  hkmsvc - ok
22:45:32.0818 6768  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:45:32.0863 6768  HomeGroupListener - ok
22:45:32.0890 6768  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:45:32.0910 6768  HomeGroupProvider - ok
22:45:32.0961 6768  [ C84BCC03858DAEAC4DB1E95EFCCE1934 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
22:45:32.0992 6768  HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
22:45:32.0992 6768  HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
22:45:33.0072 6768  [ A2DE0A67C77EBC6DFAD3D55232790ADD ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
22:45:33.0092 6768  HP Wireless Assistant Service - ok
22:45:33.0130 6768  [ CECF7CB10E778F921CF41858C653EA15 ] hpdoccardsvc    C:\Program Files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe
22:45:33.0149 6768  hpdoccardsvc - ok
22:45:33.0177 6768  [ 05712FDDBD45A5864EB326FAABC6A4E3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
22:45:33.0196 6768  hpdskflt - ok
22:45:33.0281 6768  [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:45:33.0528 6768  hpqcxs08 - ok
22:45:33.0567 6768  [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:45:33.0590 6768  hpqddsvc - ok
22:45:33.0624 6768  [ EF3EA06057132138B4E5895A61601DBE ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
22:45:33.0635 6768  hpqwmiex - ok
22:45:33.0657 6768  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
22:45:33.0671 6768  HpSAMD - ok
22:45:33.0728 6768  [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:45:33.0761 6768  HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
22:45:33.0761 6768  HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
22:45:33.0780 6768  [ AA036CC5F5221D9B915F4D4DCE74BA9A ] hpsrv           C:\Windows\system32\Hpservice.exe
22:45:33.0791 6768  hpsrv - ok
22:45:33.0829 6768  [ B6492D01712A22FF3FEA25A999DBD321 ] HPWMISVC        C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
22:45:33.0858 6768  HPWMISVC ( UnsignedFile.Multi.Generic ) - warning
22:45:33.0858 6768  HPWMISVC - detected UnsignedFile.Multi.Generic (1)
22:45:33.0915 6768  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:45:33.0989 6768  HTTP - ok
22:45:34.0022 6768  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:45:34.0033 6768  hwpolicy - ok
22:45:34.0066 6768  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:45:34.0097 6768  i8042prt - ok
22:45:34.0123 6768  [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
22:45:34.0147 6768  iaStor - ok
22:45:34.0193 6768  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:45:34.0225 6768  iaStorV - ok
22:45:34.0260 6768  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:45:34.0279 6768  idsvc - ok
22:45:34.0372 6768  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\IPSDefs\20130706.002\IDSvia64.sys
22:45:34.0405 6768  IDSVia64 - ok
22:45:34.0532 6768  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:45:34.0614 6768  igfx - ok
22:45:34.0639 6768  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
22:45:34.0650 6768  iirsp - ok
22:45:34.0679 6768  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
22:45:34.0734 6768  IKEEXT - ok
22:45:34.0760 6768  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
22:45:34.0772 6768  intelide - ok
22:45:34.0806 6768  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:45:34.0840 6768  intelppm - ok
22:45:34.0871 6768  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:45:34.0923 6768  IPBusEnum - ok
22:45:34.0943 6768  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:45:34.0974 6768  IpFilterDriver - ok
22:45:34.0996 6768  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:45:35.0049 6768  iphlpsvc - ok
22:45:35.0073 6768  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:45:35.0122 6768  IPMIDRV - ok
22:45:35.0147 6768  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:45:35.0215 6768  IPNAT - ok
22:45:35.0249 6768  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:45:35.0265 6768  IRENUM - ok
22:45:35.0280 6768  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
22:45:35.0291 6768  isapnp - ok
22:45:35.0314 6768  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
22:45:35.0328 6768  iScsiPrt - ok
22:45:35.0335 6768  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:45:35.0346 6768  kbdclass - ok
22:45:35.0353 6768  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:45:35.0383 6768  kbdhid - ok
22:45:35.0420 6768  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
22:45:35.0434 6768  KeyIso - ok
22:45:35.0468 6768  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:45:35.0480 6768  KSecDD - ok
22:45:35.0494 6768  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:45:35.0507 6768  KSecPkg - ok
22:45:35.0515 6768  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:45:35.0584 6768  ksthunk - ok
22:45:35.0614 6768  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:45:35.0667 6768  KtmRm - ok
22:45:35.0699 6768  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:45:35.0737 6768  LanmanServer - ok
22:45:35.0751 6768  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:45:35.0806 6768  LanmanWorkstation - ok
22:45:35.0875 6768  [ 955982BF4421B77722196552B62E8DC2 ] lirsgt          C:\Windows\system32\DRIVERS\lirsgt.sys
22:45:35.0901 6768  lirsgt - ok
22:45:35.0915 6768  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:45:35.0961 6768  lltdio - ok
22:45:35.0989 6768  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:45:36.0031 6768  lltdsvc - ok
22:45:36.0034 6768  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:45:36.0065 6768  lmhosts - ok
22:45:36.0135 6768  [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:45:36.0167 6768  LMS - ok
22:45:36.0185 6768  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
22:45:36.0197 6768  LSI_FC - ok
22:45:36.0205 6768  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
22:45:36.0217 6768  LSI_SAS - ok
22:45:36.0236 6768  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:45:36.0247 6768  LSI_SAS2 - ok
22:45:36.0261 6768  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:45:36.0274 6768  LSI_SCSI - ok
22:45:36.0286 6768  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:45:36.0330 6768  luafv - ok
22:45:36.0363 6768  [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
22:45:36.0376 6768  MBAMProtector - ok
22:45:36.0470 6768  [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:45:36.0502 6768  MBAMScheduler - ok
22:45:36.0522 6768  [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:45:36.0538 6768  MBAMService - ok
22:45:36.0573 6768  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:45:36.0587 6768  Mcx2Svc - ok
22:45:36.0609 6768  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
22:45:36.0620 6768  megasas - ok
22:45:36.0638 6768  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
22:45:36.0652 6768  MegaSR - ok
22:45:36.0664 6768  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:45:36.0706 6768  MMCSS - ok
22:45:36.0723 6768  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:45:36.0775 6768  Modem - ok
22:45:36.0803 6768  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:45:36.0852 6768  monitor - ok
22:45:36.0879 6768  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:45:36.0891 6768  mouclass - ok
22:45:36.0926 6768  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:45:36.0973 6768  mouhid - ok
22:45:37.0000 6768  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:45:37.0024 6768  mountmgr - ok
22:45:37.0035 6768  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
22:45:37.0050 6768  mpio - ok
22:45:37.0064 6768  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:45:37.0095 6768  mpsdrv - ok
22:45:37.0117 6768  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:45:37.0177 6768  MpsSvc - ok
22:45:37.0197 6768  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:45:37.0227 6768  MRxDAV - ok
22:45:37.0260 6768  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:45:37.0274 6768  mrxsmb - ok
22:45:37.0314 6768  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:45:37.0355 6768  mrxsmb10 - ok
22:45:37.0373 6768  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:45:37.0408 6768  mrxsmb20 - ok
22:45:37.0423 6768  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
22:45:37.0440 6768  msahci - ok
22:45:37.0457 6768  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
22:45:37.0476 6768  msdsm - ok
22:45:37.0491 6768  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:45:37.0506 6768  MSDTC - ok
22:45:37.0522 6768  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:45:37.0555 6768  Msfs - ok
22:45:37.0576 6768  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:45:37.0623 6768  mshidkmdf - ok
22:45:37.0641 6768  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
22:45:37.0652 6768  msisadrv - ok
22:45:37.0668 6768  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:45:37.0719 6768  MSiSCSI - ok
22:45:37.0723 6768  msiserver - ok
22:45:37.0751 6768  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:45:37.0826 6768  MSKSSRV - ok
22:45:37.0845 6768  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:45:37.0902 6768  MSPCLOCK - ok
22:45:37.0936 6768  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:45:37.0991 6768  MSPQM - ok
22:45:38.0036 6768  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:45:38.0066 6768  MsRPC - ok
22:45:38.0099 6768  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:45:38.0111 6768  mssmbios - ok
22:45:38.0119 6768  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:45:38.0170 6768  MSTEE - ok
22:45:38.0194 6768  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
22:45:38.0242 6768  MTConfig - ok
22:45:38.0266 6768  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:45:38.0289 6768  Mup - ok
22:45:38.0315 6768  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
22:45:38.0369 6768  napagent - ok
22:45:38.0403 6768  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:45:38.0441 6768  NativeWifiP - ok
22:45:38.0527 6768  [ 56540E526B46E379A476FB5BC381B290 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\VirusDefs\20130709.002\ENG64.SYS
22:45:38.0554 6768  NAVENG - ok
22:45:38.0636 6768  [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\VirusDefs\20130709.002\EX64.SYS
22:45:38.0683 6768  NAVEX15 - ok
22:45:38.0716 6768  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:45:38.0737 6768  NDIS - ok
22:45:38.0755 6768  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:45:38.0789 6768  NdisCap - ok
22:45:38.0812 6768  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:45:38.0844 6768  NdisTapi - ok
22:45:38.0849 6768  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:45:38.0899 6768  Ndisuio - ok
22:45:38.0925 6768  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:45:38.0955 6768  NdisWan - ok
22:45:38.0963 6768  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:45:39.0034 6768  NDProxy - ok
22:45:39.0119 6768  [ B6EB664BD5E25413E730BCB54CF64272 ] NeroMediaHomeService.4 C:\Program Files (x86)\Nero\Nero MediaHome 4\NMMediaServerService.exe
22:45:39.0143 6768  NeroMediaHomeService.4 - ok
22:45:39.0202 6768  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:45:39.0227 6768  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
22:45:39.0227 6768  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
22:45:39.0253 6768  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:45:39.0329 6768  NetBIOS - ok
22:45:39.0356 6768  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:45:39.0390 6768  NetBT - ok
22:45:39.0403 6768  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
22:45:39.0416 6768  Netlogon - ok
22:45:39.0442 6768  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:45:39.0495 6768  Netman - ok
22:45:39.0559 6768  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:45:39.0585 6768  NetMsmqActivator - ok
22:45:39.0592 6768  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:45:39.0601 6768  NetPipeActivator - ok
22:45:39.0622 6768  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:45:39.0673 6768  netprofm - ok
22:45:39.0677 6768  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:45:39.0687 6768  NetTcpActivator - ok
22:45:39.0691 6768  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:45:39.0701 6768  NetTcpPortSharing - ok
22:45:39.0835 6768  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
22:45:39.0921 6768  netw5v64 - ok
22:45:39.0962 6768  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
22:45:39.0973 6768  nfrd960 - ok
22:45:40.0040 6768  [ 1BF9D6476061B31CD7FC2BF848529A56 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
22:45:40.0067 6768  NIS - ok
22:45:40.0085 6768  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:45:40.0164 6768  NlaSvc - ok
22:45:40.0179 6768  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:45:40.0228 6768  Npfs - ok
22:45:40.0248 6768  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:45:40.0295 6768  nsi - ok
22:45:40.0316 6768  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:45:40.0387 6768  nsiproxy - ok
22:45:40.0451 6768  [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:45:40.0487 6768  Ntfs - ok
22:45:40.0500 6768  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:45:40.0531 6768  Null - ok
22:45:40.0553 6768  [ 785298579B5F9B4032152DFBB992FDB6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
22:45:40.0573 6768  nusb3hub - ok
22:45:40.0578 6768  [ DF2750481B4964814467C974F2B0EEF1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:45:40.0589 6768  nusb3xhc - ok
22:45:40.0637 6768  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:45:40.0649 6768  nvraid - ok
22:45:40.0691 6768  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:45:40.0704 6768  nvstor - ok
22:45:40.0736 6768  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
22:45:40.0748 6768  nv_agp - ok
22:45:40.0762 6768  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
22:45:40.0810 6768  ohci1394 - ok
22:45:40.0843 6768  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:45:40.0916 6768  p2pimsvc - ok
22:45:40.0948 6768  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:45:40.0977 6768  p2psvc - ok
22:45:40.0996 6768  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:45:41.0009 6768  Parport - ok
22:45:41.0048 6768  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:45:41.0059 6768  partmgr - ok
22:45:41.0068 6768  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:45:41.0108 6768  PcaSvc - ok
22:45:41.0131 6768  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
22:45:41.0144 6768  pci - ok
22:45:41.0152 6768  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
22:45:41.0162 6768  pciide - ok
22:45:41.0187 6768  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:45:41.0201 6768  pcmcia - ok
22:45:41.0208 6768  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:45:41.0219 6768  pcw - ok
22:45:41.0242 6768  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:45:41.0293 6768  PEAUTH - ok
22:45:41.0406 6768  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:45:41.0460 6768  PerfHost - ok
22:45:41.0526 6768  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
22:45:41.0599 6768  pla - ok
22:45:41.0663 6768  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:45:41.0695 6768  PlugPlay - ok
22:45:41.0733 6768  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:45:41.0745 6768  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
22:45:41.0745 6768  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
22:45:41.0770 6768  PnkBstrA - ok
22:45:41.0785 6768  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:45:41.0821 6768  PNRPAutoReg - ok
22:45:41.0844 6768  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:45:41.0866 6768  PNRPsvc - ok
22:45:41.0892 6768  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
22:45:41.0901 6768  Point64 - ok
22:45:41.0925 6768  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:45:41.0975 6768  PolicyAgent - ok
22:45:42.0006 6768  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:45:42.0056 6768  Power - ok
22:45:42.0082 6768  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:45:42.0133 6768  PptpMiniport - ok
22:45:42.0160 6768  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:45:42.0200 6768  Processor - ok
22:45:42.0236 6768  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
22:45:42.0257 6768  ProfSvc - ok
22:45:42.0269 6768  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:45:42.0285 6768  ProtectedStorage - ok
22:45:42.0311 6768  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:45:42.0364 6768  Psched - ok
22:45:42.0440 6768  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
22:45:42.0502 6768  ql2300 - ok
22:45:42.0513 6768  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
22:45:42.0524 6768  ql40xx - ok
22:45:42.0545 6768  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:45:42.0584 6768  QWAVE - ok
22:45:42.0605 6768  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:45:42.0637 6768  QWAVEdrv - ok
22:45:42.0650 6768  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:45:42.0696 6768  RasAcd - ok
22:45:42.0722 6768  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:45:42.0753 6768  RasAgileVpn - ok
22:45:42.0762 6768  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:45:42.0804 6768  RasAuto - ok
22:45:42.0826 6768  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:45:42.0857 6768  Rasl2tp - ok
22:45:42.0895 6768  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
22:45:42.0959 6768  RasMan - ok
22:45:42.0982 6768  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:45:43.0028 6768  RasPppoe - ok
22:45:43.0050 6768  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:45:43.0117 6768  RasSstp - ok
22:45:43.0151 6768  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:45:43.0200 6768  rdbss - ok
22:45:43.0221 6768  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:45:43.0235 6768  rdpbus - ok
22:45:43.0251 6768  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:45:43.0281 6768  RDPCDD - ok
22:45:43.0286 6768  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:45:43.0334 6768  RDPENCDD - ok
22:45:43.0357 6768  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:45:43.0416 6768  RDPREFMP - ok
22:45:43.0455 6768  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:45:43.0515 6768  RDPWD - ok
22:45:43.0538 6768  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:45:43.0552 6768  rdyboost - ok
22:45:43.0572 6768  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:45:43.0619 6768  RemoteAccess - ok
22:45:43.0650 6768  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:45:43.0700 6768  RemoteRegistry - ok
22:45:43.0737 6768  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:45:43.0791 6768  RFCOMM - ok
22:45:43.0821 6768  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:45:43.0860 6768  RpcEptMapper - ok
22:45:43.0881 6768  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:45:43.0910 6768  RpcLocator - ok
22:45:43.0936 6768  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
22:45:43.0970 6768  RpcSs - ok
22:45:43.0981 6768  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:45:44.0035 6768  rspndr - ok
22:45:44.0077 6768  [ 907C4464381B5EBDFDC60F6C7D0DEDFC ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
22:45:44.0090 6768  RSUSBSTOR - ok
22:45:44.0123 6768  [ 777FC2C418465404E3D8A290DC247D24 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:45:44.0189 6768  RTL8167 - ok
22:45:44.0193 6768  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
22:45:44.0206 6768  SamSs - ok
22:45:44.0240 6768  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
22:45:44.0270 6768  sbp2port - ok
22:45:44.0290 6768  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:45:44.0332 6768  SCardSvr - ok
22:45:44.0344 6768  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:45:44.0384 6768  scfilter - ok
22:45:44.0426 6768  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
22:45:44.0473 6768  Schedule - ok
22:45:44.0499 6768  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:45:44.0531 6768  SCPolicySvc - ok
22:45:44.0542 6768  [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
22:45:44.0556 6768  sdbus - ok
22:45:44.0569 6768  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:45:44.0599 6768  SDRSVC - ok
22:45:44.0662 6768  [ B85BBDBB3B429C5DF976EA9D710C2E12 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
22:45:44.0690 6768  SeaPort - ok
22:45:44.0714 6768  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:45:44.0747 6768  secdrv - ok
22:45:44.0755 6768  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
22:45:44.0804 6768  seclogon - ok
22:45:44.0836 6768  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
22:45:44.0891 6768  SENS - ok
22:45:44.0919 6768  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:45:44.0981 6768  SensrSvc - ok
22:45:45.0005 6768  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:45:45.0027 6768  Serenum - ok
22:45:45.0043 6768  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:45:45.0067 6768  Serial - ok
22:45:45.0087 6768  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
22:45:45.0138 6768  sermouse - ok
22:45:45.0164 6768  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
22:45:45.0196 6768  SessionEnv - ok
22:45:45.0211 6768  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
22:45:45.0260 6768  sffdisk - ok
22:45:45.0280 6768  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:45:45.0326 6768  sffp_mmc - ok
22:45:45.0350 6768  [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
22:45:45.0391 6768  sffp_sd - ok
22:45:45.0396 6768  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
22:45:45.0421 6768  sfloppy - ok
22:45:45.0444 6768  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:45:45.0478 6768  SharedAccess - ok
22:45:45.0496 6768  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:45:45.0538 6768  ShellHWDetection - ok
22:45:45.0567 6768  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:45:45.0578 6768  SiSRaid2 - ok
22:45:45.0590 6768  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
22:45:45.0602 6768  SiSRaid4 - ok
22:45:45.0655 6768  [ 2F5AF9D91D51E832773D4A9EAF65CB33 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:45:45.0680 6768  SkypeUpdate - ok
22:45:45.0702 6768  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:45:45.0740 6768  Smb - ok
22:45:45.0756 6768  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:45:45.0787 6768  SNMPTRAP - ok
22:45:45.0810 6768  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:45:45.0822 6768  spldr - ok
22:45:45.0869 6768  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
22:45:45.0914 6768  Spooler - ok
22:45:46.0004 6768  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:45:46.0069 6768  sppsvc - ok
22:45:46.0093 6768  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:45:46.0126 6768  sppuinotify - ok
22:45:46.0210 6768  [ 2FD9346F9D76CB4192D37329CFA47A82 ] SRTSP           C:\Windows\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS
22:45:46.0251 6768  SRTSP - ok
22:45:46.0265 6768  [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX          C:\Windows\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS
22:45:46.0276 6768  SRTSPX - ok
22:45:46.0326 6768  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:45:46.0377 6768  srv - ok
22:45:46.0412 6768  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:45:46.0462 6768  srv2 - ok
22:45:46.0500 6768  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
22:45:46.0525 6768  SrvHsfHDA - ok
22:45:46.0559 6768  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
22:45:46.0585 6768  SrvHsfV92 - ok
22:45:46.0611 6768  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
22:45:46.0630 6768  SrvHsfWinac - ok
22:45:46.0678 6768  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:45:46.0706 6768  srvnet - ok
22:45:46.0733 6768  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:45:46.0801 6768  SSDPSRV - ok
22:45:46.0828 6768  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:45:46.0895 6768  SstpSvc - ok
22:45:47.0006 6768  [ 5752BACEF32A6803528D05A6FB266758 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\STacSV64.exe
22:45:47.0051 6768  STacSV - ok
22:45:47.0092 6768  Steam Client Service - ok
22:45:47.0108 6768  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
22:45:47.0134 6768  stexstor - ok
22:45:47.0160 6768  [ 936A4D05F7A790B8AAB3B6BE61651E0E ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
22:45:47.0188 6768  STHDA - ok
22:45:47.0244 6768  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
22:45:47.0260 6768  StillCam - ok
22:45:47.0291 6768  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
22:45:47.0314 6768  stisvc - ok
22:45:47.0323 6768  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:45:47.0335 6768  swenum - ok
22:45:47.0358 6768  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:45:47.0414 6768  swprv - ok
22:45:47.0452 6768  [ 52DC0048D667757A8A2E4C87182890AC ] SymDS           C:\Windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS
22:45:47.0467 6768  SymDS - ok
22:45:47.0527 6768  [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA          C:\Windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS
22:45:47.0557 6768  SymEFA - ok
22:45:47.0597 6768  [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
22:45:47.0610 6768  SymEvent - ok
22:45:47.0661 6768  [ BFD99DC6C7FEB2F8B20D488FDF3A9A55 ] SymIM           C:\Windows\system32\DRIVERS\SymIMv.sys
22:45:47.0684 6768  SymIM - ok
22:45:47.0725 6768  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS
22:45:47.0751 6768  SymIRON - ok
22:45:47.0787 6768  [ 9CDCA70485BD6B9D230365F67C31F132 ] SymNetS         C:\Windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS
22:45:47.0804 6768  SymNetS - ok
22:45:47.0834 6768  [ 7369D6268E21481A8DCB8E94063C47B1 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:45:47.0848 6768  SynTP - ok
22:45:47.0884 6768  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
22:45:47.0930 6768  SysMain - ok
22:45:47.0953 6768  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:45:47.0974 6768  TabletInputService - ok
22:45:47.0986 6768  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:45:48.0038 6768  TapiSrv - ok
22:45:48.0063 6768  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:45:48.0128 6768  TBS - ok
22:45:48.0196 6768  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:45:48.0230 6768  Tcpip - ok
22:45:48.0276 6768  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:45:48.0308 6768  TCPIP6 - ok
22:45:48.0326 6768  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:45:48.0355 6768  tcpipreg - ok
22:45:48.0365 6768  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:45:48.0405 6768  TDPIPE - ok
22:45:48.0443 6768  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:45:48.0489 6768  TDTCP - ok
22:45:48.0510 6768  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:45:48.0565 6768  tdx - ok
22:45:48.0603 6768  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:45:48.0618 6768  TermDD - ok
22:45:48.0654 6768  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
22:45:48.0717 6768  TermService - ok
22:45:48.0736 6768  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:45:48.0772 6768  Themes - ok
22:45:48.0804 6768  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:45:48.0841 6768  THREADORDER - ok
22:45:48.0850 6768  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:45:48.0903 6768  TrkWks - ok
22:45:48.0935 6768  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:45:48.0966 6768  TrustedInstaller - ok
22:45:48.0991 6768  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:45:49.0046 6768  tssecsrv - ok
22:45:49.0081 6768  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:45:49.0128 6768  tunnel - ok
22:45:49.0156 6768  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
22:45:49.0182 6768  uagp35 - ok
22:45:49.0210 6768  [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:45:49.0232 6768  udfs - ok
22:45:49.0254 6768  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:45:49.0304 6768  UI0Detect - ok
22:45:49.0357 6768  [ FDB805B2749DACE784BD05125979B478 ] uigxrdr         C:\Windows\system32\DRIVERS\uigxrdr.sys
22:45:49.0369 6768  uigxrdr - ok
22:45:49.0392 6768  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
22:45:49.0404 6768  uliagpkx - ok
22:45:49.0419 6768  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:45:49.0449 6768  umbus - ok
22:45:49.0489 6768  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:45:49.0538 6768  UmPass - ok
22:45:49.0678 6768  [ 0FADD949576A164B4E51E716F46B6C33 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:45:49.0728 6768  UNS - ok
22:45:49.0743 6768  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:45:49.0789 6768  upnphost - ok
22:45:49.0838 6768  [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:45:49.0883 6768  usbaudio - ok
22:45:49.0944 6768  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:45:49.0982 6768  usbccgp - ok
22:45:49.0999 6768  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
22:45:50.0046 6768  usbcir - ok
22:45:50.0102 6768  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:45:50.0129 6768  usbehci - ok
22:45:50.0196 6768  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:45:50.0212 6768  usbhub - ok
22:45:50.0260 6768  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:45:50.0275 6768  usbohci - ok
22:45:50.0289 6768  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:45:50.0304 6768  usbprint - ok
22:45:50.0342 6768  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:45:50.0357 6768  usbscan - ok
22:45:50.0373 6768  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:45:50.0420 6768  USBSTOR - ok
22:45:50.0428 6768  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:45:50.0466 6768  usbuhci - ok
22:45:50.0542 6768  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
22:45:50.0580 6768  usbvideo - ok
22:45:50.0603 6768  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:45:50.0647 6768  UxSms - ok
22:45:50.0668 6768  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
22:45:50.0680 6768  VaultSvc - ok
22:45:50.0714 6768  [ FD911873C0BB6945FA38C16E9A2B58F9 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
22:45:50.0752 6768  VClone - ok
22:45:50.0796 6768  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
22:45:50.0824 6768  vdrvroot - ok
22:45:50.0851 6768  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
22:45:50.0869 6768  vds - ok
22:45:50.0880 6768  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:45:50.0896 6768  vga - ok
22:45:50.0905 6768  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:45:50.0954 6768  VgaSave - ok
22:45:50.0988 6768  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
22:45:51.0019 6768  vhdmp - ok
22:45:51.0023 6768  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
22:45:51.0036 6768  viaide - ok
22:45:51.0040 6768  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
22:45:51.0051 6768  volmgr - ok
22:45:51.0069 6768  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:45:51.0083 6768  volmgrx - ok
22:45:51.0129 6768  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:45:51.0144 6768  volsnap - ok
22:45:51.0163 6768  [ ABD9B4A7E2D0AE51A3B8DF1AF3152D61 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
22:45:51.0177 6768  vpcbus - ok
22:45:51.0225 6768  [ 8ACDA395841538CE9713A67FE8B2A3EB ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
22:45:51.0237 6768  vpcnfltr - ok
22:45:51.0277 6768  [ 31924E31BC315773E6D149B157DB46D5 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
22:45:51.0316 6768  vpcusb - ok
22:45:51.0389 6768  [ C5B651E52540E6F46DA66574C74B4898 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
22:45:51.0414 6768  vpcvmm - ok
22:45:51.0438 6768  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
22:45:51.0451 6768  vsmraid - ok
22:45:51.0488 6768  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
22:45:51.0525 6768  VSS - ok
22:45:51.0543 6768  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:45:51.0587 6768  vwifibus - ok
22:45:51.0615 6768  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:45:51.0631 6768  vwififlt - ok
22:45:51.0659 6768  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:45:51.0676 6768  vwifimp - ok
22:45:51.0701 6768  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:45:51.0756 6768  W32Time - ok
22:45:51.0777 6768  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
22:45:51.0790 6768  WacomPen - ok
22:45:51.0813 6768  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:45:51.0866 6768  WANARP - ok
22:45:51.0869 6768  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:45:51.0901 6768  Wanarpv6 - ok
22:45:51.0998 6768  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:45:52.0030 6768  WatAdminSvc - ok
22:45:52.0067 6768  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
22:45:52.0116 6768  wbengine - ok
22:45:52.0134 6768  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:45:52.0152 6768  WbioSrvc - ok
22:45:52.0189 6768  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:45:52.0210 6768  wcncsvc - ok
22:45:52.0221 6768  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:45:52.0235 6768  WcsPlugInService - ok
22:45:52.0255 6768  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
22:45:52.0266 6768  Wd - ok
22:45:52.0322 6768  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:45:52.0353 6768  Wdf01000 - ok
22:45:52.0362 6768  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:45:52.0393 6768  WdiServiceHost - ok
22:45:52.0397 6768  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:45:52.0414 6768  WdiSystemHost - ok
22:45:52.0438 6768  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
22:45:52.0461 6768  WebClient - ok
22:45:52.0476 6768  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:45:52.0509 6768  Wecsvc - ok
22:45:52.0525 6768  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:45:52.0572 6768  wercplsupport - ok
22:45:52.0594 6768  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:45:52.0625 6768  WerSvc - ok
22:45:52.0636 6768  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:45:52.0665 6768  WfpLwf - ok
22:45:52.0675 6768  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:45:52.0686 6768  WIMMount - ok
22:45:52.0728 6768  [ 8258726D076C8FFF994F468712DDFBAB ] WindowBlinds    C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe
22:45:52.0754 6768  WindowBlinds - ok
22:45:52.0763 6768  WinHttpAutoProxySvc - ok
22:45:52.0813 6768  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:45:52.0845 6768  Winmgmt - ok
22:45:52.0912 6768  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:45:52.0986 6768  WinRM - ok
22:45:53.0042 6768  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:45:53.0092 6768  WinUsb - ok
22:45:53.0134 6768  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:45:53.0158 6768  Wlansvc - ok
22:45:53.0266 6768  [ 98F138897EF4246381D197CB81846D62 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:45:53.0302 6768  wlidsvc - ok
22:45:53.0323 6768  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:45:53.0355 6768  WmiAcpi - ok
22:45:53.0384 6768  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:45:53.0416 6768  wmiApSrv - ok
22:45:53.0440 6768  WMPNetworkSvc - ok
22:45:53.0451 6768  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:45:53.0470 6768  WPCSvc - ok
22:45:53.0482 6768  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:45:53.0497 6768  WPDBusEnum - ok
22:45:53.0501 6768  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:45:53.0554 6768  ws2ifsl - ok
22:45:53.0625 6768  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
22:45:53.0664 6768  WSDPrintDevice - ok
22:45:53.0667 6768  WSearch - ok
22:45:53.0740 6768  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:45:53.0785 6768  wuauserv - ok
22:45:53.0824 6768  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:45:53.0846 6768  WudfPf - ok
22:45:53.0872 6768  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:45:53.0899 6768  WUDFRd - ok
22:45:53.0940 6768  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:45:53.0993 6768  wudfsvc - ok
22:45:54.0021 6768  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:45:54.0083 6768  WwanSvc - ok
22:45:54.0203 6768  X6va011 - ok
22:45:54.0236 6768  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
22:45:54.0273 6768  yukonw7 - ok
22:45:54.0348 6768  [ 74983ADDCA2D9618512C088D856D6615 ] {55662437-DA8C-40c0-AADA-2C816A897A49} c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
22:45:54.0375 6768  {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
22:45:54.0382 6768  ================ Scan global ===============================
22:45:54.0392 6768  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:45:54.0435 6768  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
22:45:54.0443 6768  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
22:45:54.0464 6768  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:45:54.0494 6768  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:45:54.0499 6768  [Global] - ok
22:45:54.0500 6768  ================ Scan MBR ==================================
22:45:54.0511 6768  [ CCB87189F4FBFB8299CC27FAC1F024AC ] \Device\Harddisk0\DR0
22:45:54.0985 6768  \Device\Harddisk0\DR0 - ok
22:45:54.0990 6768  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
22:45:55.0417 6768  \Device\Harddisk1\DR1 - ok
22:45:55.0417 6768  ================ Scan VBR ==================================
22:45:55.0422 6768  [ 15C9011486BFB7FC57705EC30DCD0F02 ] \Device\Harddisk0\DR0\Partition1
22:45:55.0425 6768  \Device\Harddisk0\DR0\Partition1 - ok
22:45:55.0485 6768  [ 6338E3F4A2D6523CB144909A583C51AF ] \Device\Harddisk0\DR0\Partition2
22:45:55.0488 6768  \Device\Harddisk0\DR0\Partition2 - ok
22:45:55.0516 6768  [ 2C6EACBB7C4018705D933444B18EAA02 ] \Device\Harddisk0\DR0\Partition3
22:45:55.0519 6768  \Device\Harddisk0\DR0\Partition3 - ok
22:45:55.0542 6768  [ A0A16FEF63687A6DD61B5DAD62531395 ] \Device\Harddisk0\DR0\Partition4
22:45:55.0544 6768  \Device\Harddisk0\DR0\Partition4 - ok
22:45:55.0549 6768  [ 80282DE08264BAD1601E7828F2FA0AB8 ] \Device\Harddisk1\DR1\Partition1
22:45:55.0552 6768  \Device\Harddisk1\DR1\Partition1 - ok
22:45:55.0553 6768  ============================================================
22:45:55.0553 6768  Scan finished
22:45:55.0553 6768  ============================================================
22:45:55.0577 4140  Detected object count: 6
22:45:55.0577 4140  Actual detected object count: 6
22:46:53.0663 4140  AtiHdmiService ( UnsignedFile.Multi.Generic ) - skipped by user
22:46:53.0663 4140  AtiHdmiService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:46:53.0669 4140  HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:46:53.0669 4140  HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:46:53.0674 4140  HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
22:46:53.0674 4140  HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:46:53.0679 4140  HPWMISVC ( UnsignedFile.Multi.Generic ) - skipped by user
22:46:53.0679 4140  HPWMISVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:46:53.0685 4140  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
22:46:53.0685 4140  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:46:53.0691 4140  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
22:46:53.0691 4140  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip

markusg · 09.07.2013, 21:51

Passt.
Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Calixus · 10.07.2013, 04:27

Combofix Logfile:

Code:

ATTFilter

ComboFix 13-07-09.01 - media 09.07.2013  23:17:28.2.8 - x64
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.49.1031.18.4030.1639 [GMT 2:00]
ausgeführt von:: c:\users\media\Desktop\ComboFix.exe
AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\2433f433
c:\users\media\AppData\Local\lame_enc.dll
c:\users\media\AppData\Local\no23xwrapper.dll
c:\users\media\AppData\Local\ogg.dll
c:\users\media\AppData\Local\vorbis.dll
c:\users\media\AppData\Local\vorbisenc.dll
c:\users\media\AppData\Local\vorbisfile.dll
c:\users\media\AppData\Roaming\2433f433
D:\install.exe
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-06-09 bis 2013-07-09  ))))))))))))))))))))))))))))))
.
.
2013-07-10 02:22 . 2013-07-09 20:20	--------	d-----w-	C:\FRST
2013-07-09 21:29 . 2013-07-09 21:29	--------	d-----w-	c:\users\NeroMediaHomeUser.4\AppData\Local\temp
2013-07-09 21:29 . 2013-07-09 21:29	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2013-07-09 21:29 . 2013-07-09 21:29	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-07-07 20:58 . 2013-07-07 20:58	--------	d-----w-	C:\55bfe61daf269b96559b4877d4f8
2013-07-05 11:19 . 2013-07-05 11:19	--------	d-----w-	c:\windows\system32\SPReview
2013-06-29 20:06 . 2013-06-29 20:06	--------	d-----w-	c:\program files (x86)\MarkAny
2013-06-29 20:05 . 2013-06-29 20:05	--------	d-----w-	c:\users\media\AppData\Local\Samsung
2013-06-29 20:05 . 2013-06-29 20:05	--------	d-----w-	c:\users\media\AppData\Roaming\Samsung
2013-06-29 20:05 . 2013-06-29 20:05	--------	d-----w-	c:\program files (x86)\MyFree Codec
2013-06-29 20:03 . 2013-04-18 17:08	4659712	----a-w-	c:\windows\SysWow64\Redemption.dll
2013-06-29 20:02 . 2013-04-18 17:06	821824	----a-w-	c:\windows\SysWow64\dgderapi.dll
2013-06-29 20:01 . 2013-06-29 20:25	--------	d-----w-	c:\program files (x86)\Samsung
2013-06-29 19:37 . 2013-06-29 20:26	--------	d-----w-	c:\program files\SAMSUNG
2013-06-29 19:36 . 2013-06-29 20:01	--------	d-----w-	c:\programdata\Samsung
2013-06-29 19:35 . 2013-06-21 16:13	0	----a-w-	C:\file0301.bin
2013-06-29 19:35 . 2013-06-21 16:13	75770	----a-w-	C:\script.bin
2013-06-29 19:35 . 2013-06-21 16:13	--------	d-----w-	C:\$INSTDIR
2013-06-29 19:35 . 2013-06-21 16:13	--------	d-----w-	C:\$PLUGINSDIR
2013-06-26 19:07 . 2013-03-04 18:14	43680	----a-r-	c:\windows\system32\drivers\SymIMV.sys
2013-06-26 18:25 . 2013-06-27 18:22	--------	d-----w-	c:\windows\system32\drivers\NISx64\1404000.028
2013-06-24 16:38 . 2013-06-24 16:40	--------	d-----w-	C:\bb1cd549222d0298df3b7920
2013-06-16 13:08 . 2013-06-16 13:08	--------	d-----w-	c:\program files\CCleaner
2013-06-12 20:03 . 2013-06-12 20:03	9089416	----a-w-	c:\windows\SysWow64\FlashPlayerInstaller.exe
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-26 18:27 . 2011-02-26 15:30	177312	----a-w-	c:\windows\system32\drivers\SYMEVENT64x86.SYS
2013-06-12 20:03 . 2012-09-02 07:46	692104	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-12 20:03 . 2011-06-12 16:56	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-18 15:55 . 2012-04-25 19:01	466456	----a-w-	c:\windows\system32\wrap_oal.dll
2013-05-18 15:55 . 2012-04-25 19:01	444952	----a-w-	c:\windows\SysWow64\wrap_oal.dll
2013-05-18 15:55 . 2012-04-25 19:01	122904	----a-w-	c:\windows\system32\OpenAL32.dll
2013-05-18 15:55 . 2012-04-25 19:01	109080	----a-w-	c:\windows\SysWow64\OpenAL32.dll
2013-04-18 17:07 . 2013-04-18 17:07	90112	----a-w-	c:\windows\MAMCityDownload.ocx
2013-04-18 17:07 . 2013-04-18 17:07	330240	----a-w-	c:\windows\MASetupCaller.dll
2013-04-18 17:07 . 2013-04-18 17:07	30568	----a-w-	c:\windows\MusiccityDownload.exe
2013-04-18 17:06 . 2013-04-18 17:06	974848	----a-w-	c:\windows\SysWow64\cis-2.4.dll
2013-04-18 17:06 . 2013-04-18 17:06	81920	----a-w-	c:\windows\SysWow64\issacapi_bs-2.3.dll
2013-04-18 17:06 . 2013-04-18 17:06	65536	----a-w-	c:\windows\SysWow64\issacapi_pe-2.3.dll
2013-04-18 17:06 . 2013-04-18 17:06	57344	----a-w-	c:\windows\SysWow64\MTXSYNCICON.dll
2013-04-18 17:06 . 2013-04-18 17:06	57344	----a-w-	c:\windows\SysWow64\MK_Lyric.dll
2013-04-18 17:06 . 2013-04-18 17:06	57344	----a-w-	c:\windows\SysWow64\issacapi_se-2.3.dll
2013-04-18 17:06 . 2013-04-18 17:06	569344	----a-w-	c:\windows\SysWow64\muzdecode.ax
2013-04-18 17:06 . 2013-04-18 17:06	491520	----a-w-	c:\windows\SysWow64\muzapp.dll
2013-04-18 17:06 . 2013-04-18 17:06	49152	----a-w-	c:\windows\SysWow64\MaJGUILib.dll
2013-04-18 17:06 . 2013-04-18 17:06	45320	----a-w-	c:\windows\SysWow64\MAMACExtract.dll
2013-04-18 17:06 . 2013-04-18 17:06	45056	----a-w-	c:\windows\SysWow64\MaXMLProto.dll
2013-04-18 17:06 . 2013-04-18 17:06	45056	----a-w-	c:\windows\SysWow64\MACXMLProto.dll
2013-04-18 17:06 . 2013-04-18 17:06	40960	----a-w-	c:\windows\SysWow64\MTTELECHIP.dll
2013-04-18 17:06 . 2013-04-18 17:06	352256	----a-w-	c:\windows\SysWow64\MSLUR71.dll
2013-04-18 17:06 . 2013-04-18 17:06	258048	----a-w-	c:\windows\SysWow64\muzoggsp.ax
2013-04-18 17:06 . 2013-04-18 17:06	245760	----a-w-	c:\windows\SysWow64\MSCLib.dll
2013-04-18 17:06 . 2013-04-18 17:06	24576	----a-w-	c:\windows\SysWow64\MASetupCleaner.exe
2013-04-18 17:06 . 2013-04-18 17:06	200704	----a-w-	c:\windows\SysWow64\muzwmts.dll
2013-04-18 17:06 . 2013-04-18 17:06	172032	----a-w-	c:\windows\SysWow64\muzapp.exe
2013-04-18 17:06 . 2013-04-18 17:06	155648	----a-w-	c:\windows\SysWow64\MSFLib.dll
2013-04-18 17:06 . 2013-04-18 17:06	143360	----a-w-	c:\windows\SysWow64\3DAudio.ax
2013-04-18 17:06 . 2013-04-18 17:06	135168	----a-w-	c:\windows\SysWow64\muzaf1.dll
2013-04-18 17:06 . 2013-04-18 17:06	131072	----a-w-	c:\windows\SysWow64\muzmpgsp.ax
2013-04-18 17:06 . 2013-04-18 17:06	122880	----a-w-	c:\windows\SysWow64\muzeffect.ax
2013-04-18 17:06 . 2013-04-18 17:06	118784	----a-w-	c:\windows\SysWow64\MaDRM.dll
2013-04-18 17:06 . 2013-04-18 17:06	110592	----a-w-	c:\windows\SysWow64\muzmp4sp.ax
2013-04-12 14:36 . 2013-04-24 16:55	1653096	----a-w-	c:\windows\system32\drivers\ntfs.sys
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{17166733-40EA-4432-A85C-AE672FF0E236}]
2011-05-11 15:36	163936	----a-w-	c:\programdata\1und1InternetExplorerAddon\BHOXML.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	130736	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Pando Media Booster"="c:\program files (x86)\Pando Networks\Media Booster\PMB.exe" [2011-02-28 3046808]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18643048]
"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-05-23 1561968]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-11-20 106496]
"MSN Toolbar"="c:\program files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe" [2009-11-30 240472]
"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"HP Envy Guides AutoPlay"="c:\program files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\hpdocstart.exe" [2010-03-24 76584]
"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]
"Nero MediaHome 4"="c:\program files (x86)\Nero\Nero MediaHome 4\NeroMediaHome.exe" [2009-06-23 4891944]
"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2009-11-18 54576]
"FreePDF Assistant"="c:\program files (x86)\FreePDF_XP\fpassist.exe" [2011-02-23 371200]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"TkBellExe"="c:\program files (x86)\real\realplayer\update\realsched.exe" [2012-10-11 296096]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-09-28 642728]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-10-11 59280]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]
"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-05-23 311152]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
IconPackager.lnk - c:\program files (x86)\Stardock\MyColors\IconPackager.exe [2009-12-16 1387688]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys;c:\windows\SYSNATIVE\DRIVERS\ASPI32.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys;c:\windows\SYSNATIVE\drivers\dgderdrv.sys [x]
R3 hpdoccardsvc;HP Documention Flash Card Detection Service;c:\program files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe;c:\program files (x86)\Hewlett-Packard\HP ENVY Document Card Utilities\doccardsvc.exe [x]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys;c:\windows\SYSNATIVE\DRIVERS\netw5v64.sys [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 X6va011;X6va011;c:\windows\SysWOW64\Drivers\X6va011;c:\windows\SysWOW64\Drivers\X6va011 [x]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1404000.028\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1404000.028\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1404000.028\SYMEFA64.SYS [x]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\BASHDefs\20130702.001\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\BASHDefs\20130702.001\BHDrvx64.sys [x]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1404000.028\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1404000.028\ccSetx64.sys [x]
S1 DVMIO;DeviceVM IO Service;c:\windows\system32\DRIVERS\dvmio.sys;c:\windows\SYSNATIVE\DRIVERS\dvmio.sys [x]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\IPSDefs\20130706.002\IDSvia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.4.0.40\Definitions\IPSDefs\20130706.002\IDSvia64.sys [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1404000.028\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1404000.028\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS;c:\windows\SYSNATIVE\Drivers\NISx64\1404000.028\SYMNETS.SYS [x]
S1 uigxrdr;uigxrdr;c:\windows\system32\DRIVERS\uigxrdr.sys;c:\windows\SYSNATIVE\DRIVERS\uigxrdr.sys [x]
S2 {55662437-DA8C-40c0-AADA-2C816A897A49};Power Control [2010/08/20 01:32];c:\program files (x86)\Hewlett-Packard\Media\DVD\000.fcl;c:\program files (x86)\Hewlett-Packard\Media\DVD\000.fcl [x]
S2 AAV UpdateService;AAV UpdateService;c:\program files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe;c:\program files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [x]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe;c:\windows\SYSNATIVE\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_1c0e2d1db9f5b08e\AESTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 DvmMDES;DeviceVM Meta Data Export Service;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe;c:\swsetup\QuickWeb\QW.SYS\config\DVMExportService.exe [x]
S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 NIS;Norton Internet Security;c:\program files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe;c:\program files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys;c:\windows\SYSNATIVE\DRIVERS\point64.sys [x]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - 65612132
*NewlyCreated* - 96127275
*Deregistered* - 65612132
*Deregistered* - 96127275
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-18 22:30	1165776	----a-w-	c:\program files (x86)\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2013-07-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-02 20:03]
.
2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-09 19:27]
.
2013-07-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-02-09 19:27]
.
2013-07-09 c:\windows\Tasks\HPCeeScheduleFormedia.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 01:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-05-25 00:36	164016	----a-w-	c:\users\media\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-01-14 487424]
"HP Quick Launch"="c:\program files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-01-18 451072]
"SmartMenu"="c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [2010-01-20 611896]
"HPToneControl"="c:\program files\Hewlett-Packard\HPToneControl\HPTonectl.exe" [2009-08-19 107832]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2009-12-16 8192]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files (x86)\Stardock\Fences\FencesMenu64.dll" [2010-02-11 225128]
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.178.1
Handler: gmx - {8FAF0273-9CA8-4efc-9536-1E35E254D5CD} - c:\program files (x86)\GMX Toolbar\IE\uitb.dll
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-WinampAgent - c:\program files (x86)\Winamp\winampa.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-DarthMod Ultimate Commander Edition - c:\program files (x86)\Steam\SteamApps\common\empire total war\Uninstall_DMUC.exe
AddRemove-Floris Mod Pack_is1 - c:\program files (x86)\Steam\SteamApps\common\mountblade warband\Modules\Modules\unins000.exe
AddRemove-{495A8A3C-8FD0-4C46-9979-95C26181A1AB} - c:\program files (x86)\InstallShield Installation Information\{495A8A3C-8FD0-4C46-9979-95C26181A1AB}\setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\NIS]
"ImagePath"="\"c:\program files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files (x86)\Norton Internet Security\Engine\20.4.0.40\diMaster.dll\" /prefetch:1"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\X6va011]
"ImagePath"="\??\c:\windows\SysWOW64\Drivers\X6va011"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{55662437-DA8C-40c0-AADA-2C816A897A49}]
"ImagePath"="\??\c:\program files (x86)\Hewlett-Packard\Media\DVD\000.fcl"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2091972854-1607454851-931219460-1000\Software\SecuROM\License information*]
"datasecu"=hex:bf,cc,4f,4e,72,8e,bf,b5,fd,1e,03,d0,b5,f6,9c,ef,39,cd,5c,ff,1f,
   d5,57,85,9c,ad,4a,de,61,ac,cc,cd,76,37,d5,ef,e6,9e,c4,b9,d1,c2,b6,b6,39,2e,\
"rkeysecu"=hex:d5,21,80,cf,14,5e,25,0e,07,b0,ea,cc,e6,04,5c,70
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-07-09  23:38:16
ComboFix-quarantined-files.txt  2013-07-09 21:38
.
Vor Suchlauf: 19 Verzeichnis(se), 142.533.140.480 Bytes frei
Nach Suchlauf: 26 Verzeichnis(se), 142.417.936.384 Bytes frei
.
- - End Of File - - 3A92754D9372E27FC1C2606C64D706D1

--- --- ---
D41D8CD98F00B204E9800998ECF8427E

markusg · 10.07.2013, 12:28

Hi,
es sind 2 Logs zu erstellen, poste diese bitte gleichzeitig.
1.
malwarebytes:
Downloade Dir bitte Malwarebytes

Installiere
das Programm in den vorgegebenen Pfad.
Vista und Win7 User mit Rechtsklick "als Administrator starten"
Starte Malwarebytes, klicke auf Aktualisierung --> Suche
nach Aktualisierung
Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
Wenn der Scan beendet
ist, klicke auf Ergebnisse anzeigen.
Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
Poste
das Logfile, welches sich in Notepad öffnet, hier in den Thread.
Nachträglich kannst du den Bericht unter "Log Dateien" finden.

2.

lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.

Calixus · 10.07.2013, 19:39

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.07.10.05

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
media :: HP-ENVY [Administrator]

10.07.2013 16:14:12
mbam-log-2013-07-10 (16-14-12).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 818632
Laufzeit: 1 Stunde(n), 58 Minute(n), 47 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 4
C:\FRST\Quarantine.rar (Backdoor.Androm) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\FRST\Quarantine\nkycluhccthobtqcj.exe (Backdoor.Androm) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\TEMP\STARTUPS\daemon403-x86.exe (Adware.WhenU) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\media\AppData\Local\2433f433 (Trojan.Agent.TPL) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

Code:

ATTFilter

A Game of Dwarves		27.10.2012	NOTWENDIG	
AAVUpdateManager	Wolters Kluwer Deutschland GmbH	31.12.2012	32,0MB	18.00.0000 UNBEKANN
Acrobat.com	Adobe Systems Incorporated	16.05.2010	1,60MB	1.6.65 NOTWENDIG
Adobe AIR	Adobe Systems Inc.	16.05.2010		1.5.0.7220 NOTWENDIG
Adobe Flash Player 10 ActiveX 64-bit	Adobe Systems Incorporated	28.02.2011	6,00MB	10.3.162.28 NOTWENDIG
Adobe Flash Player 10 Plugin 64-bit	Adobe Systems Incorporated	28.02.2011	6,00MB	10.3.162.28 NOTWENDIG
Adobe Flash Player 11 ActiveX	Adobe Systems Incorporated	12.06.2013	6,00MB	11.7.700.224 NOTWENDIG
Adobe Flash Player 11 Plugin	Adobe Systems Incorporated	12.06.2013	6,00MB	11.7.700.224 NOTWENDIG
Adobe Reader X (10.1.7) - Deutsch	Adobe Systems Incorporated	18.05.2013	124MB	10.1.7 NOTWENDIG
AMD Catalyst Install Manager	Advanced Micro Devices, Inc.	02.06.2013	26,3MB	8.0.891.0 NOTWENDIG
Apple Application Support	Apple Inc.	09.02.2013	65,0MB	2.3 NOTWENDIG
Apple Software Update	Apple Inc.	09.02.2013	2,38MB	2.1.3.127 NOTWENDIG
Battlefield Academy	Slitherine	08.07.2011		1.52 NOTWENDIG
Battlefield Heroes	EA Digital illusions	15.05.2011		NOTWENDIG
Blender	Blender Foundation	14.02.2013		2.65a-release UNNÖTIG
Broadcom 2070 Bluetooth 2.1 + EDR	Broadcom Corporation	20.08.2010	144MB	6.2.1.1100 NOTWENDIG
Broadcom 802.11 Wireless LAN Adapter	Broadcom Corporation	20.08.2010		5.60.48.31 NOTWENDIG
Cart Life		20.04.2013		NOTWENDIG
CCleaner	Piriform	19.06.2013		4.03 NOTWENDIG
Cities in Motion		29.05.2011		NOTWENDIG
CivCity: Rome	Firefly Studios	26.01.2013		NOTWENDIG
CloneDVD2	Elaborate Bytes	14.07.2011		2.9.3.0 NOTWENDIG
Corel PaintShop Photo Pro X3	Corel Corporation	16.05.2010	376MB	1.6.1.116 UNNÖTIG
Corel VideoStudio Pro X3	Corel Corporation	16.05.2010	507MB	1.6.0.286 UNNÖTIG
Crusader Kings II	Paradox Interactive	16.06.2013		NOTWENDIG
CyberLink DVD Suite	CyberLink Corp.	16.05.2010	37,5MB	7.0.2527 NOTWENDIG
DarthMod Ultimate Commander Edition		11.01.2012	UNNÖTIG	
Deus Ex: Human Revolution	Eidos Montreal	01.01.2013	NOTWENDIG	
Die Sims™ 3	Electronic Arts	03.05.2013		1.50.56 NOTWENDIG
Die Sims™ 3 Traumkarrieren	Electronic Arts	18.09.2011		4.10.1 NOTWENDIG
DingDong - Die Eieruhr! - Version 3.0	biu software	11.02.2012	200KB	3.0.0 NOTWENDIG
Download Updater (AOL LLC)		23.11.2011	UNBEKANNT	
Dropbox	Dropbox, Inc.	14.06.2013		2.0.22 NOTWENDIG
DVD Menu Pack for HP MediaSmart Video	Hewlett-Packard	20.08.2010	101MB	4.0.3715 NOTWENDIG
EAX4 Unified Redist	Creative Labs	08.05.2011	168KB	4.001 UNBEKANNT
ElsterFormular	Landesfinanzdirektion Thüringen	05.10.2012	160MB	13.3.0.9066 UNNÖTIG
Evochron Mercenary		29.07.2012	NOTWENDIG	
Fences		15.05.2010		NOTWENDIG
Fences	Stardock Corporation	20.08.2010		1.0 NOTWENDIG
Firestorm-Release (remove only)	The Phoenix Viewer Project Inc.	08.02.2013	175MB	4.3.1.31155 NOTWENDIG
Floris Mod Pack 2.5		09.04.2012	3,00GB	UNNÖTIG
FormatFactory 2.95	Free Time	26.06.2012		2.95 NOTWENDIG
FreePDF (Remove only)		02.03.2012		NOTWENDIG
FTL: Faster Than Light		21.09.2012		NOTWENDIG
ftp-uploader	Firma Gregor Schommer Systemberatung, Raderthaler Str. 31, D-50968 Köln	02.03.2012	UNNÖTIG	3.3.0.0
Geeks3D.com FurMark 1.9.0	Geeks3D.com	02.10.2012	4,55MB	 UNNÖTIG
GIMP 2.6.8		21.03.2011		NOTWENDIG
GMX Internet Explorer Addon	1&1 Mail & Media GmbH	12.05.2011		1.0.1.0 UNNÖTIG
GMX Softwareaktualisierung	1&1 Mail & Media GmbH	12.05.2011		2.0.1.0 UNNÖTIG
GMX Toolbar für Internet Explorer	1&1 Mail & Media GmbH	28.05.2011		1.6.3.0 UNNÖTIG
GMX Upload-Manager	1&1 Mail & Media GmbH	21.02.2012		2.0.670 UNNÖTIG
Google Chrome	Google Inc.	09.02.2013		27.0.1453.116 UNNÖTIG
GPL Ghostscript	Artifex Software Inc.	02.03.2012		9.04 UNBEKANNT
Haushaltsbuch8	Reiners-Software	05.11.2012	36,6MB	8.9.125 NOTWENDIG
HP 3D DriveGuard	Hewlett-Packard	20.08.2010	3,27MB	4.0.3.1 NOTWENDIG
HP Customer Participation Program 14.0	HP	28.07.2011		14.0 NOTWENDIG
HP ENVY Document Card Utilities	Hewlett-Packard	15.05.2010	135KB	1.0.5 NOTWENDIG
HP Imaging Device Functions 14.0	HP	28.07.2011		14.0 NOTWENDIG
HP MediaSmart DVD	Hewlett-Packard	20.08.2010	96,8MB	4.0.3727 NOTWENDIG
HP MediaSmart Internet TV	Hewlett-Packard	20.08.2010	41,2MB	3.2.2513 NOTWENDIG
HP MediaSmart Movies and TV	Hewlett-Packard	20.08.2010	1,31MB	1.0.0.10 NOTWENDIG
HP MediaSmart Music	Hewlett-Packard	20.08.2010	74,3MB	4.0.3722 NOTWENDIG
HP MediaSmart Photo	Hewlett-Packard	20.08.2010	223MB	4.0.3722 NOTWENDIG
HP MediaSmart SmartMenu	Hewlett-Packard	20.08.2010	1,93MB	3.1.1.12 NOTWENDIG
HP MediaSmart Video	Hewlett-Packard	20.08.2010	267MB	4.0.3722 NOTWENDIG
HP MediaSmart Webcam	Hewlett-Packard	20.08.2010	134MB	4.0.2511 NOTWENDIG
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 7	HP	28.07.2011		14.0 NOTWENDIG
HP Quick Launch	Hewlett-Packard	20.08.2010	4,28MB	1.0.18
HP QuickWeb Installer	DeviceVM Inc.	20.08.2010	378MB	1.2.9.1 NOTWENDIG
HP Setup	Hewlett-Packard	15.05.2010		1.2.3988.3281 NOTWENDIG
HP Smart Web Printing 4.60	HP	28.07.2011		4.60 NOTWENDIG
HP Software Framework	Hewlett-Packard Company	15.05.2010	2,56MB	3.5.16.1 NOTWENDIG
HP Solution Center 14.0	HP	28.07.2011		14.0 NOTWENDIG
HP Support Assistant	Hewlett-Packard	15.05.2010	32,3MB	4.3.1.2 NOTWENDIG
HP Tone Control	Hewlett-Packard Company	15.05.2010	129KB	2.0.2 NOTWENDIG
HP Update	Hewlett-Packard	28.07.2011	2,97MB	5.002.002.002 NOTWENDIG
HP User Guides 0180	Hewlett-Packard	16.05.2010	103MB	1.01.0000 NOTWENDIG
HP Wireless Assistant	Hewlett-Packard	16.05.2010	5,33MB	4.0.3.2 NOTWENDIG
IDT Audio	IDT	20.08.2010		1.0.6265.0 NOTWENDIG
Intel Digital Logo	Hewlett-Packard Company	20.08.2010 	3,68MB	1.0.5 NOTWENDIG
Intel(R) Management Engine Components	Intel Corporation	16.05.2010		6.0.0.1179 NOTWENDIG
Intel(R) Rapid Storage Technology	Intel Corporation	09.07.2013		9.6.2.1001 NOTWENDIG
Java 7 Update 7	Oracle	12.09.2012	128MB	7.0.70 NOTWENDIG
Kerbal Space Program		20.04.2013		 NOTWENDIG
LogonStudio	Stardock	20.08.2010	1,71MB	1.51.12 UNBEKANNT
Malwarebytes Anti-Malware Version 1.75.0.1300	Malwarebytes Corporation	10.07.2013	19,2MB	1.75.0.1300 NOTWENDIG
MechWarrior Online	Piranha Games Inc.	20.01.2013	3,55MB	1.2.0.0 NOTWENDIG
Medieval II Total War	SEGA	31.07.2011		1.03.000 NOTWENDIG
Medieval II Total War : Kingdoms : Americas	SEGA	31.07.2011		1.03.000 NOTWENDIG
Medieval II Total War : Kingdoms : Britannia	SEGA	31.07.2011		1.03.000 NOTWENDIG
Medieval II Total War : Kingdoms : Crusades	SEGA	31.07.2011		1.03.000 NOTWENDIG
Medieval II Total War : Kingdoms : Teutonic	SEGA	31.07.2011		1.03.000 NOTWENDIG
Microsoft .NET Framework 1.1		01.03.2011		NOTWENDIG
Microsoft .NET Framework 4 Client Profile	Microsoft Corporation	29.06.2013	38,8MB	4.0.30320 NOTWENDIG
Microsoft .NET Framework 4 Extended	Microsoft Corporation	29.06.2013	51,9MB	4.0.30320 NOTWENDIG 
Microsoft Games for Windows - LIVE Redistributable	Microsoft Corporation	20.06.2011	31,3MB	3.5.88.0 NOTWENDIG
Microsoft Games for Windows Marketplace	Microsoft Corporation	20.06.2011	6,03MB	3.5.50.0 NOTWENDIG
Microsoft IntelliPoint 8.2	Microsoft Corporation	13.03.2012		8.20.468.0 NOTWENDIG
Microsoft Reader		18.07.2011 NOTWENDIG		
Microsoft Silverlight	Microsoft Corporation	20.08.2010	29,0MB	3.0.40818.0 NOTWENDIG
Microsoft SQL Server 2005 Compact Edition [ENU]	Microsoft Corporation	15.05.2010	1,72MB	3.1.0000 NOTWENDIG
Microsoft Visual C++ 2005 Redistributable	Microsoft Corporation	20.04.2011	2,37MB	8.0.59193 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17	Microsoft Corporation	16.05.2010	788KB	9.0.30729 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148	Microsoft Corporation	20.08.2010	788KB	9.0.30729.4148 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022	Microsoft Corporation	15.04.2011	1,41MB	9.0.21022 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411	Microsoft Corporation	10.08.2011	1,46MB	9.0.30411 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729	Microsoft Corporation	18.05.2013	234KB	9.0.30729 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17	Microsoft Corporation	16.05.2010	596KB	9.0.30729 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148	Microsoft Corporation	20.08.2010	594KB	9.0.30729.4148 NOTWENDIG
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161	Microsoft Corporation	31.12.2012	600KB	9.0.30729.6161 NOTWENDIG
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219	Microsoft Corporation	16.09.2011	13,8MB	10.0.40219 NOTWENDIG
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219	Microsoft Corporation	16.09.2011	11,1MB	10.0.40219 NOTWENDIG
Microsoft WSE 3.0 Runtime	Microsoft Corp.	17.09.2011	942KB	3.0.5305.0 NOTWENDIG
Microsoft XNA Framework Redistributable 4.0 Refresh	Microsoft Corporation	18.05.2013	8,03MB	4.0.30901.0 NOTWENDIG
Mount & Blade: Warband	Taleworlds Entertainment	03.04.2012	NOTWENDIG	
Movie Theme Pack for HP MediaSmart Video	Hewlett-Packard	20.08.2010	429MB	4.0.3715 NOTWENDIG
MSN Toolbar	Microsoft Corporation	20.08.2010		4.0.0369.0 UNNÖTIG
MSXML 4.0 SP2 (KB954430)	Microsoft Corporation	27.02.2011	1,27MB	4.20.9870.0 UNBEKANNT
MSXML 4.0 SP2 (KB973688)	Microsoft Corporation	27.02.2011	1,33MB	4.20.9876.0 UNBEKANNT
MyFreeCodec		29.06.2013		UNBEKANNT
NEC Electronics USB 3.0 Host Controller Driver	NEC Electronics Corporation	20.08.2010	993KB	1.0.18.0 NOTWENDIG
Nero MediaHome 4 Essentials	Nero AG	25.07.2011 NOTWENDIG		
No23 Recorder	No23	26.06.2012	2,44MB	2.1.0.3 UNBEKANNT
Norton Internet Security	Symantec Corporation	26.06.2013		20.4.0.40 NOTWENDIG
NVIDIA PhysX	NVIDIA Corporation	25.02.2011	78,9MB	9.10.0513 NOTWENDIG
Nvu 1.0	Thorsten Fritz	21.02.2012		1.0 NOTWENDIG
OpenAL		25.04.2012	UNBEKANNT	
OpenOffice.org 3.3	OpenOffice.org	06.03.2011	433MB	3.3.9567 NOTWENDIG
Opera 12.15	Opera Software ASA	07.04.2013		12.15.1748 NOTWENDIG
Origin	Electronic Arts, Inc.	16.09.2011		8.2.4.465 NOTWENDIG
Pando Media Booster	Pando Networks Inc.	28.02.2011	5,46MB	2.3.5.2 UNBEKANNT
PKR	PKR Ltd	02.12.2011	 NOTWENDIG	
Power2Go	CyberLink Corp.	16.05.2010	204MB	6.1.3715 UNBEKANNT
PunkBuster Services	Even Balance, Inc.	15.05.2011		0.990 NOTWENDIG
QuickTime	Apple Inc.	09.02.2013	73,1MB	7.73.80.64 NOTWENDIG
RealPlayer	RealNetworks	11.10.2012	91,7MB	15.0.6 NOTWENDIG
Realtek Ethernet Controller Driver For Windows 7	Realtek	20.08.2010		7.11.1127.2009 NOTWENDIG
Realtek USB 2.0 Card Reader	Realtek Semiconductor Corp.	20.08.2010		6.1.7600.30111 NOTWENDIG
RedMon - Redirection Port Monitor		02.03.2012 UNBEKANNT		
ReNamer	Denis Kozlov	21.02.2013	3,39MB	5.60 UNNÖTIG
Reus		18.05.2013 NOTWENDIG		
Rockstar Games Social Club	Rockstar Games	18.01.2012		1.0.6.1 NOTWENDIG
Samsung Kies	Samsung Electronics Co., Ltd.	29.06.2013	159MB	2.5.3.13043_14 NOTWENDIG
Samsung Story Album Viewer	Samsung Electronics Co., Ltd.	29.06.2013	40,1MB	1.0.0.13052_1 NOTWENDIG
SAMSUNG USB Driver for Mobile Phones	SAMSUNG Electronics Co., Ltd.	29.06.2013	34,9MB	1.5.24.0 NOTWENDIG
SecondLifeBeta (remove only)		01.06.2013 NOTWENDIG		
SecondLifeBetaViewer (remove only)		06.12.2011 NOTWENDIG		
Shop for HP Supplies	HP	28.07.2011		14.0 NOTWENDIG
Sid Meier's Civilization 4	Firaxis Games	02.04.2011		1.74 NOTWENDIG
SketchUp 8	Trimble Navigation Limited	13.02.2013	70,0MB	3.0.16846 NOTWENDIG
Skype™ 6.3	Skype Technologies S.A.	06.04.2013	20,9MB	6.3.105 NOTWENDIG
Star Wars: The Old Republic	Electronic Arts, Inc.	23.11.2011	13,1MB	1.00 NOTWENDIG
Stardock MyColors	Stardock Corporation	20.08.2010		2.7.500 UNBEKANNT
Steam	Valve Corporation	25.02.2011	42,2MB	1.0.0.0 NOTWENDIG
Steuer-Spar-Erklärung 2011	Akademische Arbeitsgemeinschaft Verlag	17.11.2012	384MB	16.16 NOTWENDIG
Steuer-Spar-Erklärung 2012	Wolters Kluwer Deutschland GmbH	21.04.2013	352MB	17.12 NOTWENDIG
Steuer-Spar-Erklärung 2013	Wolters Kluwer Deutschland GmbH	21.04.2013	340MB	18.08 NOTWENDIG
Synaptics Pointing Device Driver	Synaptics Incorporated	20.08.2010		15.0.13.3 NOTWENDIG
TeamSpeak 3 Client	TeamSpeak Systems GmbH	09.06.2013		3.0.10 NOTWENDIG
The Book of Unwritten Tales		18.05.2013 NOTWENDIG		
The Guild II: Renaissance		02.02.2013 NOTWENDIG		
Tropico 4		30.12.2011		 NOTWENDIG
TSR Watermark Image software version 2.3.2.9 - Free version		21.02.2013	4,68MB	 NOTWENDIG
Unity Web Player	Unity Technologies ApS	15.09.2012	12,0MB	 UNBEKANNT
VirtualCloneDrive	Elaborate Bytes	03.04.2011	NOTWENDIG	
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405)	Broadcom	20.08.2010 NOTWENDIG		07/30/2009 6.2.0.9405
Windows Driver Package - Broadcom Bluetooth  (12/16/2009 6.2.0.9414)	Broadcom	20.08.2010 NOTWENDIG		12/16/2009 6.2.0.9414
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800)	Broadcom	20.08.2010 NOTWENDIG		07/28/2009 6.2.0.9800
Windows Live Essentials	Microsoft Corporation	15.05.2010		14.0.8089.0726 NOTWENDIG
Windows Live ID Sign-in Assistant	Microsoft Corporation	20.08.2010	10,0MB	6.500.3165.0 NOTWENDIG
Windows Live Sync	Microsoft Corporation	15.05.2010	2,79MB	14.0.8089.726 NOTWENDIG
Windows Live-Uploadtool	Microsoft Corporation	15.05.2010	224KB	14.0.8014.1029 NOTWENDIG
Windows Media Encoder 9 Series		16.05.2010	NOTWENDIG	
Windows Media Player Firefox Plugin	Microsoft Corp	08.03.2012	296KB	1.0.0.8 NOTWENDIG
Windows XP Mode	Microsoft Corporation	03.12.2011	1,13GB	1.3.7600.16422 NOTWENDIG
WinRAR 4.00 (64-Bit)	win.rar GmbH	03.04.2011		4.00.0 NOTWENDIG
X3 Bonuspaket 3.1.07	Egosoft	04.08.2012		3.1.07 UNNÖTIG

markusg · 10.07.2013, 19:48

Hi,
es sind mehrere Arbeitsschritte auszuführen, bitte achte drauf, Logs und sonstige Ergebnisse möglichst gleichzeitig zu posten.
1.
deinstaliere:
Adobe Flash Player alle
Adobe - Adobe Flash Player installieren
neueste version laden, instalieren.
adobe reader:
Adobe - Adobe Reader herunterladen - Alle Versionen
haken bei mcafee security scan raus nehmen
bitte auch mal den adobe reader wie folgt konfigurieren:
adobe reader öffnen, bearbeiten, voreinstellungen.
allgemein:
nur zertifizierte zusatz module verwenden, anhaken.
Sicherheit (erweitert)
Erweiterte Sicherheit anhaken
und alle Dateien auswählen.
internet:
hier sollte alles deaktiviert werden, es ist sehr unsicher pdfs automatisch zu öffnen, zu downloaden etc.
es ist immer besser diese direkt abzuspeichern da man nur so die kontrolle hat was auf dem pc vor geht.
bei javascript den haken bei java script verwenden raus nehmen
bei updater, automatisch instalieren wählen.
übernehmen /ok

deinstaliere:
Blender
Corel : alle
DarthMod
Download Updater
ElsterFormular
Floris
Geeks3D
GMX : alle
Google
Java
downloade Java jre:
Java-Downloads für alle Betriebssysteme
klicke:
Download der Java-Software für Windows Offline
laden, und instalieren
deinstaliere:
LogonStudio Stardock : ist für einen geenderten Anmeldebildschirm, eigendlich quark, kann weg, außer du nutzt es.
MSN
ReNamer
Unity
X3

Öffne bitte CCleaner, analysieren, starten, PC neustarten.

2.
Bitte beginne damit, Windows Updates zu instalieren.
Am besten geht dies, wenn du über Start, Suchen gehst, und dort Windows Updates eingibst.
Prüfe unter "Einstellungen ändern" dass folgendes ausgewählt ist:
- Updates automatisch Instalieren,
- Täglich
- Uhrzeit wählen
- Bitte den gesammten rest anhaken, außer:
- detailierte benachichtungen anzeigen, wenn neue Microsoft software verfügbar ist.
Klicke jetzt die Schaltfläche "OK"
Klicke jetzt "nach Updates suchen".
Bitte instaliere zunächst wichtige Updates.
Es wird nötig sein, den PC zwischendurch neu zu starten. falls dies der Fall ist, musst du erneut über Start, Suchen, Windows Update aufrufen, auf Updates suchen klicken und die nächsten instalieren.
Mache das selbe bitte mit den optionalen Updates.
Prüfe, wenn du denkst, fertig zu sein, unter Rechtsklick, Computer, eigenschaften, ob das Servicepack 1 instaliert ist.
Wenn ja, weiter, wenn nein melden und Fehlermeldungen von Windows Update posten.
3.
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

neustarten.
4.
HitmanPro - Download - Filepony
Hitmanpro laden, doppelklicken, Scan klicken.
Nichts löschen, auf weiter klicken.
Log speichern und posten, bzw als XML exportieren, packen und anhängenb

09.07.2013, 20:59	#18
markusg /// Malware-holic	BKA 100 € /UKASH:Laptop gesperrt, Kasperski Rescue Disk wird nicht erkannt neustarten und upload durchführen bitte, sollte nu klappen. __________________ __________________

BKA 100 € /UKASH:Laptop gesperrt, Kasperski Rescue Disk wird nicht erkannt

Plagegeister aller Art und deren Bekämpfung: BKA 100 € /UKASH:Laptop gesperrt, Kasperski Rescue Disk wird nicht erkannt