Trojaner-Board
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen (https://www.trojaner-board.de/126539-trojaner-win32-installerex-a-gen-win32-adware-multiplug-d-win32-installerex-a-gen.html)

kongom 05.11.2012 10:18
Trojaner Win32/InstalleRex.A.Gen, Win32/Adware.MultiPlug.D, Win32/InstalleRex.A.Gen
 
Hallo,
hab mir wahrscheinlich mehrere Trojaner eingefangen.

Folgendes tritt bei mir auf:
1. Wenn ich Chrome starte und eine Internetseite anwähle, sehe ich unten links dass superfish geladen wird.

2. Gehe ich auf eine Internetseite ist ein Wort plötzlich blau, anstatt grau wie die beiden anderen Icons. Gehe ich mit der Maus drauf wird im Kontext folgendes angezeigt: "Click to Continue > by DownloadNSave" und ich sehe ein Foto mit einer eindeutigen Aufforderung (Pornoseite)

System: Win7 64 bit, alle Updates stets aktuell,
Sicherheit: Windows SecurityEssentials

Entschuldigung, dass ich diese Verfahrensweise so nicht verstehe:

"Bitte alles nach Möglichkeit hier in CODE-Tags posten.
Wird so gemacht:
Code:
hier steht das Log
"

Ich habe die beiden Dateien deshalb als Anhang eingestellt.

Hier noch das Ergebnis des ESET Scan

cosinus 06.11.2012 22:02
Hallo und :hallo:

Bevor wir uns an die Arbeit machen, möchte ich dich bitten, folgende Punkte vollständig und aufmerksam zu lesen.
  • Lies dir meine Anleitungen aufmerksam durch. Frag umgehend nach, wenn dir irgendetwas unklar sein sollte, bevor du beginnst.

  • Solltest du bei einem Schritt Probleme haben, stoppe dort und beschreib mir das Problem so gut du kannst. Manchmal erfordert ein Schritt den vorhergehenden.

  • Bitte nur Scans durchführen zu denen du von einem Helfer aufgefordert wurdest! Installiere / Deinstalliere keine Software ohne Aufforderung!

  • Poste die Logfiles direkt in deinen Thread (bitte in CODE-Tags) und nicht als Anhang, ausser du wurdest dazu aufgefordert. Logs in Anhängen erschweren mir das Auswerten!

  • Beachte bitte auch => Löschen von Logfiles und andere Anfragen

Note:
Sollte ich drei Tage nichts von mir hören lassen, so melde dich bitte in diesem Strang => Erinnerung an meinem Thread.
Nervige "Wann geht es weiter" Nachrichten enden mit Schließung deines Themas. Auch ich habe ein Leben abseits des Trojaner-Boards.


Zitat:
Entschuldigung, dass ich diese Verfahrensweise so nicht verstehe:
Wird oben haarklein erklärt, bitte halte dich daran. Sonst wird das Auswerten noch schwieriger!
Zudem gibt es oben bei der Formatleiste extra den Button der mit # beschriftet ist, ganz rechts neben dem YOUTUBE-Button

Zitat:
Ich habe die beiden Dateien deshalb als Anhang eingestellt.
Gibt es noch wetere Logs? Bitte das dazu beachten => http://www.trojaner-board.de/125889-...tml#post941520

kongom 07.11.2012 09:54
Hallo,
vielen Dank für Dein Verständnis. Es gibt keine weiteren LOG-Dateien. Jetzt habe ich auch die Möglichkeit des Code einfügen gefunden und verstanden.

Viele Grüße

cosinus 07.11.2012 10:21
1. aswMBR

Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.

Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!
  • Starte die aswMBR.exe Vista und Win7 User aswMBR per Rechtsklick "als Administrator ausführen"
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen) Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort. Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte es erneut nicht klappen teile mir das bitte mit.

Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.


2. TDSS-Killer

Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.

Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtg4nzy0ywy5/settings_2012-09-04.png

kongom 07.11.2012 10:42
Hallo,

bei aswMBR kam in beiden Fällen Fehlermeldung:

"avast!Antirootkit funktioniert nicht mehr"

Bei TDSS-Killer kam folgende LOG-Datei:

Code:
10:34:59.0077 3952  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:34:59.0280 3952  ============================================================
10:34:59.0280 3952  Current date / time: 2012/11/07 10:34:59.0280
10:34:59.0280 3952  SystemInfo:
10:34:59.0296 3952 
10:34:59.0296 3952  OS Version: 6.2.9200 ServicePack: 0.0
10:34:59.0296 3952  Product type: Workstation
10:34:59.0296 3952  ComputerName: LAPETOP
10:34:59.0296 3952  UserName: privat
10:34:59.0296 3952  Windows directory: C:\WINDOWS
10:34:59.0296 3952  System windows directory: C:\WINDOWS
10:34:59.0296 3952  Running under WOW64
10:34:59.0296 3952  Processor architecture: Intel x64
10:34:59.0296 3952  Number of processors: 4
10:34:59.0296 3952  Page size: 0x1000
10:34:59.0296 3952  Boot type: Normal boot
10:34:59.0296 3952  ============================================================
10:34:59.0936 3952  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:34:59.0936 3952  ============================================================
10:34:59.0936 3952  \Device\Harddisk0\DR0:
10:34:59.0936 3952  MBR partitions:
10:34:59.0936 3952  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
10:34:59.0936 3952  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x5578A800
10:34:59.0936 3952  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x557EE800, BlocksNum 0x1D24000
10:34:59.0936 3952  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
10:34:59.0936 3952  ============================================================
10:34:59.0968 3952  C: <-> \Device\Harddisk0\DR0\Partition2
10:35:00.0014 3952  D: <-> \Device\Harddisk0\DR0\Partition3
10:35:00.0014 3952  E: <-> \Device\Harddisk0\DR0\Partition4
10:35:00.0014 3952  ============================================================
10:35:00.0014 3952  Initialize success
10:35:00.0014 3952  ============================================================
10:35:08.0124 2940  ============================================================
10:35:08.0124 2940  Scan started
10:35:08.0124 2940  Mode: Manual; SigCheck; TDLFS;
10:35:08.0124 2940  ============================================================
10:35:08.0765 2940  ================ Scan system memory ========================
10:35:08.0765 2940  System memory - ok
10:35:08.0765 2940  ================ Scan services =============================
10:35:08.0827 2940  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:35:08.0859 2940  !SASCORE - ok
10:35:08.0999 2940  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
10:35:09.0062 2940  1394ohci - ok
10:35:09.0062 2940  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware          C:\WINDOWS\system32\drivers\3ware.sys
10:35:09.0077 2940  3ware - ok
10:35:09.0109 2940  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
10:35:09.0124 2940  ACPI - ok
10:35:09.0140 2940  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
10:35:09.0156 2940  acpiex - ok
10:35:09.0187 2940  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
10:35:09.0202 2940  acpipagr - ok
10:35:09.0202 2940  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi        C:\WINDOWS\System32\drivers\acpipmi.sys
10:35:09.0249 2940  AcpiPmi - ok
10:35:09.0249 2940  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
10:35:09.0281 2940  acpitime - ok
10:35:09.0327 2940  [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:35:09.0327 2940  AdobeARMservice - ok
10:35:09.0359 2940  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx        C:\WINDOWS\system32\drivers\adp94xx.sys
10:35:09.0374 2940  adp94xx - ok
10:35:09.0406 2940  [ D27763E0247292654E7F7D16444C7C72 ] adpahci        C:\WINDOWS\system32\drivers\adpahci.sys
10:35:09.0406 2940  adpahci - ok
10:35:09.0421 2940  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320        C:\WINDOWS\system32\drivers\adpu320.sys
10:35:09.0437 2940  adpu320 - ok
10:35:09.0468 2940  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc    C:\WINDOWS\System32\aelupsvc.dll
10:35:09.0499 2940  AeLookupSvc - ok
10:35:09.0531 2940  [ 9E975BDC89C83900B2C534C4E1B018F8 ] AFD            C:\WINDOWS\system32\drivers\afd.sys
10:35:09.0593 2940  AFD - ok
10:35:09.0624 2940  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
10:35:09.0640 2940  agp440 - ok
10:35:09.0671 2940  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG            C:\WINDOWS\System32\alg.exe
10:35:09.0718 2940  ALG - ok
10:35:09.0734 2940  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
10:35:09.0781 2940  AllUserInstallAgent - ok
10:35:09.0812 2940  [ FB88D16B55F788EEB7590584FE2D8F1A ] AmdK8          C:\WINDOWS\System32\drivers\amdk8.sys
10:35:09.0859 2940  AmdK8 - ok
10:35:09.0859 2940  [ 81402FF3373CE4DF77D5C874E369A985 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
10:35:09.0890 2940  AmdPPM - ok
10:35:09.0906 2940  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata        C:\WINDOWS\system32\drivers\amdsata.sys
10:35:09.0921 2940  amdsata - ok
10:35:09.0937 2940  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
10:35:09.0937 2940  amdsbs - ok
10:35:09.0953 2940  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata        C:\WINDOWS\system32\drivers\amdxata.sys
10:35:09.0953 2940  amdxata - ok
10:35:09.0968 2940  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID          C:\WINDOWS\system32\drivers\appid.sys
10:35:10.0015 2940  AppID - ok
10:35:10.0031 2940  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
10:35:10.0046 2940  AppIDSvc - ok
10:35:10.0062 2940  [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo        C:\WINDOWS\System32\appinfo.dll
10:35:10.0093 2940  Appinfo - ok
10:35:10.0109 2940  [ 2D14788C5D0836292BEB27BBE109BE56 ] AppMgmt        C:\WINDOWS\System32\appmgmts.dll
10:35:10.0156 2940  AppMgmt - ok
10:35:10.0187 2940  [ E933401B392387F4BE34DE8BAF1722A7 ] arc            C:\WINDOWS\system32\drivers\arc.sys
10:35:10.0187 2940  arc - ok
10:35:10.0218 2940  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
10:35:10.0218 2940  arcsas - ok
10:35:10.0234 2940  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:35:10.0265 2940  AsyncMac - ok
10:35:10.0281 2940  [ A721FF570C2387E383BDDEA9632863C9 ] atapi          C:\WINDOWS\system32\drivers\atapi.sys
10:35:10.0281 2940  atapi - ok
10:35:10.0312 2940  [ 8A814F4CBF6AA28A8F0212592824C927 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:35:10.0343 2940  AudioEndpointBuilder - ok
10:35:10.0374 2940  [ 01E8E96251900BCEFAB34FBC1FCEB552 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
10:35:10.0406 2940  Audiosrv - ok
10:35:10.0437 2940  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
10:35:10.0468 2940  AxInstSV - ok
10:35:10.0499 2940  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv        C:\WINDOWS\system32\drivers\bxvbda.sys
10:35:10.0515 2940  b06bdrv - ok
10:35:10.0531 2940  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:35:10.0562 2940  BasicDisplay - ok
10:35:10.0578 2940  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender    C:\WINDOWS\System32\drivers\BasicRender.sys
10:35:10.0609 2940  BasicRender - ok
10:35:10.0624 2940  [ 558F6EEF46EC2642C8F72D34CBB5612E ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
10:35:10.0656 2940  BDESVC - ok
10:35:10.0671 2940  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:35:10.0703 2940  Beep - ok
10:35:10.0749 2940  [ 407F85D5387EDBB665A7969DF4D4712B ] BFE            C:\WINDOWS\System32\bfe.dll
10:35:10.0781 2940  BFE - ok
10:35:10.0812 2940  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\WINDOWS\System32\qmgr.dll
10:35:10.0843 2940  BITS - ok
10:35:10.0859 2940  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
10:35:10.0874 2940  bowser - ok
10:35:10.0906 2940  [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:35:10.0953 2940  BrokerInfrastructure - ok
10:35:10.0968 2940  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser        C:\WINDOWS\System32\browser.dll
10:35:11.0015 2940  Browser - ok
10:35:11.0031 2940  [ FC79BE6D8FBC8699E9980F657D281BE9 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:35:11.0046 2940  BthAvrcpTg - ok
10:35:11.0078 2940  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum      C:\WINDOWS\System32\drivers\bthhfenum.sys
10:35:11.0140 2940  BthHFEnum - ok
10:35:11.0156 2940  [ 6F7368071FCDDB96C0527A6E5D7C1906 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
10:35:11.0171 2940  bthhfhid - ok
10:35:11.0187 2940  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
10:35:11.0218 2940  BTHMODEM - ok
10:35:11.0249 2940  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv        C:\WINDOWS\system32\bthserv.dll
10:35:11.0265 2940  bthserv - ok
10:35:11.0296 2940  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:35:11.0359 2940  cdfs - ok
10:35:11.0374 2940  [ 339BFF85D788268752DA8C9644B188EE ] cdrom          C:\WINDOWS\System32\drivers\cdrom.sys
10:35:11.0406 2940  cdrom - ok
10:35:11.0421 2940  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc    C:\WINDOWS\System32\certprop.dll
10:35:11.0453 2940  CertPropSvc - ok
10:35:11.0468 2940  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
10:35:11.0499 2940  circlass - ok
10:35:11.0609 2940  [ ED81E81752CA817AFA740C14AD05BC6C ] cjpcsc          C:\WINDOWS\SysWOW64\cjpcsc.exe
10:35:11.0671 2940  cjpcsc - ok
10:35:11.0703 2940  [ 06E1F5228399FC49A8D026DA38DB6784 ] cjusb          C:\WINDOWS\system32\DRIVERS\cjusb.sys
10:35:11.0703 2940  cjusb - ok
10:35:11.0734 2940  [ 81326EB34AF569365437B52E4328C1C4 ] ClassicShellService C:\Program Files\Classic Shell\ClassicShellService.exe
10:35:11.0765 2940  ClassicShellService ( UnsignedFile.Multi.Generic ) - warning
10:35:11.0765 2940  ClassicShellService - detected UnsignedFile.Multi.Generic (1)
10:35:11.0796 2940  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
10:35:11.0828 2940  CLFS - ok
10:35:11.0843 2940  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
10:35:11.0859 2940  CmBatt - ok
10:35:11.0890 2940  [ 1894FD2D5966A81D3B07A7C4D8724D59 ] CNG            C:\WINDOWS\system32\Drivers\cng.sys
10:35:11.0906 2940  CNG - ok
10:35:11.0921 2940  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
10:35:11.0937 2940  CompositeBus - ok
10:35:11.0937 2940  COMSysApp - ok
10:35:11.0953 2940  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
10:35:11.0968 2940  condrv - ok
10:35:12.0000 2940  [ 78AF1C499BF02F9814DF959A04A4F9C9 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
10:35:12.0015 2940  cphs - ok
10:35:12.0015 2940  CpqDfw - ok
10:35:12.0046 2940  [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
10:35:12.0062 2940  CryptSvc - ok
10:35:12.0093 2940  [ F2C69C3D98249DE14D4B2832516D4FD5 ] CSC            C:\WINDOWS\system32\drivers\csc.sys
10:35:12.0125 2940  CSC - ok
10:35:12.0156 2940  [ 22CCB6AFF617AAC6121DF6CDA5ABF3F4 ] CscService      C:\WINDOWS\System32\cscsvc.dll
10:35:12.0203 2940  CscService - ok
10:35:12.0234 2940  [ A4CCA7289C1A6223D61FD27BF2FC413F ] dam            C:\WINDOWS\system32\drivers\dam.sys
10:35:12.0234 2940  dam - ok
10:35:12.0296 2940  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:35:12.0359 2940  DcomLaunch - ok
10:35:12.0390 2940  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc      C:\WINDOWS\System32\defragsvc.dll
10:35:12.0453 2940  defragsvc - ok
10:35:12.0484 2940  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:35:12.0531 2940  DeviceAssociationService - ok
10:35:12.0546 2940  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall  C:\WINDOWS\system32\umpnpmgr.dll
10:35:12.0562 2940  DeviceInstall - ok
10:35:12.0593 2940  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
10:35:12.0609 2940  Dfsc - ok
10:35:12.0656 2940  [ D51B32BA3897F630D99713B74B40D6A2 ] DfSdkS          C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 2012\DfsdkS64.exe
10:35:12.0687 2940  DfSdkS ( UnsignedFile.Multi.Generic ) - warning
10:35:12.0687 2940  DfSdkS - detected UnsignedFile.Multi.Generic (1)
10:35:12.0718 2940  [ CFB72DF4B2364AF6D4D685DCD310E942 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
10:35:12.0781 2940  Dhcp - ok
10:35:12.0812 2940  [ 4F26BB00747D41E7C0FE8EBB2900F862 ] DirMngr        C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
10:35:12.0828 2940  DirMngr ( UnsignedFile.Multi.Generic ) - warning
10:35:12.0828 2940  DirMngr - detected UnsignedFile.Multi.Generic (1)
10:35:12.0843 2940  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\WINDOWS\system32\drivers\discache.sys
10:35:12.0890 2940  discache - ok
10:35:12.0921 2940  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\WINDOWS\system32\drivers\disk.sys
10:35:12.0921 2940  disk - ok
10:35:12.0937 2940  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc          C:\WINDOWS\System32\drivers\dmvsc.sys
10:35:12.0968 2940  dmvsc - ok
10:35:13.0000 2940  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:35:13.0046 2940  Dnscache - ok
10:35:13.0078 2940  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc        C:\WINDOWS\System32\dot3svc.dll
10:35:13.0109 2940  dot3svc - ok
10:35:13.0125 2940  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS            C:\WINDOWS\system32\dps.dll
10:35:13.0171 2940  DPS - ok
10:35:13.0203 2940  [ 84D07E4E4FBE72DA3EC1C1E77C49B53C ] drmkaud        C:\WINDOWS\system32\drivers\drmkaud.sys
10:35:13.0250 2940  drmkaud - ok
10:35:13.0328 2940  [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
10:35:13.0375 2940  DsmSvc - ok
10:35:13.0421 2940  [ 898BF1647BBF012B38EF45C7F9F7A67E ] DXGKrnl        C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:35:13.0484 2940  DXGKrnl - ok
10:35:13.0515 2940  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost        C:\WINDOWS\System32\eapsvc.dll
10:35:13.0578 2940  Eaphost - ok
10:35:13.0687 2940  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv          C:\WINDOWS\system32\drivers\evbda.sys
10:35:13.0796 2940  ebdrv - ok
10:35:13.0828 2940  [ F702AB6181513303AB0FC8D59E52708B ] EFS            C:\WINDOWS\System32\lsass.exe
10:35:13.0859 2940  EFS - ok
10:35:13.0875 2940  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass    C:\WINDOWS\system32\drivers\EhStorClass.sys
10:35:13.0875 2940  EhStorClass - ok
10:35:13.0906 2940  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:35:13.0921 2940  EhStorTcgDrv - ok
10:35:13.0937 2940  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
10:35:13.0953 2940  ErrDev - ok
10:35:14.0000 2940  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem    C:\WINDOWS\system32\es.dll
10:35:14.0047 2940  EventSystem - ok
10:35:14.0078 2940  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat          C:\WINDOWS\system32\drivers\exfat.sys
10:35:14.0093 2940  exfat - ok
10:35:14.0125 2940  [ 60996602A7111FD2D086E803F33E4282 ] fastfat        C:\WINDOWS\system32\drivers\fastfat.sys
10:35:14.0125 2940  fastfat - ok
10:35:14.0156 2940  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax            C:\WINDOWS\system32\fxssvc.exe
10:35:14.0203 2940  Fax - ok
10:35:14.0234 2940  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc            C:\WINDOWS\System32\drivers\fdc.sys
10:35:14.0250 2940  fdc - ok
10:35:14.0281 2940  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost        C:\WINDOWS\system32\fdPHost.dll
10:35:14.0328 2940  fdPHost - ok
10:35:14.0343 2940  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
10:35:14.0375 2940  FDResPub - ok
10:35:14.0406 2940  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc          C:\WINDOWS\system32\fhsvc.dll
10:35:14.0422 2940  fhsvc - ok
10:35:14.0437 2940  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
10:35:14.0453 2940  FileInfo - ok
10:35:14.0468 2940  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace      C:\WINDOWS\system32\drivers\filetrace.sys
10:35:14.0484 2940  Filetrace - ok
10:35:14.0515 2940  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
10:35:14.0531 2940  flpydisk - ok
10:35:14.0562 2940  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:35:14.0578 2940  FltMgr - ok
10:35:14.0625 2940  [ 305CB1E16576F436BC8797E629A3D46D ] FontCache      C:\WINDOWS\system32\FntCache.dll
10:35:14.0687 2940  FontCache - ok
10:35:14.0750 2940  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:35:14.0781 2940  FontCache3.0.0.0 - ok
10:35:14.0797 2940  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends      C:\WINDOWS\system32\drivers\FsDepends.sys
10:35:14.0812 2940  FsDepends - ok
10:35:14.0843 2940  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:35:14.0843 2940  Fs_Rec - ok
10:35:14.0875 2940  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:35:14.0890 2940  fvevol - ok
10:35:14.0906 2940  [ 3EF3FCCC0E70EEC5C2AD996F32BBA642 ] FxPPM          C:\WINDOWS\System32\drivers\fxppm.sys
10:35:14.0937 2940  FxPPM - ok
10:35:14.0937 2940  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
10:35:14.0937 2940  gagp30kx - ok
10:35:14.0968 2940  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
10:35:14.0984 2940  gencounter - ok
10:35:15.0000 2940  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101    C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:35:15.0015 2940  GPIOClx0101 - ok
10:35:15.0047 2940  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc          C:\WINDOWS\System32\gpsvc.dll
10:35:15.0078 2940  gpsvc - ok
10:35:15.0125 2940  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:35:15.0125 2940  gupdate - ok
10:35:15.0140 2940  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:35:15.0140 2940  gupdatem - ok
10:35:15.0172 2940  [ 9FC1F11D4D19F61DFE5CC878B4557D3A ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
10:35:15.0203 2940  HdAudAddService - ok
10:35:15.0234 2940  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
10:35:15.0265 2940  HDAudBus - ok
10:35:15.0297 2940  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt        C:\WINDOWS\System32\drivers\HidBatt.sys
10:35:15.0312 2940  HidBatt - ok
10:35:15.0328 2940  [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
10:35:15.0359 2940  HidBth - ok
10:35:15.0359 2940  [ AC0526C4E3A7954F750B8F8D95EFB340 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
10:35:15.0390 2940  hidi2c - ok
10:35:15.0390 2940  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr          C:\WINDOWS\System32\drivers\hidir.sys
10:35:15.0422 2940  HidIr - ok
10:35:15.0453 2940  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv        C:\WINDOWS\system32\hidserv.dll
10:35:15.0468 2940  hidserv - ok
10:35:15.0484 2940  [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
10:35:15.0500 2940  HidUsb - ok
10:35:15.0531 2940  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
10:35:15.0531 2940  hkmsvc - ok
10:35:15.0562 2940  [ 6CC1AD7B0E071C317B7FB8FC6AEF0EDA ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:35:15.0593 2940  HomeGroupListener - ok
10:35:15.0625 2940  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:35:15.0640 2940  HomeGroupProvider - ok
10:35:15.0703 2940  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:35:15.0718 2940  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning
10:35:15.0718 2940  HP Support Assistant Service - detected UnsignedFile.Multi.Generic (1)
10:35:15.0765 2940  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:35:15.0812 2940  hpqwmiex - ok
10:35:15.0844 2940  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
10:35:15.0844 2940  HpSAMD - ok
10:35:15.0875 2940  [ 47DBBF38E00C3F7404B71F6509241EF1 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
10:35:15.0906 2940  HTTP - ok
10:35:15.0922 2940  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
10:35:15.0937 2940  hwpolicy - ok
10:35:15.0937 2940  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
10:35:15.0968 2940  hyperkbd - ok
10:35:15.0968 2940  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:35:16.0000 2940  HyperVideo - ok
10:35:16.0015 2940  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
10:35:16.0047 2940  i8042prt - ok
10:35:16.0062 2940  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV        C:\WINDOWS\system32\drivers\iaStorV.sys
10:35:16.0078 2940  iaStorV - ok
10:35:16.0219 2940  [ A1CF07D24EDCDC6870535471654D957C ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
10:35:16.0328 2940  igfx - ok
10:35:16.0359 2940  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp          C:\WINDOWS\system32\drivers\iirsp.sys
10:35:16.0359 2940  iirsp - ok
10:35:16.0437 2940  [ A06EFD4965F8A3F97A8C9A291D032678 ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
10:35:16.0453 2940  IJPLMSVC - ok
10:35:16.0515 2940  [ 45EACE8D94B9CEC746A85154892C4FDC ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
10:35:16.0562 2940  IKEEXT - ok
10:35:16.0594 2940  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
10:35:16.0594 2940  intelide - ok
10:35:16.0625 2940  [ F9E126AA767E2E6E3128434A43C9F713 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
10:35:16.0625 2940  intelppm - ok
10:35:16.0640 2940  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:35:16.0656 2940  IpFilterDriver - ok
10:35:16.0703 2940  [ CAC5202757EF68C4849B0DFFA75F6D3C ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
10:35:16.0750 2940  iphlpsvc - ok
10:35:16.0765 2940  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV        C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:35:16.0797 2940  IPMIDRV - ok
10:35:16.0828 2940  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT          C:\WINDOWS\system32\drivers\ipnat.sys
10:35:16.0859 2940  IPNAT - ok
10:35:16.0875 2940  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
10:35:16.0906 2940  IRENUM - ok
10:35:16.0922 2940  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
10:35:16.0937 2940  isapnp - ok
10:35:16.0969 2940  [ F5F0DE1B7F256997501EECECE9648108 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
10:35:16.0984 2940  iScsiPrt - ok
10:35:17.0000 2940  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
10:35:17.0000 2940  kbdclass - ok
10:35:17.0015 2940  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
10:35:17.0031 2940  kbdhid - ok
10:35:17.0047 2940  [ FB6C185092E18011EF49989425C2AA87 ] kdnic          C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:35:17.0094 2940  kdnic - ok
10:35:17.0109 2940  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\WINDOWS\system32\lsass.exe
10:35:17.0109 2940  KeyIso - ok
10:35:17.0125 2940  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
10:35:17.0140 2940  KSecDD - ok
10:35:17.0172 2940  [ E427D299CFE267A2465D3AAF81440ED9 ] KSecPkg        C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:35:17.0172 2940  KSecPkg - ok
10:35:17.0187 2940  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk        C:\WINDOWS\system32\drivers\ksthunk.sys
10:35:17.0219 2940  ksthunk - ok
10:35:17.0234 2940  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm          C:\WINDOWS\system32\msdtckrm.dll
10:35:17.0250 2940  KtmRm - ok
10:35:17.0297 2940  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
10:35:17.0328 2940  LanmanServer - ok
10:35:17.0359 2940  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:35:17.0390 2940  LanmanWorkstation - ok
10:35:17.0390 2940  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:35:17.0406 2940  lltdio - ok
10:35:17.0437 2940  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc        C:\WINDOWS\System32\lltdsvc.dll
10:35:17.0531 2940  lltdsvc - ok
10:35:17.0547 2940  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts        C:\WINDOWS\System32\lmhsvc.dll
10:35:17.0578 2940  lmhosts - ok
10:35:17.0609 2940  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS        C:\WINDOWS\system32\drivers\lsi_sas.sys
10:35:17.0625 2940  LSI_SAS - ok
10:35:17.0640 2940  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:35:17.0640 2940  LSI_SAS2 - ok
10:35:17.0672 2940  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\WINDOWS\system32\drivers\lsi_scsi.sys
10:35:17.0672 2940  LSI_SCSI - ok
10:35:17.0672 2940  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS        C:\WINDOWS\system32\drivers\lsi_sss.sys
10:35:17.0687 2940  LSI_SSS - ok
10:35:17.0719 2940  [ 8FEFDCEE40B75FD23B4BC60DA6576113 ] LSM            C:\WINDOWS\System32\lsm.dll
10:35:17.0750 2940  LSM - ok
10:35:17.0765 2940  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv          C:\WINDOWS\system32\drivers\luafv.sys
10:35:17.0797 2940  luafv - ok
10:35:17.0828 2940  [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector  C:\WINDOWS\system32\drivers\mbam.sys
10:35:17.0828 2940  MBAMProtector - ok
10:35:17.0875 2940  [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
10:35:17.0890 2940  MBAMScheduler - ok
10:35:17.0906 2940  [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
10:35:17.0922 2940  MBAMService - ok
10:35:17.0937 2940  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas        C:\WINDOWS\system32\drivers\megasas.sys
10:35:17.0937 2940  megasas - ok
10:35:17.0969 2940  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\WINDOWS\system32\drivers\MegaSR.sys
10:35:17.0984 2940  MegaSR - ok
10:35:18.0016 2940  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
10:35:18.0031 2940  MEIx64 - ok
10:35:18.0047 2940  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS          C:\WINDOWS\system32\mmcss.dll
10:35:18.0062 2940  MMCSS - ok
10:35:18.0094 2940  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem          C:\WINDOWS\system32\drivers\modem.sys
10:35:18.0109 2940  Modem - ok
10:35:18.0125 2940  [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor        C:\WINDOWS\system32\DRIVERS\monitor.sys
10:35:18.0140 2940  monitor - ok
10:35:18.0156 2940  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
10:35:18.0156 2940  mouclass - ok
10:35:18.0172 2940  [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
10:35:18.0187 2940  mouhid - ok
10:35:18.0203 2940  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
10:35:18.0219 2940  mountmgr - ok
10:35:18.0234 2940  [ DAE3C509F33059BC4D48A8925F476FB4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:35:18.0250 2940  MozillaMaintenance - ok
10:35:18.0281 2940  [ 36BF4D86F166ACBC14F0B8B8F90CBCEA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
10:35:18.0297 2940  mpsdrv - ok
10:35:18.0344 2940  [ 411EA973A1961C287927DF13891EB41E ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
10:35:18.0375 2940  MpsSvc - ok
10:35:18.0422 2940  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
10:35:18.0422 2940  MRxDAV - ok
10:35:18.0437 2940  [ 1EEAA5A62E8C49DDF58798F06F78BFFA ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:35:18.0469 2940  mrxsmb - ok
10:35:18.0500 2940  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:35:18.0516 2940  mrxsmb10 - ok
10:35:18.0531 2940  [ BFBE1EA55ECC15733933D429E384BCA4 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:35:18.0547 2940  mrxsmb20 - ok
10:35:18.0562 2940  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
10:35:18.0578 2940  MsBridge - ok
10:35:18.0609 2940  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC          C:\WINDOWS\System32\msdtc.exe
10:35:18.0641 2940  MSDTC - ok
10:35:18.0656 2940  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:35:18.0656 2940  Msfs - ok
10:35:18.0687 2940  [ C9BFB0353099B071E70299549C18C8AE ] msgpiowin32    C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:35:18.0687 2940  msgpiowin32 - ok
10:35:18.0703 2940  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf      C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:35:18.0734 2940  mshidkmdf - ok
10:35:18.0734 2940  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf      C:\WINDOWS\System32\drivers\mshidumdf.sys
10:35:18.0734 2940  mshidumdf - ok
10:35:18.0750 2940  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
10:35:18.0766 2940  msisadrv - ok
10:35:18.0797 2940  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI        C:\WINDOWS\system32\iscsiexe.dll
10:35:18.0812 2940  MSiSCSI - ok
10:35:18.0828 2940  msiserver - ok
10:35:18.0844 2940  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV        C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:35:18.0859 2940  MSKSSRV - ok
10:35:18.0875 2940  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:35:18.0906 2940  MsLldp - ok
10:35:18.0922 2940  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:35:18.0937 2940  MSPCLOCK - ok
10:35:18.0937 2940  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM          C:\WINDOWS\system32\drivers\MSPQM.sys
10:35:18.0937 2940  MSPQM - ok
10:35:18.0953 2940  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC          C:\WINDOWS\system32\drivers\MsRPC.sys
10:35:18.0969 2940  MsRPC - ok
10:35:18.0984 2940  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
10:35:19.0000 2940  mssmbios - ok
10:35:19.0016 2940  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE          C:\WINDOWS\system32\drivers\MSTEE.sys
10:35:19.0031 2940  MSTEE - ok
10:35:19.0031 2940  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
10:35:19.0031 2940  MTConfig - ok
10:35:19.0047 2940  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup            C:\WINDOWS\system32\Drivers\mup.sys
10:35:19.0062 2940  Mup - ok
10:35:19.0062 2940  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
10:35:19.0062 2940  mvumis - ok
10:35:19.0094 2940  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\WINDOWS\system32\qagentRT.dll
10:35:19.0109 2940  napagent - ok
10:35:19.0141 2940  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP    C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:35:19.0156 2940  NativeWifiP - ok
10:35:19.0219 2940  [ 934BB0D23A25C8C136570800A5A149B6 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
10:35:19.0234 2940  NAUpdate - ok
10:35:19.0250 2940  [ DACA803A8D732FE5EEAA024EC342F81D ] NBVol          C:\WINDOWS\system32\DRIVERS\NBVol.sys
10:35:19.0250 2940  NBVol - ok
10:35:19.0266 2940  [ 6208F622E9E35860DFB0753DFF56F0C0 ] NBVolUp        C:\WINDOWS\system32\DRIVERS\NBVolUp.sys
10:35:19.0281 2940  NBVolUp - ok
10:35:19.0312 2940  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
10:35:19.0328 2940  NcaSvc - ok
10:35:19.0344 2940  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
10:35:19.0391 2940  NcdAutoSetup - ok
10:35:19.0437 2940  [ FE6463C1574610E26ED8DE2054DF59A4 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
10:35:19.0500 2940  NDIS - ok
10:35:19.0516 2940  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap        C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:35:19.0531 2940  NdisCap - ok
10:35:19.0547 2940  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:35:19.0578 2940  NdisImPlatform - ok
10:35:19.0609 2940  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:35:19.0625 2940  NdisTapi - ok
10:35:19.0641 2940  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio        C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:35:19.0656 2940  Ndisuio - ok
10:35:19.0687 2940  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan        C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:35:19.0719 2940  NdisWan - ok
10:35:19.0719 2940  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY  C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:35:19.0734 2940  NDISWANLEGACY - ok
10:35:19.0750 2940  [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy        C:\WINDOWS\system32\drivers\NDProxy.sys
10:35:19.0766 2940  NDProxy - ok
10:35:19.0781 2940  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu            C:\WINDOWS\system32\drivers\Ndu.sys
10:35:19.0797 2940  Ndu - ok
10:35:19.0812 2940  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS        C:\WINDOWS\system32\DRIVERS\netbios.sys
10:35:19.0828 2940  NetBIOS - ok
10:35:19.0891 2940  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT          C:\WINDOWS\system32\DRIVERS\netbt.sys
10:35:19.0937 2940  NetBT - ok
10:35:19.0953 2940  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:35:19.0969 2940  Netlogon - ok
10:35:20.0000 2940  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\WINDOWS\System32\netman.dll
10:35:20.0047 2940  Netman - ok
10:35:20.0062 2940  [ 20F6FD63E6D456114BC8056D62792786 ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
10:35:20.0094 2940  netprofm - ok
10:35:20.0156 2940  [ 06C59F7859970C445F09E233D607FA4C ] netr28x        C:\WINDOWS\system32\DRIVERS\netr28x.sys
10:35:20.0187 2940  netr28x - ok
10:35:20.0219 2940  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:35:20.0266 2940  NetTcpPortSharing - ok
10:35:20.0281 2940  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960        C:\WINDOWS\system32\drivers\nfrd960.sys
10:35:20.0297 2940  nfrd960 - ok
10:35:20.0328 2940  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
10:35:20.0359 2940  NlaSvc - ok
10:35:20.0375 2940  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:35:20.0391 2940  Npfs - ok
10:35:20.0391 2940  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig      C:\WINDOWS\System32\drivers\npsvctrig.sys
10:35:20.0422 2940  npsvctrig - ok
10:35:20.0453 2940  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi            C:\WINDOWS\system32\nsisvc.dll
10:35:20.0453 2940  nsi - ok
10:35:20.0469 2940  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
10:35:20.0500 2940  nsiproxy - ok
10:35:20.0562 2940  [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:35:20.0609 2940  Ntfs - ok
10:35:20.0641 2940  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:35:20.0656 2940  Null - ok
10:35:20.0688 2940  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
10:35:20.0703 2940  nvraid - ok
10:35:20.0703 2940  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
10:35:20.0719 2940  nvstor - ok
10:35:20.0734 2940  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
10:35:20.0750 2940  nv_agp - ok
10:35:20.0797 2940  [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose            C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:35:20.0813 2940  ose - ok
10:35:20.0875 2940  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
10:35:20.0922 2940  p2pimsvc - ok
10:35:20.0953 2940  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
10:35:20.0984 2940  p2psvc - ok
10:35:21.0000 2940  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport        C:\WINDOWS\System32\drivers\parport.sys
10:35:21.0016 2940  Parport - ok
10:35:21.0031 2940  [ C1D7BA7F0DE487DFEEB51BF8D3EC5562 ] partmgr        C:\WINDOWS\system32\drivers\partmgr.sys
10:35:21.0047 2940  partmgr - ok
10:35:21.0063 2940  [ 19E41F140A6ADBD38943710DA7FF0E38 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
10:35:21.0078 2940  PcaSvc - ok
10:35:21.0094 2940  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci            C:\WINDOWS\system32\drivers\pci.sys
10:35:21.0094 2940  pci - ok
10:35:21.0125 2940  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
10:35:21.0125 2940  pciide - ok
10:35:21.0156 2940  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
10:35:21.0172 2940  pcmcia - ok
10:35:21.0188 2940  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw            C:\WINDOWS\system32\drivers\pcw.sys
10:35:21.0203 2940  pcw - ok
10:35:21.0234 2940  [ A192B9FC67F181A78B05175EE0A244FA ] pdc            C:\WINDOWS\system32\drivers\pdc.sys
10:35:21.0250 2940  pdc - ok
10:35:21.0281 2940  [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
10:35:21.0313 2940  PEAUTH - ok
10:35:21.0359 2940  [ DF0D9BDCB600913F40FF125BF8CE1979 ] PeerDistSvc    C:\WINDOWS\system32\peerdistsvc.dll
10:35:21.0453 2940  PeerDistSvc - ok
10:35:21.0516 2940  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
10:35:21.0547 2940  PerfHost - ok
10:35:21.0594 2940  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla            C:\WINDOWS\system32\pla.dll
10:35:21.0656 2940  pla - ok
10:35:21.0672 2940  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
10:35:21.0688 2940  PlugPlay - ok
10:35:21.0734 2940  [ AFA7A2192F0E52ACC715637227AB360F ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
10:35:21.0750 2940  PMBDeviceInfoProvider - ok
10:35:21.0781 2940  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg    C:\WINDOWS\system32\pnrpauto.dll
10:35:21.0797 2940  PNRPAutoReg - ok
10:35:21.0813 2940  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc        C:\WINDOWS\system32\pnrpsvc.dll
10:35:21.0828 2940  PNRPsvc - ok
10:35:21.0859 2940  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent    C:\WINDOWS\System32\ipsecsvc.dll
10:35:21.0891 2940  PolicyAgent - ok
10:35:21.0906 2940  [ F1E067F56373F11EA4B785CAE823740A ] Power          C:\WINDOWS\system32\umpo.dll
10:35:21.0922 2940  Power - ok
10:35:21.0953 2940  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:35:21.0984 2940  PptpMiniport - ok
10:35:22.0094 2940  [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE ] PrintNotify    C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
10:35:22.0172 2940  PrintNotify - ok
10:35:22.0188 2940  [ 8DA167F8967AB35A2487095CB1B879A0 ] Processor      C:\WINDOWS\System32\drivers\processr.sys
10:35:22.0203 2940  Processor - ok
10:35:22.0219 2940  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc        C:\WINDOWS\system32\profsvc.dll
10:35:22.0234 2940  ProfSvc - ok
10:35:22.0250 2940  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
10:35:22.0266 2940  Psched - ok
10:35:22.0281 2940  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE          C:\WINDOWS\system32\qwave.dll
10:35:22.0313 2940  QWAVE - ok
10:35:22.0328 2940  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
10:35:22.0344 2940  QWAVEdrv - ok
10:35:22.0360 2940  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:35:22.0391 2940  RasAcd - ok
10:35:22.0422 2940  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn    C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
10:35:22.0438 2940  RasAgileVpn - ok
10:35:22.0469 2940  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto        C:\WINDOWS\System32\rasauto.dll
10:35:22.0484 2940  RasAuto - ok
10:35:22.0500 2940  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp        C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:35:22.0516 2940  Rasl2tp - ok
10:35:22.0547 2940  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:35:22.0563 2940  RasMan - ok
10:35:22.0594 2940  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:35:22.0594 2940  RasPppoe - ok
10:35:22.0609 2940  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp        C:\WINDOWS\system32\DRIVERS\rassstp.sys
10:35:22.0609 2940  RasSstp - ok
10:35:22.0656 2940  [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss          C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:35:22.0672 2940  rdbss - ok
10:35:22.0688 2940  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
10:35:22.0703 2940  rdpbus - ok
10:35:22.0719 2940  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR          C:\WINDOWS\system32\drivers\rdpdr.sys
10:35:22.0750 2940  RDPDR - ok
10:35:22.0766 2940  [ 3B4F32CA8B37584ECF98BCE136E38B96 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:35:22.0766 2940  RdpVideoMiniport - ok
10:35:22.0813 2940  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD          C:\WINDOWS\system32\drivers\RDPWD.sys
10:35:22.0828 2940  RDPWD - ok
10:35:22.0844 2940  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
10:35:22.0844 2940  rdyboost - ok
10:35:22.0875 2940  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:35:22.0906 2940  RemoteAccess - ok
10:35:22.0938 2940  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
10:35:22.0953 2940  RemoteRegistry - ok
10:35:22.0985 2940  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
10:35:23.0000 2940  RpcEptMapper - ok
10:35:23.0031 2940  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:35:23.0031 2940  RpcLocator - ok
10:35:23.0063 2940  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs          C:\WINDOWS\system32\rpcss.dll
10:35:23.0078 2940  RpcSs - ok
10:35:23.0125 2940  [ E909662BF3CED6B79F2239DDA75BC6A4 ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
10:35:23.0125 2940  RSPCIESTOR - ok
10:35:23.0141 2940  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:35:23.0188 2940  rspndr - ok
10:35:23.0219 2940  [ 15923AA360F7675D3D43C9669316A0BA ] RTL8168        C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
10:35:23.0250 2940  RTL8168 - ok
10:35:23.0266 2940  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap          C:\WINDOWS\System32\drivers\vms3cap.sys
10:35:23.0281 2940  s3cap - ok
10:35:23.0297 2940  [ F702AB6181513303AB0FC8D59E52708B ] SamSs          C:\WINDOWS\system32\lsass.exe
10:35:23.0313 2940  SamSs - ok
10:35:23.0375 2940  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:35:23.0391 2940  SASDIFSV - ok
10:35:23.0391 2940  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:35:23.0406 2940  SASKUTIL - ok
10:35:23.0453 2940  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
10:35:23.0485 2940  sbp2port - ok
10:35:23.0516 2940  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
10:35:23.0547 2940  SCardSvr - ok
10:35:23.0563 2940  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:35:23.0578 2940  scfilter - ok
10:35:23.0625 2940  [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:35:23.0656 2940  Schedule - ok
10:35:23.0688 2940  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc    C:\WINDOWS\System32\certprop.dll
10:35:23.0703 2940  SCPolicySvc - ok
10:35:23.0735 2940  [ A27CF856218B1B1442A7A3B5CF94B4B9 ] sdbus          C:\WINDOWS\System32\drivers\sdbus.sys
10:35:23.0750 2940  sdbus - ok
10:35:23.0766 2940  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
10:35:23.0797 2940  SDRSVC - ok
10:35:23.0797 2940  [ 74369A913837FB46C3B27373DA2ADF4E ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
10:35:23.0797 2940  sdstor - ok
10:35:23.0828 2940  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
10:35:23.0828 2940  secdrv - ok
10:35:23.0844 2940  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\WINDOWS\system32\seclogon.dll
10:35:23.0860 2940  seclogon - ok
10:35:23.0875 2940  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\WINDOWS\System32\sens.dll
10:35:23.0891 2940  SENS - ok
10:35:23.0922 2940  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
10:35:23.0953 2940  SensrSvc - ok
10:35:23.0969 2940  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx          C:\WINDOWS\system32\drivers\SerCx.sys
10:35:23.0969 2940  SerCx - ok
10:35:23.0985 2940  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum        C:\WINDOWS\System32\drivers\serenum.sys
10:35:24.0016 2940  Serenum - ok
10:35:24.0031 2940  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
10:35:24.0031 2940  Serial - ok
10:35:24.0031 2940  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
10:35:24.0047 2940  sermouse - ok
10:35:24.0078 2940  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
10:35:24.0094 2940  SessionEnv - ok
10:35:24.0094 2940  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy        C:\WINDOWS\System32\drivers\sfloppy.sys
10:35:24.0125 2940  sfloppy - ok
10:35:24.0141 2940  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:35:24.0172 2940  SharedAccess - ok
10:35:24.0219 2940  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:35:24.0266 2940  ShellHWDetection - ok
10:35:24.0297 2940  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:35:24.0313 2940  SiSRaid2 - ok
10:35:24.0313 2940  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
10:35:24.0328 2940  SiSRaid4 - ok
10:35:24.0438 2940  [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:35:24.0500 2940  Skype C2C Service - ok
10:35:24.0547 2940  [ 94A221B95F4FB4FAAB6A56A683D6FDF3 ] SkypeUpdate    C:\Program Files (x86)\Skype\Updater\Updater.exe
10:35:24.0547 2940  SkypeUpdate - ok
10:35:24.0578 2940  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
10:35:24.0641 2940  SNMPTRAP - ok
10:35:24.0672 2940  [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport      C:\WINDOWS\system32\drivers\spaceport.sys
10:35:24.0688 2940  spaceport - ok
10:35:24.0703 2940  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx          C:\WINDOWS\system32\drivers\SpbCx.sys
10:35:24.0719 2940  SpbCx - ok
10:35:24.0750 2940  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler        C:\WINDOWS\System32\spoolsv.exe
10:35:24.0782 2940  Spooler - ok
10:35:24.0906 2940  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
10:35:25.0063 2940  sppsvc - ok
10:35:25.0094 2940  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv            C:\WINDOWS\system32\DRIVERS\srv.sys
10:35:25.0125 2940  srv - ok
10:35:25.0141 2940  [ 0DE224F7B8041B17AA53D00327A86396 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
10:35:25.0157 2940  srv2 - ok
10:35:25.0172 2940  [ 9400C71F5A1A380B494B6922F007D485 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:35:25.0203 2940  srvnet - ok
10:35:25.0250 2940  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV        C:\WINDOWS\System32\ssdpsrv.dll
10:35:25.0266 2940  SSDPSRV - ok
10:35:25.0282 2940  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc        C:\WINDOWS\system32\sstpsvc.dll
10:35:25.0282 2940  SstpSvc - ok
10:35:25.0360 2940  [ E4AEA6FC64A979375149B86882CA2100 ] StarMoney 8.0 OnlineUpdate C:\Program Files (x86)\StarMoney 8.0\ouservice\StarMoneyOnlineUpdate.exe
10:35:25.0407 2940  StarMoney 8.0 OnlineUpdate - ok
10:35:25.0422 2940  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
10:35:25.0438 2940  stexstor - ok
10:35:25.0469 2940  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\WINDOWS\System32\wiaservc.dll
10:35:25.0500 2940  stisvc - ok
10:35:25.0500 2940  [ C588BBD37B432CE3204E5765B459E6B2 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
10:35:25.0516 2940  storahci - ok
10:35:25.0547 2940  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt        C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
10:35:25.0547 2940  storflt - ok
10:35:25.0563 2940  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc        C:\WINDOWS\system32\storsvc.dll
10:35:25.0610 2940  StorSvc - ok
10:35:25.0625 2940  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc        C:\WINDOWS\system32\drivers\storvsc.sys
10:35:25.0625 2940  storvsc - ok
10:35:25.0641 2940  [ 1A36AC469140F87CDE62D7F8524E270C ] storvsp        C:\WINDOWS\System32\drivers\storvsp.sys
10:35:25.0672 2940  storvsp - ok
10:35:25.0703 2940  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc          C:\WINDOWS\system32\svsvc.dll
10:35:25.0735 2940  svsvc - ok
10:35:25.0750 2940  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
10:35:25.0750 2940  swenum - ok
10:35:25.0782 2940  [ 502F9488540051F3E6C39889ECFA76BB ] swprv          C:\WINDOWS\System32\swprv.dll
10:35:25.0813 2940  swprv - ok
10:35:25.0844 2940  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP          C:\WINDOWS\system32\DRIVERS\SynTP.sys
10:35:25.0860 2940  SynTP - ok
10:35:25.0922 2940  [ DC21E1F06343773D7E24362DCEF7944B ] SysMain        C:\WINDOWS\system32\sysmain.dll
10:35:25.0938 2940  SysMain - ok
10:35:25.0985 2940  [ 079244F281621FEDCC161D3923E858FE ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:35:26.0047 2940  SystemEventsBroker - ok
10:35:26.0078 2940  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:35:26.0094 2940  TabletInputService - ok
10:35:26.0125 2940  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv        C:\WINDOWS\System32\tapisrv.dll
10:35:26.0141 2940  TapiSrv - ok
10:35:26.0203 2940  [ 1D644E2D0FC395A055AB1C23C3B43631 ] Tcpip          C:\WINDOWS\system32\drivers\tcpip.sys
10:35:26.0282 2940  Tcpip - ok
10:35:26.0313 2940  [ 1D644E2D0FC395A055AB1C23C3B43631 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:35:26.0360 2940  TCPIP6 - ok
10:35:26.0375 2940  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
10:35:26.0391 2940  tcpipreg - ok
10:35:26.0407 2940  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx            C:\WINDOWS\system32\DRIVERS\tdx.sys
10:35:26.0422 2940  tdx - ok
10:35:26.0438 2940  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
10:35:26.0438 2940  terminpt - ok
10:35:26.0485 2940  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService    C:\WINDOWS\System32\termsrv.dll
10:35:26.0516 2940  TermService - ok
10:35:26.0532 2940  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\WINDOWS\system32\themeservice.dll
10:35:26.0563 2940  Themes - ok
10:35:26.0578 2940  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER    C:\WINDOWS\system32\mmcss.dll
10:35:26.0578 2940  THREADORDER - ok
10:35:26.0610 2940  [ 52066C139CC189468845D5BE557B25EB ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
10:35:26.0625 2940  TimeBroker - ok
10:35:26.0657 2940  [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM            C:\WINDOWS\system32\drivers\tpm.sys
10:35:26.0657 2940  TPM - ok
10:35:26.0688 2940  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\WINDOWS\System32\trkwks.dll
10:35:26.0719 2940  TrkWks - ok
10:35:26.0750 2940  [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:35:26.0782 2940  TrustedInstaller - ok
10:35:26.0813 2940  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
10:35:26.0829 2940  TsUsbFlt - ok
10:35:26.0844 2940  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD        C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:35:26.0860 2940  TsUsbGD - ok
10:35:26.0891 2940  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:35:26.0907 2940  tunnel - ok
10:35:26.0922 2940  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
10:35:26.0922 2940  uagp35 - ok
10:35:26.0938 2940  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
10:35:26.0938 2940  UASPStor - ok
10:35:26.0969 2940  [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
10:35:26.0969 2940  UCX01000 - ok
10:35:27.0000 2940  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
10:35:27.0016 2940  udfs - ok
10:35:27.0032 2940  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect      C:\WINDOWS\system32\UI0Detect.exe
10:35:27.0063 2940  UI0Detect - ok
10:35:27.0079 2940  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
10:35:27.0079 2940  uliagpkx - ok
10:35:27.0110 2940  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus          C:\WINDOWS\System32\drivers\umbus.sys
10:35:27.0125 2940  umbus - ok
10:35:27.0141 2940  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
10:35:27.0157 2940  UmPass - ok
10:35:27.0188 2940  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
10:35:27.0203 2940  UmRdpService - ok
10:35:27.0219 2940  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:35:27.0235 2940  upnphost - ok
10:35:27.0250 2940  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp        C:\WINDOWS\System32\drivers\usbccgp.sys
10:35:27.0282 2940  usbccgp - ok
10:35:27.0297 2940  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
10:35:27.0329 2940  usbcir - ok
10:35:27.0360 2940  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci        C:\WINDOWS\System32\drivers\usbehci.sys
10:35:27.0360 2940  usbehci - ok
10:35:27.0391 2940  [ FBB6794E3BBAD92D66D59D206C1F849F ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
10:35:27.0407 2940  usbhub - ok
10:35:27.0422 2940  [ 7B886003CEEBF3C8E4FDF3586DCB3787 ] USBHUB3        C:\WINDOWS\System32\drivers\UsbHub3.sys
10:35:27.0438 2940  USBHUB3 - ok
10:35:27.0454 2940  [ EC1303E3DBF312B846377A84C0D15F27 ] usbohci        C:\WINDOWS\System32\drivers\usbohci.sys
10:35:27.0485 2940  usbohci - ok
10:35:27.0500 2940  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
10:35:27.0532 2940  usbprint - ok
10:35:27.0547 2940  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR        C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:35:27.0563 2940  USBSTOR - ok
10:35:27.0579 2940  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci        C:\WINDOWS\System32\drivers\usbuhci.sys
10:35:27.0594 2940  usbuhci - ok
10:35:27.0625 2940  [ 09799E701B4327097E9F63D3FE221083 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
10:35:27.0657 2940  usbvideo - ok
10:35:27.0672 2940  [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI        C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:35:27.0688 2940  USBXHCI - ok
10:35:27.0688 2940  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\WINDOWS\system32\lsass.exe
10:35:27.0704 2940  VaultSvc - ok
10:35:27.0719 2940  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
10:35:27.0719 2940  vdrvroot - ok
10:35:27.0766 2940  [ 00FBA165A1167738802DA5D0EE78EF10 ] vds            C:\WINDOWS\System32\vds.exe
10:35:27.0813 2940  vds - ok
10:35:27.0829 2940  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt    C:\WINDOWS\system32\drivers\VerifierExt.sys
10:35:27.0844 2940  VerifierExt - ok
10:35:27.0860 2940  [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp          C:\WINDOWS\System32\drivers\vhdmp.sys
10:35:27.0891 2940  vhdmp - ok
10:35:27.0907 2940  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
10:35:27.0907 2940  viaide - ok
10:35:27.0922 2940  [ 0E43886F01C85B47BA0A3157274BCF59 ] Vid            C:\WINDOWS\System32\drivers\Vid.sys
10:35:27.0938 2940  Vid - ok
10:35:27.0954 2940  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus          C:\WINDOWS\system32\drivers\vmbus.sys
10:35:27.0969 2940  vmbus - ok
10:35:27.0969 2940  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
10:35:27.0985 2940  VMBusHID - ok
10:35:27.0985 2940  [ B4F432A51826FFC66F4DF72A83E8E4B1 ] vmbusr          C:\WINDOWS\System32\drivers\vmbusr.sys
10:35:28.0000 2940  vmbusr - ok
10:35:28.0016 2940  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat  C:\WINDOWS\System32\ICSvc.dll
10:35:28.0047 2940  vmicheartbeat - ok
10:35:28.0047 2940  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:35:28.0063 2940  vmickvpexchange - ok
10:35:28.0063 2940  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv        C:\WINDOWS\System32\ICSvc.dll
10:35:28.0079 2940  vmicrdv - ok
10:35:28.0110 2940  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
10:35:28.0125 2940  vmicshutdown - ok
10:35:28.0125 2940  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
10:35:28.0141 2940  vmictimesync - ok
10:35:28.0141 2940  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss        C:\WINDOWS\System32\ICSvc.dll
10:35:28.0157 2940  vmicvss - ok
10:35:28.0172 2940  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
10:35:28.0172 2940  volmgr - ok
10:35:28.0204 2940  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx        C:\WINDOWS\system32\drivers\volmgrx.sys
10:35:28.0219 2940  volmgrx - ok
10:35:28.0235 2940  [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap        C:\WINDOWS\system32\drivers\volsnap.sys
10:35:28.0250 2940  volsnap - ok
10:35:28.0250 2940  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
10:35:28.0266 2940  vpci - ok
10:35:28.0282 2940  [ 0190AFFF28F600461C0164353CC7EE27 ] vpcivsp        C:\WINDOWS\System32\drivers\vpcivsp.sys
10:35:28.0297 2940  vpcivsp - ok
10:35:28.0297 2940  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid        C:\WINDOWS\system32\drivers\vsmraid.sys
10:35:28.0313 2940  vsmraid - ok
10:35:28.0360 2940  [ EA658570314042C914964FC72AB50E6B ] VSS            C:\WINDOWS\system32\vssvc.exe
10:35:28.0407 2940  VSS - ok
10:35:28.0438 2940  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
10:35:28.0469 2940  VSTXRAID - ok
10:35:28.0485 2940  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
10:35:28.0500 2940  vwifibus - ok
10:35:28.0516 2940  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
10:35:28.0532 2940  vwififlt - ok
10:35:28.0532 2940  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp        C:\WINDOWS\system32\DRIVERS\vwifimp.sys
10:35:28.0563 2940  vwifimp - ok
10:35:28.0594 2940  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time        C:\WINDOWS\system32\w32time.dll
10:35:28.0625 2940  W32Time - ok
10:35:28.0657 2940  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
10:35:28.0750 2940  WacomPen - ok
10:35:28.0782 2940  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:35:28.0813 2940  Wanarp - ok
10:35:28.0813 2940  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:35:28.0829 2940  Wanarpv6 - ok
10:35:28.0875 2940  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\WINDOWS\system32\wbengine.exe
10:35:28.0938 2940  wbengine - ok
10:35:28.0954 2940  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
10:35:28.0969 2940  WbioSrvc - ok
10:35:29.0000 2940  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
10:35:29.0000 2940  Wcmsvc - ok
10:35:29.0032 2940  [ 4507D89FA9E4283100948C91E867D130 ] wcncsvc        C:\WINDOWS\System32\wcncsvc.dll
10:35:29.0063 2940  wcncsvc - ok
10:35:29.0079 2940  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:35:29.0094 2940  WcsPlugInService - ok
10:35:29.0126 2940  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\WINDOWS\system32\drivers\wd.sys
10:35:29.0126 2940  Wd - ok
10:35:29.0157 2940  [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
10:35:29.0157 2940  WdBoot - ok
10:35:29.0188 2940  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
10:35:29.0204 2940  Wdf01000 - ok
10:35:29.0219 2940  [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
10:35:29.0235 2940  WdFilter - ok
10:35:29.0251 2940  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
10:35:29.0266 2940  WdiServiceHost - ok
10:35:29.0266 2940  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost  C:\WINDOWS\system32\wdi.dll
10:35:29.0282 2940  WdiSystemHost - ok
10:35:29.0313 2940  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient      C:\WINDOWS\System32\webclnt.dll
10:35:29.0329 2940  WebClient - ok
10:35:29.0329 2940  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
10:35:29.0360 2940  Wecsvc - ok
10:35:29.0376 2940  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport  C:\WINDOWS\System32\wercplsupport.dll
10:35:29.0391 2940  wercplsupport - ok
10:35:29.0391 2940  [ 8E2426162ED6749A127B35D235F21E11 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
10:35:29.0422 2940  WerSvc - ok
10:35:29.0454 2940  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS        C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:35:29.0454 2940  WFPLWFS - ok
10:35:29.0501 2940  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
10:35:29.0501 2940  WiaRpc - ok
10:35:29.0532 2940  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
10:35:29.0532 2940  WIMMount - ok
10:35:29.0547 2940  WinDefend - ok
10:35:29.0579 2940  [ 1369928779943B5C7AABA263E6E2BBC1 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:35:29.0610 2940  WinHttpAutoProxySvc - ok
10:35:29.0657 2940  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt        C:\WINDOWS\system32\wbem\WMIsvc.dll
10:35:29.0672 2940  Winmgmt - ok
10:35:29.0751 2940  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM          C:\WINDOWS\system32\WsmSvc.dll
10:35:29.0797 2940  WinRM - ok
10:35:29.0829 2940  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
10:35:29.0876 2940  WinUsb - ok
10:35:29.0922 2940  [ 19B3CFB1D6516AB2C54772CB75426AD4 ] WlanSvc        C:\WINDOWS\System32\wlansvc.dll
10:35:29.0954 2940  WlanSvc - ok
10:35:30.0001 2940  [ 08EFA13A2234C8C3B8A99E4B88BE7E9B ] wlidsvc        C:\WINDOWS\system32\wlidsvc.dll
10:35:30.0047 2940  wlidsvc - ok
10:35:30.0063 2940  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi        C:\WINDOWS\System32\drivers\wmiacpi.sys
10:35:30.0079 2940  WmiAcpi - ok
10:35:30.0110 2940  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:35:30.0126 2940  wmiApSrv - ok
10:35:30.0141 2940  WMPNetworkSvc - ok
10:35:30.0188 2940  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr        C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:35:30.0219 2940  wpcfltr - ok
10:35:30.0251 2940  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
10:35:30.0266 2940  WPCSvc - ok
10:35:30.0282 2940  [ 94AA5150E35B3ABB7191FE641E3C2473 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
10:35:30.0313 2940  WPDBusEnum - ok
10:35:30.0313 2940  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr      C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:35:30.0329 2940  WpdUpFltr - ok
10:35:30.0360 2940  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl        C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:35:30.0376 2940  ws2ifsl - ok
10:35:30.0407 2940  [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
10:35:30.0422 2940  wscsvc - ok
10:35:30.0454 2940  [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
10:35:30.0469 2940  WSDPrintDevice - ok
10:35:30.0485 2940  [ 6ED437C0BE2280AF78070B4BEDD0D221 ] WSDScan        C:\WINDOWS\system32\DRIVERS\WSDScan.sys
10:35:30.0485 2940  WSDScan - ok
10:35:30.0501 2940  WSearch - ok
10:35:30.0579 2940  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService      C:\WINDOWS\System32\WSService.dll
10:35:30.0688 2940  WSService - ok
10:35:30.0782 2940  [ 69DDDAF7BB4D39A4CC928EA434A3E258 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
10:35:30.0844 2940  wuauserv - ok
10:35:30.0876 2940  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
10:35:30.0891 2940  WudfPf - ok
10:35:30.0907 2940  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
10:35:30.0938 2940  WUDFRd - ok
10:35:30.0954 2940  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc        C:\WINDOWS\System32\WUDFSvc.dll
10:35:30.0969 2940  wudfsvc - ok
10:35:30.0969 2940  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:35:30.0985 2940  WUDFWpdFs - ok
10:35:30.0985 2940  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:35:31.0001 2940  WUDFWpdMtp - ok
10:35:31.0032 2940  [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc        C:\WINDOWS\System32\wwansvc.dll
10:35:31.0063 2940  WwanSvc - ok
10:35:31.0063 2940  ================ Scan global ===============================
10:35:31.0110 2940  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\WINDOWS\system32\basesrv.dll
10:35:31.0141 2940  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\WINDOWS\system32\winsrv.dll
10:35:31.0173 2940  [ BD7C6949984D19AAA609896B675E7357 ] C:\WINDOWS\system32\sxssrv.dll
10:35:31.0204 2940  [ 8F226143046435C75C033B0C52E90FFE ] C:\WINDOWS\system32\services.exe
10:35:31.0219 2940  [Global] - ok
10:35:31.0219 2940  ================ Scan MBR ==================================
10:35:31.0219 2940  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:35:32.0298 2940  \Device\Harddisk0\DR0 - ok
10:35:32.0298 2940  ================ Scan VBR ==================================
10:35:32.0298 2940  [ 1ED3AA35D849654EC89EF9FA9D60A7B8 ] \Device\Harddisk0\DR0\Partition1
10:35:32.0298 2940  \Device\Harddisk0\DR0\Partition1 - ok
10:35:32.0313 2940  [ 2BEA2F9F512E14E0C68613D6DD8C477D ] \Device\Harddisk0\DR0\Partition2
10:35:32.0313 2940  \Device\Harddisk0\DR0\Partition2 - ok
10:35:32.0344 2940  [ 51D2700E56C7D32FC5D026C2D7E91024 ] \Device\Harddisk0\DR0\Partition3
10:35:32.0360 2940  \Device\Harddisk0\DR0\Partition3 - ok
10:35:32.0376 2940  [ 4D53210D931648EC98BE0EB234B889F9 ] \Device\Harddisk0\DR0\Partition4
10:35:32.0376 2940  \Device\Harddisk0\DR0\Partition4 - ok
10:35:32.0376 2940  ============================================================
10:35:32.0376 2940  Scan finished
10:35:32.0376 2940  ============================================================
10:35:32.0391 5008  Detected object count: 4
10:35:32.0391 5008  Actual detected object count: 4
10:35:38.0282 5008  ClassicShellService ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0282 5008  ClassicShellService ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:35:38.0282 5008  DfSdkS ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0282 5008  DfSdkS ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:35:38.0298 5008  DirMngr ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0298 5008  DirMngr ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:35:38.0298 5008  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:35:38.0298 5008  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip

cosinus 07.11.2012 12:42
Ich hab dich anfangs gebeten miene Hinweise aufmerksam zu lesen!
Die Logs sollten in CODE-Tags bitte halte dich auch daran! Ich hab es für dich korrigiert

Zitat:
"avast!Antirootkit funktioniert nicht mehr"
Deswegen gab es den Hinweis
Was meinst du mit beiden Fällen?

kongom 07.11.2012 13:02
Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes:
Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.

Die Fehlermeldung kam in beiden Fällen und Entschuldige, dass ich die Verfahrensweise mit den Code Tags dann doch noch nicht verstanden habe... (ich bin 61)

cosinus 07.11.2012 13:43
Dann probier aswMBR bitte im abgesicherten Modus mit Netzwerktreibern:


Abgesicherter Modus zur Bereinigung
  • Windows mit F8-Taste beim Start in den abgesicherten Modus bringen.
  • Starte den Rechner in den abgesicherten Modus mit Netzwerktreibern:

    Windows im abgesicherten Modusstarten

kongom 07.11.2012 14:57
Hallo,
bei Windows 8 geht das leider nicht mehr so einfach. Nach 1 Stunde habe ich dann eine Möglichkeit über Eingabeaufforderung und MSCONFIG gefunden. Leider lief der Scan in beiden Fällen wieder nicht durch... gleiche Fehlermeldung

cosinus 07.11.2012 15:26
Zitat:
bei Windows 8 geht das leider nicht mehr so einfach.
Warum denn jetzt bitte Windows8?! :balla:

In deinem ersten Posting war noch von Windows7 die Rede!

Zitat:
System: Win7 64 bit, alle Updates stets aktuell,
Sicherheit: Windows SecurityEssentials

kongom 07.11.2012 15:59
Tatsächlich, ein Versehen meinerseits... Alte Gewohnheit?

cosinus 07.11.2012 16:32
Code:
Windows 7 x64 NTFS
Internet Explorer 9.10.9200.16420
So und nun mal bitte klartext!
Malwarebytes erkennt auch ein Win7!
Irrt Malwarebytes sich da oder hast du einfach ein Win8 in der Zwischenzeit installiert?
Seit wann genau ist Win8 auf diesem Rechner installiert?

kongom 08.11.2012 08:57
Hallo, wie ich schon geschrieben hatte, es war ein Versehen (alte Gewohnheit) von mir. WIN 8 wurde einige Tage nach Erscheinen aufgespielt und alle Scans erfolgten unter WIN 8. Es tut mir noch mal leid für die entstandene Verwirrung...

cosinus 08.11.2012 13:42
Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop. Falls schon vorhanden, bitte die ältere vorhandene Datei durch die neu heruntergeladene Datei ersetzen, damit du auch wirklich mit einer aktuellen Version von OTL arbeitest.
  • Doppelklick auf die OTL.exe
  • Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
  • Setze oben mittig den Haken bei Scanne alle Benutzer
  • Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
  • Unter Extra Registry, wähle bitte Use SafeList
  • Klicke nun auf Run Scan links oben
  • Wenn der Scan beendet wurde werden 2 Logfiles erstellt
  • Poste die Logfiles in CODE-Tags hier in den Thread.

kongom 08.11.2012 14:18
Ich habe jetzt die beiden Dateien als TXT Datei. Wie erfolgt jetzt die Umwandlung in CODE-Tags?

Eingefügt werden beide Dateien dann über das Symbol #?


Alle Zeitangaben in WEZ +1. Es ist jetzt 04:29 Uhr.
Seite 1 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27