| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Programme brauchen lange zum startenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
17.02.2013, 18:00
| #1 |
 |  Programme brauchen lange zum starten Hallo, seit geraumer Zeit habe ich ein Problem, alle Programme, welche vorher ganz normal innerhalb wenig Sekunden gestartet haben, benötigen jetzt 40-60 Sekunden. Einen Virus o.ä. hat mein KIS nicht gefunden, trotzdem ist das nicht normal. Die Logs sind im Anhang. |
|
17.02.2013, 18:06
| #2 |
| /// Malware-holic   | Programme brauchen lange zum starten Hi,
__________________besuch bitte mal die Kaspersky Homepage und upgrade auf 2013 otl fix Fixen mit OTL
Code:
ATTFilter :OTL
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found
O3:64bit: - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
:files
:Commands
[emptytemp]
__________________ |
|
17.02.2013, 18:34
| #3 |
| | Programme brauchen lange zum starten Vielen dank für die schnelle Antwort!
__________________Das Upgrade downloade ich mir jetzt, dauert nur etwas bei meinem Internet, aber trotzdem ist hier die gewünschte Log Datei nach dem Fix. Code:
ATTFilter All processes killed
========== OTL ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
========== FILES ==========
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: Kabraxis
User: LogMeInRemoteUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
User: Public
User: Root
->Temp folder emptied: 1085622994 bytes
->Temporary Internet Files folder emptied: 99696457 bytes
->Java cache emptied: 551215 bytes
->FireFox cache emptied: 123490209 bytes
->Google Chrome cache emptied: 380074866 bytes
->Opera cache emptied: 56970633 bytes
->Flash cache emptied: 99015 bytes
User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 243370388 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 46356772 bytes
RecycleBin emptied: 199800761 bytes
Total Files Cleaned = 2.133.00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 02172013_182634
Files\Folders moved on Reboot...
C:\Users\Root\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\vmware-SYSTEM\vmauthd.log scheduled to be moved on reboot.
C:\Windows\temp\vmware-SYSTEM\vmware-usbarb-SYSTEM-2804.log moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
17.02.2013, 18:41
| #4 |
| /// Malware-holic | Programme brauchen lange zum starten Hi, mach erst mal das Upgrade, dann wird evtl. ein Scan laufen, wenns da Funde gibt, poste die. Also, immer mit der Ruhe, keiner hätzt dich hier. Dann: [OTLFIX]
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
17.02.2013, 19:36
| #5 | |
| | Programme brauchen lange zum startenZitat:
Bin jetzt fertig mit dem Upgraden und eine Untersuchung wichtiger Bereiche habe ich auch durchgeführt - keine Funde. |
|
17.02.2013, 20:29
| #6 |
| /// Malware-holic | Programme brauchen lange zum starten Sorry, Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
__________________ --> Programme brauchen lange zum starten |
|
17.02.2013, 20:40
| #7 |
| | Programme brauchen lange zum startenCode:
ATTFilter 20:37:35.0963 3396 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:37:36.0530 3396 ============================================================
20:37:36.0530 3396 Current date / time: 2013/02/17 20:37:36.0530
20:37:36.0530 3396 SystemInfo:
20:37:36.0530 3396
20:37:36.0530 3396 OS Version: 6.1.7601 ServicePack: 1.0
20:37:36.0530 3396 Product type: Workstation
20:37:36.0530 3396 ComputerName: SYSTEMROOT
20:37:36.0530 3396 UserName: Root
20:37:36.0530 3396 Windows directory: C:\Windows
20:37:36.0530 3396 System windows directory: C:\Windows
20:37:36.0530 3396 Running under WOW64
20:37:36.0530 3396 Processor architecture: Intel x64
20:37:36.0530 3396 Number of processors: 8
20:37:36.0530 3396 Page size: 0x1000
20:37:36.0530 3396 Boot type: Normal boot
20:37:36.0530 3396 ============================================================
20:37:37.0482 3396 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:37:37.0490 3396 ============================================================
20:37:37.0490 3396 \Device\Harddisk0\DR0:
20:37:37.0490 3396 MBR partitions:
20:37:37.0490 3396 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:37:37.0490 3396 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x255A800, BlocksNum 0x2E935000
20:37:37.0490 3396 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x30E8F824, BlocksNum 0x4387619D
20:37:37.0490 3396 ============================================================
20:37:37.0517 3396 C: <-> \Device\Harddisk0\DR0\Partition2
20:37:37.0629 3396 D: <-> \Device\Harddisk0\DR0\Partition3
20:37:37.0629 3396 ============================================================
20:37:37.0629 3396 Initialize success
20:37:37.0629 3396 ============================================================
20:38:14.0783 4016 ============================================================
20:38:14.0783 4016 Scan started
20:38:14.0783 4016 Mode: Manual; SigCheck; TDLFS;
20:38:14.0783 4016 ============================================================
20:38:16.0062 4016 ================ Scan system memory ========================
20:38:16.0062 4016 System memory - ok
20:38:16.0062 4016 ================ Scan services =============================
20:38:16.0187 4016 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:38:16.0281 4016 1394ohci - ok
20:38:16.0312 4016 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:38:16.0343 4016 ACPI - ok
20:38:16.0374 4016 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:38:16.0437 4016 AcpiPmi - ok
20:38:16.0562 4016 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:38:16.0577 4016 AdobeARMservice - ok
20:38:16.0718 4016 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:38:16.0733 4016 AdobeFlashPlayerUpdateSvc - ok
20:38:16.0764 4016 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:38:16.0796 4016 adp94xx - ok
20:38:16.0796 4016 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:38:16.0811 4016 adpahci - ok
20:38:16.0827 4016 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:38:16.0827 4016 adpu320 - ok
20:38:16.0858 4016 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:38:16.0967 4016 AeLookupSvc - ok
20:38:17.0014 4016 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:38:17.0076 4016 AFD - ok
20:38:17.0108 4016 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:38:17.0123 4016 agp440 - ok
20:38:17.0139 4016 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:38:17.0186 4016 ALG - ok
20:38:17.0201 4016 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:38:17.0217 4016 aliide - ok
20:38:17.0232 4016 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:38:17.0248 4016 amdide - ok
20:38:17.0264 4016 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:38:17.0310 4016 AmdK8 - ok
20:38:17.0326 4016 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:38:17.0357 4016 AmdPPM - ok
20:38:17.0388 4016 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:38:17.0404 4016 amdsata - ok
20:38:17.0420 4016 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:38:17.0435 4016 amdsbs - ok
20:38:17.0451 4016 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:38:17.0451 4016 amdxata - ok
20:38:17.0513 4016 [ 4FC6E2C2FC50445450651F42E90CC0BD ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
20:38:17.0529 4016 Apowersoft_AudioDevice - ok
20:38:17.0560 4016 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:38:17.0669 4016 AppID - ok
20:38:17.0700 4016 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:38:17.0716 4016 AppIDSvc - ok
20:38:17.0763 4016 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:38:17.0810 4016 Appinfo - ok
20:38:17.0966 4016 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:38:17.0981 4016 Apple Mobile Device - ok
20:38:18.0044 4016 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
20:38:18.0075 4016 AppMgmt - ok
20:38:18.0090 4016 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:38:18.0122 4016 arc - ok
20:38:18.0137 4016 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:38:18.0153 4016 arcsas - ok
20:38:18.0215 4016 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:38:18.0231 4016 aspnet_state - ok
20:38:18.0278 4016 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:38:18.0340 4016 AsyncMac - ok
20:38:18.0371 4016 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:38:18.0387 4016 atapi - ok
20:38:18.0434 4016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:38:18.0496 4016 AudioEndpointBuilder - ok
20:38:18.0496 4016 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:38:18.0527 4016 AudioSrv - ok
20:38:18.0668 4016 AVP - ok
20:38:18.0699 4016 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:38:18.0777 4016 AxInstSV - ok
20:38:18.0808 4016 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:38:18.0870 4016 b06bdrv - ok
20:38:18.0902 4016 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:38:18.0933 4016 b57nd60a - ok
20:38:18.0964 4016 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:38:19.0011 4016 BDESVC - ok
20:38:19.0026 4016 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:38:19.0089 4016 Beep - ok
20:38:19.0151 4016 [ 06C1E887BF34C0E31EB8E2C999E4842F ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
20:38:19.0167 4016 BEService ( UnsignedFile.Multi.Generic ) - warning
20:38:19.0167 4016 BEService - detected UnsignedFile.Multi.Generic (1)
20:38:19.0214 4016 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:38:19.0260 4016 BFE - ok
20:38:19.0276 4016 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:38:19.0323 4016 BITS - ok
20:38:19.0338 4016 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:38:19.0370 4016 blbdrive - ok
20:38:19.0448 4016 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:38:19.0463 4016 Bonjour Service - ok
20:38:19.0494 4016 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:38:19.0510 4016 bowser - ok
20:38:19.0541 4016 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:38:19.0604 4016 BrFiltLo - ok
20:38:19.0604 4016 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:38:19.0619 4016 BrFiltUp - ok
20:38:19.0666 4016 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:38:19.0697 4016 Browser - ok
20:38:19.0713 4016 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:38:19.0760 4016 Brserid - ok
20:38:19.0760 4016 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:38:19.0806 4016 BrSerWdm - ok
20:38:19.0806 4016 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:38:19.0822 4016 BrUsbMdm - ok
20:38:19.0853 4016 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:38:19.0869 4016 BrUsbSer - ok
20:38:19.0884 4016 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:38:19.0900 4016 BTHMODEM - ok
20:38:19.0931 4016 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:38:19.0994 4016 bthserv - ok
20:38:20.0009 4016 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:38:20.0040 4016 cdfs - ok
20:38:20.0072 4016 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:38:20.0103 4016 cdrom - ok
20:38:20.0134 4016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:38:20.0181 4016 CertPropSvc - ok
20:38:20.0196 4016 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:38:20.0212 4016 circlass - ok
20:38:20.0228 4016 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:38:20.0243 4016 CLFS - ok
20:38:20.0306 4016 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:38:20.0306 4016 clr_optimization_v2.0.50727_32 - ok
20:38:20.0352 4016 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:38:20.0368 4016 clr_optimization_v2.0.50727_64 - ok
20:38:20.0430 4016 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:38:20.0446 4016 clr_optimization_v4.0.30319_32 - ok
20:38:20.0446 4016 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:38:20.0446 4016 clr_optimization_v4.0.30319_64 - ok
20:38:20.0477 4016 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:38:20.0477 4016 CmBatt - ok
20:38:20.0493 4016 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:38:20.0493 4016 cmdide - ok
20:38:20.0540 4016 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:38:20.0571 4016 CNG - ok
20:38:20.0586 4016 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:38:20.0586 4016 Compbatt - ok
20:38:20.0633 4016 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:38:20.0664 4016 CompositeBus - ok
20:38:20.0664 4016 COMSysApp - ok
20:38:20.0680 4016 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:38:20.0696 4016 crcdisk - ok
20:38:20.0727 4016 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:38:20.0774 4016 CryptSvc - ok
20:38:20.0805 4016 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
20:38:20.0867 4016 CSC - ok
20:38:20.0898 4016 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
20:38:20.0930 4016 CscService - ok
20:38:20.0945 4016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:38:21.0008 4016 DcomLaunch - ok
20:38:21.0039 4016 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:38:21.0086 4016 defragsvc - ok
20:38:21.0117 4016 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:38:21.0148 4016 DfsC - ok
20:38:21.0164 4016 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:38:21.0195 4016 Dhcp - ok
20:38:21.0210 4016 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:38:21.0226 4016 discache - ok
20:38:21.0257 4016 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:38:21.0273 4016 Disk - ok
20:38:21.0304 4016 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:38:21.0351 4016 Dnscache - ok
20:38:21.0366 4016 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:38:21.0413 4016 dot3svc - ok
20:38:21.0444 4016 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:38:21.0476 4016 DPS - ok
20:38:21.0491 4016 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:38:21.0522 4016 drmkaud - ok
20:38:21.0585 4016 dump_wmimmc - ok
20:38:21.0616 4016 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:38:21.0647 4016 DXGKrnl - ok
20:38:21.0694 4016 EagleX64 - ok
20:38:21.0710 4016 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:38:21.0772 4016 EapHost - ok
20:38:21.0819 4016 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:38:21.0912 4016 ebdrv - ok
20:38:21.0944 4016 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:38:21.0990 4016 EFS - ok
20:38:22.0022 4016 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:38:22.0053 4016 ehRecvr - ok
20:38:22.0084 4016 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:38:22.0131 4016 ehSched - ok
20:38:22.0162 4016 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:38:22.0193 4016 elxstor - ok
20:38:22.0224 4016 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:38:22.0256 4016 ErrDev - ok
20:38:22.0287 4016 [ 932C05033053ADA2404FD836C9AB2C70 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
20:38:22.0302 4016 EuMusDesignVirtualAudioCableWdm - ok
20:38:22.0318 4016 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:38:22.0380 4016 EventSystem - ok
20:38:22.0396 4016 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:38:22.0427 4016 exfat - ok
20:38:22.0427 4016 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:38:22.0458 4016 fastfat - ok
20:38:22.0505 4016 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:38:22.0536 4016 Fax - ok
20:38:22.0552 4016 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:38:22.0583 4016 fdc - ok
20:38:22.0599 4016 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:38:22.0646 4016 fdPHost - ok
20:38:22.0661 4016 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:38:22.0677 4016 FDResPub - ok
20:38:22.0708 4016 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:38:22.0724 4016 FileInfo - ok
20:38:22.0739 4016 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:38:22.0755 4016 Filetrace - ok
20:38:22.0770 4016 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:38:22.0786 4016 flpydisk - ok
20:38:22.0817 4016 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:38:22.0848 4016 FltMgr - ok
20:38:22.0880 4016 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:38:22.0942 4016 FontCache - ok
20:38:22.0989 4016 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:38:23.0004 4016 FontCache3.0.0.0 - ok
20:38:23.0020 4016 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:38:23.0036 4016 FsDepends - ok
20:38:23.0067 4016 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:38:23.0082 4016 Fs_Rec - ok
20:38:23.0098 4016 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:38:23.0129 4016 fvevol - ok
20:38:23.0129 4016 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:38:23.0145 4016 gagp30kx - ok
20:38:23.0192 4016 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:38:23.0207 4016 GEARAspiWDM - ok
20:38:23.0238 4016 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:38:23.0285 4016 gpsvc - ok
20:38:23.0316 4016 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
20:38:23.0332 4016 hamachi - ok
20:38:23.0441 4016 [ 785FD63B74B30986A9F2C7D965CA509F ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
20:38:23.0519 4016 Hamachi2Svc - ok
20:38:23.0535 4016 [ ADB4348DA1345877B04E22203AFC8993 ] hcmon C:\Windows\system32\drivers\hcmon.sys
20:38:23.0550 4016 hcmon - ok
20:38:23.0550 4016 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:38:23.0597 4016 hcw85cir - ok
20:38:23.0644 4016 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
20:38:23.0675 4016 HdAudAddService - ok
20:38:23.0691 4016 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:38:23.0738 4016 HDAudBus - ok
20:38:23.0753 4016 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:38:23.0784 4016 HidBatt - ok
20:38:23.0800 4016 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:38:23.0816 4016 HidBth - ok
20:38:23.0847 4016 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:38:23.0878 4016 HidIr - ok
20:38:23.0894 4016 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:38:23.0956 4016 hidserv - ok
20:38:23.0987 4016 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:38:24.0003 4016 HidUsb - ok
20:38:24.0034 4016 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:38:24.0050 4016 hkmsvc - ok
20:38:24.0096 4016 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:38:24.0143 4016 HomeGroupListener - ok
20:38:24.0159 4016 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:38:24.0206 4016 HomeGroupProvider - ok
20:38:24.0237 4016 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:38:24.0252 4016 HpSAMD - ok
20:38:24.0284 4016 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:38:24.0346 4016 HTTP - ok
20:38:24.0377 4016 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:38:24.0377 4016 hwpolicy - ok
20:38:24.0393 4016 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:38:24.0408 4016 i8042prt - ok
20:38:24.0424 4016 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:38:24.0424 4016 iaStorV - ok
20:38:24.0471 4016 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:38:24.0502 4016 idsvc - ok
20:38:24.0518 4016 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:38:24.0518 4016 iirsp - ok
20:38:24.0549 4016 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:38:24.0580 4016 IKEEXT - ok
20:38:24.0596 4016 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:38:24.0611 4016 intelide - ok
20:38:24.0611 4016 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:38:24.0627 4016 intelppm - ok
20:38:24.0642 4016 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:38:24.0658 4016 IPBusEnum - ok
20:38:24.0689 4016 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:38:24.0720 4016 IpFilterDriver - ok
20:38:24.0752 4016 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:38:24.0783 4016 iphlpsvc - ok
20:38:24.0798 4016 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:38:24.0830 4016 IPMIDRV - ok
20:38:24.0830 4016 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:38:24.0892 4016 IPNAT - ok
20:38:24.0939 4016 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:38:24.0954 4016 iPod Service - ok
20:38:24.0970 4016 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:38:25.0001 4016 IRENUM - ok
20:38:25.0017 4016 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:38:25.0032 4016 isapnp - ok
20:38:25.0032 4016 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:38:25.0048 4016 iScsiPrt - ok
20:38:25.0064 4016 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:38:25.0079 4016 kbdclass - ok
20:38:25.0095 4016 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:38:25.0110 4016 kbdhid - ok
20:38:25.0126 4016 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:38:25.0142 4016 KeyIso - ok
20:38:25.0188 4016 [ 8B5219318DF5895ABD230C373F2DF18A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
20:38:25.0220 4016 KL1 - ok
20:38:25.0235 4016 [ 65F3B81FA285EAB641F5E6EF7AEB984D ] KLIF C:\Windows\system32\DRIVERS\klif.sys
20:38:25.0251 4016 KLIF - ok
20:38:25.0282 4016 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
20:38:25.0298 4016 KLIM6 - ok
20:38:25.0344 4016 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
20:38:25.0360 4016 klkbdflt - ok
20:38:25.0360 4016 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
20:38:25.0376 4016 klmouflt - ok
20:38:25.0391 4016 [ A8081ED8D48FA611D11DB97F49A5343D ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
20:38:25.0407 4016 kltdi - ok
20:38:25.0438 4016 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
20:38:25.0438 4016 kneps - ok
20:38:25.0469 4016 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:38:25.0485 4016 KSecDD - ok
20:38:25.0500 4016 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:38:25.0500 4016 KSecPkg - ok
20:38:25.0516 4016 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:38:25.0547 4016 ksthunk - ok
20:38:25.0563 4016 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:38:25.0610 4016 KtmRm - ok
20:38:25.0656 4016 [ CE4347E2D90DB2E5517B6F2BC720A862 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
20:38:25.0672 4016 LADF_CaptureOnly - ok
20:38:25.0688 4016 [ 85A9D21D3AE2EA963E111CB150895877 ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
20:38:25.0703 4016 LADF_RenderOnly - ok
20:38:25.0734 4016 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:38:25.0797 4016 LanmanServer - ok
20:38:25.0828 4016 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:38:25.0859 4016 LanmanWorkstation - ok
20:38:25.0890 4016 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys
20:38:25.0906 4016 LGBusEnum - ok
20:38:25.0922 4016 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys
20:38:25.0937 4016 LGVirHid - ok
20:38:25.0968 4016 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:38:26.0031 4016 lltdio - ok
20:38:26.0062 4016 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:38:26.0124 4016 lltdsvc - ok
20:38:26.0124 4016 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:38:26.0156 4016 lmhosts - ok
20:38:26.0202 4016 [ 7109163D8027076D2680CFC4E80E2A28 ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
20:38:26.0218 4016 LMIGuardianSvc - ok
20:38:26.0249 4016 [ 0317335B15FF3BDA8E10197E3434CFC0 ] LMIInfo C:\Program Files (x86)\LogMeIn\x64\rainfo.sys
20:38:26.0265 4016 LMIInfo - ok
20:38:26.0312 4016 [ 8054CE1FC8B417691960D00F931516A7 ] LMIMaint C:\Program Files (x86)\LogMeIn\x64\ramaint.exe
20:38:26.0312 4016 LMIMaint - ok
20:38:26.0358 4016 [ D3760BC17E1755091B7120CF32DBF56B ] LogMeIn C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
20:38:26.0374 4016 LogMeIn - ok
20:38:26.0421 4016 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:38:26.0436 4016 LSI_FC - ok
20:38:26.0452 4016 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:38:26.0468 4016 LSI_SAS - ok
20:38:26.0468 4016 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:38:26.0483 4016 LSI_SAS2 - ok
20:38:26.0499 4016 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:38:26.0514 4016 LSI_SCSI - ok
20:38:26.0546 4016 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:38:26.0592 4016 luafv - ok
20:38:26.0624 4016 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:38:26.0639 4016 Mcx2Svc - ok
20:38:26.0655 4016 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:38:26.0670 4016 megasas - ok
20:38:26.0686 4016 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:38:26.0702 4016 MegaSR - ok
20:38:26.0717 4016 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:38:26.0748 4016 MMCSS - ok
20:38:26.0764 4016 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:38:26.0795 4016 Modem - ok
20:38:26.0826 4016 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:38:26.0858 4016 monitor - ok
20:38:26.0873 4016 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:38:26.0889 4016 mouclass - ok
20:38:26.0920 4016 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:38:26.0920 4016 mouhid - ok
20:38:26.0967 4016 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:38:26.0982 4016 mountmgr - ok
20:38:27.0029 4016 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:38:27.0045 4016 MozillaMaintenance - ok
20:38:27.0092 4016 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:38:27.0107 4016 mpio - ok
20:38:27.0107 4016 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:38:27.0154 4016 mpsdrv - ok
20:38:27.0185 4016 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:38:27.0216 4016 MpsSvc - ok
20:38:27.0248 4016 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:38:27.0263 4016 MRxDAV - ok
20:38:27.0279 4016 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:38:27.0326 4016 mrxsmb - ok
20:38:27.0341 4016 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:38:27.0372 4016 mrxsmb10 - ok
20:38:27.0404 4016 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:38:27.0435 4016 mrxsmb20 - ok
20:38:27.0450 4016 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:38:27.0466 4016 msahci - ok
20:38:27.0482 4016 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:38:27.0497 4016 msdsm - ok
20:38:27.0513 4016 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:38:27.0544 4016 MSDTC - ok
20:38:27.0560 4016 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:38:27.0591 4016 Msfs - ok
20:38:27.0638 4016 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:38:27.0684 4016 mshidkmdf - ok
20:38:27.0716 4016 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:38:27.0731 4016 msisadrv - ok
20:38:27.0747 4016 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:38:27.0809 4016 MSiSCSI - ok
20:38:27.0809 4016 msiserver - ok
20:38:27.0825 4016 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:38:27.0856 4016 MSKSSRV - ok
20:38:27.0856 4016 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:38:27.0903 4016 MSPCLOCK - ok
20:38:27.0903 4016 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:38:27.0934 4016 MSPQM - ok
20:38:27.0965 4016 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:38:27.0981 4016 MsRPC - ok
20:38:27.0981 4016 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:38:27.0996 4016 mssmbios - ok
20:38:27.0996 4016 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:38:28.0043 4016 MSTEE - ok
20:38:28.0043 4016 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:38:28.0059 4016 MTConfig - ok
20:38:28.0074 4016 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:38:28.0074 4016 Mup - ok
20:38:28.0090 4016 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:38:28.0121 4016 napagent - ok
20:38:28.0152 4016 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:38:28.0184 4016 NativeWifiP - ok
20:38:28.0215 4016 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
20:38:28.0230 4016 NDIS - ok
20:38:28.0230 4016 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:38:28.0262 4016 NdisCap - ok
20:38:28.0293 4016 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:38:28.0340 4016 NdisTapi - ok
20:38:28.0371 4016 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:38:28.0386 4016 Ndisuio - ok
20:38:28.0418 4016 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:38:28.0480 4016 NdisWan - ok
20:38:28.0496 4016 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:38:28.0527 4016 NDProxy - ok
20:38:28.0605 4016 [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:38:28.0620 4016 Nero BackItUp Scheduler 4.0 - ok
20:38:28.0620 4016 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:38:28.0652 4016 NetBIOS - ok
20:38:28.0667 4016 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:38:28.0698 4016 NetBT - ok
20:38:28.0698 4016 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:38:28.0714 4016 Netlogon - ok
20:38:28.0730 4016 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:38:28.0745 4016 Netman - ok
20:38:28.0776 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:38:28.0792 4016 NetMsmqActivator - ok
20:38:28.0792 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:38:28.0792 4016 NetPipeActivator - ok
20:38:28.0808 4016 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:38:28.0854 4016 netprofm - ok
20:38:28.0854 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:38:28.0854 4016 NetTcpActivator - ok
20:38:28.0854 4016 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:38:28.0870 4016 NetTcpPortSharing - ok
20:38:28.0886 4016 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:38:28.0886 4016 nfrd960 - ok
20:38:28.0917 4016 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:38:28.0979 4016 NlaSvc - ok
20:38:28.0995 4016 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:38:29.0026 4016 Npfs - ok
20:38:29.0073 4016 npggsvc - ok
20:38:29.0073 4016 NPPTNT2 - ok
20:38:29.0104 4016 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:38:29.0166 4016 nsi - ok
20:38:29.0182 4016 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:38:29.0213 4016 nsiproxy - ok
20:38:29.0244 4016 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:38:29.0276 4016 Ntfs - ok
20:38:29.0291 4016 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:38:29.0322 4016 Null - ok
20:38:29.0354 4016 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
20:38:29.0369 4016 NVHDA - ok
20:38:29.0603 4016 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:38:29.0728 4016 nvlddmkm - ok
20:38:29.0759 4016 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:38:29.0775 4016 nvraid - ok
20:38:29.0790 4016 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:38:29.0790 4016 nvstor - ok
20:38:29.0822 4016 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] NVSvc C:\Windows\system32\nvvsvc.exe
20:38:29.0853 4016 NVSvc - ok
20:38:29.0946 4016 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
20:38:29.0993 4016 nvUpdatusService - ok
20:38:30.0009 4016 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:38:30.0009 4016 nv_agp - ok
20:38:30.0024 4016 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:38:30.0040 4016 ohci1394 - ok
20:38:30.0087 4016 [ EC322186D8FCE3D632F3F597D67747DD ] OpenVPNService C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
20:38:30.0118 4016 OpenVPNService ( UnsignedFile.Multi.Generic ) - warning
20:38:30.0118 4016 OpenVPNService - detected UnsignedFile.Multi.Generic (1)
20:38:30.0149 4016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:38:30.0196 4016 p2pimsvc - ok
20:38:30.0243 4016 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:38:30.0258 4016 p2psvc - ok
20:38:30.0290 4016 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:38:30.0305 4016 Parport - ok
20:38:30.0336 4016 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:38:30.0352 4016 partmgr - ok
20:38:30.0368 4016 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:38:30.0399 4016 PcaSvc - ok
20:38:30.0430 4016 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:38:30.0430 4016 pci - ok
20:38:30.0446 4016 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:38:30.0446 4016 pciide - ok
20:38:30.0477 4016 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:38:30.0477 4016 pcmcia - ok
20:38:30.0492 4016 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:38:30.0508 4016 pcw - ok
20:38:30.0524 4016 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:38:30.0555 4016 PEAUTH - ok
20:38:30.0586 4016 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
20:38:30.0664 4016 PeerDistSvc - ok
20:38:30.0726 4016 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:38:30.0758 4016 PerfHost - ok
20:38:30.0804 4016 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:38:30.0882 4016 pla - ok
20:38:30.0898 4016 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:38:30.0929 4016 PlugPlay - ok
20:38:30.0929 4016 PnkBstrA - ok
20:38:30.0945 4016 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:38:30.0960 4016 PNRPAutoReg - ok
20:38:30.0960 4016 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:38:30.0976 4016 PNRPsvc - ok
20:38:30.0992 4016 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:38:31.0038 4016 PolicyAgent - ok
20:38:31.0054 4016 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:38:31.0101 4016 Power - ok
20:38:31.0148 4016 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:38:31.0179 4016 PptpMiniport - ok
20:38:31.0194 4016 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:38:31.0194 4016 Processor - ok
20:38:31.0226 4016 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:38:31.0288 4016 ProfSvc - ok
20:38:31.0288 4016 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:38:31.0304 4016 ProtectedStorage - ok
20:38:31.0335 4016 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:38:31.0366 4016 Psched - ok
20:38:31.0444 4016 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:38:31.0460 4016 ql2300 - ok
20:38:31.0491 4016 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:38:31.0506 4016 ql40xx - ok
20:38:31.0522 4016 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:38:31.0569 4016 QWAVE - ok
20:38:31.0569 4016 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:38:31.0600 4016 QWAVEdrv - ok
20:38:31.0631 4016 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:38:31.0647 4016 RasAcd - ok
20:38:31.0662 4016 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:38:31.0694 4016 RasAgileVpn - ok
20:38:31.0709 4016 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:38:31.0725 4016 RasAuto - ok
20:38:31.0756 4016 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:38:31.0818 4016 Rasl2tp - ok
20:38:31.0834 4016 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:38:31.0865 4016 RasMan - ok
20:38:31.0896 4016 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:38:31.0943 4016 RasPppoe - ok
20:38:31.0974 4016 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:38:31.0990 4016 RasSstp - ok
20:38:32.0006 4016 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:38:32.0037 4016 rdbss - ok
20:38:32.0052 4016 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:38:32.0068 4016 rdpbus - ok
20:38:32.0084 4016 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:38:32.0099 4016 RDPCDD - ok
20:38:32.0115 4016 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
20:38:32.0146 4016 RDPDR - ok
20:38:32.0162 4016 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:38:32.0208 4016 RDPENCDD - ok
20:38:32.0240 4016 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:38:32.0255 4016 RDPREFMP - ok
20:38:32.0286 4016 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:38:32.0333 4016 RDPWD - ok
20:38:32.0380 4016 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:38:32.0396 4016 rdyboost - ok
20:38:32.0411 4016 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:38:32.0458 4016 RemoteAccess - ok
20:38:32.0489 4016 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:38:32.0536 4016 RemoteRegistry - ok
20:38:32.0536 4016 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:38:32.0583 4016 RpcEptMapper - ok
20:38:32.0614 4016 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:38:32.0630 4016 RpcLocator - ok
20:38:32.0661 4016 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:38:32.0708 4016 RpcSs - ok
20:38:32.0723 4016 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:38:32.0754 4016 rspndr - ok
20:38:32.0786 4016 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:38:32.0801 4016 RTL8167 - ok
20:38:32.0817 4016 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:38:32.0832 4016 s3cap - ok
20:38:32.0848 4016 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:38:32.0848 4016 SamSs - ok
20:38:32.0864 4016 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:38:32.0864 4016 sbp2port - ok
20:38:32.0879 4016 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:38:32.0910 4016 SCardSvr - ok
20:38:32.0942 4016 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:38:32.0988 4016 scfilter - ok
20:38:33.0020 4016 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:38:33.0051 4016 Schedule - ok
20:38:33.0082 4016 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:38:33.0098 4016 SCPolicySvc - ok
20:38:33.0113 4016 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:38:33.0144 4016 SDRSVC - ok
20:38:33.0176 4016 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:38:33.0207 4016 secdrv - ok
20:38:33.0238 4016 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:38:33.0269 4016 seclogon - ok
20:38:33.0285 4016 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:38:33.0316 4016 SENS - ok
20:38:33.0347 4016 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:38:33.0378 4016 SensrSvc - ok
20:38:33.0394 4016 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:38:33.0425 4016 Serenum - ok
20:38:33.0441 4016 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:38:33.0472 4016 Serial - ok
20:38:33.0488 4016 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:38:33.0503 4016 sermouse - ok
20:38:33.0550 4016 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:38:33.0597 4016 SessionEnv - ok
20:38:33.0612 4016 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:38:33.0644 4016 sffdisk - ok
20:38:33.0644 4016 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:38:33.0659 4016 sffp_mmc - ok
20:38:33.0659 4016 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:38:33.0690 4016 sffp_sd - ok
20:38:33.0706 4016 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:38:33.0722 4016 sfloppy - ok
20:38:33.0753 4016 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:38:33.0800 4016 SharedAccess - ok
20:38:33.0831 4016 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:38:33.0862 4016 ShellHWDetection - ok
20:38:33.0893 4016 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:38:33.0893 4016 SiSRaid2 - ok
20:38:33.0909 4016 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:38:33.0924 4016 SiSRaid4 - ok
20:38:33.0956 4016 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:38:33.0971 4016 SkypeUpdate - ok
20:38:34.0002 4016 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:38:34.0049 4016 Smb - ok
20:38:34.0080 4016 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:38:34.0112 4016 SNMPTRAP - ok
20:38:34.0112 4016 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:38:34.0127 4016 spldr - ok
20:38:34.0158 4016 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
20:38:34.0190 4016 Spooler - ok
20:38:34.0268 4016 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:38:34.0330 4016 sppsvc - ok
20:38:34.0346 4016 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:38:34.0392 4016 sppuinotify - ok
20:38:34.0408 4016 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:38:34.0439 4016 srv - ok
20:38:34.0455 4016 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:38:34.0486 4016 srv2 - ok
20:38:34.0502 4016 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:38:34.0533 4016 srvnet - ok
20:38:34.0548 4016 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:38:34.0580 4016 SSDPSRV - ok
20:38:34.0611 4016 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:38:34.0626 4016 SstpSvc - ok
20:38:34.0658 4016 Steam Client Service - ok
20:38:34.0720 4016 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:38:34.0736 4016 Stereo Service - ok
20:38:34.0751 4016 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:38:34.0767 4016 stexstor - ok
20:38:34.0814 4016 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:38:34.0860 4016 stisvc - ok
20:38:34.0876 4016 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:38:34.0892 4016 storflt - ok
20:38:34.0907 4016 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
20:38:34.0938 4016 StorSvc - ok
20:38:34.0938 4016 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:38:34.0954 4016 storvsc - ok
20:38:34.0970 4016 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:38:34.0970 4016 swenum - ok
20:38:35.0079 4016 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
20:38:35.0110 4016 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
20:38:35.0110 4016 SwitchBoard - detected UnsignedFile.Multi.Generic (1)
20:38:35.0126 4016 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:38:35.0172 4016 swprv - ok
20:38:35.0219 4016 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:38:35.0282 4016 SysMain - ok
20:38:35.0313 4016 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:38:35.0328 4016 TabletInputService - ok
20:38:35.0360 4016 [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
20:38:35.0406 4016 tap0901 - ok
20:38:35.0438 4016 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:38:35.0500 4016 TapiSrv - ok
20:38:35.0500 4016 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:38:35.0547 4016 TBS - ok
20:38:35.0594 4016 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:38:35.0625 4016 Tcpip - ok
20:38:35.0687 4016 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:38:35.0718 4016 TCPIP6 - ok
20:38:35.0750 4016 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:38:35.0781 4016 tcpipreg - ok
20:38:35.0812 4016 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:38:35.0828 4016 TDPIPE - ok
20:38:35.0859 4016 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:38:35.0890 4016 TDTCP - ok
20:38:35.0906 4016 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:38:35.0952 4016 tdx - ok
20:38:35.0984 4016 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:38:35.0984 4016 TermDD - ok
20:38:36.0015 4016 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:38:36.0062 4016 TermService - ok
20:38:36.0077 4016 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:38:36.0093 4016 Themes - ok
20:38:36.0124 4016 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:38:36.0140 4016 THREADORDER - ok
20:38:36.0155 4016 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:38:36.0186 4016 TrkWks - ok
20:38:36.0233 4016 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:38:36.0296 4016 TrustedInstaller - ok
20:38:36.0311 4016 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:38:36.0342 4016 tssecsrv - ok
20:38:36.0374 4016 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:38:36.0389 4016 TsUsbFlt - ok
20:38:36.0436 4016 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:38:36.0467 4016 tunnel - ok
20:38:36.0483 4016 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:38:36.0498 4016 uagp35 - ok
20:38:36.0514 4016 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:38:36.0530 4016 udfs - ok
20:38:36.0545 4016 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:38:36.0576 4016 UI0Detect - ok
20:38:36.0592 4016 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:38:36.0608 4016 uliagpkx - ok
20:38:36.0623 4016 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
20:38:36.0639 4016 umbus - ok
20:38:36.0654 4016 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:38:36.0654 4016 UmPass - ok
20:38:36.0686 4016 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
20:38:36.0701 4016 UmRdpService - ok
20:38:36.0717 4016 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:38:36.0748 4016 upnphost - ok
20:38:36.0779 4016 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:38:36.0810 4016 USBAAPL64 - ok
20:38:36.0842 4016 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:38:36.0873 4016 usbaudio - ok
20:38:36.0904 4016 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:38:36.0951 4016 usbccgp - ok
20:38:36.0982 4016 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:38:37.0013 4016 usbcir - ok
20:38:37.0013 4016 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:38:37.0044 4016 usbehci - ok
20:38:37.0060 4016 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:38:37.0107 4016 usbhub - ok
20:38:37.0122 4016 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:38:37.0154 4016 usbohci - ok
20:38:37.0185 4016 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:38:37.0216 4016 usbprint - ok
20:38:37.0232 4016 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
20:38:37.0278 4016 USBSTOR - ok
20:38:37.0294 4016 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:38:37.0310 4016 usbuhci - ok
20:38:37.0341 4016 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:38:37.0372 4016 UxSms - ok
20:38:37.0388 4016 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:38:37.0403 4016 VaultSvc - ok
20:38:37.0419 4016 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:38:37.0434 4016 vdrvroot - ok
20:38:37.0481 4016 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:38:37.0528 4016 vds - ok
20:38:37.0544 4016 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:38:37.0559 4016 vga - ok
20:38:37.0559 4016 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:38:37.0590 4016 VgaSave - ok
20:38:37.0622 4016 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:38:37.0622 4016 vhdmp - ok
20:38:37.0637 4016 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:38:37.0653 4016 viaide - ok
20:38:37.0700 4016 [ 3ACCF0C817A2BB34EFBFB72B57B00252 ] VMAuthdService C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
20:38:37.0715 4016 VMAuthdService ( UnsignedFile.Multi.Generic ) - warning
20:38:37.0715 4016 VMAuthdService - detected UnsignedFile.Multi.Generic (1)
20:38:37.0731 4016 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:38:37.0762 4016 vmbus - ok
20:38:37.0778 4016 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:38:37.0793 4016 VMBusHID - ok
20:38:37.0824 4016 [ 87FC1DD880E8CAC4FAEBB84AF61A87C4 ] vmci C:\Windows\system32\DRIVERS\vmci.sys
20:38:37.0840 4016 vmci - ok
20:38:37.0887 4016 [ B259C31378BC855AFD1B53F59311C251 ] VMnetAdapter C:\Windows\system32\DRIVERS\vmnetadapter.sys
20:38:37.0902 4016 VMnetAdapter - ok
20:38:37.0949 4016 [ DEC4CE720FFEDA939CF1BA315CFBD993 ] VMnetBridge C:\Windows\system32\DRIVERS\vmnetbridge.sys
20:38:37.0965 4016 VMnetBridge - ok
20:38:37.0965 4016 VMnetDHCP - ok
20:38:37.0965 4016 [ 1E74142DED099DE7ADA258042F891A8D ] VMnetuserif C:\Windows\system32\drivers\vmnetuserif.sys
20:38:37.0980 4016 VMnetuserif - ok
20:38:37.0996 4016 [ 18903CA7936912C337C9D28858880CF2 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
20:38:38.0012 4016 VMUSBArbService - ok
20:38:38.0012 4016 VMware NAT Service - ok
20:38:38.0183 4016 [ F95C4DEFCC06A1C9E3E1699C845980F1 ] VMwareHostd C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
20:38:38.0292 4016 VMwareHostd ( UnsignedFile.Multi.Generic ) - warning
20:38:38.0292 4016 VMwareHostd - detected UnsignedFile.Multi.Generic (1)
20:38:38.0308 4016 [ 18A28EDA522B6C0560E59D5BE638D076 ] vmx86 C:\Windows\system32\drivers\vmx86.sys
20:38:38.0308 4016 vmx86 - ok
20:38:38.0339 4016 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:38:38.0355 4016 volmgr - ok
20:38:38.0386 4016 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:38:38.0402 4016 volmgrx - ok
20:38:38.0417 4016 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:38:38.0433 4016 volsnap - ok
20:38:38.0464 4016 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:38:38.0480 4016 vsmraid - ok
20:38:38.0526 4016 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:38:38.0573 4016 VSS - ok
20:38:38.0636 4016 [ 6107E33A30C0B923F31C872E1980D2D1 ] vstor2-mntapi10-shared C:\Windows\syswow64\drivers\vstor2-mntapi10-shared.sys
20:38:38.0651 4016 vstor2-mntapi10-shared - ok
20:38:38.0651 4016 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:38:38.0682 4016 vwifibus - ok
20:38:38.0714 4016 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:38:38.0760 4016 W32Time - ok
20:38:38.0776 4016 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:38:38.0792 4016 WacomPen - ok
20:38:38.0807 4016 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:38:38.0838 4016 WANARP - ok
20:38:38.0838 4016 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:38:38.0854 4016 Wanarpv6 - ok
20:38:38.0948 4016 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:38:38.0994 4016 wbengine - ok
20:38:39.0026 4016 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:38:39.0026 4016 WbioSrvc - ok
20:38:39.0057 4016 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:38:39.0072 4016 wcncsvc - ok
20:38:39.0088 4016 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:38:39.0104 4016 WcsPlugInService - ok
20:38:39.0119 4016 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:38:39.0119 4016 Wd - ok
20:38:39.0150 4016 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:38:39.0150 4016 Wdf01000 - ok
20:38:39.0166 4016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:38:39.0244 4016 WdiServiceHost - ok
20:38:39.0244 4016 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:38:39.0260 4016 WdiSystemHost - ok
20:38:39.0291 4016 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:38:39.0322 4016 WebClient - ok
20:38:39.0338 4016 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:38:39.0384 4016 Wecsvc - ok
20:38:39.0400 4016 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:38:39.0447 4016 wercplsupport - ok
20:38:39.0462 4016 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:38:39.0494 4016 WerSvc - ok
20:38:39.0494 4016 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:38:39.0525 4016 WfpLwf - ok
20:38:39.0525 4016 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:38:39.0540 4016 WIMMount - ok
20:38:39.0556 4016 WinDefend - ok
20:38:39.0556 4016 WinHttpAutoProxySvc - ok
20:38:39.0572 4016 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:38:39.0603 4016 Winmgmt - ok
20:38:39.0634 4016 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:38:39.0696 4016 WinRM - ok
20:38:39.0728 4016 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:38:39.0743 4016 WinUsb - ok
20:38:39.0759 4016 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:38:39.0774 4016 Wlansvc - ok
20:38:39.0899 4016 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:38:39.0977 4016 wlidsvc - ok
20:38:40.0008 4016 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:38:40.0024 4016 WmiAcpi - ok
20:38:40.0055 4016 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:38:40.0086 4016 wmiApSrv - ok
20:38:40.0102 4016 WMPNetworkSvc - ok
20:38:40.0118 4016 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:38:40.0149 4016 WPCSvc - ok
20:38:40.0180 4016 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:38:40.0211 4016 WPDBusEnum - ok
20:38:40.0227 4016 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:38:40.0274 4016 ws2ifsl - ok
20:38:40.0289 4016 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:38:40.0320 4016 wscsvc - ok
20:38:40.0320 4016 WSearch - ok
20:38:40.0383 4016 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:38:40.0430 4016 wuauserv - ok
20:38:40.0461 4016 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:38:40.0492 4016 WudfPf - ok
20:38:40.0508 4016 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:38:40.0554 4016 WUDFRd - ok
20:38:40.0586 4016 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:38:40.0617 4016 wudfsvc - ok
20:38:40.0632 4016 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:38:40.0664 4016 WwanSvc - ok
20:38:40.0695 4016 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
20:38:40.0726 4016 xusb21 - ok
20:38:40.0742 4016 ================ Scan global ===============================
20:38:40.0773 4016 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:38:40.0788 4016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:38:40.0804 4016 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
20:38:40.0835 4016 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:38:40.0835 4016 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:38:40.0851 4016 [Global] - ok
20:38:40.0851 4016 ================ Scan MBR ==================================
20:38:40.0866 4016 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:38:41.0100 4016 \Device\Harddisk0\DR0 - ok
20:38:41.0100 4016 ================ Scan VBR ==================================
20:38:41.0100 4016 [ 27330CE5587F4B8384A5B4A8E3F8E1C0 ] \Device\Harddisk0\DR0\Partition1
20:38:41.0100 4016 \Device\Harddisk0\DR0\Partition1 - ok
20:38:41.0116 4016 [ C4083F17E9AE8CAE86A346D2A696522A ] \Device\Harddisk0\DR0\Partition2
20:38:41.0116 4016 \Device\Harddisk0\DR0\Partition2 - ok
20:38:41.0132 4016 [ 270C92CE01DB73430C4F6501D50BDB2E ] \Device\Harddisk0\DR0\Partition3
20:38:41.0132 4016 \Device\Harddisk0\DR0\Partition3 - ok
20:38:41.0132 4016 ============================================================
20:38:41.0132 4016 Scan finished
20:38:41.0132 4016 ============================================================
20:38:41.0147 5404 Detected object count: 5
20:38:41.0147 5404 Actual detected object count: 5
20:38:58.0619 5404 BEService ( UnsignedFile.Multi.Generic ) - skipped by user
20:38:58.0619 5404 BEService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:38:58.0619 5404 OpenVPNService ( UnsignedFile.Multi.Generic ) - skipped by user
20:38:58.0619 5404 OpenVPNService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:38:58.0619 5404 SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
20:38:58.0619 5404 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:38:58.0619 5404 VMAuthdService ( UnsignedFile.Multi.Generic ) - skipped by user
20:38:58.0619 5404 VMAuthdService ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:38:58.0619 5404 VMwareHostd ( UnsignedFile.Multi.Generic ) - skipped by user
20:38:58.0619 5404 VMwareHostd ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:39:02.0816 5468 Deinitialize success
|
|
18.02.2013, 15:31
| #8 |
| /// Malware-holic | Programme brauchen lange zum starten Hi, Scan mit Combofix
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
18.02.2013, 15:51
| #9 |
| | Programme brauchen lange zum startenCode:
ATTFilter ComboFix 13-02-18.01 - Root 18.02.2013 15:43:40.1.8 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.8174.5307 [GMT 1:00]
ausgeführt von:: c:\users\Root\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
FW: Kaspersky Internet Security *Disabled* {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}
SP: Kaspersky Internet Security *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Root\AppData\Roaming\Microsoft\~DFK1aa9e2a.tmp
c:\users\Root\AppData\Roaming\Microsoft\1eaadjc.dll
c:\users\Root\AppData\Roaming\Microsoft\bass.dll
c:\users\Root\AppData\Roaming\Microsoft\engine_vx.dll
c:\users\Root\AppData\Roaming\Microsoft\kfgresk.dll
c:\users\Root\AppData\Roaming\Microsoft\peaadje.dll
c:\users\Root\AppData\Roaming\Microsoft\qwadjb.dll
c:\users\Root\AppData\Roaming\Microsoft\rsaadjd.dll
c:\windows\SysWow64\DEBUG.log
c:\windows\SysWow64\logs
c:\windows\SysWow64\logs\Game - R3d Logs\2012-05-02_12-06-47_r3dlog.txt
D:\install.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-01-18 bis 2013-02-18 ))))))))))))))))))))))))))))))
.
.
2013-02-17 17:52 . 2012-07-11 16:09 64856 ----a-w- c:\windows\system32\klfphc.dll
2013-02-17 17:51 . 2013-02-17 17:51 -------- d-----w- c:\windows\ELAMBKUP
2013-02-17 17:26 . 2013-02-17 17:26 -------- d-----w- C:\_OTL
2013-02-16 23:11 . 2013-01-09 01:10 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-16 23:11 . 2013-01-08 22:01 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-02-16 19:14 . 2013-02-16 19:14 -------- d-----w- c:\program files (x86)\Common Files\BattlEye
2013-02-16 18:34 . 2013-02-16 18:34 -------- d-----w- c:\programdata\Bohemia Interactive Studio
2013-02-16 18:28 . 2013-02-16 18:28 -------- d-----w- c:\program files (x86)\SIX Networks
2013-02-16 18:28 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{67B08B11-C400-420D-B765-C8F02F90236C}\mpengine.dll
2013-02-15 19:09 . 2013-02-15 19:09 -------- d-----w- c:\users\Root\AppData\Roaming\DivX
2013-02-15 13:13 . 2013-02-16 20:54 -------- d-----w- c:\users\Root\AppData\Roaming\ftblauncher
2013-02-10 18:23 . 2013-02-16 18:21 -------- d-----w- c:\users\Root\AppData\Roaming\ts3overlay
2013-02-09 13:21 . 2013-02-09 13:21 -------- d-----w- c:\users\Root\AppData\Local\DDMSettings
2013-02-09 13:20 . 2013-02-09 13:20 -------- d-----w- c:\program files\DivX
2013-02-09 13:20 . 2013-02-09 13:20 -------- d-----w- c:\program files (x86)\Common Files\DivX Shared
2013-02-09 13:18 . 2013-02-09 13:20 -------- d-----w- c:\program files (x86)\DivX
2013-02-09 13:17 . 2013-02-09 13:20 -------- d-----w- c:\programdata\DivX
2013-02-09 13:14 . 2013-02-09 13:14 -------- d-----w- c:\program files (x86)\Xvid
2013-02-09 13:14 . 2011-05-30 13:42 240640 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2013-02-09 13:14 . 2011-05-30 13:42 255488 ----a-w- c:\windows\system32\xvidvfw.dll
2013-02-09 13:14 . 2011-05-23 09:52 153088 ----a-w- c:\windows\SysWow64\xvid.ax
2013-02-09 13:14 . 2011-05-23 07:49 173568 ----a-w- c:\windows\system32\xvid.ax
2013-02-09 13:14 . 2011-05-23 07:46 645632 ----a-w- c:\windows\SysWow64\xvidcore.dll
2013-02-09 13:14 . 2011-05-23 07:45 696832 ----a-w- c:\windows\system32\xvidcore.dll
2013-02-04 14:56 . 2013-02-04 14:56 -------- d-----w- c:\program files (x86)\0xRH
2013-02-02 23:43 . 2013-02-02 23:43 -------- d-----w- c:\program files (x86)\PWUnmask
2013-01-28 19:53 . 2013-01-28 19:53 -------- d-----w- c:\users\Root\AppData\Roaming\tor
2013-01-28 19:53 . 2013-01-28 19:53 -------- d-----w- c:\users\Root\AppData\Roaming\Vidalia
2013-01-19 21:45 . 2013-01-20 14:41 -------- d-----w- c:\users\Root\AppData\Local\kJKxc2SrE2J0FNouaB
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-17 18:20 . 2012-06-08 10:38 54104 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-02-17 18:20 . 2012-10-25 11:42 613720 ----a-w- c:\windows\system32\drivers\klif.sys
2013-02-17 01:54 . 2012-11-25 19:48 70004024 ----a-w- c:\windows\system32\MRT.exe
2013-02-09 11:14 . 2012-04-16 12:15 697712 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-09 11:14 . 2012-03-09 19:32 74096 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-17 00:28 . 2012-03-09 19:25 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-10 15:08 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-01-10 15:08 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-01-08 20:53 . 2012-08-30 20:14 188064 ----a-w- c:\programdata\Microsoft\VCSExpress\10.0\1033\ResourceCache.dll
2013-01-08 20:53 . 2012-03-29 17:13 191456 ----a-w- c:\programdata\Microsoft\VCSExpress\10.0\1031\ResourceCache.dll
2013-01-08 20:53 . 2012-04-10 22:10 113440 ----a-w- c:\programdata\Microsoft\VCExpress\10.0\1031\ResourceCache.dll
2013-01-08 20:52 . 2012-03-30 09:12 207008 ----a-w- c:\programdata\Microsoft\VBExpress\10.0\1031\ResourceCache.dll
2013-01-08 17:08 . 2009-08-18 11:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2013-01-08 17:08 . 2009-08-18 10:24 19696 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-01-04 04:43 . 2013-02-16 18:29 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-12-16 17:11 . 2013-01-08 20:47 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2013-01-08 20:47 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2013-01-08 20:47 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2013-01-08 20:47 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-06 18:35 . 2012-12-06 18:35 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-12-06 18:34 . 2012-12-06 18:35 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-12-06 18:34 . 2012-03-10 11:58 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-12-02 17:05 . 2012-03-17 18:15 281520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2012-12-02 17:05 . 2012-03-16 19:06 281520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2012-12-02 17:04 . 2012-03-16 19:06 280904 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2012-11-28 14:05 . 2012-03-16 19:06 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2012-11-23 03:13 . 2013-01-11 13:03 68608 ----a-w- c:\windows\system32\taskhost.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{6e47d688-85ec-465a-9946-ec58220f14fc}]
2012-09-24 22:12 89288 ----a-w- c:\progra~2\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{B939CF93-F2CB-443d-956C-DC523D85C9DB}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{6e47d688-85ec-465a-9946-ec58220f14fc}"= "c:\progra~2\BEARSH~1\Mediabar\Datamngr\SRTOOL~1\searchresultsDx.dll" [2012-09-24 89288]
.
[HKEY_CLASSES_ROOT\clsid\{6e47d688-85ec-465a-9946-ec58220f14fc}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2012-11-30 1263512]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe" [2013-02-17 356376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\BEARSH~1\Mediabar\Datamngr\datamngr.dll c:\progra~2\BEARSH~1\Mediabar\Datamngr\IEBHO.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer8"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe [2013-02-16 49152]
R3 dump_wmimmc;dump_wmimmc;c:\program files\gPotato.eu\Rappelz\GameGuard\dump_wmimmc.sys [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-04-25 52736]
R3 VMwareHostd;VMware Workstation Server;c:\program files (x86)\VMware\VMware Workstation\vmware-hostd.exe [2012-01-18 11839488]
S0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys [2011-08-08 116336]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2012-08-02 28504]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys [2013-02-17 54104]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys [2012-08-13 178008]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2012-12-10 2465712]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2012-10-19 375728]
S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\rainfo.sys [2012-08-24 15928]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe [2011-08-29 846448]
S2 vstor2-mntapi10-shared;Vstor2 MntApi 1.0 Driver (shared);SysWOW64\drivers\vstor2-mntapi10-shared.sys [x]
S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys [2012-10-08 31968]
S3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);c:\windows\system32\DRIVERS\vrtaucbl.sys [2012-07-03 66728]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys [2012-10-25 29016]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2012-10-25 29528]
S3 LADF_CaptureOnly;LADF Capture Filter Driver;c:\windows\system32\DRIVERS\ladfGSCamd64.sys [2011-04-11 410184]
S3 LADF_RenderOnly;LADF Render Filter Driver;c:\windows\system32\DRIVERS\ladfGSRamd64.sys [2011-04-11 341832]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-04-22 471144]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-02-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-16 11:14]
.
2012-12-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2467767842-2809315797-3914323744-1000Core.job
- c:\users\Root\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-01 19:42]
.
2012-12-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2467767842-2809315797-3914323744-1000UA.job
- c:\users\Root\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-01 19:42]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\progra~2\BEARSH~1\Mediabar\Datamngr\x64\datamngr.dll c:\progra~2\BEARSH~1\Mediabar\Datamngr\x64\IEBHO.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Hinzufügen zu Anti-Banner - c:\program files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\ie_banner_deny.htm
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
LSP: %SystemRoot%\system32\vsocklib.dll
Trusted Zone: samsungsetup.com\www
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Root\AppData\Roaming\Mozilla\Firefox\Profiles\02ptezpp.default\
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-HijackThis - c:\users\Root\AppData\Local\Opera\Opera\temporary_downloads\HijackThis.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2467767842-2809315797-3914323744-1000\Software\SecuROM\License information*]
"datasecu"=hex:ae,1f,37,9b,d1,6a,71,e7,bd,94,95,7e,95,13,f1,7a,c9,55,4c,8e,89,
02,97,25,ca,66,a8,b6,fa,ff,cc,35,8e,93,82,40,b8,b5,df,ef,0a,d5,e6,00,b1,c4,\
"rkeysecu"=hex:cb,bd,f2,61,5a,4e,c6,95,f2,29,8b,82,ba,6b,3d,44
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-02-18 15:51:02
ComboFix-quarantined-files.txt 2013-02-18 14:51
.
Vor Suchlauf: 18 Verzeichnis(se), 219.144.671.232 Bytes frei
Nach Suchlauf: 22 Verzeichnis(se), 218.994.323.456 Bytes frei
.
- - End Of File - - 32A4CFB066AF7D4655D72796F6BB4A62
|
|
18.02.2013, 16:01
| #10 |
| /// Malware-holic | Programme brauchen lange zum starten Hi, malwarebytes: Downloade Dir bitte Malwarebytes
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
18.02.2013, 16:32
| #11 |
| | Programme brauchen lange zum startenCode:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 Malwarebytes : Free Anti-Malware download Datenbank Version: v2013.02.18.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Root :: SYSTEMROOT [Administrator] 18.02.2013 16:28:39 MBAM-log-2013-02-18 (16-30-55).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 263948 Laufzeit: 1 Minute(n), 41 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 2 C:\Users\Root\Desktop\OperaPassView.exe (PUP.OperaPasswordTool) -> Keine Aktion durchgeführt. C:\Users\Root\Desktop\Winject.exe (HackTool.Agent.H) -> Keine Aktion durchgeführt. (Ende) |
|
18.02.2013, 17:01
| #12 |
| /// Malware-holic | Programme brauchen lange zum starten ich wollte einen vollständigen scan. bitte noch mal updaten und ausführen
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
18.02.2013, 18:52
| #13 |
| | Programme brauchen lange zum starten sorry, habe ich ganz überlesen. hier nochmal der vollständige scan: Code:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.02.18.08 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Root :: SYSTEMROOT [Administrator] 18.02.2013 17:08:41 mbam-log-2013-02-18 (17-08-41).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 967266 Laufzeit: 1 Stunde(n), 39 Minute(n), 1 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 8 C:\Users\Root\Desktop\OperaPassView.exe (PUP.OperaPasswordTool) -> Keine Aktion durchgeführt. C:\Users\Root\Desktop\Winject.exe (HackTool.Agent.H) -> Keine Aktion durchgeführt. C:\Users\Root\Desktop\WPE\WPE PRO - modified.exe (HackTool.Sniffer.WpePro) -> Keine Aktion durchgeführt. C:\Users\Root\Desktop\WPE\WpeSpy.dll (HackTool.Sniffer.WpePro) -> Keine Aktion durchgeführt. D:\Riot Games\League of Legends\rads\solutions\lol_game_client_sln\releases\0.0.0.212\deploy\Winject.exe (HackTool.Agent.H) -> Keine Aktion durchgeführt. D:\Riot Games\League of Legends - Kopie\rads\solutions\lol_game_client_sln\releases\0.0.0.154\deploy\Winject.exe (HackTool.Agent.H) -> Keine Aktion durchgeführt. D:\Riot Games\PBE\rads\solutions\lol_game_client_sln\releases\0.0.1.6\deploy\Winject.exe (HackTool.Agent.H) -> Keine Aktion durchgeführt. D:\Steam\SteamApps\common\the binding of isaac\TDU.exe (Packer.ModifiedUPX) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende)  |
|
18.02.2013, 18:53
| #14 |
| /// Malware-holic | Programme brauchen lange zum starten Hi, könnte n Falschalarm gewesen sein. lade den CCleaner standard: CCleaner - Download - Filepony falls der CCleaner bereits instaliert, überspringen. öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen. hinter, jedes von dir benötigte programm, schreibe notwendig. hinter, jedes, von dir nicht benötigte, unnötig. hinter, dir unbekannte, unbekannt. liste posten.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
18.02.2013, 19:10
| #15 |
| | Programme brauchen lange zum startenCode:
ATTFilter 3ivx MPEG-4 5.0.4 (remove only) 3ivx Technologies, Pty. Ltd. 10.06.2012 5.0.4 unbekannt 4Story DE 3.9.154 11.08.2012 2.37GB nötog Adobe After Effects CS5.5 Adobe Systems Incorporated 21.03.2012 2.56GB 10.5.1 nötig Adobe After Effects CS5.5 Third Party Content Adobe Systems Incorporated 31.07.2012 213MB 10.5.1 nözig Adobe AIR Adobe Systems Incorporated 21.03.2012 3.1.0.4880 unbekannt Adobe Community Help Adobe Systems Incorporated. 21.03.2012 3.4.980 unbekannt Adobe Download Assistant Adobe Systems Incorporated 21.03.2012 1.0.6 unbekannt Adobe Flash Player 11 ActiveX Adobe Systems Incorporated 08.10.2012 6.00MB 11.4.402.287 nötig Adobe Flash Player 11 Plugin Adobe Systems Incorporated 09.02.2013 6.00MB 11.5.502.149 nötig Adobe Media Player Adobe Systems Incorporated 31.07.2012 1.8 unbekannt Adobe Photoshop CS5 Adobe Systems Incorporated 31.07.2012 2.92GB 12.0 unnötig Adobe Photoshop CS5.1 Adobe Systems Incorporated 24.03.2012 2.96GB 12.1 nötig Adobe Reader X (10.1.3) - Deutsch Adobe Systems Incorporated 17.04.2012 121MB 10.1.3 unbekannt Adobe Story Adobe Systems Incorporated 21.03.2012 1.0.571 unbekannt ANNO 1503 Königs- Edition 27.08.2012 3.05.042.00 nötig APB Reloaded 20.08.2012 1.4.1.587574 nötog Apple Application Support Apple Inc. 03.01.2013 65.0MB 2.3 unbekannt Apple Mobile Device Support Apple Inc. 03.09.2012 24.9MB 5.2.0.6 unbekannt Apple Software Update Apple Inc. 23.03.2012 2.38MB 2.1.3.127 unbekannt aTube Catcher DsNET Corp 03.01.2013 2.9.1347 nötig Audiograbber 1.83 SE Audiograbber 03.07.2012 1.83 SE nötig Audiograbber MP3-Plugin (64 bit) AG 03.07.2012 1.0 nötig AutoHotkey 1.0.48.05 Chris Mallett 05.10.2012 1.0.48.05 nötig AutoIt v3.3.8.1 AutoIt Team 06.05.2012 nötig AviSynth 2.5 14.11.2012 unbekannt Battlefield 3™ Electronic Arts 27.11.2012 1.4.0.0 nötig Battlelog Web Plugins EA Digital Illusions CE AB 27.11.2012 2.1.2 nötig BattlEye for OA Uninstall 16.02.2013 unbekannt (?, bin mir nicht sicher, ob das jetzt nur BE ist oder was genau das bewirk) Bonjour Apple Inc. 03.09.2012 2.04MB 3.0.0.10 unbekannt CamStudio 31.05.2012 nötig Camtasia Studio 8 TechSmith Corporation 05.10.2012 209MB 8.0.2.964 nötig CCleaner Piriform 25.11.2012 3.25 nötig Cheat Engine 6.1 Dark Byte 24.03.2012 23.5MB unnötig Cheat Engine 6.2 Dark Byte 11.11.2012 27.0MB nötig Citron 2.5 ClickTwice Software 07.10.2012 8.85MB unnötig ControlSpy Microsoft 10.05.2012 1.66MB 1.0.0 unbekannt Crysis®3 MP Alpha Electronic Arts 02.11.2012 2.45GB 1.0.0.0 nötig Dark Souls: Prepare to Die Edition 07.01.2013 nötig DayZ Commander Dotjosh Studios 16.09.2012 3.50MB 0.9.84 unnötig Detours Express 3.0 Microsoft Research 11.04.2012 2.62MB 1.0.000 unnötig Deus Ex: Human Revolution Eidos Montreal 22.11.2012 nötig Dev-C++ 5 beta 9 release (4.9.9.2) 10.04.2012 unbekannt DivX-Setup DivX, LLC 09.02.2013 2.6.1.22 unbekannt DriverTuner 3.1.0.0 LionSea SoftWare 09.03.2012 24.7MB 3.1.0.0 unbekannt Eets Klei Entertainment 30.01.2013 nötig ESN Sonar ESN Social Software AB 27.11.2012 0.70.4 unbekannt Flare 0.6 Igor Kogan 24.09.2012 0.6 nötig Flyff Gala Networks Europe Limited 30.01.2013 Flyff nötig Fraps (remove only) 31.05.2012 unnötig Free FLV Converter V 7.4.0 Koyote Soft 10.06.2012 17.5MB 7.4.0.0 unnötig Free Video Dub version 2.0.8.504 DVDVideoSoft Ltd. 09.06.2012 65.6MB 2.0.8.504 unnötig Game Booster 3 IObit 17.04.2012 15.7MB 3.3.1 unnötig GamersFirst LIVE! GamersFirst 14.07.2012 nötig GameSpy Comrade GameSpy 16.03.2012 5.95MB 2.1.1.214 nötig GhostMouse AutomaticSolution Software 06.04.2012 1.44MB Free V3.1 nötig glu 1.0.22 steelspace 07.10.2012 1.0.22 unnötog Google Chrome Google Inc. 10.05.2012 23.0.1271.95 nötig GraphicsGale FreeEdition version 1.93.20 HUMANBALANCE Co.,Ltd. 04.07.2012 4.13MB unbekannt Hex-Editor MX NEXT-Soft 26.09.2012 6.0 nötig HijackThis 2.0.2 TrendMicro 17.02.2013 2.0.2 unnötig ICQ7M ICQ 30.11.2012 7.8 nötig iFunbox (v2.1.2228.731), iFunbox DevTeam 13.01.2013 40.6MB v2.1.2228.731 unnötig iTunes Apple Inc. 03.09.2012 184MB 10.6.3.25 leider nötig Java 7 Update 9 Oracle 06.12.2012 128MB 7.0.90 unbekannt Java(TM) 6 Update 22 Oracle 20.04.2012 97.0MB 6.0.220unbekannt Java(TM) 6 Update 31 Oracle 10.03.2012 97.2MB 6.0.310unbekannt Java(TM) 7 Update 4 (64-bit) Oracle 27.05.2012 95.0MB 7.0.40unbekannt Kaspersky Internet Security 2013 Kaspersky Lab 17.02.2013 13.0.1.4190 nötig LAV Filters 0.50.5 Hendrik Leppkes 10.06.2012 11.4MB 0.50.5 unbekannt League of Legends Riot Games 09.03.2012 1.02.0000 nötig Logitech Gaming Software 8.35 Logitech Inc. 06.11.2012 81.2MB 8.35.18 nötig LogMeIn LogMeIn, Inc. 25.10.2012 49.1MB 4.1.2600 nötig LogMeIn Hamachi LogMeIn, Inc. 12.12.2012 2.1.0.294 nötig LOLReplay www.leaguereplays.com 07.04.2012 0.7.6.7 nötig Malwarebytes Anti-Malware Version 1.70.0.1100 Malwarebytes Corporation 18.02.2013 18.4MB 1.70.0.1100 nötig Microsoft .NET Framework 4 Client Profile Microsoft Corporation 10.03.2012 38.8MB 4.0.30319 .NET Framework 4 ist nötig, nur weiß ich davon nicht, was dies ist. Microsoft .NET Framework 4 Client Profile DEU Language Pack Microsoft Corporation 10.03.2012 2.93MB 4.0.30319 unbekannt Microsoft .NET Framework 4 Extended Microsoft Corporation 10.03.2012 51.9MB 4.0.30319 unbekanntunbekannt Microsoft .NET Framework 4 Extended DEU Language Pack Microsoft Corporation 10.03.2012 10.6MB 4.0.30319unbekannt Microsoft .NET Framework 4 Multi-Targeting Pack Microsoft Corporation 29.03.2012 83.4MB 4.0.30319unbekannt Microsoft DirectX SDK (June 2010) Microsoft Corporation 17.09.2012 9.29.1962.0 nötig Microsoft Games for Windows - LIVE Redistributable Microsoft Corporation 08.01.2013 31.3MB 3.5.92.0 nötig Microsoft Games for Windows Marketplace Microsoft Corporation 08.01.2013 6.03MB 3.5.50.0 nötig Microsoft Help Viewer 1.0 Microsoft Corporation 29.03.2012 3.97MB 1.0.30319 unbekannt Microsoft Help Viewer 1.0 Language Pack - DEU Microsoft Corporation 29.03.2012 1.95MB 1.0.30319 unbekannt Microsoft Silverlight Microsoft Corporation 25.11.2012 34.6MB 4.1.10329.0 unbekannt Microsoft SQL Server 2008 R2 Management Objects Microsoft Corporation 30.08.2012 5.89MB 10.50.1447.4 unbekannt Microsoft SQL Server Compact 3.5 SP2 DEU Microsoft Corporation 29.03.2012 3.69MB 3.5.8080.0 unbekannt Microsoft SQL Server Compact 3.5 SP2 ENU Microsoft Corporation 30.08.2012 3.38MB 3.5.8080.0 unbekannt Microsoft SQL Server Compact 3.5 SP2 x64 DEU Microsoft Corporation 29.03.2012 4.81MB 3.5.8080.0 unbekannt Microsoft SQL Server Compact 3.5 SP2 x64 ENU Microsoft Corporation 30.08.2012 4.50MB 3.5.8080.0 unbekannt Microsoft SQL Server System CLR Types Microsoft Corporation 30.08.2012 625KB 10.50.1447.4 unbekannt Microsoft Team Foundation Server 2010-Objektmodell - DEU Microsoft Corporation 10.05.2012 10.0.30319 Microsoft Visual Basic 2010 Express - DEU Microsoft Corporation 08.01.2013 10.0.30319 nötig Microsoft Visual C# 2010 Express - DEU Microsoft Corporation 08.01.2013 10.0.30319 nötig Microsoft Visual C# 2010 Express - ENU Microsoft Corporation 08.01.2013 10.0.30319 2. mal vorhanden :o Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 01.06.2012 298KB 8.0.59193 nötig Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 Microsoft Corporation 08.04.2012 1.42MB 9.0.21022 unbekannt Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Corporation 09.03.2012 788KB 9.0.30729 unbekannt Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Corporation 17.04.2012 788KB 9.0.30729.4148 unbekannt Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Corporation 01.06.2012 788KB 9.0.30729.6161 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 Microsoft Corporation 30.03.2012 2.86MB 9.0.21022 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Corporation 11.03.2012 596KB 9.0.30729 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 17.04.2012 226KB 9.0.30729.4148 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 Microsoft Corporation 29.03.2012 599KB 9.0.30729.4974 unbekannt Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Corporation 01.06.2012 600KB 9.0.30729.6161 unbekannt Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Corporation 17.09.2012 13.8MB 10.0.40219 unbekannt Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 Microsoft Corporation 01.06.2012 20.2MB 10.0.30319 unbekannt Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft Corporation 17.09.2012 11.1MB 10.0.40219 unbekannt Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319 Microsoft Corporation 01.06.2012 15.7MB 10.0.30319 unbekannt Microsoft Visual C++ 2010 Express - DEU Microsoft Corporation 10.04.2012 10.0.30319 nötig Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools Microsoft Corporation 29.03.2012 35.2MB 10.0.30319 unbekannt Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU Microsoft Corporation 29.03.2012 4.31MB 10.0.30319 unbekannt Microsoft Visual Studio Macro Tools Microsoft Corporation 10.05.2012 9.0.30729 unbekannt Microsoft Visual Studio Macro Tools - DEU Language Pack Microsoft Corporation 10.05.2012 9.0.30729 unbekannt Microsoft XNA Framework Redistributable 3.1 Microsoft Corporation 25.03.2012 7.48MB 3.1.10527.0 unnötig Microsoft XNA Framework Redistributable 4.0 Microsoft Corporation 24.03.2012 8.03MB 4.0.20823.0 unnötog Microsoft XNA Game Studio 4.0 Microsoft Corporation 30.08.2012 4.0.20823.0 unnötig Microsoft XNA Game Studio Platform Tools Microsoft Corporation 30.08.2012 14.1MB 1.3.0.0 Mozilla Firefox 17.0.1 (x86 de) Mozilla 06.12.2012 41.0MB 17.0.1unnötig Mozilla Maintenance Service Mozilla 06.12.2012 329KB 17.0.1 unnötig MSXML 4.0 SP2 (KB954430) Microsoft Corporation 12.03.2012 1.27MB 4.20.9870.0 unbekannt MSXML 4.0 SP2 (KB973688) Microsoft Corporation 12.03.2012 1.33MB 4.20.9876.0 unbekannt MySQL-Front 09.11.2012 12.6MB 5.3 unbekannt Nero 9 Essentials Nero AG 09.03.2012 nötig No23 Recorder No23 03.07.2012 2.1.0.3 unnötig Notepad++ 03.06.2012 6.1.3 nötig NVIDIA 3D Vision Controller-Treiber 306.97 NVIDIA Corporation 13.11.2012 306.97 nötig NVIDIA 3D Vision Treiber 306.97 NVIDIA Corporation 13.11.2012 306.97 nötig NVIDIA Grafiktreiber 306.97 NVIDIA Corporation 13.11.2012 306.97nötig NVIDIA HD-Audiotreiber 1.3.18.0 NVIDIA Corporation 13.11.2012 1.3.18.0nötig NVIDIA PhysX NVIDIA Corporation 20.10.2012 111MB 9.12.0613nötig NVIDIA Update 1.10.8 NVIDIA Corporation 13.11.2012 1.10.8nötig OnlineControl 1.2 Deutsche Telekom AG T-Com 20.12.2012 1.2.23 nötig OpenAL 30.03.2012 unbekannt OpenOffice.org 3.3 OpenOffice.org 20.04.2012 374MB 3.3.9567 nötig OpenVPN 2.2.2 22.11.2012 2.2.2 nötig Opera 12.11 Opera Software ASA 21.11.2012 12.11.1661 nötog Origin Electronic Arts, Inc. 01.10.2012 9.0.13.2142nötig Pando Media Booster Pando Networks Inc. 09.03.2012 5.46MB 2.6.0.6nötig Password Unmask 2.0 03.02.2013 nötig PE Explorer 1.99 R6 Heaventools Software 10.05.2012 1.99.6 nötig Pidgin 07.10.2012 2.10.6 nötig Play withSIX SIX Networks 16.02.2013 14.8MB 1.20.0330 nötig Pokemon Game Editor 0xRH 04.02.2013 1.93MB 1.0.0.0 nötig ProxySwitcher Standard V-Tech LLC 16.12.2012 9.23MB 5.6.1 unnötig Psi (remove only) 07.10.2012 unbekannt PSP Video 9 6 Red Kawa 14.11.2012 6 unbekannt PunkBuster Services Even Balance, Inc. 27.11.2012 0.991 nötig QuickTime Apple Inc. 03.01.2013 73.1MB 7.73.80.64nötig Rainmeter 10.09.2012 2.3.3 r1522 unnötig Rappelz gPotato.eu 13.10.2012 Rappelz nötig Realtek Ethernet Controller Driver Realtek 09.03.2012 7.44.421.2011 unbekannt RPG MAKER VX Ace Enterbrain 08.09.2012 44.5MB 1.01a nötig RPG MAKER VX Ace RTP Enterbrain 08.09.2012 194MB 1.00 nötig Sacred Underworld Ascaron Entertainment GmbH 17.04.2012 nötig Schriftenbibliothek 22.12.2012 574MB unbekannt SciTE4AutoIt3 12/29/2011 Jos van der Zande 06.05.2012 12/29/2011 nötig Screen Recording Suite V2.5.0 Apowersoft 05.12.2012 76.5MB 2.5.0 nötig Search-Results Toolbar APN LLC 02.10.2012 1.0.0.12 unnötig SecurityKISS Tunnel v0.2.2 03.07.2012 8.61MB unbekannt ShiftWindow 1.02 Grismar 27.07.2012 nötig Skype™ 5.10 Skype Technologies S.A. 08.01.2013 19.3MB 5.10.116 nötig Sonarca Sound Recorder Free 3.8.3 Accmeware Corporation 03.07.2012 2.11MB unbekannt SpongeBob SquarePants Employee of the Month 29.08.2012 nötig SPORE™ Electronic Arts 15.09.2012 1.02.0000nötig SPORE™ Süß & Schrecklich Ergänzungs-Pack Electronic Arts 15.09.2012 1.00.0000 nötig StarCraft II Blizzard Entertainment 03.10.2012 1.5.3.23260 nötig Steam Valve Corporation 09.03.2012 35.4MB 1.0.0.0 nötig Steganos Password Manager 2012 Steganos Software GmbH 10.12.2012 13.0.2 unnötig SWF Scanner 24.09.2012 unbekannt TeamSpeak 3 Client TeamSpeak Systems GmbH 26.12.2012 3.0.9.2 nötig Techne ZeuX and r4wk 10.03.2012 1.3.0.15 nötig TERA Frogster Online Gaming GmbH 13.03.2012 39.4MB 16.04 nötig Total War: SHOGUN 2 The Creative Assembly 23.11.2012 nötig Vegas Pro 11.0 Sony 09.06.2012 423MB 11.0.682 nötig Virtual Audio Cable 4.10 03.07.2012 nötig Visual Studio 2010 Prerequisites - English Microsoft Corporation 10.05.2012 5.87MB 10.0.30319 unbekannt Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU Microsoft Corporation 29.03.2012 11.1MB 4.0.8080.0 unbekannt Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU Microsoft Corporation 30.08.2012 10.7MB 4.0.8080.0 unbekannt VLC media player 2.0.0 VideoLAN 15.03.2012 2.0.0 nötig VMware Workstation VMware, Inc 17.04.2012 3.25GB 8.0.2.28060 nötig VoiceOver Kit Apple Inc. 31.12.2012 41.7MB 1.42.128.0 unbekannt Warmux 09.09.2012 11.04 nötig Windows Live ID Sign-in Assistant Microsoft Corporation 08.01.2013 10.0MB 6.500.3165.0 nötig WinRAR 4.11 (64-bit) win.rar GmbH 01.06.2012 4.11.0nötig Winspector GipsySoft.com 23.05.2012 unbekannt Wireshark 1.6.6 The Wireshark developer community, hxxp://www.wireshark.org 04.04.2012 1.6.6 unnötig World of Tanks Wargaming.net 20.05.2012 15.0MB nötig World of Warcraft Blizzard Entertainment 21.04.2012 4.3.4.15595nötig WorldPainter 0.8.7 pepsoft.org 02.06.2012 0.8.7 nötig Xvid Video Codec Xvid Team 09.02.2013 1.3.2 nötig µTorrent BitTorrent Inc. 02.11.2012 3.2.1.28086 nötig |
|
| Themen zu Programme brauchen lange zum starten |
| alle programme, anhang, arten, benötige, brauche, gefunde, gestartet, innerhalb, kis, lange, problem, programme, sekunden, starte, starten, virus, wenig |
Textbox. 
WARNUNG an die MITLESER: 
Linear-Darstellung
