| |
| |||||||
Log-Analyse und Auswertung: MBAM findet PUM.Hijack.StartMenuWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
25.05.2012, 16:34
| #1 |
| |  MBAM findet PUM.Hijack.StartMenu Hallo, ich habe mein System vor ca. 3 Wochen mein System neu aufgesetzt und lasse regelmäßig Kaspersky Internet Security 2012 und Spybot laufen. Eigentlich hatte ich keine Probleme, aber Malwarebytes Anti-Malware hat gerade "PUM.Hijack.StartMenu" gefunden. Nach etwas googlen bin ich auf diverse Threads in diesem Forum gestoßen. Meistens waren die betroffenen System in den Threads scheinbar von zusätzlichen Problemen befallen, aber es wurde generell immer zu weiteren Scans geraten, also habe ich mal noch ESET Online Scanner, TDSSKiller und OTL durchlaufen lassen mit den beschriebenen Settings. Anbei sind die ganzen Logs. Malwarebyte Anti-Malware Log: Code:
ATTFilter Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Datenbank Version: v2012.05.25.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 *** :: ***-PC [Administrator] 25.05.2012 07:25:02 mbam-log-2012-05-25 (07-25-02).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 547704 Laufzeit: 1 Stunde(n), 9 Minute(n), 11 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 1 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bösartig: (0) Gut: (1) -> Erfolgreich ersetzt und in Quarantäne gestellt. Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=25b083428400784f982ecd6c6fa5c9e0
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-05-25 03:02:59
# local_time=2012-05-25 05:02:59 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1280 16777215 100 0 1349804 1349804 0 0
# compatibility_mode=5893 16776574 100 94 35358638 89582711 0 0
# compatibility_mode=8192 67108863 100 0 101 101 0 0
# scanned=343024
# found=0
# cleaned=0
# scan_time=5318
Code:
ATTFilter 17:07:12.0134 2116 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30
17:07:12.0248 2116 ============================================================
17:07:12.0249 2116 Current date / time: 2012/05/25 17:07:12.0248
17:07:12.0249 2116 SystemInfo:
17:07:12.0249 2116
17:07:12.0249 2116 OS Version: 6.1.7601 ServicePack: 1.0
17:07:12.0249 2116 Product type: Workstation
17:07:12.0249 2116 ComputerName: ***-PC
17:07:12.0249 2116 UserName: ***
17:07:12.0249 2116 Windows directory: C:\Windows
17:07:12.0249 2116 System windows directory: C:\Windows
17:07:12.0249 2116 Running under WOW64
17:07:12.0249 2116 Processor architecture: Intel x64
17:07:12.0249 2116 Number of processors: 8
17:07:12.0249 2116 Page size: 0x1000
17:07:12.0249 2116 Boot type: Normal boot
17:07:12.0249 2116 ============================================================
17:07:13.0079 2116 Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:07:13.0079 2116 ============================================================
17:07:13.0079 2116 \Device\Harddisk0\DR0:
17:07:13.0079 2116 MBR partitions:
17:07:13.0079 2116 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:07:13.0079 2116 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE8DD5800
17:07:13.0079 2116 ============================================================
17:07:13.0157 2116 C: <-> \Device\Harddisk0\DR0\Partition1
17:07:13.0157 2116 ============================================================
17:07:13.0157 2116 Initialize success
17:07:13.0157 2116 ============================================================
17:07:14.0446 2684 ============================================================
17:07:14.0446 2684 Scan started
17:07:14.0446 2684 Mode: Manual;
17:07:14.0446 2684 ============================================================
17:07:15.0832 2684 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
17:07:15.0835 2684 1394ohci - ok
17:07:15.0867 2684 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
17:07:15.0872 2684 ACPI - ok
17:07:15.0875 2684 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
17:07:15.0877 2684 AcpiPmi - ok
17:07:15.0907 2684 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
17:07:15.0907 2684 adp94xx - ok
17:07:15.0939 2684 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
17:07:15.0939 2684 adpahci - ok
17:07:15.0954 2684 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
17:07:15.0954 2684 adpu320 - ok
17:07:16.0001 2684 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
17:07:16.0001 2684 AeLookupSvc - ok
17:07:16.0063 2684 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
17:07:16.0063 2684 AFD - ok
17:07:16.0079 2684 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
17:07:16.0079 2684 agp440 - ok
17:07:16.0095 2684 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
17:07:16.0095 2684 ALG - ok
17:07:16.0126 2684 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
17:07:16.0141 2684 aliide - ok
17:07:16.0141 2684 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
17:07:16.0141 2684 amdide - ok
17:07:16.0173 2684 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
17:07:16.0173 2684 AmdK8 - ok
17:07:16.0173 2684 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
17:07:16.0188 2684 AmdPPM - ok
17:07:16.0219 2684 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
17:07:16.0219 2684 amdsata - ok
17:07:16.0219 2684 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
17:07:16.0235 2684 amdsbs - ok
17:07:16.0251 2684 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
17:07:16.0251 2684 amdxata - ok
17:07:16.0266 2684 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
17:07:16.0266 2684 AppID - ok
17:07:16.0266 2684 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
17:07:16.0266 2684 AppIDSvc - ok
17:07:16.0297 2684 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
17:07:16.0297 2684 Appinfo - ok
17:07:16.0375 2684 AppMgmt (4aba3e75a76195a3e38ed2766c962899) C:\Windows\System32\appmgmts.dll
17:07:16.0391 2684 AppMgmt - ok
17:07:16.0391 2684 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
17:07:16.0391 2684 arc - ok
17:07:16.0407 2684 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
17:07:16.0407 2684 arcsas - ok
17:07:16.0454 2684 asmthub3 (0aa7a996792fb0287b33a57a8093ae44) C:\Windows\system32\DRIVERS\asmthub3.sys
17:07:16.0456 2684 asmthub3 - ok
17:07:16.0480 2684 asmtxhci (125dc3abf5bfccfe82ad17d078e0b9ec) C:\Windows\system32\DRIVERS\asmtxhci.sys
17:07:16.0485 2684 asmtxhci - ok
17:07:16.0555 2684 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:07:16.0556 2684 aspnet_state - ok
17:07:16.0579 2684 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
17:07:16.0580 2684 AsyncMac - ok
17:07:16.0583 2684 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
17:07:16.0583 2684 atapi - ok
17:07:16.0614 2684 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:07:16.0621 2684 AudioEndpointBuilder - ok
17:07:16.0628 2684 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
17:07:16.0632 2684 AudioSrv - ok
17:07:16.0718 2684 AVP (2718dc27571bd1e37813f5759d2dc118) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
17:07:16.0720 2684 AVP - ok
17:07:16.0754 2684 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
17:07:16.0756 2684 AxInstSV - ok
17:07:16.0774 2684 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
17:07:16.0779 2684 b06bdrv - ok
17:07:16.0823 2684 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
17:07:16.0828 2684 b57nd60a - ok
17:07:16.0887 2684 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
17:07:16.0889 2684 BDESVC - ok
17:07:16.0892 2684 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
17:07:16.0893 2684 Beep - ok
17:07:16.0968 2684 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
17:07:16.0975 2684 BFE - ok
17:07:17.0011 2684 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
17:07:17.0048 2684 BITS - ok
17:07:17.0082 2684 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
17:07:17.0085 2684 blbdrive - ok
17:07:17.0169 2684 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
17:07:17.0170 2684 bowser - ok
17:07:17.0174 2684 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
17:07:17.0176 2684 BrFiltLo - ok
17:07:17.0178 2684 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
17:07:17.0180 2684 BrFiltUp - ok
17:07:17.0206 2684 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
17:07:17.0208 2684 Browser - ok
17:07:17.0224 2684 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
17:07:17.0234 2684 Brserid - ok
17:07:17.0238 2684 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
17:07:17.0240 2684 BrSerWdm - ok
17:07:17.0243 2684 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:07:17.0244 2684 BrUsbMdm - ok
17:07:17.0247 2684 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
17:07:17.0248 2684 BrUsbSer - ok
17:07:17.0285 2684 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
17:07:17.0287 2684 BTHMODEM - ok
17:07:17.0334 2684 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
17:07:17.0335 2684 bthserv - ok
17:07:17.0341 2684 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
17:07:17.0342 2684 cdfs - ok
17:07:17.0361 2684 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
17:07:17.0364 2684 cdrom - ok
17:07:17.0408 2684 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:07:17.0409 2684 CertPropSvc - ok
17:07:17.0446 2684 Ch64USB (f09fffccf86452ecfaf423d66731b6a6) C:\Windows\system32\drivers\Ch64USB.sys
17:07:17.0462 2684 Ch64USB - ok
17:07:17.0556 2684 Cherry Device Interface (1ce3f63d0c5867d16b01435f8cdaef8b) C:\Program Files (x86)\Cherry\CDI\cdi.exe
17:07:17.0556 2684 Cherry Device Interface - ok
17:07:17.0571 2684 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
17:07:17.0571 2684 circlass - ok
17:07:17.0587 2684 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
17:07:17.0587 2684 CLFS - ok
17:07:17.0649 2684 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:07:17.0649 2684 clr_optimization_v2.0.50727_32 - ok
17:07:17.0680 2684 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:07:17.0680 2684 clr_optimization_v2.0.50727_64 - ok
17:07:17.0758 2684 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:07:17.0758 2684 clr_optimization_v4.0.30319_32 - ok
17:07:17.0883 2684 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:07:17.0899 2684 clr_optimization_v4.0.30319_64 - ok
17:07:17.0930 2684 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
17:07:17.0930 2684 CmBatt - ok
17:07:17.0930 2684 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
17:07:17.0946 2684 cmdide - ok
17:07:17.0977 2684 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
17:07:17.0977 2684 CNG - ok
17:07:17.0992 2684 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
17:07:17.0992 2684 Compbatt - ok
17:07:18.0022 2684 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:07:18.0024 2684 CompositeBus - ok
17:07:18.0032 2684 COMSysApp - ok
17:07:18.0036 2684 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
17:07:18.0038 2684 crcdisk - ok
17:07:18.0063 2684 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
17:07:18.0065 2684 CryptSvc - ok
17:07:18.0095 2684 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
17:07:18.0100 2684 CSC - ok
17:07:18.0144 2684 CscService (3ab183ab4d2c79dcf459cd2c1266b043) C:\Windows\System32\cscsvc.dll
17:07:18.0152 2684 CscService - ok
17:07:18.0192 2684 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:07:18.0198 2684 DcomLaunch - ok
17:07:18.0213 2684 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
17:07:18.0216 2684 defragsvc - ok
17:07:18.0237 2684 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
17:07:18.0238 2684 DfsC - ok
17:07:18.0278 2684 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
17:07:18.0282 2684 Dhcp - ok
17:07:18.0286 2684 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
17:07:18.0287 2684 discache - ok
17:07:18.0319 2684 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
17:07:18.0321 2684 Disk - ok
17:07:18.0353 2684 dmvsc (5db085a8a6600be6401f2b24eecb5415) C:\Windows\system32\drivers\dmvsc.sys
17:07:18.0355 2684 dmvsc - ok
17:07:18.0383 2684 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
17:07:18.0385 2684 Dnscache - ok
17:07:18.0403 2684 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
17:07:18.0406 2684 dot3svc - ok
17:07:18.0420 2684 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
17:07:18.0423 2684 DPS - ok
17:07:18.0476 2684 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
17:07:18.0477 2684 drmkaud - ok
17:07:18.0511 2684 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
17:07:18.0520 2684 DXGKrnl - ok
17:07:18.0529 2684 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
17:07:18.0530 2684 EapHost - ok
17:07:18.0612 2684 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
17:07:18.0665 2684 ebdrv - ok
17:07:19.0079 2684 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
17:07:19.0079 2684 EFS - ok
17:07:19.0110 2684 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
17:07:19.0126 2684 elxstor - ok
17:07:19.0126 2684 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
17:07:19.0126 2684 ErrDev - ok
17:07:19.0157 2684 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
17:07:19.0173 2684 EventSystem - ok
17:07:19.0173 2684 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
17:07:19.0173 2684 exfat - ok
17:07:19.0188 2684 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
17:07:19.0188 2684 fastfat - ok
17:07:19.0204 2684 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
17:07:19.0204 2684 fdc - ok
17:07:19.0204 2684 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
17:07:19.0204 2684 fdPHost - ok
17:07:19.0220 2684 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
17:07:19.0220 2684 FDResPub - ok
17:07:19.0220 2684 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
17:07:19.0220 2684 FileInfo - ok
17:07:19.0220 2684 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
17:07:19.0220 2684 Filetrace - ok
17:07:19.0235 2684 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
17:07:19.0235 2684 flpydisk - ok
17:07:19.0251 2684 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
17:07:19.0251 2684 FltMgr - ok
17:07:19.0282 2684 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
17:07:19.0298 2684 FontCache - ok
17:07:19.0376 2684 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:07:19.0376 2684 FontCache3.0.0.0 - ok
17:07:19.0391 2684 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
17:07:19.0391 2684 FsDepends - ok
17:07:19.0407 2684 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
17:07:19.0407 2684 Fs_Rec - ok
17:07:19.0454 2684 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
17:07:19.0469 2684 fvevol - ok
17:07:19.0469 2684 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
17:07:19.0469 2684 gagp30kx - ok
17:07:19.0500 2684 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
17:07:19.0516 2684 gpsvc - ok
17:07:19.0516 2684 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
17:07:19.0516 2684 hcw85cir - ok
17:07:19.0573 2684 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
17:07:19.0581 2684 HdAudAddService - ok
17:07:19.0600 2684 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:07:19.0603 2684 HDAudBus - ok
17:07:19.0606 2684 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
17:07:19.0608 2684 HidBatt - ok
17:07:19.0614 2684 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
17:07:19.0617 2684 HidBth - ok
17:07:19.0621 2684 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
17:07:19.0623 2684 HidIr - ok
17:07:19.0637 2684 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
17:07:19.0638 2684 hidserv - ok
17:07:19.0651 2684 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
17:07:19.0653 2684 HidUsb - ok
17:07:19.0671 2684 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
17:07:19.0673 2684 hkmsvc - ok
17:07:19.0694 2684 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
17:07:19.0697 2684 HomeGroupListener - ok
17:07:19.0712 2684 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
17:07:19.0715 2684 HomeGroupProvider - ok
17:07:19.0729 2684 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
17:07:19.0730 2684 HpSAMD - ok
17:07:19.0772 2684 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
17:07:19.0780 2684 HTTP - ok
17:07:19.0783 2684 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
17:07:19.0784 2684 hwpolicy - ok
17:07:19.0796 2684 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
17:07:19.0798 2684 i8042prt - ok
17:07:19.0846 2684 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
17:07:19.0851 2684 iaStorV - ok
17:07:19.0957 2684 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:07:19.0966 2684 idsvc - ok
17:07:19.0971 2684 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
17:07:19.0973 2684 iirsp - ok
17:07:20.0008 2684 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
17:07:20.0017 2684 IKEEXT - ok
17:07:20.0127 2684 IntcAzAudAddService (eb5fa493a4b6ea290200ae39eba2fbc6) C:\Windows\system32\drivers\RTKVHD64.sys
17:07:20.0222 2684 IntcAzAudAddService - ok
17:07:20.0618 2684 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
17:07:20.0618 2684 intelide - ok
17:07:20.0649 2684 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
17:07:20.0649 2684 intelppm - ok
17:07:20.0665 2684 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
17:07:20.0665 2684 IPBusEnum - ok
17:07:20.0665 2684 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:07:20.0665 2684 IpFilterDriver - ok
17:07:20.0681 2684 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
17:07:20.0696 2684 iphlpsvc - ok
17:07:20.0696 2684 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
17:07:20.0696 2684 IPMIDRV - ok
17:07:20.0712 2684 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
17:07:20.0712 2684 IPNAT - ok
17:07:20.0727 2684 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
17:07:20.0727 2684 IRENUM - ok
17:07:20.0727 2684 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
17:07:20.0727 2684 isapnp - ok
17:07:20.0759 2684 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
17:07:20.0759 2684 iScsiPrt - ok
17:07:20.0774 2684 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
17:07:20.0774 2684 kbdclass - ok
17:07:20.0790 2684 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
17:07:20.0790 2684 kbdhid - ok
17:07:20.0805 2684 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:07:20.0821 2684 KeyIso - ok
17:07:20.0852 2684 KL1 (e656fe10d6d27794afa08136685a69e8) C:\Windows\system32\DRIVERS\kl1.sys
17:07:20.0868 2684 KL1 - ok
17:07:20.0883 2684 kl2 (d865dd8b0448e3f963d68c04c532858f) C:\Windows\system32\DRIVERS\kl2.sys
17:07:20.0883 2684 kl2 - ok
17:07:20.0977 2684 KLIF (c7d4f357c482dd37e2b05f34093b7b0c) C:\Windows\system32\DRIVERS\klif.sys
17:07:20.0993 2684 KLIF - ok
17:07:21.0008 2684 KLIM6 (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys
17:07:21.0008 2684 KLIM6 - ok
17:07:21.0039 2684 klmouflt (9468d07e91ba136d82415f5dfc1fe168) C:\Windows\system32\DRIVERS\klmouflt.sys
17:07:21.0039 2684 klmouflt - ok
17:07:21.0071 2684 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
17:07:21.0071 2684 KSecDD - ok
17:07:21.0086 2684 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
17:07:21.0086 2684 KSecPkg - ok
17:07:21.0102 2684 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
17:07:21.0102 2684 ksthunk - ok
17:07:21.0130 2684 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
17:07:21.0135 2684 KtmRm - ok
17:07:21.0151 2684 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
17:07:21.0155 2684 LanmanServer - ok
17:07:21.0184 2684 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
17:07:21.0186 2684 LanmanWorkstation - ok
17:07:21.0206 2684 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
17:07:21.0207 2684 lltdio - ok
17:07:21.0242 2684 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
17:07:21.0246 2684 lltdsvc - ok
17:07:21.0249 2684 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
17:07:21.0251 2684 lmhosts - ok
17:07:21.0260 2684 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
17:07:21.0263 2684 LSI_FC - ok
17:07:21.0271 2684 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
17:07:21.0274 2684 LSI_SAS - ok
17:07:21.0280 2684 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
17:07:21.0282 2684 LSI_SAS2 - ok
17:07:21.0306 2684 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
17:07:21.0308 2684 LSI_SCSI - ok
17:07:21.0332 2684 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
17:07:21.0334 2684 luafv - ok
17:07:21.0337 2684 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
17:07:21.0339 2684 megasas - ok
17:07:21.0363 2684 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
17:07:21.0367 2684 MegaSR - ok
17:07:21.0394 2684 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:07:21.0396 2684 MMCSS - ok
17:07:21.0400 2684 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
17:07:21.0401 2684 Modem - ok
17:07:21.0452 2684 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
17:07:21.0454 2684 monitor - ok
17:07:21.0467 2684 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
17:07:21.0469 2684 mouclass - ok
17:07:21.0478 2684 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
17:07:21.0480 2684 mouhid - ok
17:07:21.0486 2684 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
17:07:21.0487 2684 mountmgr - ok
17:07:21.0496 2684 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
17:07:21.0499 2684 mpio - ok
17:07:21.0505 2684 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
17:07:21.0506 2684 mpsdrv - ok
17:07:21.0536 2684 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
17:07:21.0545 2684 MpsSvc - ok
17:07:21.0562 2684 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
17:07:21.0562 2684 MRxDAV - ok
17:07:21.0578 2684 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:07:21.0579 2684 mrxsmb - ok
17:07:21.0606 2684 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:07:21.0609 2684 mrxsmb10 - ok
17:07:21.0627 2684 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:07:21.0628 2684 mrxsmb20 - ok
17:07:21.0637 2684 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
17:07:21.0638 2684 msahci - ok
17:07:21.0642 2684 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
17:07:21.0644 2684 msdsm - ok
17:07:21.0659 2684 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
17:07:21.0660 2684 MSDTC - ok
17:07:21.0664 2684 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
17:07:21.0664 2684 Msfs - ok
17:07:21.0666 2684 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
17:07:21.0666 2684 mshidkmdf - ok
17:07:21.0668 2684 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
17:07:21.0669 2684 msisadrv - ok
17:07:21.0684 2684 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
17:07:21.0685 2684 MSiSCSI - ok
17:07:21.0686 2684 msiserver - ok
17:07:21.0695 2684 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
17:07:21.0695 2684 MSKSSRV - ok
17:07:21.0704 2684 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
17:07:21.0704 2684 MSPCLOCK - ok
17:07:21.0706 2684 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
17:07:21.0706 2684 MSPQM - ok
17:07:21.0723 2684 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
17:07:21.0725 2684 MsRPC - ok
17:07:21.0727 2684 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
17:07:21.0727 2684 mssmbios - ok
17:07:21.0729 2684 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
17:07:21.0730 2684 MSTEE - ok
17:07:21.0731 2684 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
17:07:21.0732 2684 MTConfig - ok
17:07:21.0734 2684 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
17:07:21.0735 2684 Mup - ok
17:07:21.0753 2684 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
17:07:21.0756 2684 napagent - ok
17:07:21.0784 2684 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
17:07:21.0786 2684 NativeWifiP - ok
17:07:21.0840 2684 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
17:07:21.0849 2684 NDIS - ok
17:07:21.0864 2684 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
17:07:21.0865 2684 NdisCap - ok
17:07:21.0869 2684 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
17:07:21.0870 2684 NdisTapi - ok
17:07:21.0880 2684 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
17:07:21.0881 2684 Ndisuio - ok
17:07:21.0891 2684 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
17:07:21.0893 2684 NdisWan - ok
17:07:21.0898 2684 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
17:07:21.0899 2684 NDProxy - ok
17:07:21.0914 2684 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
17:07:21.0915 2684 NetBIOS - ok
17:07:21.0937 2684 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
17:07:21.0940 2684 NetBT - ok
17:07:21.0961 2684 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:07:21.0963 2684 Netlogon - ok
17:07:22.0010 2684 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
17:07:22.0014 2684 Netman - ok
17:07:22.0079 2684 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:07:22.0080 2684 NetMsmqActivator - ok
17:07:22.0084 2684 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:07:22.0085 2684 NetPipeActivator - ok
17:07:22.0110 2684 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
17:07:22.0110 2684 netprofm - ok
17:07:22.0126 2684 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:07:22.0126 2684 NetTcpActivator - ok
17:07:22.0126 2684 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:07:22.0126 2684 NetTcpPortSharing - ok
17:07:22.0157 2684 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
17:07:22.0157 2684 nfrd960 - ok
17:07:22.0188 2684 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
17:07:22.0188 2684 NlaSvc - ok
17:07:22.0204 2684 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
17:07:22.0204 2684 Npfs - ok
17:07:22.0204 2684 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
17:07:22.0220 2684 nsi - ok
17:07:22.0220 2684 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
17:07:22.0220 2684 nsiproxy - ok
17:07:22.0282 2684 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
17:07:22.0313 2684 Ntfs - ok
17:07:22.0742 2684 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
17:07:22.0743 2684 Null - ok
17:07:22.0790 2684 NVHDA (8d4aac74b571fc356560e5b308955e93) C:\Windows\system32\drivers\nvhda64v.sys
17:07:22.0795 2684 NVHDA - ok
17:07:23.0226 2684 nvlddmkm (0eb204639119370f5f8f2871fbf4e14b) C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:07:23.0463 2684 nvlddmkm - ok
17:07:23.0560 2684 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
17:07:23.0564 2684 nvraid - ok
17:07:23.0594 2684 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
17:07:23.0596 2684 nvstor - ok
17:07:23.0635 2684 nvsvc (32ff8ee6dcee5c0cb91ff892fb1ca364) C:\Windows\system32\nvvsvc.exe
17:07:23.0645 2684 nvsvc - ok
17:07:23.0787 2684 nvUpdatusService (bd012dc22c78be1071bc21eb125d782f) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:07:23.0825 2684 nvUpdatusService - ok
17:07:23.0892 2684 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
17:07:23.0894 2684 nv_agp - ok
17:07:23.0899 2684 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
17:07:23.0902 2684 ohci1394 - ok
17:07:23.0935 2684 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:07:23.0939 2684 p2pimsvc - ok
17:07:23.0955 2684 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
17:07:23.0960 2684 p2psvc - ok
17:07:23.0968 2684 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
17:07:23.0970 2684 Parport - ok
17:07:24.0004 2684 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
17:07:24.0005 2684 partmgr - ok
17:07:24.0016 2684 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
17:07:24.0019 2684 PcaSvc - ok
17:07:24.0043 2684 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
17:07:24.0053 2684 pci - ok
17:07:24.0060 2684 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
17:07:24.0062 2684 pciide - ok
17:07:24.0074 2684 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
17:07:24.0078 2684 pcmcia - ok
17:07:24.0083 2684 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
17:07:24.0084 2684 pcw - ok
17:07:24.0117 2684 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
17:07:24.0124 2684 PEAUTH - ok
17:07:24.0172 2684 PeerDistSvc (b9b0a4299dd2d76a4243f75fd54dc680) C:\Windows\system32\peerdistsvc.dll
17:07:24.0199 2684 PeerDistSvc - ok
17:07:24.0249 2684 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
17:07:24.0251 2684 PerfHost - ok
17:07:24.0332 2684 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
17:07:24.0360 2684 pla - ok
17:07:24.0411 2684 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
17:07:24.0417 2684 PlugPlay - ok
17:07:24.0431 2684 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
17:07:24.0433 2684 PNRPAutoReg - ok
17:07:24.0444 2684 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
17:07:24.0447 2684 PNRPsvc - ok
17:07:24.0471 2684 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
17:07:24.0477 2684 PolicyAgent - ok
17:07:24.0495 2684 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
17:07:24.0498 2684 Power - ok
17:07:24.0545 2684 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
17:07:24.0547 2684 PptpMiniport - ok
17:07:24.0553 2684 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
17:07:24.0555 2684 Processor - ok
17:07:24.0589 2684 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
17:07:24.0592 2684 ProfSvc - ok
17:07:24.0638 2684 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:07:24.0639 2684 ProtectedStorage - ok
17:07:24.0674 2684 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
17:07:24.0676 2684 Psched - ok
17:07:24.0723 2684 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
17:07:24.0759 2684 ql2300 - ok
17:07:25.0175 2684 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
17:07:25.0178 2684 ql40xx - ok
17:07:25.0183 2684 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
17:07:25.0183 2684 QWAVE - ok
17:07:25.0199 2684 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
17:07:25.0199 2684 QWAVEdrv - ok
17:07:25.0199 2684 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
17:07:25.0199 2684 RasAcd - ok
17:07:25.0246 2684 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:07:25.0246 2684 RasAgileVpn - ok
17:07:25.0261 2684 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
17:07:25.0261 2684 RasAuto - ok
17:07:25.0277 2684 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:07:25.0277 2684 Rasl2tp - ok
17:07:25.0292 2684 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
17:07:25.0292 2684 RasMan - ok
17:07:25.0308 2684 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
17:07:25.0308 2684 RasPppoe - ok
17:07:25.0324 2684 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
17:07:25.0324 2684 RasSstp - ok
17:07:25.0339 2684 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
17:07:25.0339 2684 rdbss - ok
17:07:25.0339 2684 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
17:07:25.0339 2684 rdpbus - ok
17:07:25.0355 2684 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:07:25.0355 2684 RDPCDD - ok
17:07:25.0386 2684 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
17:07:25.0386 2684 RDPDR - ok
17:07:25.0386 2684 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
17:07:25.0386 2684 RDPENCDD - ok
17:07:25.0386 2684 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
17:07:25.0402 2684 RDPREFMP - ok
17:07:25.0433 2684 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
17:07:25.0433 2684 RDPWD - ok
17:07:25.0448 2684 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
17:07:25.0464 2684 rdyboost - ok
17:07:25.0464 2684 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
17:07:25.0480 2684 RemoteAccess - ok
17:07:25.0495 2684 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
17:07:25.0495 2684 RemoteRegistry - ok
17:07:25.0526 2684 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
17:07:25.0526 2684 RpcEptMapper - ok
17:07:25.0542 2684 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
17:07:25.0542 2684 RpcLocator - ok
17:07:25.0573 2684 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
17:07:25.0573 2684 RpcSs - ok
17:07:25.0589 2684 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
17:07:25.0589 2684 rspndr - ok
17:07:25.0651 2684 RTL8167 (ee082e06a82ff630351d1e0ebbd3d8d0) C:\Windows\system32\DRIVERS\Rt64win7.sys
17:07:25.0651 2684 RTL8167 - ok
17:07:25.0667 2684 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
17:07:25.0667 2684 s3cap - ok
17:07:25.0698 2684 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:07:25.0698 2684 SamSs - ok
17:07:25.0698 2684 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
17:07:25.0698 2684 sbp2port - ok
17:07:25.0729 2684 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
17:07:25.0729 2684 SCardSvr - ok
17:07:25.0729 2684 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
17:07:25.0729 2684 scfilter - ok
17:07:25.0779 2684 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
17:07:25.0791 2684 Schedule - ok
17:07:25.0822 2684 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
17:07:25.0823 2684 SCPolicySvc - ok
17:07:25.0832 2684 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
17:07:25.0836 2684 SDRSVC - ok
17:07:25.0853 2684 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
17:07:25.0854 2684 secdrv - ok
17:07:25.0866 2684 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
17:07:25.0867 2684 seclogon - ok
17:07:25.0877 2684 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
17:07:25.0879 2684 SENS - ok
17:07:25.0894 2684 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
17:07:25.0895 2684 SensrSvc - ok
17:07:25.0899 2684 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
17:07:25.0901 2684 Serenum - ok
17:07:25.0907 2684 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
17:07:25.0909 2684 Serial - ok
17:07:25.0913 2684 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
17:07:25.0914 2684 sermouse - ok
17:07:25.0931 2684 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
17:07:25.0932 2684 SessionEnv - ok
17:07:25.0934 2684 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
17:07:25.0935 2684 sffdisk - ok
17:07:25.0937 2684 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
17:07:25.0938 2684 sffp_mmc - ok
17:07:25.0939 2684 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
17:07:25.0940 2684 sffp_sd - ok
17:07:25.0942 2684 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
17:07:25.0943 2684 sfloppy - ok
17:07:25.0954 2684 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
17:07:25.0957 2684 SharedAccess - ok
17:07:25.0971 2684 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
17:07:25.0974 2684 ShellHWDetection - ok
17:07:25.0984 2684 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
17:07:25.0985 2684 SiSRaid2 - ok
17:07:25.0989 2684 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
17:07:25.0991 2684 SiSRaid4 - ok
17:07:26.0022 2684 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
17:07:26.0023 2684 Smb - ok
17:07:26.0038 2684 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
17:07:26.0040 2684 SNMPTRAP - ok
17:07:26.0044 2684 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
17:07:26.0045 2684 spldr - ok
17:07:26.0059 2684 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
17:07:26.0063 2684 Spooler - ok
17:07:26.0132 2684 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
17:07:26.0192 2684 sppsvc - ok
17:07:26.0609 2684 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
17:07:26.0611 2684 sppuinotify - ok
17:07:26.0651 2684 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
17:07:26.0655 2684 srv - ok
17:07:26.0681 2684 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
17:07:26.0685 2684 srv2 - ok
17:07:26.0711 2684 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
17:07:26.0714 2684 srvnet - ok
17:07:26.0738 2684 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
17:07:26.0738 2684 SSDPSRV - ok
17:07:26.0753 2684 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
17:07:26.0753 2684 SstpSvc - ok
17:07:26.0831 2684 Steam Client Service - ok
17:07:26.0847 2684 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
17:07:26.0847 2684 stexstor - ok
17:07:26.0878 2684 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
17:07:26.0894 2684 stisvc - ok
17:07:26.0925 2684 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
17:07:26.0925 2684 storflt - ok
17:07:26.0941 2684 StorSvc (c40841817ef57d491f22eb103da587cc) C:\Windows\system32\storsvc.dll
17:07:26.0941 2684 StorSvc - ok
17:07:26.0956 2684 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
17:07:26.0956 2684 storvsc - ok
17:07:26.0956 2684 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
17:07:26.0956 2684 swenum - ok
17:07:26.0987 2684 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
17:07:26.0987 2684 swprv - ok
17:07:27.0034 2684 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
17:07:27.0065 2684 SysMain - ok
17:07:27.0478 2684 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
17:07:27.0480 2684 TabletInputService - ok
17:07:27.0493 2684 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
17:07:27.0498 2684 TapiSrv - ok
17:07:27.0513 2684 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
17:07:27.0515 2684 TBS - ok
17:07:27.0610 2684 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
17:07:27.0637 2684 Tcpip - ok
17:07:27.0822 2684 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
17:07:27.0828 2684 TCPIP6 - ok
17:07:27.0892 2684 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
17:07:27.0893 2684 tcpipreg - ok
17:07:27.0898 2684 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
17:07:27.0899 2684 TDPIPE - ok
17:07:27.0927 2684 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
17:07:27.0928 2684 TDTCP - ok
17:07:27.0948 2684 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
17:07:27.0949 2684 tdx - ok
17:07:27.0954 2684 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
17:07:27.0956 2684 TermDD - ok
17:07:28.0055 2684 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
17:07:28.0063 2684 TermService - ok
17:07:28.0075 2684 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
17:07:28.0077 2684 Themes - ok
17:07:28.0090 2684 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
17:07:28.0092 2684 THREADORDER - ok
17:07:28.0106 2684 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
17:07:28.0108 2684 TrkWks - ok
17:07:28.0142 2684 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
17:07:28.0145 2684 TrustedInstaller - ok
17:07:28.0151 2684 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:07:28.0152 2684 tssecsrv - ok
17:07:28.0166 2684 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
17:07:28.0167 2684 TsUsbFlt - ok
17:07:28.0170 2684 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
17:07:28.0172 2684 TsUsbGD - ok
17:07:28.0198 2684 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
17:07:28.0200 2684 tunnel - ok
17:07:28.0205 2684 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
17:07:28.0207 2684 uagp35 - ok
17:07:28.0231 2684 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
17:07:28.0235 2684 udfs - ok
17:07:28.0245 2684 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
17:07:28.0247 2684 UI0Detect - ok
17:07:28.0253 2684 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
17:07:28.0256 2684 uliagpkx - ok
17:07:28.0275 2684 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
17:07:28.0277 2684 umbus - ok
17:07:28.0280 2684 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
17:07:28.0282 2684 UmPass - ok
17:07:28.0293 2684 UmRdpService (a293dcd756d04d8492a750d03b9a297c) C:\Windows\System32\umrdp.dll
17:07:28.0293 2684 UmRdpService - ok
17:07:28.0308 2684 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
17:07:28.0308 2684 upnphost - ok
17:07:28.0339 2684 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
17:07:28.0355 2684 usbccgp - ok
17:07:28.0355 2684 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
17:07:28.0355 2684 usbcir - ok
17:07:28.0371 2684 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
17:07:28.0386 2684 usbehci - ok
17:07:28.0402 2684 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
17:07:28.0402 2684 usbhub - ok
17:07:28.0417 2684 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
17:07:28.0433 2684 usbohci - ok
17:07:28.0464 2684 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
17:07:28.0464 2684 usbprint - ok
17:07:28.0495 2684 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
17:07:28.0495 2684 USBSTOR - ok
17:07:28.0511 2684 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
17:07:28.0527 2684 usbuhci - ok
17:07:28.0542 2684 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
17:07:28.0542 2684 UxSms - ok
17:07:28.0558 2684 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
17:07:28.0558 2684 VaultSvc - ok
17:07:28.0573 2684 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
17:07:28.0589 2684 vdrvroot - ok
17:07:28.0605 2684 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
17:07:28.0620 2684 vds - ok
17:07:28.0636 2684 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
17:07:28.0636 2684 vga - ok
17:07:28.0636 2684 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
17:07:28.0636 2684 VgaSave - ok
17:07:28.0651 2684 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
17:07:28.0651 2684 vhdmp - ok
17:07:28.0651 2684 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
17:07:28.0667 2684 viaide - ok
17:07:28.0683 2684 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
17:07:28.0683 2684 vmbus - ok
17:07:28.0683 2684 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
17:07:28.0683 2684 VMBusHID - ok
17:07:28.0698 2684 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
17:07:28.0698 2684 volmgr - ok
17:07:28.0714 2684 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
17:07:28.0714 2684 volmgrx - ok
17:07:28.0729 2684 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
17:07:28.0729 2684 volsnap - ok
17:07:28.0745 2684 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
17:07:28.0761 2684 vsmraid - ok
17:07:28.0807 2684 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
17:07:28.0839 2684 VSS - ok
17:07:29.0262 2684 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
17:07:29.0263 2684 vwifibus - ok
17:07:29.0283 2684 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
17:07:29.0289 2684 W32Time - ok
17:07:29.0295 2684 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
17:07:29.0297 2684 WacomPen - ok
17:07:29.0329 2684 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:07:29.0330 2684 WANARP - ok
17:07:29.0343 2684 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
17:07:29.0344 2684 Wanarpv6 - ok
17:07:29.0401 2684 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
17:07:29.0426 2684 wbengine - ok
17:07:29.0476 2684 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
17:07:29.0480 2684 WbioSrvc - ok
17:07:29.0498 2684 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
17:07:29.0504 2684 wcncsvc - ok
17:07:29.0512 2684 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
17:07:29.0514 2684 WcsPlugInService - ok
17:07:29.0534 2684 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
17:07:29.0535 2684 Wd - ok
17:07:29.0565 2684 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
17:07:29.0572 2684 Wdf01000 - ok
17:07:29.0583 2684 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:07:29.0586 2684 WdiServiceHost - ok
17:07:29.0588 2684 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
17:07:29.0590 2684 WdiSystemHost - ok
17:07:29.0605 2684 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
17:07:29.0607 2684 WebClient - ok
17:07:29.0615 2684 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
17:07:29.0617 2684 Wecsvc - ok
17:07:29.0630 2684 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
17:07:29.0631 2684 wercplsupport - ok
17:07:29.0645 2684 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
17:07:29.0646 2684 WerSvc - ok
17:07:29.0685 2684 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
17:07:29.0685 2684 WfpLwf - ok
17:07:29.0689 2684 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
17:07:29.0690 2684 WIMMount - ok
17:07:29.0724 2684 WinDefend - ok
17:07:29.0730 2684 WinHttpAutoProxySvc - ok
17:07:29.0789 2684 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
17:07:29.0792 2684 Winmgmt - ok
17:07:29.0847 2684 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
17:07:29.0878 2684 WinRM - ok
17:07:29.0956 2684 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
17:07:29.0972 2684 Wlansvc - ok
17:07:29.0988 2684 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:07:29.0988 2684 WmiAcpi - ok
17:07:30.0003 2684 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
17:07:30.0019 2684 wmiApSrv - ok
17:07:30.0050 2684 WMPNetworkSvc - ok
17:07:30.0066 2684 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
17:07:30.0066 2684 WPCSvc - ok
17:07:30.0066 2684 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
17:07:30.0081 2684 WPDBusEnum - ok
17:07:30.0081 2684 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
17:07:30.0081 2684 ws2ifsl - ok
17:07:30.0097 2684 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
17:07:30.0097 2684 wscsvc - ok
17:07:30.0175 2684 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
17:07:30.0206 2684 wuauserv - ok
17:07:30.0268 2684 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
17:07:30.0268 2684 WudfPf - ok
17:07:30.0300 2684 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:07:30.0300 2684 WUDFRd - ok
17:07:30.0315 2684 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
17:07:30.0315 2684 wudfsvc - ok
17:07:30.0331 2684 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
17:07:30.0346 2684 WwanSvc - ok
17:07:30.0412 2684 xnacc (4a5ce13408945e525503b5f73d29b9c5) C:\Windows\system32\DRIVERS\xnacc.sys
17:07:30.0421 2684 xnacc - ok
17:07:30.0458 2684 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:07:30.0579 2684 \Device\Harddisk0\DR0 - ok
17:07:30.0582 2684 Boot (0x1200) (3c3985cf7a2e69f7a21492f31c2edcd2) \Device\Harddisk0\DR0\Partition0
17:07:30.0583 2684 \Device\Harddisk0\DR0\Partition0 - ok
17:07:30.0593 2684 Boot (0x1200) (ecba632bdb2c72ca230a2ab46a0094b0) \Device\Harddisk0\DR0\Partition1
17:07:30.0596 2684 \Device\Harddisk0\DR0\Partition1 - ok
17:07:30.0596 2684 ============================================================
17:07:30.0596 2684 Scan finished
17:07:30.0596 2684 ============================================================
17:07:30.0604 2484 Detected object count: 0
17:07:30.0604 2484 Actual detected object count: 0
Die beiden OTL Logs sind im Anhang, da diese doch etwas lang sind. Bis auf MBAM sieht eigentlich alles okay aus, oder? War es nur ein falscher Alarm, oder soll ich noch weitere Tests laufen lassen? Vielen Dank schon mal für eure Mühen. |
| Themen zu MBAM findet PUM.Hijack.StartMenu |
| administrator, autostart, dateien, dateisystem, diverse, downloader, escan, explorer, forum, google, harddisk, heuristiks/extra, heuristiks/shuriken, internet, kaspersky, malwarebytes, microsoft, neu, neu aufgesetzt, nvidia, nvidia update, object, probleme, rootkit, security, server, software, system, system neu, system32, update |
Baum-Darstellung