| |
| |||||||
Log-Analyse und Auswertung: McAfee Echzeitscan deaktiviert sich immer automatischWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
21.10.2012, 12:08
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  McAfee Echzeitscan deaktiviert sich immer automatisch Mach den Fix bitte nochmal ich fürchte ich hab da etwas vergessen ins Script zu packen  Aber bitte mit diesem Script  Code:
ATTFilter :OTL
[2012.08.30 18:33:15 | 000,189,341 | ---- | M] () (No name found) -- C:\Users\Manfred\AppData\Roaming\mozilla\firefox\profiles\0qlyz6hb.default\extensions\fbpz@regisgaughan.com.xpi
[2011.08.17 19:17:42 | 000,025,939 | ---- | M] () (No name found) -- C:\Users\Manfred\AppData\Roaming\mozilla\firefox\profiles\0qlyz6hb.default\extensions\ffxtlbr@Facemoods.com.xpi
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: MGFMRWHPGI = C:\Windows\SysWOW64\GdiPlusz.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Qidrc = C:\Windows\SysWOW64\instac64Y.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: ZITM = C:\Windows\SysWOW64\gptextj.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: UFTF = C:\Windows\SysWOW64\imkr808.exe
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Fxxteprz = C:\Windows\SysWOW64\dmdlgsd.exe
@Alternate Data Stream - 24 bytes -> C:\Windows:7E961428FF2263AB
:Files
C:\Windows\SysWOW64\instac64Y.exe
C:\Windows\SysWOW64\gptextj.exe
C:\Windows\SysWOW64\imkr808.exe
C:\Windows\SysWOW64\dmdlgsd.exe
ipconfig /flushdns /c
:Commands
[purity]
[emptytemp]
[resethosts]
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
21.10.2012, 19:07
| #17 |
 | McAfee Echzeitscan deaktiviert sich immer automatisch Habe den Fix jetzt mit den neuen Skript ausgeführt.
__________________Hier das Log: Code:
ATTFilter All processes killed
========== OTL ==========
File C:\Users\Manfred\AppData\Roaming\mozilla\firefox\profiles\0qlyz6hb.default\extensions\fbpz@regisgaughan.com.xpi not found.
File C:\Users\Manfred\AppData\Roaming\mozilla\firefox\profiles\0qlyz6hb.default\extensions\ffxtlbr@Facemoods.com.xpi not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\MGFMRWHPGI not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\Qidrc not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\ZITM not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\UFTF not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\\Fxxteprz not found.
Unable to delete ADS C:\Windows:7E961428FF2263AB .
========== FILES ==========
File\Folder C:\Windows\SysWOW64\instac64Y.exe not found.
File\Folder C:\Windows\SysWOW64\gptextj.exe not found.
File\Folder C:\Windows\SysWOW64\imkr808.exe not found.
File\Folder C:\Windows\SysWOW64\dmdlgsd.exe not found.
< ipconfig /flushdns /c >
Windows-IP-Konfiguration
Der DNS-Aufl”sungscache wurde geleert.
C:\Users\Manfred\Downloads\cmd.bat deleted successfully.
C:\Users\Manfred\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Manfred
->Temp folder emptied: 122054 bytes
->Temporary Internet Files folder emptied: 7435834 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 78296604 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 1138 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1824 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32902 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 82,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.69.0 log created on 10212012_185839
Files\Folders moved on Reboot...
C:\Users\Manfred\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
|
|
22.10.2012, 09:33
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatisch Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html
__________________Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ |
|
22.10.2012, 17:49
| #19 |
| | McAfee Echzeitscan deaktiviert sich immer automatisch Habe ich jetzt so gemacht. Code:
ATTFilter 17:41:25.0395 8068 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
17:41:26.0385 8068 ============================================================
17:41:26.0385 8068 Current date / time: 2012/10/22 17:41:26.0385
17:41:26.0385 8068 SystemInfo:
17:41:26.0385 8068
17:41:26.0385 8068 OS Version: 6.1.7601 ServicePack: 1.0
17:41:26.0385 8068 Product type: Workstation
17:41:26.0385 8068 ComputerName: SLM002
17:41:26.0385 8068 UserName: Manfred
17:41:26.0385 8068 Windows directory: C:\Windows
17:41:26.0385 8068 System windows directory: C:\Windows
17:41:26.0385 8068 Running under WOW64
17:41:26.0385 8068 Processor architecture: Intel x64
17:41:26.0385 8068 Number of processors: 4
17:41:26.0385 8068 Page size: 0x1000
17:41:26.0385 8068 Boot type: Normal boot
17:41:26.0385 8068 ============================================================
17:41:28.0505 8068 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:41:28.0545 8068 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:41:28.0555 8068 ============================================================
17:41:28.0555 8068 \Device\Harddisk1\DR1:
17:41:28.0555 8068 MBR partitions:
17:41:28.0555 8068 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
17:41:28.0555 8068 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
17:41:28.0555 8068 \Device\Harddisk0\DR0:
17:41:28.0555 8068 MBR partitions:
17:41:28.0555 8068 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
17:41:28.0555 8068 ============================================================
17:41:28.0585 8068 C: <-> \Device\Harddisk1\DR1\Partition2
17:41:28.0625 8068 D: <-> \Device\Harddisk0\DR0\Partition1
17:41:28.0625 8068 ============================================================
17:41:28.0625 8068 Initialize success
17:41:28.0625 8068 ============================================================
17:41:56.0905 6892 ============================================================
17:41:56.0905 6892 Scan started
17:41:56.0905 6892 Mode: Manual; SigCheck; TDLFS;
17:41:56.0905 6892 ============================================================
17:41:58.0345 6892 ================ Scan system memory ========================
17:41:58.0345 6892 System memory - ok
17:41:58.0345 6892 ================ Scan services =============================
17:41:58.0545 6892 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:41:58.0675 6892 1394ohci - ok
17:41:58.0695 6892 [ C49C56B35BFC6CDA8D1FDCAD2885568F ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys
17:41:58.0705 6892 Acceler - ok
17:41:58.0745 6892 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:41:58.0765 6892 ACPI - ok
17:41:58.0775 6892 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:41:58.0865 6892 AcpiPmi - ok
17:41:58.0975 6892 [ 765FE0463E711E5A68AC7B69538ED922 ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
17:41:58.0995 6892 AdobeActiveFileMonitor8.0 - ok
17:41:59.0085 6892 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:41:59.0095 6892 AdobeARMservice - ok
17:41:59.0225 6892 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:41:59.0245 6892 AdobeFlashPlayerUpdateSvc - ok
17:41:59.0295 6892 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:41:59.0335 6892 adp94xx - ok
17:41:59.0365 6892 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:41:59.0395 6892 adpahci - ok
17:41:59.0405 6892 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:41:59.0415 6892 adpu320 - ok
17:41:59.0445 6892 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:41:59.0585 6892 AeLookupSvc - ok
17:41:59.0705 6892 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
17:41:59.0765 6892 AESTFilters - ok
17:41:59.0815 6892 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:41:59.0885 6892 AFD - ok
17:41:59.0935 6892 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:41:59.0965 6892 agp440 - ok
17:42:00.0115 6892 [ 0923671CF87CD511E46D4668B53F5E76 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll
17:42:00.0115 6892 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll. md5: 0923671CF87CD511E46D4668B53F5E76
17:42:00.0115 6892 Akamai ( HiddenFile.Multi.Generic ) - warning
17:42:00.0115 6892 Akamai - detected HiddenFile.Multi.Generic (1)
17:42:00.0165 6892 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:42:00.0235 6892 ALG - ok
17:42:00.0275 6892 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:42:00.0295 6892 aliide - ok
17:42:00.0335 6892 [ 568C61DBDA2D9F1AFDAC58771E313AFE ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:42:00.0405 6892 AMD External Events Utility - ok
17:42:00.0425 6892 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:42:00.0435 6892 amdide - ok
17:42:00.0465 6892 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:42:00.0535 6892 AmdK8 - ok
17:42:00.0555 6892 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:42:00.0585 6892 AmdPPM - ok
17:42:00.0625 6892 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:42:00.0645 6892 amdsata - ok
17:42:00.0665 6892 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:42:00.0685 6892 amdsbs - ok
17:42:00.0695 6892 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:42:00.0705 6892 amdxata - ok
17:42:00.0755 6892 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:42:00.0915 6892 AppID - ok
17:42:00.0935 6892 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:42:01.0005 6892 AppIDSvc - ok
17:42:01.0035 6892 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:42:01.0065 6892 Appinfo - ok
17:42:01.0095 6892 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:42:01.0115 6892 arc - ok
17:42:01.0135 6892 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:42:01.0145 6892 arcsas - ok
17:42:01.0255 6892 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:42:01.0285 6892 aspnet_state - ok
17:42:01.0305 6892 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:42:01.0385 6892 AsyncMac - ok
17:42:01.0405 6892 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:42:01.0415 6892 atapi - ok
17:42:01.0455 6892 [ D481083348138B4933ACFE95812DB71C ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
17:42:01.0485 6892 AtiHdmiService - ok
17:42:01.0615 6892 [ B579364CE413C6B8FCB8A594CC4C48EE ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:42:01.0705 6892 atikmdag - ok
17:42:01.0765 6892 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:42:01.0835 6892 AudioEndpointBuilder - ok
17:42:01.0835 6892 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:42:01.0875 6892 AudioSrv - ok
17:42:01.0945 6892 [ 91815C2481847A782C90117D10E2ED50 ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
17:42:01.0985 6892 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:01.0985 6892 Autodesk Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:02.0035 6892 [ BD39D7CFD9D6A73396B618113A8E8D57 ] avmaudio C:\Windows\system32\DRIVERS\avmaudio.sys
17:42:02.0085 6892 avmaudio - ok
17:42:02.0125 6892 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:42:02.0215 6892 AxInstSV - ok
17:42:02.0265 6892 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:42:02.0325 6892 b06bdrv - ok
17:42:02.0355 6892 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:42:02.0405 6892 b57nd60a - ok
17:42:02.0435 6892 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
17:42:02.0455 6892 BCM42RLY - ok
17:42:02.0525 6892 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
17:42:02.0585 6892 BCM43XX - ok
17:42:02.0635 6892 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:42:02.0685 6892 BDESVC - ok
17:42:02.0705 6892 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:42:02.0775 6892 Beep - ok
17:42:02.0825 6892 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:42:02.0905 6892 BFE - ok
17:42:02.0945 6892 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:42:03.0025 6892 BITS - ok
17:42:03.0065 6892 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:42:03.0105 6892 blbdrive - ok
17:42:03.0125 6892 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:42:03.0175 6892 bowser - ok
17:42:03.0185 6892 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:42:03.0265 6892 BrFiltLo - ok
17:42:03.0285 6892 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:42:03.0315 6892 BrFiltUp - ok
17:42:03.0335 6892 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:42:03.0375 6892 Browser - ok
17:42:03.0395 6892 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:42:03.0455 6892 Brserid - ok
17:42:03.0485 6892 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:42:03.0535 6892 BrSerWdm - ok
17:42:03.0535 6892 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:42:03.0555 6892 BrUsbMdm - ok
17:42:03.0565 6892 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:42:03.0585 6892 BrUsbSer - ok
17:42:03.0635 6892 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:42:03.0695 6892 BthEnum - ok
17:42:03.0715 6892 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:42:03.0745 6892 BTHMODEM - ok
17:42:03.0765 6892 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:42:03.0805 6892 BthPan - ok
17:42:03.0835 6892 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
17:42:03.0905 6892 BTHPORT - ok
17:42:03.0935 6892 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:42:03.0995 6892 bthserv - ok
17:42:04.0025 6892 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
17:42:04.0045 6892 BTHUSB - ok
17:42:04.0075 6892 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
17:42:04.0105 6892 btwaudio - ok
17:42:04.0125 6892 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
17:42:04.0145 6892 btwavdt - ok
17:42:04.0235 6892 [ 6DDE1E97BE4D50253DFB9090A6A62524 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:42:04.0275 6892 btwdins - ok
17:42:04.0295 6892 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
17:42:04.0305 6892 btwl2cap - ok
17:42:04.0315 6892 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
17:42:04.0325 6892 btwrchid - ok
17:42:04.0335 6892 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:42:04.0375 6892 cdfs - ok
17:42:04.0425 6892 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:42:04.0465 6892 cdrom - ok
17:42:04.0505 6892 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:42:04.0565 6892 CertPropSvc - ok
17:42:04.0625 6892 [ 7C6B5BE2696DFD2D0BF6C9EE20326EF8 ] cfwids C:\Windows\system32\drivers\cfwids.sys
17:42:04.0655 6892 cfwids - ok
17:42:04.0695 6892 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:42:04.0735 6892 circlass - ok
17:42:04.0775 6892 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:42:04.0805 6892 CLFS - ok
17:42:04.0865 6892 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:42:04.0885 6892 clr_optimization_v2.0.50727_32 - ok
17:42:04.0925 6892 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:42:04.0935 6892 clr_optimization_v2.0.50727_64 - ok
17:42:04.0985 6892 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:42:05.0015 6892 clr_optimization_v4.0.30319_32 - ok
17:42:05.0035 6892 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:42:05.0055 6892 clr_optimization_v4.0.30319_64 - ok
17:42:05.0075 6892 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:42:05.0105 6892 CmBatt - ok
17:42:05.0125 6892 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:42:05.0135 6892 cmdide - ok
17:42:05.0195 6892 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:42:05.0245 6892 CNG - ok
17:42:05.0265 6892 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:42:05.0295 6892 Compbatt - ok
17:42:05.0335 6892 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:42:05.0385 6892 CompositeBus - ok
17:42:05.0395 6892 COMSysApp - ok
17:42:05.0415 6892 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:42:05.0425 6892 crcdisk - ok
17:42:05.0475 6892 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:42:05.0495 6892 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:05.0495 6892 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:05.0535 6892 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:42:05.0575 6892 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:05.0575 6892 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:05.0615 6892 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:42:05.0675 6892 CryptSvc - ok
17:42:05.0715 6892 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:42:05.0745 6892 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
17:42:05.0745 6892 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
17:42:05.0775 6892 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
17:42:05.0815 6892 CtClsFlt - ok
17:42:05.0895 6892 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:42:05.0935 6892 cvhsvc - ok
17:42:05.0985 6892 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:42:06.0065 6892 DcomLaunch - ok
17:42:06.0085 6892 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:42:06.0155 6892 defragsvc - ok
17:42:06.0185 6892 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:42:06.0245 6892 DfsC - ok
17:42:06.0275 6892 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:42:06.0365 6892 Dhcp - ok
17:42:06.0385 6892 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:42:06.0425 6892 discache - ok
17:42:06.0475 6892 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:42:06.0505 6892 Disk - ok
17:42:06.0575 6892 [ AF9970B93F75C104D4F4C845F12B1481 ] dlecCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\dlecserv.exe
17:42:06.0595 6892 dlecCATSCustConnectService - ok
17:42:06.0605 6892 dlec_device - ok
17:42:06.0635 6892 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:42:06.0685 6892 Dnscache - ok
17:42:06.0765 6892 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
17:42:06.0795 6892 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
17:42:06.0795 6892 DockLoginService - detected UnsignedFile.Multi.Generic (1)
17:42:06.0835 6892 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:42:06.0905 6892 dot3svc - ok
17:42:06.0935 6892 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:42:06.0995 6892 DPS - ok
17:42:07.0025 6892 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:42:07.0055 6892 drmkaud - ok
17:42:07.0105 6892 [ 1C7BF5B88D977A7824B174E7EC452F94 ] dwVSCD C:\Windows\system32\DRIVERS\dwvscd.sys
17:42:07.0155 6892 dwVSCD - ok
17:42:07.0195 6892 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:42:07.0235 6892 DXGKrnl - ok
17:42:07.0265 6892 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:42:07.0325 6892 EapHost - ok
17:42:07.0405 6892 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:42:07.0485 6892 ebdrv - ok
17:42:07.0505 6892 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:42:07.0555 6892 EFS - ok
17:42:07.0645 6892 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:42:07.0705 6892 ehRecvr - ok
17:42:07.0745 6892 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:42:07.0785 6892 ehSched - ok
17:42:07.0815 6892 [ 9387A484D31209D7FC3F795A787294DB ] ElbyCDFL C:\Windows\system32\Drivers\ElbyCDFL.sys
17:42:07.0845 6892 ElbyCDFL - ok
17:42:07.0865 6892 [ 702D5606CF2199E0EDEA6F0E0D27CD10 ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
17:42:07.0875 6892 ElbyCDIO - ok
17:42:07.0925 6892 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:42:07.0965 6892 elxstor - ok
17:42:08.0015 6892 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
17:42:08.0045 6892 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
17:42:08.0045 6892 epmntdrv - detected UnsignedFile.Multi.Generic (1)
17:42:08.0065 6892 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:42:08.0085 6892 ErrDev - ok
17:42:08.0125 6892 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
17:42:08.0155 6892 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
17:42:08.0155 6892 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
17:42:08.0195 6892 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:42:08.0265 6892 EventSystem - ok
17:42:08.0285 6892 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:42:08.0345 6892 exfat - ok
17:42:08.0375 6892 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:42:08.0455 6892 fastfat - ok
17:42:08.0505 6892 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:42:08.0585 6892 Fax - ok
17:42:08.0605 6892 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:42:08.0615 6892 fdc - ok
17:42:08.0655 6892 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:42:08.0725 6892 fdPHost - ok
17:42:08.0745 6892 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:42:08.0795 6892 FDResPub - ok
17:42:08.0815 6892 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:42:08.0825 6892 FileInfo - ok
17:42:08.0845 6892 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:42:08.0915 6892 Filetrace - ok
17:42:08.0945 6892 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:42:08.0975 6892 FLEXnet Licensing Service - ok
17:42:09.0065 6892 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:42:09.0105 6892 FLEXnet Licensing Service 64 - ok
17:42:09.0135 6892 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:42:09.0165 6892 flpydisk - ok
17:42:09.0195 6892 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:42:09.0225 6892 FltMgr - ok
17:42:09.0275 6892 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:42:09.0335 6892 FontCache - ok
17:42:09.0385 6892 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:42:09.0405 6892 FontCache3.0.0.0 - ok
17:42:09.0525 6892 [ B4654909AB91283C196BAFB901BBD510 ] FortiSslvpnDaemon C:\Windows\SysWOW64\FortiSSLVPNdaemon.exe
17:42:09.0565 6892 FortiSslvpnDaemon - ok
17:42:09.0595 6892 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:42:09.0615 6892 FsDepends - ok
17:42:09.0655 6892 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:42:09.0675 6892 fssfltr - ok
17:42:09.0755 6892 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:42:09.0815 6892 fsssvc - ok
17:42:09.0835 6892 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:42:09.0845 6892 Fs_Rec - ok
17:42:09.0895 6892 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:42:09.0925 6892 fvevol - ok
17:42:09.0955 6892 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:42:09.0975 6892 gagp30kx - ok
17:42:10.0005 6892 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:42:10.0075 6892 gpsvc - ok
17:42:10.0155 6892 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:42:10.0175 6892 gupdate - ok
17:42:10.0195 6892 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:42:10.0205 6892 gupdatem - ok
17:42:10.0255 6892 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:42:10.0275 6892 gusvc - ok
17:42:10.0305 6892 Hardlock - ok
17:42:10.0325 6892 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:42:10.0375 6892 hcw85cir - ok
17:42:10.0425 6892 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:42:10.0465 6892 HDAudBus - ok
17:42:10.0505 6892 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:42:10.0525 6892 HECIx64 - ok
17:42:10.0545 6892 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:42:10.0585 6892 HidBatt - ok
17:42:10.0625 6892 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:42:10.0675 6892 HidBth - ok
17:42:10.0675 6892 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:42:10.0705 6892 HidIr - ok
17:42:10.0725 6892 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:42:10.0795 6892 hidserv - ok
17:42:10.0825 6892 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:42:10.0835 6892 HidUsb - ok
17:42:10.0905 6892 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
17:42:10.0935 6892 HipShieldK - ok
17:42:10.0955 6892 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:42:11.0015 6892 hkmsvc - ok
17:42:11.0045 6892 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:42:11.0095 6892 HomeGroupListener - ok
17:42:11.0125 6892 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:42:11.0165 6892 HomeGroupProvider - ok
17:42:11.0185 6892 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:42:11.0205 6892 HpSAMD - ok
17:42:11.0255 6892 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:42:11.0315 6892 HTTP - ok
17:42:11.0335 6892 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:42:11.0345 6892 hwpolicy - ok
17:42:11.0375 6892 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:42:11.0385 6892 i8042prt - ok
17:42:11.0435 6892 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:42:11.0475 6892 iaStorV - ok
17:42:11.0515 6892 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:42:11.0545 6892 idsvc - ok
17:42:11.0575 6892 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:42:11.0585 6892 iirsp - ok
17:42:11.0625 6892 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:42:11.0675 6892 IKEEXT - ok
17:42:11.0705 6892 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:42:11.0715 6892 intelide - ok
17:42:11.0735 6892 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:42:11.0775 6892 intelppm - ok
17:42:11.0795 6892 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:42:11.0875 6892 IPBusEnum - ok
17:42:11.0895 6892 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:42:11.0945 6892 IpFilterDriver - ok
17:42:11.0965 6892 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:42:12.0015 6892 iphlpsvc - ok
17:42:12.0035 6892 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:42:12.0055 6892 IPMIDRV - ok
17:42:12.0075 6892 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:42:12.0135 6892 IPNAT - ok
17:42:12.0155 6892 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:42:12.0225 6892 IRENUM - ok
17:42:12.0255 6892 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:42:12.0265 6892 isapnp - ok
17:42:12.0275 6892 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:42:12.0295 6892 iScsiPrt - ok
17:42:12.0325 6892 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:42:12.0345 6892 kbdclass - ok
17:42:12.0365 6892 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:42:12.0405 6892 kbdhid - ok
17:42:12.0415 6892 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:42:12.0435 6892 KeyIso - ok
17:42:12.0455 6892 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:42:12.0475 6892 KSecDD - ok
17:42:12.0505 6892 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:42:12.0535 6892 KSecPkg - ok
17:42:12.0555 6892 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:42:12.0635 6892 ksthunk - ok
17:42:12.0655 6892 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:42:12.0725 6892 KtmRm - ok
17:42:12.0775 6892 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:42:12.0845 6892 LanmanServer - ok
17:42:12.0865 6892 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:42:12.0925 6892 LanmanWorkstation - ok
17:42:13.0005 6892 [ 88E52495B47C67126B510AF53FDB0BC7 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
17:42:13.0025 6892 LBTServ - ok
17:42:13.0055 6892 [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:42:13.0065 6892 LHidFilt - ok
17:42:13.0095 6892 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:42:13.0145 6892 lltdio - ok
17:42:13.0175 6892 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:42:13.0245 6892 lltdsvc - ok
17:42:13.0255 6892 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:42:13.0295 6892 lmhosts - ok
17:42:13.0305 6892 [ 73C1F563AB73D459DFFE682D66476558 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:42:13.0315 6892 LMouFilt - ok
17:42:13.0375 6892 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:42:13.0405 6892 LMS - ok
17:42:13.0445 6892 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:42:13.0475 6892 LSI_FC - ok
17:42:13.0485 6892 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:42:13.0495 6892 LSI_SAS - ok
17:42:13.0505 6892 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:42:13.0515 6892 LSI_SAS2 - ok
17:42:13.0525 6892 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:42:13.0545 6892 LSI_SCSI - ok
17:42:13.0565 6892 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:42:13.0595 6892 luafv - ok
17:42:13.0645 6892 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:42:13.0675 6892 MBAMProtector - ok
17:42:13.0725 6892 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:42:13.0745 6892 MBAMScheduler - ok
17:42:13.0775 6892 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:42:13.0815 6892 MBAMService - ok
17:42:13.0895 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0925 6892 McAfee SiteAdvisor Service - ok
17:42:13.0935 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0955 6892 McMPFSvc - ok
17:42:13.0955 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0965 6892 mcmscsvc - ok
17:42:13.0985 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0995 6892 McNaiAnn - ok
17:42:14.0005 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:14.0015 6892 McNASvc - ok
17:42:14.0125 6892 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
17:42:14.0155 6892 McODS - ok
17:42:14.0185 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:14.0215 6892 McProxy - ok
17:42:14.0285 6892 [ D4F9C8CE2D7D5B9A1F739AADEBFFCA6F ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
17:42:14.0315 6892 McShield - ok
17:42:14.0345 6892 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:42:14.0375 6892 Mcx2Svc - ok
17:42:14.0395 6892 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:42:14.0405 6892 megasas - ok
17:42:14.0435 6892 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:42:14.0445 6892 MegaSR - ok
17:42:14.0495 6892 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
17:42:14.0525 6892 mfeapfk - ok
17:42:14.0555 6892 [ 298C065BB9E09D5F14CCD9E8244DE4A0 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
17:42:14.0585 6892 mfeavfk - ok
17:42:14.0615 6892 mfeavfk01 - ok
17:42:14.0635 6892 [ AB66AF840EF1667AA73DDA6CE987D0E1 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
17:42:14.0655 6892 mfefire - ok
17:42:14.0695 6892 [ 4D604F0B85E98C5AD99B89AF72A4E28A ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
17:42:14.0725 6892 mfefirek - ok
17:42:14.0775 6892 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
17:42:14.0815 6892 mfehidk - ok
17:42:14.0825 6892 [ 1B08579938FD72626D92F3C2219903EA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
17:42:14.0845 6892 mferkdet - ok
17:42:14.0885 6892 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
17:42:14.0905 6892 mfevtp - ok
17:42:14.0925 6892 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
17:42:14.0945 6892 mfewfpk - ok
17:42:15.0045 6892 [ 29731E3F45A70312E82A72EA96483171 ] mitsijm2012 C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
17:42:15.0085 6892 mitsijm2012 - ok
17:42:15.0115 6892 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:42:15.0155 6892 MMCSS - ok
17:42:15.0185 6892 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:42:15.0245 6892 Modem - ok
17:42:15.0275 6892 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:42:15.0315 6892 monitor - ok
17:42:15.0355 6892 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:42:15.0375 6892 mouclass - ok
17:42:15.0385 6892 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:42:15.0405 6892 mouhid - ok
17:42:15.0445 6892 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:42:15.0475 6892 mountmgr - ok
17:42:15.0545 6892 [ 24409A2A9F0351E208E14F609340FB25 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:42:15.0575 6892 MozillaMaintenance - ok
17:42:15.0595 6892 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:42:15.0625 6892 mpio - ok
17:42:15.0655 6892 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:42:15.0725 6892 mpsdrv - ok
17:42:15.0765 6892 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:42:15.0835 6892 MpsSvc - ok
17:42:15.0865 6892 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:42:15.0895 6892 MRxDAV - ok
17:42:15.0925 6892 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:42:15.0975 6892 mrxsmb - ok
17:42:16.0015 6892 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:42:16.0045 6892 mrxsmb10 - ok
17:42:16.0065 6892 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:42:16.0085 6892 mrxsmb20 - ok
17:42:16.0105 6892 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:42:16.0115 6892 msahci - ok
17:42:16.0145 6892 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:42:16.0155 6892 msdsm - ok
17:42:16.0175 6892 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:42:16.0215 6892 MSDTC - ok
17:42:16.0245 6892 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:42:16.0295 6892 Msfs - ok
17:42:16.0325 6892 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:42:16.0385 6892 mshidkmdf - ok
17:42:16.0405 6892 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:42:16.0415 6892 msisadrv - ok
17:42:16.0435 6892 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:42:16.0505 6892 MSiSCSI - ok
17:42:16.0505 6892 msiserver - ok
17:42:16.0565 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:16.0595 6892 MSK80Service - ok
17:42:16.0615 6892 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:42:16.0685 6892 MSKSSRV - ok
17:42:16.0695 6892 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:42:16.0745 6892 MSPCLOCK - ok
17:42:16.0755 6892 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:42:16.0805 6892 MSPQM - ok
17:42:16.0835 6892 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:42:16.0845 6892 MsRPC - ok
17:42:16.0875 6892 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:42:16.0885 6892 mssmbios - ok
17:42:16.0955 6892 MSSQL$ECSQLEXPRESS - ok
17:42:16.0985 6892 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
17:42:17.0005 6892 MSSQLServerADHelper - ok
17:42:17.0025 6892 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:42:17.0105 6892 MSTEE - ok
17:42:17.0115 6892 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:42:17.0135 6892 MTConfig - ok
17:42:17.0155 6892 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:42:17.0165 6892 Mup - ok
17:42:17.0185 6892 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:42:17.0235 6892 napagent - ok
17:42:17.0265 6892 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:42:17.0305 6892 NativeWifiP - ok
17:42:17.0355 6892 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:42:17.0395 6892 NDIS - ok
17:42:17.0415 6892 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:42:17.0445 6892 NdisCap - ok
17:42:17.0465 6892 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:42:17.0525 6892 NdisTapi - ok
17:42:17.0555 6892 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:42:17.0595 6892 Ndisuio - ok
17:42:17.0625 6892 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:42:17.0705 6892 NdisWan - ok
17:42:17.0725 6892 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:42:17.0785 6892 NDProxy - ok
17:42:17.0825 6892 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:42:17.0885 6892 NetBIOS - ok
17:42:17.0915 6892 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:42:17.0975 6892 NetBT - ok
17:42:17.0995 6892 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:42:18.0005 6892 Netlogon - ok
17:42:18.0045 6892 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:42:18.0095 6892 Netman - ok
17:42:18.0165 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0185 6892 NetMsmqActivator - ok
17:42:18.0195 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0205 6892 NetPipeActivator - ok
17:42:18.0225 6892 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:42:18.0285 6892 netprofm - ok
17:42:18.0285 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0295 6892 NetTcpActivator - ok
17:42:18.0305 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0315 6892 NetTcpPortSharing - ok
17:42:18.0335 6892 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:42:18.0345 6892 nfrd960 - ok
17:42:18.0385 6892 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:42:18.0435 6892 NlaSvc - ok
17:42:18.0475 6892 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:42:18.0525 6892 Npfs - ok
17:42:18.0555 6892 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:42:18.0615 6892 nsi - ok
17:42:18.0625 6892 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:42:18.0695 6892 nsiproxy - ok
17:42:18.0745 6892 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:42:18.0795 6892 Ntfs - ok
17:42:18.0805 6892 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:42:18.0875 6892 Null - ok
17:42:18.0915 6892 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:42:18.0935 6892 nvraid - ok
17:42:18.0955 6892 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:42:18.0975 6892 nvstor - ok
17:42:19.0005 6892 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:42:19.0035 6892 nv_agp - ok
17:42:19.0085 6892 [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
17:42:19.0125 6892 O2FLASH - ok
17:42:19.0135 6892 [ 8C2953537CA19DFAA67D612407E0F33E ] O2MDGRDR C:\Windows\system32\DRIVERS\o2mdgx64.sys
17:42:19.0155 6892 O2MDGRDR - ok
17:42:19.0195 6892 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:42:19.0225 6892 ohci1394 - ok
17:42:19.0285 6892 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:42:19.0305 6892 ose - ok
17:42:19.0425 6892 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:42:19.0535 6892 osppsvc - ok
17:42:19.0565 6892 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:42:19.0625 6892 p2pimsvc - ok
17:42:19.0645 6892 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:42:19.0665 6892 p2psvc - ok
17:42:19.0695 6892 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:42:19.0725 6892 Parport - ok
17:42:19.0755 6892 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:42:19.0765 6892 partmgr - ok
17:42:19.0785 6892 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:42:19.0825 6892 PcaSvc - ok
17:42:19.0915 6892 [ 4B5F5774FF1C577B9515FDD2B5C535C5 ] PCDSRVC{1E208CE0-FB7451FF-06020200}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
17:42:19.0935 6892 PCDSRVC{1E208CE0-FB7451FF-06020200}_0 - ok
17:42:19.0975 6892 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:42:19.0995 6892 pci - ok
17:42:20.0015 6892 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:42:20.0025 6892 pciide - ok
17:42:20.0045 6892 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:42:20.0055 6892 pcmcia - ok
17:42:20.0075 6892 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:42:20.0085 6892 pcw - ok
17:42:20.0105 6892 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:42:20.0145 6892 PEAUTH - ok
17:42:20.0235 6892 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:42:20.0275 6892 PerfHost - ok
17:42:20.0335 6892 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:42:20.0415 6892 pla - ok
17:42:20.0455 6892 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:42:20.0505 6892 PlugPlay - ok
17:42:20.0535 6892 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:42:20.0575 6892 PNRPAutoReg - ok
17:42:20.0595 6892 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:42:20.0625 6892 PNRPsvc - ok
17:42:20.0645 6892 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:42:20.0695 6892 PolicyAgent - ok
17:42:20.0715 6892 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:42:20.0785 6892 Power - ok
17:42:20.0825 6892 [ B0E7D5D2CFAA6ED5F20EB8B84A35E593 ] pppop C:\Windows\system32\DRIVERS\pppop64.sys
17:42:20.0835 6892 pppop - ok
17:42:20.0875 6892 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:42:20.0945 6892 PptpMiniport - ok
17:42:20.0955 6892 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:42:20.0985 6892 Processor - ok
17:42:21.0015 6892 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:42:21.0045 6892 ProfSvc - ok
17:42:21.0065 6892 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:42:21.0085 6892 ProtectedStorage - ok
17:42:21.0115 6892 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:42:21.0185 6892 Psched - ok
17:42:21.0225 6892 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:42:21.0245 6892 PxHlpa64 - ok
17:42:21.0295 6892 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:42:21.0345 6892 ql2300 - ok
17:42:21.0375 6892 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:42:21.0385 6892 ql40xx - ok
17:42:21.0405 6892 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:42:21.0425 6892 QWAVE - ok
17:42:21.0435 6892 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:42:21.0465 6892 QWAVEdrv - ok
17:42:21.0485 6892 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:42:21.0545 6892 RasAcd - ok
17:42:21.0585 6892 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:42:21.0645 6892 RasAgileVpn - ok
17:42:21.0655 6892 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:42:21.0685 6892 RasAuto - ok
17:42:21.0715 6892 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:42:21.0765 6892 Rasl2tp - ok
17:42:21.0795 6892 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:42:21.0865 6892 RasMan - ok
17:42:21.0895 6892 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:42:21.0945 6892 RasPppoe - ok
17:42:21.0955 6892 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:42:22.0025 6892 RasSstp - ok
17:42:22.0045 6892 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:42:22.0085 6892 rdbss - ok
17:42:22.0085 6892 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:42:22.0115 6892 rdpbus - ok
17:42:22.0135 6892 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:42:22.0165 6892 RDPCDD - ok
17:42:22.0185 6892 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:42:22.0245 6892 RDPENCDD - ok
17:42:22.0255 6892 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:42:22.0285 6892 RDPREFMP - ok
17:42:22.0315 6892 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:42:22.0355 6892 RDPWD - ok
17:42:22.0395 6892 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:42:22.0425 6892 rdyboost - ok
17:42:22.0465 6892 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:42:22.0535 6892 RemoteAccess - ok
17:42:22.0555 6892 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:42:22.0625 6892 RemoteRegistry - ok
17:42:22.0675 6892 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:42:22.0725 6892 RFCOMM - ok
17:42:22.0745 6892 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:42:22.0805 6892 RpcEptMapper - ok
17:42:22.0835 6892 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:42:22.0855 6892 RpcLocator - ok
17:42:22.0885 6892 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:42:22.0935 6892 RpcSs - ok
17:42:22.0975 6892 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:42:23.0045 6892 rspndr - ok
17:42:23.0145 6892 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:42:23.0185 6892 RTL8167 - ok
17:42:23.0195 6892 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:42:23.0205 6892 SamSs - ok
17:42:23.0235 6892 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:42:23.0245 6892 sbp2port - ok
17:42:23.0275 6892 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:42:23.0325 6892 SCardSvr - ok
17:42:23.0355 6892 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:42:23.0405 6892 scfilter - ok
17:42:23.0445 6892 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:42:23.0555 6892 Schedule - ok
17:42:23.0575 6892 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:42:23.0615 6892 SCPolicySvc - ok
17:42:23.0655 6892 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
17:42:23.0695 6892 sdbus - ok
17:42:23.0705 6892 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:42:23.0745 6892 SDRSVC - ok
17:42:23.0785 6892 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:42:23.0855 6892 secdrv - ok
17:42:23.0885 6892 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:42:23.0945 6892 seclogon - ok
17:42:23.0975 6892 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:42:24.0035 6892 SENS - ok
17:42:24.0055 6892 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:42:24.0105 6892 SensrSvc - ok
17:42:24.0115 6892 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:42:24.0135 6892 Serenum - ok
17:42:24.0165 6892 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:42:24.0205 6892 Serial - ok
17:42:24.0225 6892 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:42:24.0245 6892 sermouse - ok
17:42:24.0275 6892 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:42:24.0355 6892 SessionEnv - ok
17:42:24.0375 6892 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:42:24.0425 6892 sffdisk - ok
17:42:24.0445 6892 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:42:24.0475 6892 sffp_mmc - ok
17:42:24.0475 6892 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:42:24.0505 6892 sffp_sd - ok
17:42:24.0535 6892 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:42:24.0575 6892 sfloppy - ok
17:42:24.0625 6892 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
17:42:24.0655 6892 Sftfs - ok
17:42:24.0705 6892 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:42:24.0735 6892 sftlist - ok
17:42:24.0755 6892 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:42:24.0765 6892 Sftplay - ok
17:42:24.0775 6892 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:42:24.0785 6892 Sftredir - ok
17:42:24.0845 6892 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
17:42:24.0885 6892 SftService - ok
17:42:24.0895 6892 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
17:42:24.0905 6892 Sftvol - ok
17:42:24.0925 6892 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:42:24.0935 6892 sftvsa - ok
17:42:24.0985 6892 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:42:25.0075 6892 SharedAccess - ok
17:42:25.0105 6892 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:42:25.0155 6892 ShellHWDetection - ok
17:42:25.0185 6892 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:42:25.0215 6892 SiSRaid2 - ok
17:42:25.0225 6892 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:42:25.0235 6892 SiSRaid4 - ok
17:42:25.0315 6892 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:42:25.0345 6892 SkypeUpdate - ok
17:42:25.0365 6892 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:42:25.0425 6892 Smb - ok
17:42:25.0465 6892 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:42:25.0505 6892 SNMPTRAP - ok
17:42:25.0545 6892 [ 9B24DCA429F819DB314F30EE4C6C80FD ] Sound Blaster X-Fi MB Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
17:42:25.0555 6892 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:25.0555 6892 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:25.0565 6892 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:42:25.0585 6892 spldr - ok
17:42:25.0625 6892 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:42:25.0685 6892 Spooler - ok
17:42:25.0775 6892 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:42:25.0855 6892 sppsvc - ok
17:42:25.0885 6892 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:42:25.0955 6892 sppuinotify - ok
17:42:26.0025 6892 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\System32\Drivers\sptd.sys
17:42:26.0065 6892 sptd - ok
17:42:26.0135 6892 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
17:42:26.0155 6892 SQLBrowser - ok
17:42:26.0195 6892 [ 3C432A96363097870995E2A3C8B66ABD ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
17:42:26.0215 6892 SQLWriter - ok
17:42:26.0245 6892 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:42:26.0305 6892 srv - ok
17:42:26.0335 6892 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:42:26.0375 6892 srv2 - ok
17:42:26.0395 6892 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:42:26.0425 6892 srvnet - ok
17:42:26.0465 6892 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:42:26.0545 6892 SSDPSRV - ok
17:42:26.0555 6892 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:42:26.0595 6892 SstpSvc - ok
17:42:26.0635 6892 [ EF806D212D34B0E173BAEB3564D53E37 ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys
17:42:26.0665 6892 ss_bbus - ok
17:42:26.0685 6892 [ 08B1B34ABEBEB6AC2DEA06900C56411E ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys
17:42:26.0705 6892 ss_bmdfl - ok
17:42:26.0725 6892 [ 71A9DA6BEAA4CB54DFB827FB78600A5D ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys
17:42:26.0745 6892 ss_bmdm - ok
17:42:26.0765 6892 [ 677CDC98F8363ACCAAE783FDE1599C2A ] ss_bserd C:\Windows\system32\DRIVERS\ss_bserd.sys
17:42:26.0775 6892 ss_bserd - ok
17:42:26.0905 6892 [ DA7702025DFD169B909C4DA3126762CC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe
17:42:26.0935 6892 STacSV - ok
17:42:26.0965 6892 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:42:26.0985 6892 stexstor - ok
17:42:27.0025 6892 [ CAF5A9708671B14B9670260735B22C4E ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
17:42:27.0055 6892 STHDA - ok
17:42:27.0095 6892 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:42:27.0145 6892 stisvc - ok
17:42:27.0175 6892 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:42:27.0185 6892 swenum - ok
17:42:27.0215 6892 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:42:27.0255 6892 swprv - ok
17:42:27.0305 6892 [ 39D4B4343BA70E4B32C4531BD075B9F6 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:42:27.0325 6892 SynTP - ok
17:42:27.0375 6892 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:42:27.0445 6892 SysMain - ok
17:42:27.0465 6892 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:42:27.0495 6892 TabletInputService - ok
17:42:27.0525 6892 [ BCD6A90D6FD757CE9C29DDC850F7F231 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
17:42:27.0565 6892 tap0901 - ok
17:42:27.0605 6892 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:42:27.0645 6892 TapiSrv - ok
17:42:27.0675 6892 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:42:27.0755 6892 TBS - ok
17:42:27.0805 6892 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:42:27.0855 6892 Tcpip - ok
17:42:27.0885 6892 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:42:27.0935 6892 TCPIP6 - ok
17:42:27.0975 6892 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:42:28.0055 6892 tcpipreg - ok
17:42:28.0075 6892 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:42:28.0095 6892 TDPIPE - ok
17:42:28.0125 6892 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:42:28.0155 6892 TDTCP - ok
17:42:28.0185 6892 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:42:28.0215 6892 tdx - ok
17:42:28.0495 6892 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
17:42:28.0555 6892 TeamViewer7 - ok
17:42:28.0575 6892 [ F5520DBB47C60EE83024B38720ABDA24 ] teamviewervpn C:\Windows\system32\DRIVERS\teamviewervpn.sys
17:42:28.0585 6892 teamviewervpn - ok
17:42:28.0605 6892 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:42:28.0615 6892 TermDD - ok
17:42:28.0645 6892 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:42:28.0685 6892 TermService - ok
17:42:28.0725 6892 [ CE4B6956E4E12492715A53076E58761F ] TFsExDisk C:\Windows\System32\Drivers\TFsExDisk.sys
17:42:28.0745 6892 TFsExDisk - ok
17:42:28.0775 6892 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:42:28.0825 6892 Themes - ok
17:42:28.0845 6892 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:42:28.0895 6892 THREADORDER - ok
17:42:28.0905 6892 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:42:28.0945 6892 TrkWks - ok
17:42:28.0995 6892 [ 370A6907DDF79532A39319492B1FA38A ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
17:42:29.0015 6892 truecrypt - ok
17:42:29.0075 6892 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:42:29.0135 6892 TrustedInstaller - ok
17:42:29.0175 6892 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:42:29.0255 6892 tssecsrv - ok
17:42:29.0295 6892 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:42:29.0335 6892 TsUsbFlt - ok
17:42:29.0385 6892 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:42:29.0465 6892 tunnel - ok
17:42:29.0485 6892 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:42:29.0495 6892 uagp35 - ok
17:42:29.0515 6892 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:42:29.0565 6892 udfs - ok
17:42:29.0595 6892 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:42:29.0635 6892 UI0Detect - ok
17:42:29.0665 6892 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:42:29.0685 6892 uliagpkx - ok
17:42:29.0725 6892 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:42:29.0765 6892 umbus - ok
17:42:29.0775 6892 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:42:29.0805 6892 UmPass - ok
17:42:29.0905 6892 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:42:29.0965 6892 UNS - ok
17:42:29.0975 6892 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:42:30.0025 6892 upnphost - ok
17:42:30.0065 6892 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:42:30.0105 6892 usbaudio - ok
17:42:30.0155 6892 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:42:30.0205 6892 usbccgp - ok
17:42:30.0245 6892 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:42:30.0285 6892 usbcir - ok
17:42:30.0315 6892 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:42:30.0355 6892 usbehci - ok
17:42:30.0385 6892 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:42:30.0425 6892 usbhub - ok
17:42:30.0435 6892 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:42:30.0465 6892 usbohci - ok
17:42:30.0495 6892 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:42:30.0535 6892 usbprint - ok
17:42:30.0575 6892 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:42:30.0595 6892 usbscan - ok
17:42:30.0625 6892 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:42:30.0675 6892 USBSTOR - ok
17:42:30.0705 6892 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:42:30.0735 6892 usbuhci - ok
17:42:30.0785 6892 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:42:30.0835 6892 usbvideo - ok
17:42:30.0875 6892 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:42:30.0905 6892 UxSms - ok
17:42:30.0925 6892 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:42:30.0935 6892 VaultSvc - ok
17:42:30.0965 6892 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:42:30.0975 6892 vdrvroot - ok
17:42:31.0015 6892 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:42:31.0085 6892 vds - ok
17:42:31.0105 6892 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:42:31.0125 6892 vga - ok
17:42:31.0145 6892 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:42:31.0185 6892 VgaSave - ok
17:42:31.0215 6892 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:42:31.0255 6892 vhdmp - ok
17:42:31.0255 6892 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:42:31.0275 6892 viaide - ok
17:42:31.0285 6892 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:42:31.0295 6892 volmgr - ok
17:42:31.0335 6892 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:42:31.0355 6892 volmgrx - ok
17:42:31.0375 6892 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:42:31.0385 6892 volsnap - ok
17:42:31.0445 6892 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
17:42:31.0475 6892 vpcbus - ok
17:42:31.0515 6892 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
17:42:31.0555 6892 vpcnfltr - ok
17:42:31.0585 6892 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
17:42:31.0625 6892 vpcusb - ok
17:42:31.0655 6892 [ 63F4E10873BEB4124028C6D1A66B0968 ] vpcuxd C:\Windows\system32\DRIVERS\vpcuxd.sys
17:42:31.0675 6892 vpcuxd - ok
17:42:31.0705 6892 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
17:42:31.0735 6892 vpcvmm - ok
17:42:31.0765 6892 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:42:31.0805 6892 vsmraid - ok
17:42:31.0855 6892 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:42:31.0945 6892 VSS - ok
17:42:31.0965 6892 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:42:31.0985 6892 vwifibus - ok
17:42:32.0005 6892 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:42:32.0045 6892 vwififlt - ok
17:42:32.0085 6892 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:42:32.0115 6892 vwifimp - ok
17:42:32.0165 6892 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:42:32.0255 6892 W32Time - ok
17:42:32.0265 6892 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:42:32.0285 6892 WacomPen - ok
17:42:32.0325 6892 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:42:32.0385 6892 WANARP - ok
17:42:32.0385 6892 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:42:32.0425 6892 Wanarpv6 - ok
17:42:32.0485 6892 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:42:32.0525 6892 WatAdminSvc - ok
17:42:32.0585 6892 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:42:32.0645 6892 wbengine - ok
17:42:32.0675 6892 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:42:32.0695 6892 WbioSrvc - ok
17:42:32.0715 6892 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:42:32.0775 6892 wcncsvc - ok
17:42:32.0805 6892 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:42:32.0825 6892 WcsPlugInService - ok
17:42:32.0855 6892 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:42:32.0875 6892 Wd - ok
17:42:32.0905 6892 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:42:32.0935 6892 Wdf01000 - ok
17:42:32.0955 6892 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:42:33.0035 6892 WdiServiceHost - ok
17:42:33.0045 6892 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:42:33.0065 6892 WdiSystemHost - ok
17:42:33.0095 6892 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:42:33.0135 6892 WebClient - ok
17:42:33.0155 6892 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:42:33.0215 6892 Wecsvc - ok
17:42:33.0245 6892 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:42:33.0275 6892 wercplsupport - ok
17:42:33.0305 6892 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:42:33.0345 6892 WerSvc - ok
17:42:33.0365 6892 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:42:33.0405 6892 WfpLwf - ok
17:42:33.0435 6892 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
17:42:33.0455 6892 WimFltr - ok
17:42:33.0485 6892 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:42:33.0535 6892 WIMMount - ok
17:42:33.0565 6892 WinDefend - ok
17:42:33.0585 6892 WinHttpAutoProxySvc - ok
17:42:33.0675 6892 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:42:33.0735 6892 Winmgmt - ok
17:42:33.0795 6892 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:42:33.0865 6892 WinRM - ok
17:42:33.0915 6892 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:42:33.0955 6892 WinUsb - ok
17:42:33.0995 6892 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:42:34.0035 6892 Wlansvc - ok
17:42:34.0075 6892 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:42:34.0095 6892 wlcrasvc - ok
17:42:34.0225 6892 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:42:34.0275 6892 wlidsvc - ok
17:42:34.0315 6892 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
17:42:34.0335 6892 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
17:42:34.0335 6892 wltrysvc - detected UnsignedFile.Multi.Generic (1)
17:42:34.0355 6892 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:42:34.0395 6892 WmiAcpi - ok
17:42:34.0425 6892 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:42:34.0465 6892 wmiApSrv - ok
17:42:34.0515 6892 WMPNetworkSvc - ok
17:42:34.0535 6892 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:42:34.0565 6892 WPCSvc - ok
17:42:34.0605 6892 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:42:34.0635 6892 WPDBusEnum - ok
17:42:34.0655 6892 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:42:34.0735 6892 ws2ifsl - ok
17:42:34.0755 6892 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:42:34.0785 6892 wscsvc - ok
17:42:34.0785 6892 WSearch - ok
17:42:34.0855 6892 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:42:34.0935 6892 wuauserv - ok
17:42:34.0965 6892 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:42:35.0035 6892 WudfPf - ok
17:42:35.0065 6892 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:42:35.0125 6892 WUDFRd - ok
17:42:35.0165 6892 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:42:35.0195 6892 wudfsvc - ok
17:42:35.0225 6892 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:42:35.0245 6892 WwanSvc - ok
17:42:35.0275 6892 ================ Scan global ===============================
17:42:35.0295 6892 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:42:35.0335 6892 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:42:35.0345 6892 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:42:35.0375 6892 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:42:35.0415 6892 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:42:35.0415 6892 [Global] - ok
17:42:35.0415 6892 ================ Scan MBR ==================================
17:42:35.0435 6892 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
17:42:36.0355 6892 \Device\Harddisk1\DR1 - ok
17:42:36.0655 6892 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:42:37.0305 6892 \Device\Harddisk0\DR0 - ok
17:42:37.0305 6892 ================ Scan VBR ==================================
17:42:37.0335 6892 [ D43DCF4DB91A97DC79DFDEC7EA103F65 ] \Device\Harddisk1\DR1\Partition1
17:42:37.0335 6892 \Device\Harddisk1\DR1\Partition1 - ok
17:42:37.0355 6892 [ 7B6B20C0C8E2CA60513F30BA180FCF32 ] \Device\Harddisk1\DR1\Partition2
17:42:37.0355 6892 \Device\Harddisk1\DR1\Partition2 - ok
17:42:37.0395 6892 [ 83E134DAAA10D510884842529448382E ] \Device\Harddisk0\DR0\Partition1
17:42:37.0395 6892 \Device\Harddisk0\DR0\Partition1 - ok
17:42:37.0395 6892 ============================================================
17:42:37.0395 6892 Scan finished
17:42:37.0395 6892 ============================================================
17:42:37.0405 7884 Detected object count: 10
17:42:37.0405 7884 Actual detected object count: 10
|
|
23.10.2012, 09:03
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatisch Log ist leider unvollständig, die untere Zusammenfassung fehlt
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.10.2012, 20:40
| #21 |
| | McAfee Echzeitscan deaktiviert sich immer automatisch Tut mir leid. Habe vermutlich beim makieren einen Teil vergessen. Code:
ATTFilter 17:41:25.0395 8068 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
17:41:26.0385 8068 ============================================================
17:41:26.0385 8068 Current date / time: 2012/10/22 17:41:26.0385
17:41:26.0385 8068 SystemInfo:
17:41:26.0385 8068
17:41:26.0385 8068 OS Version: 6.1.7601 ServicePack: 1.0
17:41:26.0385 8068 Product type: Workstation
17:41:26.0385 8068 ComputerName: SLM002
17:41:26.0385 8068 UserName: Manfred
17:41:26.0385 8068 Windows directory: C:\Windows
17:41:26.0385 8068 System windows directory: C:\Windows
17:41:26.0385 8068 Running under WOW64
17:41:26.0385 8068 Processor architecture: Intel x64
17:41:26.0385 8068 Number of processors: 4
17:41:26.0385 8068 Page size: 0x1000
17:41:26.0385 8068 Boot type: Normal boot
17:41:26.0385 8068 ============================================================
17:41:28.0505 8068 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:41:28.0545 8068 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:41:28.0555 8068 ============================================================
17:41:28.0555 8068 \Device\Harddisk1\DR1:
17:41:28.0555 8068 MBR partitions:
17:41:28.0555 8068 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
17:41:28.0555 8068 \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
17:41:28.0555 8068 \Device\Harddisk0\DR0:
17:41:28.0555 8068 MBR partitions:
17:41:28.0555 8068 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
17:41:28.0555 8068 ============================================================
17:41:28.0585 8068 C: <-> \Device\Harddisk1\DR1\Partition2
17:41:28.0625 8068 D: <-> \Device\Harddisk0\DR0\Partition1
17:41:28.0625 8068 ============================================================
17:41:28.0625 8068 Initialize success
17:41:28.0625 8068 ============================================================
17:41:56.0905 6892 ============================================================
17:41:56.0905 6892 Scan started
17:41:56.0905 6892 Mode: Manual; SigCheck; TDLFS;
17:41:56.0905 6892 ============================================================
17:41:58.0345 6892 ================ Scan system memory ========================
17:41:58.0345 6892 System memory - ok
17:41:58.0345 6892 ================ Scan services =============================
17:41:58.0545 6892 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
17:41:58.0675 6892 1394ohci - ok
17:41:58.0695 6892 [ C49C56B35BFC6CDA8D1FDCAD2885568F ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys
17:41:58.0705 6892 Acceler - ok
17:41:58.0745 6892 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
17:41:58.0765 6892 ACPI - ok
17:41:58.0775 6892 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
17:41:58.0865 6892 AcpiPmi - ok
17:41:58.0975 6892 [ 765FE0463E711E5A68AC7B69538ED922 ] AdobeActiveFileMonitor8.0 c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
17:41:58.0995 6892 AdobeActiveFileMonitor8.0 - ok
17:41:59.0085 6892 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:41:59.0095 6892 AdobeARMservice - ok
17:41:59.0225 6892 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:41:59.0245 6892 AdobeFlashPlayerUpdateSvc - ok
17:41:59.0295 6892 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
17:41:59.0335 6892 adp94xx - ok
17:41:59.0365 6892 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
17:41:59.0395 6892 adpahci - ok
17:41:59.0405 6892 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
17:41:59.0415 6892 adpu320 - ok
17:41:59.0445 6892 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:41:59.0585 6892 AeLookupSvc - ok
17:41:59.0705 6892 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
17:41:59.0765 6892 AESTFilters - ok
17:41:59.0815 6892 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
17:41:59.0885 6892 AFD - ok
17:41:59.0935 6892 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:41:59.0965 6892 agp440 - ok
17:42:00.0115 6892 [ 0923671CF87CD511E46D4668B53F5E76 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll
17:42:00.0115 6892 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll. md5: 0923671CF87CD511E46D4668B53F5E76
17:42:00.0115 6892 Akamai ( HiddenFile.Multi.Generic ) - warning
17:42:00.0115 6892 Akamai - detected HiddenFile.Multi.Generic (1)
17:42:00.0165 6892 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
17:42:00.0235 6892 ALG - ok
17:42:00.0275 6892 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
17:42:00.0295 6892 aliide - ok
17:42:00.0335 6892 [ 568C61DBDA2D9F1AFDAC58771E313AFE ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:42:00.0405 6892 AMD External Events Utility - ok
17:42:00.0425 6892 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
17:42:00.0435 6892 amdide - ok
17:42:00.0465 6892 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:42:00.0535 6892 AmdK8 - ok
17:42:00.0555 6892 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
17:42:00.0585 6892 AmdPPM - ok
17:42:00.0625 6892 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
17:42:00.0645 6892 amdsata - ok
17:42:00.0665 6892 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
17:42:00.0685 6892 amdsbs - ok
17:42:00.0695 6892 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
17:42:00.0705 6892 amdxata - ok
17:42:00.0755 6892 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
17:42:00.0915 6892 AppID - ok
17:42:00.0935 6892 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
17:42:01.0005 6892 AppIDSvc - ok
17:42:01.0035 6892 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
17:42:01.0065 6892 Appinfo - ok
17:42:01.0095 6892 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
17:42:01.0115 6892 arc - ok
17:42:01.0135 6892 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
17:42:01.0145 6892 arcsas - ok
17:42:01.0255 6892 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:42:01.0285 6892 aspnet_state - ok
17:42:01.0305 6892 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:42:01.0385 6892 AsyncMac - ok
17:42:01.0405 6892 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
17:42:01.0415 6892 atapi - ok
17:42:01.0455 6892 [ D481083348138B4933ACFE95812DB71C ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
17:42:01.0485 6892 AtiHdmiService - ok
17:42:01.0615 6892 [ B579364CE413C6B8FCB8A594CC4C48EE ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
17:42:01.0705 6892 atikmdag - ok
17:42:01.0765 6892 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:42:01.0835 6892 AudioEndpointBuilder - ok
17:42:01.0835 6892 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
17:42:01.0875 6892 AudioSrv - ok
17:42:01.0945 6892 [ 91815C2481847A782C90117D10E2ED50 ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
17:42:01.0985 6892 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:01.0985 6892 Autodesk Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:02.0035 6892 [ BD39D7CFD9D6A73396B618113A8E8D57 ] avmaudio C:\Windows\system32\DRIVERS\avmaudio.sys
17:42:02.0085 6892 avmaudio - ok
17:42:02.0125 6892 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
17:42:02.0215 6892 AxInstSV - ok
17:42:02.0265 6892 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
17:42:02.0325 6892 b06bdrv - ok
17:42:02.0355 6892 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
17:42:02.0405 6892 b57nd60a - ok
17:42:02.0435 6892 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
17:42:02.0455 6892 BCM42RLY - ok
17:42:02.0525 6892 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
17:42:02.0585 6892 BCM43XX - ok
17:42:02.0635 6892 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
17:42:02.0685 6892 BDESVC - ok
17:42:02.0705 6892 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
17:42:02.0775 6892 Beep - ok
17:42:02.0825 6892 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
17:42:02.0905 6892 BFE - ok
17:42:02.0945 6892 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
17:42:03.0025 6892 BITS - ok
17:42:03.0065 6892 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
17:42:03.0105 6892 blbdrive - ok
17:42:03.0125 6892 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:42:03.0175 6892 bowser - ok
17:42:03.0185 6892 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:42:03.0265 6892 BrFiltLo - ok
17:42:03.0285 6892 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:42:03.0315 6892 BrFiltUp - ok
17:42:03.0335 6892 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
17:42:03.0375 6892 Browser - ok
17:42:03.0395 6892 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
17:42:03.0455 6892 Brserid - ok
17:42:03.0485 6892 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
17:42:03.0535 6892 BrSerWdm - ok
17:42:03.0535 6892 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
17:42:03.0555 6892 BrUsbMdm - ok
17:42:03.0565 6892 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
17:42:03.0585 6892 BrUsbSer - ok
17:42:03.0635 6892 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
17:42:03.0695 6892 BthEnum - ok
17:42:03.0715 6892 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
17:42:03.0745 6892 BTHMODEM - ok
17:42:03.0765 6892 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
17:42:03.0805 6892 BthPan - ok
17:42:03.0835 6892 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
17:42:03.0905 6892 BTHPORT - ok
17:42:03.0935 6892 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
17:42:03.0995 6892 bthserv - ok
17:42:04.0025 6892 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
17:42:04.0045 6892 BTHUSB - ok
17:42:04.0075 6892 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
17:42:04.0105 6892 btwaudio - ok
17:42:04.0125 6892 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
17:42:04.0145 6892 btwavdt - ok
17:42:04.0235 6892 [ 6DDE1E97BE4D50253DFB9090A6A62524 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:42:04.0275 6892 btwdins - ok
17:42:04.0295 6892 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
17:42:04.0305 6892 btwl2cap - ok
17:42:04.0315 6892 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
17:42:04.0325 6892 btwrchid - ok
17:42:04.0335 6892 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:42:04.0375 6892 cdfs - ok
17:42:04.0425 6892 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
17:42:04.0465 6892 cdrom - ok
17:42:04.0505 6892 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
17:42:04.0565 6892 CertPropSvc - ok
17:42:04.0625 6892 [ 7C6B5BE2696DFD2D0BF6C9EE20326EF8 ] cfwids C:\Windows\system32\drivers\cfwids.sys
17:42:04.0655 6892 cfwids - ok
17:42:04.0695 6892 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:42:04.0735 6892 circlass - ok
17:42:04.0775 6892 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
17:42:04.0805 6892 CLFS - ok
17:42:04.0865 6892 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:42:04.0885 6892 clr_optimization_v2.0.50727_32 - ok
17:42:04.0925 6892 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:42:04.0935 6892 clr_optimization_v2.0.50727_64 - ok
17:42:04.0985 6892 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:42:05.0015 6892 clr_optimization_v4.0.30319_32 - ok
17:42:05.0035 6892 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:42:05.0055 6892 clr_optimization_v4.0.30319_64 - ok
17:42:05.0075 6892 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:42:05.0105 6892 CmBatt - ok
17:42:05.0125 6892 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:42:05.0135 6892 cmdide - ok
17:42:05.0195 6892 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
17:42:05.0245 6892 CNG - ok
17:42:05.0265 6892 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:42:05.0295 6892 Compbatt - ok
17:42:05.0335 6892 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
17:42:05.0385 6892 CompositeBus - ok
17:42:05.0395 6892 COMSysApp - ok
17:42:05.0415 6892 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
17:42:05.0425 6892 crcdisk - ok
17:42:05.0475 6892 [ C8BD651E13895B93ED9EC5B4F1DF42BC ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:42:05.0495 6892 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:05.0495 6892 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:05.0535 6892 [ C0EAD9F8AB83D41FF07303C75589C2B8 ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:42:05.0575 6892 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:05.0575 6892 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:05.0615 6892 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:42:05.0675 6892 CryptSvc - ok
17:42:05.0715 6892 [ 07BA6D17E66879018B30B6C3F976EBED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:42:05.0745 6892 CTAudSvcService ( UnsignedFile.Multi.Generic ) - warning
17:42:05.0745 6892 CTAudSvcService - detected UnsignedFile.Multi.Generic (1)
17:42:05.0775 6892 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
17:42:05.0815 6892 CtClsFlt - ok
17:42:05.0895 6892 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:42:05.0935 6892 cvhsvc - ok
17:42:05.0985 6892 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:42:06.0065 6892 DcomLaunch - ok
17:42:06.0085 6892 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
17:42:06.0155 6892 defragsvc - ok
17:42:06.0185 6892 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:42:06.0245 6892 DfsC - ok
17:42:06.0275 6892 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
17:42:06.0365 6892 Dhcp - ok
17:42:06.0385 6892 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
17:42:06.0425 6892 discache - ok
17:42:06.0475 6892 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
17:42:06.0505 6892 Disk - ok
17:42:06.0575 6892 [ AF9970B93F75C104D4F4C845F12B1481 ] dlecCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\dlecserv.exe
17:42:06.0595 6892 dlecCATSCustConnectService - ok
17:42:06.0605 6892 dlec_device - ok
17:42:06.0635 6892 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:42:06.0685 6892 Dnscache - ok
17:42:06.0765 6892 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
17:42:06.0795 6892 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
17:42:06.0795 6892 DockLoginService - detected UnsignedFile.Multi.Generic (1)
17:42:06.0835 6892 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:42:06.0905 6892 dot3svc - ok
17:42:06.0935 6892 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
17:42:06.0995 6892 DPS - ok
17:42:07.0025 6892 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:42:07.0055 6892 drmkaud - ok
17:42:07.0105 6892 [ 1C7BF5B88D977A7824B174E7EC452F94 ] dwVSCD C:\Windows\system32\DRIVERS\dwvscd.sys
17:42:07.0155 6892 dwVSCD - ok
17:42:07.0195 6892 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:42:07.0235 6892 DXGKrnl - ok
17:42:07.0265 6892 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
17:42:07.0325 6892 EapHost - ok
17:42:07.0405 6892 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
17:42:07.0485 6892 ebdrv - ok
17:42:07.0505 6892 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
17:42:07.0555 6892 EFS - ok
17:42:07.0645 6892 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:42:07.0705 6892 ehRecvr - ok
17:42:07.0745 6892 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
17:42:07.0785 6892 ehSched - ok
17:42:07.0815 6892 [ 9387A484D31209D7FC3F795A787294DB ] ElbyCDFL C:\Windows\system32\Drivers\ElbyCDFL.sys
17:42:07.0845 6892 ElbyCDFL - ok
17:42:07.0865 6892 [ 702D5606CF2199E0EDEA6F0E0D27CD10 ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
17:42:07.0875 6892 ElbyCDIO - ok
17:42:07.0925 6892 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
17:42:07.0965 6892 elxstor - ok
17:42:08.0015 6892 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
17:42:08.0045 6892 epmntdrv ( UnsignedFile.Multi.Generic ) - warning
17:42:08.0045 6892 epmntdrv - detected UnsignedFile.Multi.Generic (1)
17:42:08.0065 6892 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
17:42:08.0085 6892 ErrDev - ok
17:42:08.0125 6892 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
17:42:08.0155 6892 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
17:42:08.0155 6892 EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
17:42:08.0195 6892 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
17:42:08.0265 6892 EventSystem - ok
17:42:08.0285 6892 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
17:42:08.0345 6892 exfat - ok
17:42:08.0375 6892 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:42:08.0455 6892 fastfat - ok
17:42:08.0505 6892 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
17:42:08.0585 6892 Fax - ok
17:42:08.0605 6892 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:42:08.0615 6892 fdc - ok
17:42:08.0655 6892 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
17:42:08.0725 6892 fdPHost - ok
17:42:08.0745 6892 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
17:42:08.0795 6892 FDResPub - ok
17:42:08.0815 6892 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:42:08.0825 6892 FileInfo - ok
17:42:08.0845 6892 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:42:08.0915 6892 Filetrace - ok
17:42:08.0945 6892 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:42:08.0975 6892 FLEXnet Licensing Service - ok
17:42:09.0065 6892 [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
17:42:09.0105 6892 FLEXnet Licensing Service 64 - ok
17:42:09.0135 6892 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:42:09.0165 6892 flpydisk - ok
17:42:09.0195 6892 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:42:09.0225 6892 FltMgr - ok
17:42:09.0275 6892 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
17:42:09.0335 6892 FontCache - ok
17:42:09.0385 6892 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:42:09.0405 6892 FontCache3.0.0.0 - ok
17:42:09.0525 6892 [ B4654909AB91283C196BAFB901BBD510 ] FortiSslvpnDaemon C:\Windows\SysWOW64\FortiSSLVPNdaemon.exe
17:42:09.0565 6892 FortiSslvpnDaemon - ok
17:42:09.0595 6892 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
17:42:09.0615 6892 FsDepends - ok
17:42:09.0655 6892 [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
17:42:09.0675 6892 fssfltr - ok
17:42:09.0755 6892 [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
17:42:09.0815 6892 fsssvc - ok
17:42:09.0835 6892 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:42:09.0845 6892 Fs_Rec - ok
17:42:09.0895 6892 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
17:42:09.0925 6892 fvevol - ok
17:42:09.0955 6892 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
17:42:09.0975 6892 gagp30kx - ok
17:42:10.0005 6892 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
17:42:10.0075 6892 gpsvc - ok
17:42:10.0155 6892 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:42:10.0175 6892 gupdate - ok
17:42:10.0195 6892 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:42:10.0205 6892 gupdatem - ok
17:42:10.0255 6892 [ C1B577B2169900F4CF7190C39F085794 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:42:10.0275 6892 gusvc - ok
17:42:10.0305 6892 Hardlock - ok
17:42:10.0325 6892 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
17:42:10.0375 6892 hcw85cir - ok
17:42:10.0425 6892 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
17:42:10.0465 6892 HDAudBus - ok
17:42:10.0505 6892 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
17:42:10.0525 6892 HECIx64 - ok
17:42:10.0545 6892 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
17:42:10.0585 6892 HidBatt - ok
17:42:10.0625 6892 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
17:42:10.0675 6892 HidBth - ok
17:42:10.0675 6892 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:42:10.0705 6892 HidIr - ok
17:42:10.0725 6892 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
17:42:10.0795 6892 hidserv - ok
17:42:10.0825 6892 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:42:10.0835 6892 HidUsb - ok
17:42:10.0905 6892 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
17:42:10.0935 6892 HipShieldK - ok
17:42:10.0955 6892 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:42:11.0015 6892 hkmsvc - ok
17:42:11.0045 6892 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:42:11.0095 6892 HomeGroupListener - ok
17:42:11.0125 6892 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:42:11.0165 6892 HomeGroupProvider - ok
17:42:11.0185 6892 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
17:42:11.0205 6892 HpSAMD - ok
17:42:11.0255 6892 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:42:11.0315 6892 HTTP - ok
17:42:11.0335 6892 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
17:42:11.0345 6892 hwpolicy - ok
17:42:11.0375 6892 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
17:42:11.0385 6892 i8042prt - ok
17:42:11.0435 6892 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
17:42:11.0475 6892 iaStorV - ok
17:42:11.0515 6892 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:42:11.0545 6892 idsvc - ok
17:42:11.0575 6892 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
17:42:11.0585 6892 iirsp - ok
17:42:11.0625 6892 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
17:42:11.0675 6892 IKEEXT - ok
17:42:11.0705 6892 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
17:42:11.0715 6892 intelide - ok
17:42:11.0735 6892 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:42:11.0775 6892 intelppm - ok
17:42:11.0795 6892 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:42:11.0875 6892 IPBusEnum - ok
17:42:11.0895 6892 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:42:11.0945 6892 IpFilterDriver - ok
17:42:11.0965 6892 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:42:12.0015 6892 iphlpsvc - ok
17:42:12.0035 6892 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
17:42:12.0055 6892 IPMIDRV - ok
17:42:12.0075 6892 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
17:42:12.0135 6892 IPNAT - ok
17:42:12.0155 6892 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:42:12.0225 6892 IRENUM - ok
17:42:12.0255 6892 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:42:12.0265 6892 isapnp - ok
17:42:12.0275 6892 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
17:42:12.0295 6892 iScsiPrt - ok
17:42:12.0325 6892 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
17:42:12.0345 6892 kbdclass - ok
17:42:12.0365 6892 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
17:42:12.0405 6892 kbdhid - ok
17:42:12.0415 6892 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
17:42:12.0435 6892 KeyIso - ok
17:42:12.0455 6892 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:42:12.0475 6892 KSecDD - ok
17:42:12.0505 6892 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
17:42:12.0535 6892 KSecPkg - ok
17:42:12.0555 6892 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
17:42:12.0635 6892 ksthunk - ok
17:42:12.0655 6892 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
17:42:12.0725 6892 KtmRm - ok
17:42:12.0775 6892 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
17:42:12.0845 6892 LanmanServer - ok
17:42:12.0865 6892 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:42:12.0925 6892 LanmanWorkstation - ok
17:42:13.0005 6892 [ 88E52495B47C67126B510AF53FDB0BC7 ] LBTServ C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
17:42:13.0025 6892 LBTServ - ok
17:42:13.0055 6892 [ B6552D382FF070B4ED34CBD6737277C0 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:42:13.0065 6892 LHidFilt - ok
17:42:13.0095 6892 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:42:13.0145 6892 lltdio - ok
17:42:13.0175 6892 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:42:13.0245 6892 lltdsvc - ok
17:42:13.0255 6892 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:42:13.0295 6892 lmhosts - ok
17:42:13.0305 6892 [ 73C1F563AB73D459DFFE682D66476558 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:42:13.0315 6892 LMouFilt - ok
17:42:13.0375 6892 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
17:42:13.0405 6892 LMS - ok
17:42:13.0445 6892 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
17:42:13.0475 6892 LSI_FC - ok
17:42:13.0485 6892 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
17:42:13.0495 6892 LSI_SAS - ok
17:42:13.0505 6892 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:42:13.0515 6892 LSI_SAS2 - ok
17:42:13.0525 6892 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:42:13.0545 6892 LSI_SCSI - ok
17:42:13.0565 6892 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
17:42:13.0595 6892 luafv - ok
17:42:13.0645 6892 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
17:42:13.0675 6892 MBAMProtector - ok
17:42:13.0725 6892 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:42:13.0745 6892 MBAMScheduler - ok
17:42:13.0775 6892 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:42:13.0815 6892 MBAMService - ok
17:42:13.0895 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0925 6892 McAfee SiteAdvisor Service - ok
17:42:13.0935 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0955 6892 McMPFSvc - ok
17:42:13.0955 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0965 6892 mcmscsvc - ok
17:42:13.0985 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:13.0995 6892 McNaiAnn - ok
17:42:14.0005 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:14.0015 6892 McNASvc - ok
17:42:14.0125 6892 [ BE7C8C3F8FE52D8F7826E14CF11DE949 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
17:42:14.0155 6892 McODS - ok
17:42:14.0185 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:14.0215 6892 McProxy - ok
17:42:14.0285 6892 [ D4F9C8CE2D7D5B9A1F739AADEBFFCA6F ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
17:42:14.0315 6892 McShield - ok
17:42:14.0345 6892 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:42:14.0375 6892 Mcx2Svc - ok
17:42:14.0395 6892 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
17:42:14.0405 6892 megasas - ok
17:42:14.0435 6892 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
17:42:14.0445 6892 MegaSR - ok
17:42:14.0495 6892 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
17:42:14.0525 6892 mfeapfk - ok
17:42:14.0555 6892 [ 298C065BB9E09D5F14CCD9E8244DE4A0 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
17:42:14.0585 6892 mfeavfk - ok
17:42:14.0615 6892 mfeavfk01 - ok
17:42:14.0635 6892 [ AB66AF840EF1667AA73DDA6CE987D0E1 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
17:42:14.0655 6892 mfefire - ok
17:42:14.0695 6892 [ 4D604F0B85E98C5AD99B89AF72A4E28A ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
17:42:14.0725 6892 mfefirek - ok
17:42:14.0775 6892 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
17:42:14.0815 6892 mfehidk - ok
17:42:14.0825 6892 [ 1B08579938FD72626D92F3C2219903EA ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
17:42:14.0845 6892 mferkdet - ok
17:42:14.0885 6892 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
17:42:14.0905 6892 mfevtp - ok
17:42:14.0925 6892 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
17:42:14.0945 6892 mfewfpk - ok
17:42:15.0045 6892 [ 29731E3F45A70312E82A72EA96483171 ] mitsijm2012 C:\Program Files\Autodesk\Inventor 2012\Moldflow\bin\mitsijm.exe
17:42:15.0085 6892 mitsijm2012 - ok
17:42:15.0115 6892 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
17:42:15.0155 6892 MMCSS - ok
17:42:15.0185 6892 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
17:42:15.0245 6892 Modem - ok
17:42:15.0275 6892 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:42:15.0315 6892 monitor - ok
17:42:15.0355 6892 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:42:15.0375 6892 mouclass - ok
17:42:15.0385 6892 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:42:15.0405 6892 mouhid - ok
17:42:15.0445 6892 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
17:42:15.0475 6892 mountmgr - ok
17:42:15.0545 6892 [ 24409A2A9F0351E208E14F609340FB25 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:42:15.0575 6892 MozillaMaintenance - ok
17:42:15.0595 6892 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
17:42:15.0625 6892 mpio - ok
17:42:15.0655 6892 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:42:15.0725 6892 mpsdrv - ok
17:42:15.0765 6892 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
17:42:15.0835 6892 MpsSvc - ok
17:42:15.0865 6892 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:42:15.0895 6892 MRxDAV - ok
17:42:15.0925 6892 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:42:15.0975 6892 mrxsmb - ok
17:42:16.0015 6892 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:42:16.0045 6892 mrxsmb10 - ok
17:42:16.0065 6892 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:42:16.0085 6892 mrxsmb20 - ok
17:42:16.0105 6892 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
17:42:16.0115 6892 msahci - ok
17:42:16.0145 6892 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:42:16.0155 6892 msdsm - ok
17:42:16.0175 6892 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
17:42:16.0215 6892 MSDTC - ok
17:42:16.0245 6892 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:42:16.0295 6892 Msfs - ok
17:42:16.0325 6892 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
17:42:16.0385 6892 mshidkmdf - ok
17:42:16.0405 6892 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:42:16.0415 6892 msisadrv - ok
17:42:16.0435 6892 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:42:16.0505 6892 MSiSCSI - ok
17:42:16.0505 6892 msiserver - ok
17:42:16.0565 6892 [ F928E5E72BBA15DD0CE9A26E0413D236 ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
17:42:16.0595 6892 MSK80Service - ok
17:42:16.0615 6892 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:42:16.0685 6892 MSKSSRV - ok
17:42:16.0695 6892 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:42:16.0745 6892 MSPCLOCK - ok
17:42:16.0755 6892 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:42:16.0805 6892 MSPQM - ok
17:42:16.0835 6892 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:42:16.0845 6892 MsRPC - ok
17:42:16.0875 6892 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
17:42:16.0885 6892 mssmbios - ok
17:42:16.0955 6892 MSSQL$ECSQLEXPRESS - ok
17:42:16.0985 6892 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe
17:42:17.0005 6892 MSSQLServerADHelper - ok
17:42:17.0025 6892 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:42:17.0105 6892 MSTEE - ok
17:42:17.0115 6892 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
17:42:17.0135 6892 MTConfig - ok
17:42:17.0155 6892 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
17:42:17.0165 6892 Mup - ok
17:42:17.0185 6892 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
17:42:17.0235 6892 napagent - ok
17:42:17.0265 6892 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:42:17.0305 6892 NativeWifiP - ok
17:42:17.0355 6892 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:42:17.0395 6892 NDIS - ok
17:42:17.0415 6892 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
17:42:17.0445 6892 NdisCap - ok
17:42:17.0465 6892 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:42:17.0525 6892 NdisTapi - ok
17:42:17.0555 6892 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:42:17.0595 6892 Ndisuio - ok
17:42:17.0625 6892 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:42:17.0705 6892 NdisWan - ok
17:42:17.0725 6892 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:42:17.0785 6892 NDProxy - ok
17:42:17.0825 6892 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:42:17.0885 6892 NetBIOS - ok
17:42:17.0915 6892 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
17:42:17.0975 6892 NetBT - ok
17:42:17.0995 6892 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
17:42:18.0005 6892 Netlogon - ok
17:42:18.0045 6892 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
17:42:18.0095 6892 Netman - ok
17:42:18.0165 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0185 6892 NetMsmqActivator - ok
17:42:18.0195 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0205 6892 NetPipeActivator - ok
17:42:18.0225 6892 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
17:42:18.0285 6892 netprofm - ok
17:42:18.0285 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0295 6892 NetTcpActivator - ok
17:42:18.0305 6892 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:42:18.0315 6892 NetTcpPortSharing - ok
17:42:18.0335 6892 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
17:42:18.0345 6892 nfrd960 - ok
17:42:18.0385 6892 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:42:18.0435 6892 NlaSvc - ok
17:42:18.0475 6892 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:42:18.0525 6892 Npfs - ok
17:42:18.0555 6892 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
17:42:18.0615 6892 nsi - ok
17:42:18.0625 6892 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:42:18.0695 6892 nsiproxy - ok
17:42:18.0745 6892 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:42:18.0795 6892 Ntfs - ok
17:42:18.0805 6892 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
17:42:18.0875 6892 Null - ok
17:42:18.0915 6892 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:42:18.0935 6892 nvraid - ok
17:42:18.0955 6892 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:42:18.0975 6892 nvstor - ok
17:42:19.0005 6892 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:42:19.0035 6892 nv_agp - ok
17:42:19.0085 6892 [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
17:42:19.0125 6892 O2FLASH - ok
17:42:19.0135 6892 [ 8C2953537CA19DFAA67D612407E0F33E ] O2MDGRDR C:\Windows\system32\DRIVERS\o2mdgx64.sys
17:42:19.0155 6892 O2MDGRDR - ok
17:42:19.0195 6892 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
17:42:19.0225 6892 ohci1394 - ok
17:42:19.0285 6892 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:42:19.0305 6892 ose - ok
17:42:19.0425 6892 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:42:19.0535 6892 osppsvc - ok
17:42:19.0565 6892 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:42:19.0625 6892 p2pimsvc - ok
17:42:19.0645 6892 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
17:42:19.0665 6892 p2psvc - ok
17:42:19.0695 6892 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:42:19.0725 6892 Parport - ok
17:42:19.0755 6892 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:42:19.0765 6892 partmgr - ok
17:42:19.0785 6892 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:42:19.0825 6892 PcaSvc - ok
17:42:19.0915 6892 [ 4B5F5774FF1C577B9515FDD2B5C535C5 ] PCDSRVC{1E208CE0-FB7451FF-06020200}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
17:42:19.0935 6892 PCDSRVC{1E208CE0-FB7451FF-06020200}_0 - ok
17:42:19.0975 6892 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
17:42:19.0995 6892 pci - ok
17:42:20.0015 6892 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
17:42:20.0025 6892 pciide - ok
17:42:20.0045 6892 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:42:20.0055 6892 pcmcia - ok
17:42:20.0075 6892 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
17:42:20.0085 6892 pcw - ok
17:42:20.0105 6892 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:42:20.0145 6892 PEAUTH - ok
17:42:20.0235 6892 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:42:20.0275 6892 PerfHost - ok
17:42:20.0335 6892 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
17:42:20.0415 6892 pla - ok
17:42:20.0455 6892 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:42:20.0505 6892 PlugPlay - ok
17:42:20.0535 6892 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:42:20.0575 6892 PNRPAutoReg - ok
17:42:20.0595 6892 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:42:20.0625 6892 PNRPsvc - ok
17:42:20.0645 6892 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:42:20.0695 6892 PolicyAgent - ok
17:42:20.0715 6892 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
17:42:20.0785 6892 Power - ok
17:42:20.0825 6892 [ B0E7D5D2CFAA6ED5F20EB8B84A35E593 ] pppop C:\Windows\system32\DRIVERS\pppop64.sys
17:42:20.0835 6892 pppop - ok
17:42:20.0875 6892 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:42:20.0945 6892 PptpMiniport - ok
17:42:20.0955 6892 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
17:42:20.0985 6892 Processor - ok
17:42:21.0015 6892 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
17:42:21.0045 6892 ProfSvc - ok
17:42:21.0065 6892 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:42:21.0085 6892 ProtectedStorage - ok
17:42:21.0115 6892 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:42:21.0185 6892 Psched - ok
17:42:21.0225 6892 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
17:42:21.0245 6892 PxHlpa64 - ok
17:42:21.0295 6892 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
17:42:21.0345 6892 ql2300 - ok
17:42:21.0375 6892 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
17:42:21.0385 6892 ql40xx - ok
17:42:21.0405 6892 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
17:42:21.0425 6892 QWAVE - ok
17:42:21.0435 6892 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:42:21.0465 6892 QWAVEdrv - ok
17:42:21.0485 6892 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:42:21.0545 6892 RasAcd - ok
17:42:21.0585 6892 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
17:42:21.0645 6892 RasAgileVpn - ok
17:42:21.0655 6892 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
17:42:21.0685 6892 RasAuto - ok
17:42:21.0715 6892 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:42:21.0765 6892 Rasl2tp - ok
17:42:21.0795 6892 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
17:42:21.0865 6892 RasMan - ok
17:42:21.0895 6892 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:42:21.0945 6892 RasPppoe - ok
17:42:21.0955 6892 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:42:22.0025 6892 RasSstp - ok
17:42:22.0045 6892 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:42:22.0085 6892 rdbss - ok
17:42:22.0085 6892 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
17:42:22.0115 6892 rdpbus - ok
17:42:22.0135 6892 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:42:22.0165 6892 RDPCDD - ok
17:42:22.0185 6892 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:42:22.0245 6892 RDPENCDD - ok
17:42:22.0255 6892 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
17:42:22.0285 6892 RDPREFMP - ok
17:42:22.0315 6892 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:42:22.0355 6892 RDPWD - ok
17:42:22.0395 6892 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:42:22.0425 6892 rdyboost - ok
17:42:22.0465 6892 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:42:22.0535 6892 RemoteAccess - ok
17:42:22.0555 6892 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:42:22.0625 6892 RemoteRegistry - ok
17:42:22.0675 6892 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
17:42:22.0725 6892 RFCOMM - ok
17:42:22.0745 6892 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:42:22.0805 6892 RpcEptMapper - ok
17:42:22.0835 6892 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
17:42:22.0855 6892 RpcLocator - ok
17:42:22.0885 6892 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
17:42:22.0935 6892 RpcSs - ok
17:42:22.0975 6892 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:42:23.0045 6892 rspndr - ok
17:42:23.0145 6892 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
17:42:23.0185 6892 RTL8167 - ok
17:42:23.0195 6892 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
17:42:23.0205 6892 SamSs - ok
17:42:23.0235 6892 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:42:23.0245 6892 sbp2port - ok
17:42:23.0275 6892 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:42:23.0325 6892 SCardSvr - ok
17:42:23.0355 6892 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:42:23.0405 6892 scfilter - ok
17:42:23.0445 6892 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
17:42:23.0555 6892 Schedule - ok
17:42:23.0575 6892 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
17:42:23.0615 6892 SCPolicySvc - ok
17:42:23.0655 6892 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
17:42:23.0695 6892 sdbus - ok
17:42:23.0705 6892 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:42:23.0745 6892 SDRSVC - ok
17:42:23.0785 6892 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:42:23.0855 6892 secdrv - ok
17:42:23.0885 6892 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
17:42:23.0945 6892 seclogon - ok
17:42:23.0975 6892 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
17:42:24.0035 6892 SENS - ok
17:42:24.0055 6892 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:42:24.0105 6892 SensrSvc - ok
17:42:24.0115 6892 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:42:24.0135 6892 Serenum - ok
17:42:24.0165 6892 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:42:24.0205 6892 Serial - ok
17:42:24.0225 6892 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
17:42:24.0245 6892 sermouse - ok
17:42:24.0275 6892 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
17:42:24.0355 6892 SessionEnv - ok
17:42:24.0375 6892 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
17:42:24.0425 6892 sffdisk - ok
17:42:24.0445 6892 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:42:24.0475 6892 sffp_mmc - ok
17:42:24.0475 6892 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
17:42:24.0505 6892 sffp_sd - ok
17:42:24.0535 6892 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
17:42:24.0575 6892 sfloppy - ok
17:42:24.0625 6892 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys
17:42:24.0655 6892 Sftfs - ok
17:42:24.0705 6892 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:42:24.0735 6892 sftlist - ok
17:42:24.0755 6892 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys
17:42:24.0765 6892 Sftplay - ok
17:42:24.0775 6892 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys
17:42:24.0785 6892 Sftredir - ok
17:42:24.0845 6892 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
17:42:24.0885 6892 SftService - ok
17:42:24.0895 6892 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys
17:42:24.0905 6892 Sftvol - ok
17:42:24.0925 6892 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:42:24.0935 6892 sftvsa - ok
17:42:24.0985 6892 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:42:25.0075 6892 SharedAccess - ok
17:42:25.0105 6892 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:42:25.0155 6892 ShellHWDetection - ok
17:42:25.0185 6892 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:42:25.0215 6892 SiSRaid2 - ok
17:42:25.0225 6892 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
17:42:25.0235 6892 SiSRaid4 - ok
17:42:25.0315 6892 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
17:42:25.0345 6892 SkypeUpdate - ok
17:42:25.0365 6892 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:42:25.0425 6892 Smb - ok
17:42:25.0465 6892 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:42:25.0505 6892 SNMPTRAP - ok
17:42:25.0545 6892 [ 9B24DCA429F819DB314F30EE4C6C80FD ] Sound Blaster X-Fi MB Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
17:42:25.0555 6892 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - warning
17:42:25.0555 6892 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic (1)
17:42:25.0565 6892 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
17:42:25.0585 6892 spldr - ok
17:42:25.0625 6892 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
17:42:25.0685 6892 Spooler - ok
17:42:25.0775 6892 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
17:42:25.0855 6892 sppsvc - ok
17:42:25.0885 6892 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
17:42:25.0955 6892 sppuinotify - ok
17:42:26.0025 6892 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\System32\Drivers\sptd.sys
17:42:26.0065 6892 sptd - ok
17:42:26.0135 6892 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
17:42:26.0155 6892 SQLBrowser - ok
17:42:26.0195 6892 [ 3C432A96363097870995E2A3C8B66ABD ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
17:42:26.0215 6892 SQLWriter - ok
17:42:26.0245 6892 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
17:42:26.0305 6892 srv - ok
17:42:26.0335 6892 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:42:26.0375 6892 srv2 - ok
17:42:26.0395 6892 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:42:26.0425 6892 srvnet - ok
17:42:26.0465 6892 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:42:26.0545 6892 SSDPSRV - ok
17:42:26.0555 6892 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:42:26.0595 6892 SstpSvc - ok
17:42:26.0635 6892 [ EF806D212D34B0E173BAEB3564D53E37 ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys
17:42:26.0665 6892 ss_bbus - ok
17:42:26.0685 6892 [ 08B1B34ABEBEB6AC2DEA06900C56411E ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys
17:42:26.0705 6892 ss_bmdfl - ok
17:42:26.0725 6892 [ 71A9DA6BEAA4CB54DFB827FB78600A5D ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys
17:42:26.0745 6892 ss_bmdm - ok
17:42:26.0765 6892 [ 677CDC98F8363ACCAAE783FDE1599C2A ] ss_bserd C:\Windows\system32\DRIVERS\ss_bserd.sys
17:42:26.0775 6892 ss_bserd - ok
17:42:26.0905 6892 [ DA7702025DFD169B909C4DA3126762CC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe
17:42:26.0935 6892 STacSV - ok
17:42:26.0965 6892 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
17:42:26.0985 6892 stexstor - ok
17:42:27.0025 6892 [ CAF5A9708671B14B9670260735B22C4E ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
17:42:27.0055 6892 STHDA - ok
17:42:27.0095 6892 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
17:42:27.0145 6892 stisvc - ok
17:42:27.0175 6892 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
17:42:27.0185 6892 swenum - ok
17:42:27.0215 6892 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
17:42:27.0255 6892 swprv - ok
17:42:27.0305 6892 [ 39D4B4343BA70E4B32C4531BD075B9F6 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
17:42:27.0325 6892 SynTP - ok
17:42:27.0375 6892 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
17:42:27.0445 6892 SysMain - ok
17:42:27.0465 6892 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:42:27.0495 6892 TabletInputService - ok
17:42:27.0525 6892 [ BCD6A90D6FD757CE9C29DDC850F7F231 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
17:42:27.0565 6892 tap0901 - ok
17:42:27.0605 6892 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:42:27.0645 6892 TapiSrv - ok
17:42:27.0675 6892 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
17:42:27.0755 6892 TBS - ok
17:42:27.0805 6892 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:42:27.0855 6892 Tcpip - ok
17:42:27.0885 6892 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:42:27.0935 6892 TCPIP6 - ok
17:42:27.0975 6892 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:42:28.0055 6892 tcpipreg - ok
17:42:28.0075 6892 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:42:28.0095 6892 TDPIPE - ok
17:42:28.0125 6892 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:42:28.0155 6892 TDTCP - ok
17:42:28.0185 6892 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:42:28.0215 6892 tdx - ok
17:42:28.0495 6892 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
17:42:28.0555 6892 TeamViewer7 - ok
17:42:28.0575 6892 [ F5520DBB47C60EE83024B38720ABDA24 ] teamviewervpn C:\Windows\system32\DRIVERS\teamviewervpn.sys
17:42:28.0585 6892 teamviewervpn - ok
17:42:28.0605 6892 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
17:42:28.0615 6892 TermDD - ok
17:42:28.0645 6892 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
17:42:28.0685 6892 TermService - ok
17:42:28.0725 6892 [ CE4B6956E4E12492715A53076E58761F ] TFsExDisk C:\Windows\System32\Drivers\TFsExDisk.sys
17:42:28.0745 6892 TFsExDisk - ok
17:42:28.0775 6892 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
17:42:28.0825 6892 Themes - ok
17:42:28.0845 6892 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
17:42:28.0895 6892 THREADORDER - ok
17:42:28.0905 6892 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
17:42:28.0945 6892 TrkWks - ok
17:42:28.0995 6892 [ 370A6907DDF79532A39319492B1FA38A ] truecrypt C:\Windows\system32\drivers\truecrypt.sys
17:42:29.0015 6892 truecrypt - ok
17:42:29.0075 6892 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:42:29.0135 6892 TrustedInstaller - ok
17:42:29.0175 6892 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:42:29.0255 6892 tssecsrv - ok
17:42:29.0295 6892 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:42:29.0335 6892 TsUsbFlt - ok
17:42:29.0385 6892 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:42:29.0465 6892 tunnel - ok
17:42:29.0485 6892 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
17:42:29.0495 6892 uagp35 - ok
17:42:29.0515 6892 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:42:29.0565 6892 udfs - ok
17:42:29.0595 6892 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:42:29.0635 6892 UI0Detect - ok
17:42:29.0665 6892 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:42:29.0685 6892 uliagpkx - ok
17:42:29.0725 6892 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
17:42:29.0765 6892 umbus - ok
17:42:29.0775 6892 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
17:42:29.0805 6892 UmPass - ok
17:42:29.0905 6892 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
17:42:29.0965 6892 UNS - ok
17:42:29.0975 6892 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
17:42:30.0025 6892 upnphost - ok
17:42:30.0065 6892 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:42:30.0105 6892 usbaudio - ok
17:42:30.0155 6892 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:42:30.0205 6892 usbccgp - ok
17:42:30.0245 6892 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
17:42:30.0285 6892 usbcir - ok
17:42:30.0315 6892 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
17:42:30.0355 6892 usbehci - ok
17:42:30.0385 6892 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:42:30.0425 6892 usbhub - ok
17:42:30.0435 6892 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
17:42:30.0465 6892 usbohci - ok
17:42:30.0495 6892 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:42:30.0535 6892 usbprint - ok
17:42:30.0575 6892 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:42:30.0595 6892 usbscan - ok
17:42:30.0625 6892 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:42:30.0675 6892 USBSTOR - ok
17:42:30.0705 6892 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
17:42:30.0735 6892 usbuhci - ok
17:42:30.0785 6892 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:42:30.0835 6892 usbvideo - ok
17:42:30.0875 6892 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
17:42:30.0905 6892 UxSms - ok
17:42:30.0925 6892 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
17:42:30.0935 6892 VaultSvc - ok
17:42:30.0965 6892 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:42:30.0975 6892 vdrvroot - ok
17:42:31.0015 6892 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
17:42:31.0085 6892 vds - ok
17:42:31.0105 6892 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:42:31.0125 6892 vga - ok
17:42:31.0145 6892 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
17:42:31.0185 6892 VgaSave - ok
17:42:31.0215 6892 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
17:42:31.0255 6892 vhdmp - ok
17:42:31.0255 6892 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
17:42:31.0275 6892 viaide - ok
17:42:31.0285 6892 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:42:31.0295 6892 volmgr - ok
17:42:31.0335 6892 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:42:31.0355 6892 volmgrx - ok
17:42:31.0375 6892 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:42:31.0385 6892 volsnap - ok
17:42:31.0445 6892 [ B4A73CA4EF9A02B9738CEA9AD5FE5917 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys
17:42:31.0475 6892 vpcbus - ok
17:42:31.0515 6892 [ E675FB2B48C54F09895482E2253B289C ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys
17:42:31.0555 6892 vpcnfltr - ok
17:42:31.0585 6892 [ 5FB42082B0D19A0268705F1DD343DF20 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys
17:42:31.0625 6892 vpcusb - ok
17:42:31.0655 6892 [ 63F4E10873BEB4124028C6D1A66B0968 ] vpcuxd C:\Windows\system32\DRIVERS\vpcuxd.sys
17:42:31.0675 6892 vpcuxd - ok
17:42:31.0705 6892 [ 207B6539799CC1C112661A9B620DD233 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys
17:42:31.0735 6892 vpcvmm - ok
17:42:31.0765 6892 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
17:42:31.0805 6892 vsmraid - ok
17:42:31.0855 6892 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
17:42:31.0945 6892 VSS - ok
17:42:31.0965 6892 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
17:42:31.0985 6892 vwifibus - ok
17:42:32.0005 6892 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:42:32.0045 6892 vwififlt - ok
17:42:32.0085 6892 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:42:32.0115 6892 vwifimp - ok
17:42:32.0165 6892 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
17:42:32.0255 6892 W32Time - ok
17:42:32.0265 6892 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
17:42:32.0285 6892 WacomPen - ok
17:42:32.0325 6892 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
17:42:32.0385 6892 WANARP - ok
17:42:32.0385 6892 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:42:32.0425 6892 Wanarpv6 - ok
17:42:32.0485 6892 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
17:42:32.0525 6892 WatAdminSvc - ok
17:42:32.0585 6892 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
17:42:32.0645 6892 wbengine - ok
17:42:32.0675 6892 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:42:32.0695 6892 WbioSrvc - ok
17:42:32.0715 6892 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:42:32.0775 6892 wcncsvc - ok
17:42:32.0805 6892 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:42:32.0825 6892 WcsPlugInService - ok
17:42:32.0855 6892 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
17:42:32.0875 6892 Wd - ok
17:42:32.0905 6892 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:42:32.0935 6892 Wdf01000 - ok
17:42:32.0955 6892 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:42:33.0035 6892 WdiServiceHost - ok
17:42:33.0045 6892 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:42:33.0065 6892 WdiSystemHost - ok
17:42:33.0095 6892 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
17:42:33.0135 6892 WebClient - ok
17:42:33.0155 6892 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:42:33.0215 6892 Wecsvc - ok
17:42:33.0245 6892 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:42:33.0275 6892 wercplsupport - ok
17:42:33.0305 6892 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
17:42:33.0345 6892 WerSvc - ok
17:42:33.0365 6892 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
17:42:33.0405 6892 WfpLwf - ok
17:42:33.0435 6892 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
17:42:33.0455 6892 WimFltr - ok
17:42:33.0485 6892 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:42:33.0535 6892 WIMMount - ok
17:42:33.0565 6892 WinDefend - ok
17:42:33.0585 6892 WinHttpAutoProxySvc - ok
17:42:33.0675 6892 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:42:33.0735 6892 Winmgmt - ok
17:42:33.0795 6892 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
17:42:33.0865 6892 WinRM - ok
17:42:33.0915 6892 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:42:33.0955 6892 WinUsb - ok
17:42:33.0995 6892 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
17:42:34.0035 6892 Wlansvc - ok
17:42:34.0075 6892 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:42:34.0095 6892 wlcrasvc - ok
17:42:34.0225 6892 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:42:34.0275 6892 wlidsvc - ok
17:42:34.0315 6892 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
17:42:34.0335 6892 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
17:42:34.0335 6892 wltrysvc - detected UnsignedFile.Multi.Generic (1)
17:42:34.0355 6892 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:42:34.0395 6892 WmiAcpi - ok
17:42:34.0425 6892 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:42:34.0465 6892 wmiApSrv - ok
17:42:34.0515 6892 WMPNetworkSvc - ok
17:42:34.0535 6892 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:42:34.0565 6892 WPCSvc - ok
17:42:34.0605 6892 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:42:34.0635 6892 WPDBusEnum - ok
17:42:34.0655 6892 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:42:34.0735 6892 ws2ifsl - ok
17:42:34.0755 6892 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
17:42:34.0785 6892 wscsvc - ok
17:42:34.0785 6892 WSearch - ok
17:42:34.0855 6892 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
17:42:34.0935 6892 wuauserv - ok
17:42:34.0965 6892 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:42:35.0035 6892 WudfPf - ok
17:42:35.0065 6892 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:42:35.0125 6892 WUDFRd - ok
17:42:35.0165 6892 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:42:35.0195 6892 wudfsvc - ok
17:42:35.0225 6892 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
17:42:35.0245 6892 WwanSvc - ok
17:42:35.0275 6892 ================ Scan global ===============================
17:42:35.0295 6892 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:42:35.0335 6892 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:42:35.0345 6892 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
17:42:35.0375 6892 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:42:35.0415 6892 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:42:35.0415 6892 [Global] - ok
17:42:35.0415 6892 ================ Scan MBR ==================================
17:42:35.0435 6892 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
17:42:36.0355 6892 \Device\Harddisk1\DR1 - ok
17:42:36.0655 6892 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:42:37.0305 6892 \Device\Harddisk0\DR0 - ok
17:42:37.0305 6892 ================ Scan VBR ==================================
17:42:37.0335 6892 [ D43DCF4DB91A97DC79DFDEC7EA103F65 ] \Device\Harddisk1\DR1\Partition1
17:42:37.0335 6892 \Device\Harddisk1\DR1\Partition1 - ok
17:42:37.0355 6892 [ 7B6B20C0C8E2CA60513F30BA180FCF32 ] \Device\Harddisk1\DR1\Partition2
17:42:37.0355 6892 \Device\Harddisk1\DR1\Partition2 - ok
17:42:37.0395 6892 [ 83E134DAAA10D510884842529448382E ] \Device\Harddisk0\DR0\Partition1
17:42:37.0395 6892 \Device\Harddisk0\DR0\Partition1 - ok
17:42:37.0395 6892 ============================================================
17:42:37.0395 6892 Scan finished
17:42:37.0395 6892 ============================================================
17:42:37.0405 7884 Detected object count: 10
17:42:37.0405 7884 Actual detected object count: 10
17:48:11.0876 7884 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
17:48:11.0876 7884 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
17:48:11.0876 7884 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0876 7884 Autodesk Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0876 7884 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0876 7884 Creative ALchemy AL6 Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0876 7884 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0876 7884 Creative Audio Engine Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0876 7884 CTAudSvcService ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0876 7884 CTAudSvcService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0876 7884 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0876 7884 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0886 7884 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0886 7884 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0886 7884 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0886 7884 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0886 7884 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0886 7884 Sound Blaster X-Fi MB Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:11.0886 7884 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:48:11.0886 7884 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
17:48:47.0786 7464 Deinitialize success
|
|
24.10.2012, 09:41
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatisch Ok, ist soweit ok. Bitte nun Logs mit GMER und OSAM erstellen und posten. GMER stürzt häufiger ab, wenn das Tool auch beim 2. Mal nicht will, lass es einfach weg und führ nur OSAM aus - die Online-Abfrage durch OSAM bitte überspringen. Bei OSAM bitte darauf auch achten, dass Du das Log auch als *.log und nicht *.html oder so abspeicherst. Hinweis: Zum Entpacken von OSAM bitte WinRAR oder 7zip verwenden! Stell auch unbedingt den Virenscanner ab, besonders der Scanner von McAfee meldet oft einen Fehalarm in OSAM! Downloade dir bitte  aswMBR.exe und speichere die Datei auf deinem Desktop.
Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none). Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
25.10.2012, 18:14
| #23 |
| | McAfee Echzeitscan deaktiviert sich immer automatisch Hier das Log vom GMER: GMER Logfile: Code:
ATTFilter GMER 1.0.15.15641 - hxxp://www.gmer.net
Rootkit scan 2012-10-25 17:42:50
Windows 6.1.7601 Service Pack 1
Running: 19j0dww6.exe
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\c44619fad711
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\c44619fad711@fca13e2eb0f5 0xF2 0xA7 0x8E 0x55 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\c44619fad711@c44619f4c7b8 0x5E 0xD7 0x0F 0x29 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x6B 0xCA 0x64 0xC3 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x5F 0xE6 0xA9 0x09 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x7C 0xAD 0x07 0xE8 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\c44619fad711 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\c44619fad711@fca13e2eb0f5 0xF2 0xA7 0x8E 0x55 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\c44619fad711@c44619f4c7b8 0x5E 0xD7 0x0F 0x29 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files (x86)\DAEMON Tools Lite\
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0x00 0x00 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 0
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x6B 0xCA 0x64 0xC3 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0x5F 0xE6 0xA9 0x09 ...
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x7C 0xAD 0x07 0xE8 ...
---- EOF - GMER 1.0.15 ----
Und hier das Log von aswMBR Code:
ATTFilter aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-25 17:52:13
-----------------------------
17:52:13.890 OS Version: Windows x64 6.1.7601 Service Pack 1
17:52:13.900 Number of processors: 4 586 0x2502
17:52:13.900 ComputerName: SLM002 UserName:
17:52:15.530 Initialize success
17:55:48.030 AVAST engine defs: 12102501
17:56:01.620 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1
17:56:01.630 Disk 0 Vendor: TOSHIBA_MK5056GSY LH003D Size: 476940MB BusType: 11
17:56:01.630 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T0L0-0
17:56:01.630 Disk 1 Vendor: TOSHIBA_MK5056GSY LH003D Size: 476940MB BusType: 11
17:56:01.650 Disk 1 MBR read successfully
17:56:01.650 Disk 1 MBR scan
17:56:01.660 Disk 1 Windows VISTA default MBR code
17:56:01.660 Disk 1 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
17:56:01.680 Disk 1 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 81920
17:56:01.700 Disk 1 Partition 3 00 07 HPFS/NTFS NTFS 461899 MB offset 30801920
17:56:01.720 Disk 1 scanning C:\Windows\system32\drivers
17:56:12.740 Service scanning
17:56:42.580 Modules scanning
17:56:42.590 Disk 1 trace - called modules:
17:56:42.630 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
17:56:42.630 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0xfffffa8007d9b060]
17:56:42.640 3 CLASSPNP.SYS[fffff8800145143f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8007a4f060]
17:56:43.950 AVAST engine scan C:\Windows
17:56:46.530 AVAST engine scan C:\Windows\system32
17:59:42.420 AVAST engine scan C:\Windows\system32\drivers
17:59:56.980 AVAST engine scan C:\Users\Manfred
18:04:00.131 AVAST engine scan C:\ProgramData
18:07:20.521 Scan finished successfully
18:07:44.871 Disk 1 MBR has been saved successfully to "C:\Users\Manfred\Downloads\MBR.dat"
18:07:44.871 The log file has been saved successfully to "C:\Users\Manfred\Downloads\aswMBR.txt"
|
|
25.10.2012, 21:21
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatisch Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle Scans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
26.10.2012, 15:10
| #25 |
| | McAfee Echzeitscan deaktiviert sich immer automatisch Habe ich jetzt gemacht! Code:
ATTFilter Malwarebytes Anti-Malware 1.65.1.1000 www.malwarebytes.org Datenbank Version: v2012.10.26.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Manfred :: SLM002 [Administrator] 26.10.2012 10:11:21 mbam-log-2012-10-26 (10-11-21).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|Q:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 458196 Laufzeit: 1 Stunde(n), 26 Minute(n), 29 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 10/26/2012 at 03:03 PM
Application Version : 5.6.1012
Core Rules Database Version : 9475
Trace Rules Database Version: 7287
Scan type : Complete Scan
Total Scan Time : 02:20:30
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator
Memory items scanned : 1003
Memory threats detected : 0
Registry items scanned : 79172
Registry threats detected : 0
File items scanned : 227323
File threats detected : 28
Adware.Vundo/Variant-X32[Header]
D:\INSTALL\AHNEN32\AHNGRF32.DLL
D:\INSTALL\AHNEN40\AHNGRF32.DLL
C:\PROGRAM FILES (X86)\ROMEO\AHNEN40\AHNGRF32.DLL
Trojan.Service
C:\PROGRAM FILES (X86)\MICROSOFT MONEY\SYSTEM\SERVICE.EXE
Trojan.Agent/Gen-Yoddos
C:\PROGRAM FILES (X86)\WINRAR\DEFAULT.SFX
Adware.Tracking Cookie
.doubleclick.net [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.youtube.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
.invitemedia.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
ad.yieldmanager.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
ad.yieldmanager.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
.accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
.accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
.invitemedia.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.youtube.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.youtube.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.google.at [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.google.de [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.google.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
accounts.youtube.com [ C:\USERS\MANFRED\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\PROFILE 1\COOKIES ]
Trojan.Agent/Gen-Multi
C:\WINDOWS\SYSWOW64\COOLXPLABEL.OCX
C:\WINDOWS\SYSWOW64\COOLXPCHECK.OCX
|
|
26.10.2012, 15:18
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatischCode:
ATTFilter Adware.Vundo/Variant-X32[Header]
D:\INSTALL\AHNEN32\AHNGRF32.DLL
D:\INSTALL\AHNEN40\AHNGRF32.DLL
C:\PROGRAM FILES (X86)\ROMEO\AHNEN40\AHNGRF32.DLL
__________________ Logfiles bitte immer in CODE-Tags posten |
|
26.10.2012, 19:52
| #27 |
| | McAfee Echzeitscan deaktiviert sich immer automatisch Ja, ist das ist ein Programm zur Ahnenforschung. (WinAhnen 4.3) Die 2 Dateien auf D:\ sind von der Sicherungskopie der Original CD. Deswegen wundert es mich ja besonders. Ich habe das Programm sicher schon länger als 10 Jahre. |
|
27.10.2012, 14:20
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatisch Dann sind das Fehlalarme. Die anderen auch. Sieht ok aus, da wurden nur Cookies gefunden, die können alle weg. Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat. Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
28.10.2012, 17:56
| #29 |
| | McAfee Echzeitscan deaktiviert sich immer automatisch Nein, es gibt keine weiteren Probleme mit meinen System. Alle Symtome die ich hatte sind inzwischen verschwunden. DANKE für deine Hilfe und deinen guten Anleitungen (auch für die Tips wegen den Cookies.) LG |
|
28.10.2012, 17:57
| #30 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | McAfee Echzeitscan deaktiviert sich immer automatisch Dann wären wir durch!  Die Programme, die hier zum Einsatz kamen, können alle wieder runter. Mit Hilfe von OTL kannst du auch viele Tools entfernen: Starte bitte OTL und klicke auf Bereinigung. Dies wird die meisten Tools entfernen, die wir zur Bereinigung benötigt haben. Sollte etwas bestehen bleiben, bitte mit Rechtsklick --> Löschen entfernen. Malwarebytes zu behalten ist zu empfehlen. Kannst ja 1x im Monat damit einen Scan machen, aber immer vorher ans Update denken. Es empfiehlt sich auf jeden Fall nach der beseitigten Infektion auch möglichst alle Passwörter zu ändern. Abschließend ein ganz wichtiger Punkt: Absicherung des Rechners, aktualisieren der Programme siehe http://www.trojaner-board.de/96344-a...tml#post627442
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu McAfee Echzeitscan deaktiviert sich immer automatisch |
| 5 minuten, aktivieren, allgemein, angezeigt, anhang, anti-malware, automatisch, datei, deaktiviert, funktioniert, heute, logfiles, malwarebytes, mcafee, meldung, minute, minuten, neustart, nichts, quarantäne, scan, sekunden, system, sämtliche, trojaner, verschoben |
Linear-Darstellung
