Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: PC macht ganz schön faxen vorraussichtlich wegen Delta-Search

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 16.04.2013, 09:31   #1
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Hab vor glaub ich 3 Tagen Delta-Search entfernt leider weiß ich nicht mehr genau mit welchem Programm (glaube AdwCleaner). Habs irgendwo in diesem Forum gelesen das man mit dem Delta search entfernen kann. Hat auch funktioniert aber leider läuft mein PC noch immer nicht ganz rund. Ständig stürzt mein Flashplayer ab und Firefox macht auch so seine faxen. Heute hab ich Firefox wieder gestartet und jetzt sind alle meine Lesezeichen gelöscht. Bin mir aber nicht sicher ob es wirklich an dem Delta search liegt oder wo anders. Hab mit meinen McAfee Internet Security gescannt aber leider nichts gefunden. Hoffe ihr könnt mir irgendwie helfen.

Alt 16.04.2013, 21:46   #2
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



!! Hinweis an Mitlesende !!
Dieses Thema und die Anweisungen sind nur für diesen speziellen Fall gedacht.
Sie könnten andere Computer schwer beschädigen. Öffnet bitte euer eigenes Thema.




Ich werde dir bei deinem Problem helfen. Die Bereinigung funktioniert nur, wenn du dich an die folgenden Regeln hälst:
Bitte lesen:
Regeln für die Bereinigung
  • Illegal genutzte Software
    Beim ersten Anzeichen wird der Support ohne Diskussion eingestellt. Also sorge bitte vorher dafür, dass hier nichts mehr auftaucht.
  • Keine Garantie
    Wir werden uns Mühe geben, aber einen 100% sicheren und sauberen Computer bekommst du nicht zurück. Der einzig sichere Weg ist die Formatierung mit Neuaufsetzen.
  • Keine Alleingänge
    Die Bereinigung funktioniert nur, wenn du genau das machst, was ich anweise. Installiere/deinstalliere keine Software, führe keine Scans durch, die ich dir nicht angewiesen habe. Poste dein Thema in keinem anderen Forum und folge nicht den Anweisungen anderer Helfer. Du raubst damit allen Beteiligten nur Zeit.
  • Aufmerksam lesen und nachfragen
    Lies jede Anleitung genau durch. Bei Unklarheiten bitte vorher nachfragen. Arbeite die Schritte in der Reihenfolge ab und antworte dann erst nach dem letzten Schritt oder wenn du eine Frage hast.
  • Richtig antworten
    • Nachdem du alle Schritte abgearbeitet hast gibst du mir bitte zu jedem Schritt eine Rückmeldung (Logfile oder Antwort) und das gesammelt in einer Antwort.
    • Mache deinen Namen nur dann unkenntlich, wenn es wirklich sein muss.
    • Logfiles bitte zwischen Code-Tags platzieren (im Antwortfenster das #-Symbol anklicken) sieht dann so aus:
      [CODE] (Logfile) [/CODE]
    • Hinweis in eigener Sache: Angehängte oder gezippte Logfiles erschweren mir die Arbeit massiv! Mache das also nur, wenn das Logfile zu groß ist, um es direkt zu posten.
  • Keine privaten Nachrichten
    Ich sehe es, wenn du geantwortet hast, du mußt mich nicht benachrichtigen. Schicke mir nur dann eine PM wenn ich drei Tage nicht geantwortet habe und nur dann.
  • Wie läuft die Bereinigung ab?
    Ganz grob: Analyse > Bereinigung > Kontrolle mit Updates > Fertig. Ob fertig oder nicht werde ich dir ganz deutlich mitteilen, du brauchst nicht nachzufragen.



Schritt 1: (Erinnerung: Antworte mir erst, wenn du alle Schritte abgearbeitet hast!)
Laufwerksemulationen abschalten mit Defogger
Downloade Dir bitte defogger von jpshortstuff auf Deinem Desktop und starte es:
  • Klicke nun auf den Disable Button, um die Treiber gewisser Emulatoren zu deaktivieren.
  • Defogger wird dich fragen "Defogger will forcefully ... Continue?" bestätige dies mit Ja.
  • Wenn der Scan beendet wurde (Finished), klicke auf OK.
  • Defogger fordert gegebenfalls zum Neustart auf. Bestätige dies mit OK.
Poste bitte die defogger_disable.txt von deinem Desktop.
Klicke den Re-enable Button nicht ohne Anweisung.

Schritt 2:
Scan mit aswMBR
Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
  • Starte die aswMBR.exe - (aswMBR.exe Anleitung)
    Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten".
  • Das Tool wird dich fragen, ob Du mit der aktuellen Virendefinition von AVAST! dein System scannen willst. Beantworte diese Frage bitte mit Ja. (Sollte deine Firewall fragen, bitte den Zugriff auf das Internet zulassen )
    Der Download der Definitionen kann je nach Verbindung eine Weile dauern.
  • Klicke auf Scan.
  • Warte bitte bis Scan finished successfully im DOS-Fenster steht.
  • Drücke auf Save Log und speichere diese auf dem Desktop.
Poste mir die aswMBR.txt in deiner nächsten Antwort.

Wichtig: Drücke keinesfalls einen der Fix Buttons ohne Anweisung

Hinweis: Sollte der Scan Button ausgeblendet sein, schließe das Tool und starte es erneut. Sollte der Scan abbrechen und das Programm abstürzen, dann teile mir das mit und wähle unter AV Scan die Einstellung (none).


Schritt 3:
Scan mit dem TDSS-Killer

Lese bitte folgende Anweisungen genau. Wir wollen hier noch nichts "fixen" sondern nur einen Scan Report sehen.
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Schritt 4:

Scan mit DDS+ (mit attach)
Downloade dir bitte DDS (von sUBs) und speichere die Datei auf deinem Desktop.

dds.com
  • Schließe alle laufenden Programme und starte DDS mit Doppelklick.
  • Der Desktop wird verschwinden, das ist normal.
  • Stelle folgendes ein:

    [X] dds.txt
    [X] attach.txt

  • Ändere keine Einstellung ohne Anweisung.
  • Klicke auf Start.
  • Es werden 2 Logfiles auf deinem Desktop erstellt.
    • dds.txt
    • attach.txt
  • Poste die beiden Logfile hier, möglichst in CODE-Tags.
__________________

__________________

Alt 17.04.2013, 11:31   #3
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Code:
ATTFilter
 aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-04-17 12:15:16
-----------------------------
12:15:16.577    OS Version: Windows x64 6.2.9200 
12:15:16.577    Number of processors: 8 586 0x3A09
12:15:16.578    ComputerName: THOMAS  UserName: Thomas
12:15:17.022    Initialze error 1 
12:16:14.161    AVAST engine defs: 13041700
12:16:29.244    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000003c
12:16:29.246    Disk 0 Vendor: TOSHIBA_MQ01ABD075 AX0A3H Size: 715404MB BusType: 11
12:16:29.270    Disk 0 MBR read successfully
12:16:29.272    Disk 0 MBR scan
12:16:29.313    Disk 0 unknown MBR code
12:16:29.316    Disk 0 Partition 1 00     EE          GPT           2097151 MB offset 1
12:16:29.370    Disk 0 scanning C:\Windows\system32\drivers
12:16:29.372    Service scanning
12:16:30.019    Modules scanning
12:16:30.021    Disk 0 trace - called modules:
12:16:30.046    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll iaStorA.sys 
12:16:30.053    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009de4060]
12:16:30.060    3 CLASSPNP.SYS[fffff88000a028aa] -> nt!IofCallDriver -> [0xfffffa8007d04960]
12:16:30.070    5 ACPI.sys[fffff88001001a91] -> nt!IofCallDriver -> \Device\0000003c[0xfffffa8007d00060]
12:16:30.084    AVAST engine scan C:\Windows
12:16:30.091    AVAST engine scan C:\Windows\system32
12:16:30.100    AVAST engine scan C:\Windows\system32\drivers
12:16:30.105    AVAST engine scan C:\Users\Thomas
12:16:30.110    AVAST engine scan C:\ProgramData
12:16:30.115    Scan finished successfully
12:16:47.758    Disk 0 MBR has been saved successfully to "C:\Users\Thomas\Desktop\MBR.dat"
12:16:47.795    The log file has been saved successfully to "C:\Users\Thomas\Desktop\aswMBR.txt"
         
Code:
ATTFilter
 12:21:24.0539 1940  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:21:24.0539 1940  UEFI system
12:21:24.0759 1940  ============================================================
12:21:24.0760 1940  Current date / time: 2013/04/17 12:21:24.0759
12:21:24.0760 1940  SystemInfo:
12:21:24.0760 1940  
12:21:24.0760 1940  OS Version: 6.2.9200 ServicePack: 0.0
12:21:24.0760 1940  Product type: Workstation
12:21:24.0760 1940  ComputerName: THOMAS
12:21:24.0760 1940  UserName: Thomas
12:21:24.0760 1940  Windows directory: C:\Windows
12:21:24.0760 1940  System windows directory: C:\Windows
12:21:24.0760 1940  Running under WOW64
12:21:24.0760 1940  Processor architecture: Intel x64
12:21:24.0760 1940  Number of processors: 8
12:21:24.0760 1940  Page size: 0x1000
12:21:24.0760 1940  Boot type: Normal boot
12:21:24.0760 1940  ============================================================
12:21:25.0957 1940  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:21:25.0959 1940  ============================================================
12:21:25.0959 1940  \Device\Harddisk0\DR0:
12:21:25.0959 1940  GPT partitions:
12:21:25.0960 1940  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {F4019732-066E-4E12-8273-346C5641494F}, UniqueGUID: {CD60231B-A9A1-4576-9AC7-46E59928E182}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
12:21:25.0960 1940  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2C4F1C4D-852B-4975-8A45-88CCC5974D8A}, Name: Basic data partition, StartLBA 0x82800, BlocksNum 0x2E1000
12:21:25.0960 1940  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {17139281-20F2-4940-82F9-05410B52378E}, Name: EFI system partition, StartLBA 0x363800, BlocksNum 0x82000
12:21:25.0960 1940  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {6F59EE6E-015B-4E9F-B6F6-00A882295645}, Name: Microsoft reserved partition, StartLBA 0x3E5800, BlocksNum 0x40000
12:21:25.0960 1940  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {876DD240-B0CE-478D-B254-2096DA73EBD4}, Name: Basic data partition, StartLBA 0x425800, BlocksNum 0x5398F000
12:21:25.0960 1940  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {AEE1CB64-6B16-48A5-A45B-841D85722EB4}, Name: Basic data partition, StartLBA 0x53DB4800, BlocksNum 0x3791800
12:21:25.0960 1940  MBR partitions:
12:21:25.0960 1940  ============================================================
12:21:25.0978 1940  C: <-> \Device\Harddisk0\DR0\Partition5
12:21:25.0978 1940  ============================================================
12:21:25.0978 1940  Initialize success
12:21:25.0978 1940  ============================================================
12:21:35.0463 5584  ============================================================
12:21:35.0463 5584  Scan started
12:21:35.0463 5584  Mode: Manual; SigCheck; TDLFS; 
12:21:35.0463 5584  ============================================================
12:21:35.0892 5584  ================ Scan system memory ========================
12:21:35.0892 5584  System memory - ok
12:21:35.0893 5584  ================ Scan services =============================
12:21:36.0022 5584  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
12:21:36.0084 5584  1394ohci - ok
12:21:36.0088 5584  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\Windows\system32\drivers\3ware.sys
12:21:36.0126 5584  3ware - ok
12:21:36.0164 5584  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:21:36.0223 5584  ACPI - ok
12:21:36.0238 5584  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
12:21:36.0274 5584  acpiex - ok
12:21:36.0291 5584  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
12:21:36.0328 5584  acpipagr - ok
12:21:36.0330 5584  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
12:21:36.0398 5584  AcpiPmi - ok
12:21:36.0402 5584  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
12:21:36.0439 5584  acpitime - ok
12:21:36.0456 5584  ADExchange - ok
12:21:36.0511 5584  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:21:36.0547 5584  AdobeARMservice - ok
12:21:36.0727 5584  [ 479901C99FA62D1C3261B7ACB1228DAD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:21:36.0771 5584  AdobeFlashPlayerUpdateSvc - ok
12:21:36.0814 5584  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:21:36.0856 5584  adp94xx - ok
12:21:36.0877 5584  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:21:36.0916 5584  adpahci - ok
12:21:36.0921 5584  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:21:36.0959 5584  adpu320 - ok
12:21:36.0983 5584  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:21:37.0023 5584  AeLookupSvc - ok
12:21:37.0054 5584  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD             C:\Windows\system32\drivers\afd.sys
12:21:37.0098 5584  AFD - ok
12:21:37.0113 5584  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:21:37.0149 5584  agp440 - ok
12:21:37.0173 5584  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\Windows\System32\alg.exe
12:21:37.0231 5584  ALG - ok
12:21:37.0242 5584  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
12:21:37.0281 5584  AllUserInstallAgent - ok
12:21:37.0307 5584  [ 1F500945F87AA517BD2F049256B304DD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:21:37.0364 5584  AMD External Events Utility - ok
12:21:37.0387 5584  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
12:21:37.0424 5584  AmdK8 - ok
12:21:37.0594 5584  [ 2A831A7F9031B5BBA6EF189381D65228 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:21:37.0706 5584  amdkmdag - ok
12:21:37.0724 5584  [ B9ACB2AA40709E060CDC34F13F1C9C8F ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:21:37.0771 5584  amdkmdap - ok
12:21:37.0784 5584  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
12:21:37.0819 5584  AmdPPM - ok
12:21:37.0841 5584  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:21:37.0878 5584  amdsata - ok
12:21:37.0891 5584  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:21:37.0929 5584  amdsbs - ok
12:21:37.0947 5584  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:21:37.0984 5584  amdxata - ok
12:21:38.0027 5584  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\Windows\system32\drivers\appid.sys
12:21:38.0066 5584  AppID - ok
12:21:38.0139 5584  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:21:38.0202 5584  AppIDSvc - ok
12:21:38.0220 5584  [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo         C:\Windows\System32\appinfo.dll
12:21:38.0261 5584  Appinfo - ok
12:21:38.0315 5584  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:21:38.0348 5584  Apple Mobile Device - ok
12:21:38.0362 5584  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\Windows\system32\drivers\arc.sys
12:21:38.0400 5584  arc - ok
12:21:38.0403 5584  ArcCtrl - ok
12:21:38.0413 5584  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:21:38.0449 5584  arcsas - ok
12:21:38.0452 5584  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:21:38.0492 5584  AsyncMac - ok
12:21:38.0495 5584  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:21:38.0530 5584  atapi - ok
12:21:38.0542 5584  [ 51C6777AD7649F6C3ED389151CFD9DE6 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
12:21:38.0587 5584  AthBTPort - ok
12:21:38.0617 5584  [ CA9E443BEDE3A372BD8D6CC2D62113CA ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
12:21:38.0652 5584  AtherosSvc - ok
12:21:38.0730 5584  [ F17ABC4AA1FE4989E812858261414FE5 ] athr            C:\Windows\system32\DRIVERS\athw8x.sys
12:21:38.0797 5584  athr - ok
12:21:38.0816 5584  [ 506907D2E7F3A5B67DBD39C00A788B7C ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
12:21:38.0853 5584  AtiHDAudioService - ok
12:21:38.0884 5584  [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:21:38.0920 5584  AudioEndpointBuilder - ok
12:21:38.0941 5584  [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:21:38.0984 5584  Audiosrv - ok
12:21:39.0004 5584  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:21:39.0040 5584  AxInstSV - ok
12:21:39.0070 5584  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:21:39.0114 5584  b06bdrv - ok
12:21:39.0132 5584  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
12:21:39.0168 5584  BasicDisplay - ok
12:21:39.0175 5584  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
12:21:39.0212 5584  BasicRender - ok
12:21:39.0246 5584  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:21:39.0283 5584  BDESVC - ok
12:21:39.0299 5584  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:21:39.0335 5584  Beep - ok
12:21:39.0367 5584  [ 9E6A544F465C582AB42444A217CF04DC ] BFE             C:\Windows\System32\bfe.dll
12:21:39.0434 5584  BFE - ok
12:21:39.0491 5584  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\Windows\System32\qmgr.dll
12:21:39.0536 5584  BITS - ok
12:21:39.0583 5584  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:21:39.0622 5584  Bonjour Service - ok
12:21:39.0632 5584  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:21:39.0669 5584  bowser - ok
12:21:39.0706 5584  [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:21:39.0745 5584  BrokerInfrastructure - ok
12:21:39.0765 5584  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\Windows\System32\browser.dll
12:21:39.0803 5584  Browser - ok
12:21:39.0836 5584  [ B600D86961C6DF87EEB637D4C4ABB663 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
12:21:39.0873 5584  BTATH_A2DP - ok
12:21:39.0891 5584  [ 43C965027229D9FF6E52E4C71C03B09E ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
12:21:39.0926 5584  btath_avdt - ok
12:21:39.0949 5584  [ 23CEDCD7527A26B222732A158F76EB24 ] BTATH_BUS       C:\Windows\System32\drivers\btath_bus.sys
12:21:39.0981 5584  BTATH_BUS - ok
12:21:40.0002 5584  [ 3DD64966A764BCAFF07C9DC064BD410E ] BTATH_HCRP      C:\Windows\System32\drivers\btath_hcrp.sys
12:21:40.0037 5584  BTATH_HCRP - ok
12:21:40.0057 5584  [ B68EE0721EAC305AB1C9C989CDF1AEFF ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
12:21:40.0092 5584  BTATH_LWFLT - ok
12:21:40.0108 5584  [ 057DA8351AD21AE485A11A8237DC9263 ] BTATH_RCP       C:\Windows\System32\drivers\btath_rcp.sys
12:21:40.0143 5584  BTATH_RCP - ok
12:21:40.0166 5584  [ AABB87C9AE0537A6DCDAC8AE11CC1F5A ] BTATH_VDP       C:\Windows\system32\drivers\btath_vdp.sys
12:21:40.0204 5584  BTATH_VDP - ok
12:21:40.0236 5584  [ ADA92A78C687DDC3AF0F917C44E87516 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
12:21:40.0277 5584  BtFilter - ok
12:21:40.0295 5584  [ F17DEEAC7D51D44CF1BFF8DD4F0A2B6D ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
12:21:40.0331 5584  BthAvrcpTg - ok
12:21:40.0349 5584  [ A8B20D852B07AE19A13B5D47EC4E4C3B ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
12:21:40.0385 5584  BthEnum - ok
12:21:40.0413 5584  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
12:21:40.0457 5584  BthHFEnum - ok
12:21:40.0481 5584  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
12:21:40.0518 5584  bthhfhid - ok
12:21:40.0542 5584  [ 42201C346F0B8C458E1E9CDE04D68A2C ] BthLEEnum       C:\Windows\system32\DRIVERS\BthLEEnum.sys
12:21:40.0594 5584  BthLEEnum - ok
12:21:40.0598 5584  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
12:21:40.0642 5584  BTHMODEM - ok
12:21:40.0667 5584  [ 091BB978E9504D0AD14586929431A957 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
12:21:40.0705 5584  BthPan - ok
12:21:40.0741 5584  [ B2FD839F9AF51B8580C02B89AC6C6C89 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
12:21:40.0786 5584  BTHPORT - ok
12:21:40.0807 5584  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\Windows\system32\bthserv.dll
12:21:40.0846 5584  bthserv - ok
12:21:40.0859 5584  [ 1F715957F5236D30B6020A19A4271F6A ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
12:21:40.0894 5584  BTHUSB - ok
12:21:40.0916 5584  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:21:40.0955 5584  cdfs - ok
12:21:40.0968 5584  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\Windows\System32\drivers\cdrom.sys
12:21:41.0005 5584  cdrom - ok
12:21:41.0022 5584  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:21:41.0063 5584  CertPropSvc - ok
12:21:41.0080 5584  [ DF8D07059E7237E0BE9C1421EF5F9482 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
12:21:41.0131 5584  cfwids - ok
12:21:41.0143 5584  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\Windows\System32\drivers\circlass.sys
12:21:41.0186 5584  circlass - ok
12:21:41.0217 5584  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
12:21:41.0292 5584  CLFS - ok
12:21:41.0314 5584  [ 075CCE75090786F124573A788C8656E6 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
12:21:41.0348 5584  CLVirtualDrive - ok
12:21:41.0364 5584  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
12:21:41.0402 5584  CmBatt - ok
12:21:41.0437 5584  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:21:41.0480 5584  CNG - ok
12:21:41.0501 5584  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
12:21:41.0580 5584  CompositeBus - ok
12:21:41.0583 5584  COMSysApp - ok
12:21:41.0592 5584  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\Windows\system32\drivers\condrv.sys
12:21:41.0629 5584  condrv - ok
12:21:41.0651 5584  [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:21:41.0690 5584  CryptSvc - ok
12:21:41.0708 5584  [ C4D01BD86D6B207275FC143EEA951D75 ] dam             C:\Windows\system32\drivers\dam.sys
12:21:41.0744 5584  dam - ok
12:21:41.0781 5584  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:21:41.0825 5584  DcomLaunch - ok
12:21:41.0845 5584  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:21:41.0888 5584  defragsvc - ok
12:21:41.0902 5584  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\Windows\system32\das.dll
12:21:41.0945 5584  DeviceAssociationService - ok
12:21:41.0968 5584  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
12:21:42.0008 5584  DeviceInstall - ok
12:21:42.0020 5584  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
12:21:42.0056 5584  Dfsc - ok
12:21:42.0085 5584  [ B9430166FEB246F6070A62B3554932C9 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
12:21:42.0120 5584  dg_ssudbus - ok
12:21:42.0153 5584  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:21:42.0195 5584  Dhcp - ok
12:21:42.0209 5584  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\Windows\system32\drivers\discache.sys
12:21:42.0252 5584  discache - ok
12:21:42.0266 5584  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\Windows\system32\drivers\disk.sys
12:21:42.0302 5584  disk - ok
12:21:42.0315 5584  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
12:21:42.0353 5584  dmvsc - ok
12:21:42.0381 5584  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:21:42.0417 5584  Dnscache - ok
12:21:42.0449 5584  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\Windows\System32\dot3svc.dll
12:21:42.0497 5584  dot3svc - ok
12:21:42.0516 5584  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\Windows\system32\dps.dll
12:21:42.0558 5584  DPS - ok
12:21:42.0583 5584  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:21:42.0618 5584  drmkaud - ok
12:21:42.0637 5584  [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
12:21:42.0677 5584  DsmSvc - ok
12:21:42.0725 5584  [ ED120AA770A78B5079F8C7BB5AF8A035 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:21:42.0796 5584  DXGKrnl - ok
12:21:42.0829 5584  [ CFE0E3D5EFBF0649E5900CBFCC2B95F7 ] e1yexpress      C:\Windows\system32\DRIVERS\e1y60x64.sys
12:21:42.0867 5584  e1yexpress - ok
12:21:42.0893 5584  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\Windows\System32\eapsvc.dll
12:21:42.0942 5584  Eaphost - ok
12:21:43.0017 5584  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:21:43.0103 5584  ebdrv - ok
12:21:43.0125 5584  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\Windows\System32\lsass.exe
12:21:43.0162 5584  EFS - ok
12:21:43.0176 5584  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
12:21:43.0213 5584  EhStorClass - ok
12:21:43.0223 5584  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:21:43.0259 5584  EhStorTcgDrv - ok
12:21:43.0262 5584  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\Windows\System32\drivers\errdev.sys
12:21:43.0299 5584  ErrDev - ok
12:21:43.0367 5584  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\Windows\system32\es.dll
12:21:43.0409 5584  EventSystem - ok
12:21:43.0451 5584  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:21:43.0493 5584  exfat - ok
12:21:43.0511 5584  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:21:43.0559 5584  fastfat - ok
12:21:43.0804 5584  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\Windows\system32\fxssvc.exe
12:21:43.0846 5584  Fax - ok
12:21:43.0977 5584  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\Windows\System32\drivers\fdc.sys
12:21:44.0015 5584  fdc - ok
12:21:44.0039 5584  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\Windows\system32\fdPHost.dll
12:21:44.0080 5584  fdPHost - ok
12:21:44.0093 5584  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\Windows\system32\fdrespub.dll
12:21:44.0152 5584  FDResPub - ok
12:21:44.0178 5584  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\Windows\system32\fhsvc.dll
12:21:44.0215 5584  fhsvc - ok
12:21:44.0241 5584  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:21:44.0292 5584  FileInfo - ok
12:21:44.0303 5584  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:21:44.0343 5584  Filetrace - ok
12:21:44.0356 5584  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
12:21:44.0393 5584  flpydisk - ok
12:21:44.0407 5584  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:21:44.0449 5584  FltMgr - ok
12:21:44.0490 5584  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\Windows\system32\FntCache.dll
12:21:44.0536 5584  FontCache - ok
12:21:44.0602 5584  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:21:44.0638 5584  FontCache3.0.0.0 - ok
12:21:44.0657 5584  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:21:44.0692 5584  FsDepends - ok
12:21:44.0704 5584  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:21:44.0742 5584  Fs_Rec - ok
12:21:44.0767 5584  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:21:44.0826 5584  fvevol - ok
12:21:44.0848 5584  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
12:21:44.0884 5584  FxPPM - ok
12:21:44.0894 5584  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:21:44.0932 5584  gagp30kx - ok
12:21:44.0961 5584  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:21:44.0995 5584  GEARAspiWDM - ok
12:21:45.0017 5584  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
12:21:45.0089 5584  gencounter - ok
12:21:45.0120 5584  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
12:21:45.0159 5584  GPIOClx0101 - ok
12:21:45.0207 5584  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:21:45.0255 5584  gpsvc - ok
12:21:45.0289 5584  [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:21:45.0330 5584  HdAudAddService - ok
12:21:45.0358 5584  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
12:21:45.0394 5584  HDAudBus - ok
12:21:45.0409 5584  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
12:21:45.0446 5584  HidBatt - ok
12:21:45.0450 5584  [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth          C:\Windows\System32\drivers\hidbth.sys
12:21:45.0494 5584  HidBth - ok
12:21:45.0515 5584  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
12:21:45.0552 5584  hidi2c - ok
12:21:45.0561 5584  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\Windows\System32\drivers\hidir.sys
12:21:45.0606 5584  HidIr - ok
12:21:45.0626 5584  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\Windows\system32\hidserv.dll
12:21:45.0663 5584  hidserv - ok
12:21:45.0677 5584  [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
12:21:45.0715 5584  HidUsb - ok
12:21:45.0748 5584  [ 852681A14AFEE00C0C3179429A08C868 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
12:21:45.0806 5584  HipShieldK - ok
12:21:45.0838 5584  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:21:45.0880 5584  hkmsvc - ok
12:21:45.0913 5584  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:21:45.0949 5584  HomeGroupListener - ok
12:21:45.0979 5584  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:21:46.0019 5584  HomeGroupProvider - ok
12:21:46.0103 5584  HomeNetSvc - ok
12:21:46.0130 5584  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:21:46.0200 5584  HpSAMD - ok
12:21:46.0242 5584  [ 29CB98187BB5711F7759540976D295FC ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:21:46.0288 5584  HTTP - ok
12:21:46.0297 5584  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:21:46.0332 5584  hwpolicy - ok
12:21:46.0339 5584  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
12:21:46.0376 5584  hyperkbd - ok
12:21:46.0379 5584  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
12:21:46.0424 5584  HyperVideo - ok
12:21:46.0435 5584  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
12:21:46.0471 5584  i8042prt - ok
12:21:46.0500 5584  [ F5A9FBAE160BD1837C2F1B85324A6762 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
12:21:46.0541 5584  iaStorA - ok
12:21:46.0562 5584  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:21:46.0603 5584  iaStorV - ok
12:21:46.0677 5584  [ 15C9BF6968A0990D8F4161A6ABEB7229 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
12:21:46.0734 5584  IconMan_R - ok
12:21:46.0738 5584  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:21:46.0776 5584  iirsp - ok
12:21:46.0861 5584  [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:21:46.0907 5584  IKEEXT - ok
12:21:46.0993 5584  [ DDC860724AEF8F8E42AC61E6585769C6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:21:47.0065 5584  IntcAzAudAddService - ok
12:21:47.0113 5584  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:21:47.0179 5584  Intel(R) Capability Licensing Service Interface - ok
12:21:47.0240 5584  [ 30E9FAC23E2537D82F2836CB81AEE186 ] Intel(R) ME Service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
12:21:47.0293 5584  Intel(R) ME Service - ok
12:21:47.0309 5584  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:21:47.0346 5584  intelide - ok
12:21:47.0380 5584  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\Windows\System32\drivers\intelppm.sys
12:21:47.0416 5584  intelppm - ok
12:21:47.0420 5584  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:21:47.0458 5584  IpFilterDriver - ok
12:21:47.0489 5584  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:21:47.0533 5584  iphlpsvc - ok
12:21:47.0537 5584  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
12:21:47.0572 5584  IPMIDRV - ok
12:21:47.0576 5584  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:21:47.0620 5584  IPNAT - ok
12:21:47.0649 5584  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:21:47.0689 5584  iPod Service - ok
12:21:47.0707 5584  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:21:47.0745 5584  IRENUM - ok
12:21:47.0748 5584  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:21:47.0783 5584  isapnp - ok
12:21:47.0808 5584  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
12:21:47.0853 5584  iScsiPrt - ok
12:21:47.0883 5584  [ 3C4002D339491AF73D663FFC7F6E5ECB ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
12:21:47.0920 5584  jhi_service - ok
12:21:47.0946 5584  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
12:21:47.0981 5584  kbdclass - ok
12:21:47.0995 5584  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
12:21:48.0032 5584  kbdhid - ok
12:21:48.0049 5584  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
12:21:48.0085 5584  kdnic - ok
12:21:48.0091 5584  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\Windows\system32\lsass.exe
12:21:48.0131 5584  KeyIso - ok
12:21:48.0162 5584  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:21:48.0198 5584  KSecDD - ok
12:21:48.0220 5584  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:21:48.0258 5584  KSecPkg - ok
12:21:48.0283 5584  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:21:48.0320 5584  ksthunk - ok
12:21:48.0346 5584  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:21:48.0388 5584  KtmRm - ok
12:21:48.0411 5584  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:21:48.0451 5584  LanmanServer - ok
12:21:48.0477 5584  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:21:48.0517 5584  LanmanWorkstation - ok
12:21:48.0527 5584  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:21:48.0567 5584  lltdio - ok
12:21:48.0589 5584  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:21:48.0655 5584  lltdsvc - ok
12:21:48.0669 5584  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:21:48.0708 5584  lmhosts - ok
12:21:48.0727 5584  [ 4269D44BB47A6DA5D80B11F4C8536458 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
12:21:48.0764 5584  LMS - ok
12:21:48.0792 5584  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:21:48.0831 5584  LSI_SAS - ok
12:21:48.0835 5584  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:21:48.0871 5584  LSI_SAS2 - ok
12:21:48.0874 5584  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:21:48.0913 5584  LSI_SCSI - ok
12:21:48.0925 5584  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
12:21:48.0960 5584  LSI_SSS - ok
12:21:48.0998 5584  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\Windows\System32\lsm.dll
12:21:49.0040 5584  LSM - ok
12:21:49.0055 5584  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:21:49.0097 5584  luafv - ok
12:21:49.0151 5584  [ 1104A3A552D1D249A6AB5ACCBDEFB5EF ] McAfee SiteAdvisor Service c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
12:21:49.0186 5584  McAfee SiteAdvisor Service - ok
12:21:49.0228 5584  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
12:21:49.0266 5584  McComponentHostService - ok
12:21:49.0427 5584  McMPFSvc - ok
12:21:49.0430 5584  McNaiAnn - ok
12:21:49.0511 5584  [ 93432FAEA699F7A2B4F4AC5949D0B6AB ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
12:21:49.0549 5584  McODS - ok
12:21:49.0552 5584  McOobeSv2 - ok
12:21:49.0555 5584  mcpltsvc - ok
12:21:49.0558 5584  McProxy - ok
12:21:49.0560 5584  McSchedulerSvc - ok
12:21:49.0577 5584  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\Windows\system32\drivers\megasas.sys
12:21:49.0614 5584  megasas - ok
12:21:49.0644 5584  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:21:49.0683 5584  MegaSR - ok
12:21:49.0705 5584  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
12:21:49.0741 5584  MEIx64 - ok
12:21:49.0770 5584  [ 2D53234C24B0103FDE0BE06782AA6F80 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
12:21:49.0806 5584  mfeapfk - ok
12:21:49.0835 5584  [ C0EAF4F2367C44157E1DE4817238FEC2 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
12:21:49.0873 5584  mfeavfk - ok
12:21:49.0876 5584  mfeavfk01 - ok
12:21:49.0943 5584  [ 38D1F23EE031B615A8CA51DD1E523579 ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
12:21:49.0987 5584  mfecore - ok
12:21:50.0002 5584  [ 1699EB2331A251CC7175FD1B0DDF3EB7 ] mfeelamk        C:\Windows\system32\drivers\mfeelamk.sys
12:21:50.0040 5584  mfeelamk - ok
12:21:50.0070 5584  [ 05248F2E6E1AFA6972D058C36199DEB7 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
12:21:50.0128 5584  mfefire - ok
12:21:50.0163 5584  [ 6856931F9F5B757E9D09369CC35096B9 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
12:21:50.0209 5584  mfefirek - ok
12:21:50.0233 5584  [ 62E4C929A4DB48616B1B90143B48C948 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
12:21:50.0275 5584  mfehidk - ok
12:21:50.0404 5584  [ EC7D2F2B5FF651B10599827F20ADEA3D ] mfeicfcoreocp   C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe
12:21:50.0492 5584  mfeicfcoreocp - ok
12:21:50.0510 5584  [ 9C9FC3770BD600B2D761D666234C244D ] mfencbdc        C:\Windows\system32\DRIVERS\mfencbdc.sys
12:21:50.0547 5584  mfencbdc - ok
12:21:50.0572 5584  [ 93241CC8509B622B47EEA1B8505CF511 ] mfencrk         C:\Windows\system32\DRIVERS\mfencrk.sys
12:21:50.0622 5584  mfencrk - ok
12:21:50.0653 5584  [ DC5483CAD90D95D65B618E35C66E28DF ] mfevtp          C:\Windows\system32\mfevtps.exe
12:21:50.0691 5584  mfevtp - ok
12:21:50.0725 5584  [ E18162EA85F1531964F8222CC9E25E26 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
12:21:50.0762 5584  mfewfpk - ok
12:21:50.0795 5584  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\Windows\system32\mmcss.dll
12:21:50.0850 5584  MMCSS - ok
12:21:50.0902 5584  [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup      C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
12:21:50.0953 5584  MOBKbackup - ok
12:21:50.0960 5584  [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter      C:\Windows\system32\DRIVERS\MOBK.sys
12:21:50.0995 5584  MOBKFilter - ok
12:21:51.0014 5584  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\Windows\system32\drivers\modem.sys
12:21:51.0054 5584  Modem - ok
12:21:51.0065 5584  [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:21:51.0100 5584  monitor - ok
12:21:51.0111 5584  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\Windows\System32\drivers\mouclass.sys
12:21:51.0150 5584  mouclass - ok
12:21:51.0160 5584  [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid          C:\Windows\System32\drivers\mouhid.sys
12:21:51.0197 5584  mouhid - ok
12:21:51.0211 5584  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:21:51.0276 5584  mountmgr - ok
12:21:51.0314 5584  [ 7EDBBB9351A38C6BB0FE98CFD44DB430 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:21:51.0349 5584  MozillaMaintenance - ok
12:21:51.0383 5584  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:21:51.0420 5584  mpsdrv - ok
12:21:51.0454 5584  [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:21:51.0569 5584  MpsSvc - ok
12:21:51.0674 5584  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:21:51.0737 5584  MRxDAV - ok
12:21:51.0777 5584  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:21:51.0835 5584  mrxsmb - ok
12:21:51.0846 5584  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:21:51.0884 5584  mrxsmb10 - ok
12:21:51.0899 5584  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:21:51.0937 5584  mrxsmb20 - ok
12:21:51.0957 5584  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
12:21:51.0998 5584  MsBridge - ok
12:21:52.0017 5584  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\Windows\System32\msdtc.exe
12:21:52.0072 5584  MSDTC - ok
12:21:52.0093 5584  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:21:52.0129 5584  Msfs - ok
12:21:52.0150 5584  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
12:21:52.0187 5584  msgpiowin32 - ok
12:21:52.0200 5584  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:21:52.0236 5584  mshidkmdf - ok
12:21:52.0248 5584  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
12:21:52.0285 5584  mshidumdf - ok
12:21:52.0294 5584  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:21:52.0331 5584  msisadrv - ok
12:21:52.0354 5584  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:21:52.0391 5584  MSiSCSI - ok
12:21:52.0393 5584  msiserver - ok
12:21:52.0395 5584  MSK80Service - ok
12:21:52.0404 5584  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:21:52.0443 5584  MSKSSRV - ok
12:21:52.0457 5584  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
12:21:52.0493 5584  MsLldp - ok
12:21:52.0507 5584  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:21:52.0544 5584  MSPCLOCK - ok
12:21:52.0565 5584  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:21:52.0600 5584  MSPQM - ok
12:21:52.0618 5584  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:21:52.0659 5584  MsRPC - ok
12:21:52.0677 5584  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
12:21:52.0711 5584  mssmbios - ok
12:21:52.0720 5584  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:21:52.0756 5584  MSTEE - ok
12:21:52.0765 5584  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
12:21:52.0804 5584  MTConfig - ok
12:21:52.0817 5584  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:21:52.0852 5584  Mup - ok
12:21:52.0877 5584  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
12:21:52.0932 5584  mvumis - ok
12:21:52.0964 5584  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\Windows\system32\qagentRT.dll
12:21:53.0028 5584  napagent - ok
12:21:53.0040 5584  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:21:53.0083 5584  NativeWifiP - ok
12:21:53.0099 5584  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\Windows\System32\ncasvc.dll
12:21:53.0137 5584  NcaSvc - ok
12:21:53.0156 5584  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
12:21:53.0194 5584  NcdAutoSetup - ok
12:21:53.0236 5584  [ 03CFE4108D1DE16D6C59455B5C73319C ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:21:53.0300 5584  NDIS - ok
12:21:53.0316 5584  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:21:53.0354 5584  NdisCap - ok
12:21:53.0373 5584  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:21:53.0411 5584  NdisImPlatform - ok
12:21:53.0439 5584  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:21:53.0475 5584  NdisTapi - ok
12:21:53.0488 5584  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:21:53.0524 5584  Ndisuio - ok
12:21:53.0535 5584  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:21:53.0574 5584  NdisWan - ok
12:21:53.0578 5584  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
12:21:53.0621 5584  NDISWANLEGACY - ok
12:21:53.0630 5584  [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:21:53.0665 5584  NDProxy - ok
12:21:53.0678 5584  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
12:21:53.0715 5584  Ndu - ok
12:21:53.0726 5584  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:21:53.0765 5584  NetBIOS - ok
12:21:53.0780 5584  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:21:53.0821 5584  NetBT - ok
12:21:53.0825 5584  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\Windows\system32\lsass.exe
12:21:53.0863 5584  Netlogon - ok
12:21:53.0887 5584  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\Windows\System32\netman.dll
12:21:53.0928 5584  Netman - ok
12:21:53.0958 5584  [ 5FF52E13C72838D87DAF228EC9E92C89 ] netprofm        C:\Windows\System32\netprofmsvc.dll
12:21:53.0999 5584  netprofm - ok
12:21:54.0043 5584  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:21:54.0078 5584  NetTcpPortSharing - ok
12:21:54.0161 5584  [ 3E867077C0CF367FF8FCAEC64947393E ] NetworkSupport  C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
12:21:54.0205 5584  NetworkSupport - ok
12:21:54.0236 5584  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:21:54.0270 5584  nfrd960 - ok
12:21:54.0296 5584  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:21:54.0336 5584  NlaSvc - ok
12:21:54.0351 5584  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:21:54.0389 5584  Npfs - ok
12:21:54.0401 5584  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
12:21:54.0442 5584  npsvctrig - ok
12:21:54.0460 5584  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\Windows\system32\nsisvc.dll
12:21:54.0497 5584  nsi - ok
12:21:54.0509 5584  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:21:54.0547 5584  nsiproxy - ok
12:21:54.0600 5584  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:21:54.0678 5584  Ntfs - ok
12:21:54.0702 5584  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\Windows\system32\drivers\Null.sys
12:21:54.0737 5584  Null - ok
12:21:55.0357 5584  [ F648FE6BCE0AAD9E5EA63C8BE9AD90E3 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:21:55.0523 5584  nvlddmkm - ok
12:21:55.0561 5584  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:21:55.0600 5584  nvraid - ok
12:21:55.0604 5584  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:21:55.0642 5584  nvstor - ok
12:21:55.0656 5584  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:21:55.0693 5584  nv_agp - ok
12:21:55.0719 5584  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:21:55.0761 5584  p2pimsvc - ok
12:21:55.0776 5584  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:21:55.0817 5584  p2psvc - ok
12:21:55.0826 5584  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\Windows\System32\drivers\parport.sys
12:21:55.0863 5584  Parport - ok
12:21:55.0896 5584  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:21:55.0931 5584  partmgr - ok
12:21:55.0963 5584  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:21:56.0003 5584  PcaSvc - ok
12:21:56.0028 5584  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\Windows\system32\drivers\pci.sys
12:21:56.0078 5584  pci - ok
12:21:56.0089 5584  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:21:56.0124 5584  pciide - ok
12:21:56.0140 5584  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:21:56.0179 5584  pcmcia - ok
12:21:56.0189 5584  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:21:56.0226 5584  pcw - ok
12:21:56.0245 5584  [ AECC24430301DBC6A76916E3029B6B83 ] pdc             C:\Windows\system32\drivers\pdc.sys
12:21:56.0285 5584  pdc - ok
12:21:56.0305 5584  [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:21:56.0348 5584  PEAUTH - ok
12:21:56.0413 5584  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:21:56.0450 5584  PerfHost - ok
12:21:56.0503 5584  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\Windows\system32\pla.dll
12:21:56.0561 5584  pla - ok
12:21:56.0580 5584  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:21:56.0617 5584  PlugPlay - ok
12:21:56.0709 5584  [ 0554C64486399581EC5686CCBB975DFE ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
12:21:56.0748 5584  PMBDeviceInfoProvider - ok
12:21:56.0761 5584  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:21:56.0798 5584  PNRPAutoReg - ok
12:21:56.0819 5584  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:21:56.0860 5584  PNRPsvc - ok
12:21:56.0888 5584  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:21:56.0929 5584  PolicyAgent - ok
12:21:56.0955 5584  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\Windows\system32\umpo.dll
12:21:56.0995 5584  Power - ok
12:21:57.0018 5584  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:21:57.0073 5584  PptpMiniport - ok
12:21:57.0162 5584  [ C2D3B3D0060619D5E03E696BD56FF59F ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
12:21:57.0218 5584  PrintNotify - ok
12:21:57.0245 5584  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\Windows\System32\drivers\processr.sys
12:21:57.0301 5584  Processor - ok
12:21:57.0322 5584  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\Windows\system32\profsvc.dll
12:21:57.0362 5584  ProfSvc - ok
12:21:57.0386 5584  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:21:57.0427 5584  Psched - ok
12:21:57.0440 5584  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\Windows\system32\qwave.dll
12:21:57.0481 5584  QWAVE - ok
12:21:57.0489 5584  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:21:57.0528 5584  QWAVEdrv - ok
12:21:57.0539 5584  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:21:57.0576 5584  RasAcd - ok
12:21:57.0602 5584  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:21:57.0642 5584  RasAgileVpn - ok
12:21:57.0668 5584  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\Windows\System32\rasauto.dll
12:21:57.0707 5584  RasAuto - ok
12:21:57.0723 5584  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:21:57.0765 5584  Rasl2tp - ok
12:21:57.0789 5584  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\Windows\System32\rasmans.dll
12:21:57.0831 5584  RasMan - ok
12:21:57.0844 5584  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:21:57.0881 5584  RasPppoe - ok
12:21:57.0891 5584  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:21:57.0930 5584  RasSstp - ok
12:21:57.0958 5584  [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:21:57.0996 5584  rdbss - ok
12:21:58.0005 5584  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
12:21:58.0043 5584  rdpbus - ok
12:21:58.0055 5584  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:21:58.0092 5584  RDPDR - ok
12:21:58.0119 5584  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:21:58.0156 5584  RdpVideoMiniport - ok
12:21:58.0172 5584  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:21:58.0209 5584  RDPWD - ok
12:21:58.0226 5584  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:21:58.0265 5584  rdyboost - ok
12:21:58.0296 5584  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:21:58.0336 5584  RemoteAccess - ok
12:21:58.0369 5584  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:21:58.0411 5584  RemoteRegistry - ok
12:21:58.0429 5584  [ 17EF582CBC4809F96B9E6D0543480763 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
12:21:58.0474 5584  RFCOMM - ok
12:21:58.0516 5584  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:21:58.0552 5584  RpcEptMapper - ok
12:21:58.0573 5584  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\Windows\system32\locator.exe
12:21:58.0643 5584  RpcLocator - ok
12:21:58.0681 5584  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\Windows\system32\rpcss.dll
12:21:58.0723 5584  RpcSs - ok
12:21:58.0758 5584  [ FD2F7ABB0B3C777CDC9D342CADBF0131 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
12:21:58.0796 5584  RSPCIESTOR - ok
12:21:58.0816 5584  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:21:58.0854 5584  rspndr - ok
12:21:58.0894 5584  [ 7D9DA8EC6784A9EE213C676709D46BE6 ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
12:21:58.0952 5584  RTL8168 - ok
12:21:58.0963 5584  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
12:21:58.0999 5584  s3cap - ok
12:21:59.0026 5584  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\Windows\system32\lsass.exe
12:21:59.0081 5584  SamSs - ok
12:21:59.0090 5584  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:21:59.0126 5584  sbp2port - ok
12:21:59.0149 5584  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:21:59.0189 5584  SCardSvr - ok
12:21:59.0208 5584  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:21:59.0248 5584  scfilter - ok
12:21:59.0284 5584  [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule        C:\Windows\system32\schedsvc.dll
12:21:59.0331 5584  Schedule - ok
12:21:59.0356 5584  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:21:59.0413 5584  SCPolicySvc - ok
12:21:59.0440 5584  [ 12F06525912BBEF67837DE47D87C60A9 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
12:21:59.0477 5584  sdbus - ok
12:21:59.0505 5584  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:21:59.0544 5584  SDRSVC - ok
12:21:59.0561 5584  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
12:21:59.0614 5584  sdstor - ok
12:21:59.0636 5584  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:21:59.0689 5584  secdrv - ok
12:21:59.0707 5584  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\Windows\system32\seclogon.dll
12:21:59.0749 5584  seclogon - ok
12:21:59.0762 5584  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\Windows\System32\sens.dll
12:21:59.0803 5584  SENS - ok
12:21:59.0814 5584  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:21:59.0855 5584  SensrSvc - ok
12:21:59.0866 5584  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\Windows\system32\drivers\SerCx.sys
12:21:59.0903 5584  SerCx - ok
12:21:59.0917 5584  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\Windows\System32\drivers\serenum.sys
12:21:59.0953 5584  Serenum - ok
12:21:59.0957 5584  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\Windows\System32\drivers\serial.sys
12:21:59.0995 5584  Serial - ok
12:21:59.0998 5584  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\Windows\System32\drivers\sermouse.sys
12:22:00.0034 5584  sermouse - ok
12:22:00.0057 5584  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\Windows\system32\sessenv.dll
12:22:00.0097 5584  SessionEnv - ok
12:22:00.0122 5584  [ 415B1326C40A2E1F251A3845B9C7DF31 ] SFEP            C:\Windows\System32\drivers\SFEP.sys
12:22:00.0157 5584  SFEP - ok
12:22:00.0159 5584  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
12:22:00.0197 5584  sfloppy - ok
12:22:00.0230 5584  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:22:00.0272 5584  SharedAccess - ok
12:22:00.0326 5584  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:22:00.0374 5584  ShellHWDetection - ok
12:22:00.0392 5584  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:22:00.0428 5584  SiSRaid2 - ok
12:22:00.0432 5584  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:22:00.0468 5584  SiSRaid4 - ok
12:22:00.0500 5584  [ 31EB63D59A3B097E12D07FAFD2D7A959 ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
12:22:00.0533 5584  SmbDrvI - ok
12:22:00.0545 5584  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:22:00.0583 5584  SNMPTRAP - ok
12:22:00.0662 5584  [ CC7041283CE3AEC7912636F0918B5A37 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
12:22:00.0697 5584  SOHCImp - ok
12:22:00.0711 5584  [ F318A96C1B42215F8A03D4325AB977AD ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
12:22:00.0750 5584  SOHDms - ok
12:22:00.0761 5584  [ 91B5B1FEC3F396A99C2AC3C37ACF84D0 ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
12:22:00.0797 5584  SOHDs - ok
12:22:00.0826 5584  [ AA0F913B69BCEC9655ECAAA2312B29D9 ] SOWS            C:\Windows\System32\drivers\sows.sys
12:22:00.0866 5584  SOWS - ok
12:22:00.0884 5584  [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
12:22:00.0923 5584  spaceport - ok
12:22:00.0934 5584  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
12:22:00.0973 5584  SpbCx - ok
12:22:01.0070 5584  [ C03E480E63A80D73FABE28D24D3B6B47 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
12:22:01.0106 5584  SpfService - ok
12:22:01.0275 5584  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\Windows\System32\spoolsv.exe
12:22:01.0319 5584  Spooler - ok
12:22:01.0406 5584  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:22:01.0478 5584  sppsvc - ok
12:22:01.0511 5584  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:22:01.0550 5584  srv - ok
12:22:01.0587 5584  [ 9912FDF63EC78E1977083E20DEAE4889 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:22:01.0627 5584  srv2 - ok
12:22:01.0644 5584  [ FD8B4F201B681C555A4AF41922C52557 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:22:01.0681 5584  srvnet - ok
12:22:01.0703 5584  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:22:01.0746 5584  SSDPSRV - ok
12:22:01.0756 5584  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:22:01.0796 5584  SstpSvc - ok
12:22:01.0821 5584  [ C692C94FE55CAD0633440236022C27B3 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
12:22:01.0857 5584  ssudmdm - ok
12:22:01.0869 5584  Steam Client Service - ok
12:22:01.0894 5584  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:22:01.0947 5584  stexstor - ok
12:22:01.0978 5584  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\Windows\System32\wiaservc.dll
12:22:02.0021 5584  stisvc - ok
12:22:02.0024 5584  [ C588BBD37B432CE3204E5765B459E6B2 ] storahci        C:\Windows\system32\drivers\storahci.sys
12:22:02.0061 5584  storahci - ok
12:22:02.0076 5584  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
12:22:02.0111 5584  storflt - ok
12:22:02.0133 5584  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\Windows\system32\storsvc.dll
12:22:02.0171 5584  StorSvc - ok
12:22:02.0188 5584  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:22:02.0223 5584  storvsc - ok
12:22:02.0238 5584  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\Windows\system32\svsvc.dll
12:22:02.0281 5584  svsvc - ok
12:22:02.0295 5584  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\Windows\System32\drivers\swenum.sys
12:22:02.0329 5584  swenum - ok
12:22:02.0349 5584  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\Windows\System32\swprv.dll
12:22:02.0428 5584  swprv - ok
12:22:02.0453 5584  [ 059AA9D476A71CCE202B023226B40C4A ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
12:22:02.0490 5584  SynTP - ok
12:22:02.0528 5584  [ DC21E1F06343773D7E24362DCEF7944B ] SysMain         C:\Windows\system32\sysmain.dll
12:22:02.0578 5584  SysMain - ok
12:22:02.0608 5584  [ E219BF7BCCFE4881B0C053C7E0B47ECC ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:22:02.0646 5584  SystemEventsBroker - ok
12:22:02.0662 5584  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\Windows\System32\TabSvc.dll
12:22:02.0700 5584  TabletInputService - ok
12:22:02.0719 5584  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:22:02.0760 5584  TapiSrv - ok
12:22:02.0824 5584  [ F4F78B7F39BD56BD0BFE4C4399398F6F ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:22:02.0892 5584  Tcpip - ok
12:22:02.0936 5584  [ F4F78B7F39BD56BD0BFE4C4399398F6F ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:22:03.0002 5584  TCPIP6 - ok
12:22:03.0025 5584  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:22:03.0081 5584  tcpipreg - ok
12:22:03.0094 5584  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:22:03.0133 5584  tdx - ok
12:22:03.0150 5584  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
12:22:03.0185 5584  terminpt - ok
12:22:03.0218 5584  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\Windows\System32\termsrv.dll
12:22:03.0261 5584  TermService - ok
12:22:03.0274 5584  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\Windows\system32\themeservice.dll
12:22:03.0317 5584  Themes - ok
12:22:03.0351 5584  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:22:03.0402 5584  THREADORDER - ok
12:22:03.0436 5584  [ FF4135424A79DCC2998276D8E39C9B4D ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
12:22:03.0475 5584  TimeBroker - ok
12:22:03.0504 5584  [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM             C:\Windows\system32\drivers\tpm.sys
12:22:03.0547 5584  TPM - ok
12:22:03.0574 5584  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\Windows\System32\trkwks.dll
12:22:03.0613 5584  TrkWks - ok
12:22:03.0659 5584  [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:22:03.0694 5584  TrustedInstaller - ok
12:22:03.0713 5584  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:22:03.0751 5584  TsUsbFlt - ok
12:22:03.0754 5584  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
12:22:03.0790 5584  TsUsbGD - ok
12:22:03.0805 5584  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:22:03.0844 5584  tunnel - ok
12:22:03.0855 5584  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:22:03.0890 5584  uagp35 - ok
12:22:03.0894 5584  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
12:22:03.0931 5584  UASPStor - ok
12:22:03.0955 5584  [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
12:22:03.0995 5584  UCX01000 - ok
12:22:04.0013 5584  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:22:04.0055 5584  udfs - ok
12:22:04.0077 5584  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:22:04.0118 5584  UI0Detect - ok
12:22:04.0129 5584  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:22:04.0165 5584  uliagpkx - ok
12:22:04.0174 5584  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\Windows\System32\drivers\umbus.sys
12:22:04.0211 5584  umbus - ok
12:22:04.0214 5584  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\Windows\System32\drivers\umpass.sys
12:22:04.0251 5584  UmPass - ok
12:22:04.0267 5584  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\Windows\System32\umrdp.dll
12:22:04.0310 5584  UmRdpService - ok
12:22:04.0504 5584  [ DBE2E6388379D5CC78099650541E9566 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
12:22:04.0555 5584  UNS - ok
12:22:04.0589 5584  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\Windows\System32\upnphost.dll
12:22:04.0648 5584  upnphost - ok
12:22:04.0679 5584  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
12:22:04.0711 5584  USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning
12:22:04.0711 5584  USBAAPL64 - detected UnsignedFile.Multi.Generic (1)
12:22:04.0732 5584  [ 3FBE0784E42E7BA93FCC5201D2BAFE23 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:22:04.0776 5584  usbaudio - ok
12:22:04.0794 5584  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
12:22:04.0832 5584  usbccgp - ok
12:22:04.0848 5584  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
12:22:04.0892 5584  usbcir - ok
12:22:04.0923 5584  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
12:22:04.0959 5584  usbehci - ok
12:22:04.0988 5584  [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub          C:\Windows\System32\drivers\usbhub.sys
12:22:05.0031 5584  usbhub - ok
12:22:05.0047 5584  [ C5986337DE3BF63ABD9ED4D834D34B89 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
12:22:05.0089 5584  USBHUB3 - ok
12:22:05.0104 5584  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\Windows\System32\drivers\usbohci.sys
12:22:05.0141 5584  usbohci - ok
12:22:05.0163 5584  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\Windows\System32\drivers\usbprint.sys
12:22:05.0199 5584  usbprint - ok
12:22:05.0217 5584  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
12:22:05.0256 5584  USBSTOR - ok
12:22:05.0278 5584  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
12:22:05.0314 5584  usbuhci - ok
12:22:05.0337 5584  [ 09799E701B4327097E9F63D3FE221083 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
12:22:05.0376 5584  usbvideo - ok
12:22:05.0404 5584  [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
12:22:05.0443 5584  USBXHCI - ok
12:22:05.0483 5584  [ A3C75F5220CAB16A29784433DC241A5B ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
12:22:05.0517 5584  VAIO Event Service - ok
12:22:05.0587 5584  [ 8EF62038EBD54C240486A36F9259C64A ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
12:22:05.0628 5584  VAIO Power Management - ok
12:22:05.0638 5584  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\Windows\system32\lsass.exe
12:22:05.0675 5584  VaultSvc - ok
12:22:05.0728 5584  [ 5B9E9B509770422967D2126E7D4F01EA ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
12:22:05.0777 5584  VCFw - ok
12:22:05.0831 5584  [ 3FD6585C0C2B3730DF30CFB8F41E1335 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
12:22:05.0863 5584  VCService - ok
12:22:05.0887 5584  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:22:05.0925 5584  vdrvroot - ok
12:22:05.0961 5584  [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds             C:\Windows\System32\vds.exe
12:22:06.0002 5584  vds - ok
12:22:06.0017 5584  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
12:22:06.0053 5584  VerifierExt - ok
12:22:06.0075 5584  [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
12:22:06.0117 5584  vhdmp - ok
12:22:06.0125 5584  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\Windows\system32\drivers\viaide.sys
12:22:06.0160 5584  viaide - ok
12:22:06.0165 5584  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:22:06.0204 5584  vmbus - ok
12:22:06.0207 5584  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
12:22:06.0243 5584  VMBusHID - ok
12:22:06.0269 5584  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
12:22:06.0309 5584  vmicheartbeat - ok
12:22:06.0314 5584  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:22:06.0354 5584  vmickvpexchange - ok
12:22:06.0359 5584  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\Windows\System32\ICSvc.dll
12:22:06.0398 5584  vmicrdv - ok
12:22:06.0404 5584  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
12:22:06.0442 5584  vmicshutdown - ok
12:22:06.0447 5584  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\Windows\System32\ICSvc.dll
12:22:06.0488 5584  vmictimesync - ok
12:22:06.0494 5584  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\Windows\System32\ICSvc.dll
12:22:06.0531 5584  vmicvss - ok
12:22:06.0544 5584  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:22:06.0581 5584  volmgr - ok
12:22:06.0615 5584  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:22:06.0657 5584  volmgrx - ok
12:22:06.0667 5584  [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:22:06.0706 5584  volsnap - ok
12:22:06.0740 5584  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\Windows\System32\drivers\vpci.sys
12:22:06.0948 5584  vpci - ok
12:22:06.0966 5584  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:22:07.0001 5584  vsmraid - ok
12:22:07.0044 5584  [ EA658570314042C914964FC72AB50E6B ] VSS             C:\Windows\system32\vssvc.exe
12:22:07.0099 5584  VSS - ok
12:22:07.0119 5584  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
12:22:07.0159 5584  VSTXRAID - ok
12:22:07.0213 5584  [ D2D646D4D686C6996BA1FF96E11BE570 ] VUAgent         C:\Program Files\Sony\VAIO Update\VUAgent.exe
12:22:07.0258 5584  VUAgent - ok
12:22:07.0272 5584  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:22:07.0308 5584  vwifibus - ok
12:22:07.0318 5584  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:22:07.0355 5584  vwififlt - ok
12:22:07.0363 5584  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
12:22:07.0399 5584  vwifimp - ok
12:22:07.0417 5584  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\Windows\system32\w32time.dll
12:22:07.0461 5584  W32Time - ok
12:22:07.0475 5584  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
12:22:07.0511 5584  WacomPen - ok
12:22:07.0568 5584  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:22:07.0622 5584  Wanarp - ok
12:22:07.0625 5584  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:22:07.0662 5584  Wanarpv6 - ok
12:22:07.0698 5584  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\Windows\system32\wbengine.exe
12:22:07.0748 5584  wbengine - ok
12:22:07.0776 5584  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:22:07.0831 5584  WbioSrvc - ok
12:22:07.0850 5584  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
12:22:07.0892 5584  Wcmsvc - ok
12:22:07.0917 5584  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:22:07.0958 5584  wcncsvc - ok
12:22:07.0989 5584  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:22:08.0025 5584  WcsPlugInService - ok
12:22:08.0054 5584  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\Windows\system32\drivers\wd.sys
12:22:08.0094 5584  Wd - ok
12:22:08.0122 5584  [ 6F4B5DDDC3B86091E94BC47347A78AF7 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
12:22:08.0159 5584  WdBoot - ok
12:22:08.0189 5584  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:22:08.0233 5584  Wdf01000 - ok
12:22:08.0251 5584  [ 99D404A9A0AFC4734E014EBEBAC13F8F ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
12:22:08.0290 5584  WdFilter - ok
12:22:08.0315 5584  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:22:08.0358 5584  WdiServiceHost - ok
12:22:08.0361 5584  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:22:08.0402 5584  WdiSystemHost - ok
12:22:08.0420 5584  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\Windows\System32\webclnt.dll
12:22:08.0461 5584  WebClient - ok
12:22:08.0476 5584  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:22:08.0514 5584  Wecsvc - ok
12:22:08.0529 5584  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:22:08.0576 5584  wercplsupport - ok
12:22:08.0590 5584  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:22:08.0631 5584  WerSvc - ok
12:22:08.0655 5584  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
12:22:08.0692 5584  WFPLWFS - ok
12:22:08.0719 5584  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\Windows\System32\wiarpc.dll
12:22:08.0758 5584  WiaRpc - ok
12:22:08.0776 5584  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:22:08.0812 5584  WIMMount - ok
12:22:08.0839 5584  WinDefend - ok
12:22:08.0879 5584  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:22:08.0940 5584  WinHttpAutoProxySvc - ok
12:22:08.0980 5584  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:22:09.0018 5584  Winmgmt - ok
12:22:09.0085 5584  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\Windows\system32\WsmSvc.dll
12:22:09.0145 5584  WinRM - ok
12:22:09.0178 5584  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
12:22:09.0328 5584  WinUsb - ok
12:22:09.0449 5584  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\Windows\System32\wlansvc.dll
12:22:09.0502 5584  WlanSvc - ok
12:22:09.0563 5584  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\Windows\system32\wlidsvc.dll
12:22:09.0614 5584  wlidsvc - ok
12:22:09.0645 5584  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
12:22:09.0680 5584  WmiAcpi - ok
12:22:09.0703 5584  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:22:09.0742 5584  wmiApSrv - ok
12:22:09.0759 5584  WMPNetworkSvc - ok
12:22:09.0763 5584  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
12:22:09.0801 5584  wpcfltr - ok
12:22:09.0826 5584  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:22:09.0863 5584  WPCSvc - ok
12:22:09.0886 5584  [ 39D8AB837F91B729D12D32ED81E2062F ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:22:09.0926 5584  WPDBusEnum - ok
12:22:09.0956 5584  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
12:22:10.0009 5584  WpdUpFltr - ok
12:22:10.0032 5584  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:22:10.0070 5584  ws2ifsl - ok
12:22:10.0090 5584  [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc          C:\Windows\System32\wscsvc.dll
12:22:10.0129 5584  wscsvc - ok
12:22:10.0132 5584  WSearch - ok
12:22:10.0197 5584  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\Windows\System32\WSService.dll
12:22:10.0269 5584  WSService - ok
12:22:10.0337 5584  [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv        C:\Windows\system32\wuaueng.dll
12:22:10.0398 5584  wuauserv - ok
12:22:10.0425 5584  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:22:10.0463 5584  WudfPf - ok
12:22:10.0478 5584  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
12:22:10.0516 5584  WUDFRd - ok
12:22:10.0547 5584  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:22:10.0584 5584  wudfsvc - ok
12:22:10.0589 5584  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
12:22:10.0628 5584  WUDFWpdFs - ok
12:22:10.0633 5584  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
12:22:10.0671 5584  WUDFWpdMtp - ok
12:22:10.0707 5584  [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:22:10.0747 5584  WwanSvc - ok
12:22:10.0800 5584  [ 03CD249A16CF815FFFD347DC61EF9E6D ] ZAtheros Bt and Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
12:22:10.0852 5584  ZAtheros Bt and Wlan Coex Agent ( UnsignedFile.Multi.Generic ) - warning
12:22:10.0852 5584  ZAtheros Bt and Wlan Coex Agent - detected UnsignedFile.Multi.Generic (1)
12:22:10.0859 5584  ================ Scan global ===============================
12:22:10.0898 5584  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\Windows\system32\basesrv.dll
12:22:10.0928 5584  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\Windows\system32\winsrv.dll
12:22:10.0944 5584  [ BD7C6949984D19AAA609896B675E7357 ] C:\Windows\system32\sxssrv.dll
12:22:10.0972 5584  [ 8F226143046435C75C033B0C52E90FFE ] C:\Windows\system32\services.exe
12:22:10.0975 5584  [Global] - ok
12:22:10.0975 5584  ================ Scan MBR ==================================
12:22:10.0982 5584  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:22:11.0184 5584  \Device\Harddisk0\DR0 - ok
12:22:11.0184 5584  ================ Scan VBR ==================================
12:22:11.0213 5584  [ 24949022584FD0FEEBB3717F1B7E2411 ] \Device\Harddisk0\DR0\Partition1
12:22:11.0214 5584  \Device\Harddisk0\DR0\Partition1 - ok
12:22:11.0229 5584  [ 62EE3876D12EB07CEDCA3E4761E156E4 ] \Device\Harddisk0\DR0\Partition2
12:22:11.0230 5584  \Device\Harddisk0\DR0\Partition2 - ok
12:22:11.0244 5584  [ AE43E6E457562B584EA0415EDFC053A6 ] \Device\Harddisk0\DR0\Partition3
12:22:11.0244 5584  \Device\Harddisk0\DR0\Partition3 - ok
12:22:11.0249 5584  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition4
12:22:11.0250 5584  \Device\Harddisk0\DR0\Partition4 - ok
12:22:11.0257 5584  [ 3A432037CF4D5695CCC0BD766AE3C747 ] \Device\Harddisk0\DR0\Partition5
12:22:11.0258 5584  \Device\Harddisk0\DR0\Partition5 - ok
12:22:11.0282 5584  [ C5E684D79852B767CE32A507D5FCB6E5 ] \Device\Harddisk0\DR0\Partition6
12:22:11.0283 5584  \Device\Harddisk0\DR0\Partition6 - ok
12:22:11.0283 5584  ============================================================
12:22:11.0283 5584  Scan finished
12:22:11.0283 5584  ============================================================
12:22:11.0289 5304  Detected object count: 2
12:22:11.0289 5304  Actual detected object count: 2
12:22:26.0901 5304  USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:26.0901 5304  USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
12:22:26.0901 5304  ZAtheros Bt and Wlan Coex Agent ( UnsignedFile.Multi.Generic ) - skipped by user
12:22:26.0901 5304  ZAtheros Bt and Wlan Coex Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
DDS Logfile:
Code:
ATTFilter
DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16537  BrowserJavaVersion: 10.5.0
Run by Thomas at 12:25:46 on 2013-04-17
Microsoft Windows 8  6.2.9200.0.1252.43.1031.18.8139.5451 [GMT 2:00]
.
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\dashost.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
C:\Windows\system32\mfevtps.exe
C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Windows\SysWOW64\DllHost.exe
C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files\Sony\VAIO Care\VCPerfService.exe
C:\Program Files\Sony\VAIO Update\VUAgent.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files\Sony\VAIO Improvement\vim.exe
C:\Program Files\Sony\VAIO Care\VCService.exe
C:\Program Files\Sony\VAIO Care\VCAgent.exe
C:\Windows\System32\vds.exe
C:\Windows\System32\dwm.exe
C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Windows\system32\taskhostex.exe
C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
C:\Program Files\Sony\VAIO Care\listener.exe
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.EXE
C:\Windows\explorer.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\McAfeeEx\MOCP\core\OcpTray.exe
C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_169.exe
C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
C:\Program Files\Sony\VAIO Improvement\vim.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://sony13.msn.com
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
mWinlogon: Userinit = userinit.exe
BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - 
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [ISBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"
mRun: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
mRun: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
mRun: [mcpltui_exe] "C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe" /platui
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
StartupFolder: C:\Users\Thomas\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\MCAFEE~1.LNK - C:\Program Files\McAfeeEx\MOCP\core\OcpTray.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\StartUp\MCAFEE~2.LNK - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
mPolicies-System: DisableCAD = dword:1
IE: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: Free YouTube to MP3 Converter - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - 
TCP: NameServer = 212.186.211.21 195.34.133.21
TCP: Interfaces\{251BE980-DFF6-4DCA-BC84-0D2475622A0C} : DHCPNameServer = 212.186.211.21 195.34.133.21
TCP: Interfaces\{39994AC5-F265-47E8-A4AE-A99F2C1EE947} : DHCPNameServer = 212.186.211.21 195.34.133.21
TCP: Interfaces\{39994AC5-F265-47E8-A4AE-A99F2C1EE947}\3375962756C6563737D2D4F64656D6D256832343 : DHCPNameServer = 192.168.1.1 192.168.1.1
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\MSC\McSnIePl.dll
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
SSODL: WebCheck - <orphaned>
mASetup: {A6EADE66-0000-0000-484E-7E8A45000000} - "C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Reader 11.0\Esl\AiodLite.dll",CreateReaderUserSettings
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: CIESpeechBHO Class: {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-BHO: DVDVideoSoft WebPageAdjuster Class: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - 
x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /SONYAPO 
x64-Run: [BtPreLoad] "C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe"
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [BtTray] "C:\Program Files (x86)\Bluetooth Suite\BtTray.exe"
x64-Run: [BtvStack] "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
x64-mPolicies-System: DisableCAD = dword:1
x64-IE: {7815BE26-237D-41A8-A98F-F7BD75F71086} - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
x64-IE: {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - 
x64-Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl64.dll
x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Thomas\AppData\Roaming\Mozilla\Firefox\Profiles\g1iu1cfu.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.at/
FF - plugin: c:\PROGRA~2\mcafee\msc\npMcSnFFPl.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMSS.dll
FF - plugin: C:\Program Files (x86)\McAfee\SiteAdvisor\NPMcFFPlg32.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_169.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R0 iaStorA;iaStorA;C:\Windows\System32\Drivers\iaStorA.sys [2012-10-31 645952]
R0 mfehidk;McAfee Inc. mfehidk;C:\Windows\System32\Drivers\mfehidk.sys [2012-6-22 771096]
R0 mfewfpk;McAfee Inc. mfewfpk;C:\Windows\System32\Drivers\mfewfpk.sys [2012-6-22 339776]
R1 CLVirtualDrive;CLVirtualDrive;C:\Windows\System32\Drivers\CLVirtualDrive.sys [2012-10-31 92536]
R1 MOBKFilter;MOBKFilter;C:\Windows\System32\Drivers\MOBK.sys [2013-1-30 66040]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-8-21 239616]
R2 AtherosSvc;AtherosSvc;C:\Program Files (x86)\Bluetooth Suite\AdminService.exe [2012-10-9 219776]
R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-10-31 2445968]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-4-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-10-31 128896]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2012-10-31 165760]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [2013-1-30 103472]
R2 mfecore;McAfee Anti-Malware Core;C:\Program Files\Common Files\mcafee\AMCore\mcshield.exe [2013-1-30 1007288]
R2 mfefire;McAfee Firewall Core Service;C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe [2012-10-31 218320]
R2 mfeicfcoreocp;McAfee Content Filter;C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe [2012-10-31 5622072]
R2 mfevtp;McAfee Validation Trust Protection Service;C:\Windows\System32\mfevtps.exe [2012-10-31 177680]
R2 MOBKbackup;1%;C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe [2010-4-13 231224]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [2012-7-27 474208]
R2 SampleCollector;VAIO Care Performance Service;C:\Program Files\Sony\VAIO Care\VCPerfService.exe [2012-8-6 156672]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-10-31 364416]
R2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2012-10-9 323584]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;C:\Windows\System32\Drivers\btath_flt.sys [2013-2-17 88728]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\Drivers\AtihdW86.sys [2012-8-21 98472]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;C:\Windows\System32\Drivers\btath_a2dp.sys [2013-2-17 344216]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;C:\Windows\System32\Drivers\btath_avdt.sys [2013-2-17 114840]
R3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;C:\Windows\System32\Drivers\btath_bus.sys [2013-2-17 33944]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;C:\Windows\System32\Drivers\btath_hcrp.sys [2013-2-17 178840]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;C:\Windows\System32\Drivers\btath_lwflt.sys [2013-2-17 76952]
R3 BTATH_RCP;Bluetooth AVRCP Device;C:\Windows\System32\Drivers\btath_rcp.sys [2013-2-17 135832]
R3 BTATH_VDP;Bluetooth VDP Driver;C:\Windows\System32\Drivers\btath_vdp.sys [2013-2-17 427416]
R3 BtFilter;BtFilter;C:\Windows\System32\Drivers\btfilter.sys [2013-2-17 576152]
R3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;C:\Windows\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]
R3 mfeavfk;McAfee Inc. mfeavfk;C:\Windows\System32\Drivers\mfeavfk.sys [2012-6-22 309400]
R3 mfefirek;McAfee Inc. mfefirek;C:\Windows\System32\Drivers\mfefirek.sys [2012-6-22 515528]
R3 mfencbdc;McAfee Inc. mfencbdc;C:\Windows\System32\Drivers\mfencbdc.sys [2012-11-2 328976]
R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\Windows\System32\Drivers\RtsPStor.sys [2012-10-31 339600]
R3 RTL8168;Realtek 8168 NT Driver;C:\Windows\System32\Drivers\Rt630x64.sys [2012-8-3 683664]
R3 SFEP;Sony Firmware Extension Parser;C:\Windows\System32\Drivers\SFEP.sys [2012-7-16 14336]
R3 SmbDrvI;SmbDrvI;C:\Windows\System32\Drivers\Smb_driver_Intel.sys [2012-9-27 44344]
R3 SOWS;Sony Wireless State Device;C:\Windows\System32\Drivers\sows.sys [2012-7-5 24280]
R3 VCService;VCService;C:\Program Files\Sony\VAIO Care\VCService.exe [2012-8-8 56000]
R3 VUAgent;VUAgent;C:\Program Files\Sony\VAIO Update\VUAgent.exe [2012-10-31 1286784]
S0 mfeelamk;McAfee Inc. mfeelamk;C:\Windows\System32\Drivers\mfeelamk.sys [2013-1-30 69168]
S2 ADExchange;ArcSoft Exchange Service;C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe --> C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [?]
S2 HomeNetSvc;McAfee Home Network;"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [?]
S2 McMPFSvc;McAfee Personal Firewall;"C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [?]
S2 McNaiAnn;McAfee VirusScan Announcer;"C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [?]
S2 mcpltsvc;McAfee Platform Services;C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\mcsvhost.exe /McCoreSvc --> C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\mcsvhost.exe  [?]
S2 McProxy;McAfee Proxy Service;"C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [?]
S2 McSchedulerSvc;McAfee PC Task Scheduler Service;"C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [?]
S3 cfwids;McAfee Inc. cfwids;C:\Windows\System32\Drivers\cfwids.sys [2012-11-9 69672]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudbus.sys [2012-9-19 102368]
S3 e1yexpress;Intel(R) Gigabit-Netzwerkverbindungstreiber;C:\Windows\System32\Drivers\e1y60x64.sys [2012-6-2 283136]
S3 HipShieldK;McAfee Inc. HipShieldK;C:\Windows\System32\Drivers\HipShieldK.sys [2013-1-30 197264]
S3 McComponentHostService;McAfee Security Scan Component Host Service;C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe [2013-2-5 235216]
S3 mfencrk;McAfee Inc. mfencrk;C:\Windows\System32\Drivers\mfencrk.sys [2012-11-2 97208]
S3 NetworkSupport;NetworkSupport;C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [2012-10-31 623784]
S3 SOHCImp;VAIO Content Importer;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2012-8-8 123616]
S3 SOHDms;VAIO Digital Media Server;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2012-8-8 460512]
S3 SOHDs;VAIO Device Searcher;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2012-8-8 78048]
S3 SpfService;VAIO Entertainment Common Service;C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe [2011-12-1 289952]
S3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\Drivers\ssudmdm.sys [2012-9-19 203104]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\Drivers\usbaapl64.sys [2012-9-28 53760]
S3 VAIO Power Management;VAIO Power Management;C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2012-10-31 476328]
S3 VCFw;VAIO Content Folder Watcher;C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2012-8-8 972000]
S3 WUDFWpdMtp;WUDFWpdMtp;C:\Windows\System32\Drivers\WUDFRd.sys [2012-7-26 198656]
S4 McOobeSv2;McAfee OOBE Service2;"C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe" /McCoreSvc --> C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [?]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2013-04-17 10:18:47	208216	----a-w-	C:\Windows\System32\drivers\99188240.sys
2013-04-17 09:32:45	9311288	----a-w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D55E4B80-51D0-4BFA-AD08-FD80D32071A3}\mpengine.dll
2013-04-16 11:05:56	9311288	------w-	C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2013-04-12 18:19:00	26520	----a-w-	C:\Program Files (x86)\Mozilla Firefox\plugin-hang-ui.exe
2013-04-12 18:16:15	4041728	----a-w-	C:\Windows\System32\win32k.sys
2013-04-10 18:47:17	206000	----a-w-	C:\ProgramData\Microsoft\Windows\Sqm\Manifest\Sqm10198.bin
2013-04-10 17:47:47	94	----a-w-	C:\Windows\DeleteOnReboot.bat
2013-04-05 13:48:56	--------	d-----w-	C:\Program Files (x86)\DVDVideoSoft
2013-04-05 13:48:56	--------	d-----w-	C:\Program Files (x86)\Common Files\DVDVideoSoft
2013-04-01 18:46:53	282744	------w-	C:\Windows\System32\MpSigStub.exe
2013-03-23 13:39:00	--------	d-----w-	C:\Users\Thomas\AppData\Local\ElevatedDiagnostics
2013-03-23 13:35:18	--------	d-----w-	C:\Users\Thomas\AppData\Local\Google
2013-03-23 13:35:18	--------	d-----w-	C:\ProgramData\Breowase22save
2013-03-23 13:34:10	--------	d-----w-	C:\ProgramData\InstallMate
.
==================== Find3M  ====================
.
2013-04-02 22:08:01	78176	----a-w-	C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-04-02 22:08:01	692576	----a-w-	C:\Windows\SysWow64\FlashPlayerApp.exe
2013-03-17 13:20:58	281688	----a-w-	C:\Windows\SysWow64\PnkBstrB.xtr
2013-03-17 13:20:58	281688	----a-w-	C:\Windows\SysWow64\PnkBstrB.ex0
2013-03-07 06:50:56	6991592	----a-w-	C:\Windows\System32\ntoskrnl.exe
2013-03-02 08:23:00	375808	----a-w-	C:\Windows\SysWow64\ReAgent.dll
2013-03-02 08:22:18	361984	----a-w-	C:\Windows\SysWow64\MFMediaEngine.dll
2013-03-02 02:44:56	1011200	----a-w-	C:\Windows\System32\reseteng.dll
2013-03-02 02:44:30	468992	----a-w-	C:\Windows\System32\MFMediaEngine.dll
2013-02-21 10:30:16	1766912	----a-w-	C:\Windows\SysWow64\wininet.dll
2013-02-21 10:29:39	2877440	----a-w-	C:\Windows\SysWow64\jscript9.dll
2013-02-21 10:29:37	61440	----a-w-	C:\Windows\SysWow64\iesetup.dll
2013-02-21 10:29:37	109056	----a-w-	C:\Windows\SysWow64\iesysprep.dll
2013-02-21 10:15:07	2240512	----a-w-	C:\Windows\System32\wininet.dll
2013-02-21 10:15:00	915968	----a-w-	C:\Windows\System32\uxtheme.dll
2013-02-21 10:14:09	3958784	----a-w-	C:\Windows\System32\jscript9.dll
2013-02-21 10:14:05	136704	----a-w-	C:\Windows\System32\iesysprep.dll
2013-02-19 09:53:00	534528	----a-w-	C:\Windows\SysWow64\uxtheme.dll
2013-02-15 07:58:59	39936	----a-w-	C:\Windows\apppatch\apppatch64\acspecfc.dll
2013-02-15 06:35:40	444416	----a-w-	C:\Windows\apppatch\AcSpecfc.dll
2013-02-12 01:30:04	44032	----a-w-	C:\Windows\SysWow64\UXInit.dll
2013-02-12 00:56:19	53760	----a-w-	C:\Windows\System32\UXInit.dll
2013-02-12 00:17:50	20992	----a-w-	C:\Windows\System32\drivers\usb8023.sys
2013-02-07 04:09:56	69864	----a-w-	C:\Windows\System32\drivers\pdc.sys
2013-02-07 03:34:58	10115072	----a-w-	C:\Windows\System32\twinui.dll
2013-02-07 03:33:47	2302464	----a-w-	C:\Windows\System32\authui.dll
2013-02-07 03:33:42	2146816	----a-w-	C:\Windows\System32\actxprxy.dll
2013-02-07 01:34:00	8856576	----a-w-	C:\Windows\SysWow64\twinui.dll
2013-02-07 01:33:03	2033664	----a-w-	C:\Windows\SysWow64\authui.dll
2013-02-07 01:33:01	754176	----a-w-	C:\Windows\SysWow64\actxprxy.dll
2013-02-05 22:31:11	622080	----a-w-	C:\Windows\System32\drivers\srv2.sys
2013-02-05 22:29:09	370688	----a-w-	C:\Windows\System32\drivers\mrxsmb.sys
2013-02-05 22:28:48	247808	----a-w-	C:\Windows\System32\drivers\srvnet.sys
2013-02-05 22:28:36	215552	----a-w-	C:\Windows\System32\drivers\mrxsmb20.sys
2013-02-02 11:19:44	496872	----a-w-	C:\Windows\System32\drivers\usbhub.sys
2013-02-02 11:19:44	446184	----a-w-	C:\Windows\System32\drivers\USBHUB3.SYS
2013-02-02 11:19:41	329960	----a-w-	C:\Windows\System32\drivers\storport.sys
2013-02-02 11:19:33	61672	----a-w-	C:\Windows\System32\drivers\crashdmp.sys
2013-02-02 10:54:54	1933544	----a-w-	C:\Windows\System32\drivers\ntfs.sys
2013-02-02 10:28:54	993512	----a-w-	C:\Windows\System32\drivers\ndis.sys
2013-02-02 10:28:54	2226408	----a-w-	C:\Windows\System32\drivers\tcpip.sys
2013-02-02 09:42:07	2207232	----a-w-	C:\Windows\SysWow64\PrintConfig.dll
2013-02-02 08:40:58	375808	----a-w-	C:\Windows\SysWow64\wbem\WmiPrvSE.exe
2013-02-02 08:40:55	80896	----a-w-	C:\Windows\SysWow64\tasklist.exe
2013-02-02 08:40:55	79360	----a-w-	C:\Windows\SysWow64\taskkill.exe
2013-02-02 08:40:36	155136	----a-w-	C:\Windows\SysWow64\XpsRasterService.dll
2013-02-02 08:40:35	370688	----a-w-	C:\Windows\SysWow64\WWanAPI.dll
2013-02-02 08:40:27	131072	----a-w-	C:\Windows\SysWow64\wbem\WmiDcPrv.dll
2013-02-02 08:40:26	410624	----a-w-	C:\Windows\SysWow64\wlroamextension.dll
2013-02-02 08:40:22	197632	----a-w-	C:\Windows\SysWow64\Windows.Networking.Connectivity.dll
2013-02-02 08:40:22	10792448	----a-w-	C:\Windows\SysWow64\Windows.UI.Xaml.dll
2013-02-02 08:40:01	356352	----a-w-	C:\Windows\SysWow64\SettingSync.dll
2013-02-02 08:39:59	325632	----a-w-	C:\Windows\SysWow64\schannel.dll
2013-02-02 08:39:47	18432	----a-w-	C:\Windows\SysWow64\npmproxy.dll
2013-02-02 08:39:34	55296	----a-w-	C:\Windows\SysWow64\nlaapi.dll
2013-02-02 08:39:34	15872	----a-w-	C:\Windows\SysWow64\nlmproxy.dll
2013-02-02 08:39:34	12288	----a-w-	C:\Windows\SysWow64\nlmsprep.dll
2013-02-02 08:39:33	115712	----a-w-	C:\Windows\SysWow64\netprofm.dll
2013-02-02 08:39:28	5090816	----a-w-	C:\Windows\SysWow64\mstscax.dll
2013-02-02 08:39:15	157696	----a-w-	C:\Windows\SysWow64\mbsmsapi.dll
2013-02-02 08:38:54	567808	----a-w-	C:\Windows\SysWow64\duser.dll
2013-02-02 08:24:19	107520	----a-w-	C:\Windows\System32\taskkill.exe
2013-02-02 08:24:19	102400	----a-w-	C:\Windows\System32\tasklist.exe
2013-02-02 08:23:44	228352	----a-w-	C:\Windows\System32\XpsRasterService.dll
2013-02-02 08:23:43	475136	----a-w-	C:\Windows\System32\WWanAPI.dll
2013-02-02 08:23:37	611840	----a-w-	C:\Windows\System32\wpd_ci.dll
2013-02-02 08:23:37	105472	----a-w-	C:\Windows\System32\wpdbusenum.dll
2013-02-02 08:23:30	830464	----a-w-	C:\Windows\System32\wbem\WmiPrvSD.dll
2013-02-02 08:23:28	543232	----a-w-	C:\Windows\System32\wlroamextension.dll
2013-02-02 08:23:21	13643264	----a-w-	C:\Windows\System32\Windows.UI.Xaml.dll
2013-02-02 08:23:19	293376	----a-w-	C:\Windows\System32\Windows.Networking.Connectivity.dll
2013-02-02 08:23:18	731648	----a-w-	C:\Windows\System32\win32spl.dll
2013-02-02 08:23:16	87552	----a-w-	C:\Windows\System32\wersvc.dll
2013-02-02 08:22:28	448512	----a-w-	C:\Windows\System32\SettingSync.dll
2013-02-02 08:22:22	416256	----a-w-	C:\Windows\System32\schannel.dll
2013-02-02 08:21:45	467456	----a-w-	C:\Windows\System32\netprofmsvc.dll
2013-02-02 08:21:44	385024	----a-w-	C:\Windows\System32\ncsi.dll
2013-02-02 08:21:38	5977600	----a-w-	C:\Windows\System32\mstscax.dll
2013-02-02 08:21:10	225280	----a-w-	C:\Windows\System32\mbsmsapi.dll
2013-02-02 08:20:47	260096	----a-w-	C:\Windows\System32\hotspotauth.dll
2013-02-02 08:20:31	729600	----a-w-	C:\Windows\System32\duser.dll
2013-02-02 07:25:52	297984	----a-w-	C:\Windows\System32\drivers\ks.sys
2013-02-02 07:25:26	82944	----a-w-	C:\Windows\System32\drivers\hidclass.sys
2013-02-02 07:25:23	37632	----a-w-	C:\Windows\System32\drivers\BthAvrcpTg.sys
2013-02-02 05:41:57	1437184	----a-w-	C:\Windows\SysWow64\GdiPlus.dll
2013-02-02 05:31:54	1690624	----a-w-	C:\Windows\System32\GdiPlus.dll
2013-01-29 01:57:05	35232	----a-w-	C:\Windows\System32\drivers\WdBoot.sys
2013-01-28 23:08:22	230904	----a-w-	C:\Windows\System32\drivers\WdFilter.sys
.
============= FINISH: 12:26:55,34 ===============
         
--- --- ---

[/CODE]

Code:
ATTFilter
 .
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 8
Boot Device: \Device\HarddiskVolume3
Install Date: 21.12.2012 17:14:53
System Uptime: 16.04.2013 09:21:36 (27 hours ago)
.
Motherboard: Sony Corporation |  | VAIO
Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz | N/A | 2201/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 669 GiB total, 488,31 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP25: 01.04.2013 22:02:06 - Windows Modules Installer
RP26: 10.04.2013 18:12:00 - Geplanter Prüfpunkt
RP27: 15.04.2013 18:49:04 - Installiert VAIO Improvement
.
==== Installed Programs ======================
.
Ableton Live 9 Trial
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.02) - Deutsch
AMD APP SDK Runtime
AMD Catalyst Install Manager
Apple Application Support
Apple Mobile Device Support
Apple Software Update
µTorrent
Bonjour
Catalyst Control Center
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CyberLink Power2Go 8
CyberLink PowerDVD
Far Cry® 3
FDUx86
Free Studio version 2013
Free Video to iPod Converter version 5.0.22.128
Free YouTube Download version 3.2.0.128
Intel AppUp(SM) center
Intel(R) Management Engine Components
Intel(R) Rapid Storage Technology
Intel® Trusted Connect Service Client
iTunes
Java Auto Updater
Java(TM) 7 Update 5
Java(TM) 7 Update 5 (64-bit)
KUx86
McAfee Internet Security
McAfee Online Backup
McAfee Parental Controls
McAfee Security Scan Plus
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
Mozilla Firefox 20.0.1 (x86 de)
Mozilla Maintenance Service
Mozilla Thunderbird 17.0.5 (x86 de)
OpenOffice.org 3.4.1
PlayMemories Home
Qualcomm Atheros Bluetooth Suite (64)
Realtek High Definition Audio Driver
Realtek PCIE Card Reader
Restore
Shared C Run-time for x64
Sid Meier's Civilization V
Sniper: Ghost Warrior
SSLx64
SSLx86
Steam
Supreme Commander 2
Synaptics Pointing Device Driver
TeamSpeak 3 Client
Total War: SHOGUN 2
Uplay
VAIO-Handbuch
VAIO-Support für Übertragungen
VAIO - Xperia Link
VAIO Care
VAIO Control Center
VAIO Data Restore Tool
VAIO Easy Connect
VAIO Gate
VAIO Gate Default
VAIO Gesture Control
VAIO Image Optimizer
VAIO Improvement
VAIO Media Server Settings
VAIO Movie Creator Template Data
VAIO Update
VAIO*CPU-Lüfterdiagnose
VCCx64
VCCx86
VGClientX64
VHD
VIx64
VIx86
VLC media player 2.0.5
VMLx86
VPMx64
VSSTx64
VSSTx86
VU5x64
VU5x86
VUx64
VUx86
VWSTx86
WinRAR 4.20 (64-Bit)
World of Warcraft
XperiaLinkx86
.
==== End Of File ===========================
         
Ich hoffe ich hab das so richtig gemacht
__________________

Alt 17.04.2013, 13:30   #4
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Ja Prima.


Schritt 1: (Erinnerung: Antworte mir erst, wenn du alle Schritte abgearbeitet hast!)
Deinstallation von Programmen
  • Windows XP: Start > Systemsteuerung > Software > [Programmname] > Deinstallieren
  • Windows Vista / 7: Start > Systemsteuerung > Programme und Funktionen > [Programmname] > Deinstallieren
  • ggf. Neustart zulassen
Deinstalliere - falls du es nicht absichtlich installiert hast - alles was den Zusatz "Toolbar" enthält, sowie Downloader-Anwendungen

Gehe bitte die folgende Liste durch und deinstalliere die genannten Programme, falls vorhanden:
CCleaner oder andere Registry-Cleaner, TuneUp Utilities (inkl. Language Pack), Glary Utilities, Spybot S & D (inklusive Teatimer), Zonealarm Firewall, McAfee Security Scan, Spyware Hunter, Spyware Terminator, Java 6 (alle), Pokersoftware, xp-Antispy, Hotspot Shield, iLivid, Amazon Icon, DriverEasy, Advanced Driver Updater, DriverCure, Uniblue DriverScanner, FireJump, SearchAnonymizer, SpeedMaxPC




Schritt 2:
Adware entfernen mit JRT

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




Schritt 3:
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
Digitale Freibeuter gegen Malware!
Keine Hilfe per PM!

Alt 17.04.2013, 14:00   #5
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



JRT Logfile:
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.8.4 (04.16.2013:1)
OS: Windows 8 x64
Ran by Thomas on 17.04.2013 at 14:46:20,57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\installmate"



~~~ FireFox

Failed to delete: [Folder] "C:\Program Files (x86)\Mozilla Firefox\extensions\{1fd91a9c-410c-4090-bbcc-55d3450ef433}"
Emptied folder: C:\Users\Thomas\AppData\Roaming\mozilla\firefox\profiles\g1iu1cfu.default\minidumps [43 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.04.2013 at 14:53:59,39
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
--- --- ---


Wenn ich Combofix starkte komt eine Fehlermeldung
Windows 2000 is no longer supported.

Hab aber keine ahnund wie er auf das kommt. Hab ja Win8 laufen

Oh gerade gemerkt das es nur bis Win7 läuft gibts da vielleicht ne andere version die auch Win8 support hat?


Geändert von tomtom1986 (17.04.2013 um 14:06 Uhr)

Alt 17.04.2013, 19:32   #6
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Angeblich gibts sowas experimentell .... aber wir kommen da nicht ran.

Alternativ:

Scan mit MBAR
Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________
--> PC macht ganz schön faxen vorraussichtlich wegen Delta-Search

Alt 17.04.2013, 21:24   #7
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Scan 1
Code:
ATTFilter
 Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org

Database version: v2013.04.17.10

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16540
Thomas :: THOMAS [administrator]

17.04.2013 22:02:35
mbar-log-2013-04-17 (22-02-35).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled: 
Objects scanned: 8889
Time elapsed: 8 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
c:\ProgramData\Breowase22save\514daf4825609.dll (Adware.MultiPlug) -> Delete on reboot.

(end)
         
Scan 2
Code:
ATTFilter
 Malwarebytes Anti-Rootkit BETA 1.05.0.1001
www.malwarebytes.org

Database version: v2013.04.17.10

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16540
Thomas :: THOMAS [administrator]

17.04.2013 22:21:28
mbar-log-2013-04-17 (22-21-28).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled: 
Objects scanned: 8809
Time elapsed: 16 minute(s), 12 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
         

Alt 17.04.2013, 21:26   #8
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Gut soweit. Wir Kontrollieren noch:


Schritt 1: (Erinnerung: Antworte mir erst, wenn du alle Schritte abgearbeitet hast!)

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Bitte poste das Logfile hier oder teile mir mit, dass nichts gefunden wurde.
Hinweis: Der Scan kann sehr lange (einige Stunden) dauern!


Schritt 2:
Scan mit SecurityCheck

Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.
__________________
Digitale Freibeuter gegen Malware!
Keine Hilfe per PM!

Alt 18.04.2013, 07:11   #9
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Hier ist schon noch ein File das fehlerhaft ist

Code:
ATTFilter
 ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=60b0e3b339847242a479d17d12a535d4
# engine=13641
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-04-17 10:19:29
# local_time=2013-04-18 12:19:29 (+0100, Mitteleuropäische Sommerzeit)
# country="Austria"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode=5122 16777214 66 65 6662638 129050947 0 0
# compatibility_mode=5893 16776573 100 94 38334 6826268 0 0
# scanned=273954
# found=1
# cleaned=0
# scan_time=6495
sh=2B629BD26AD7F77C2E99FD16E48AEB9108D93DF5 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H application" ac=I fn="C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\koikbfidmmddedpkmaoffeabjclneglg\1\514daf48253bf6.46590085.js"
         
Code:
ATTFilter
  Results of screen317's Security Check version 0.99.61  
   x64 (UAC is enabled)  
 Internet Explorer 9  
``````````````Antivirus/Firewall Check:`````````````` 
Windows Defender   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Adobe Flash Player 	11.7.700.169  
 Adobe Reader XI  
 Mozilla Firefox (20.0.1) 
 Mozilla Thunderbird (17.0.5) 
````````Process Check: objlist.exe by Laurent````````  
 Windows Defender MSMpEng.exe 
 Windows Defender MsMpEng.exe   
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         

Alt 18.04.2013, 09:02   #10
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Da ist gar nichts fehlerhaft. Das ist Werbung.

Scan mit ZOEK

Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/
  • Bitte deaktiviere während des Scans alle Virenscanner, da sie das Ergebnis beeinflussen
  • Starte Zoek.exe mit einem Doppelklick.
  • Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.
  • Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
    Code:
    ATTFilter
    koikbfidmmddedpkmaoffeabjclneglg;chr
             
  • Klicke auch auf "Options" und wähle die folgenden Optionen aus:
    • Auto Clean
  • Nun klicke auf "Run script" und sei geduldig bis das Skript durchläuft.
  • Wenn das Tool fertig ist wird sich Notepad mit dem Logfile öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:
  • Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken)
__________________
Digitale Freibeuter gegen Malware!
Keine Hilfe per PM!

Alt 18.04.2013, 09:17   #11
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



das funktioniert leider nicht

Fehlerstatus 0xc000012f

scheinbar für die Ausführung unter Windows nicht vorgesehen

Hat vielleicht doch noch funktioniert

Code:
ATTFilter
 
Zoek.exe Version 4.0.0.2 Updated 17-April-2013
Tool run by Thomas on 18.04.2013 at 10:18:11,18.
Microsoft Windows 8 6.2.9200  x64
Running in: Normal Mode Internet Access Detected

==== Older Logs ======================

C:\zoek-results18.04.2013-1008.log	185 bytes
         

Code:
ATTFilter
 Zoek.exe Version 4.0.0.2 Updated 17-April-2013
Tool run by Thomas on 18.04.2013 at 10:07:43,33.
Microsoft Windows 8 6.2.9200  x64
Running in: Normal Mode Internet Access Detected
         

Geändert von tomtom1986 (18.04.2013 um 09:24 Uhr)

Alt 18.04.2013, 09:35   #12
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Windows 8 ist eben bescheiden.

Probieren wir es anders.

Lade dir bitte BlitzBlank (von Emsisoft) herunter und speichere es auf den Desktop.
  • Starte die BlitzBlank.exe und bestätige die Warnung mit OK.
  • Wechsle in den Reiter Script.
  • Kopiere nun folgenden Inhalt aus der Codebox und füge ihn ins Textfeld von BlitzBlank ein:
    (Wichtig: Falls du deinen Benutzernamen unkenntlich gemacht hast (z.B. durch ***), dann mach das hier im Skript wieder rückgängig.)
    Code:
    ATTFilter
    DeleteFolder:
    c:\ProgramData\Breowase22save
    C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Extensions\koikbfidmmddedpkmaoffeabjclneglg
             
  • Schliesse jetzt alle anderen laufenden Programme und Anwendungen.
  • Drücke dann auf Jetzt ausführen.
  • Bestätige die Warnung und den Neustart jeweils mit OK. Der Rechner wird neu gestartet.
  • Nach dem Neustart findest du ein Logfile unter C:\blitzblank.log. Poste dessen Inhalt bitte hier in deinen Thread.
__________________
Digitale Freibeuter gegen Malware!
Keine Hilfe per PM!

Alt 18.04.2013, 10:21   #13
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Synatax Fehler in Zeile 3, Ungültiger Ordnerpfad

Hab das aber in den Explorer rein kopiert da hab ich schon was gefunden

Alt 18.04.2013, 13:09   #14
ryder
/// TB-Ausbilder
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Na dann lösche eben die Ordner so.
__________________
Digitale Freibeuter gegen Malware!
Keine Hilfe per PM!

Alt 18.04.2013, 13:21   #15
tomtom1986
 
PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Standard

PC macht ganz schön faxen vorraussichtlich wegen Delta-Search



Ja ist erledigt

Antwort

Themen zu PC macht ganz schön faxen vorraussichtlich wegen Delta-Search
entferne, entfernen, entfernt, faxen, firefox, flashplayer, forum, funktionier, funktioniert, gescannt, gestartet, heute, hoffe, interne, internet, lesezeichen, mcafee, nicht mehr, nichts, schön, security, stürzt, tagen, welchem, wirklich



Ähnliche Themen: PC macht ganz schön faxen vorraussichtlich wegen Delta-Search


  1. Ein ganz, ganz großes Danke schön an Schrauber!!!
    Lob, Kritik und Wünsche - 12.06.2015 (1)
  2. Schrauber macht PC´s ganz und sicher
    Lob, Kritik und Wünsche - 15.03.2015 (0)
  3. babylon search und delta search als startseite im browser
    Plagegeister aller Art und deren Bekämpfung - 06.06.2014 (9)
  4. Search d.p Engine. Ist das Delta-Search? Wenn nein, egal ich werde es nicht mehr los
    Log-Analyse und Auswertung - 27.01.2014 (11)
  5. Wegen Delta Search Log gemacht - nun etwas angst das hier noch mehr im Busch ist :/
    Log-Analyse und Auswertung - 02.11.2013 (15)
  6. Delta-search macht Ärger und folgender Trojaner entdeckt: TR/Patched.Ren.Gen
    Plagegeister aller Art und deren Bekämpfung - 25.10.2013 (10)
  7. Delta Search und Babylon search - Malware durch Freeware, Windows Vista
    Plagegeister aller Art und deren Bekämpfung - 16.07.2013 (37)
  8. Delta Search
    Plagegeister aller Art und deren Bekämpfung - 26.06.2013 (9)
  9. Delta Search mit Spybot entfernt; Delta Search taucht jedoch in neuen Tab trotzdem auf
    Plagegeister aller Art und deren Bekämpfung - 16.04.2013 (10)
  10. Delta Search
    Plagegeister aller Art und deren Bekämpfung - 03.04.2013 (6)
  11. Delta Search und Babylon Search entfernt - Ist nun alles weg?
    Log-Analyse und Auswertung - 16.03.2013 (18)
  12. Komische Daten in Temp Ordner und Avira macht faxen
    Plagegeister aller Art und deren Bekämpfung - 17.05.2012 (1)
  13. Nervigen Virus! Maus öffnet beim drüberfahren alles! Und macht weitere faxen!
    Plagegeister aller Art und deren Bekämpfung - 23.03.2012 (9)
  14. Internet Exploerer/Firefox "google" macht faxen
    Log-Analyse und Auswertung - 26.09.2008 (6)
  15. Bios macht durch Virus Faxen
    Mülltonne - 19.08.2008 (1)
  16. hardware macht faxen ka warumm
    Netzwerk und Hardware - 14.06.2007 (1)
  17. Ganz schön verseucht, oder?!?!?
    Log-Analyse und Auswertung - 22.11.2005 (4)

Zum Thema PC macht ganz schön faxen vorraussichtlich wegen Delta-Search - Hab vor glaub ich 3 Tagen Delta-Search entfernt leider weiß ich nicht mehr genau mit welchem Programm (glaube AdwCleaner). Habs irgendwo in diesem Forum gelesen das man mit dem Delta - PC macht ganz schön faxen vorraussichtlich wegen Delta-Search...
Archiv
Du betrachtest: PC macht ganz schön faxen vorraussichtlich wegen Delta-Search auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.