Delta Search
 

Hallo Zusammen,

Ich bin neu hier auf dem Forum neu und weiß auch nicht so genau wie das hier alles geht, habe aber trotzdem folgendes Problem:

Normalerweise habe ich bei meinem Browser (Chrome) wenn ich einen neuen Tab öffne mehrere Optionen um schnell zu bestimmten häufig benutzten Internetseiten zu gelangen. Aber seit geraumer Zeit öffnet sich dann eine Seite, welche sich "delta-search" nennt. Daraufhin habe ich den begriff gegoogelt und bin dadurch auf diese Seite gelangt. In einem Beitrag hier auf der Seite habe ich dann gesehen, dass es tatsächlich eine Bedrohung ist und nicht nur eine falsche Einstellung (wenn ich das nicht falsch verstanden habe :confused: ).

Da ich wenig Ahnung von sowas habe kann ich auch nur wenige Informationen geben.
Ich hab Windows 7
der Link der sich in dem neuen Tab öffnet ist folgender:
hxxp://www.delta-search.com/?affID=119370&tt=060411_def&babsrc=NT_ss&mntrId=d0c9404b000000000000bcaec51fc960

Kann mir vielleicht jemand sagen ob das gefährlich ist und wenn ja wie ich es loswerde(auch wenn nein -.-)?

hi,

Falls noch nicht vorhanden, lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

• Starte bitte die
  OTL.exe
  .
  Vista und Win7 User mit Rechtsklick "als Administrator starten"
• Kopiere nun den Inhalt in die http://larusso.trojaner-board.de/Images/otlfix.jpg
  Textbox.

• Schliesse bitte nun alle Programme. (Wichtig)
• Klicke nun bitte auf den Quick Scan Button.
• Kopiere
  nun den Inhalt aus OTL.txt und Extra.txt hier in Deinen Thread

Extra.txt :OTL EXTRAS Logfile:
--- --- ---

OTL.txt :OTL Logfile:
--- --- ---

ich habe alle Pogramme geschlossen (wenn unten rechts die Symbole nicht dazu zählen) und musste es in zwei Teile teilen, weil das zu viele Zeichen waren.

OTL.txt :
OTL Logfile:
--- --- ---

ich habe alle Pogramme geschlossen (wenn unten rechts die Symbole nicht dazu zählen) und musste es in zwei Teile teilen, weil das zu viele Zeichen waren.

Hi
Kaspersky Homepage aufsuchen bitte, upgraden auf 2013

otl fix

Fixen mit OTL

• Starte bitte die OTL.exe.
• Kopiere nun den Inhalt aus der Codebox in die Textbox.

• Solltest du deinen Benutzernamen z. B. durch "*****" unkenntlich gemacht haben, so füge an entsprechender Stelle deinen richtigen Benutzernamen ein. Andernfalls wird der Fix nicht funktionieren.
• Schließe bitte nun alle Programme.
• Klicke nun bitte auf den Fix Button.
• OTL kann gegebenfalls einen Neustart verlangen. Bitte dies zulassen.
• Nach dem Neustart findest Du ein Textdokument auf deinem Desktop.
  ( Auch zu finden unter C:\_OTL\MovedFiles\<Uhrzeit_Datum>.txt)
  Kopiere nun den Inhalt hier in Deinen Thread

Die Datei war nicht auf dem Desktop, aber dafür waren dort 2 mal Desktop.ini und einmal Thumbs.db.
Außerdem noch eine Anwendung mit dem Namen "Sicherer Zahlungsverkehr" (was ziehmlich gruselig ist).

Hier aber trotzdem was in der Datei stand:


All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{64EAD72B-FFD4-4E01-AA3A-4C71665D73E4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64EAD72B-FFD4-4E01-AA3A-4C71665D73E4}\ deleted successfully.
File C:\Program Files (x86)\BittorrentBar_DE\tbBitt.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ not found.
File C:\Program Files (x86)\BittorrentBar_DE\tbBitt.dll File not not found.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\10 deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{64ead72b-ffd4-4e01-aa3a-4c71665d73e4}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\NetLimiter deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b6420d7-3122-11e0-b7a5-806e6f6e6963}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b6420d7-3122-11e0-b7a5-806e6f6e6963}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6b6420d7-3122-11e0-b7a5-806e6f6e6963}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6b6420d7-3122-11e0-b7a5-806e6f6e6963}\ not found.
File E:\.\Bin\ASSETUP.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c45c2cdf-477a-11e0-91b8-bcaec51fc960}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c45c2cdf-477a-11e0-91b8-bcaec51fc960}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c45c2cdf-477a-11e0-91b8-bcaec51fc960}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c45c2cdf-477a-11e0-91b8-bcaec51fc960}\ not found.
File F:\Autorun.exe not found.
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Admin
->Temp folder emptied: 40485646 bytes
->Temporary Internet Files folder emptied: 1103547981 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 255039127 bytes
->Flash cache emptied: 67387 bytes

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: DefaultAppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: nge
->Temp folder emptied: 221710 bytes
->Temporary Internet Files folder emptied: 32685000 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 255586412 bytes
->Flash cache emptied: 104828 bytes

User: Public

User: Timo
->Temp folder emptied: 4990453411 bytes
->Temporary Internet Files folder emptied: 751363616 bytes
->Java cache emptied: 43276 bytes
->Google Chrome cache emptied: 243732727 bytes
->Flash cache emptied: 448587 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 557056 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 2299059278 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67899 bytes
RecycleBin emptied: 30251654040 bytes

Total Files Cleaned = 38.362,00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 02172013_191659

Hi
sicherer ZahlungsVerkehr gehört zu Kaspersky :-)

Downloade dir bitte TDSSKiller.exe und speichere diese Datei auf dem Desktop

• Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
• Drücke Start Scan
  
• Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
  TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
  Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt

Poste den Inhalt bitte in jedem Fall hier in deinen Thread.

Ok und wie bekomme ich die nervigen files jetzt vom Desktop?
Also die Desktop.ini etc.

Hier der log:

19:37:40.0584 5284 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:37:40.0783 5284 ============================================================
19:37:40.0783 5284 Current date / time: 2013/02/17 19:37:40.0783
19:37:40.0783 5284 SystemInfo:
19:37:40.0783 5284
19:37:40.0784 5284 OS Version: 6.1.7601 ServicePack: 1.0
19:37:40.0784 5284 Product type: Workstation
19:37:40.0784 5284 ComputerName: TIMO-PC
19:37:40.0784 5284 UserName: Timo
19:37:40.0784 5284 Windows directory: C:\Windows
19:37:40.0784 5284 System windows directory: C:\Windows
19:37:40.0784 5284 Running under WOW64
19:37:40.0784 5284 Processor architecture: Intel x64
19:37:40.0784 5284 Number of processors: 4
19:37:40.0784 5284 Page size: 0x1000
19:37:40.0784 5284 Boot type: Normal boot
19:37:40.0784 5284 ============================================================
19:37:42.0270 5284 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:37:42.0286 5284 Drive \Device\Harddisk1\DR1 - Size: 0x1D1C00000 (7.28 Gb), SectorSize: 0x200, Cylinders: 0x3B5, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:37:42.0288 5284 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:37:42.0314 5284 ============================================================
19:37:42.0314 5284 \Device\Harddisk0\DR0:
19:37:42.0314 5284 MBR partitions:
19:37:42.0314 5284 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:37:42.0314 5284 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1866D800
19:37:42.0315 5284 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x186A0000, BlocksNum 0x30D40000
19:37:42.0315 5284 \Device\Harddisk1\DR1:
19:37:42.0316 5284 MBR partitions:
19:37:42.0316 5284 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0xE8DFE0
19:37:42.0316 5284 \Device\Harddisk2\DR2:
19:37:42.0317 5284 MBR partitions:
19:37:42.0317 5284 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705000
19:37:42.0317 5284 ============================================================
19:37:42.0354 5284 C: <-> \Device\Harddisk0\DR0\Partition2
19:37:42.0386 5284 D: <-> \Device\Harddisk0\DR0\Partition3
19:37:42.0403 5284 H: <-> \Device\Harddisk2\DR2\Partition1
19:37:42.0403 5284 ============================================================
19:37:42.0403 5284 Initialize success
19:37:42.0403 5284 ============================================================
19:38:05.0007 6752 ============================================================
19:38:05.0007 6752 Scan started
19:38:05.0007 6752 Mode: Manual;
19:38:05.0007 6752 ============================================================
19:38:07.0865 6752 ================ Scan system memory ========================
19:38:07.0865 6752 System memory - ok
19:38:07.0865 6752 ================ Scan services =============================
19:38:08.0019 6752 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:38:08.0030 6752 1394ohci - ok
19:38:08.0101 6752 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:38:08.0104 6752 ACPI - ok
19:38:08.0114 6752 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:38:08.0120 6752 AcpiPmi - ok
19:38:08.0201 6752 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:38:08.0226 6752 AdobeARMservice - ok
19:38:08.0324 6752 [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:38:08.0426 6752 AdobeFlashPlayerUpdateSvc - ok
19:38:08.0462 6752 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:38:08.0476 6752 adp94xx - ok
19:38:08.0490 6752 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:38:08.0510 6752 adpahci - ok
19:38:08.0515 6752 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:38:08.0528 6752 adpu320 - ok
19:38:08.0551 6752 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:38:08.0552 6752 AeLookupSvc - ok
19:38:08.0584 6752 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:38:08.0599 6752 AFD - ok
19:38:08.0604 6752 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:38:08.0620 6752 agp440 - ok
19:38:08.0934 6752 [ B9B98E08EC127900025F42462D3D0A66 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll
19:38:08.0934 6752 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ce5ba24.dll. md5: B9B98E08EC127900025F42462D3D0A66
19:38:08.0941 6752 Akamai ( HiddenFile.Multi.Generic ) - warning
19:38:08.0941 6752 Akamai - detected HiddenFile.Multi.Generic (1)
19:38:08.0958 6752 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:38:08.0959 6752 ALG - ok
19:38:08.0968 6752 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:38:08.0976 6752 aliide - ok
19:38:08.0994 6752 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:38:09.0018 6752 amdide - ok
19:38:09.0042 6752 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:38:09.0050 6752 AmdK8 - ok
19:38:09.0069 6752 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:38:09.0070 6752 AmdPPM - ok
19:38:09.0091 6752 [ 53D8D46D51D390ABDB54ECA623165CB7 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
19:38:09.0092 6752 amdsata - ok
19:38:09.0113 6752 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:38:09.0132 6752 amdsbs - ok
19:38:09.0148 6752 [ 75C51148154E34EB3D7BB84749A758D5 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
19:38:09.0161 6752 amdxata - ok
19:38:09.0210 6752 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
19:38:09.0218 6752 AppHostSvc - ok
19:38:09.0263 6752 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:38:09.0278 6752 AppID - ok
19:38:09.0294 6752 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:38:09.0295 6752 AppIDSvc - ok
19:38:09.0320 6752 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:38:09.0328 6752 Appinfo - ok
19:38:09.0395 6752 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:38:09.0404 6752 Apple Mobile Device - ok
19:38:09.0417 6752 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:38:09.0427 6752 arc - ok
19:38:09.0431 6752 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:38:09.0439 6752 arcsas - ok
19:38:09.0475 6752 [ F6BDA026E4157DC4E321CA391E9D9BC6 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
19:38:09.0476 6752 AsIO - ok
19:38:09.0537 6752 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:38:09.0557 6752 aspnet_state - ok
19:38:09.0585 6752 [ 8C1FD73CC27EDD8D3344C632571C224C ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
19:38:09.0586 6752 AsSysCtrlService - ok
19:38:09.0608 6752 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:38:09.0609 6752 AsyncMac - ok
19:38:09.0630 6752 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:38:09.0631 6752 atapi - ok
19:38:09.0649 6752 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
19:38:09.0649 6752 AtiPcie - ok
19:38:09.0682 6752 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:38:09.0697 6752 AudioEndpointBuilder - ok
19:38:09.0706 6752 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:38:09.0709 6752 AudioSrv - ok
19:38:09.0851 6752 AVP - ok
19:38:09.0901 6752 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:38:09.0940 6752 AxInstSV - ok
19:38:09.0962 6752 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:38:09.0974 6752 b06bdrv - ok
19:38:09.0999 6752 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:38:10.0010 6752 b57nd60a - ok
19:38:10.0057 6752 [ 7ED4E1D2E124AD4E6A287CF49DBC9BBA ] BCUService C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
19:38:10.0060 6752 BCUService - ok
19:38:10.0084 6752 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:38:10.0086 6752 BDESVC - ok
19:38:10.0094 6752 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:38:10.0095 6752 Beep - ok
19:38:10.0139 6752 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:38:10.0169 6752 BFE - ok
19:38:10.0192 6752 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:38:10.0209 6752 BITS - ok
19:38:10.0231 6752 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:38:10.0232 6752 blbdrive - ok
19:38:10.0393 6752 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:38:10.0417 6752 Bonjour Service - ok
19:38:10.0449 6752 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:38:10.0459 6752 bowser - ok
19:38:10.0463 6752 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:38:10.0469 6752 BrFiltLo - ok
19:38:10.0482 6752 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:38:10.0487 6752 BrFiltUp - ok
19:38:10.0546 6752 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:38:10.0562 6752 Browser - ok
19:38:10.0579 6752 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:38:10.0590 6752 Brserid - ok
19:38:10.0609 6752 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:38:10.0616 6752 BrSerWdm - ok
19:38:10.0635 6752 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:38:10.0641 6752 BrUsbMdm - ok
19:38:10.0659 6752 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:38:10.0665 6752 BrUsbSer - ok
19:38:10.0737 6752 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:38:10.0746 6752 BTHMODEM - ok
19:38:10.0775 6752 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:38:10.0776 6752 bthserv - ok
19:38:10.0789 6752 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:38:10.0798 6752 cdfs - ok
19:38:10.0830 6752 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:38:10.0831 6752 cdrom - ok
19:38:10.0853 6752 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:38:10.0861 6752 CertPropSvc - ok
19:38:10.0874 6752 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:38:10.0881 6752 circlass - ok
19:38:10.0910 6752 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:38:10.0913 6752 CLFS - ok
19:38:10.0957 6752 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:38:10.0983 6752 clr_optimization_v2.0.50727_32 - ok
19:38:11.0007 6752 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:38:11.0017 6752 clr_optimization_v2.0.50727_64 - ok
19:38:11.0074 6752 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:38:11.0096 6752 clr_optimization_v4.0.30319_32 - ok
19:38:11.0110 6752 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:38:11.0130 6752 clr_optimization_v4.0.30319_64 - ok
19:38:11.0146 6752 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:38:11.0153 6752 CmBatt - ok
19:38:11.0173 6752 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:38:11.0180 6752 cmdide - ok
19:38:11.0212 6752 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:38:11.0228 6752 CNG - ok
19:38:11.0236 6752 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:38:11.0244 6752 Compbatt - ok
19:38:11.0266 6752 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:38:11.0267 6752 CompositeBus - ok
19:38:11.0270 6752 COMSysApp - ok
19:38:11.0279 6752 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:38:11.0288 6752 crcdisk - ok
19:38:11.0349 6752 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:38:11.0372 6752 CryptSvc - ok
19:38:11.0394 6752 [ 1CA90212A99DB6975C344826D11055C9 ] dc3d C:\Windows\system32\DRIVERS\dc3d.sys
19:38:11.0395 6752 dc3d - ok
19:38:11.0459 6752 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:38:11.0463 6752 DcomLaunch - ok
19:38:11.0499 6752 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:38:11.0502 6752 defragsvc - ok
19:38:11.0606 6752 [ D2600494C45B98ADFDAE290205AD7CD3 ] DevoloNetworkService C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
19:38:11.0626 6752 DevoloNetworkService - ok
19:38:11.0648 6752 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:38:11.0657 6752 DfsC - ok
19:38:11.0674 6752 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:38:11.0686 6752 Dhcp - ok
19:38:11.0707 6752 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:38:11.0712 6752 discache - ok
19:38:11.0738 6752 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:38:11.0748 6752 Disk - ok
19:38:11.0770 6752 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:38:11.0772 6752 Dnscache - ok
19:38:11.0799 6752 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:38:11.0809 6752 dot3svc - ok
19:38:11.0836 6752 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:38:11.0852 6752 DPS - ok
19:38:12.0053 6752 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:38:12.0068 6752 drmkaud - ok
19:38:12.0135 6752 [ DCB557B63F8CDB1DA3F19F69F99CC219 ] DUMeterDrv C:\Program Files (x86)\DU Meter\DUMETR64.SYS
19:38:12.0150 6752 DUMeterDrv - ok
19:38:12.0234 6752 DUMeterSvc - ok
19:38:12.0261 6752 dump_wmimmc - ok
19:38:12.0345 6752 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:38:12.0393 6752 DXGKrnl - ok
19:38:12.0408 6752 EagleX64 - ok
19:38:12.0431 6752 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:38:12.0433 6752 EapHost - ok
19:38:12.0500 6752 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:38:12.0535 6752 ebdrv - ok
19:38:12.0558 6752 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:38:12.0566 6752 EFS - ok
19:38:12.0600 6752 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:38:12.0621 6752 ehRecvr - ok
19:38:12.0643 6752 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:38:12.0645 6752 ehSched - ok
19:38:12.0687 6752 [ A14D6E3EF78F6D6AC42F98D633F2400A ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
19:38:12.0688 6752 ElbyCDIO - ok
19:38:12.0709 6752 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:38:12.0724 6752 elxstor - ok
19:38:12.0749 6752 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:38:12.0755 6752 ErrDev - ok
19:38:12.0807 6752 [ ABC24F129C616E5DEE5CE58683606C84 ] ESLWireAC C:\Windows\system32\drivers\ESLWireACD.sys
19:38:12.0815 6752 ESLWireAC - ok
19:38:12.0929 6752 [ 4FC6545A22D348E1B6DA15A27748B7FE ] EslWireHelper C:\Program Files\EslWire\service\WireHelperSvc.exe
19:38:13.0014 6752 EslWireHelper - ok
19:38:13.0047 6752 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:38:13.0051 6752 EventSystem - ok
19:38:13.0065 6752 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:38:13.0076 6752 exfat - ok
19:38:13.0089 6752 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:38:13.0092 6752 fastfat - ok
19:38:13.0137 6752 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:38:13.0169 6752 Fax - ok
19:38:13.0185 6752 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:38:13.0195 6752 fdc - ok
19:38:13.0229 6752 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:38:13.0230 6752 fdPHost - ok
19:38:13.0234 6752 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:38:13.0236 6752 FDResPub - ok
19:38:13.0247 6752 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:38:13.0248 6752 FileInfo - ok
19:38:13.0275 6752 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:38:13.0283 6752 Filetrace - ok
19:38:13.0294 6752 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:38:13.0301 6752 flpydisk - ok
19:38:13.0316 6752 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:38:13.0329 6752 FltMgr - ok
19:38:13.0369 6752 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:38:13.0387 6752 FontCache - ok
19:38:13.0431 6752 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:38:13.0454 6752 FontCache3.0.0.0 - ok
19:38:13.0529 6752 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:38:13.0540 6752 FsDepends - ok
19:38:13.0570 6752 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:38:13.0592 6752 Fs_Rec - ok
19:38:13.0658 6752 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:38:13.0669 6752 fvevol - ok
19:38:13.0681 6752 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:38:13.0690 6752 gagp30kx - ok
19:38:13.0736 6752 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:38:13.0744 6752 GEARAspiWDM - ok
19:38:13.0789 6752 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:38:13.0807 6752 gpsvc - ok
19:38:13.0852 6752 [ 03BF24E2497F9CE09D7863295526C93C ] GUCI_AVS C:\Windows\system32\DRIVERS\GUCI_AVS.sys
19:38:13.0870 6752 GUCI_AVS - ok
19:38:13.0938 6752 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:38:13.0941 6752 gupdate - ok
19:38:13.0979 6752 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:38:13.0981 6752 gupdatem - ok
19:38:14.0011 6752 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:38:14.0012 6752 gusvc - ok
19:38:14.0033 6752 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
19:38:14.0040 6752 hamachi - ok
19:38:14.0043 6752 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:38:14.0050 6752 hcw85cir - ok
19:38:14.0090 6752 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:38:14.0103 6752 HdAudAddService - ok
19:38:14.0134 6752 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:38:14.0136 6752 HDAudBus - ok
19:38:14.0147 6752 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:38:14.0155 6752 HidBatt - ok
19:38:14.0180 6752 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:38:14.0199 6752 HidBth - ok
19:38:14.0218 6752 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:38:14.0227 6752 HidIr - ok
19:38:14.0253 6752 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:38:14.0254 6752 hidserv - ok
19:38:14.0293 6752 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:38:14.0307 6752 HidUsb - ok
19:38:14.0331 6752 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:38:14.0355 6752 hkmsvc - ok
19:38:14.0379 6752 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:38:14.0396 6752 HomeGroupListener - ok
19:38:14.0422 6752 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:38:14.0435 6752 HomeGroupProvider - ok
19:38:14.0452 6752 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:38:14.0463 6752 HpSAMD - ok
19:38:14.0552 6752 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:38:14.0576 6752 HTTP - ok
19:38:14.0581 6752 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:38:14.0591 6752 hwpolicy - ok
19:38:14.0618 6752 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:38:14.0626 6752 i8042prt - ok
19:38:14.0664 6752 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:38:14.0677 6752 iaStorV - ok
19:38:14.0721 6752 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:38:14.0738 6752 IDriverT - ok
19:38:14.0797 6752 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:38:14.0825 6752 idsvc - ok
19:38:14.0829 6752 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:38:14.0836 6752 iirsp - ok
19:38:14.0913 6752 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:38:14.0932 6752 IKEEXT - ok
19:38:14.0943 6752 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:38:14.0951 6752 intelide - ok
19:38:14.0960 6752 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:38:14.0968 6752 intelppm - ok
19:38:14.0987 6752 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:38:14.0989 6752 IPBusEnum - ok
19:38:14.0998 6752 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:38:15.0007 6752 IpFilterDriver - ok
19:38:15.0023 6752 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:38:15.0035 6752 iphlpsvc - ok
19:38:15.0059 6752 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:38:15.0068 6752 IPMIDRV - ok
19:38:15.0083 6752 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:38:15.0093 6752 IPNAT - ok
19:38:15.0149 6752 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
19:38:15.0169 6752 iPod Service - ok
19:38:15.0182 6752 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:38:15.0192 6752 IRENUM - ok
19:38:15.0222 6752 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:38:15.0229 6752 isapnp - ok
19:38:15.0246 6752 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:38:15.0258 6752 iScsiPrt - ok
19:38:15.0282 6752 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:38:15.0283 6752 kbdclass - ok
19:38:15.0303 6752 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:38:15.0304 6752 kbdhid - ok
19:38:15.0311 6752 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:38:15.0312 6752 KeyIso - ok
19:38:15.0446 6752 [ 8B5219318DF5895ABD230C373F2DF18A ] KL1 C:\Windows\system32\DRIVERS\kl1.sys
19:38:15.0469 6752 KL1 - ok
19:38:15.0507 6752 [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF C:\Windows\system32\DRIVERS\klif.sys
19:38:15.0515 6752 KLIF - ok
19:38:15.0534 6752 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
19:38:15.0541 6752 KLIM6 - ok
19:38:15.0578 6752 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
19:38:15.0585 6752 klkbdflt - ok
19:38:15.0609 6752 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
19:38:15.0616 6752 klmouflt - ok
19:38:15.0632 6752 [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
19:38:15.0649 6752 kltdi - ok
19:38:15.0688 6752 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
19:38:15.0698 6752 kneps - ok
19:38:15.0727 6752 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:38:15.0737 6752 KSecDD - ok
19:38:15.0761 6752 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:38:15.0771 6752 KSecPkg - ok
19:38:15.0789 6752 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:38:15.0790 6752 ksthunk - ok
19:38:15.0816 6752 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:38:15.0831 6752 KtmRm - ok
19:38:15.0854 6752 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:38:15.0866 6752 LanmanServer - ok
19:38:15.0893 6752 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:38:15.0902 6752 LanmanWorkstation - ok
19:38:15.0932 6752 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:38:15.0933 6752 lltdio - ok
19:38:15.0948 6752 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:38:15.0960 6752 lltdsvc - ok
19:38:15.0977 6752 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:38:15.0979 6752 lmhosts - ok
19:38:16.0004 6752 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:38:16.0013 6752 LSI_FC - ok
19:38:16.0036 6752 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:38:16.0045 6752 LSI_SAS - ok
19:38:16.0069 6752 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:38:16.0079 6752 LSI_SAS2 - ok
19:38:16.0093 6752 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:38:16.0102 6752 LSI_SCSI - ok
19:38:16.0115 6752 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:38:16.0116 6752 luafv - ok
19:38:16.0176 6752 [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
19:38:16.0197 6752 McComponentHostService - ok
19:38:16.0213 6752 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:38:16.0221 6752 Mcx2Svc - ok
19:38:16.0232 6752 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:38:16.0240 6752 megasas - ok
19:38:16.0259 6752 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:38:16.0272 6752 MegaSR - ok
19:38:16.0294 6752 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:38:16.0296 6752 MMCSS - ok
19:38:16.0306 6752 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:38:16.0314 6752 Modem - ok
19:38:16.0332 6752 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:38:16.0333 6752 monitor - ok
19:38:16.0342 6752 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:38:16.0343 6752 mouclass - ok
19:38:16.0351 6752 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:38:16.0352 6752 mouhid - ok
19:38:16.0374 6752 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:38:16.0397 6752 mountmgr - ok
19:38:16.0419 6752 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:38:16.0429 6752 mpio - ok
19:38:16.0438 6752 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:38:16.0439 6752 mpsdrv - ok
19:38:16.0474 6752 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:38:16.0491 6752 MpsSvc - ok
19:38:16.0508 6752 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:38:16.0518 6752 MRxDAV - ok
19:38:16.0549 6752 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:38:16.0559 6752 mrxsmb - ok
19:38:16.0586 6752 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:38:16.0589 6752 mrxsmb10 - ok
19:38:16.0617 6752 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:38:16.0627 6752 mrxsmb20 - ok
19:38:16.0650 6752 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:38:16.0651 6752 msahci - ok
19:38:16.0665 6752 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:38:16.0675 6752 msdsm - ok
19:38:16.0688 6752 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:38:16.0691 6752 MSDTC - ok
19:38:16.0703 6752 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:38:16.0704 6752 Msfs - ok
19:38:16.0721 6752 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:38:16.0722 6752 mshidkmdf - ok
19:38:16.0733 6752 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:38:16.0734 6752 msisadrv - ok
19:38:16.0750 6752 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:38:16.0761 6752 MSiSCSI - ok
19:38:16.0765 6752 msiserver - ok
19:38:16.0785 6752 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:38:16.0792 6752 MSKSSRV - ok
19:38:16.0798 6752 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:38:16.0805 6752 MSPCLOCK - ok
19:38:16.0816 6752 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:38:16.0823 6752 MSPQM - ok
19:38:16.0849 6752 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:38:16.0862 6752 MsRPC - ok
19:38:16.0877 6752 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:38:16.0878 6752 mssmbios - ok
19:38:16.0882 6752 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:38:16.0889 6752 MSTEE - ok
19:38:16.0893 6752 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:38:16.0899 6752 MTConfig - ok
19:38:16.0932 6752 [ 19B006B181E3875FD254F7B67ACF1E7C ] MTsensor C:\Windows\system32\DRIVERS\ASACPI.sys
19:38:16.0933 6752 MTsensor - ok
19:38:16.0956 6752 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:38:16.0960 6752 Mup - ok
19:38:16.0996 6752 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:38:17.0033 6752 napagent - ok
19:38:17.0060 6752 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:38:17.0064 6752 NativeWifiP - ok
19:38:17.0098 6752 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:38:17.0126 6752 NDIS - ok
19:38:17.0138 6752 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:38:17.0139 6752 NdisCap - ok
19:38:17.0157 6752 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:38:17.0158 6752 NdisTapi - ok
19:38:17.0173 6752 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:38:17.0182 6752 Ndisuio - ok
19:38:17.0205 6752 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:38:17.0215 6752 NdisWan - ok
19:38:17.0233 6752 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:38:17.0241 6752 NDProxy - ok
19:38:17.0272 6752 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
19:38:17.0279 6752 Netaapl - ok
19:38:17.0310 6752 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:38:17.0311 6752 NetBIOS - ok
19:38:17.0328 6752 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:38:17.0344 6752 NetBT - ok
19:38:17.0360 6752 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:38:17.0361 6752 Netlogon - ok
19:38:17.0441 6752 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:38:17.0445 6752 Netman - ok
19:38:17.0487 6752 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:38:17.0506 6752 NetMsmqActivator - ok
19:38:17.0509 6752 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:38:17.0510 6752 NetPipeActivator - ok
19:38:17.0539 6752 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:38:17.0544 6752 netprofm - ok
19:38:17.0559 6752 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:38:17.0560 6752 NetTcpActivator - ok
19:38:17.0563 6752 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:38:17.0564 6752 NetTcpPortSharing - ok
19:38:17.0575 6752 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:38:17.0582 6752 nfrd960 - ok
19:38:17.0612 6752 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:38:17.0624 6752 NlaSvc - ok
19:38:17.0646 6752 [ A56A9B58DDDAA4357C856427690FE61B ] NLNdisMP C:\Windows\system32\DRIVERS\nlndis.sys
19:38:17.0647 6752 NLNdisMP - ok
19:38:17.0649 6752 [ A56A9B58DDDAA4357C856427690FE61B ] NLNdisPT C:\Windows\system32\DRIVERS\nlndis.sys
19:38:17.0650 6752 NLNdisPT - ok
19:38:17.0666 6752 nlsvc - ok
19:38:17.0669 6752 nltdi - ok
19:38:17.0689 6752 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:38:17.0690 6752 Npfs - ok
19:38:17.0771 6752 [ 49697C2C761ACB5C0DE99CC8FE93E95B ] NPF_devolo C:\Windows\sysWOW64\drivers\npf_devolo.sys
19:38:17.0772 6752 NPF_devolo - ok
19:38:17.0785 6752 npggsvc - ok
19:38:17.0791 6752 NPPTNT2 - ok
19:38:17.0812 6752 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:38:17.0814 6752 nsi - ok
19:38:17.0824 6752 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:38:17.0825 6752 nsiproxy - ok
19:38:17.0870 6752 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:38:17.0894 6752 Ntfs - ok
19:38:17.0906 6752 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:38:17.0906 6752 Null - ok
19:38:17.0936 6752 [ 285ACEC1B13A15BA520AAE06BACB9CFF ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
19:38:17.0938 6752 nusb3hub - ok
19:38:17.0948 6752 [ F6D625FF7B56BB6EA063F0D3A5BBC996 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
19:38:17.0951 6752 nusb3xhc - ok
19:38:18.0023 6752 [ 857FB74754EBFF94EE3AD40788740916 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:38:18.0038 6752 NVHDA - ok
19:38:18.0675 6752 [ 9C1996DD3C0469BC8933321F15709F5A ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:38:18.0801 6752 nvlddmkm - ok
19:38:18.0831 6752 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:38:18.0842 6752 nvraid - ok
19:38:18.0869 6752 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:38:18.0879 6752 nvstor - ok
19:38:18.0920 6752 [ DFDA089BB2CD0FF7E789E2EF6BA1E4BA ] NVSvc C:\Windows\system32\nvvsvc.exe
19:38:18.0936 6752 NVSvc - ok
19:38:19.0018 6752 [ E7818CD4FB51284C948D68A7A85A69B8 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
19:38:19.0082 6752 nvUpdatusService - ok
19:38:19.0105 6752 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:38:19.0122 6752 nv_agp - ok
19:38:19.0134 6752 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:38:19.0144 6752 ohci1394 - ok
19:38:19.0211 6752 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:38:19.0223 6752 p2pimsvc - ok
19:38:19.0250 6752 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:38:19.0255 6752 p2psvc - ok
19:38:19.0275 6752 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:38:19.0284 6752 Parport - ok
19:38:19.0305 6752 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:38:19.0316 6752 partmgr - ok
19:38:19.0329 6752 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:38:19.0332 6752 PcaSvc - ok
19:38:19.0341 6752 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:38:19.0343 6752 pci - ok
19:38:19.0353 6752 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:38:19.0354 6752 pciide - ok
19:38:19.0360 6752 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:38:19.0373 6752 pcmcia - ok
19:38:19.0459 6752 [ A0E7D752514A7D99341D5F2A834224A9 ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
19:38:19.0467 6752 PCToolsSSDMonitorSvc - ok
19:38:19.0491 6752 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:38:19.0499 6752 pcw - ok
19:38:19.0517 6752 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:38:19.0524 6752 PEAUTH - ok
19:38:19.0550 6752 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:38:19.0552 6752 PerfHost - ok
19:38:19.0743 6752 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:38:19.0767 6752 pla - ok
19:38:19.0811 6752 [ AB168D5CF1CD69F9FA6F09C828FEA660 ] PlantronicsGC C:\Windows\system32\drivers\PLTGC.sys
19:38:19.0840 6752 PlantronicsGC - ok
19:38:19.0877 6752 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:38:19.0891 6752 PlugPlay - ok
19:38:19.0912 6752 PnkBstrA - ok
19:38:19.0922 6752 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:38:19.0924 6752 PNRPAutoReg - ok
19:38:19.0940 6752 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:38:19.0943 6752 PNRPsvc - ok
19:38:19.0959 6752 [ B23F79E41E30ED500586151A9EF27D8F ] Point64 C:\Windows\system32\DRIVERS\point64.sys
19:38:19.0960 6752 Point64 - ok
19:38:19.0976 6752 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:38:19.0989 6752 PolicyAgent - ok
19:38:20.0038 6752 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:38:20.0047 6752 Power - ok
19:38:20.0101 6752 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:38:20.0115 6752 PptpMiniport - ok
19:38:20.0123 6752 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:38:20.0130 6752 Processor - ok
19:38:20.0159 6752 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:38:20.0171 6752 ProfSvc - ok
19:38:20.0174 6752 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:38:20.0176 6752 ProtectedStorage - ok
19:38:20.0215 6752 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:38:20.0225 6752 Psched - ok
19:38:20.0405 6752 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:38:20.0432 6752 ql2300 - ok
19:38:20.0446 6752 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:38:20.0459 6752 ql40xx - ok
19:38:20.0485 6752 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:38:20.0489 6752 QWAVE - ok
19:38:20.0497 6752 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:38:20.0499 6752 QWAVEdrv - ok
19:38:20.0510 6752 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:38:20.0519 6752 RasAcd - ok
19:38:20.0560 6752 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:38:20.0572 6752 RasAgileVpn - ok
19:38:20.0584 6752 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:38:20.0586 6752 RasAuto - ok
19:38:20.0608 6752 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:38:20.0619 6752 Rasl2tp - ok
19:38:20.0667 6752 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:38:20.0681 6752 RasMan - ok
19:38:20.0696 6752 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:38:20.0707 6752 RasPppoe - ok
19:38:20.0726 6752 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:38:20.0727 6752 RasSstp - ok
19:38:20.0754 6752 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:38:20.0766 6752 rdbss - ok
19:38:20.0774 6752 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:38:20.0782 6752 rdpbus - ok
19:38:20.0791 6752 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:38:20.0791 6752 RDPCDD - ok
19:38:20.0805 6752 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:38:20.0805 6752 RDPENCDD - ok
19:38:20.0816 6752 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:38:20.0816 6752 RDPREFMP - ok
19:38:20.0847 6752 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:38:20.0870 6752 RDPWD - ok
19:38:20.0904 6752 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:38:20.0916 6752 rdyboost - ok
19:38:20.0936 6752 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:38:20.0938 6752 RemoteAccess - ok
19:38:20.0949 6752 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:38:20.0952 6752 RemoteRegistry - ok
19:38:21.0006 6752 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
19:38:21.0026 6752 Revoflt - ok
19:38:21.0039 6752 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:38:21.0042 6752 RpcEptMapper - ok
19:38:21.0049 6752 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:38:21.0050 6752 RpcLocator - ok
19:38:21.0080 6752 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:38:21.0083 6752 RpcSs - ok
19:38:21.0106 6752 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:38:21.0107 6752 rspndr - ok
19:38:21.0139 6752 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:38:21.0149 6752 RTL8167 - ok
19:38:21.0159 6752 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:38:21.0160 6752 SamSs - ok
19:38:21.0188 6752 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:38:21.0198 6752 sbp2port - ok
19:38:21.0211 6752 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:38:21.0214 6752 SCardSvr - ok
19:38:21.0234 6752 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:38:21.0240 6752 scfilter - ok
19:38:21.0352 6752 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:38:21.0374 6752 Schedule - ok
19:38:21.0395 6752 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:38:21.0396 6752 SCPolicySvc - ok
19:38:21.0423 6752 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:38:21.0443 6752 SDRSVC - ok
19:38:21.0467 6752 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:38:21.0469 6752 secdrv - ok
19:38:21.0491 6752 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:38:21.0498 6752 seclogon - ok
19:38:21.0524 6752 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:38:21.0526 6752 SENS - ok
19:38:21.0537 6752 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:38:21.0539 6752 SensrSvc - ok
19:38:21.0549 6752 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:38:21.0550 6752 Serenum - ok
19:38:21.0559 6752 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:38:21.0560 6752 Serial - ok
19:38:21.0592 6752 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:38:21.0611 6752 sermouse - ok
19:38:21.0646 6752 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:38:21.0660 6752 SessionEnv - ok
19:38:21.0674 6752 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:38:21.0695 6752 sffdisk - ok
19:38:21.0713 6752 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:38:21.0719 6752 sffp_mmc - ok
19:38:21.0723 6752 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:38:21.0736 6752 sffp_sd - ok
19:38:21.0739 6752 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:38:21.0747 6752 sfloppy - ok
19:38:21.0793 6752 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:38:21.0797 6752 SharedAccess - ok
19:38:21.0823 6752 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:38:21.0838 6752 ShellHWDetection - ok
19:38:21.0856 6752 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:38:21.0863 6752 SiSRaid2 - ok
19:38:21.0882 6752 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:38:21.0891 6752 SiSRaid4 - ok
19:38:21.0958 6752 [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
19:38:22.0030 6752 SkypeUpdate - ok
19:38:22.0100 6752 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:38:22.0121 6752 Smb - ok
19:38:22.0168 6752 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:38:22.0169 6752 SNMPTRAP - ok
19:38:22.0190 6752 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:38:22.0191 6752 spldr - ok
19:38:22.0224 6752 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:38:22.0241 6752 Spooler - ok
19:38:22.0369 6752 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:38:22.0415 6752 sppsvc - ok
19:38:22.0427 6752 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:38:22.0430 6752 sppuinotify - ok
19:38:22.0459 6752 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:38:22.0478 6752 srv - ok
19:38:22.0493 6752 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:38:22.0506 6752 srv2 - ok
19:38:22.0521 6752 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:38:22.0532 6752 srvnet - ok
19:38:22.0560 6752 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:38:22.0563 6752 SSDPSRV - ok
19:38:22.0575 6752 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:38:22.0577 6752 SstpSvc - ok
19:38:22.0610 6752 Steam Client Service - ok
19:38:22.0632 6752 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:38:22.0638 6752 stexstor - ok
19:38:22.0677 6752 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:38:22.0692 6752 stisvc - ok
19:38:22.0708 6752 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:38:22.0709 6752 swenum - ok
19:38:22.0722 6752 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:38:22.0728 6752 swprv - ok
19:38:22.0772 6752 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:38:22.0812 6752 SysMain - ok
19:38:22.0824 6752 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:38:22.0833 6752 TabletInputService - ok
19:38:22.0846 6752 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:38:22.0859 6752 TapiSrv - ok
19:38:22.0873 6752 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:38:22.0875 6752 TBS - ok
19:38:23.0012 6752 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:38:23.0039 6752 Tcpip - ok
19:38:23.0070 6752 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:38:23.0077 6752 TCPIP6 - ok
19:38:23.0104 6752 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:38:23.0113 6752 tcpipreg - ok
19:38:23.0142 6752 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:38:23.0150 6752 TDPIPE - ok
19:38:23.0159 6752 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:38:23.0167 6752 TDTCP - ok
19:38:23.0200 6752 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:38:23.0210 6752 tdx - ok
19:38:23.0224 6752 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:38:23.0225 6752 TermDD - ok
19:38:23.0253 6752 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:38:23.0270 6752 TermService - ok
19:38:23.0278 6752 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:38:23.0280 6752 Themes - ok
19:38:23.0303 6752 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:38:23.0305 6752 THREADORDER - ok
19:38:23.0321 6752 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:38:23.0323 6752 TrkWks - ok
19:38:23.0356 6752 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:38:23.0367 6752 TrustedInstaller - ok
19:38:23.0382 6752 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:38:23.0391 6752 tssecsrv - ok
19:38:23.0407 6752 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:38:23.0415 6752 TsUsbFlt - ok
19:38:23.0475 6752 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:38:23.0514 6752 tunnel - ok
19:38:23.0536 6752 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:38:23.0546 6752 uagp35 - ok
19:38:23.0687 6752 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:38:23.0740 6752 udfs - ok
19:38:23.0799 6752 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:38:23.0828 6752 UI0Detect - ok
19:38:23.0842 6752 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:38:23.0851 6752 uliagpkx - ok
19:38:23.0884 6752 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:38:23.0886 6752 umbus - ok
19:38:23.0895 6752 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:38:23.0904 6752 UmPass - ok
19:38:23.0932 6752 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:38:23.0936 6752 upnphost - ok
19:38:23.0966 6752 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
19:38:23.0975 6752 USBAAPL64 - ok
19:38:24.0009 6752 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:38:24.0019 6752 usbaudio - ok
19:38:24.0041 6752 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:38:24.0043 6752 usbccgp - ok
19:38:24.0051 6752 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:38:24.0059 6752 usbcir - ok
19:38:24.0083 6752 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:38:24.0084 6752 usbehci - ok
19:38:24.0120 6752 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
19:38:24.0129 6752 usbfilter - ok
19:38:24.0178 6752 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:38:24.0191 6752 usbhub - ok
19:38:24.0245 6752 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
19:38:24.0256 6752 usbohci - ok
19:38:24.0268 6752 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:38:24.0280 6752 usbprint - ok
19:38:24.0313 6752 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:38:24.0333 6752 USBSTOR - ok
19:38:24.0359 6752 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:38:24.0382 6752 usbuhci - ok
19:38:24.0416 6752 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:38:24.0434 6752 usbvideo - ok
19:38:24.0468 6752 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:38:24.0469 6752 UxSms - ok
19:38:24.0477 6752 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:38:24.0477 6752 VaultSvc - ok
19:38:24.0503 6752 [ 84BB306B7863883018D7F3EB0C453BD5 ] VClone C:\Windows\system32\DRIVERS\VClone.sys
19:38:24.0504 6752 VClone - ok
19:38:24.0514 6752 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:38:24.0531 6752 vdrvroot - ok
19:38:24.0562 6752 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:38:24.0574 6752 vds - ok
19:38:24.0588 6752 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:38:24.0596 6752 vga - ok
19:38:24.0604 6752 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:38:24.0605 6752 VgaSave - ok
19:38:24.0616 6752 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:38:24.0619 6752 vhdmp - ok
19:38:24.0665 6752 [ DFDF7F9CAA50EE72A633EA4BBD65A557 ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
19:38:24.0677 6752 VIAHdAudAddService - ok
19:38:24.0701 6752 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:38:24.0710 6752 viaide - ok
19:38:24.0721 6752 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:38:24.0723 6752 volmgr - ok
19:38:24.0752 6752 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:38:24.0768 6752 volmgrx - ok
19:38:24.0781 6752 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:38:24.0785 6752 volsnap - ok
19:38:24.0810 6752 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:38:24.0820 6752 vsmraid - ok
19:38:24.0867 6752 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:38:24.0886 6752 VSS - ok
19:38:24.0895 6752 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
19:38:24.0896 6752 vwifibus - ok
19:38:24.0923 6752 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:38:24.0927 6752 W32Time - ok
19:38:24.0996 6752 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
19:38:25.0013 6752 W3SVC - ok
19:38:25.0027 6752 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:38:25.0035 6752 WacomPen - ok
19:38:25.0055 6752 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:38:25.0064 6752 WANARP - ok
19:38:25.0067 6752 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:38:25.0068 6752 Wanarpv6 - ok
19:38:25.0082 6752 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
19:38:25.0084 6752 WAS - ok
19:38:25.0111 6752 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:38:25.0132 6752 wbengine - ok
19:38:25.0144 6752 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:38:25.0147 6752 WbioSrvc - ok
19:38:25.0169 6752 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:38:25.0185 6752 wcncsvc - ok
19:38:25.0198 6752 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:38:25.0200 6752 WcsPlugInService - ok
19:38:25.0204 6752 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:38:25.0214 6752 Wd - ok
19:38:25.0290 6752 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:38:25.0297 6752 Wdf01000 - ok
19:38:25.0312 6752 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:38:25.0314 6752 WdiServiceHost - ok
19:38:25.0317 6752 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:38:25.0319 6752 WdiSystemHost - ok
19:38:25.0333 6752 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:38:25.0345 6752 WebClient - ok
19:38:25.0361 6752 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:38:25.0365 6752 Wecsvc - ok
19:38:25.0376 6752 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:38:25.0378 6752 wercplsupport - ok
19:38:25.0397 6752 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:38:25.0401 6752 WerSvc - ok
19:38:25.0412 6752 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:38:25.0433 6752 WfpLwf - ok
19:38:25.0437 6752 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:38:25.0445 6752 WIMMount - ok
19:38:25.0465 6752 WinDefend - ok
19:38:25.0470 6752 WinHttpAutoProxySvc - ok
19:38:25.0522 6752 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:38:25.0525 6752 Winmgmt - ok
19:38:25.0574 6752 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:38:25.0600 6752 WinRM - ok
19:38:25.0649 6752 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
19:38:25.0666 6752 WinUsb - ok
19:38:25.0699 6752 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:38:25.0708 6752 Wlansvc - ok
19:38:25.0874 6752 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:38:25.0913 6752 wlidsvc - ok
19:38:25.0945 6752 [ 7A58BA979F7ACB3FC5310C771A1CF155 ] WmBEnum C:\Windows\system32\drivers\WmBEnum.sys
19:38:25.0946 6752 WmBEnum - ok
19:38:25.0956 6752 [ 8693A75C3FFD4A0C9E32BE621FDA71FB ] WmFilter C:\Windows\system32\drivers\WmFilter.sys
19:38:25.0957 6752 WmFilter - ok
19:38:25.0977 6752 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:38:25.0978 6752 WmiAcpi - ok
19:38:26.0007 6752 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:38:26.0009 6752 wmiApSrv - ok
19:38:26.0012 6752 WMPNetworkSvc - ok
19:38:26.0034 6752 [ 3D9266CCD0F1EDB020C7AA24D527942B ] WmVirHid C:\Windows\system32\drivers\WmVirHid.sys
19:38:26.0035 6752 WmVirHid - ok
19:38:26.0046 6752 [ 3CFFDF56A00408913B1E51C67F999E2E ] WmXlCore C:\Windows\system32\drivers\WmXlCore.sys
19:38:26.0047 6752 WmXlCore - ok
19:38:26.0059 6752 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:38:26.0061 6752 WPCSvc - ok
19:38:26.0082 6752 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:38:26.0091 6752 WPDBusEnum - ok
19:38:26.0121 6752 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:38:26.0129 6752 ws2ifsl - ok
19:38:26.0145 6752 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
19:38:26.0147 6752 wscsvc - ok
19:38:26.0150 6752 WSearch - ok
19:38:26.0279 6752 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:38:26.0311 6752 wuauserv - ok
19:38:26.0322 6752 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:38:26.0331 6752 WudfPf - ok
19:38:26.0360 6752 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:38:26.0371 6752 WUDFRd - ok
19:38:26.0414 6752 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:38:26.0424 6752 wudfsvc - ok
19:38:26.0444 6752 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:38:26.0447 6752 WwanSvc - ok
19:38:26.0511 6752 X6va003 - ok
19:38:26.0536 6752 X6va005 - ok
19:38:26.0600 6752 X6va008 - ok
19:38:26.0654 6752 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:38:26.0660 6752 YahooAUService - ok
19:38:26.0684 6752 ================ Scan global ===============================
19:38:26.0766 6752 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:38:26.0791 6752 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:38:26.0807 6752 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:38:26.0827 6752 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:38:26.0889 6752 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:38:26.0895 6752 [Global] - ok
19:38:26.0896 6752 ================ Scan MBR ==================================
19:38:26.0908 6752 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:38:27.0073 6752 \Device\Harddisk0\DR0 - ok
19:38:27.0078 6752 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
19:38:28.0788 6752 \Device\Harddisk1\DR1 - ok
19:38:28.0793 6752 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
19:38:28.0797 6752 \Device\Harddisk2\DR2 - ok
19:38:28.0798 6752 ================ Scan VBR ==================================
19:38:28.0800 6752 [ D76AD1E64AEA1E295C086CB6396D6D1C ] \Device\Harddisk0\DR0\Partition1
19:38:28.0801 6752 \Device\Harddisk0\DR0\Partition1 - ok
19:38:28.0808 6752 [ FD67970C3FDA0D8EA55FBC5D74E814C0 ] \Device\Harddisk0\DR0\Partition2
19:38:28.0809 6752 \Device\Harddisk0\DR0\Partition2 - ok
19:38:28.0824 6752 [ 3B64EAA56F138B9EC831AE9CA27B71AA ] \Device\Harddisk0\DR0\Partition3
19:38:28.0825 6752 \Device\Harddisk0\DR0\Partition3 - ok
19:38:28.0829 6752 [ 663F54E04E809918DC9BCA74384C7000 ] \Device\Harddisk1\DR1\Partition1
19:38:28.0830 6752 \Device\Harddisk1\DR1\Partition1 - ok
19:38:28.0834 6752 [ 48AB988E7E46C3FBBA8BA5DB68049A23 ] \Device\Harddisk2\DR2\Partition1
19:38:28.0836 6752 \Device\Harddisk2\DR2\Partition1 - ok
19:38:28.0836 6752 ============================================================
19:38:28.0836 6752 Scan finished
19:38:28.0836 6752 ============================================================
19:38:28.0848 6928 Detected object count: 1
19:38:28.0848 6928 Actual detected object count: 1
19:39:00.0311 6928 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
19:39:00.0311 6928 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip

Hi,
die inis einfach löschen.
Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

• WICHTIG: Speichere Combofix auf deinem Desktop.
• Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
• Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
• Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
• Wenn Combofix fertig ist, wird es ein Logfile erstellen.
• Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Combofix Logfile:
--- --- ---

et voilà

Hi,
malwarebytes:
Downloade Dir bitte Malwarebytes

• Installiere
  das Programm in den vorgegebenen Pfad.
  Vista und Win7 User mit Rechtsklick "als Administrator starten"
• Starte Malwarebytes, klicke auf Aktualisierung --> Suche
  nach Aktualisierung
• Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
• Wenn der Scan beendet
  ist, klicke auf Ergebnisse anzeigen.
• Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
• Poste
  das Logfile, welches sich in Notepad öffnet, hier in den Thread.
• Nachträglich kannst du den Bericht unter "Log Dateien" finden.

Ein bisschen spät aber hier:


Malwarebytes Anti-Malware 1.70.0.1100
Malwarebytes : Free anti-malware download

Datenbank Version: v2013.02.18.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Timo :: TIMO-PC [Administrator]

18.02.2013 17:16:51
mbam-log-2013-02-18 (17-16-51).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|H:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 630895
Laufzeit: 1 Stunde(n), 56 Minute(n), 18 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 15
HKCR\CLSID\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE} (Adware.Hotbar) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4D1EC4CA-4B92-4324-B8F8-C9A6ED06A8AE} (Adware.Hotbar) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\CLSID\{4E674574-3F0B-491d-8AE3-F90B43A34FD6} (Adware.Hotbar) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4E674574-3F0B-491D-8AE3-F90B43A34FD6} (Adware.Hotbar) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Typelib\{B035BA6B-57CD-4F72-B545-65BE465FCAF6} (Adware.ShoppingReport2) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Typelib\{D44FD6F0-9746-484E-B5C4-C66688393872} (Adware.ShoppingReport2) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Interface\{0EB3F101-224A-4B2B-9E5B-DF720857529C} (Adware.ShoppingReport2) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\ShoppingReport2.HbInfoBand (Adware.ShopperReports) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\ShoppingReport2.HbInfoBand.1 (Adware.ShopperReports) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\ShoppingReport2.RprtCtrl (Adware.ShopperReports) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\ShoppingReport2.RprtCtrl.1 (Adware.ShopperReports) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\HBLite (Adware.HotBar) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\ShoppingReport2 (Adware.ShoppingReport2) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ShoppingReport2 (Adware.Hotbar) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 1
HKLM\SOFTWARE\Mozilla\Firefox\extensions|HBLite@HBLite.com (Adware.HotBar) -> Daten: C:\Program Files (x86)\HBLite\bin\11.0.349.0\firefox\extensions -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

Hi,
lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.

also soll ich ihn nicht ausfürhren sondern einfach in die uninstall list gehen?