Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Langsames WWW, Mails verschwinden, und Tastaur spinnt

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 11.05.2013, 14:55   #1
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Grüß Gott,

leider bin ich kein Computer-Fachmann und hoffe, die Vorab-Scans richtig gemacht zu haben.
Irgendetwas ist an meiner Kiste faul.

- Im WWW wird der Rechner immer langsamer und hängt sich öfters auf

- Bei einem Firmen-Mail Programm (Outlook) ist der Zugriff zu einem bestimmten Ordner um Anhänge hochzuladen nicht möglich. Der Ordner ist weg. Auf dem Desktop ist er dennoch vorhanden und über den Umweg das entsprechende Dokument erst in einen anderen Ordner zu kopieren, sind Mails mit Anhang möglich.

- Die Umstellung von Hotmail auf Outlook (meine bisherige private Mail) ist nicht möglich. Sowohl bei Explorer als auch bei Mozilla. hängt sich der Rechner auf. Der Link, direkt zu Outlook funktioniert, doch habe ich einige Mails, die ich nachweislich hätte erhalten müssen nie bekommen, (auch nicht im Spam-Ordner) und gesten wollte ich eine Mail öffnen, die dann einfach weg war. Weder bei Spam noch im Papierkorb gelandet. Auch Neustart hatte nichts gebracht. Mail bleibt verschwunden.

- Die Tastatur hat bei einigen Zeichen gesponnen, es kamen doppelte Zeichen oder Zahlen.
Bei System-Rückstellung auf einen früheren Zeitpunkt ging die Tastatur danach wieder wie gewohnt?

Der Microsoft Security Essentials Scan hat nichts gefunden.

Ich würde mich sehr über Eure Hilfe freuen

Viele Grüße
Thomas

PS Extras.txt kann ich nicht hochladen. zu groß 100,1 KB?

Alt 11.05.2013, 15:00   #2
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hi,
poste erst mal alle Malwarebytes logs mit Funden.
http://www.trojaner-board.de/125889-...en-posten.html

ist das n Firmen PC?
__________________

__________________

Alt 11.05.2013, 19:57   #3
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hallo Markus,

Ich hoffe, ich habe alles richtig gemacht.
Ja das ist ein Firmen-Rechner, zumindest teilweise.
Code:
ATTFilter
tosh :: TOSH-TOSH [Administrator]

11.05.2013 20:31:35
MBAM-log-2013-05-11 (20-49-46).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 291864
Laufzeit: 16 Minute(n), 47 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService (PUP.InstallBrain) -> Keine Aktion durchgeführt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         
Danke schon mal, für deine Hilfe

VG

Thomas
__________________

Alt 11.05.2013, 20:00   #4
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hi
habt ih rkeine IT-Abteilung?
bei Malwarebefall und firmen PC's sollte man vorsichtig sein und mit dem Cheff sprechen, bereinigungen sind da eher mit Vorsicht zu genießen
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 11.05.2013, 20:45   #5
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hallo,

wieso ich zwei Beiträge eröffnet habe ist mir unklar. Wollte ich nicht., Ich dachte ich hätte nur geantwortet
Ich bin selbständig und eine Ein-Mann Firma.(Handelsvertreter) Zudem habe ich den Laden verlassen, daher habe ich keine IT-Abteilung, wohl aber den WWW Zugangslink zu einer Bank (geschüzt? mit Tokken) auf meinem Rechner. Den Tokken habe ich seit meiner Kündigung ( 30,04,13) nicht mehr. Der Rechner ist zu 100% mein Eigentum.
Bitte, wenn du Nerv hast, hilf mir bitte, aber ich habe von IT- wirklich verdammt wenig Ahnung. Gerüchteweise habe ich gehört, das besagte Bank Troubble mit Hackern hat. Zumindest wurden alle Tokken ausgetauscht.

Viele Grüße

Thomas


Alt 11.05.2013, 20:48   #6
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hi, ich hatte mich verlesen mit den zwei Beiträgen, also vergiss das.
Natürlich helfe ich dir.
Nur wenn wir feststellen, dass Firmen PC's verwendet werden, wie du ja gesagt hast, müssen wir fragen, denn Firmen haben häufig Richtlinien :-)
aber je nach dem, was ich feststelle, werde ich dir zum neu aufsetzen raten, da du ja als selbstständiger auch sensible Daten verwaltest.
Downloade dir bitte TDSSKiller TDSSKiller.exe und speichere diese Datei auf dem Desktop
  • Starte die TDSSKiller.exe - Einstellen wie in der Anleitung zu TDSSKiller beschrieben.
  • Drücke Start Scan
  • Sollten infizierte Objekte gefunden werden, wähle keinesfalls Cure. Wähle Skip und klicke auf Continue.
    TDSSKiller wird eine Logfile auf deinem Systemlaufwerk speichern (Meistens C:\)
    Als Beispiel: C:\TDSSKiller.<Version_Datum_Uhrzeit>log.txt
Poste den Inhalt bitte in jedem Fall hier in deinen Thread.
__________________
--> Langsames WWW, Mails verschwinden, und Tastaur spinnt

Alt 11.05.2013, 21:16   #7
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



OK, Hier das Ergebnis:
Code:
ATTFilter
22:00:00.0116 4440  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:00:00.0444 4440  ============================================================
22:00:00.0444 4440  Current date / time: 2013/05/11 22:00:00.0444
22:00:00.0444 4440  SystemInfo:
22:00:00.0444 4440  
22:00:00.0444 4440  OS Version: 6.1.7601 ServicePack: 1.0
22:00:00.0444 4440  Product type: Workstation
22:00:00.0444 4440  ComputerName: TOSH-TOSH
22:00:00.0444 4440  UserName: tosh
22:00:00.0444 4440  Windows directory: C:\Windows
22:00:00.0444 4440  System windows directory: C:\Windows
22:00:00.0444 4440  Running under WOW64
22:00:00.0444 4440  Processor architecture: Intel x64
22:00:00.0444 4440  Number of processors: 1
22:00:00.0444 4440  Page size: 0x1000
22:00:00.0444 4440  Boot type: Normal boot
22:00:00.0444 4440  ============================================================
22:00:01.0801 4440  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:00:01.0801 4440  ============================================================
22:00:01.0801 4440  \Device\Harddisk0\DR0:
22:00:01.0801 4440  MBR partitions:
22:00:01.0801 4440  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x9470000
22:00:01.0801 4440  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9538800, BlocksNum 0x94E0800
22:00:01.0801 4440  ============================================================
22:00:01.0832 4440  C: <-> \Device\Harddisk0\DR0\Partition1
22:00:01.0894 4440  D: <-> \Device\Harddisk0\DR0\Partition2
22:00:01.0926 4440  ============================================================
22:00:01.0926 4440  Initialize success
22:00:01.0926 4440  ============================================================
22:00:06.0247 0720  ============================================================
22:00:06.0247 0720  Scan started
22:00:06.0247 0720  Mode: Manual; 
22:00:06.0247 0720  ============================================================
22:00:06.0590 0720  ================ Scan system memory ========================
22:00:06.0590 0720  System memory - ok
22:00:06.0590 0720  ================ Scan services =============================
22:00:07.0261 0720  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:00:07.0261 0720  1394ohci - ok
22:00:07.0432 0720  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:00:07.0432 0720  ACDaemon - ok
22:00:07.0588 0720  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:00:07.0635 0720  ACPI - ok
22:00:07.0713 0720  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:00:07.0713 0720  AcpiPmi - ok
22:00:08.0041 0720  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:00:08.0041 0720  AdobeFlashPlayerUpdateSvc - ok
22:00:08.0103 0720  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
22:00:08.0119 0720  adp94xx - ok
22:00:08.0166 0720  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
22:00:08.0181 0720  adpahci - ok
22:00:08.0212 0720  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
22:00:08.0212 0720  adpu320 - ok
22:00:08.0259 0720  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:00:08.0259 0720  AeLookupSvc - ok
22:00:08.0322 0720  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:00:08.0337 0720  AFD - ok
22:00:08.0384 0720  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:00:08.0384 0720  agp440 - ok
22:00:08.0634 0720  [ C7074BD8D4B8F564859ED373433030AE ] Akamai          c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll
22:00:08.0634 0720  Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll. md5: C7074BD8D4B8F564859ED373433030AE
22:00:08.0649 0720  Akamai ( HiddenFile.Multi.Generic ) - warning
22:00:08.0649 0720  Akamai - detected HiddenFile.Multi.Generic (1)
22:00:08.0696 0720  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:00:08.0696 0720  ALG - ok
22:00:08.0758 0720  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:00:08.0758 0720  aliide - ok
22:00:08.0790 0720  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:00:08.0790 0720  amdide - ok
22:00:08.0836 0720  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
22:00:08.0836 0720  AmdK8 - ok
22:00:08.0852 0720  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:00:08.0852 0720  AmdPPM - ok
22:00:08.0914 0720  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:00:08.0914 0720  amdsata - ok
22:00:08.0977 0720  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
22:00:08.0977 0720  amdsbs - ok
22:00:09.0055 0720  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:00:09.0055 0720  amdxata - ok
22:00:09.0117 0720  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:00:09.0117 0720  AppID - ok
22:00:09.0148 0720  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:00:09.0148 0720  AppIDSvc - ok
22:00:09.0226 0720  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
22:00:09.0226 0720  Appinfo - ok
22:00:09.0336 0720  [ 5234837DFEC4092E235594B25CF02865 ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
22:00:09.0351 0720  Application Updater - ok
22:00:09.0398 0720  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
22:00:09.0398 0720  arc - ok
22:00:09.0414 0720  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
22:00:09.0414 0720  arcsas - ok
22:00:09.0460 0720  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:00:09.0460 0720  AsyncMac - ok
22:00:09.0523 0720  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:00:09.0523 0720  atapi - ok
22:00:09.0601 0720  [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
22:00:09.0616 0720  athr - ok
22:00:09.0679 0720  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:00:09.0679 0720  AudioEndpointBuilder - ok
22:00:09.0710 0720  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:00:09.0710 0720  AudioSrv - ok
22:00:09.0772 0720  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:00:09.0772 0720  AxInstSV - ok
22:00:09.0850 0720  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
22:00:09.0850 0720  b06bdrv - ok
22:00:09.0882 0720  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:00:09.0882 0720  b57nd60a - ok
22:00:09.0928 0720  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:00:09.0944 0720  BDESVC - ok
22:00:09.0991 0720  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:00:09.0991 0720  Beep - ok
22:00:10.0069 0720  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:00:10.0069 0720  BFE - ok
22:00:10.0116 0720  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
22:00:10.0131 0720  BITS - ok
22:00:10.0162 0720  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:00:10.0162 0720  blbdrive - ok
22:00:10.0225 0720  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:00:10.0225 0720  bowser - ok
22:00:10.0256 0720  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:00:10.0272 0720  BrFiltLo - ok
22:00:10.0287 0720  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:00:10.0287 0720  BrFiltUp - ok
22:00:10.0318 0720  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:00:10.0318 0720  Browser - ok
22:00:10.0381 0720  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:00:10.0381 0720  Brserid - ok
22:00:10.0412 0720  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:00:10.0412 0720  BrSerWdm - ok
22:00:10.0459 0720  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:00:10.0459 0720  BrUsbMdm - ok
22:00:10.0459 0720  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:00:10.0474 0720  BrUsbSer - ok
22:00:10.0490 0720  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:00:10.0506 0720  BTHMODEM - ok
22:00:10.0568 0720  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:00:10.0568 0720  bthserv - ok
22:00:10.0615 0720  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:00:10.0615 0720  cdfs - ok
22:00:10.0708 0720  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
22:00:10.0708 0720  cdrom - ok
22:00:10.0755 0720  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:00:10.0755 0720  CertPropSvc - ok
22:00:10.0849 0720  [ 837FF2D497880198C918E6954DBD170C ] cfWiMAXService  C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
22:00:10.0849 0720  cfWiMAXService - ok
22:00:10.0896 0720  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:00:10.0911 0720  circlass - ok
22:00:10.0958 0720  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:00:10.0958 0720  CLFS - ok
22:00:11.0036 0720  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:00:11.0052 0720  clr_optimization_v2.0.50727_32 - ok
22:00:11.0067 0720  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:00:11.0098 0720  clr_optimization_v2.0.50727_64 - ok
22:00:11.0208 0720  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:00:11.0208 0720  clr_optimization_v4.0.30319_32 - ok
22:00:11.0286 0720  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:00:11.0286 0720  clr_optimization_v4.0.30319_64 - ok
22:00:11.0332 0720  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:00:11.0332 0720  CmBatt - ok
22:00:11.0395 0720  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:00:11.0395 0720  cmdide - ok
22:00:11.0457 0720  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:00:11.0473 0720  CNG - ok
22:00:11.0535 0720  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:00:11.0535 0720  Compbatt - ok
22:00:11.0582 0720  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:00:11.0582 0720  CompositeBus - ok
22:00:11.0613 0720  COMSysApp - ok
22:00:11.0644 0720  [ D252C53BCDFC199BBA55EEB10CDB266E ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
22:00:11.0644 0720  ConfigFree Gadget Service - ok
22:00:11.0691 0720  [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
22:00:11.0691 0720  ConfigFree Service - ok
22:00:11.0722 0720  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
22:00:11.0722 0720  crcdisk - ok
22:00:11.0785 0720  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:00:11.0785 0720  CryptSvc - ok
22:00:11.0863 0720  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:00:11.0863 0720  DcomLaunch - ok
22:00:11.0910 0720  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:00:11.0910 0720  defragsvc - ok
22:00:11.0972 0720  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:00:11.0972 0720  DfsC - ok
22:00:12.0034 0720  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:00:12.0034 0720  Dhcp - ok
22:00:12.0066 0720  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:00:12.0081 0720  discache - ok
22:00:12.0112 0720  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
22:00:12.0112 0720  Disk - ok
22:00:12.0159 0720  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:00:12.0159 0720  Dnscache - ok
22:00:12.0206 0720  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:00:12.0222 0720  dot3svc - ok
22:00:12.0284 0720  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
22:00:12.0284 0720  Dot4 - ok
22:00:12.0362 0720  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
22:00:12.0362 0720  Dot4Print - ok
22:00:12.0393 0720  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
22:00:12.0393 0720  dot4usb - ok
22:00:12.0440 0720  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:00:12.0440 0720  DPS - ok
22:00:12.0487 0720  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:00:12.0487 0720  drmkaud - ok
22:00:12.0565 0720  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:00:12.0580 0720  DXGKrnl - ok
22:00:12.0627 0720  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:00:12.0627 0720  EapHost - ok
22:00:12.0752 0720  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
22:00:12.0830 0720  ebdrv - ok
22:00:12.0877 0720  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:00:12.0877 0720  EFS - ok
22:00:12.0970 0720  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:00:12.0970 0720  ehRecvr - ok
22:00:13.0017 0720  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:00:13.0017 0720  ehSched - ok
22:00:13.0064 0720  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
22:00:13.0064 0720  elxstor - ok
22:00:13.0111 0720  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:00:13.0111 0720  ErrDev - ok
22:00:13.0189 0720  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:00:13.0189 0720  EventSystem - ok
22:00:13.0220 0720  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:00:13.0236 0720  exfat - ok
22:00:13.0251 0720  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:00:13.0251 0720  fastfat - ok
22:00:13.0329 0720  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:00:13.0345 0720  Fax - ok
22:00:13.0376 0720  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:00:13.0376 0720  fdc - ok
22:00:13.0423 0720  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:00:13.0423 0720  fdPHost - ok
22:00:13.0438 0720  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:00:13.0454 0720  FDResPub - ok
22:00:13.0470 0720  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:00:13.0485 0720  FileInfo - ok
22:00:13.0501 0720  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:00:13.0516 0720  Filetrace - ok
22:00:13.0532 0720  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:00:13.0532 0720  flpydisk - ok
22:00:13.0594 0720  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:00:13.0594 0720  FltMgr - ok
22:00:13.0672 0720  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
22:00:13.0672 0720  FontCache - ok
22:00:13.0766 0720  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:00:13.0766 0720  FontCache3.0.0.0 - ok
22:00:13.0797 0720  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:00:13.0797 0720  FsDepends - ok
22:00:13.0844 0720  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:00:13.0844 0720  Fs_Rec - ok
22:00:13.0922 0720  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:00:13.0922 0720  fvevol - ok
22:00:13.0953 0720  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
22:00:13.0953 0720  gagp30kx - ok
22:00:14.0062 0720  [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
22:00:14.0062 0720  GameConsoleService - ok
22:00:14.0125 0720  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:00:14.0140 0720  gpsvc - ok
22:00:14.0234 0720  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:00:14.0234 0720  gupdate - ok
22:00:14.0296 0720  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:00:14.0296 0720  gupdatem - ok
22:00:14.0343 0720  [ 408DDD80EEDE47175F6844817B90213E ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:00:14.0343 0720  gusvc - ok
22:00:14.0390 0720  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:00:14.0390 0720  hcw85cir - ok
22:00:14.0468 0720  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:00:14.0468 0720  HdAudAddService - ok
22:00:14.0530 0720  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
22:00:14.0530 0720  HDAudBus - ok
22:00:14.0577 0720  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
22:00:14.0577 0720  HidBatt - ok
22:00:14.0608 0720  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
22:00:14.0608 0720  HidBth - ok
22:00:14.0640 0720  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:00:14.0640 0720  HidIr - ok
22:00:14.0671 0720  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
22:00:14.0671 0720  hidserv - ok
22:00:14.0749 0720  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
22:00:14.0749 0720  HidUsb - ok
22:00:14.0796 0720  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:00:14.0811 0720  hkmsvc - ok
22:00:14.0842 0720  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:00:14.0858 0720  HomeGroupListener - ok
22:00:14.0905 0720  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:00:14.0905 0720  HomeGroupProvider - ok
22:00:15.0045 0720  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:00:15.0061 0720  hpqcxs08 - ok
22:00:15.0108 0720  [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:00:15.0108 0720  hpqddsvc - ok
22:00:15.0170 0720  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:00:15.0170 0720  HpSAMD - ok
22:00:15.0248 0720  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:00:15.0264 0720  HTTP - ok
22:00:15.0310 0720  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:00:15.0310 0720  hwpolicy - ok
22:00:15.0342 0720  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
22:00:15.0342 0720  i8042prt - ok
22:00:15.0420 0720  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
22:00:15.0420 0720  iaStor - ok
22:00:15.0466 0720  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:00:15.0482 0720  iaStorV - ok
22:00:15.0560 0720  [ 6CAF30862EBDADE872B42DAA9C0D3EE8 ] IBUpdaterService C:\Windows\system32\dmwu.exe
22:00:15.0576 0720  IBUpdaterService - ok
22:00:15.0638 0720  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:00:15.0654 0720  idsvc - ok
22:00:15.0872 0720  [ 3C3F27002ABC69C5AFE29CBE6CF7ADDF ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:00:16.0075 0720  igfx - ok
22:00:16.0106 0720  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
22:00:16.0106 0720  iirsp - ok
22:00:16.0168 0720  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:00:16.0184 0720  IKEEXT - ok
22:00:16.0324 0720  [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:00:16.0356 0720  IntcAzAudAddService - ok
22:00:16.0402 0720  [ 88A20FA54C73DED4E8DAC764E9130AE9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
22:00:16.0402 0720  IntcHdmiAddService - ok
22:00:16.0465 0720  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:00:16.0465 0720  intelide - ok
22:00:16.0496 0720  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:00:16.0512 0720  intelppm - ok
22:00:16.0543 0720  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:00:16.0590 0720  IPBusEnum - ok
22:00:16.0636 0720  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:00:16.0636 0720  IpFilterDriver - ok
22:00:16.0699 0720  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:00:16.0699 0720  iphlpsvc - ok
22:00:16.0730 0720  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:00:16.0730 0720  IPMIDRV - ok
22:00:16.0777 0720  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:00:16.0777 0720  IPNAT - ok
22:00:16.0808 0720  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:00:16.0824 0720  IRENUM - ok
22:00:16.0855 0720  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:00:16.0855 0720  isapnp - ok
22:00:16.0902 0720  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:00:16.0902 0720  iScsiPrt - ok
22:00:16.0964 0720  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
22:00:16.0964 0720  kbdclass - ok
22:00:17.0026 0720  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:00:17.0026 0720  kbdhid - ok
22:00:17.0058 0720  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:00:17.0058 0720  KeyIso - ok
22:00:17.0120 0720  [ 07071C1E3CD8F0F9114AAC8B072CA1E5 ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
22:00:17.0120 0720  KMWDFILTER - ok
22:00:17.0151 0720  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:00:17.0151 0720  KSecDD - ok
22:00:17.0198 0720  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:00:17.0198 0720  KSecPkg - ok
22:00:17.0245 0720  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:00:17.0245 0720  ksthunk - ok
22:00:17.0276 0720  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:00:17.0292 0720  KtmRm - ok
22:00:17.0354 0720  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:00:17.0354 0720  LanmanServer - ok
22:00:17.0401 0720  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:00:17.0401 0720  LanmanWorkstation - ok
22:00:17.0463 0720  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:00:17.0463 0720  lltdio - ok
22:00:17.0494 0720  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:00:17.0494 0720  lltdsvc - ok
22:00:17.0510 0720  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:00:17.0510 0720  lmhosts - ok
22:00:17.0666 0720  [ 731FD0367064D15989DFF8A6F826E881 ] Lotus Notes Diagnostics C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe
22:00:17.0806 0720  Lotus Notes Diagnostics - ok
22:00:17.0838 0720  [ 41E122F6D1448C94CC05196BC41D6BFB ] LPCFilter       C:\Windows\system32\DRIVERS\LPCFilter.sys
22:00:17.0838 0720  LPCFilter - ok
22:00:17.0900 0720  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
22:00:17.0900 0720  LSI_FC - ok
22:00:17.0916 0720  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
22:00:17.0916 0720  LSI_SAS - ok
22:00:17.0931 0720  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:00:17.0931 0720  LSI_SAS2 - ok
22:00:17.0947 0720  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:00:17.0947 0720  LSI_SCSI - ok
22:00:17.0978 0720  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:00:17.0978 0720  luafv - ok
22:00:18.0025 0720  [ 1B4DBCAA0321BBB76255983148051F09 ] massfilter      C:\Windows\system32\drivers\massfilter.sys
22:00:18.0025 0720  massfilter - ok
22:00:18.0056 0720  [ 7AD627CDB12F5F451F24C8A97CA6E175 ] massfilter_hs   C:\Windows\system32\drivers\massfilter_hs.sys
22:00:18.0056 0720  massfilter_hs - ok
22:00:18.0103 0720  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:00:18.0103 0720  Mcx2Svc - ok
22:00:18.0150 0720  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
22:00:18.0150 0720  megasas - ok
22:00:18.0181 0720  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
22:00:18.0181 0720  MegaSR - ok
22:00:18.0274 0720  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:00:18.0274 0720  Microsoft Office Groove Audit Service - ok
22:00:18.0321 0720  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:00:18.0321 0720  MMCSS - ok
22:00:18.0368 0720  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:00:18.0368 0720  Modem - ok
22:00:18.0399 0720  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:00:18.0399 0720  monitor - ok
22:00:18.0462 0720  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
22:00:18.0462 0720  mouclass - ok
22:00:18.0508 0720  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:00:18.0508 0720  mouhid - ok
22:00:18.0555 0720  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:00:18.0555 0720  mountmgr - ok
22:00:18.0633 0720  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
22:00:18.0633 0720  MpFilter - ok
22:00:18.0664 0720  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:00:18.0664 0720  mpio - ok
22:00:18.0711 0720  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:00:18.0711 0720  mpsdrv - ok
22:00:18.0774 0720  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:00:18.0789 0720  MpsSvc - ok
22:00:18.0836 0720  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:00:18.0836 0720  MRxDAV - ok
22:00:18.0867 0720  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:00:18.0883 0720  mrxsmb - ok
22:00:18.0930 0720  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:00:18.0930 0720  mrxsmb10 - ok
22:00:18.0976 0720  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:00:18.0976 0720  mrxsmb20 - ok
22:00:19.0023 0720  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:00:19.0023 0720  msahci - ok
22:00:19.0070 0720  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:00:19.0070 0720  msdsm - ok
22:00:19.0132 0720  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:00:19.0132 0720  MSDTC - ok
22:00:19.0195 0720  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:00:19.0195 0720  Msfs - ok
22:00:19.0226 0720  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:00:19.0226 0720  mshidkmdf - ok
22:00:19.0257 0720  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:00:19.0257 0720  msisadrv - ok
22:00:19.0320 0720  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:00:19.0320 0720  MSiSCSI - ok
22:00:19.0335 0720  msiserver - ok
22:00:19.0382 0720  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:00:19.0382 0720  MSKSSRV - ok
22:00:19.0522 0720  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
22:00:19.0522 0720  MsMpSvc - ok
22:00:19.0585 0720  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:00:19.0585 0720  MSPCLOCK - ok
22:00:19.0616 0720  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:00:19.0616 0720  MSPQM - ok
22:00:19.0678 0720  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:00:19.0678 0720  MsRPC - ok
22:00:19.0725 0720  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:00:19.0741 0720  mssmbios - ok
22:00:19.0788 0720  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:00:19.0788 0720  MSTEE - ok
22:00:19.0803 0720  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
22:00:19.0803 0720  MTConfig - ok
22:00:19.0834 0720  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:00:19.0834 0720  Mup - ok
22:00:19.0881 0720  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:00:19.0897 0720  napagent - ok
22:00:19.0959 0720  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:00:19.0975 0720  NativeWifiP - ok
22:00:20.0037 0720  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:00:20.0053 0720  NDIS - ok
22:00:20.0100 0720  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:00:20.0100 0720  NdisCap - ok
22:00:20.0131 0720  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:00:20.0131 0720  NdisTapi - ok
22:00:20.0178 0720  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:00:20.0178 0720  Ndisuio - ok
22:00:20.0209 0720  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:00:20.0209 0720  NdisWan - ok
22:00:20.0256 0720  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:00:20.0256 0720  NDProxy - ok
22:00:20.0349 0720  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:00:20.0349 0720  Net Driver HPZ12 - ok
22:00:20.0412 0720  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:00:20.0412 0720  NetBIOS - ok
22:00:20.0474 0720  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:00:20.0474 0720  NetBT - ok
22:00:20.0505 0720  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:00:20.0505 0720  Netlogon - ok
22:00:20.0552 0720  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:00:20.0552 0720  Netman - ok
22:00:20.0568 0720  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:00:20.0583 0720  netprofm - ok
22:00:20.0630 0720  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:00:20.0630 0720  NetTcpPortSharing - ok
22:00:20.0661 0720  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
22:00:20.0661 0720  nfrd960 - ok
22:00:20.0739 0720  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:00:20.0739 0720  NisDrv - ok
22:00:20.0802 0720  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
22:00:20.0817 0720  NisSrv - ok
22:00:20.0848 0720  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:00:20.0848 0720  NlaSvc - ok
22:00:20.0895 0720  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:00:20.0895 0720  Npfs - ok
22:00:20.0926 0720  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:00:20.0926 0720  nsi - ok
22:00:20.0958 0720  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:00:20.0958 0720  nsiproxy - ok
22:00:21.0051 0720  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:00:21.0067 0720  Ntfs - ok
22:00:21.0098 0720  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:00:21.0098 0720  Null - ok
22:00:21.0160 0720  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:00:21.0160 0720  nvraid - ok
22:00:21.0192 0720  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:00:21.0192 0720  nvstor - ok
22:00:21.0223 0720  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:00:21.0238 0720  nv_agp - ok
22:00:21.0348 0720  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:00:21.0348 0720  odserv - ok
22:00:21.0394 0720  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:00:21.0394 0720  ohci1394 - ok
22:00:21.0441 0720  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:00:21.0457 0720  ose - ok
22:00:21.0535 0720  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:00:21.0535 0720  p2pimsvc - ok
22:00:21.0550 0720  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:00:21.0566 0720  p2psvc - ok
22:00:21.0597 0720  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:00:21.0613 0720  Parport - ok
22:00:21.0628 0720  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:00:21.0644 0720  partmgr - ok
22:00:21.0675 0720  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:00:21.0691 0720  PcaSvc - ok
22:00:21.0738 0720  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:00:21.0738 0720  pci - ok
22:00:21.0753 0720  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:00:21.0753 0720  pciide - ok
22:00:21.0816 0720  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:00:21.0816 0720  pcmcia - ok
22:00:21.0831 0720  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:00:21.0847 0720  pcw - ok
22:00:21.0862 0720  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:00:21.0878 0720  PEAUTH - ok
22:00:21.0972 0720  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:00:21.0972 0720  PerfHost - ok
22:00:22.0065 0720  [ 663962900E7FEA522126BA287715BB4A ] PGEffect        C:\Windows\system32\DRIVERS\pgeffect.sys
22:00:22.0065 0720  PGEffect - ok
22:00:22.0143 0720  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:00:22.0159 0720  pla - ok
22:00:22.0221 0720  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:00:22.0221 0720  PlugPlay - ok
22:00:22.0315 0720  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:00:22.0315 0720  Pml Driver HPZ12 - ok
22:00:22.0346 0720  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:00:22.0346 0720  PNRPAutoReg - ok
22:00:22.0377 0720  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:00:22.0377 0720  PNRPsvc - ok
22:00:22.0440 0720  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:00:22.0440 0720  PolicyAgent - ok
22:00:22.0486 0720  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:00:22.0502 0720  Power - ok
22:00:22.0564 0720  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:00:22.0564 0720  PptpMiniport - ok
22:00:22.0596 0720  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:00:22.0596 0720  Processor - ok
22:00:22.0658 0720  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:00:22.0658 0720  ProfSvc - ok
22:00:22.0689 0720  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:00:22.0689 0720  ProtectedStorage - ok
22:00:22.0767 0720  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:00:22.0767 0720  Psched - ok
22:00:22.0830 0720  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
22:00:22.0845 0720  ql2300 - ok
22:00:22.0892 0720  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
22:00:22.0892 0720  ql40xx - ok
22:00:22.0923 0720  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:00:22.0939 0720  QWAVE - ok
22:00:22.0954 0720  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:00:22.0954 0720  QWAVEdrv - ok
22:00:23.0001 0720  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:00:23.0001 0720  RasAcd - ok
22:00:23.0048 0720  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:00:23.0048 0720  RasAgileVpn - ok
22:00:23.0095 0720  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:00:23.0095 0720  RasAuto - ok
22:00:23.0157 0720  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:00:23.0157 0720  Rasl2tp - ok
22:00:23.0220 0720  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:00:23.0220 0720  RasMan - ok
22:00:23.0266 0720  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:00:23.0266 0720  RasPppoe - ok
22:00:23.0298 0720  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:00:23.0298 0720  RasSstp - ok
22:00:23.0360 0720  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:00:23.0360 0720  rdbss - ok
22:00:23.0391 0720  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:00:23.0391 0720  rdpbus - ok
22:00:23.0422 0720  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:00:23.0422 0720  RDPCDD - ok
22:00:23.0469 0720  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:00:23.0469 0720  RDPENCDD - ok
22:00:23.0485 0720  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:00:23.0485 0720  RDPREFMP - ok
22:00:23.0547 0720  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:00:23.0547 0720  RDPWD - ok
22:00:23.0594 0720  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:00:23.0610 0720  rdyboost - ok
22:00:23.0656 0720  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:00:23.0656 0720  RemoteAccess - ok
22:00:23.0688 0720  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:00:23.0703 0720  RemoteRegistry - ok
22:00:23.0750 0720  [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
22:00:23.0750 0720  RimUsb - ok
22:00:23.0812 0720  [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
22:00:23.0812 0720  RimVSerPort - ok
22:00:23.0844 0720  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
22:00:23.0844 0720  ROOTMODEM - ok
22:00:23.0890 0720  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:00:23.0890 0720  RpcEptMapper - ok
22:00:23.0937 0720  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:00:23.0937 0720  RpcLocator - ok
22:00:23.0984 0720  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:00:23.0984 0720  RpcSs - ok
22:00:24.0031 0720  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:00:24.0031 0720  rspndr - ok
22:00:24.0093 0720  [ 8C22F21C924413D4E109995F748E18BB ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
22:00:24.0093 0720  RSUSBSTOR - ok
22:00:24.0156 0720  [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:00:24.0156 0720  RTL8167 - ok
22:00:24.0202 0720  [ A36805E60282B1753C28001269D725E7 ] RTL8187B        C:\Windows\system32\DRIVERS\RTL8187B.sys
22:00:24.0202 0720  RTL8187B - ok
22:00:24.0218 0720  RtsUIR - ok
22:00:24.0249 0720  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:00:24.0249 0720  SamSs - ok
22:00:24.0296 0720  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:00:24.0312 0720  sbp2port - ok
22:00:24.0343 0720  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:00:24.0358 0720  SCardSvr - ok
22:00:24.0405 0720  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:00:24.0405 0720  scfilter - ok
22:00:24.0468 0720  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:00:24.0483 0720  Schedule - ok
22:00:24.0530 0720  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:00:24.0530 0720  SCPolicySvc - ok
22:00:24.0577 0720  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:00:24.0577 0720  SDRSVC - ok
22:00:24.0624 0720  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:00:24.0624 0720  secdrv - ok
22:00:24.0670 0720  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:00:24.0670 0720  seclogon - ok
22:00:24.0717 0720  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
22:00:24.0717 0720  SENS - ok
22:00:24.0733 0720  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:00:24.0733 0720  SensrSvc - ok
22:00:24.0764 0720  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:00:24.0764 0720  Serenum - ok
22:00:24.0826 0720  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:00:24.0826 0720  Serial - ok
22:00:24.0842 0720  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
22:00:24.0842 0720  sermouse - ok
22:00:24.0904 0720  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:00:24.0904 0720  SessionEnv - ok
22:00:24.0951 0720  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:00:24.0951 0720  sffdisk - ok
22:00:24.0982 0720  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:00:24.0982 0720  sffp_mmc - ok
22:00:24.0998 0720  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:00:24.0998 0720  sffp_sd - ok
22:00:25.0029 0720  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
22:00:25.0029 0720  sfloppy - ok
22:00:25.0092 0720  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:00:25.0092 0720  SharedAccess - ok
22:00:25.0154 0720  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:00:25.0154 0720  ShellHWDetection - ok
22:00:25.0170 0720  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:00:25.0185 0720  SiSRaid2 - ok
22:00:25.0216 0720  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
22:00:25.0216 0720  SiSRaid4 - ok
22:00:25.0310 0720  [ 875B04A71869D34A415CC8B4D4673EC4 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:00:25.0310 0720  SkypeUpdate - ok
22:00:25.0357 0720  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:00:25.0357 0720  Smb - ok
22:00:25.0419 0720  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:00:25.0419 0720  SNMPTRAP - ok
22:00:25.0450 0720  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:00:25.0450 0720  spldr - ok
22:00:25.0497 0720  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
22:00:25.0513 0720  Spooler - ok
22:00:25.0638 0720  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:00:25.0731 0720  sppsvc - ok
22:00:25.0778 0720  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:00:25.0778 0720  sppuinotify - ok
22:00:25.0825 0720  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:00:25.0840 0720  srv - ok
22:00:25.0903 0720  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:00:25.0903 0720  srv2 - ok
22:00:25.0950 0720  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:00:25.0965 0720  srvnet - ok
22:00:26.0012 0720  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:00:26.0028 0720  SSDPSRV - ok
22:00:26.0043 0720  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:00:26.0043 0720  SstpSvc - ok
22:00:26.0090 0720  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
22:00:26.0090 0720  stexstor - ok
22:00:26.0152 0720  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:00:26.0168 0720  stisvc - ok
22:00:26.0215 0720  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:00:26.0215 0720  swenum - ok
22:00:26.0277 0720  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:00:26.0277 0720  swprv - ok
22:00:26.0340 0720  [ BE7311DA9D6833FA69ED04B744A1C8F8 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:00:26.0340 0720  SynTP - ok
22:00:26.0433 0720  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:00:26.0449 0720  SysMain - ok
22:00:26.0496 0720  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:00:26.0496 0720  TabletInputService - ok
22:00:26.0511 0720  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:00:26.0527 0720  TapiSrv - ok
22:00:26.0558 0720  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:00:26.0558 0720  TBS - ok
22:00:26.0652 0720  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:00:26.0667 0720  Tcpip - ok
22:00:26.0745 0720  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:00:26.0761 0720  TCPIP6 - ok
22:00:26.0823 0720  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:00:26.0823 0720  tcpipreg - ok
22:00:26.0870 0720  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys
22:00:26.0870 0720  tdcmdpst - ok
22:00:26.0901 0720  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:00:26.0901 0720  TDPIPE - ok
22:00:26.0948 0720  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:00:26.0948 0720  TDTCP - ok
22:00:26.0995 0720  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:00:26.0995 0720  tdx - ok
22:00:27.0057 0720  [ 63B4F544664DC5154FDA4213E2AF09D0 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
22:00:27.0057 0720  TemproMonitoringService - ok
22:00:27.0088 0720  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:00:27.0088 0720  TermDD - ok
22:00:27.0151 0720  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:00:27.0166 0720  TermService - ok
22:00:27.0229 0720  [ 8F14DE79EBE73D6D717B8455E64DDA86 ] TGCM_ImportWiFiSvc C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe
22:00:27.0229 0720  TGCM_ImportWiFiSvc - ok
22:00:27.0260 0720  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:00:27.0276 0720  Themes - ok
22:00:27.0307 0720  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:00:27.0307 0720  THREADORDER - ok
22:00:27.0385 0720  [ 32577B987AE5401038451BB392CB8D89 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
22:00:27.0385 0720  TMachInfo - ok
22:00:27.0432 0720  [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
22:00:27.0432 0720  TODDSrv - ok
22:00:27.0525 0720  [ 4DB8C79BCEA76063B83B13410366A1F7 ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
22:00:27.0525 0720  TosCoSrv - ok
22:00:27.0603 0720  [ DD58E1250F604CBBADDA04575E5E2376 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
22:00:27.0603 0720  TOSHIBA HDD SSD Alert Service - ok
22:00:27.0666 0720  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\Windows\system32\DRIVERS\tos_sps64.sys
22:00:27.0681 0720  tos_sps64 - ok
22:00:27.0712 0720  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:00:27.0728 0720  TrkWks - ok
22:00:27.0775 0720  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:00:27.0775 0720  TrustedInstaller - ok
22:00:27.0822 0720  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:00:27.0822 0720  tssecsrv - ok
22:00:27.0884 0720  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:00:27.0884 0720  TsUsbFlt - ok
22:00:27.0946 0720  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:00:27.0946 0720  tunnel - ok
22:00:28.0009 0720  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS
22:00:28.0009 0720  TVALZ - ok
22:00:28.0040 0720  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
22:00:28.0040 0720  uagp35 - ok
22:00:28.0087 0720  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:00:28.0102 0720  udfs - ok
22:00:28.0149 0720  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:00:28.0149 0720  UI0Detect - ok
22:00:28.0180 0720  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:00:28.0180 0720  uliagpkx - ok
22:00:28.0243 0720  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
22:00:28.0243 0720  umbus - ok
22:00:28.0290 0720  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:00:28.0290 0720  UmPass - ok
22:00:28.0336 0720  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:00:28.0336 0720  upnphost - ok
22:00:28.0430 0720  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:00:28.0430 0720  usbaudio - ok
22:00:28.0492 0720  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:00:28.0492 0720  usbccgp - ok
22:00:28.0508 0720  USBCCID - ok
22:00:28.0586 0720  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:00:28.0586 0720  usbcir - ok
22:00:28.0617 0720  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:00:28.0617 0720  usbehci - ok
22:00:28.0664 0720  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:00:28.0680 0720  usbhub - ok
22:00:28.0711 0720  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:00:28.0711 0720  usbohci - ok
22:00:28.0773 0720  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:00:28.0773 0720  usbprint - ok
22:00:28.0820 0720  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:00:28.0820 0720  usbscan - ok
22:00:28.0867 0720  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:00:28.0882 0720  USBSTOR - ok
22:00:28.0945 0720  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
22:00:28.0945 0720  usbuhci - ok
22:00:29.0007 0720  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
22:00:29.0023 0720  usbvideo - ok
22:00:29.0101 0720  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
22:00:29.0101 0720  usb_rndisx - ok
22:00:29.0148 0720  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:00:29.0148 0720  UxSms - ok
22:00:29.0163 0720  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:00:29.0179 0720  VaultSvc - ok
22:00:29.0241 0720  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:00:29.0241 0720  vdrvroot - ok
22:00:29.0304 0720  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:00:29.0319 0720  vds - ok
22:00:29.0350 0720  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:00:29.0350 0720  vga - ok
22:00:29.0382 0720  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:00:29.0382 0720  VgaSave - ok
22:00:29.0428 0720  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:00:29.0428 0720  vhdmp - ok
22:00:29.0475 0720  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:00:29.0475 0720  viaide - ok
22:00:29.0506 0720  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:00:29.0506 0720  volmgr - ok
22:00:29.0553 0720  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:00:29.0569 0720  volmgrx - ok
22:00:29.0616 0720  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:00:29.0631 0720  volsnap - ok
22:00:29.0678 0720  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
22:00:29.0678 0720  vsmraid - ok
22:00:29.0756 0720  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:00:29.0772 0720  VSS - ok
22:00:29.0818 0720  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:00:29.0834 0720  vwifibus - ok
22:00:29.0865 0720  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:00:29.0881 0720  vwififlt - ok
22:00:29.0912 0720  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:00:29.0928 0720  vwifimp - ok
22:00:29.0974 0720  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:00:29.0974 0720  W32Time - ok
22:00:30.0037 0720  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
22:00:30.0037 0720  WacomPen - ok
22:00:30.0099 0720  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:00:30.0099 0720  WANARP - ok
22:00:30.0115 0720  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:00:30.0115 0720  Wanarpv6 - ok
22:00:30.0193 0720  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:00:30.0208 0720  wbengine - ok
22:00:30.0255 0720  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:00:30.0255 0720  WbioSrvc - ok
22:00:30.0318 0720  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:00:30.0318 0720  wcncsvc - ok
22:00:30.0364 0720  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:00:30.0364 0720  WcsPlugInService - ok
22:00:30.0396 0720  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
22:00:30.0396 0720  Wd - ok
22:00:30.0442 0720  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:00:30.0458 0720  Wdf01000 - ok
22:00:30.0474 0720  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:00:30.0489 0720  WdiServiceHost - ok
22:00:30.0505 0720  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:00:30.0505 0720  WdiSystemHost - ok
22:00:30.0552 0720  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:00:30.0552 0720  WebClient - ok
22:00:30.0598 0720  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:00:30.0598 0720  Wecsvc - ok
22:00:30.0630 0720  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:00:30.0630 0720  wercplsupport - ok
22:00:30.0661 0720  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:00:30.0661 0720  WerSvc - ok
22:00:30.0723 0720  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:00:30.0723 0720  WfpLwf - ok
22:00:30.0754 0720  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:00:30.0754 0720  WIMMount - ok
22:00:30.0770 0720  WinDefend - ok
22:00:30.0801 0720  WinHttpAutoProxySvc - ok
22:00:30.0864 0720  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:00:30.0864 0720  Winmgmt - ok
22:00:30.0957 0720  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:00:30.0973 0720  WinRM - ok
22:00:31.0082 0720  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:00:31.0082 0720  WinUsb - ok
22:00:31.0144 0720  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:00:31.0160 0720  Wlansvc - ok
22:00:31.0285 0720  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:00:31.0300 0720  wlidsvc - ok
22:00:31.0363 0720  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:00:31.0363 0720  WmiAcpi - ok
22:00:31.0410 0720  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:00:31.0410 0720  wmiApSrv - ok
22:00:31.0456 0720  WMPNetworkSvc - ok
22:00:31.0503 0720  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:00:31.0503 0720  WPCSvc - ok
22:00:31.0550 0720  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:00:31.0550 0720  WPDBusEnum - ok
22:00:31.0597 0720  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:00:31.0597 0720  ws2ifsl - ok
22:00:31.0644 0720  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
22:00:31.0644 0720  wscsvc - ok
22:00:31.0644 0720  WSearch - ok
22:00:31.0753 0720  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:00:31.0784 0720  wuauserv - ok
22:00:31.0815 0720  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:00:31.0815 0720  WudfPf - ok
22:00:31.0862 0720  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:00:31.0862 0720  WUDFRd - ok
22:00:31.0909 0720  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:00:31.0909 0720  wudfsvc - ok
22:00:31.0956 0720  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:00:31.0956 0720  WwanSvc - ok
22:00:32.0002 0720  [ AD6558FBC66691959BA4AC55A57C3921 ] ZTEusbmdm6k     C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
22:00:32.0018 0720  ZTEusbmdm6k - ok
22:00:32.0034 0720  [ AD6558FBC66691959BA4AC55A57C3921 ] ZTEusbnmea      C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
22:00:32.0034 0720  ZTEusbnmea - ok
22:00:32.0080 0720  [ AD6558FBC66691959BA4AC55A57C3921 ] ZTEusbser6k     C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
22:00:32.0080 0720  ZTEusbser6k - ok
22:00:32.0127 0720  ================ Scan global ===============================
22:00:32.0174 0720  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:00:32.0221 0720  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:00:32.0236 0720  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:00:32.0268 0720  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:00:32.0299 0720  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:00:32.0299 0720  [Global] - ok
22:00:32.0314 0720  ================ Scan MBR ==================================
22:00:32.0330 0720  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:00:32.0502 0720  \Device\Harddisk0\DR0 - ok
22:00:32.0517 0720  ================ Scan VBR ==================================
22:00:32.0533 0720  [ 7BB59B98D52F7ACF71A6B966ED9AF3A7 ] \Device\Harddisk0\DR0\Partition1
22:00:32.0533 0720  \Device\Harddisk0\DR0\Partition1 - ok
22:00:32.0548 0720  [ 518BF9192A08BF01C38138D3619761E2 ] \Device\Harddisk0\DR0\Partition2
22:00:32.0548 0720  \Device\Harddisk0\DR0\Partition2 - ok
22:00:32.0564 0720  ============================================================
22:00:32.0564 0720  Scan finished
22:00:32.0564 0720  ============================================================
22:00:32.0580 3836  Detected object count: 1
22:00:32.0580 3836  Actual detected object count: 1
22:00:51.0690 3836  Akamai ( HiddenFile.Multi.Generic ) - skipped by user
22:00:51.0690 3836  Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip 
22:01:00.0862 3708  Deinitialize success
         
VG

Thomas

PS: Liest Du das jetzt alles durch, lieber Markus?
Ich werde das wohl nie verstehen, aber Danke Dir.

Alt 11.05.2013, 22:15   #8
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



bitte noch mal TDSS-Killer nach Anleitung konfigurieren, und scannen
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 12.05.2013, 08:05   #9
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Zweiter Versuch.
Habe hoffentlich nun alles richtig gemacht.
Code:
ATTFilter
08:55:56.0657 2872  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:55:56.0891 2872  ============================================================
08:55:56.0891 2872  Current date / time: 2013/05/12 08:55:56.0891
08:55:56.0891 2872  SystemInfo:
08:55:56.0891 2872  
08:55:56.0891 2872  OS Version: 6.1.7601 ServicePack: 1.0
08:55:56.0891 2872  Product type: Workstation
08:55:56.0891 2872  ComputerName: TOSH-TOSH
08:55:56.0891 2872  UserName: tosh
08:55:56.0891 2872  Windows directory: C:\Windows
08:55:56.0891 2872  System windows directory: C:\Windows
08:55:56.0891 2872  Running under WOW64
08:55:56.0891 2872  Processor architecture: Intel x64
08:55:56.0891 2872  Number of processors: 1
08:55:56.0891 2872  Page size: 0x1000
08:55:56.0891 2872  Boot type: Normal boot
08:55:56.0891 2872  ============================================================
08:55:59.0000 2872  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:55:59.0000 2872  ============================================================
08:55:59.0000 2872  \Device\Harddisk0\DR0:
08:55:59.0000 2872  MBR partitions:
08:55:59.0000 2872  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x9470000
08:55:59.0000 2872  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9538800, BlocksNum 0x94E0800
08:55:59.0000 2872  ============================================================
08:55:59.0031 2872  C: <-> \Device\Harddisk0\DR0\Partition1
08:55:59.0078 2872  D: <-> \Device\Harddisk0\DR0\Partition2
08:55:59.0078 2872  ============================================================
08:55:59.0078 2872  Initialize success
08:55:59.0078 2872  ============================================================
08:56:13.0009 4952  ============================================================
08:56:13.0009 4952  Scan started
08:56:13.0009 4952  Mode: Manual; SigCheck; TDLFS; 
08:56:13.0009 4952  ============================================================
08:56:13.0680 4952  ================ Scan system memory ========================
08:56:13.0680 4952  System memory - ok
08:56:13.0680 4952  ================ Scan services =============================
08:56:13.0992 4952  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
08:56:14.0101 4952  1394ohci - ok
08:56:14.0241 4952  [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
08:56:14.0257 4952  ACDaemon - ok
08:56:14.0335 4952  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
08:56:14.0350 4952  ACPI - ok
08:56:14.0397 4952  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
08:56:14.0475 4952  AcpiPmi - ok
08:56:14.0740 4952  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:56:14.0756 4952  AdobeFlashPlayerUpdateSvc - ok
08:56:14.0834 4952  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
08:56:14.0850 4952  adp94xx - ok
08:56:14.0928 4952  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
08:56:14.0943 4952  adpahci - ok
08:56:15.0006 4952  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
08:56:15.0021 4952  adpu320 - ok
08:56:15.0052 4952  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
08:56:15.0208 4952  AeLookupSvc - ok
08:56:15.0271 4952  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
08:56:15.0333 4952  AFD - ok
08:56:15.0380 4952  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
08:56:15.0396 4952  agp440 - ok
08:56:15.0614 4952  [ C7074BD8D4B8F564859ED373433030AE ] Akamai          c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll
08:56:15.0614 4952  Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll. md5: C7074BD8D4B8F564859ED373433030AE
08:56:15.0630 4952  Akamai ( HiddenFile.Multi.Generic ) - warning
08:56:15.0630 4952  Akamai - detected HiddenFile.Multi.Generic (1)
08:56:15.0676 4952  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
08:56:15.0739 4952  ALG - ok
08:56:15.0801 4952  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
08:56:15.0817 4952  aliide - ok
08:56:15.0832 4952  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
08:56:15.0832 4952  amdide - ok
08:56:15.0879 4952  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
08:56:15.0957 4952  AmdK8 - ok
08:56:15.0957 4952  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
08:56:16.0004 4952  AmdPPM - ok
08:56:16.0066 4952  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
08:56:16.0082 4952  amdsata - ok
08:56:16.0129 4952  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
08:56:16.0160 4952  amdsbs - ok
08:56:16.0207 4952  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
08:56:16.0222 4952  amdxata - ok
08:56:16.0285 4952  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
08:56:16.0519 4952  AppID - ok
08:56:16.0566 4952  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
08:56:16.0628 4952  AppIDSvc - ok
08:56:16.0706 4952  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
08:56:16.0768 4952  Appinfo - ok
08:56:16.0878 4952  [ 5234837DFEC4092E235594B25CF02865 ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
08:56:16.0909 4952  Application Updater - ok
08:56:16.0956 4952  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
08:56:16.0971 4952  arc - ok
08:56:17.0018 4952  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
08:56:17.0034 4952  arcsas - ok
08:56:17.0049 4952  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
08:56:17.0112 4952  AsyncMac - ok
08:56:17.0174 4952  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
08:56:17.0190 4952  atapi - ok
08:56:17.0268 4952  [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
08:56:17.0361 4952  athr - ok
08:56:17.0424 4952  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:56:17.0502 4952  AudioEndpointBuilder - ok
08:56:17.0517 4952  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
08:56:17.0564 4952  AudioSrv - ok
08:56:17.0626 4952  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
08:56:17.0720 4952  AxInstSV - ok
08:56:17.0767 4952  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
08:56:17.0829 4952  b06bdrv - ok
08:56:17.0876 4952  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
08:56:17.0923 4952  b57nd60a - ok
08:56:17.0985 4952  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
08:56:18.0048 4952  BDESVC - ok
08:56:18.0079 4952  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
08:56:18.0157 4952  Beep - ok
08:56:18.0235 4952  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
08:56:18.0313 4952  BFE - ok
08:56:18.0360 4952  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
08:56:18.0422 4952  BITS - ok
08:56:18.0469 4952  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
08:56:18.0500 4952  blbdrive - ok
08:56:18.0547 4952  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
08:56:18.0609 4952  bowser - ok
08:56:18.0640 4952  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:56:18.0687 4952  BrFiltLo - ok
08:56:18.0718 4952  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:56:18.0734 4952  BrFiltUp - ok
08:56:18.0781 4952  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
08:56:18.0828 4952  Browser - ok
08:56:18.0874 4952  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
08:56:18.0937 4952  Brserid - ok
08:56:18.0999 4952  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
08:56:19.0030 4952  BrSerWdm - ok
08:56:19.0077 4952  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
08:56:19.0124 4952  BrUsbMdm - ok
08:56:19.0155 4952  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
08:56:19.0186 4952  BrUsbSer - ok
08:56:19.0202 4952  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
08:56:19.0249 4952  BTHMODEM - ok
08:56:19.0311 4952  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
08:56:19.0374 4952  bthserv - ok
08:56:19.0436 4952  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
08:56:19.0498 4952  cdfs - ok
08:56:19.0561 4952  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
08:56:19.0592 4952  cdrom - ok
08:56:19.0654 4952  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
08:56:19.0717 4952  CertPropSvc - ok
08:56:19.0810 4952  [ 837FF2D497880198C918E6954DBD170C ] cfWiMAXService  C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
08:56:19.0826 4952  cfWiMAXService - ok
08:56:19.0873 4952  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
08:56:19.0888 4952  circlass - ok
08:56:19.0951 4952  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
08:56:19.0966 4952  CLFS - ok
08:56:20.0060 4952  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:56:20.0076 4952  clr_optimization_v2.0.50727_32 - ok
08:56:20.0091 4952  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:56:20.0107 4952  clr_optimization_v2.0.50727_64 - ok
08:56:20.0200 4952  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:56:20.0232 4952  clr_optimization_v4.0.30319_32 - ok
08:56:20.0294 4952  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:56:20.0310 4952  clr_optimization_v4.0.30319_64 - ok
08:56:20.0325 4952  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
08:56:20.0372 4952  CmBatt - ok
08:56:20.0419 4952  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
08:56:20.0434 4952  cmdide - ok
08:56:20.0497 4952  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
08:56:20.0544 4952  CNG - ok
08:56:20.0590 4952  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
08:56:20.0606 4952  Compbatt - ok
08:56:20.0684 4952  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
08:56:20.0715 4952  CompositeBus - ok
08:56:20.0746 4952  COMSysApp - ok
08:56:20.0778 4952  [ D252C53BCDFC199BBA55EEB10CDB266E ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
08:56:20.0793 4952  ConfigFree Gadget Service - ok
08:56:20.0824 4952  [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
08:56:20.0840 4952  ConfigFree Service - ok
08:56:20.0871 4952  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
08:56:20.0887 4952  crcdisk - ok
08:56:20.0949 4952  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
08:56:21.0012 4952  CryptSvc - ok
08:56:21.0074 4952  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
08:56:21.0136 4952  DcomLaunch - ok
08:56:21.0183 4952  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
08:56:21.0246 4952  defragsvc - ok
08:56:21.0308 4952  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
08:56:21.0370 4952  DfsC - ok
08:56:21.0433 4952  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
08:56:21.0495 4952  Dhcp - ok
08:56:21.0526 4952  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
08:56:21.0589 4952  discache - ok
08:56:21.0636 4952  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
08:56:21.0651 4952  Disk - ok
08:56:21.0682 4952  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
08:56:21.0776 4952  Dnscache - ok
08:56:21.0838 4952  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
08:56:21.0885 4952  dot3svc - ok
08:56:21.0948 4952  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
08:56:21.0994 4952  Dot4 - ok
08:56:22.0057 4952  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
08:56:22.0104 4952  Dot4Print - ok
08:56:22.0135 4952  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
08:56:22.0166 4952  dot4usb - ok
08:56:22.0213 4952  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
08:56:22.0275 4952  DPS - ok
08:56:22.0338 4952  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
08:56:22.0369 4952  drmkaud - ok
08:56:22.0447 4952  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
08:56:22.0478 4952  DXGKrnl - ok
08:56:22.0540 4952  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
08:56:22.0587 4952  EapHost - ok
08:56:22.0712 4952  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
08:56:22.0837 4952  ebdrv - ok
08:56:22.0884 4952  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
08:56:22.0962 4952  EFS - ok
08:56:23.0055 4952  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
08:56:23.0164 4952  ehRecvr - ok
08:56:23.0196 4952  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
08:56:23.0289 4952  ehSched - ok
08:56:23.0352 4952  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
08:56:23.0367 4952  elxstor - ok
08:56:23.0398 4952  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
08:56:23.0445 4952  ErrDev - ok
08:56:23.0508 4952  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
08:56:23.0570 4952  EventSystem - ok
08:56:23.0586 4952  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
08:56:23.0648 4952  exfat - ok
08:56:23.0679 4952  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
08:56:23.0726 4952  fastfat - ok
08:56:23.0804 4952  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
08:56:23.0882 4952  Fax - ok
08:56:23.0929 4952  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
08:56:23.0944 4952  fdc - ok
08:56:23.0976 4952  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
08:56:24.0022 4952  fdPHost - ok
08:56:24.0054 4952  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
08:56:24.0116 4952  FDResPub - ok
08:56:24.0147 4952  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
08:56:24.0163 4952  FileInfo - ok
08:56:24.0194 4952  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
08:56:24.0256 4952  Filetrace - ok
08:56:24.0288 4952  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
08:56:24.0334 4952  flpydisk - ok
08:56:24.0381 4952  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
08:56:24.0412 4952  FltMgr - ok
08:56:24.0490 4952  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
08:56:24.0568 4952  FontCache - ok
08:56:24.0631 4952  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:56:24.0646 4952  FontCache3.0.0.0 - ok
08:56:24.0678 4952  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
08:56:24.0693 4952  FsDepends - ok
08:56:24.0740 4952  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
08:56:24.0756 4952  Fs_Rec - ok
08:56:24.0818 4952  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
08:56:24.0834 4952  fvevol - ok
08:56:24.0880 4952  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
08:56:24.0896 4952  gagp30kx - ok
08:56:24.0990 4952  [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
08:56:25.0005 4952  GameConsoleService - ok
08:56:25.0068 4952  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
08:56:25.0130 4952  gpsvc - ok
08:56:25.0255 4952  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:56:25.0270 4952  gupdate - ok
08:56:25.0333 4952  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:56:25.0348 4952  gupdatem - ok
08:56:25.0411 4952  [ 408DDD80EEDE47175F6844817B90213E ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:56:25.0426 4952  gusvc - ok
08:56:25.0458 4952  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
08:56:25.0504 4952  hcw85cir - ok
08:56:25.0582 4952  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:56:25.0614 4952  HdAudAddService - ok
08:56:25.0676 4952  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
08:56:25.0707 4952  HDAudBus - ok
08:56:25.0754 4952  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
08:56:25.0801 4952  HidBatt - ok
08:56:25.0832 4952  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
08:56:25.0863 4952  HidBth - ok
08:56:25.0910 4952  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
08:56:25.0941 4952  HidIr - ok
08:56:25.0988 4952  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
08:56:26.0050 4952  hidserv - ok
08:56:26.0113 4952  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
08:56:26.0128 4952  HidUsb - ok
08:56:26.0160 4952  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
08:56:26.0238 4952  hkmsvc - ok
08:56:26.0284 4952  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:56:26.0331 4952  HomeGroupListener - ok
08:56:26.0378 4952  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:56:26.0409 4952  HomeGroupProvider - ok
08:56:26.0565 4952  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
08:56:26.0581 4952  hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
08:56:26.0581 4952  hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
08:56:26.0659 4952  [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
08:56:26.0690 4952  hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
08:56:26.0690 4952  hpqddsvc - detected UnsignedFile.Multi.Generic (1)
08:56:26.0768 4952  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
08:56:26.0784 4952  HpSAMD - ok
08:56:26.0862 4952  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
08:56:26.0924 4952  HTTP - ok
08:56:26.0971 4952  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
08:56:26.0986 4952  hwpolicy - ok
08:56:27.0018 4952  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
08:56:27.0033 4952  i8042prt - ok
08:56:27.0111 4952  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
08:56:27.0127 4952  iaStor - ok
08:56:27.0174 4952  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
08:56:27.0189 4952  iaStorV - ok
08:56:27.0267 4952  [ 6CAF30862EBDADE872B42DAA9C0D3EE8 ] IBUpdaterService C:\Windows\system32\dmwu.exe
08:56:27.0376 4952  IBUpdaterService - ok
08:56:27.0454 4952  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:56:27.0486 4952  idsvc - ok
08:56:27.0704 4952  [ 3C3F27002ABC69C5AFE29CBE6CF7ADDF ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
08:56:28.0000 4952  igfx - ok
08:56:28.0047 4952  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
08:56:28.0063 4952  iirsp - ok
08:56:28.0125 4952  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
08:56:28.0188 4952  IKEEXT - ok
08:56:28.0312 4952  [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:56:28.0359 4952  IntcAzAudAddService - ok
08:56:28.0406 4952  [ 88A20FA54C73DED4E8DAC764E9130AE9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
08:56:28.0468 4952  IntcHdmiAddService - ok
08:56:28.0515 4952  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
08:56:28.0531 4952  intelide - ok
08:56:28.0562 4952  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
08:56:28.0609 4952  intelppm - ok
08:56:28.0640 4952  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
08:56:28.0702 4952  IPBusEnum - ok
08:56:28.0749 4952  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:56:28.0812 4952  IpFilterDriver - ok
08:56:28.0858 4952  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
08:56:28.0921 4952  iphlpsvc - ok
08:56:28.0936 4952  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
08:56:28.0968 4952  IPMIDRV - ok
08:56:29.0014 4952  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
08:56:29.0077 4952  IPNAT - ok
08:56:29.0108 4952  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
08:56:29.0186 4952  IRENUM - ok
08:56:29.0217 4952  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
08:56:29.0233 4952  isapnp - ok
08:56:29.0280 4952  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
08:56:29.0295 4952  iScsiPrt - ok
08:56:29.0342 4952  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
08:56:29.0358 4952  kbdclass - ok
08:56:29.0420 4952  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
08:56:29.0467 4952  kbdhid - ok
08:56:29.0482 4952  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
08:56:29.0514 4952  KeyIso - ok
08:56:29.0576 4952  [ 07071C1E3CD8F0F9114AAC8B072CA1E5 ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
08:56:29.0592 4952  KMWDFILTER - ok
08:56:29.0623 4952  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
08:56:29.0638 4952  KSecDD - ok
08:56:29.0685 4952  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
08:56:29.0701 4952  KSecPkg - ok
08:56:29.0748 4952  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
08:56:29.0794 4952  ksthunk - ok
08:56:29.0841 4952  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
08:56:29.0904 4952  KtmRm - ok
08:56:29.0982 4952  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
08:56:30.0044 4952  LanmanServer - ok
08:56:30.0075 4952  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:56:30.0138 4952  LanmanWorkstation - ok
08:56:30.0200 4952  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
08:56:30.0262 4952  lltdio - ok
08:56:30.0294 4952  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
08:56:30.0356 4952  lltdsvc - ok
08:56:30.0387 4952  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
08:56:30.0434 4952  lmhosts - ok
08:56:30.0574 4952  [ 731FD0367064D15989DFF8A6F826E881 ] Lotus Notes Diagnostics C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe
08:56:31.0604 4952  Lotus Notes Diagnostics - ok
08:56:31.0635 4952  [ 41E122F6D1448C94CC05196BC41D6BFB ] LPCFilter       C:\Windows\system32\DRIVERS\LPCFilter.sys
08:56:31.0651 4952  LPCFilter - ok
08:56:31.0698 4952  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
08:56:31.0729 4952  LSI_FC - ok
08:56:31.0729 4952  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
08:56:31.0760 4952  LSI_SAS - ok
08:56:31.0776 4952  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:56:31.0791 4952  LSI_SAS2 - ok
08:56:31.0807 4952  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:56:31.0822 4952  LSI_SCSI - ok
08:56:31.0854 4952  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
08:56:31.0932 4952  luafv - ok
08:56:31.0978 4952  [ 1B4DBCAA0321BBB76255983148051F09 ] massfilter      C:\Windows\system32\drivers\massfilter.sys
08:56:32.0010 4952  massfilter - ok
08:56:32.0056 4952  [ 7AD627CDB12F5F451F24C8A97CA6E175 ] massfilter_hs   C:\Windows\system32\drivers\massfilter_hs.sys
08:56:32.0103 4952  massfilter_hs - ok
08:56:32.0134 4952  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
08:56:32.0181 4952  Mcx2Svc - ok
08:56:32.0228 4952  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
08:56:32.0244 4952  megasas - ok
08:56:32.0275 4952  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
08:56:32.0290 4952  MegaSR - ok
08:56:32.0384 4952  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
08:56:32.0400 4952  Microsoft Office Groove Audit Service - ok
08:56:32.0431 4952  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
08:56:32.0493 4952  MMCSS - ok
08:56:32.0540 4952  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
08:56:32.0602 4952  Modem - ok
08:56:32.0634 4952  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
08:56:32.0680 4952  monitor - ok
08:56:32.0743 4952  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
08:56:32.0758 4952  mouclass - ok
08:56:32.0805 4952  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
08:56:32.0836 4952  mouhid - ok
08:56:32.0883 4952  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
08:56:32.0899 4952  mountmgr - ok
08:56:32.0977 4952  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
08:56:32.0992 4952  MpFilter - ok
08:56:33.0024 4952  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
08:56:33.0039 4952  mpio - ok
08:56:33.0086 4952  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
08:56:33.0148 4952  mpsdrv - ok
08:56:33.0226 4952  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
08:56:33.0289 4952  MpsSvc - ok
08:56:33.0320 4952  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
08:56:33.0367 4952  MRxDAV - ok
08:56:33.0414 4952  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
08:56:33.0476 4952  mrxsmb - ok
08:56:33.0523 4952  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:56:33.0570 4952  mrxsmb10 - ok
08:56:33.0616 4952  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:56:33.0648 4952  mrxsmb20 - ok
08:56:33.0694 4952  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
08:56:33.0694 4952  msahci - ok
08:56:33.0757 4952  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
08:56:33.0772 4952  msdsm - ok
08:56:33.0819 4952  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
08:56:33.0850 4952  MSDTC - ok
08:56:33.0913 4952  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
08:56:33.0944 4952  Msfs - ok
08:56:33.0975 4952  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
08:56:34.0038 4952  mshidkmdf - ok
08:56:34.0069 4952  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
08:56:34.0084 4952  msisadrv - ok
08:56:34.0116 4952  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
08:56:34.0194 4952  MSiSCSI - ok
08:56:34.0194 4952  msiserver - ok
08:56:34.0256 4952  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
08:56:34.0303 4952  MSKSSRV - ok
08:56:34.0459 4952  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
08:56:34.0474 4952  MsMpSvc - ok
08:56:34.0521 4952  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
08:56:34.0584 4952  MSPCLOCK - ok
08:56:34.0599 4952  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
08:56:34.0662 4952  MSPQM - ok
08:56:34.0708 4952  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
08:56:34.0740 4952  MsRPC - ok
08:56:34.0802 4952  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
08:56:34.0802 4952  mssmbios - ok
08:56:34.0864 4952  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
08:56:34.0927 4952  MSTEE - ok
08:56:34.0942 4952  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
08:56:34.0958 4952  MTConfig - ok
08:56:35.0005 4952  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
08:56:35.0020 4952  Mup - ok
08:56:35.0067 4952  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
08:56:35.0130 4952  napagent - ok
08:56:35.0208 4952  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
08:56:35.0254 4952  NativeWifiP - ok
08:56:35.0332 4952  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
08:56:35.0364 4952  NDIS - ok
08:56:35.0410 4952  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
08:56:35.0457 4952  NdisCap - ok
08:56:35.0504 4952  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
08:56:35.0551 4952  NdisTapi - ok
08:56:35.0598 4952  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
08:56:35.0644 4952  Ndisuio - ok
08:56:35.0691 4952  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
08:56:35.0738 4952  NdisWan - ok
08:56:35.0785 4952  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
08:56:35.0847 4952  NDProxy - ok
08:56:35.0941 4952  [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
08:56:35.0972 4952  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
08:56:35.0972 4952  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
08:56:36.0034 4952  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
08:56:36.0081 4952  NetBIOS - ok
08:56:36.0128 4952  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
08:56:36.0175 4952  NetBT - ok
08:56:36.0190 4952  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
08:56:36.0206 4952  Netlogon - ok
08:56:36.0268 4952  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
08:56:36.0315 4952  Netman - ok
08:56:36.0346 4952  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
08:56:36.0393 4952  netprofm - ok
08:56:36.0440 4952  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:56:36.0456 4952  NetTcpPortSharing - ok
08:56:36.0487 4952  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
08:56:36.0502 4952  nfrd960 - ok
08:56:36.0580 4952  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
08:56:36.0596 4952  NisDrv - ok
08:56:36.0690 4952  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
08:56:36.0705 4952  NisSrv - ok
08:56:36.0752 4952  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
08:56:36.0799 4952  NlaSvc - ok
08:56:36.0846 4952  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
08:56:36.0892 4952  Npfs - ok
08:56:36.0924 4952  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
08:56:36.0970 4952  nsi - ok
08:56:37.0017 4952  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
08:56:37.0064 4952  nsiproxy - ok
08:56:37.0158 4952  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
08:56:37.0220 4952  Ntfs - ok
08:56:37.0251 4952  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
08:56:37.0298 4952  Null - ok
08:56:37.0345 4952  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
08:56:37.0360 4952  nvraid - ok
08:56:37.0392 4952  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
08:56:37.0407 4952  nvstor - ok
08:56:37.0485 4952  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
08:56:37.0501 4952  nv_agp - ok
08:56:37.0594 4952  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:56:37.0626 4952  odserv - ok
08:56:37.0657 4952  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
08:56:37.0688 4952  ohci1394 - ok
08:56:37.0719 4952  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:56:37.0735 4952  ose - ok
08:56:37.0782 4952  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
08:56:37.0844 4952  p2pimsvc - ok
08:56:37.0875 4952  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
08:56:37.0891 4952  p2psvc - ok
08:56:37.0938 4952  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
08:56:37.0953 4952  Parport - ok
08:56:37.0984 4952  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
08:56:37.0984 4952  partmgr - ok
08:56:38.0031 4952  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
08:56:38.0078 4952  PcaSvc - ok
08:56:38.0125 4952  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
08:56:38.0140 4952  pci - ok
08:56:38.0156 4952  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
08:56:38.0172 4952  pciide - ok
08:56:38.0218 4952  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
08:56:38.0234 4952  pcmcia - ok
08:56:38.0265 4952  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
08:56:38.0265 4952  pcw - ok
08:56:38.0312 4952  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
08:56:38.0374 4952  PEAUTH - ok
08:56:38.0484 4952  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
08:56:38.0515 4952  PerfHost - ok
08:56:38.0624 4952  [ 663962900E7FEA522126BA287715BB4A ] PGEffect        C:\Windows\system32\DRIVERS\pgeffect.sys
08:56:38.0624 4952  PGEffect - ok
08:56:38.0686 4952  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
08:56:38.0780 4952  pla - ok
08:56:38.0842 4952  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
08:56:38.0889 4952  PlugPlay - ok
08:56:38.0983 4952  [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
08:56:38.0998 4952  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
08:56:38.0998 4952  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
08:56:39.0045 4952  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
08:56:39.0092 4952  PNRPAutoReg - ok
08:56:39.0123 4952  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
08:56:39.0139 4952  PNRPsvc - ok
08:56:39.0186 4952  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
08:56:39.0248 4952  PolicyAgent - ok
08:56:39.0310 4952  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
08:56:39.0388 4952  Power - ok
08:56:39.0451 4952  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
08:56:39.0513 4952  PptpMiniport - ok
08:56:39.0560 4952  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
08:56:39.0591 4952  Processor - ok
08:56:39.0654 4952  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
08:56:39.0700 4952  ProfSvc - ok
08:56:39.0716 4952  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:56:39.0732 4952  ProtectedStorage - ok
08:56:39.0794 4952  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
08:56:39.0856 4952  Psched - ok
08:56:39.0919 4952  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
08:56:39.0966 4952  ql2300 - ok
08:56:40.0012 4952  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
08:56:40.0028 4952  ql40xx - ok
08:56:40.0059 4952  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
08:56:40.0090 4952  QWAVE - ok
08:56:40.0106 4952  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
08:56:40.0153 4952  QWAVEdrv - ok
08:56:40.0200 4952  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
08:56:40.0262 4952  RasAcd - ok
08:56:40.0324 4952  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
08:56:40.0371 4952  RasAgileVpn - ok
08:56:40.0402 4952  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
08:56:40.0465 4952  RasAuto - ok
08:56:40.0512 4952  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
08:56:40.0574 4952  Rasl2tp - ok
08:56:40.0636 4952  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
08:56:40.0683 4952  RasMan - ok
08:56:40.0730 4952  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
08:56:40.0777 4952  RasPppoe - ok
08:56:40.0808 4952  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
08:56:40.0870 4952  RasSstp - ok
08:56:40.0933 4952  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
08:56:40.0995 4952  rdbss - ok
08:56:41.0042 4952  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
08:56:41.0073 4952  rdpbus - ok
08:56:41.0104 4952  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
08:56:41.0167 4952  RDPCDD - ok
08:56:41.0214 4952  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
08:56:41.0276 4952  RDPENCDD - ok
08:56:41.0292 4952  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
08:56:41.0338 4952  RDPREFMP - ok
08:56:41.0385 4952  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
08:56:41.0432 4952  RDPWD - ok
08:56:41.0494 4952  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
08:56:41.0510 4952  rdyboost - ok
08:56:41.0557 4952  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
08:56:41.0619 4952  RemoteAccess - ok
08:56:41.0650 4952  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
08:56:41.0713 4952  RemoteRegistry - ok
08:56:41.0775 4952  [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
08:56:41.0822 4952  RimUsb - ok
08:56:41.0884 4952  [ C903D49655B4AAE46673F0AAA6BE0F58 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
08:56:41.0947 4952  RimVSerPort - ok
08:56:41.0994 4952  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
08:56:42.0025 4952  ROOTMODEM - ok
08:56:42.0072 4952  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
08:56:42.0134 4952  RpcEptMapper - ok
08:56:42.0181 4952  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
08:56:42.0212 4952  RpcLocator - ok
08:56:42.0259 4952  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
08:56:42.0306 4952  RpcSs - ok
08:56:42.0352 4952  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
08:56:42.0384 4952  rspndr - ok
08:56:42.0477 4952  [ 8C22F21C924413D4E109995F748E18BB ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
08:56:42.0524 4952  RSUSBSTOR - ok
08:56:42.0586 4952  [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
08:56:42.0649 4952  RTL8167 - ok
08:56:42.0696 4952  [ A36805E60282B1753C28001269D725E7 ] RTL8187B        C:\Windows\system32\DRIVERS\RTL8187B.sys
08:56:42.0742 4952  RTL8187B - ok
08:56:42.0758 4952  RtsUIR - ok
08:56:42.0789 4952  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
08:56:42.0805 4952  SamSs - ok
08:56:42.0852 4952  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
08:56:42.0867 4952  sbp2port - ok
08:56:42.0914 4952  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
08:56:42.0976 4952  SCardSvr - ok
08:56:43.0023 4952  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
08:56:43.0070 4952  scfilter - ok
08:56:43.0148 4952  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
08:56:43.0226 4952  Schedule - ok
08:56:43.0257 4952  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
08:56:43.0304 4952  SCPolicySvc - ok
08:56:43.0335 4952  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
08:56:43.0398 4952  SDRSVC - ok
08:56:43.0429 4952  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
08:56:43.0491 4952  secdrv - ok
08:56:43.0538 4952  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
08:56:43.0585 4952  seclogon - ok
08:56:43.0632 4952  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
08:56:43.0694 4952  SENS - ok
08:56:43.0725 4952  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
08:56:43.0772 4952  SensrSvc - ok
08:56:43.0819 4952  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
08:56:43.0819 4952  Serenum - ok
08:56:43.0866 4952  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
08:56:43.0897 4952  Serial - ok
08:56:43.0928 4952  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
08:56:43.0944 4952  sermouse - ok
08:56:44.0022 4952  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
08:56:44.0084 4952  SessionEnv - ok
08:56:44.0131 4952  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
08:56:44.0162 4952  sffdisk - ok
08:56:44.0193 4952  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
08:56:44.0224 4952  sffp_mmc - ok
08:56:44.0256 4952  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
08:56:44.0287 4952  sffp_sd - ok
08:56:44.0318 4952  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
08:56:44.0349 4952  sfloppy - ok
08:56:44.0412 4952  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
08:56:44.0458 4952  SharedAccess - ok
08:56:44.0505 4952  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:56:44.0568 4952  ShellHWDetection - ok
08:56:44.0614 4952  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:56:44.0614 4952  SiSRaid2 - ok
08:56:44.0661 4952  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
08:56:44.0677 4952  SiSRaid4 - ok
08:56:44.0755 4952  [ 875B04A71869D34A415CC8B4D4673EC4 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
08:56:44.0770 4952  SkypeUpdate - ok
08:56:44.0817 4952  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
08:56:44.0848 4952  Smb - ok
08:56:44.0911 4952  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
08:56:44.0942 4952  SNMPTRAP - ok
08:56:44.0989 4952  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
08:56:45.0004 4952  spldr - ok
08:56:45.0051 4952  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
08:56:45.0098 4952  Spooler - ok
08:56:45.0223 4952  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
08:56:45.0348 4952  sppsvc - ok
08:56:45.0394 4952  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
08:56:45.0457 4952  sppuinotify - ok
08:56:45.0504 4952  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
08:56:45.0566 4952  srv - ok
08:56:45.0613 4952  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
08:56:45.0644 4952  srv2 - ok
08:56:45.0706 4952  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
08:56:45.0738 4952  srvnet - ok
08:56:45.0784 4952  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
08:56:45.0862 4952  SSDPSRV - ok
08:56:45.0862 4952  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
08:56:45.0909 4952  SstpSvc - ok
08:56:45.0972 4952  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
08:56:45.0972 4952  stexstor - ok
08:56:46.0034 4952  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
08:56:46.0065 4952  stisvc - ok
08:56:46.0112 4952  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
08:56:46.0128 4952  swenum - ok
08:56:46.0190 4952  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
08:56:46.0252 4952  swprv - ok
08:56:46.0330 4952  [ BE7311DA9D6833FA69ED04B744A1C8F8 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
08:56:46.0346 4952  SynTP - ok
08:56:46.0440 4952  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
08:56:46.0486 4952  SysMain - ok
08:56:46.0533 4952  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:56:46.0580 4952  TabletInputService - ok
08:56:46.0611 4952  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
08:56:46.0674 4952  TapiSrv - ok
08:56:46.0720 4952  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
08:56:46.0783 4952  TBS - ok
08:56:46.0892 4952  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
08:56:46.0939 4952  Tcpip - ok
08:56:47.0017 4952  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
08:56:47.0064 4952  TCPIP6 - ok
08:56:47.0126 4952  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
08:56:47.0157 4952  tcpipreg - ok
08:56:47.0220 4952  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys
08:56:47.0235 4952  tdcmdpst - ok
08:56:47.0251 4952  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
08:56:47.0298 4952  TDPIPE - ok
08:56:47.0344 4952  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
08:56:47.0376 4952  TDTCP - ok
08:56:47.0422 4952  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
08:56:47.0485 4952  tdx - ok
08:56:47.0563 4952  [ 63B4F544664DC5154FDA4213E2AF09D0 ] TemproMonitoringService C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
08:56:47.0578 4952  TemproMonitoringService - ok
08:56:47.0594 4952  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
08:56:47.0610 4952  TermDD - ok
08:56:47.0688 4952  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
08:56:47.0750 4952  TermService - ok
08:56:47.0812 4952  [ 8F14DE79EBE73D6D717B8455E64DDA86 ] TGCM_ImportWiFiSvc C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe
08:56:47.0943 4952  TGCM_ImportWiFiSvc - ok
08:56:48.0006 4952  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
08:56:48.0021 4952  Themes - ok
08:56:48.0068 4952  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
08:56:48.0099 4952  THREADORDER - ok
08:56:48.0177 4952  [ 32577B987AE5401038451BB392CB8D89 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
08:56:48.0193 4952  TMachInfo - ok
08:56:48.0224 4952  [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
08:56:48.0224 4952  TODDSrv - ok
08:56:48.0318 4952  [ 4DB8C79BCEA76063B83B13410366A1F7 ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
08:56:48.0333 4952  TosCoSrv - ok
08:56:48.0411 4952  [ DD58E1250F604CBBADDA04575E5E2376 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
08:56:48.0427 4952  TOSHIBA HDD SSD Alert Service - ok
08:56:48.0474 4952  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\Windows\system32\DRIVERS\tos_sps64.sys
08:56:48.0505 4952  tos_sps64 - ok
08:56:48.0552 4952  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
08:56:48.0598 4952  TrkWks - ok
08:56:48.0676 4952  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:56:48.0786 4952  TrustedInstaller - ok
08:56:48.0848 4952  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
08:56:48.0895 4952  tssecsrv - ok
08:56:48.0957 4952  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
08:56:49.0020 4952  TsUsbFlt - ok
08:56:49.0066 4952  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
08:56:49.0113 4952  tunnel - ok
08:56:49.0176 4952  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS
08:56:49.0191 4952  TVALZ - ok
08:56:49.0222 4952  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
08:56:49.0238 4952  uagp35 - ok
08:56:49.0285 4952  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
08:56:49.0347 4952  udfs - ok
08:56:49.0394 4952  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
08:56:49.0410 4952  UI0Detect - ok
08:56:49.0441 4952  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
08:56:49.0456 4952  uliagpkx - ok
08:56:49.0519 4952  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
08:56:49.0566 4952  umbus - ok
08:56:49.0597 4952  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
08:56:49.0612 4952  UmPass - ok
08:56:49.0659 4952  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
08:56:49.0722 4952  upnphost - ok
08:56:49.0800 4952  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
08:56:49.0831 4952  usbaudio - ok
08:56:49.0878 4952  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
08:56:49.0924 4952  usbccgp - ok
08:56:49.0940 4952  USBCCID - ok
08:56:50.0018 4952  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
08:56:50.0034 4952  usbcir - ok
08:56:50.0065 4952  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
08:56:50.0096 4952  usbehci - ok
08:56:50.0158 4952  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
08:56:50.0190 4952  usbhub - ok
08:56:50.0221 4952  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
08:56:50.0252 4952  usbohci - ok
08:56:50.0314 4952  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
08:56:50.0361 4952  usbprint - ok
08:56:50.0408 4952  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
08:56:50.0424 4952  usbscan - ok
08:56:50.0470 4952  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:56:50.0548 4952  USBSTOR - ok
08:56:50.0595 4952  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
08:56:50.0626 4952  usbuhci - ok
08:56:50.0720 4952  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
08:56:50.0751 4952  usbvideo - ok
08:56:50.0798 4952  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
08:56:50.0845 4952  usb_rndisx - ok
08:56:50.0892 4952  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
08:56:50.0938 4952  UxSms - ok
08:56:50.0970 4952  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
08:56:50.0985 4952  VaultSvc - ok
08:56:51.0048 4952  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
08:56:51.0063 4952  vdrvroot - ok
08:56:51.0126 4952  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
08:56:51.0188 4952  vds - ok
08:56:51.0235 4952  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
08:56:51.0266 4952  vga - ok
08:56:51.0282 4952  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
08:56:51.0344 4952  VgaSave - ok
08:56:51.0391 4952  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
08:56:51.0406 4952  vhdmp - ok
08:56:51.0438 4952  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
08:56:51.0453 4952  viaide - ok
08:56:51.0500 4952  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
08:56:51.0516 4952  volmgr - ok
08:56:51.0562 4952  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
08:56:51.0578 4952  volmgrx - ok
08:56:51.0640 4952  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
08:56:51.0656 4952  volsnap - ok
08:56:51.0703 4952  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
08:56:51.0734 4952  vsmraid - ok
08:56:51.0796 4952  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
08:56:51.0874 4952  VSS - ok
08:56:51.0937 4952  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
08:56:51.0968 4952  vwifibus - ok
08:56:52.0015 4952  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
08:56:52.0046 4952  vwififlt - ok
08:56:52.0093 4952  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
08:56:52.0108 4952  vwifimp - ok
08:56:52.0155 4952  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
08:56:52.0202 4952  W32Time - ok
08:56:52.0233 4952  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
08:56:52.0280 4952  WacomPen - ok
08:56:52.0342 4952  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
08:56:52.0405 4952  WANARP - ok
08:56:52.0420 4952  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
08:56:52.0467 4952  Wanarpv6 - ok
08:56:52.0545 4952  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
08:56:52.0623 4952  wbengine - ok
08:56:52.0670 4952  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
08:56:52.0686 4952  WbioSrvc - ok
08:56:52.0748 4952  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
08:56:52.0779 4952  wcncsvc - ok
08:56:52.0826 4952  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:56:52.0857 4952  WcsPlugInService - ok
08:56:52.0888 4952  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
08:56:52.0904 4952  Wd - ok
08:56:52.0951 4952  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
08:56:52.0982 4952  Wdf01000 - ok
08:56:53.0013 4952  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
08:56:53.0107 4952  WdiServiceHost - ok
08:56:53.0138 4952  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
08:56:53.0154 4952  WdiSystemHost - ok
08:56:53.0200 4952  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
08:56:53.0232 4952  WebClient - ok
08:56:53.0278 4952  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
08:56:53.0341 4952  Wecsvc - ok
08:56:53.0372 4952  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
08:56:53.0419 4952  wercplsupport - ok
08:56:53.0434 4952  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
08:56:53.0481 4952  WerSvc - ok
08:56:53.0528 4952  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
08:56:53.0575 4952  WfpLwf - ok
08:56:53.0590 4952  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
08:56:53.0606 4952  WIMMount - ok
08:56:53.0637 4952  WinDefend - ok
08:56:53.0653 4952  WinHttpAutoProxySvc - ok
08:56:53.0715 4952  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
08:56:53.0778 4952  Winmgmt - ok
08:56:53.0871 4952  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
08:56:53.0949 4952  WinRM - ok
08:56:54.0043 4952  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
08:56:54.0090 4952  WinUsb - ok
08:56:54.0152 4952  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
08:56:54.0199 4952  Wlansvc - ok
08:56:54.0355 4952  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:56:54.0417 4952  wlidsvc - ok
08:56:54.0448 4952  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
08:56:54.0480 4952  WmiAcpi - ok
08:56:54.0542 4952  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
08:56:54.0604 4952  wmiApSrv - ok
08:56:54.0667 4952  WMPNetworkSvc - ok
08:56:54.0714 4952  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
08:56:54.0745 4952  WPCSvc - ok
08:56:54.0792 4952  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
08:56:54.0807 4952  WPDBusEnum - ok
08:56:54.0838 4952  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
08:56:54.0885 4952  ws2ifsl - ok
08:56:54.0932 4952  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
08:56:54.0979 4952  wscsvc - ok
08:56:54.0994 4952  WSearch - ok
08:56:55.0166 4952  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
08:56:55.0260 4952  wuauserv - ok
08:56:55.0291 4952  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
08:56:55.0353 4952  WudfPf - ok
08:56:55.0416 4952  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
08:56:55.0447 4952  WUDFRd - ok
08:56:55.0494 4952  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
08:56:55.0525 4952  wudfsvc - ok
08:56:55.0587 4952  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
08:56:55.0634 4952  WwanSvc - ok
08:56:55.0696 4952  [ AD6558FBC66691959BA4AC55A57C3921 ] ZTEusbmdm6k     C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
08:56:55.0759 4952  ZTEusbmdm6k - ok
08:56:55.0790 4952  [ AD6558FBC66691959BA4AC55A57C3921 ] ZTEusbnmea      C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
08:56:55.0806 4952  ZTEusbnmea - ok
08:56:55.0852 4952  [ AD6558FBC66691959BA4AC55A57C3921 ] ZTEusbser6k     C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
08:56:55.0868 4952  ZTEusbser6k - ok
08:56:55.0899 4952  ================ Scan global ===============================
08:56:55.0946 4952  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:56:55.0993 4952  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:56:56.0008 4952  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:56:56.0040 4952  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:56:56.0071 4952  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:56:56.0086 4952  [Global] - ok
08:56:56.0086 4952  ================ Scan MBR ==================================
08:56:56.0102 4952  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:56:57.0132 4952  \Device\Harddisk0\DR0 - ok
08:56:57.0132 4952  ================ Scan VBR ==================================
08:56:57.0178 4952  [ 7BB59B98D52F7ACF71A6B966ED9AF3A7 ] \Device\Harddisk0\DR0\Partition1
08:56:57.0178 4952  \Device\Harddisk0\DR0\Partition1 - ok
08:56:57.0210 4952  [ 518BF9192A08BF01C38138D3619761E2 ] \Device\Harddisk0\DR0\Partition2
08:56:57.0210 4952  \Device\Harddisk0\DR0\Partition2 - ok
08:56:57.0210 4952  ============================================================
08:56:57.0210 4952  Scan finished
08:56:57.0210 4952  ============================================================
08:56:57.0225 4844  Detected object count: 5
08:56:57.0225 4844  Actual detected object count: 5
08:57:18.0597 4844  Akamai ( HiddenFile.Multi.Generic ) - skipped by user
08:57:18.0597 4844  Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip 
08:57:18.0613 4844  hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
08:57:18.0613 4844  hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
08:57:18.0613 4844  hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
08:57:18.0613 4844  hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
08:57:18.0613 4844  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
08:57:18.0613 4844  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
08:57:18.0613 4844  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
08:57:18.0613 4844  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
         
Hallo,

habe gerade festgestellt, an einigen meiner Ordner sind "Schloßsymbole" aufgetaucht?

VG
Thomas

Alt 13.05.2013, 13:04   #10
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



das ist normal unter vista bzw 7
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 13.05.2013, 15:13   #11
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hallo Markus,
Scan lief ohne Probleme

Code:
ATTFilter
ComboFix 13-05-12.01 - tosh 13.05.2013  15:48:20.1.1 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.1913.572 [GMT 2:00]
ausgeführt von:: c:\users\tosh\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Thomas\Documents\~WRL0003.tmp
.
.
(((((((((((((((((((((((   Dateien erstellt von 2013-04-13 bis 2013-05-13  ))))))))))))))))))))))))))))))
.
.
2013-05-13 13:59 . 2013-05-13 13:59	--------	d-----w-	c:\users\Thomas\AppData\Local\temp
2013-05-13 13:59 . 2013-05-13 13:59	--------	d-----w-	c:\users\Gast\AppData\Local\temp
2013-05-13 13:59 . 2013-05-13 13:59	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-05-13 13:36 . 2013-05-13 13:36	69000	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{85437DFC-E132-4AC8-86FA-818AFB5E7DB9}\offreg.dll
2013-05-12 08:30 . 2013-04-04 12:50	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-05-11 18:18 . 2013-05-11 18:19	--------	d-----w-	c:\program files (x86)\SweetIM
2013-05-11 18:18 . 2013-05-11 18:18	--------	d-----w-	c:\programdata\SweetIM
2013-05-11 18:18 . 2013-05-11 18:18	--------	d-----w-	c:\windows\SysWow64\jmdp
2013-05-11 18:18 . 2013-05-11 18:18	--------	d-----w-	c:\windows\SysWow64\ARFC
2013-05-11 18:18 . 2013-02-27 11:24	1273648	----a-w-	c:\windows\system32\dmwu.exe
2013-05-11 18:18 . 2013-02-27 11:23	35328	----a-w-	c:\windows\system32\ImHttpComm.dll
2013-05-11 18:18 . 2011-06-10 23:15	829264	----a-w-	c:\windows\system32\msvcr100.dll
2013-05-11 18:18 . 2011-06-10 23:15	608080	----a-w-	c:\windows\system32\msvcp100.dll
2013-05-11 18:18 . 2013-05-12 06:22	--------	d-----w-	c:\windows\SysWow64\WNLT
2013-05-11 18:18 . 2013-05-11 18:18	--------	d-----w-	c:\program files (x86)\sweetpacks bundle uninstaller
2013-05-11 18:17 . 2013-05-11 18:17	--------	d-----w-	c:\program files (x86)\FilesFrog Update Checker
2013-05-02 09:11 . 2013-05-02 09:11	--------	d-----w-	c:\users\tosh\.thumbnails
2013-05-02 09:07 . 2013-05-02 09:07	--------	d-----w-	c:\users\tosh\AppData\Local\fontconfig
2013-05-02 09:07 . 2013-05-10 06:36	--------	d-----w-	c:\users\tosh\.gimp-2.8
2013-05-02 09:07 . 2013-05-02 09:07	--------	d-----w-	c:\users\tosh\AppData\Local\gegl-0.2
2013-05-02 09:04 . 2013-05-02 09:04	--------	d-----w-	c:\program files (x86)\Common Files\Java
2013-05-02 09:03 . 2013-04-04 03:35	95648	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-24 04:18 . 2013-04-12 14:45	1656680	----a-w-	c:\windows\system32\drivers\ntfs.sys
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-09 19:56 . 2011-03-28 16:36	22240	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-02 15:29 . 2010-02-23 14:26	278800	------w-	c:\windows\system32\MpSigStub.exe
2013-04-10 08:57 . 2011-01-24 10:59	72702784	----a-w-	c:\windows\system32\MRT.exe
2013-04-01 11:00 . 2012-09-25 11:44	861088	----a-w-	c:\windows\SysWow64\npdeployJava1.dll
2013-04-01 11:00 . 2011-12-13 14:19	782240	----a-w-	c:\windows\SysWow64\deployJava1.dll
2013-03-20 13:29 . 2009-07-14 02:36	152576	----a-w-	c:\windows\SysWow64\msclmd.dll
2013-03-20 13:29 . 2009-07-14 02:36	175616	----a-w-	c:\windows\system32\msclmd.dll
2013-03-19 06:04 . 2013-04-10 07:49	5550424	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 07:49	43520	----a-w-	c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 07:49	3968856	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 07:49	3913560	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 07:49	6656	----a-w-	c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 07:49	112640	----a-w-	c:\windows\system32\smss.exe
2013-03-13 20:18 . 2012-05-22 17:23	693976	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 20:18 . 2011-09-17 19:16	73432	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-01 03:36 . 2013-04-10 07:49	3153408	----a-w-	c:\windows\system32\win32k.sys
2013-02-22 06:57 . 2013-04-10 08:54	17817088	----a-w-	c:\windows\system32\mshtml.dll
2013-02-22 06:29 . 2013-04-10 08:54	10925568	----a-w-	c:\windows\system32\ieframe.dll
2013-02-22 06:27 . 2013-04-10 08:54	2312704	----a-w-	c:\windows\system32\jscript9.dll
2013-02-22 06:21 . 2013-04-10 08:54	1346560	----a-w-	c:\windows\system32\urlmon.dll
2013-02-22 06:20 . 2013-04-10 08:54	1392128	----a-w-	c:\windows\system32\wininet.dll
2013-02-22 06:19 . 2013-04-10 08:54	1494528	----a-w-	c:\windows\system32\inetcpl.cpl
2013-02-22 06:18 . 2013-04-10 08:54	237056	----a-w-	c:\windows\system32\url.dll
2013-02-22 06:17 . 2013-04-10 08:54	85504	----a-w-	c:\windows\system32\jsproxy.dll
2013-02-22 06:15 . 2013-04-10 08:54	173056	----a-w-	c:\windows\system32\ieUnatt.exe
2013-02-22 06:15 . 2013-04-10 08:54	599040	----a-w-	c:\windows\system32\vbscript.dll
2013-02-22 06:15 . 2013-04-10 08:54	816640	----a-w-	c:\windows\system32\jscript.dll
2013-02-22 06:14 . 2013-04-10 08:54	729088	----a-w-	c:\windows\system32\msfeeds.dll
2013-02-22 06:13 . 2013-04-10 08:54	2147840	----a-w-	c:\windows\system32\iertutil.dll
2013-02-22 06:13 . 2013-04-10 08:54	96768	----a-w-	c:\windows\system32\mshtmled.dll
2013-02-22 06:12 . 2013-04-10 08:54	2382848	----a-w-	c:\windows\system32\mshtml.tlb
2013-02-22 06:09 . 2013-04-10 08:54	248320	----a-w-	c:\windows\system32\ieui.dll
2013-02-22 03:46 . 2013-04-10 08:54	1800704	----a-w-	c:\windows\SysWow64\jscript9.dll
2013-02-22 03:38 . 2013-04-10 08:54	1129472	----a-w-	c:\windows\SysWow64\wininet.dll
2013-02-22 03:37 . 2013-04-10 08:54	1427968	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2013-02-22 03:34 . 2013-04-10 08:54	142848	----a-w-	c:\windows\SysWow64\ieUnatt.exe
2013-02-22 03:34 . 2013-04-10 08:54	420864	----a-w-	c:\windows\SysWow64\vbscript.dll
2013-02-22 03:31 . 2013-04-10 08:54	2382848	----a-w-	c:\windows\SysWow64\mshtml.tlb
2013-02-15 06:08 . 2013-04-10 07:49	44032	----a-w-	c:\windows\system32\tsgqec.dll
2013-02-15 06:06 . 2013-04-10 07:49	3717632	----a-w-	c:\windows\system32\mstscax.dll
2013-02-15 06:02 . 2013-04-10 07:49	158720	----a-w-	c:\windows\system32\aaclient.dll
2013-02-15 04:37 . 2013-04-10 07:49	3217408	----a-w-	c:\windows\SysWow64\mstscax.dll
2013-02-15 04:34 . 2013-04-10 07:49	131584	----a-w-	c:\windows\SysWow64\aaclient.dll
2013-02-15 03:25 . 2013-04-10 07:49	36864	----a-w-	c:\windows\SysWow64\tsgqec.dll
2012-07-12 05:10 . 2012-07-12 05:10	4024320	----a-w-	c:\program files (x86)\GUT3BC8.tmp
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}]
2013-02-23 18:17	1352512	----a-w-	c:\program files (x86)\pdfforge Toolbar\IE\7.0\pdfforgeToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{B922D405-6D13-4A2B-AE89-08A030DA4402}"= "c:\program files (x86)\pdfforge Toolbar\IE\7.0\pdfforgeToolbarIE.dll" [2013-02-23 1352512]
.
[HKEY_CLASSES_ROOT\clsid\{b922d405-6d13-4a2b-ae89-08a030da4402}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyTomTomSA.exe"="c:\program files (x86)\MyTomTom 3\MyTomTomSA.exe" [2011-11-14 435672]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-03-01 18643560]
"SDP"="c:\program files (x86)\FilesFrog Update Checker\update_checker.exe" [2013-01-31 201808]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SVPWUTIL"="c:\program files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe" [2009-08-12 352256]
"HWSetup"="c:\program files\TOSHIBA\Utilities\HWSetup.exe" [2009-06-02 423936]
"KeNotify"="c:\program files (x86)\TOSHIBA\Utilities\KeNotify.exe" [2009-01-13 34088]
"TWebCamera"="c:\program files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" [2009-08-11 2446648]
"ToshibaServiceStation"="c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" [2009-08-17 1294136]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2008-01-31 385024]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"BabylonToolbar"="c:\program files (x86)\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe" [2010-11-07 286720]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-12-19 41208]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" [2013-02-23 1297728]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"SweetIM"="c:\program files (x86)\SweetIM\Messenger\SweetIM.exe" [2012-10-04 115032]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\Toshiba Online Product Information\topi.exe" [2009-08-12 6203296]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-03-01 161384]
R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2009-12-28 12800]
R3 massfilter_hs;USB Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter_hs.sys [2009-02-03 12800]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-07-30 222208]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S0 tos_sps64;TOSHIBA tos_sps64 Service;c:\windows\system32\DRIVERS\tos_sps64.sys [2009-07-24 482384]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [2013-02-23 805752]
S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2009-08-10 248688]
S2 ConfigFree Gadget Service;ConfigFree Gadget Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe [2009-07-14 42368]
S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
S2 IBUpdaterService;IBUpdaterService;c:\windows\system32\dmwu.exe [2013-02-27 1273648]
S2 Lotus Notes Diagnostics;Lotus Notes-Diagnose;c:\program files (x86)\IBM\Lotus\Notes\nsd.exe [2010-08-11 3417480]
S2 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [2009-08-06 116104]
S2 TGCM_ImportWiFiSvc;TGCM_ImportWiFiSvc;c:\program files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe [2010-11-11 199600]
S3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-07-10 139264]
S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2009-06-22 35008]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-05-22 215040]
S3 RTL8187B;Realtek RTL8187B Wireless 802.11bg 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8187B.sys [2009-08-20 446976]
S3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-08-17 51512]
S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2009-08-03 137560]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - NisDrv
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
Akamai	REG_MULTI_SZ   	Akamai
.
Inhalt des "geplante Tasks" Ordners
.
2013-05-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-22 20:18]
.
2013-05-13 c:\windows\Tasks\DMEPeriodicTask.job
- c:\program files (x86)\HP\Digital Imaging\bin\warrantyextension\HPPromo.exe [2009-06-16 06:17]
.
2013-05-12 c:\windows\Tasks\Google Software Updater.job
- c:\program files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-09-08 13:35]
.
2013-05-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-22 17:58]
.
2013-05-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-03-22 17:58]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2009-08-03 709976]
"Toshiba TEMPRO"="c:\program files (x86)\Toshiba TEMPRO\TemproTray.exe" [2009-08-06 1050000]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-02 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-02 387608]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-02 365592]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-28 7982112]
"Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaReminder.exe" [2009-07-30 134032]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://portal.postbank.de/dana-na/auth/(finanzberatung)url_default/welcome.cgi?p=failed
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=8c516dfc000000000000701a0472d220&tlver=1.4.19.19&affID=17162
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
Trusted Zone: fioport.de\content
Trusted Zone: fioport.de\ssl
Trusted Zone: fioport.de\ssl3
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\tosh\AppData\Roaming\Mozilla\Firefox\Profiles\pgrujmdh.default\
FF - prefs.js: browser.search.defaulturl - 
FF - prefs.js: browser.search.selectedEngine - SweetIM Search
FF - prefs.js: browser.startup.homepage - hxxp://search.babylon.com/?babsrc=HP_Prot
FF - ExtSQL: 2013-05-11 20:19; {EEE6C361-6118-11DC-9C72-001320C79847}; c:\users\tosh\AppData\Roaming\Mozilla\Firefox\Profiles\pgrujmdh.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
FF - ExtSQL: !HIDDEN! 2010-08-09 12:15; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Wow6432Node-HKCU-Run-OM2_Monitor - c:\program files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
SafeBoot-mcmscsvc
SafeBoot-MCODS
HKLM-Run-TosNC - c:\program files (x86)\Toshiba\BulletinBoard\TosNcCore.exe
HKLM-Run-TosReelTimeMonitor - c:\program files (x86)\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
HKLM-Run-SmoothView - c:\program files (x86)\Toshiba\SmoothView\SmoothView.exe
HKLM-Run-TPwrMain - c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE
HKLM-Run-00TCrdMain - c:\program files (x86)\TOSHIBA\FlashCards\TCrdMain.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SmartFaceVWatcher - c:\program files (x86)\Toshiba\SmartFaceV\SmartFaceVWatcher.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-05-13  16:06:30
ComboFix-quarantined-files.txt  2013-05-13 14:06
.
Vor Suchlauf: 14 Verzeichnis(se), 12.451.250.176 Bytes frei
Nach Suchlauf: 18 Verzeichnis(se), 13.745.467.392 Bytes frei
.
- - End Of File - - 57E9D77AAE5253968EA2F913DF6FDEEF
         

Alt 13.05.2013, 15:15   #12
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Hi,
malwarebytes:
Downloade Dir bitte Malwarebytes
  • Installiere
    das Programm in den vorgegebenen Pfad.
    Vista und Win7 User mit Rechtsklick "als Administrator starten"
  • Starte Malwarebytes, klicke auf Aktualisierung --> Suche
    nach Aktualisierung
  • Wenn das Update beendet wurde, aktiviere vollständiger Scan durchführen und drücke auf Scannen.
  • Wenn der Scan beendet
    ist, klicke auf Ergebnisse anzeigen.
  • Versichere Dich, dass alle Funde markiert sind und drücke Entferne Auswahl.
  • Poste
    das Logfile, welches sich in Notepad öffnet, hier in den Thread.
  • Nachträglich kannst du den Bericht unter "Log Dateien" finden.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 13.05.2013, 17:06   #13
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



OK, Suchlauf ist fertig. 1 Objekt gefunden. Bevor ich es vergesse, ist vieleicht wichtig, beim Hochfahren war heute der Ikon Internetexplorer von der Taskleiste verschwunden.
Code:
ATTFilter
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.05.13.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
tosh :: TOSH-TOSH [Administrator]

13.05.2013 16:30:22
mbam-log-2013-05-13 (16-30-22).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 556655
Laufzeit: 1 Stunde(n), 28 Minute(n), 29 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService (PUP.InstallBrain) -> Keine Aktion durchgeführt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
         

Alt 13.05.2013, 17:10   #14
markusg
/// Malware-holic
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Fund gelöscht?

lade den CCleaner standard:
CCleaner - Download - Filepony
falls der CCleaner
bereits instaliert, überspringen.
öffnen, Tools (extras),uninstall Llist, als txt speichern. öffnen.
hinter, jedes von dir benötigte programm, schreibe notwendig.
hinter, jedes, von dir nicht benötigte, unnötig.
hinter, dir unbekannte, unbekannt.
liste posten.
__________________
-Verdächtige mails bitte an uns zur Analyse weiterleiten:
markusg.trojaner-board@web.de
Weiterleiten
Anleitung:
http://markusg.trojaner-board.de
Mails bitte vorerst nach obiger Anleitung an
markusg.trojaner-board@web.de
Weiterleiten
Wenn Ihr uns unterstützen möchtet

Alt 13.05.2013, 17:46   #15
webwood
 
Langsames WWW, Mails verschwinden,  und Tastaur spinnt - Standard

Langsames WWW, Mails verschwinden, und Tastaur spinnt



Ja, Fund gelöscht.

Hier die Liste. Bei Toshiba habe ich mal alles als nötig befunden, weil ich eine Toshiba-Rechner habe. Obs wirklich nötig ist, weiß ich nicht.
Code:
ATTFilter
2007 Microsoft Office system	Microsoft Corporation	17.02.2012		12.0.6612.1000 nötig
7-Zip 9.20		10.05.2013		unbekannt
Adobe AIR	Adobe Systems Inc.	07.09.2009		1.5.2.8870
Adobe Flash Player 11 ActiveX	Adobe Systems Incorporated	12.03.2013	6,00MB	11.6.602.180 nötig
Adobe Flash Player 11 Plugin	Adobe Systems Incorporated	12.03.2013	6,00MB	11.6.602.180 nötig
Adobe Reader 9.5.4 - Deutsch	Adobe Systems Incorporated	02.03.2013	118,6MB	9.5.4 nötig
Adobe Shockwave Player 11.5	Adobe Systems, Inc.	29.09.2010		11.5.8.612 unbekannt
Akamai NetSession Interface Service		09.11.2011	unbekannt	
Amazon.de	Amazon EU S.a.r.L.	21.02.2010	unbekannt	
ArcSoft Print Creations	ArcSoft	26.03.2010		2.8.255.384  unnötig
ArcSoft Print Creations - Album Page	ArcSoft	26.03.2010	unnötig	
ArcSoft Print Creations - Funhouse	ArcSoft	26.03.2010	unnötig	
ArcSoft Print Creations - Greeting Card	ArcSoft	26.03.2010	unnötig	
ArcSoft Print Creations - Photo Book	ArcSoft	26.03.2010	unnötig	
ArcSoft Print Creations - Photo Calendar	ArcSoft	26.03.2010 unnötig		
ArcSoft Print Creations - Scrapbook	ArcSoft	26.03.2010	unnötig	
ArcSoft Print Creations - Slimline Card	ArcSoft	26.03.2010	unnötig	
Babylon toolbar		22.02.2011		unbekannt
Bundled software uninstaller		10.05.2013  unbekannt		
CCleaner	Piriform	16.09.2011		3.10
Compatibility Pack für 2007 Office System	Microsoft Corporation	08.01.2013	243MB	12.0.6612.1000 Nötig
eBay	eBay Inc.	07.09.2009	0,16MB	1.0.4 unbekannt
FilesFrog Update Checker		10.05.2013 Unbekannt		
FoxTab PDF Converter	FoxTab	22.02.2011	unbekannt	
GIMP 2.8.4	The GIMP Team	01.05.2013	245MB	2.8.4 nötig
Google Earth	Google	23.03.2013	173,6MB	7.0.3.8542 unnötig
Google Toolbar for Internet Explorer	Google Inc.	21.02.2010	unnötig	
Google Updater	Google Inc.	26.08.2012		2.4.2432.1652 unnötig
HP Customer Participation Program 13.0	HP	08.08.2010		13.0 nötig
HP Imaging Device Functions 13.0	HP	08.08.2010		13.0 
HP Photosmart B109a-m All-In-One Driver Software 13.0 Rel .6	HP	08.08.2010		13.0 nötig
HP Print Projects 1.0	HP	08.08.2010		1.0 nötig
HP Product Detection	HP	05.05.2012	1,87MB	11.14.0001  nötig
HP Smart Web Printing 4.5	HP	08.08.2010		4.5 nötig
HP Solution Center 13.0	HP	08.08.2010		13.0 nötig
HP Update	Hewlett-Packard	19.12.2011	3,98MB	5.003.001.001 nötig
Intel(R) Graphics Media Accelerator Driver	Intel Corporation	21.02.2010	54,3MB	8.15.10.1883 unbekannt
Intel® Matrix Storage Manager	Intel Corporation	21.02.2010  unbekannt		
Java 7 Update 21	Oracle	31.03.2013	129,1MB	7.0.210  unbekannt
Juniper Networks Host Checker	Juniper Networks	12.05.2013		7.3.1.21949 unnötig
Juniper Networks, Inc. Setup Client	Juniper Networks, Inc.	04.11.2012	0,78MB	7.3.1.26369 unnötig
Juniper Networks, Inc. Setup Client 64-bit Activex Control	Juniper Networks, Inc.	04.11.2012		2.1.1.1 unnötig
K.IM 2.0 - Kompakte Immobilienbewertung		28.02.2013	19,7MB	unnötig
League of Legends	Riot Games	27.07.2012		1.3 unnötig
Lotus Notes 8.5.2 de	IBM	22.05.2011	459MB	8.52.10245 unbekannt
MAGIX FunPix Maker 1.0.0.0 (D)	MAGIX AG	14.12.2012		1.0.0.0 Nötig
Malwarebytes Anti-Malware Version 1.75.0.1300	Malwarebytes Corporation	12.05.2013	19,3MB	1.75.0.1300 nötig
Microsoft .NET Framework 4 Client Profile	Microsoft Corporation	21.12.2010	38,8MB	4.0.30319 vermutl. nötig?
Microsoft .NET Framework 4 Client Profile DEU Language Pack	Microsoft Corporation	21.12.2010	2,94MB	4.0.30319 vermutl. nötig?
Microsoft Flight Simulator 2004 - Das Jahrhundert der Luftfahrt	Microsoft	10.07.2012		9.0 unnötig
Microsoft Office Enterprise 2007	Microsoft Corporation	17.02.2012		12.0.6612.1000 vermutl. nötig?
Microsoft Office PowerPoint Viewer 2007 (German)	Microsoft Corporation	08.01.2013	120,2MB	12.0.6612.1000 nötig
Microsoft Office Suite Activation Assistant	Microsoft Corporation	07.09.2009	8,37MB	2.9 vermutl. nötig?
Microsoft Silverlight	Microsoft Corporation	13.03.2013	100,3MB	5.1.20125.0 unbekannt
Microsoft SQL Server 2005 Compact Edition [ENU]	Microsoft Corporation	07.09.2009	1,72MB	3.1.0000 unbekannt
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053	Microsoft Corporation	26.01.2011	0,24MB	8.0.50727.4053 unbekannt
Microsoft Visual C++ 2005 Redistributable	Microsoft Corporation	15.06.2011	0,29MB	8.0.61001 unbekannt
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148	Microsoft Corporation	26.01.2011	0,21MB	9.0.30729.4148 unbekannt
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148	Microsoft Corporation	26.01.2011	0,20MB	9.0.30729.4148 unbekannt
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570	Microsoft Corporation	12.04.2011	0,77MB	9.0.30729.5570 unbekannt
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570	Microsoft Corporation	12.04.2011	0,58MB	9.0.30729.5570 unbekannt
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17	Microsoft Corporation	07.09.2009	0,77MB	9.0.30729 unbekannt
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161	Microsoft Corporation	15.06.2011	0,77MB	9.0.30729.6161 unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729	Microsoft Corporation	13.12.2012	0,23MB	9.0.30729 unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17	Microsoft Corporation	27.02.2010	0,58MB	9.0.30729 unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148	Microsoft Corporation	03.01.2012	0,22MB	 unbekannt
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161	Microsoft Corporation	15.06.2011	0,59MB	9.0.30729.6161 unbekannt
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219	Microsoft Corporation	27.10.2011	12,3MB	10.0.40219 unbekannt
Microsoft Works	Microsoft Corporation	09.10.2012	878MB	9.7.0621 unbekannt
Mobile Connection Manager	Mobile Connection Manager	28.01.2011 unbekannt		
Mozilla Firefox 9.0.1 (x86 de)	Mozilla	21.12.2011	37,9MB	9.0.1 nötig
MSXML 4.0 SP2 (KB954430)	Microsoft Corporation	26.03.2010	1,28MB	4.20.9870.0 unbekannt
MSXML 4.0 SP2 (KB973688)	Microsoft Corporation	26.03.2010	1,33MB	4.20.9876.0 unbekannt
MyTomTom 3.1.0.530	TomTom	01.04.2012		3.1.0.530 nötig
Need For Speed™ World	Electronic Arts	31.03.2012	12,4MB	1.0.0.846 unnötig
NX Client for Windows 3.4.0-7	NoMachine	09.05.2011		3.4.0-7 unbekannt
OpenAL		03.01.2012	Unbekannt	
Pando Media Booster	Pando Networks Inc.	27.07.2012	5,47MB	 unbekannt
PDFCreator	Frank Heindörfer, Philip Chinery	21.03.2011		1.2.0 nötig
pdfforge Toolbar v7.0	Spigot, Inc.	12.03.2013	25,0MB	7.0 unbekannt
PHOTO PORST		13.12.2012	unnötig	
Picasa 3	Google, Inc.	30.11.2010		3.8 nötig
PlayReady PC Runtime amd64	Microsoft Corporation	07.09.2009	2,06MB	1.3.0 unbekannt
QuickTime	Apple Inc.	25.03.2010	77,5MB	7.4.1.14 unbekannt
Realtek 8136 8168 8169 Ethernet Driver	Realtek	07.09.2009		1.00.0005 unbekannt
Realtek High Definition Audio Driver	Realtek Semiconductor Corp.	21.02.2010		6.0.1.5904 unbekannt
Realtek USB 2.0 Card Reader	Realtek Semiconductor Corp.	21.02.2010		6.1.7600.30101 unbekannt
Realtek WLAN Driver	Realtek	21.02.2010	1,54MB	2.00.0006 unbekannt
Shop for HP Supplies	HP	08.08.2010		13.0 unnötig
Skype™ 6.3	Skype Technologies S.A.	28.03.2013	20,9MB	6.3.105 unnötig
SweetIM Bundle by SweetPacks	SweetPacks LTD	10.05.2013		1.0.0.0
Synaptics Pointing Device Driver	Synaptics Incorporated	21.02.2010		13.2.6.1 unbekannt
Toshiba Assist	TOSHIBA	07.09.2009		3.00.09 nötig
TOSHIBA Bulletin Board	TOSHIBA Corporation	21.02.2010		1.0.04.64 nötig
TOSHIBA ConfigFree	TOSHIBA Corporation	21.02.2010	67,6MB	8.0.21 nötig
TOSHIBA Disc Creator	TOSHIBA Corporation	07.09.2009	10,3MB	2.1.0.1 for x64 nötig
TOSHIBA DVD PLAYER	TOSHIBA Corporation	21.02.2010		3.01.0.07-A nötig
TOSHIBA Extended Tiles for Windows Mobility Center		21.02.2010	nötig	
TOSHIBA Face Recognition	TOSHIBA Corporation	21.02.2010		3.1.1.64 nötig
TOSHIBA Flash Cards Support Utility	TOSHIBA CORPORATION	07.09.2009	20,00KB	1.63.0.4C nötig
TOSHIBA Hardware Setup	TOSHIBA CORPORATION	07.09.2009	7,90MB	1.63.0.11C nötig
TOSHIBA HDD/SSD Alert	TOSHIBA Corporation	07.09.2009	38,0MB	3.1.64.0 nötig
Toshiba Manuals	TOSHIBA	07.09.2009		10.00 nötig
Toshiba Online Product Information	TOSHIBA	07.09.2009		2.08.0001 nötig
Toshiba Photo Service - powered by myphotobook	myphotobook GmbH	07.09.2009		1.0.0-663 nötig
TOSHIBA Recovery Media Creator	TOSHIBA Corporation	07.09.2009	2,98MB	2.1.0.2 for x64 nötig
TOSHIBA Recovery Media Creator Reminder	TOSHIBA	07.09.2009	0,45MB	1.00.0019 nötig
TOSHIBA ReelTime	TOSHIBA Corporation	21.02.2010		1.0.04.64 nötig
TOSHIBA SD Memory Utilities	TOSHIBA	21.02.2010	9,16MB	1.9.1.12 nötig
TOSHIBA Service Station	TOSHIBA	21.02.2010		2.1.33 nötig
TOSHIBA Supervisorkennwort	TOSHIBA CORPORATION	07.09.2009	1,95MB	1.63.0.7C nötig
Toshiba TEMPRO	Toshiba Europe GmbH	08.09.2009	10,8MB	3.05 nötig
TOSHIBA Value Added Package	TOSHIBA Corporation	21.02.2010	87,7MB	1.2.25.64 nötig
TOSHIBA Web Camera Application	TOSHIBA Corporation	21.02.2010		1.1.1.4 nötig
TRORMCLauncher		21.02.2010 unbekannt		
Visual Studio C++ 10.0 Runtime	TomTom International B.V.	01.04.2012	8,00KB	10.0.0 unbekannt
WildTangent-Spiele	WildTangent	21.02.2010		1.0.0.71 unbekannt
Windows Live Essentials	Microsoft Corporation	22.06.2012		15.4.3555.0308 unbekannt
Windows Live Sync	Microsoft Corporation	26.01.2011	2,79MB	14.0.8117.416 unbekannt
WinZip 14.0	WinZip Computing, S.L. 	21.04.2010	17,7MB	14.0.8708 unbekannt
Yahoo! Toolbar		08.08.2010		unbekannt
ZTE USB Driver	ZTE Corporation	28.01.2011		1.0.1.25_TME unbekannt
         

Antwort

Themen zu Langsames WWW, Mails verschwinden, und Tastaur spinnt
bestimmte, desktop, dokument, explorer, funktioniert, hotmail, hängt, kis, kopieren, langsamer, link, mails, microsoft, neustart, nichts, ordner, papierkorb, programm, rechner, security, spinnt, tastatur, zugriff, öffnen



Ähnliche Themen: Langsames WWW, Mails verschwinden, und Tastaur spinnt


  1. Outlook 2007 möchte mehrere Mails versenden obwohl keine Mails im Ausgangsordner existieren
    Alles rund um Windows - 05.08.2015 (25)
  2. Probleme E-Mail einrichten und Mails verschwinden
    Alles rund um Windows - 22.11.2014 (1)
  3. Win 8 - Tastaur reagiert nicht mehr - Trojan.Agent gefunden
    Log-Analyse und Auswertung - 24.08.2014 (9)
  4. Notebook spinnt und Spam-Mails mit Win32 von Avast aussortiert
    Plagegeister aller Art und deren Bekämpfung - 19.02.2014 (21)
  5. SandBoxie spinnt - Firefox in der SandBoxie spinnt; DefaultBox lässt sich nicht löschen
    Antiviren-, Firewall- und andere Schutzprogramme - 03.02.2014 (6)
  6. Antivir für Exchange lässt Mails verschwinden
    Nachrichten - 02.01.2014 (0)
  7. TaStaur auf Sony Vaio Notebook Spinnt
    Netzwerk und Hardware - 24.12.2013 (5)
  8. Mailer Daemon Mails von GMX-Konto - Spam oder sendet Outlook selbstständig Mails?
    Plagegeister aller Art und deren Bekämpfung - 12.12.2013 (8)
  9. Spam Mails - Mail delivery failed obwohl ich keine E-Mails versendet habe
    Plagegeister aller Art und deren Bekämpfung - 16.06.2013 (11)
  10. Tastaur Anschläge Funkt net richtig
    Log-Analyse und Auswertung - 04.03.2013 (0)
  11. win 7 mit Oulook 2010 E-Mails im Posteingang verschwinden nach einem Monat
    Alles rund um Windows - 11.01.2012 (7)
  12. Prblem mit Tastaur beim Schreiben.
    Plagegeister aller Art und deren Bekämpfung - 19.08.2009 (1)
  13. Tastaur befehlen werden nicht erkannt
    Alles rund um Windows - 12.05.2008 (1)
  14. Monitor spinnt rum/Desktopsymbole verschwinden
    Log-Analyse und Auswertung - 10.09.2007 (2)
  15. I-net spinnt, Comp spinnt = Trojan.Lowzones + Trojan.KillAV
    Plagegeister aller Art und deren Bekämpfung - 13.07.2005 (11)
  16. E-Mails mit Fishing-Mails von meinem PC aus
    Plagegeister aller Art und deren Bekämpfung - 12.10.2004 (7)
  17. Tastaur spinnt
    Plagegeister aller Art und deren Bekämpfung - 17.07.2004 (2)

Zum Thema Langsames WWW, Mails verschwinden, und Tastaur spinnt - Grüß Gott, leider bin ich kein Computer-Fachmann und hoffe, die Vorab-Scans richtig gemacht zu haben. Irgendetwas ist an meiner Kiste faul. - Im WWW wird der Rechner immer langsamer und - Langsames WWW, Mails verschwinden, und Tastaur spinnt...
Archiv
Du betrachtest: Langsames WWW, Mails verschwinden, und Tastaur spinnt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.