| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Abnow VirusWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
29.03.2012, 20:50
| #1 |
| |  Abnow Virus Moin moin , ich hab irgendwie seit einer Stunde den abnow Virus drauf. Poste gerade vom iPhone sodass ich nicht soviel schreiben werde. Hab Windows 7 Ultimate 32bit und immer wenn ich was google werde ich auf eine abnow Seite weitergeleitet. Mein Avira zeigt auch ständig Virenfunde an. Was sollte ich jetzt tun? PS: Sorry für meine Unwissenheit, bin nur gerade etwas in Panik. Edit: So hab mal auf die schnell den TDSS Scan gemacht Code:
ATTFilter 22:40:39.0414 1972 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
22:40:39.0689 1972 ============================================================
22:40:39.0689 1972 Current date / time: 2012/03/29 22:40:39.0689
22:40:39.0689 1972 SystemInfo:
22:40:39.0689 1972
22:40:39.0689 1972 OS Version: 6.1.7601 ServicePack: 1.0
22:40:39.0689 1972 Product type: Workstation
22:40:39.0689 1972 ComputerName: YANNICK-PC
22:40:39.0690 1972 UserName: Yannick
22:40:39.0690 1972 Windows directory: C:\Windows
22:40:39.0690 1972 System windows directory: C:\Windows
22:40:39.0690 1972 Processor architecture: Intel x86
22:40:39.0690 1972 Number of processors: 2
22:40:39.0690 1972 Page size: 0x1000
22:40:39.0690 1972 Boot type: Safe boot with network
22:40:39.0690 1972 ============================================================
22:40:40.0893 1972 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:40:40.0894 1972 \Device\Harddisk0\DR0:
22:40:40.0895 1972 MBR used
22:40:40.0895 1972 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:40:40.0895 1972 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1B398800
22:40:40.0916 1972 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B3CC800, BlocksNum 0xA061800
22:40:41.0012 1972 Initialize success
22:40:41.0012 1972 ============================================================
22:40:44.0811 1188 ============================================================
22:40:44.0811 1188 Scan started
22:40:44.0811 1188 Mode: Manual; SigCheck; TDLFS;
22:40:44.0811 1188 ============================================================
22:40:47.0543 1188 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys
22:40:47.0579 1188 1394ohci - ok
22:40:47.0655 1188 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\DRIVERS\ACPI.sys
22:40:47.0667 1188 ACPI - ok
22:40:47.0740 1188 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\DRIVERS\acpipmi.sys
22:40:47.0753 1188 AcpiPmi - ok
22:40:47.0924 1188 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:40:47.0932 1188 AdobeARMservice - ok
22:40:48.0041 1188 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
22:40:48.0056 1188 adp94xx - ok
22:40:48.0072 1188 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
22:40:48.0085 1188 adpahci - ok
22:40:48.0142 1188 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
22:40:48.0153 1188 adpu320 - ok
22:40:48.0211 1188 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
22:40:48.0232 1188 AeLookupSvc - ok
22:40:48.0299 1188 AFD (cbe2930f6694ff7031d8ce885698b711) C:\Windows\system32\drivers\afd.sys
22:40:48.0300 1188 Suspicious file (Forged): C:\Windows\system32\drivers\afd.sys. Real md5: cbe2930f6694ff7031d8ce885698b711, Fake md5: 9ebbba55060f786f0fcaa3893bfa2806
22:40:48.0303 1188 AFD ( Virus.Win32.ZAccess.aml ) - infected
22:40:48.0303 1188 AFD - detected Virus.Win32.ZAccess.aml (0)
22:40:48.0460 1188 AgereSoftModem (7e10e3bb9b258ad8a9300f91214d67b9) C:\Windows\system32\DRIVERS\AGRSM.sys
22:40:48.0480 1188 AgereSoftModem - ok
22:40:48.0581 1188 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
22:40:48.0590 1188 agp440 - ok
22:40:48.0637 1188 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
22:40:48.0646 1188 aic78xx - ok
22:40:48.0775 1188 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
22:40:48.0786 1188 ALG - ok
22:40:48.0847 1188 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
22:40:48.0856 1188 aliide - ok
22:40:48.0974 1188 AMD External Events Utility (b19505648f033393e907e2e419fde8b3) C:\Windows\system32\atiesrxx.exe
22:40:48.0988 1188 AMD External Events Utility - ok
22:40:49.0050 1188 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
22:40:49.0060 1188 amdagp - ok
22:40:49.0147 1188 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
22:40:49.0156 1188 amdide - ok
22:40:49.0209 1188 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
22:40:49.0220 1188 AmdK8 - ok
22:40:49.0261 1188 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
22:40:49.0272 1188 AmdPPM - ok
22:40:49.0427 1188 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\DRIVERS\amdsata.sys
22:40:49.0437 1188 amdsata - ok
22:40:49.0460 1188 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
22:40:49.0470 1188 amdsbs - ok
22:40:49.0520 1188 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\DRIVERS\amdxata.sys
22:40:49.0529 1188 amdxata - ok
22:40:49.0637 1188 AntiVirSchedulerService (c27d46b06d340293670450fce9dfb166) C:\Program Files\Avira\AntiVir Desktop\sched.exe
22:40:49.0645 1188 AntiVirSchedulerService - ok
22:40:49.0679 1188 AntiVirService (72d90e56563165984224493069c69ed4) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
22:40:49.0688 1188 AntiVirService - ok
22:40:49.0818 1188 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
22:40:49.0840 1188 AppID - ok
22:40:49.0954 1188 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
22:40:49.0975 1188 AppIDSvc - ok
22:40:50.0008 1188 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
22:40:50.0030 1188 Appinfo - ok
22:40:50.0221 1188 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:40:50.0229 1188 Apple Mobile Device - ok
22:40:50.0316 1188 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
22:40:50.0327 1188 AppMgmt - ok
22:40:50.0383 1188 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
22:40:50.0393 1188 arc - ok
22:40:50.0432 1188 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
22:40:50.0442 1188 arcsas - ok
22:40:50.0514 1188 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
22:40:50.0550 1188 AsyncMac - ok
22:40:50.0595 1188 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
22:40:50.0604 1188 atapi - ok
22:40:50.0829 1188 atikmdag (04f09923a393e4e0e8453a8f78361e73) C:\Windows\system32\DRIVERS\atikmdag.sys
22:40:50.0887 1188 atikmdag - ok
22:40:50.0996 1188 ATKFUSService (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\nwlnkfwd.dll
22:40:51.0000 1188 ATKFUSService ( UnsignedFile.Multi.Generic ) - warning
22:40:51.0000 1188 ATKFUSService - detected UnsignedFile.Multi.Generic (1)
22:40:51.0069 1188 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
22:40:51.0095 1188 AudioEndpointBuilder - ok
22:40:51.0109 1188 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
22:40:51.0134 1188 Audiosrv - ok
22:40:51.0250 1188 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
22:40:51.0265 1188 avgntflt - ok
22:40:51.0316 1188 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
22:40:51.0324 1188 avipbb - ok
22:40:51.0421 1188 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
22:40:51.0435 1188 AxInstSV - ok
22:40:51.0494 1188 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
22:40:51.0509 1188 b06bdrv - ok
22:40:51.0595 1188 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
22:40:51.0608 1188 b57nd60x - ok
22:40:51.0652 1188 b57w2k (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\aiclient.dll
22:40:51.0655 1188 b57w2k ( UnsignedFile.Multi.Generic ) - warning
22:40:51.0655 1188 b57w2k - detected UnsignedFile.Multi.Generic (1)
22:40:51.0761 1188 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
22:40:51.0771 1188 BDESVC - ok
22:40:51.0815 1188 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
22:40:51.0838 1188 Beep - ok
22:40:51.0879 1188 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
22:40:51.0906 1188 BITS - ok
22:40:51.0995 1188 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
22:40:52.0005 1188 blbdrive - ok
22:40:52.0066 1188 blueletaudio (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\atinevxx.dll
22:40:52.0068 1188 blueletaudio ( UnsignedFile.Multi.Generic ) - warning
22:40:52.0068 1188 blueletaudio - detected UnsignedFile.Multi.Generic (1)
22:40:52.0198 1188 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
22:40:52.0208 1188 Bonjour Service - ok
22:40:52.0313 1188 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
22:40:52.0323 1188 bowser - ok
22:40:52.0364 1188 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:40:52.0376 1188 BrFiltLo - ok
22:40:52.0387 1188 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:40:52.0453 1188 BrFiltUp - ok
22:40:52.0967 1188 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
22:40:52.0990 1188 Browser - ok
22:40:53.0059 1188 BrScnUsb (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\SrvcTPIOMngr.dll
22:40:53.0063 1188 BrScnUsb ( UnsignedFile.Multi.Generic ) - warning
22:40:53.0063 1188 BrScnUsb - detected UnsignedFile.Multi.Generic (1)
22:40:53.0121 1188 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
22:40:53.0133 1188 Brserid - ok
22:40:53.0169 1188 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
22:40:53.0182 1188 BrSerWdm - ok
22:40:53.0206 1188 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:40:53.0218 1188 BrUsbMdm - ok
22:40:53.0232 1188 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
22:40:53.0243 1188 BrUsbSer - ok
22:40:53.0269 1188 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
22:40:53.0281 1188 BTHMODEM - ok
22:40:53.0339 1188 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
22:40:53.0363 1188 bthserv - ok
22:40:53.0405 1188 ccproxy (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\vgasave.dll
22:40:53.0409 1188 ccproxy ( UnsignedFile.Multi.Generic ) - warning
22:40:53.0409 1188 ccproxy - detected UnsignedFile.Multi.Generic (1)
22:40:53.0478 1188 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
22:40:53.0501 1188 cdfs - ok
22:40:53.0575 1188 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
22:40:53.0586 1188 cdrom - ok
22:40:53.0652 1188 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
22:40:53.0674 1188 CertPropSvc - ok
22:40:53.0757 1188 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
22:40:53.0770 1188 circlass - ok
22:40:53.0821 1188 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
22:40:53.0834 1188 CLFS - ok
22:40:53.0921 1188 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:40:53.0930 1188 clr_optimization_v2.0.50727_32 - ok
22:40:54.0020 1188 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:40:54.0029 1188 clr_optimization_v4.0.30319_32 - ok
22:40:54.0122 1188 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
22:40:54.0132 1188 CmBatt - ok
22:40:54.0167 1188 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
22:40:54.0176 1188 cmdide - ok
22:40:54.0255 1188 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
22:40:54.0274 1188 CNG - ok
22:40:54.0356 1188 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
22:40:54.0365 1188 Compbatt - ok
22:40:54.0434 1188 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
22:40:54.0447 1188 CompositeBus - ok
22:40:54.0498 1188 COMSysApp - ok
22:40:54.0541 1188 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
22:40:54.0551 1188 crcdisk - ok
22:40:54.0644 1188 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
22:40:54.0667 1188 CryptSvc - ok
22:40:54.0734 1188 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
22:40:54.0747 1188 CSC - ok
22:40:54.0829 1188 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
22:40:54.0844 1188 CscService - ok
22:40:54.0991 1188 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
22:40:55.0018 1188 DcomLaunch - ok
22:40:55.0151 1188 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
22:40:55.0176 1188 defragsvc - ok
22:40:55.0239 1188 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
22:40:55.0261 1188 DfsC - ok
22:40:55.0373 1188 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
22:40:55.0398 1188 Dhcp - ok
22:40:55.0448 1188 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
22:40:55.0471 1188 discache - ok
22:40:55.0539 1188 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
22:40:55.0548 1188 Disk - ok
22:40:55.0620 1188 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\DRIVERS\dmvsc.sys
22:40:55.0630 1188 dmvsc - ok
22:40:55.0695 1188 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
22:40:55.0706 1188 Dnscache - ok
22:40:55.0755 1188 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
22:40:55.0778 1188 dot3svc - ok
22:40:55.0803 1188 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
22:40:55.0825 1188 DPS - ok
22:40:55.0907 1188 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
22:40:55.0919 1188 drmkaud - ok
22:40:55.0998 1188 dvd_2K (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\ELmou.dll
22:40:56.0001 1188 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
22:40:56.0001 1188 dvd_2K - detected UnsignedFile.Multi.Generic (1)
22:40:56.0087 1188 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
22:40:56.0105 1188 DXGKrnl - ok
22:40:56.0222 1188 EagleNT - ok
22:40:56.0255 1188 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
22:40:56.0279 1188 EapHost - ok
22:40:56.0402 1188 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
22:40:56.0444 1188 ebdrv - ok
22:40:56.0542 1188 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
22:40:56.0553 1188 EFS - ok
22:40:56.0626 1188 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
22:40:56.0641 1188 ehRecvr - ok
22:40:56.0665 1188 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
22:40:56.0677 1188 ehSched - ok
22:40:56.0762 1188 elotouchscreen (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\srservice.dll
22:40:56.0766 1188 elotouchscreen ( UnsignedFile.Multi.Generic ) - warning
22:40:56.0766 1188 elotouchscreen - detected UnsignedFile.Multi.Generic (1)
22:40:56.0821 1188 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
22:40:56.0835 1188 elxstor - ok
22:40:56.0911 1188 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
22:40:56.0921 1188 ErrDev - ok
22:40:56.0962 1188 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
22:40:56.0988 1188 EventSystem - ok
22:40:57.0038 1188 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
22:40:57.0062 1188 exfat - ok
22:40:57.0146 1188 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
22:40:57.0181 1188 fastfat - ok
22:40:57.0220 1188 fasttx2k (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\SISNICXP.dll
22:40:57.0224 1188 fasttx2k ( UnsignedFile.Multi.Generic ) - warning
22:40:57.0224 1188 fasttx2k - detected UnsignedFile.Multi.Generic (1)
22:40:57.0283 1188 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
22:40:57.0299 1188 Fax - ok
22:40:57.0385 1188 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
22:40:57.0396 1188 fdc - ok
22:40:57.0422 1188 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
22:40:57.0446 1188 fdPHost - ok
22:40:57.0475 1188 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
22:40:57.0498 1188 FDResPub - ok
22:40:57.0589 1188 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
22:40:57.0599 1188 FileInfo - ok
22:40:57.0621 1188 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
22:40:57.0645 1188 Filetrace - ok
22:40:57.0677 1188 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
22:40:57.0687 1188 flpydisk - ok
22:40:57.0785 1188 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
22:40:57.0796 1188 FltMgr - ok
22:40:57.0852 1188 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
22:40:57.0871 1188 FontCache - ok
22:40:57.0975 1188 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:40:57.0982 1188 FontCache3.0.0.0 - ok
22:40:58.0065 1188 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
22:40:58.0074 1188 FsDepends - ok
22:40:58.0115 1188 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
22:40:58.0124 1188 Fs_Rec - ok
22:40:58.0212 1188 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
22:40:58.0225 1188 fvevol - ok
22:40:58.0285 1188 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
22:40:58.0294 1188 gagp30kx - ok
22:40:58.0385 1188 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:40:58.0391 1188 GEARAspiWDM - ok
22:40:58.0463 1188 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
22:40:58.0492 1188 gpsvc - ok
22:40:58.0599 1188 GT680x (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\cmdide.dll
22:40:58.0602 1188 GT680x ( UnsignedFile.Multi.Generic ) - warning
22:40:58.0602 1188 GT680x - detected UnsignedFile.Multi.Generic (1)
22:40:58.0711 1188 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:40:58.0719 1188 gupdate - ok
22:40:58.0742 1188 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:40:58.0749 1188 gupdatem - ok
22:40:58.0861 1188 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
22:40:58.0867 1188 hamachi - ok
22:40:59.0001 1188 Hamachi2Svc (fa89c0429821c7c429eec7a0ce1c02d3) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
22:40:59.0025 1188 Hamachi2Svc - ok
22:40:59.0116 1188 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
22:40:59.0127 1188 hcw85cir - ok
22:40:59.0182 1188 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
22:40:59.0196 1188 HdAudAddService - ok
22:40:59.0606 1188 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:40:59.0618 1188 HDAudBus - ok
22:40:59.0710 1188 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
22:40:59.0721 1188 HidBatt - ok
22:40:59.0733 1188 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
22:40:59.0746 1188 HidBth - ok
22:40:59.0770 1188 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
22:40:59.0794 1188 HidIr - ok
22:40:59.0830 1188 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
22:40:59.0854 1188 hidserv - ok
22:40:59.0962 1188 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
22:40:59.0973 1188 HidUsb - ok
22:41:00.0007 1188 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
22:41:00.0031 1188 hkmsvc - ok
22:41:00.0111 1188 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
22:41:00.0124 1188 HomeGroupListener - ok
22:41:00.0173 1188 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
22:41:00.0186 1188 HomeGroupProvider - ok
22:41:00.0286 1188 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
22:41:00.0296 1188 HpSAMD - ok
22:41:00.0339 1188 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
22:41:00.0366 1188 HTTP - ok
22:41:00.0442 1188 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
22:41:00.0451 1188 hwpolicy - ok
22:41:00.0498 1188 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
22:41:00.0509 1188 i8042prt - ok
22:41:00.0606 1188 iaimtv1 (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\oracle_load_balancer_60_server-forms6i.dll
22:41:00.0609 1188 iaimtv1 ( UnsignedFile.Multi.Generic ) - warning
22:41:00.0609 1188 iaimtv1 - detected UnsignedFile.Multi.Generic (1)
22:41:00.0688 1188 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\DRIVERS\iaStorV.sys
22:41:00.0701 1188 iaStorV - ok
22:41:00.0808 1188 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:41:00.0826 1188 idsvc - ok
22:41:00.0932 1188 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
22:41:00.0941 1188 iirsp - ok
22:41:00.0999 1188 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
22:41:01.0038 1188 IKEEXT - ok
22:41:01.0216 1188 IntcAzAudAddService (6927a442beed2b68a3d35cae7a951913) C:\Windows\system32\drivers\RTKVHDA.sys
22:41:01.0260 1188 IntcAzAudAddService - ok
22:41:01.0372 1188 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
22:41:01.0382 1188 intelide - ok
22:41:01.0422 1188 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
22:41:01.0434 1188 intelppm - ok
22:41:01.0539 1188 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
22:41:01.0564 1188 IPBusEnum - ok
22:41:01.0604 1188 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:41:01.0628 1188 IpFilterDriver - ok
22:41:01.0640 1188 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\DRIVERS\IPMIDrv.sys
22:41:01.0652 1188 IPMIDRV - ok
22:41:01.0667 1188 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
22:41:01.0691 1188 IPNAT - ok
22:41:01.0796 1188 iPod Service (33642c17c232aa272c68e446a2619899) C:\Program Files\iPod\bin\iPodService.exe
22:41:01.0812 1188 iPod Service - ok
22:41:01.0916 1188 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
22:41:01.0928 1188 IRENUM - ok
22:41:01.0946 1188 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
22:41:01.0955 1188 isapnp - ok
22:41:01.0989 1188 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\DRIVERS\msiscsi.sys
22:41:02.0001 1188 iScsiPrt - ok
22:41:02.0156 1188 JMCR (96c4439a37ee719769d446dd430e9a33) C:\Windows\system32\DRIVERS\jmcr.sys
22:41:02.0170 1188 JMCR - ok
22:41:02.0275 1188 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:41:02.0284 1188 kbdclass - ok
22:41:02.0317 1188 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
22:41:02.0328 1188 kbdhid - ok
22:41:02.0443 1188 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:41:02.0454 1188 KeyIso - ok
22:41:02.0499 1188 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
22:41:02.0508 1188 KSecDD - ok
22:41:02.0546 1188 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
22:41:02.0557 1188 KSecPkg - ok
22:41:02.0674 1188 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
22:41:02.0700 1188 KtmRm - ok
22:41:02.0762 1188 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
22:41:02.0786 1188 LanmanServer - ok
22:41:02.0892 1188 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
22:41:02.0916 1188 LanmanWorkstation - ok
22:41:02.0961 1188 lexbces (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\gearaspiwdm.dll
22:41:02.0964 1188 lexbces ( UnsignedFile.Multi.Generic ) - warning
22:41:02.0964 1188 lexbces - detected UnsignedFile.Multi.Generic (1)
22:41:03.0060 1188 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
22:41:03.0083 1188 lltdio - ok
22:41:03.0181 1188 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
22:41:03.0206 1188 lltdsvc - ok
22:41:03.0276 1188 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
22:41:03.0298 1188 lmhosts - ok
22:41:03.0401 1188 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
22:41:03.0411 1188 LSI_FC - ok
22:41:03.0437 1188 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
22:41:03.0448 1188 LSI_SAS - ok
22:41:03.0485 1188 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:41:03.0494 1188 LSI_SAS2 - ok
22:41:03.0555 1188 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:41:03.0565 1188 LSI_SCSI - ok
22:41:03.0621 1188 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
22:41:03.0648 1188 luafv - ok
22:41:03.0695 1188 lvckap (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\lvsrvlauncher.dll
22:41:03.0699 1188 lvckap ( UnsignedFile.Multi.Generic ) - warning
22:41:03.0699 1188 lvckap - detected UnsignedFile.Multi.Generic (1)
22:41:03.0768 1188 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
22:41:03.0780 1188 Mcx2Svc - ok
22:41:03.0852 1188 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
22:41:03.0861 1188 megasas - ok
22:41:03.0924 1188 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
22:41:03.0935 1188 MegaSR - ok
22:41:04.0033 1188 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:41:04.0041 1188 Microsoft Office Groove Audit Service - ok
22:41:04.0121 1188 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:41:04.0146 1188 MMCSS - ok
22:41:04.0199 1188 mnsframework (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\SaiClass.dll
22:41:04.0203 1188 mnsframework ( UnsignedFile.Multi.Generic ) - warning
22:41:04.0203 1188 mnsframework - detected UnsignedFile.Multi.Generic (1)
22:41:04.0255 1188 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
22:41:04.0280 1188 Modem - ok
22:41:04.0361 1188 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
22:41:04.0377 1188 monitor - ok
22:41:04.0443 1188 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
22:41:04.0453 1188 mouclass - ok
22:41:04.0552 1188 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
22:41:04.0563 1188 mouhid - ok
22:41:04.0609 1188 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
22:41:04.0619 1188 mountmgr - ok
22:41:04.0644 1188 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\DRIVERS\mpio.sys
22:41:04.0657 1188 mpio - ok
22:41:04.0732 1188 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
22:41:04.0754 1188 mpsdrv - ok
22:41:04.0800 1188 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
22:41:04.0814 1188 MRxDAV - ok
22:41:04.0890 1188 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:41:04.0904 1188 mrxsmb - ok
22:41:05.0027 1188 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:41:05.0039 1188 mrxsmb10 - ok
22:41:05.0089 1188 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:41:05.0100 1188 mrxsmb20 - ok
22:41:05.0192 1188 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\DRIVERS\msahci.sys
22:41:05.0201 1188 msahci - ok
22:41:05.0236 1188 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\DRIVERS\msdsm.sys
22:41:05.0247 1188 msdsm - ok
22:41:05.0294 1188 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
22:41:05.0306 1188 MSDTC - ok
22:41:05.0410 1188 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
22:41:05.0434 1188 Msfs - ok
22:41:05.0459 1188 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
22:41:05.0483 1188 mshidkmdf - ok
22:41:05.0505 1188 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
22:41:05.0515 1188 msisadrv - ok
22:41:05.0620 1188 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
22:41:05.0643 1188 MSiSCSI - ok
22:41:05.0659 1188 msiserver - ok
22:41:05.0722 1188 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
22:41:05.0744 1188 MSKSSRV - ok
22:41:05.0800 1188 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
22:41:05.0824 1188 MSPCLOCK - ok
22:41:05.0838 1188 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
22:41:05.0861 1188 MSPQM - ok
22:41:05.0888 1188 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
22:41:05.0898 1188 MsRPC - ok
22:41:05.0921 1188 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
22:41:05.0930 1188 mssmbios - ok
22:41:05.0974 1188 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
22:41:05.0997 1188 MSTEE - ok
22:41:06.0056 1188 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
22:41:06.0067 1188 MTConfig - ok
22:41:06.0097 1188 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
22:41:06.0107 1188 Mup - ok
22:41:06.0138 1188 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
22:41:06.0168 1188 napagent - ok
22:41:06.0283 1188 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
22:41:06.0298 1188 NativeWifiP - ok
22:41:06.0334 1188 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
22:41:06.0352 1188 NDIS - ok
22:41:06.0455 1188 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
22:41:06.0478 1188 NdisCap - ok
22:41:06.0514 1188 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
22:41:06.0536 1188 NdisTapi - ok
22:41:06.0639 1188 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
22:41:06.0661 1188 Ndisuio - ok
22:41:06.0689 1188 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
22:41:06.0711 1188 NdisWan - ok
22:41:06.0730 1188 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
22:41:06.0752 1188 NDProxy - ok
22:41:06.0858 1188 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
22:41:06.0881 1188 NetBIOS - ok
22:41:06.0916 1188 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
22:41:06.0940 1188 NetBT - ok
22:41:06.0977 1188 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:41:06.0988 1188 Netlogon - ok
22:41:07.0087 1188 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
22:41:07.0113 1188 Netman - ok
22:41:07.0135 1188 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
22:41:07.0163 1188 netprofm - ok
22:41:07.0237 1188 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:41:07.0245 1188 NetTcpPortSharing - ok
22:41:07.0538 1188 NETw5s32 (5b2dfa9c5c02ddf2a113cc0f551b59df) C:\Windows\system32\DRIVERS\NETw5s32.sys
22:41:07.0614 1188 NETw5s32 - ok
22:41:07.0818 1188 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
22:41:07.0872 1188 netw5v32 - ok
22:41:07.0984 1188 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
22:41:07.0993 1188 nfrd960 - ok
22:41:08.0040 1188 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
22:41:08.0064 1188 NlaSvc - ok
22:41:08.0155 1188 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
22:41:08.0179 1188 Npfs - ok
22:41:08.0215 1188 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
22:41:08.0239 1188 nsi - ok
22:41:08.0334 1188 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
22:41:08.0357 1188 nsiproxy - ok
22:41:08.0458 1188 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
22:41:08.0483 1188 Ntfs - ok
22:41:08.0582 1188 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
22:41:08.0605 1188 Null - ok
22:41:08.0663 1188 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\DRIVERS\nvraid.sys
22:41:08.0673 1188 nvraid - ok
22:41:08.0705 1188 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\DRIVERS\nvstor.sys
22:41:08.0716 1188 nvstor - ok
22:41:08.0812 1188 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
22:41:08.0822 1188 nv_agp - ok
22:41:09.0021 1188 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:41:09.0033 1188 odserv - ok
22:41:09.0128 1188 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
22:41:09.0139 1188 ohci1394 - ok
22:41:09.0256 1188 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:41:09.0265 1188 ose - ok
22:41:09.0373 1188 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:41:09.0387 1188 p2pimsvc - ok
22:41:09.0412 1188 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
22:41:09.0426 1188 p2psvc - ok
22:41:09.0474 1188 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
22:41:09.0485 1188 Parport - ok
22:41:09.0555 1188 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
22:41:09.0564 1188 partmgr - ok
22:41:09.0597 1188 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
22:41:09.0607 1188 Parvdm - ok
22:41:09.0634 1188 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
22:41:09.0649 1188 PcaSvc - ok
22:41:09.0694 1188 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\DRIVERS\pci.sys
22:41:09.0705 1188 pci - ok
22:41:09.0778 1188 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
22:41:09.0787 1188 pciide - ok
22:41:09.0809 1188 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
22:41:09.0820 1188 pcmcia - ok
22:41:09.0876 1188 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
22:41:09.0886 1188 pcw - ok
22:41:09.0987 1188 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
22:41:10.0016 1188 PEAUTH - ok
22:41:10.0078 1188 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
22:41:10.0099 1188 PeerDistSvc - ok
22:41:10.0217 1188 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
22:41:10.0254 1188 pla - ok
22:41:10.0373 1188 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
22:41:10.0389 1188 PlugPlay - ok
22:41:10.0527 1188 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\Windows\system32\PnkBstrA.exe
22:41:10.0535 1188 PnkBstrA - ok
22:41:10.0575 1188 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
22:41:10.0588 1188 PNRPAutoReg - ok
22:41:10.0618 1188 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:41:10.0631 1188 PNRPsvc - ok
22:41:10.0679 1188 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
22:41:10.0705 1188 PolicyAgent - ok
22:41:10.0832 1188 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
22:41:10.0857 1188 Power - ok
22:41:10.0911 1188 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
22:41:10.0936 1188 PptpMiniport - ok
22:41:11.0032 1188 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
22:41:11.0043 1188 Processor - ok
22:41:11.0132 1188 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
22:41:11.0156 1188 ProfSvc - ok
22:41:11.0255 1188 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:41:11.0266 1188 ProtectedStorage - ok
22:41:11.0390 1188 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
22:41:11.0414 1188 Psched - ok
22:41:11.0506 1188 psdvdisk (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\MSW_USB.dll
22:41:11.0512 1188 psdvdisk ( UnsignedFile.Multi.Generic ) - warning
22:41:11.0512 1188 psdvdisk - detected UnsignedFile.Multi.Generic (1)
22:41:11.0619 1188 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
22:41:11.0646 1188 ql2300 - ok
22:41:11.0754 1188 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
22:41:11.0764 1188 ql40xx - ok
22:41:11.0805 1188 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
22:41:11.0820 1188 QWAVE - ok
22:41:11.0921 1188 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
22:41:11.0935 1188 QWAVEdrv - ok
22:41:11.0969 1188 radiosvr (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\psimsvc.dll
22:41:11.0973 1188 radiosvr ( UnsignedFile.Multi.Generic ) - warning
22:41:11.0973 1188 radiosvr - detected UnsignedFile.Multi.Generic (1)
22:41:12.0070 1188 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
22:41:12.0093 1188 RasAcd - ok
22:41:12.0139 1188 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:41:12.0161 1188 RasAgileVpn - ok
22:41:12.0251 1188 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
22:41:12.0288 1188 RasAuto - ok
22:41:12.0348 1188 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:41:12.0372 1188 Rasl2tp - ok
22:41:12.0500 1188 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
22:41:12.0526 1188 RasMan - ok
22:41:12.0586 1188 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
22:41:12.0609 1188 RasPppoe - ok
22:41:12.0692 1188 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
22:41:12.0715 1188 RasSstp - ok
22:41:12.0754 1188 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
22:41:12.0777 1188 rdbss - ok
22:41:12.0811 1188 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
22:41:12.0828 1188 rdpbus - ok
22:41:12.0875 1188 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:41:12.0897 1188 RDPCDD - ok
22:41:12.0979 1188 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
22:41:12.0990 1188 RDPDR - ok
22:41:13.0043 1188 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
22:41:13.0064 1188 RDPENCDD - ok
22:41:13.0128 1188 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
22:41:13.0156 1188 RDPREFMP - ok
22:41:13.0234 1188 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
22:41:13.0244 1188 RdpVideoMiniport - ok
22:41:13.0278 1188 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
22:41:13.0290 1188 RDPWD - ok
22:41:13.0351 1188 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
22:41:13.0362 1188 rdyboost - ok
22:41:13.0464 1188 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
22:41:13.0487 1188 RemoteAccess - ok
22:41:13.0526 1188 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
22:41:13.0551 1188 RemoteRegistry - ok
22:41:13.0671 1188 ROOTMODEM (564297827d213f52c7a3a2ff749568ca) C:\Windows\system32\Drivers\RootMdm.sys
22:41:13.0706 1188 ROOTMODEM - ok
22:41:13.0751 1188 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
22:41:13.0775 1188 RpcEptMapper - ok
22:41:13.0854 1188 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
22:41:13.0866 1188 RpcLocator - ok
22:41:13.0893 1188 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
22:41:13.0921 1188 RpcSs - ok
22:41:14.0033 1188 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
22:41:14.0056 1188 rspndr - ok
22:41:14.0104 1188 RTHDMIAzAudService (72a5515a2031d458dd38e9336594184b) C:\Windows\system32\drivers\RtHDMIV.sys
22:41:14.0112 1188 RTHDMIAzAudService - ok
22:41:14.0221 1188 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys
22:41:14.0232 1188 RTL8167 - ok
22:41:14.0260 1188 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\DRIVERS\vms3cap.sys
22:41:14.0270 1188 s3cap - ok
22:41:14.0367 1188 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:41:14.0390 1188 SamSs - ok
22:41:14.0461 1188 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\DRIVERS\sbp2port.sys
22:41:14.0470 1188 sbp2port - ok
22:41:14.0567 1188 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
22:41:14.0590 1188 SCardSvr - ok
22:41:14.0620 1188 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
22:41:14.0642 1188 scfilter - ok
22:41:14.0697 1188 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
22:41:14.0727 1188 Schedule - ok
22:41:14.0822 1188 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
22:41:14.0844 1188 SCPolicySvc - ok
22:41:14.0905 1188 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\DRIVERS\sdbus.sys
22:41:14.0918 1188 sdbus - ok
22:41:15.0015 1188 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
22:41:15.0027 1188 SDRSVC - ok
22:41:15.0086 1188 SE2Bmdm (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\disk.dll
22:41:15.0089 1188 SE2Bmdm ( UnsignedFile.Multi.Generic ) - warning
22:41:15.0089 1188 SE2Bmdm - detected UnsignedFile.Multi.Generic (1)
22:41:15.0175 1188 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:41:15.0199 1188 secdrv - ok
22:41:15.0287 1188 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
22:41:15.0323 1188 seclogon - ok
22:41:15.0408 1188 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
22:41:15.0433 1188 SENS - ok
22:41:15.0481 1188 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
22:41:15.0493 1188 SensrSvc - ok
22:41:15.0611 1188 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
22:41:15.0621 1188 Serenum - ok
22:41:15.0685 1188 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
22:41:15.0697 1188 Serial - ok
22:41:15.0737 1188 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
22:41:15.0749 1188 sermouse - ok
22:41:15.0796 1188 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
22:41:15.0820 1188 SessionEnv - ok
22:41:15.0858 1188 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
22:41:15.0870 1188 sffdisk - ok
22:41:15.0914 1188 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
22:41:15.0926 1188 sffp_mmc - ok
22:41:15.0970 1188 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\DRIVERS\sffp_sd.sys
22:41:15.0982 1188 sffp_sd - ok
22:41:15.0993 1188 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
22:41:16.0015 1188 sfloppy - ok
22:41:16.0072 1188 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
22:41:16.0099 1188 SharedAccess - ok
22:41:16.0182 1188 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
22:41:16.0208 1188 ShellHWDetection - ok
22:41:16.0241 1188 shuttleengine (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\parport.dll
22:41:16.0244 1188 shuttleengine ( UnsignedFile.Multi.Generic ) - warning
22:41:16.0245 1188 shuttleengine - detected UnsignedFile.Multi.Generic (1)
22:41:16.0289 1188 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
22:41:16.0299 1188 sisagp - ok
22:41:16.0375 1188 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:41:16.0385 1188 SiSRaid2 - ok
22:41:16.0418 1188 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
22:41:16.0428 1188 SiSRaid4 - ok
22:41:16.0542 1188 SkypeUpdate (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files\Skype\Updater\Updater.exe
22:41:16.0550 1188 SkypeUpdate - ok
22:41:16.0657 1188 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
22:41:16.0680 1188 Smb - ok
22:41:16.0785 1188 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
22:41:16.0797 1188 SNMPTRAP - ok
22:41:16.0858 1188 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
22:41:16.0867 1188 spldr - ok
22:41:16.0921 1188 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
22:41:16.0947 1188 Spooler - ok
22:41:17.0114 1188 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
22:41:17.0167 1188 sppsvc - ok
22:41:17.0263 1188 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
22:41:17.0286 1188 sppuinotify - ok
22:41:17.0367 1188 sptd (a80cd850d69d996c832bea37e3a6aa1e) C:\Windows\system32\Drivers\sptd.sys
22:41:17.0367 1188 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a80cd850d69d996c832bea37e3a6aa1e
22:41:17.0369 1188 sptd ( LockedFile.Multi.Generic ) - warning
22:41:17.0369 1188 sptd - detected LockedFile.Multi.Generic (1)
22:41:17.0482 1188 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
22:41:17.0495 1188 srv - ok
22:41:17.0537 1188 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
22:41:17.0549 1188 srv2 - ok
22:41:17.0644 1188 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
22:41:17.0655 1188 srvnet - ok
22:41:17.0698 1188 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
22:41:17.0723 1188 SSDPSRV - ok
22:41:17.0825 1188 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
22:41:17.0830 1188 ssmdrv - ok
22:41:17.0872 1188 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
22:41:17.0895 1188 SstpSvc - ok
22:41:18.0021 1188 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
22:41:18.0026 1188 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning
22:41:18.0026 1188 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1)
22:41:18.0120 1188 Steam Client Service - ok
22:41:18.0215 1188 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
22:41:18.0224 1188 stexstor - ok
22:41:18.0293 1188 StillCam (edb05bd63148796f23ea78506404a538) C:\Windows\system32\DRIVERS\serscan.sys
22:41:18.0305 1188 StillCam - ok
22:41:18.0416 1188 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
22:41:18.0446 1188 StiSvc - ok
22:41:18.0495 1188 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\DRIVERS\vmstorfl.sys
22:41:18.0504 1188 storflt - ok
22:41:18.0583 1188 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\DRIVERS\storvsc.sys
22:41:18.0592 1188 storvsc - ok
22:41:18.0612 1188 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
22:41:18.0621 1188 swenum - ok
22:41:18.0664 1188 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
22:41:18.0704 1188 swprv - ok
22:41:18.0807 1188 Synth3dVsc (f2ad8960812fd111e20e84659ef19d43) C:\Windows\system32\drivers\synth3dvsc.sys
22:41:18.0816 1188 Synth3dVsc - ok
22:41:18.0877 1188 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
22:41:18.0902 1188 SysMain - ok
22:41:18.0986 1188 szkg (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\ifxtcs.dll
22:41:18.0989 1188 szkg ( UnsignedFile.Multi.Generic ) - warning
22:41:18.0989 1188 szkg - detected UnsignedFile.Multi.Generic (1)
22:41:19.0033 1188 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
22:41:19.0048 1188 TabletInputService - ok
22:41:19.0081 1188 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
22:41:19.0106 1188 TapiSrv - ok
22:41:19.0132 1188 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
22:41:19.0158 1188 TBS - ok
22:41:19.0283 1188 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
22:41:19.0324 1188 Tcpip - ok
22:41:19.0472 1188 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
22:41:19.0508 1188 TCPIP6 - ok
22:41:19.0619 1188 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
22:41:19.0641 1188 tcpipreg - ok
22:41:19.0667 1188 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
22:41:19.0678 1188 TDPIPE - ok
22:41:19.0719 1188 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
22:41:19.0729 1188 TDTCP - ok
22:41:19.0829 1188 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
22:41:19.0851 1188 tdx - ok
22:41:20.0036 1188 TeamViewer6 (8a9828975a857e477efef5a61ba45ac0) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
22:41:20.0077 1188 TeamViewer6 - ok
22:41:20.0173 1188 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
22:41:20.0182 1188 TermDD - ok
22:41:20.0208 1188 terminpt (052306fd76793d5d5ab5d9891fd1adbb) C:\Windows\system32\DRIVERS\terminpt.sys
22:41:20.0218 1188 terminpt - ok
22:41:20.0261 1188 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
22:41:20.0289 1188 TermService - ok
22:41:20.0362 1188 Themes (a66277fb1face9edf23829f791803f4f) C:\Windows\system32\themeservice.dll
22:41:20.0367 1188 Themes ( UnsignedFile.Multi.Generic ) - warning
22:41:20.0367 1188 Themes - detected UnsignedFile.Multi.Generic (1)
22:41:20.0413 1188 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:41:20.0447 1188 THREADORDER - ok
22:41:20.0562 1188 TOSHIBA Bluetooth Service (e44759cb4ac9f43464d8780501cc0470) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
22:41:20.0570 1188 TOSHIBA Bluetooth Service - ok
22:41:20.0687 1188 tosporte (2c15b4856f929ac7dd144044d8334b54) C:\Windows\system32\DRIVERS\tosporte.sys
22:41:20.0697 1188 tosporte - ok
22:41:20.0778 1188 tosrfbd (6750328ab04ae5faf01403a575d66978) C:\Windows\system32\DRIVERS\tosrfbd.sys
22:41:20.0788 1188 tosrfbd - ok
22:41:20.0904 1188 tosrfbnp (45a0fd8d566e7c44b2fc340cbd6672d0) C:\Windows\system32\Drivers\tosrfbnp.sys
22:41:20.0913 1188 tosrfbnp - ok
22:41:20.0950 1188 Tosrfcom (c281d231ba7bc7955d39ea9e21374eff) C:\Windows\system32\Drivers\tosrfcom.sys
22:41:20.0959 1188 Tosrfcom - ok
22:41:21.0011 1188 tosrfec (5c4103544612e5011ef46301b93d1aa6) C:\Windows\system32\DRIVERS\tosrfec.sys
22:41:21.0019 1188 tosrfec - ok
22:41:21.0130 1188 Tosrfhid (592cd9c8ab08ef02ea53905d30fb157e) C:\Windows\system32\DRIVERS\Tosrfhid.sys
22:41:21.0139 1188 Tosrfhid - ok
22:41:21.0154 1188 tosrfnds (0f3fd4f55175caeddce9efd6c5ca45d3) C:\Windows\system32\DRIVERS\tosrfnds.sys
22:41:21.0163 1188 tosrfnds - ok
22:41:21.0188 1188 TosRfSnd (d44eebdbdd24f813c09153034dae9e84) C:\Windows\system32\drivers\tosrfsnd.sys
22:41:21.0197 1188 TosRfSnd - ok
22:41:21.0316 1188 Tosrfusb (c4245835d4fac0494ed616f3bfe9ee0a) C:\Windows\system32\DRIVERS\tosrfusb.sys
22:41:21.0324 1188 Tosrfusb - ok
22:41:21.0359 1188 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
22:41:21.0384 1188 TrkWks - ok
22:41:21.0452 1188 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
22:41:21.0479 1188 TrustedInstaller - ok
22:41:21.0558 1188 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:41:21.0579 1188 tssecsrv - ok
22:41:21.0641 1188 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
22:41:21.0651 1188 TsUsbFlt - ok
22:41:21.0696 1188 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\DRIVERS\TsUsbGD.sys
22:41:21.0707 1188 TsUsbGD - ok
22:41:21.0758 1188 tsusbhub (045acb987c650d8186c6b4a692223860) C:\Windows\system32\drivers\tsusbhub.sys
22:41:21.0768 1188 tsusbhub - ok
22:41:21.0855 1188 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
22:41:21.0877 1188 tunnel - ok
22:41:21.0949 1188 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
22:41:21.0955 1188 TVALZ - ok
22:41:22.0040 1188 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
22:41:22.0061 1188 uagp35 - ok
22:41:22.0103 1188 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
22:41:22.0126 1188 udfs - ok
22:41:22.0210 1188 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
22:41:22.0223 1188 UI0Detect - ok
22:41:22.0284 1188 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
22:41:22.0293 1188 uliagpkx - ok
22:41:22.0361 1188 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
22:41:22.0372 1188 umbus - ok
22:41:22.0440 1188 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
22:41:22.0450 1188 UmPass - ok
22:41:22.0531 1188 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
22:41:22.0544 1188 UmRdpService - ok
22:41:22.0585 1188 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
22:41:22.0611 1188 upnphost - ok
22:41:22.0672 1188 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:41:22.0682 1188 USBAAPL - ok
22:41:22.0766 1188 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
22:41:22.0777 1188 usbccgp - ok
22:41:22.0835 1188 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
22:41:22.0848 1188 usbcir - ok
22:41:22.0892 1188 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
22:41:22.0903 1188 usbehci - ok
22:41:23.0032 1188 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
22:41:23.0044 1188 usbhub - ok
22:41:23.0089 1188 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\DRIVERS\usbohci.sys
22:41:23.0099 1188 usbohci - ok
22:41:23.0214 1188 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
22:41:23.0227 1188 usbprint - ok
22:41:23.0269 1188 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:41:23.0279 1188 USBSTOR - ok
22:41:23.0375 1188 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
22:41:23.0385 1188 usbuhci - ok
22:41:23.0423 1188 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\system32\Drivers\usbvideo.sys
22:41:23.0436 1188 usbvideo - ok
22:41:23.0471 1188 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
22:41:23.0504 1188 UxSms - ok
22:41:23.0591 1188 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
22:41:23.0602 1188 VaultSvc - ok
22:41:23.0638 1188 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
22:41:23.0647 1188 vdrvroot - ok
22:41:23.0740 1188 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
22:41:23.0767 1188 vds - ok
22:41:23.0822 1188 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
22:41:23.0834 1188 vga - ok
22:41:23.0901 1188 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
22:41:23.0924 1188 VgaSave - ok
22:41:23.0949 1188 VGPU - ok
22:41:23.0974 1188 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\DRIVERS\vhdmp.sys
22:41:23.0985 1188 vhdmp - ok
22:41:24.0028 1188 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
22:41:24.0038 1188 viaagp - ok
22:41:24.0093 1188 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
22:41:24.0104 1188 ViaC7 - ok
22:41:24.0131 1188 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
22:41:24.0139 1188 viaide - ok
22:41:24.0190 1188 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\DRIVERS\vmbus.sys
22:41:24.0201 1188 vmbus - ok
22:41:24.0273 1188 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\DRIVERS\VMBusHID.sys
22:41:24.0283 1188 VMBusHID - ok
22:41:24.0324 1188 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\DRIVERS\volmgr.sys
22:41:24.0333 1188 volmgr - ok
22:41:24.0363 1188 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
22:41:24.0375 1188 volmgrx - ok
22:41:24.0509 1188 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\DRIVERS\volsnap.sys
22:41:24.0521 1188 volsnap - ok
22:41:24.0557 1188 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
22:41:24.0567 1188 vsmraid - ok
22:41:24.0669 1188 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
22:41:24.0702 1188 VSS - ok
22:41:24.0773 1188 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
22:41:24.0785 1188 vwifibus - ok
22:41:24.0873 1188 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
22:41:24.0886 1188 vwififlt - ok
22:41:24.0945 1188 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys
22:41:24.0958 1188 vwifimp - ok
22:41:25.0009 1188 vzfw (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\wpsscannersvc.dll
22:41:25.0014 1188 vzfw ( UnsignedFile.Multi.Generic ) - warning
22:41:25.0014 1188 vzfw - detected UnsignedFile.Multi.Generic (1)
22:41:25.0111 1188 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
22:41:25.0138 1188 W32Time - ok
22:41:25.0200 1188 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
22:41:25.0211 1188 WacomPen - ok
22:41:25.0287 1188 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
22:41:25.0309 1188 WANARP - ok
22:41:25.0313 1188 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
22:41:25.0334 1188 Wanarpv6 - ok
22:41:25.0424 1188 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
22:41:25.0451 1188 WatAdminSvc - ok
22:41:25.0576 1188 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
22:41:25.0599 1188 wbengine - ok
22:41:25.0692 1188 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
22:41:25.0707 1188 WbioSrvc - ok
22:41:25.0755 1188 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
22:41:25.0773 1188 wcncsvc - ok
22:41:25.0803 1188 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
22:41:25.0815 1188 WcsPlugInService - ok
22:41:25.0908 1188 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
22:41:25.0917 1188 Wd - ok
22:41:25.0946 1188 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
22:41:25.0960 1188 Wdf01000 - ok
22:41:26.0054 1188 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:41:26.0069 1188 WdiServiceHost - ok
22:41:26.0075 1188 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:41:26.0089 1188 WdiSystemHost - ok
22:41:26.0110 1188 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
22:41:26.0127 1188 WebClient - ok
22:41:26.0150 1188 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
22:41:26.0186 1188 Wecsvc - ok
22:41:26.0286 1188 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
22:41:26.0309 1188 wercplsupport - ok
22:41:26.0351 1188 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
22:41:26.0376 1188 WerSvc - ok
22:41:26.0505 1188 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
22:41:26.0528 1188 WfpLwf - ok
22:41:26.0568 1188 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
22:41:26.0577 1188 WIMMount - ok
22:41:26.0639 1188 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
22:41:26.0661 1188 Winmgmt - ok
22:41:26.0835 1188 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
22:41:26.0869 1188 WinRM - ok
22:41:27.0018 1188 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
22:41:27.0030 1188 WinUsb - ok
22:41:27.0095 1188 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
22:41:27.0117 1188 Wlansvc - ok
22:41:27.0228 1188 wmccds (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\lpds.dll
22:41:27.0232 1188 wmccds ( UnsignedFile.Multi.Generic ) - warning
22:41:27.0232 1188 wmccds - detected UnsignedFile.Multi.Generic (1)
22:41:27.0314 1188 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:41:27.0324 1188 WmiAcpi - ok
22:41:27.0431 1188 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
22:41:27.0443 1188 wmiApSrv - ok
22:41:27.0565 1188 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:41:27.0586 1188 WMPNetworkSvc - ok
22:41:27.0648 1188 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
22:41:27.0660 1188 WPCSvc - ok
22:41:27.0692 1188 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
22:41:27.0705 1188 WPDBusEnum - ok
22:41:27.0750 1188 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
22:41:27.0774 1188 ws2ifsl - ok
22:41:27.0875 1188 WSDPrintDevice (553f6ccd7c58eb98d4a8fbdaf283d7a9) C:\Windows\system32\DRIVERS\WSDPrint.sys
22:41:27.0887 1188 WSDPrintDevice - ok
22:41:27.0909 1188 WSearch - ok
22:41:27.0981 1188 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
22:41:28.0022 1188 wuauserv - ok
22:41:28.0112 1188 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
22:41:28.0133 1188 WudfPf - ok
22:41:28.0193 1188 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:41:28.0215 1188 WUDFRd - ok
22:41:28.0301 1188 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
22:41:28.0325 1188 wudfsvc - ok
22:41:28.0352 1188 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
22:41:28.0368 1188 WwanSvc - ok
22:41:28.0426 1188 z525mdm (b89cfbe8cb247b57d8c10adaa66b462b) C:\Windows\system32\ATKFUSService.dll
22:41:28.0428 1188 z525mdm ( UnsignedFile.Multi.Generic ) - warning
22:41:28.0428 1188 z525mdm - detected UnsignedFile.Multi.Generic (1)
22:41:28.0502 1188 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:41:29.0560 1188 \Device\Harddisk0\DR0 - ok
22:41:29.0606 1188 Boot (0x1200) (80267c45b3c513e151bd146c345f5f71) \Device\Harddisk0\DR0\Partition0
22:41:29.0608 1188 \Device\Harddisk0\DR0\Partition0 - ok
22:41:29.0632 1188 Boot (0x1200) (13d67c04ec813fcbe16fbce414865750) \Device\Harddisk0\DR0\Partition1
22:41:29.0633 1188 \Device\Harddisk0\DR0\Partition1 - ok
22:41:29.0670 1188 Boot (0x1200) (5d0a084d076d8efb150a3c8b1ae91e4d) \Device\Harddisk0\DR0\Partition2
22:41:29.0671 1188 \Device\Harddisk0\DR0\Partition2 - ok
22:41:29.0674 1188 ============================================================
22:41:29.0674 1188 Scan finished
22:41:29.0674 1188 ============================================================
22:41:29.0683 1488 Detected object count: 25
22:41:29.0683 1488 Actual detected object count: 25
22:42:47.0500 1488 AFD ( Virus.Win32.ZAccess.aml ) - skipped by user
22:42:47.0500 1488 AFD ( Virus.Win32.ZAccess.aml ) - User select action: Skip
22:42:47.0502 1488 ATKFUSService ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0502 1488 ATKFUSService ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0503 1488 b57w2k ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0503 1488 b57w2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0504 1488 blueletaudio ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0505 1488 blueletaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0506 1488 BrScnUsb ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0506 1488 BrScnUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0507 1488 ccproxy ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0507 1488 ccproxy ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0509 1488 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0509 1488 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0510 1488 elotouchscreen ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0510 1488 elotouchscreen ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0511 1488 fasttx2k ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0511 1488 fasttx2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0513 1488 GT680x ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0513 1488 GT680x ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0514 1488 iaimtv1 ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0514 1488 iaimtv1 ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0515 1488 lexbces ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0515 1488 lexbces ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0517 1488 lvckap ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0517 1488 lvckap ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0518 1488 mnsframework ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0518 1488 mnsframework ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0520 1488 psdvdisk ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0520 1488 psdvdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0521 1488 radiosvr ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0521 1488 radiosvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0522 1488 SE2Bmdm ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0522 1488 SE2Bmdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0524 1488 shuttleengine ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0524 1488 shuttleengine ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0525 1488 sptd ( LockedFile.Multi.Generic ) - skipped by user
22:42:47.0525 1488 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
22:42:47.0526 1488 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0526 1488 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0528 1488 szkg ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0528 1488 szkg ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0529 1488 Themes ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0529 1488 Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0530 1488 vzfw ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0530 1488 vzfw ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0532 1488 wmccds ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0532 1488 wmccds ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:42:47.0533 1488 z525mdm ( UnsignedFile.Multi.Generic ) - skipped by user
22:42:47.0533 1488 z525mdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
Code:
ATTFilter Malwarebytes Anti-Malware 1.60.1.1000 www.malwarebytes.org Datenbank Version: v2012.03.29.07 Windows 7 Service Pack 1 x86 NTFS (Abgesichertenmodus/Netzwerkfähig) Internet Explorer 9.0.8112.16421 Yannick :: YANNICK-PC [Administrator] 29.03.2012 22:49:49 mbam-log-2012-03-29 (22-49-49).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 294635 Laufzeit: 32 Minute(n), 34 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 52 C:\Windows\System32\SaiClass.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\gearaspiwdm.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\nwlnkfwd.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\aiclient.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\lpds.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\atinevxx.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\SrvcTPIOMngr.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\psimsvc.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\vgasave.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\ELmou.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\srservice.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\SISNICXP.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\cmdide.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\parport.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\oracle_load_balancer_60_server-forms6i.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\lvsrvlauncher.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\MSW_USB.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\disk.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\ifxtcs.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\wpsscannersvc.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\ATKFUSService.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Program Files\Alcohol Soft\Alcohol 120\Langs\AX_RU.dll (Malware.Packer.GenX) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\rtkt0000\zafs0000\tsk0003.dta (Backdoor.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\rtkt0000\zafs0000\tsk0006.dta (Trojan.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0000\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0001\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0002\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0003\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0004\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0005\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0006\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0007\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0008\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0009\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0010\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0011\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0012\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0013\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0014\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0015\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0016\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0019\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0021\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0022\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\TDSSKiller_Quarantine\29.03.2012_22.37.01\susp0023\svc0000\tsk0000.dta (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Yannick\AppData\Local\0ff7eae4\X (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Yannick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRN1O8CT\5[1].exe (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Windows\System32\SiS7018.dll (Rootkit.0Access) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Yannick\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb (Rootkit.Zeroaccess) -> Löschen bei Neustart. C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb (Rootkit.Zeroaccess) -> Löschen bei Neustart. C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb (Rootkit.Zeroaccess) -> Löschen bei Neustart. C:\Windows\Temp\{E9C1E1AC-C9B2-4c85-94DE-9C1518918D02}.tlb (Rootkit.Zeroaccess) -> Löschen bei Neustart. (Ende) Geändert von Marabou (29.03.2012 um 21:45 Uhr) |
Baum-Darstellung