Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden

SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden


Plagegeister aller Art und deren Bekämpfung: SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 23.04.2012, 19:50   #1
meikomeko
 
SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden - Standard

SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden


Hallo,

ich bin beim googlen schon des öfteren über "Trojaner-Board" gestolpert, hätte aber nie gedacht, Euch selbst einmal belästigen zu müssen. Tja, jetzt ist´s wohl so weit. Wie im Titel schon erwähnt hat SMART HDD zugeschlagen. Schwarzer Desktop, Icons und Dateien sind verschwunden, mehrere "System message - Write Fault Error"-Meldungen und ein Scan-Fenster erscheinen. In einigen Threads habe ich gelesen, dass der erste Schritt scheinbar das Erstellen eines Logs mit Hilfe von TDSSKiller ist. Ich habe mir erlaubt, das TDSSKiller-Log gleich mit anzufügen und bedanke mich schon jetzt für Eure Hilfe!

Abschlussmeldung vn TDSSKiller:
Locked file
Service: sptd
Suspicious object, medium risk

Report:
20:14:47.0688 6132 TDSS rootkit removing tool 2.7.31.0 Apr 20 2012 19:49:47
20:14:48.0059 6132 ============================================================
20:14:48.0059 6132 Current date / time: 2012/04/23 20:14:48.0059
20:14:48.0059 6132 SystemInfo:
20:14:48.0059 6132
20:14:48.0059 6132 OS Version: 6.0.6002 ServicePack: 2.0
20:14:48.0059 6132 Product type: Workstation
20:14:48.0060 6132 ComputerName: SO-PC
20:14:48.0060 6132 UserName: so
20:14:48.0060 6132 Windows directory: C:\Windows
20:14:48.0060 6132 System windows directory: C:\Windows
20:14:48.0060 6132 Processor architecture: Intel x86
20:14:48.0060 6132 Number of processors: 2
20:14:48.0060 6132 Page size: 0x1000
20:14:48.0060 6132 Boot type: Normal boot
20:14:48.0060 6132 ============================================================
20:14:53.0376 6132 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:14:53.0385 6132 Drive \Device\Harddisk1\DR1 - Size: 0xF13FFE00 (3.77 Gb), SectorSize: 0x200, Cylinders: 0x1EC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:14:53.0387 6132 \Device\Harddisk0\DR0:
20:14:53.0387 6132 MBR partitions:
20:14:53.0388 6132 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x47000, BlocksNum 0x1400000
20:14:53.0388 6132 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1447000, BlocksNum 0x1BD7E000
20:14:53.0388 6132 \Device\Harddisk1\DR1:
20:14:53.0389 6132 MBR partitions:
20:14:53.0389 6132 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x3E, BlocksNum 0x789EAA
20:14:53.0824 6132 C: <-> \Device\Harddisk0\DR0\Partition1
20:14:53.0909 6132 D: <-> \Device\Harddisk0\DR0\Partition0
20:14:53.0910 6132 Initialize success
20:14:53.0910 6132 ============================================================
20:15:33.0776 4888 ============================================================
20:15:33.0776 4888 Scan started
20:15:33.0776 4888 Mode: Manual;
20:15:33.0777 4888 ============================================================
20:15:54.0353 4888 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
20:15:54.0358 4888 ACPI - ok
20:15:56.0566 4888 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
20:15:56.0607 4888 adp94xx - ok
20:15:58.0973 4888 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
20:15:58.0985 4888 adpahci - ok
20:16:00.0836 4888 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
20:16:00.0839 4888 adpu160m - ok
20:16:02.0566 4888 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
20:16:02.0568 4888 adpu320 - ok
20:16:03.0975 4888 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
20:16:03.0977 4888 AeLookupSvc - ok
20:16:05.0714 4888 AESTFilters (ef1142512bec12f1c2c87735da1755be) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\aestsrv.exe
20:16:05.0716 4888 AESTFilters - ok
20:16:08.0185 4888 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
20:16:08.0190 4888 AFD - ok
20:16:10.0407 4888 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
20:16:10.0422 4888 agp440 - ok
20:16:12.0200 4888 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
20:16:12.0246 4888 aic78xx - ok
20:16:13.0670 4888 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
20:16:13.0672 4888 ALG - ok
20:16:15.0896 4888 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
20:16:15.0907 4888 aliide - ok
20:16:18.0729 4888 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
20:16:18.0744 4888 amdagp - ok
20:16:20.0942 4888 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
20:16:21.0063 4888 amdide - ok
20:16:23.0335 4888 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
20:16:23.0348 4888 AmdK7 - ok
20:16:25.0732 4888 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
20:16:25.0745 4888 AmdK8 - ok
20:16:26.0530 4888 AntiVirSchedulerService (c27d46b06d340293670450fce9dfb166) C:\Program Files\Avira\AntiVir Desktop\sched.exe
20:16:26.0549 4888 AntiVirSchedulerService - ok
20:16:27.0323 4888 AntiVirService (72d90e56563165984224493069c69ed4) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
20:16:27.0328 4888 AntiVirService - ok
20:16:29.0717 4888 ApfiltrService (1de27858a431a5749e0f3df54ba935b9) C:\Windows\system32\DRIVERS\Apfiltr.sys
20:16:29.0735 4888 ApfiltrService - ok
20:16:31.0094 4888 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
20:16:31.0096 4888 Appinfo - ok
20:16:31.0696 4888 Apple Mobile Device (70d7be78061126dd0c3accdb7e129017) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:16:31.0700 4888 Apple Mobile Device - ok
20:16:33.0912 4888 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
20:16:33.0928 4888 arc - ok
20:16:35.0693 4888 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
20:16:35.0711 4888 arcsas - ok
20:16:37.0677 4888 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
20:16:37.0690 4888 AsyncMac - ok
20:16:39.0609 4888 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
20:16:39.0611 4888 atapi - ok
20:16:41.0657 4888 Ati External Event Utility (4604db6d5eca6362873cc3a76d2204ba) C:\Windows\system32\Ati2evxx.exe
20:16:41.0667 4888 Ati External Event Utility - ok
20:16:45.0160 4888 atikmdag (47dcf5d78c395159d72c65c25129fc44) C:\Windows\system32\DRIVERS\atikmdag.sys
20:16:46.0435 4888 atikmdag - ok
20:16:47.0833 4888 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:16:47.0842 4888 AudioEndpointBuilder - ok
20:16:47.0859 4888 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
20:16:47.0864 4888 Audiosrv - ok
20:16:50.0052 4888 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
20:16:50.0065 4888 avgntflt - ok
20:16:52.0540 4888 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
20:16:52.0569 4888 avipbb - ok
20:16:54.0343 4888 BCM42RLY (7bd70aeed0d975285a1b20bd012ebf4e) C:\Windows\system32\drivers\BCM42RLY.sys
20:16:54.0353 4888 BCM42RLY - ok
20:16:56.0856 4888 BCM43XX (fa6707a346cd122407f3b0bad1c47639) C:\Windows\system32\DRIVERS\bcmwl6.sys
20:16:56.0874 4888 BCM43XX - ok
20:16:58.0771 4888 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
20:16:58.0782 4888 Beep - ok
20:17:00.0901 4888 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
20:17:00.0910 4888 BFE - ok
20:17:03.0022 4888 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
20:17:03.0115 4888 BITS - ok
20:17:04.0755 4888 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
20:17:04.0768 4888 blbdrive - ok
20:17:05.0255 4888 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files\Bonjour\mDNSResponder.exe
20:17:05.0260 4888 Bonjour Service - ok
20:17:07.0124 4888 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
20:17:07.0138 4888 bowser - ok
20:17:09.0168 4888 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
20:17:09.0175 4888 BrFiltLo - ok
20:17:10.0689 4888 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
20:17:10.0701 4888 BrFiltUp - ok
20:17:11.0788 4888 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
20:17:11.0791 4888 Browser - ok
20:17:13.0092 4888 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
20:17:13.0161 4888 Brserid - ok
20:17:15.0082 4888 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
20:17:15.0099 4888 BrSerWdm - ok
20:17:17.0047 4888 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
20:17:17.0469 4888 BrUsbMdm - ok
20:17:18.0988 4888 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
20:17:19.0002 4888 BrUsbSer - ok
20:17:20.0999 4888 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
20:17:21.0048 4888 BTHMODEM - ok
20:17:22.0634 4888 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
20:17:22.0677 4888 cdfs - ok
20:17:24.0487 4888 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
20:17:24.0501 4888 cdrom - ok
20:17:25.0572 4888 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:17:25.0574 4888 CertPropSvc - ok
20:17:27.0496 4888 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\DRIVERS\circlass.sys
20:17:27.0979 4888 circlass - ok
20:17:28.0901 4888 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
20:17:29.0232 4888 CLFS - ok
20:17:30.0025 4888 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:17:30.0047 4888 clr_optimization_v2.0.50727_32 - ok
20:17:31.0676 4888 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:17:31.0679 4888 clr_optimization_v4.0.30319_32 - ok
20:17:33.0127 4888 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
20:17:33.0139 4888 CmBatt - ok
20:17:35.0089 4888 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
20:17:35.0228 4888 cmdide - ok
20:17:37.0719 4888 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
20:17:37.0744 4888 Compbatt - ok
20:17:39.0149 4888 COMSysApp - ok
20:17:40.0941 4888 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
20:17:40.0987 4888 crcdisk - ok
20:17:42.0905 4888 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
20:17:42.0937 4888 Crusoe - ok
20:17:43.0985 4888 CryptSvc (fb27772beaf8e1d28ccd825c09da939b) C:\Windows\system32\cryptsvc.dll
20:17:43.0989 4888 CryptSvc - ok
20:17:45.0776 4888 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:17:45.0900 4888 DcomLaunch - ok
20:17:47.0572 4888 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
20:17:47.0624 4888 DfsC - ok
20:17:49.0692 4888 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
20:17:49.0948 4888 DFSR - ok
20:17:51.0982 4888 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
20:17:51.0988 4888 Dhcp - ok
20:17:54.0562 4888 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
20:17:54.0595 4888 disk - ok
20:17:56.0444 4888 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
20:17:56.0448 4888 Dnscache - ok
20:17:56.0851 4888 DockLoginService (db29915209770d8b59654345ec2d943a) C:\Program Files\Dell\DellDock\DockLogin.exe
20:17:56.0869 4888 DockLoginService - ok
20:17:58.0372 4888 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
20:17:58.0397 4888 dot3svc - ok
20:18:00.0338 4888 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
20:18:00.0342 4888 DPS - ok
20:18:02.0319 4888 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
20:18:02.0341 4888 drmkaud - ok
20:18:05.0096 4888 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
20:18:05.0107 4888 DXGKrnl - ok
20:18:07.0348 4888 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
20:18:07.0504 4888 e1express - ok
20:18:10.0459 4888 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
20:18:10.0540 4888 E1G60 - ok
20:18:11.0945 4888 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
20:18:11.0949 4888 EapHost - ok
20:18:14.0001 4888 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
20:18:14.0099 4888 Ecache - ok
20:18:14.0968 4888 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
20:18:14.0998 4888 ehRecvr - ok
20:18:15.0981 4888 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
20:18:15.0984 4888 ehSched - ok
20:18:16.0635 4888 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
20:18:16.0636 4888 ehstart - ok
20:18:18.0731 4888 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
20:18:18.0798 4888 elxstor - ok
20:18:20.0613 4888 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
20:18:20.0788 4888 EMDMgmt - ok
20:18:23.0077 4888 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
20:18:23.0078 4888 ErrDev - ok
20:18:24.0715 4888 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
20:18:24.0722 4888 EventSystem - ok
20:18:27.0154 4888 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
20:18:27.0157 4888 exfat - ok
20:18:29.0279 4888 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
20:18:29.0282 4888 fastfat - ok
20:18:31.0318 4888 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
20:18:31.0320 4888 fdc - ok
20:18:32.0947 4888 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
20:18:32.0963 4888 fdPHost - ok
20:18:34.0687 4888 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
20:18:34.0690 4888 FDResPub - ok
20:18:36.0556 4888 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
20:18:36.0558 4888 FileInfo - ok
20:18:38.0189 4888 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
20:18:38.0191 4888 Filetrace - ok
20:18:40.0451 4888 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:18:40.0453 4888 flpydisk - ok
20:18:42.0855 4888 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
20:18:42.0859 4888 FltMgr - ok
20:18:45.0061 4888 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
20:18:45.0401 4888 FontCache - ok
20:18:46.0171 4888 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
20:18:46.0189 4888 FontCache3.0.0.0 - ok
20:18:48.0164 4888 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
20:18:48.0172 4888 Fs_Rec - ok
20:18:50.0129 4888 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
20:18:50.0131 4888 gagp30kx - ok
20:18:52.0103 4888 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:18:52.0105 4888 GEARAspiWDM - ok
20:18:53.0123 4888 GoogleDesktopManager-051210-111108 (9f5f2f0fb0a7f5aa9f16b9a7b6dad89f) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
20:18:53.0135 4888 GoogleDesktopManager-051210-111108 - ok
20:18:53.0314 4888 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
20:18:53.0345 4888 GoToAssist - ok
20:18:55.0033 4888 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
20:18:55.0105 4888 gpsvc - ok
20:18:55.0469 4888 gusvc (649f407a844dde2b97bc086af97d663b) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:18:55.0491 4888 gusvc - ok
20:18:58.0078 4888 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
20:18:58.0082 4888 HdAudAddService - ok
20:19:00.0546 4888 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:19:00.0624 4888 HDAudBus - ok
20:19:02.0372 4888 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
20:19:02.0373 4888 HidBth - ok
20:19:03.0615 4888 HidIr (d8df3722d5e961baa1292aa2f12827e2) C:\Windows\system32\DRIVERS\hidir.sys
20:19:03.0616 4888 HidIr - ok
20:19:04.0909 4888 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
20:19:04.0913 4888 hidserv - ok
20:19:06.0565 4888 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
20:19:06.0566 4888 HidUsb - ok
20:19:07.0652 4888 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
20:19:07.0657 4888 hkmsvc - ok
20:19:09.0777 4888 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
20:19:09.0779 4888 HpCISSs - ok
20:19:11.0705 4888 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
20:19:11.0802 4888 HTTP - ok
20:19:13.0913 4888 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
20:19:13.0914 4888 i2omp - ok
20:19:15.0401 4888 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
20:19:15.0403 4888 i8042prt - ok
20:19:17.0000 4888 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
20:19:17.0005 4888 iaStorV - ok
20:19:18.0632 4888 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:19:19.0039 4888 idsvc - ok
20:19:20.0694 4888 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
20:19:20.0696 4888 iirsp - ok
20:19:21.0466 4888 IJPLMSVC (a06efd4965f8a3f97a8c9a291d032678) C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
20:19:21.0468 4888 IJPLMSVC - ok
20:19:23.0339 4888 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
20:19:23.0457 4888 IKEEXT - ok
20:19:25.0447 4888 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
20:19:25.0449 4888 intelide - ok
20:19:27.0173 4888 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
20:19:27.0174 4888 intelppm - ok
20:19:28.0826 4888 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
20:19:28.0846 4888 IPBusEnum - ok
20:19:30.0860 4888 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:19:30.0862 4888 IpFilterDriver - ok
20:19:32.0168 4888 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
20:19:32.0175 4888 iphlpsvc - ok
20:19:33.0800 4888 IpInIp - ok
20:19:36.0152 4888 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
20:19:36.0154 4888 IPMIDRV - ok
20:19:37.0930 4888 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
20:19:37.0933 4888 IPNAT - ok
20:19:38.0620 4888 iPod Service (32cdedd15e2d1a557cd54552ae78ff86) C:\Program Files\iPod\bin\iPodService.exe
20:19:38.0633 4888 iPod Service - ok
20:19:40.0516 4888 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
20:19:40.0518 4888 IRENUM - ok
20:19:42.0445 4888 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
20:19:42.0447 4888 isapnp - ok
20:19:44.0025 4888 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
20:19:44.0029 4888 iScsiPrt - ok
20:19:46.0487 4888 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
20:19:46.0488 4888 iteatapi - ok
20:19:48.0374 4888 itecir (8bcd857c7932ad005d5f9c89329da2e1) C:\Windows\system32\DRIVERS\itecir.sys
20:19:48.0375 4888 itecir - ok
20:19:49.0612 4888 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
20:19:49.0613 4888 iteraid - ok
20:19:51.0156 4888 k57nd60x (a67e8cfcad7d4f8b35643d6c79ba64c3) C:\Windows\system32\DRIVERS\k57nd60x.sys
20:19:51.0160 4888 k57nd60x - ok
20:19:52.0466 4888 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:19:52.0468 4888 kbdclass - ok
20:19:53.0549 4888 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
20:19:53.0550 4888 kbdhid - ok
20:19:54.0648 4888 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:19:54.0653 4888 KeyIso - ok
20:19:56.0837 4888 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
20:19:56.0964 4888 KSecDD - ok
20:19:58.0369 4888 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
20:19:58.0379 4888 KtmRm - ok
20:19:59.0308 4888 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
20:19:59.0315 4888 LanmanServer - ok
20:20:00.0287 4888 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
20:20:00.0297 4888 LanmanWorkstation - ok
20:20:01.0539 4888 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
20:20:01.0541 4888 lltdio - ok
20:20:02.0454 4888 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
20:20:02.0482 4888 lltdsvc - ok
20:20:03.0680 4888 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
20:20:03.0684 4888 lmhosts - ok
20:20:04.0971 4888 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
20:20:04.0973 4888 LSI_FC - ok
20:20:06.0329 4888 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
20:20:06.0331 4888 LSI_SAS - ok
20:20:07.0606 4888 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
20:20:07.0608 4888 LSI_SCSI - ok
20:20:09.0494 4888 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
20:20:09.0497 4888 luafv - ok
20:20:10.0379 4888 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
20:20:10.0398 4888 Mcx2Svc - ok
20:20:11.0714 4888 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
20:20:11.0715 4888 megasas - ok
20:20:13.0422 4888 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
20:20:13.0464 4888 MegaSR - ok
20:20:14.0110 4888 Microsoft Office Groove Audit Service (123271bd5237ab991dc5c21fdf8835eb) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
20:20:14.0128 4888 Microsoft Office Groove Audit Service - ok
20:20:14.0955 4888 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:20:14.0960 4888 MMCSS - ok
20:20:16.0301 4888 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
20:20:16.0302 4888 Modem - ok
20:20:17.0513 4888 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
20:20:17.0515 4888 monitor - ok
20:20:19.0157 4888 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
20:20:19.0157 4888 mouclass - ok
20:20:20.0514 4888 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
20:20:20.0514 4888 mouhid - ok
20:20:21.0575 4888 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
20:20:21.0575 4888 MountMgr - ok
20:20:23.0213 4888 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
20:20:23.0213 4888 mpio - ok
20:20:24.0445 4888 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
20:20:24.0445 4888 mpsdrv - ok
20:20:25.0459 4888 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
20:20:25.0506 4888 MpsSvc - ok
20:20:26.0707 4888 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
20:20:26.0707 4888 Mraid35x - ok
20:20:28.0080 4888 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
20:20:28.0095 4888 MRxDAV - ok
20:20:29.0437 4888 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:20:29.0437 4888 mrxsmb - ok
20:20:30.0467 4888 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:20:30.0467 4888 mrxsmb10 - ok
20:20:31.0980 4888 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:20:31.0980 4888 mrxsmb20 - ok
20:20:34.0133 4888 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
20:20:34.0133 4888 msahci - ok
20:20:35.0427 4888 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
20:20:35.0427 4888 msdsm - ok
20:20:36.0332 4888 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
20:20:36.0348 4888 MSDTC - ok
20:20:37.0440 4888 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
20:20:37.0440 4888 Msfs - ok
20:20:38.0610 4888 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
20:20:38.0610 4888 msisadrv - ok
20:20:39.0546 4888 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
20:20:39.0561 4888 MSiSCSI - ok
20:20:40.0435 4888 msiserver - ok
20:20:41.0652 4888 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
20:20:41.0652 4888 MSKSSRV - ok
20:20:42.0884 4888 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
20:20:42.0884 4888 MSPCLOCK - ok
20:20:44.0444 4888 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
20:20:44.0444 4888 MSPQM - ok
20:20:45.0692 4888 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
20:20:45.0692 4888 MsRPC - ok
20:20:46.0706 4888 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
20:20:46.0706 4888 mssmbios - ok
20:20:47.0970 4888 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
20:20:47.0970 4888 MSTEE - ok
20:20:49.0249 4888 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
20:20:49.0249 4888 Mup - ok
20:20:50.0029 4888 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
20:20:50.0045 4888 napagent - ok
20:20:51.0308 4888 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
20:20:51.0308 4888 NativeWifiP - ok
20:20:52.0447 4888 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
20:20:52.0509 4888 NDIS - ok
20:20:53.0508 4888 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
20:20:53.0508 4888 NdisTapi - ok
20:20:54.0787 4888 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
20:20:54.0803 4888 Ndisuio - ok
20:20:56.0425 4888 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
20:20:56.0425 4888 NdisWan - ok
20:20:57.0486 4888 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
20:20:57.0486 4888 NDProxy - ok
20:20:58.0079 4888 Nero BackItUp Scheduler 4.0 (b90e093e7a7250906f1054418b5339c0) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
20:20:58.0157 4888 Nero BackItUp Scheduler 4.0 - ok
20:20:59.0311 4888 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
20:20:59.0327 4888 NetBIOS - ok
20:21:00.0590 4888 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
20:21:00.0590 4888 netbt - ok
20:21:01.0573 4888 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:21:01.0573 4888 Netlogon - ok
20:21:02.0712 4888 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
20:21:02.0727 4888 Netman - ok
20:21:03.0851 4888 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
20:21:03.0866 4888 netprofm - ok
20:21:04.0599 4888 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:21:04.0631 4888 NetTcpPortSharing - ok
20:21:05.0863 4888 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
20:21:05.0863 4888 nfrd960 - ok
20:21:07.0189 4888 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
20:21:07.0205 4888 NlaSvc - ok
20:21:08.0562 4888 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
20:21:08.0562 4888 Npfs - ok
20:21:09.0669 4888 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
20:21:09.0685 4888 nsi - ok
20:21:11.0417 4888 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
20:21:11.0417 4888 nsiproxy - ok
20:21:13.0335 4888 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
20:21:13.0554 4888 Ntfs - ok
20:21:15.0020 4888 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
20:21:15.0020 4888 ntrigdigi - ok
20:21:16.0580 4888 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
20:21:16.0580 4888 Null - ok
20:21:17.0735 4888 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
20:21:17.0735 4888 nvraid - ok
20:21:19.0435 4888 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
20:21:19.0435 4888 nvstor - ok
20:21:21.0869 4888 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
20:21:21.0869 4888 nv_agp - ok
20:21:23.0631 4888 NwlnkFlt - ok
20:21:25.0098 4888 NwlnkFwd - ok
20:21:26.0424 4888 OA001Ufd (a015dd2ba6009c8bdd00a6c431302d06) C:\Windows\system32\DRIVERS\OA001Ufd.sys
20:21:26.0424 4888 OA001Ufd - ok
20:21:27.0812 4888 OA001Vid (2c9410571660dfd607c863c66ca56d60) C:\Windows\system32\DRIVERS\OA001Vid.sys
20:21:27.0812 4888 OA001Vid - ok
20:21:28.0296 4888 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
20:21:28.0545 4888 odserv - ok
20:21:29.0762 4888 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
20:21:29.0762 4888 ohci1394 - ok
20:21:30.0059 4888 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:21:30.0121 4888 ose - ok
20:21:31.0899 4888 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:32.0149 4888 p2pimsvc - ok
20:21:32.0321 4888 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:32.0336 4888 p2psvc - ok
20:21:34.0177 4888 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
20:21:34.0177 4888 Parport - ok
20:21:35.0815 4888 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
20:21:35.0815 4888 partmgr - ok
20:21:37.0207 4888 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
20:21:37.0209 4888 Parvdm - ok
20:21:39.0163 4888 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
20:21:39.0169 4888 PcaSvc - ok
20:21:40.0690 4888 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
20:21:40.0694 4888 pci - ok
20:21:42.0599 4888 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
20:21:42.0600 4888 pciide - ok
20:21:44.0589 4888 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
20:21:44.0592 4888 pcmcia - ok
20:21:46.0760 4888 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
20:21:46.0849 4888 PEAUTH - ok
20:21:48.0040 4888 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
20:21:48.0279 4888 pla - ok
20:21:49.0374 4888 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
20:21:49.0385 4888 PlugPlay - ok
20:21:50.0737 4888 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:50.0751 4888 PNRPAutoReg - ok
20:21:50.0880 4888 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
20:21:50.0897 4888 PNRPsvc - ok
20:21:52.0079 4888 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
20:21:52.0092 4888 PolicyAgent - ok
20:21:54.0203 4888 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
20:21:54.0206 4888 PptpMiniport - ok
20:21:55.0681 4888 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
20:21:55.0683 4888 Processor - ok
20:21:56.0918 4888 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
20:21:56.0926 4888 ProfSvc - ok
20:21:57.0964 4888 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:21:57.0968 4888 ProtectedStorage - ok
20:21:59.0588 4888 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
20:21:59.0591 4888 PSched - ok
20:22:01.0514 4888 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
20:22:01.0516 4888 PxHelp20 - ok
20:22:03.0216 4888 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
20:22:03.0401 4888 ql2300 - ok
20:22:06.0244 4888 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
20:22:06.0246 4888 ql40xx - ok
20:22:07.0444 4888 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
20:22:07.0529 4888 QWAVE - ok
20:22:09.0682 4888 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
20:22:09.0706 4888 QWAVEdrv - ok
20:22:12.0381 4888 R300 (47dcf5d78c395159d72c65c25129fc44) C:\Windows\system32\DRIVERS\atikmdag.sys
20:22:12.0439 4888 R300 - ok
20:22:13.0964 4888 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
20:22:13.0966 4888 RasAcd - ok
20:22:15.0084 4888 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
20:22:15.0106 4888 RasAuto - ok
20:22:17.0332 4888 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:22:17.0335 4888 Rasl2tp - ok
20:22:18.0993 4888 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
20:22:19.0004 4888 RasMan - ok
20:22:20.0838 4888 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
20:22:20.0840 4888 RasPppoe - ok
20:22:22.0410 4888 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
20:22:22.0413 4888 RasSstp - ok
20:22:24.0140 4888 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
20:22:24.0157 4888 rdbss - ok
20:22:26.0335 4888 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:22:26.0337 4888 RDPCDD - ok
20:22:29.0819 4888 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
20:22:29.0825 4888 rdpdr - ok
20:22:32.0948 4888 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
20:22:32.0949 4888 RDPENCDD - ok
20:22:35.0617 4888 RDPWD (79c6df8477250f5c54f7c5ae1d6b814e) C:\Windows\system32\drivers\RDPWD.sys
20:22:35.0622 4888 RDPWD - ok
20:22:37.0490 4888 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
20:22:37.0686 4888 RemoteAccess - ok
20:22:39.0445 4888 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
20:22:39.0728 4888 RemoteRegistry - ok
20:22:44.0195 4888 rimmptsk (c2ef513bbe069f0d4ee0938a76f975d3) C:\Windows\system32\DRIVERS\rimmptsk.sys
20:22:44.0197 4888 rimmptsk - ok
20:22:49.0479 4888 rimsptsk (c398bca91216755b098679a8da8a2300) C:\Windows\system32\DRIVERS\rimsptsk.sys
20:22:49.0481 4888 rimsptsk - ok
20:22:54.0195 4888 rismxdp (2a2554cb24506e0a0508fc395c4a1b42) C:\Windows\system32\DRIVERS\rixdptsk.sys
20:22:54.0197 4888 rismxdp - ok
20:22:56.0174 4888 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
20:22:56.0191 4888 RpcLocator - ok
20:22:57.0823 4888 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
20:22:57.0837 4888 RpcSs - ok
20:22:59.0743 4888 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
20:22:59.0745 4888 rspndr - ok
20:23:00.0892 4888 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
20:23:00.0897 4888 SamSs - ok
20:23:03.0513 4888 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
20:23:03.0513 4888 sbp2port - ok
20:23:06.0337 4888 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
20:23:06.0352 4888 SCardSvr - ok
20:23:08.0521 4888 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
20:23:08.0552 4888 Schedule - ok
20:23:10.0159 4888 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
20:23:10.0159 4888 SCPolicySvc - ok
20:23:12.0046 4888 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
20:23:12.0062 4888 sdbus - ok
20:23:13.0559 4888 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
20:23:13.0669 4888 SDRSVC - ok
20:23:15.0057 4888 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:23:15.0057 4888 secdrv - ok
20:23:16.0633 4888 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
20:23:16.0648 4888 seclogon - ok
20:23:18.0629 4888 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
20:23:18.0629 4888 SENS - ok
20:23:20.0111 4888 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
20:23:20.0111 4888 Serenum - ok
20:23:21.0235 4888 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
20:23:21.0235 4888 Serial - ok
20:23:23.0231 4888 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
20:23:23.0231 4888 sermouse - ok
20:23:24.0604 4888 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
20:23:24.0620 4888 SessionEnv - ok
20:23:27.0334 4888 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
20:23:27.0334 4888 sffdisk - ok
20:23:28.0582 4888 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
20:23:28.0582 4888 sffp_mmc - ok
20:23:30.0392 4888 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys
20:23:30.0392 4888 sffp_sd - ok
20:23:31.0983 4888 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
20:23:31.0983 4888 sfloppy - ok
20:23:33.0028 4888 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
20:23:33.0122 4888 SharedAccess - ok
20:23:33.0949 4888 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
20:23:33.0949 4888 ShellHWDetection - ok
20:23:35.0290 4888 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
20:23:35.0290 4888 sisagp - ok
20:23:37.0677 4888 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
20:23:37.0677 4888 SiSRaid2 - ok
20:23:39.0299 4888 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
20:23:39.0299 4888 SiSRaid4 - ok
20:23:41.0546 4888 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
20:23:41.0702 4888 slsvc - ok
20:23:43.0075 4888 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
20:23:43.0090 4888 SLUINotify - ok
20:23:44.0572 4888 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
20:23:44.0588 4888 Smb - ok
20:23:45.0539 4888 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
20:23:45.0555 4888 SNMPTRAP - ok
20:23:47.0318 4888 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
20:23:47.0318 4888 spldr - ok
20:23:48.0269 4888 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
20:23:48.0269 4888 Spooler - ok
20:23:50.0422 4888 sptd (71e276f6d189413266ea22171806597b) C:\Windows\system32\Drivers\sptd.sys
20:23:50.0422 4888 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b
20:23:50.0422 4888 sptd ( LockedFile.Multi.Generic ) - warning
20:23:50.0422 4888 sptd - detected LockedFile.Multi.Generic (1)
20:23:52.0435 4888 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
20:23:52.0559 4888 srv - ok
20:23:53.0901 4888 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
20:23:53.0917 4888 srv2 - ok
20:23:56.0132 4888 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
20:23:56.0132 4888 srvnet - ok
20:23:58.0175 4888 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
20:23:58.0175 4888 SSDPSRV - ok
20:24:00.0391 4888 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
20:24:00.0391 4888 ssmdrv - ok
20:24:01.0420 4888 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
20:24:01.0436 4888 SstpSvc - ok
20:24:03.0058 4888 STacSV (ffa85a9f3c3571ad29ac156bc6f116c5) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f091b975\STacSV.exe
20:24:03.0058 4888 STacSV - ok
20:24:04.0899 4888 STHDA (5af1feec6945f4fa5efd00e0c6d8f9b9) C:\Windows\system32\DRIVERS\stwrt.sys
20:24:04.0899 4888 STHDA - ok
20:24:06.0319 4888 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
20:24:06.0334 4888 stisvc - ok
20:24:06.0553 4888 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
20:24:06.0584 4888 stllssvr - ok
20:24:08.0284 4888 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
20:24:08.0300 4888 swenum - ok
20:24:09.0267 4888 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
20:24:09.0392 4888 swprv - ok
20:24:11.0217 4888 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
20:24:11.0217 4888 Symc8xx - ok
20:24:14.0540 4888 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
20:24:14.0555 4888 Sym_hi - ok
20:24:17.0582 4888 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
20:24:17.0582 4888 Sym_u3 - ok
20:24:19.0547 4888 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
20:24:19.0563 4888 SysMain - ok
20:24:20.0655 4888 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
20:24:20.0655 4888 TabletInputService - ok
20:24:21.0700 4888 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
20:24:21.0716 4888 TapiSrv - ok
20:24:22.0574 4888 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
20:24:22.0574 4888 TBS - ok
20:24:24.0337 4888 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
20:24:24.0352 4888 Tcpip - ok
20:24:25.0834 4888 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
20:24:25.0850 4888 Tcpip6 - ok
20:24:28.0377 4888 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
20:24:28.0393 4888 tcpipreg - ok
20:24:29.0734 4888 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
20:24:29.0734 4888 TDPIPE - ok
20:24:31.0279 4888 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
20:24:31.0279 4888 TDTCP - ok
20:24:32.0651 4888 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
20:24:32.0651 4888 tdx - ok
20:24:33.0073 4888 TeamViewer5 (213723e1a736910c644b457de6d095e2) C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
20:24:33.0073 4888 TeamViewer5 - ok
20:24:34.0289 4888 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
20:24:34.0289 4888 TermDD - ok
20:24:35.0475 4888 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
20:24:35.0771 4888 TermService - ok
20:24:36.0785 4888 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
20:24:36.0785 4888 Themes - ok
20:24:38.0860 4888 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
20:24:38.0860 4888 THREADORDER - ok
20:24:40.0015 4888 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
20:24:40.0030 4888 TrkWks - ok
20:24:41.0185 4888 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
20:24:41.0200 4888 TrustedInstaller - ok
20:24:43.0805 4888 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:24:43.0805 4888 tssecsrv - ok
20:24:45.0787 4888 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
20:24:45.0787 4888 tunmp - ok
20:24:48.0127 4888 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
20:24:48.0127 4888 tunnel - ok
20:24:49.0827 4888 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
20:24:49.0843 4888 uagp35 - ok
20:24:52.0120 4888 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
20:24:52.0120 4888 udfs - ok
20:24:54.0398 4888 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
20:24:54.0429 4888 UI0Detect - ok
20:24:57.0331 4888 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
20:24:57.0331 4888 uliagpkx - ok
20:25:00.0232 4888 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
20:25:00.0232 4888 uliahci - ok
20:25:02.0276 4888 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
20:25:02.0276 4888 UlSata - ok
20:25:03.0914 4888 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
20:25:03.0914 4888 ulsata2 - ok
20:25:06.0098 4888 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
20:25:06.0098 4888 umbus - ok
20:25:07.0517 4888 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
20:25:07.0533 4888 upnphost - ok
20:25:09.0311 4888 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
20:25:09.0311 4888 USBAAPL - ok
20:25:10.0981 4888 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
20:25:10.0981 4888 usbccgp - ok
20:25:12.0993 4888 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
20:25:12.0993 4888 usbcir - ok
20:25:14.0756 4888 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
20:25:14.0756 4888 usbehci - ok
20:25:16.0285 4888 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
20:25:16.0285 4888 usbhub - ok
20:25:18.0016 4888 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
20:25:18.0016 4888 usbohci - ok
20:25:19.0561 4888 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
20:25:19.0561 4888 usbprint - ok
20:25:21.0277 4888 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
20:25:21.0277 4888 usbscan - ok
20:25:23.0102 4888 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:25:23.0102 4888 USBSTOR - ok
20:25:26.0409 4888 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
20:25:26.0409 4888 usbuhci - ok
20:25:28.0312 4888 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
20:25:28.0328 4888 UxSms - ok
20:25:30.0028 4888 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
20:25:30.0137 4888 vds - ok
20:25:31.0526 4888 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
20:25:31.0526 4888 vga - ok
20:25:33.0601 4888 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
20:25:33.0601 4888 VgaSave - ok
20:25:35.0785 4888 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
20:25:35.0785 4888 viaagp - ok
20:25:38.0639 4888 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
20:25:38.0639 4888 ViaC7 - ok
20:25:41.0993 4888 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
20:25:41.0993 4888 viaide - ok
20:25:44.0115 4888 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
20:25:44.0115 4888 volmgr - ok
20:25:46.0127 4888 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
20:25:46.0143 4888 volmgrx - ok
20:25:49.0778 4888 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
20:25:49.0793 4888 volsnap - ok
20:25:51.0977 4888 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
20:25:51.0977 4888 vsmraid - ok
20:25:54.0255 4888 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
20:25:54.0551 4888 VSS - ok
20:25:57.0718 4888 VSTHWBS2 (c466021d31ff6c0a6069d12299d80c0b) C:\Windows\system32\DRIVERS\VSTBS23.SYS
20:25:57.0718 4888 VSTHWBS2 - ok
20:26:00.0183 4888 VST_DPV (ec36f1d542ed4252390d446bf6d4dfd0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
20:26:00.0230 4888 VST_DPV - ok
20:26:01.0634 4888 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
20:26:01.0634 4888 W32Time - ok
20:26:03.0615 4888 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
20:26:03.0615 4888 WacomPen - ok
20:26:05.0939 4888 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:26:05.0955 4888 Wanarp - ok
20:26:05.0955 4888 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:26:05.0955 4888 Wanarpv6 - ok
20:26:07.0499 4888 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
20:26:07.0531 4888 wcncsvc - ok
20:26:09.0278 4888 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
20:26:09.0293 4888 WcsPlugInService - ok
20:26:12.0647 4888 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
20:26:12.0647 4888 Wd - ok
20:26:15.0284 4888 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
20:26:15.0315 4888 Wdf01000 - ok
20:26:16.0547 4888 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:26:16.0547 4888 WdiServiceHost - ok
20:26:16.0563 4888 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
20:26:16.0579 4888 WdiSystemHost - ok
20:26:18.0263 4888 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
20:26:18.0279 4888 WebClient - ok
20:26:19.0745 4888 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
20:26:19.0917 4888 Wecsvc - ok
20:26:21.0524 4888 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
20:26:21.0539 4888 wercplsupport - ok
20:26:22.0413 4888 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
20:26:22.0413 4888 WerSvc - ok
20:26:24.0004 4888 winachsf (5c7bdcf5864db00323fe2d90fa26a8a2) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
20:26:24.0269 4888 winachsf - ok
20:26:24.0940 4888 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
20:26:24.0940 4888 WinDefend - ok
20:26:24.0956 4888 WinHttpAutoProxySvc - ok
20:26:26.0453 4888 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
20:26:26.0453 4888 Winmgmt - ok
20:26:28.0060 4888 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
20:26:28.0169 4888 WinRM - ok
20:26:29.0339 4888 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
20:26:29.0371 4888 Wlansvc - ok
20:26:30.0494 4888 wltrysvc - ok
20:26:32.0225 4888 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
20:26:32.0225 4888 WmiAcpi - ok
20:26:33.0770 4888 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
20:26:33.0910 4888 wmiApSrv - ok
20:26:34.0222 4888 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
20:26:34.0347 4888 WMPNetworkSvc - ok
20:26:35.0704 4888 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
20:26:35.0735 4888 WPCSvc - ok
20:26:36.0749 4888 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
20:26:36.0749 4888 WPDBusEnum - ok
20:26:39.0074 4888 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
20:26:39.0074 4888 WpdUsb - ok
20:26:40.0337 4888 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:26:40.0540 4888 WPFFontCache_v0400 - ok
20:26:41.0695 4888 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
20:26:41.0695 4888 ws2ifsl - ok
20:26:43.0192 4888 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
20:26:43.0192 4888 wscsvc - ok
20:26:44.0206 4888 WSearch - ok
20:26:45.0251 4888 wuauserv (6298277b73c77fa99106b271a7525163) C:\Windows\system32\wuaueng.dll
20:26:45.0688 4888 wuauserv - ok
20:26:47.0186 4888 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:26:47.0186 4888 WUDFRd - ok
20:26:48.0512 4888 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
20:26:48.0512 4888 wudfsvc - ok
20:26:48.0637 4888 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:26:48.0746 4888 \Device\Harddisk0\DR0 - ok
20:26:48.0761 4888 MBR (0x1B8) (23b571400a29918f5392f6e85eeb756e) \Device\Harddisk1\DR1
20:26:48.0808 4888 \Device\Harddisk1\DR1 - ok
20:26:48.0871 4888 Boot (0x1200) (bbbf34c5ad359c34f1c00e67786fe866) \Device\Harddisk0\DR0\Partition0
20:26:48.0871 4888 \Device\Harddisk0\DR0\Partition0 - ok
20:26:48.0902 4888 Boot (0x1200) (1614eedd30cc8943ab8913ff6801829f) \Device\Harddisk0\DR0\Partition1
20:26:48.0917 4888 \Device\Harddisk0\DR0\Partition1 - ok
20:26:48.0933 4888 Boot (0x1200) (0f56d6eb7fa143c7bf8749b5ae82ac58) \Device\Harddisk1\DR1\Partition0
20:26:48.0933 4888 \Device\Harddisk1\DR1\Partition0 - ok
20:26:48.0933 4888 ============================================================
20:26:48.0933 4888 Scan finished
20:26:48.0933 4888 ============================================================
20:26:48.0980 5028 Detected object count: 1
20:26:48.0980 5028 Actual detected object count: 1
20:27:43.0049 5028 sptd ( LockedFile.Multi.Generic ) - skipped by user
20:27:43.0049 5028 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

 

Themen zu SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden
avira, canon, dateien, dateien verschwunden, defender, desktop, detected, error, files, gen, google, harddisk, icons, intel, lockedfile.multi.generic, media player, object, office, rootkit, server, system, system32, tool, trojaner, trojaner-board, verschwunden, version, windows media player, write fault error


« Java-Script Virus: Exploit: Java/CVE-2011-3544.gen!E | Windows Verschlüsselungs Trojaner 2048 Bit PGP-RSA »


Ähnliche Themen: SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden


  1. Desktop bleibt nach Systemstart schwarz, alle Dateien ausgeblendet oder weg. Firefox Öffnung möglich. Trojaner?
    Plagegeister aller Art und deren Bekämpfung - 25.04.2013 (5)
  2. Trojaner: Desktop Schwarz, Dateien ausgeblendet oder weg
    Plagegeister aller Art und deren Bekämpfung - 24.01.2013 (35)
  3. Desktop schwarz und alle Programme im Startmenü verschwunden
    Plagegeister aller Art und deren Bekämpfung - 07.10.2012 (3)
  4. Trojaner: Festplatte beschädigt, Desktop schwarz und keine Dateien sichtbar!
    Plagegeister aller Art und deren Bekämpfung - 02.07.2012 (1)
  5. SMART HDD -> Desktop schwarz, Dateien/ Startmenüeinträge usw. nicht mehr sichtbar
    Log-Analyse und Auswertung - 07.04.2012 (34)
  6. Verknüpfungen von Desktop gelöscht/ Desktop schwarz und keinen Zugriff auf Dateien
    Plagegeister aller Art und deren Bekämpfung - 27.03.2012 (1)
  7. Trojaner/Virus eingefangen! Bildschirm schwarz und keine Dateien sichtbar!
    Log-Analyse und Auswertung - 25.08.2011 (27)
  8. Trojaner eingefangen.. Desktop schwarz und alle Dateien weg
    Log-Analyse und Auswertung - 11.08.2011 (5)
  9. Trojaner eingefangen! Bildschirm schwarz und keine Dateien sichtbar!
    Log-Analyse und Auswertung - 10.08.2011 (1)
  10. Nach Virusmeldung Desktop schwarz & Dateien verschwunden
    Log-Analyse und Auswertung - 05.06.2011 (19)
  11. Desktop schwarz. Ordner verschwunden
    Log-Analyse und Auswertung - 24.05.2011 (5)
  12. Nach Trojaner Desktop schwarz Programme und Dateien verschwunden
    Log-Analyse und Auswertung - 23.05.2011 (39)
  13. nach Trojanerbefall alle Dateien verschwunden, Screnn schwarz, Fehlermeldungen
    Log-Analyse und Auswertung - 16.05.2011 (20)
  14. TR/Kazy.mekml.1 Festplatten-Fehlermeldungen, Desktop schwarz, Dateien verschwunden
    Log-Analyse und Auswertung - 12.05.2011 (13)
  15. Festplatten-Fehlermeldungen, Desktop schwarz, Dateien verschwunden, wohl auch TR/Kazy.mekml.1
    Plagegeister aller Art und deren Bekämpfung - 28.04.2011 (7)
  16. TR/Kazy.mekml.1 Festplatten-Fehlermeldungen, Desktop schwarz, Dateien verschwunden
    Plagegeister aller Art und deren Bekämpfung - 22.04.2011 (12)
  17. TR/Kazy.mekml.1: Festplatten-Fehlermeldungen, Desktop schwarz, Dateien verschwunden
    Mülltonne - 21.04.2011 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden - Hallo, ich bin beim googlen schon des öfteren über "Trojaner-Board" gestolpert, hätte aber nie gedacht, Euch selbst einmal belästigen zu müssen. Tja, jetzt ist´s wohl so weit. Wie im Titel - SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden...
Archiv
Du betrachtest: SMART HDD Trojaner eingefangen - Desktop schwarz, Dateien verschwunden auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131