Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Plagegeister aller Art und deren Bekämpfung: Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 2 von 2 1 2
Alt 07.08.2012, 13:30   #16
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:
ATTFilter
:OTL
FF - user.js - File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Recorder Toolbar) - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files (x86)\MedienTeam66\CHIP MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\Shell - "" = AutoRun
O33 - MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\Shell - "" = AutoRun
O33 - MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\Shell - "" = AutoRun
O33 - MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 09.08.2012, 13:49   #17
Marika_K
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Hallo Arne,

jetzt hab ichs endlcih geschafft, deine Anweisungen umzusetzen. Ergebnis des OTL:

Code:
ATTFilter
 

User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: XXX
->Temp folder emptied: 901508854 bytes
->Temporary Internet Files folder emptied: 22325552 bytes
->Java cache emptied: 357136 bytes
->FireFox cache emptied: 61988439 bytes
->Flash cache emptied: 56950 bytes
 
User: XXY
->Temp folder emptied: 7003567 bytes
->Temporary Internet Files folder emptied: 27569402 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 467343253 bytes
->Flash cache emptied: 65226 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 397926199 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67765 bytes
RecycleBin emptied: 754992 bytes
 
Total Files Cleaned = 1.800,00 mb
 
 
[EMPTYFLASH]
 
User: All Users
 
User: Default
->Flash cache emptied: 0 bytes
 
User: Default User
->Flash cache emptied: 0 bytes
 
User: XXX
->Flash cache emptied: 291 bytes
 
User: XXY
->Flash cache emptied: 0 bytes
 
User: Public
 
Total Flash Files Cleaned = 0,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.54.1 log created on 08092012_143726

Files\Folders moved on Reboot...
C:\Users\XXX\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...
File C:\Users\XXX\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!

Registry entries deleted on Reboot...
PC läuft - soweit ich das schon sagen kann - störungsfrei. Gibts noch etwas zu tun?

Grüße
Marika
__________________
Alt 10.08.2012, 13:07   #18
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Log ist leider unvollständig
__________________
__________________
Alt 10.08.2012, 13:35   #19
Marika_K
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Sorry, zweiter Versuch:


Code:
ATTFilter
 
All processes killed
========== OTL ==========
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{120A8821-2BEE-4C29-BCDA-62C577781992} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{120A8821-2BEE-4C29-BCDA-62C577781992}\ deleted successfully.
C:\Program Files (x86)\MedienTeam66\CHIP MP3 Recorder for YouTube\IEPlugin.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a809c-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a809c-9203-11e0-a654-1c7508761139}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a80b8-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a80b8-9203-11e0-a654-1c7508761139}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
File F:\AutoRun.exe not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Melli
->Temp folder emptied: 901508854 bytes
->Temporary Internet Files folder emptied: 22325552 bytes
->Java cache emptied: 357136 bytes
->FireFox cache emptied: 61988439 bytes
->Flash cache emptied: 56950 bytes
 
User: Olli
->Temp folder emptied: 7003567 bytes
->Temporary Internet Files folder emptied: 27569402 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 467343253 bytes
->Flash cache emptied: 65226 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 397926199 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67765 bytes
RecycleBin emptied: 754992 bytes
 
Total Files Cleaned = 1.800,00 mb
 
 
[EMPTYFLASH]
 
User: All Users
 
User: Default
->Flash cache emptied: 0 bytes
 
User: Default User
->Flash cache emptied: 0 bytes
 
User: Melli
->Flash cache emptied: 291 bytes
 
User: Olli
->Flash cache emptied: 0 bytes
 
User: Public
 
Total Flash Files Cleaned = 0,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.54.1 log created on 08092012_143726

Files\Folders moved on Reboot...
C:\Users\Melli\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...
File C:\Users\Melli\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!

Registry entries deleted on Reboot...
Jetzt okay?

Alt 11.08.2012, 15:36   #20
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.
Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!


__________________
Logfiles bitte immer in CODE-Tags posten

Alt 12.08.2012, 20:24   #21
Marika_K
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Hallo Arne,

danke für deine Rückmeldung. Der TDDS-Killer (kuscheliger Name !) hat eine verdächtige Datei ausgemacht:

Code:
ATTFilter
21:14:45.0001 1816	TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
21:14:45.0266 1816	============================================================
21:14:45.0266 1816	Current date / time: 2012/08/12 21:14:45.0266
21:14:45.0266 1816	SystemInfo:
21:14:45.0266 1816	
21:14:45.0266 1816	OS Version: 6.1.7601 ServicePack: 1.0
21:14:45.0266 1816	Product type: Workstation
21:14:45.0266 1816	ComputerName: GROSSER
21:14:45.0266 1816	UserName: Melli
21:14:45.0266 1816	Windows directory: C:\Windows
21:14:45.0266 1816	System windows directory: C:\Windows
21:14:45.0266 1816	Running under WOW64
21:14:45.0266 1816	Processor architecture: Intel x64
21:14:45.0266 1816	Number of processors: 4
21:14:45.0266 1816	Page size: 0x1000
21:14:45.0266 1816	Boot type: Normal boot
21:14:45.0266 1816	============================================================
21:14:45.0812 1816	Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:14:45.0812 1816	============================================================
21:14:45.0812 1816	\Device\Harddisk0\DR0:
21:14:45.0812 1816	MBR partitions:
21:14:45.0812 1816	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x1D1C3000
21:14:45.0812 1816	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D28B800, BlocksNum 0x1D0FA800
21:14:45.0812 1816	============================================================
21:14:45.0843 1816	C: <-> \Device\Harddisk0\DR0\Partition0
21:14:45.0875 1816	D: <-> \Device\Harddisk0\DR0\Partition1
21:14:45.0875 1816	============================================================
21:14:45.0875 1816	Initialize success
21:14:45.0875 1816	============================================================
21:14:58.0823 1084	============================================================
21:14:58.0823 1084	Scan started
21:14:58.0823 1084	Mode: Manual; SigCheck; TDLFS; 
21:14:58.0823 1084	============================================================
21:15:00.0242 1084	1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:15:00.0383 1084	1394ohci - ok
21:15:00.0445 1084	ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:15:00.0476 1084	ACPI - ok
21:15:00.0523 1084	AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:15:00.0601 1084	AcpiPmi - ok
21:15:00.0695 1084	adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:15:00.0726 1084	adp94xx - ok
21:15:00.0773 1084	adpahci         (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:15:00.0804 1084	adpahci - ok
21:15:00.0835 1084	adpu320         (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:15:00.0851 1084	adpu320 - ok
21:15:00.0882 1084	AeLookupSvc     (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:15:01.0007 1084	AeLookupSvc - ok
21:15:01.0085 1084	AFD             (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:15:01.0163 1084	AFD - ok
21:15:01.0194 1084	agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:15:01.0209 1084	agp440 - ok
21:15:01.0241 1084	ALG             (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:15:01.0287 1084	ALG - ok
21:15:01.0334 1084	aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:15:01.0365 1084	aliide - ok
21:15:01.0428 1084	AMD External Events Utility (57b773d82e8cc3c6d7e02cc8a6632043) C:\Windows\system32\atiesrxx.exe
21:15:01.0521 1084	AMD External Events Utility - ok
21:15:01.0568 1084	amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:15:01.0599 1084	amdide - ok
21:15:01.0646 1084	AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:15:01.0724 1084	AmdK8 - ok
21:15:02.0255 1084	amdkmdag        (aefaf27f1b7e52c705df4fb6c96732f6) C:\Windows\system32\DRIVERS\atipmdag.sys
21:15:02.0442 1084	amdkmdag - ok
21:15:02.0598 1084	amdkmdap        (8149db73be27950ec72767a1193153a6) C:\Windows\system32\DRIVERS\atikmpag.sys
21:15:02.0629 1084	amdkmdap - ok
21:15:02.0676 1084	AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:15:02.0723 1084	AmdPPM - ok
21:15:02.0769 1084	amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:15:02.0785 1084	amdsata - ok
21:15:02.0816 1084	amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:15:02.0832 1084	amdsbs - ok
21:15:02.0847 1084	amdxata         (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:15:02.0863 1084	amdxata - ok
21:15:02.0957 1084	AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
21:15:02.0972 1084	AntiVirSchedulerService - ok
21:15:03.0003 1084	AntiVirService  (a489be6bb0aa1ff406b488b60542314b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
21:15:03.0003 1084	AntiVirService - ok
21:15:03.0050 1084	AppID           (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:15:03.0222 1084	AppID - ok
21:15:03.0253 1084	AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:15:03.0347 1084	AppIDSvc - ok
21:15:03.0409 1084	Appinfo         (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:15:03.0456 1084	Appinfo - ok
21:15:03.0503 1084	arc             (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:15:03.0503 1084	arc - ok
21:15:03.0518 1084	arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:15:03.0534 1084	arcsas - ok
21:15:03.0549 1084	AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:15:03.0643 1084	AsyncMac - ok
21:15:03.0690 1084	atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:15:03.0705 1084	atapi - ok
21:15:03.0815 1084	athr            (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
21:15:03.0924 1084	athr - ok
21:15:04.0142 1084	AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:15:04.0220 1084	AudioEndpointBuilder - ok
21:15:04.0220 1084	AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:15:04.0251 1084	AudioSrv - ok
21:15:04.0314 1084	avgntflt        (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
21:15:04.0579 1084	avgntflt - ok
21:15:04.0610 1084	avipbb          (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
21:15:04.0626 1084	avipbb - ok
21:15:04.0641 1084	avkmgr          (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
21:15:04.0657 1084	avkmgr - ok
21:15:04.0704 1084	AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:15:04.0797 1084	AxInstSV - ok
21:15:04.0860 1084	b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:15:04.0922 1084	b06bdrv - ok
21:15:04.0969 1084	b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:15:05.0016 1084	b57nd60a - ok
21:15:05.0187 1084	BBSvc           (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
21:15:05.0219 1084	BBSvc - ok
21:15:05.0328 1084	BBUpdate        (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
21:15:05.0343 1084	BBUpdate - ok
21:15:05.0609 1084	BCM43XX         (5b5c36b2ec500462a715db6bcbaf5da7) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:15:05.0687 1084	BCM43XX - ok
21:15:05.0827 1084	BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:15:05.0874 1084	BDESVC - ok
21:15:05.0921 1084	Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:15:06.0014 1084	Beep - ok
21:15:06.0123 1084	BFE             (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:15:06.0170 1084	BFE - ok
21:15:06.0248 1084	BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:15:06.0311 1084	BITS - ok
21:15:06.0373 1084	blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:15:06.0404 1084	blbdrive - ok
21:15:06.0451 1084	bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:15:06.0498 1084	bowser - ok
21:15:06.0529 1084	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:15:06.0576 1084	BrFiltLo - ok
21:15:06.0576 1084	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:15:06.0607 1084	BrFiltUp - ok
21:15:06.0654 1084	Browser         (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:15:06.0732 1084	Browser - ok
21:15:06.0779 1084	Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:15:06.0825 1084	Brserid - ok
21:15:06.0841 1084	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:15:06.0872 1084	BrSerWdm - ok
21:15:06.0888 1084	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:15:06.0935 1084	BrUsbMdm - ok
21:15:06.0950 1084	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:15:06.0981 1084	BrUsbSer - ok
21:15:06.0981 1084	BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:15:07.0013 1084	BTHMODEM - ok
21:15:07.0059 1084	bthserv         (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:15:07.0137 1084	bthserv - ok
21:15:07.0153 1084	cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:15:07.0200 1084	cdfs - ok
21:15:07.0262 1084	cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:15:07.0293 1084	cdrom - ok
21:15:07.0325 1084	CeKbFilter      (7e83e47bd1ff93e11cd69f1ad65a9581) C:\Windows\system32\DRIVERS\CeKbFilter.sys
21:15:07.0340 1084	CeKbFilter - ok
21:15:07.0387 1084	CertPropSvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:15:07.0481 1084	CertPropSvc - ok
21:15:07.0605 1084	cfWiMAXService  (41e7c4fa6491747402cfca77cc1c7aab) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
21:15:07.0621 1084	cfWiMAXService - ok
21:15:07.0668 1084	circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:15:07.0699 1084	circlass - ok
21:15:07.0777 1084	CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:15:07.0808 1084	CLFS - ok
21:15:07.0871 1084	clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:15:07.0886 1084	clr_optimization_v2.0.50727_32 - ok
21:15:07.0933 1084	clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:15:07.0949 1084	clr_optimization_v2.0.50727_64 - ok
21:15:08.0042 1084	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:15:08.0058 1084	clr_optimization_v4.0.30319_32 - ok
21:15:08.0089 1084	clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:15:08.0105 1084	clr_optimization_v4.0.30319_64 - ok
21:15:08.0151 1084	CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:15:08.0183 1084	CmBatt - ok
21:15:08.0214 1084	cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:15:08.0229 1084	cmdide - ok
21:15:08.0276 1084	cmnsusbser      (2b3b8cbea1ba1bce5700607fbdb31034) C:\Windows\system32\DRIVERS\cmnsusbser.sys
21:15:08.0339 1084	cmnsusbser - ok
21:15:08.0385 1084	CNG             (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:15:08.0417 1084	CNG - ok
21:15:08.0463 1084	Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:15:08.0479 1084	Compbatt - ok
21:15:08.0526 1084	CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:15:08.0557 1084	CompositeBus - ok
21:15:08.0573 1084	COMSysApp - ok
21:15:08.0666 1084	ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
21:15:08.0682 1084	ConfigFree Service - ok
21:15:08.0713 1084	crcdisk         (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:15:08.0729 1084	crcdisk - ok
21:15:08.0775 1084	CryptSvc        (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:15:08.0838 1084	CryptSvc - ok
21:15:08.0916 1084	DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:15:08.0994 1084	DcomLaunch - ok
21:15:09.0041 1084	defragsvc       (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:15:09.0103 1084	defragsvc - ok
21:15:09.0150 1084	DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:15:09.0212 1084	DfsC - ok
21:15:09.0259 1084	Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:15:09.0306 1084	Dhcp - ok
21:15:09.0337 1084	discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:15:09.0368 1084	discache - ok
21:15:09.0399 1084	Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:15:09.0415 1084	Disk - ok
21:15:09.0462 1084	Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:15:09.0509 1084	Dnscache - ok
21:15:09.0540 1084	dot3svc         (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:15:09.0618 1084	dot3svc - ok
21:15:09.0665 1084	DPS             (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:15:09.0727 1084	DPS - ok
21:15:09.0758 1084	drmkaud         (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:15:09.0774 1084	drmkaud - ok
21:15:09.0867 1084	DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:15:09.0914 1084	DXGKrnl - ok
21:15:09.0945 1084	EapHost         (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:15:09.0992 1084	EapHost - ok
21:15:10.0242 1084	ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:15:10.0335 1084	ebdrv - ok
21:15:10.0476 1084	EFS             (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:15:10.0538 1084	EFS - ok
21:15:10.0663 1084	ehRecvr         (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:15:10.0725 1084	ehRecvr - ok
21:15:10.0741 1084	ehSched         (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:15:10.0788 1084	ehSched - ok
21:15:10.0897 1084	elxstor         (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:15:10.0928 1084	elxstor - ok
21:15:10.0959 1084	ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:15:10.0991 1084	ErrDev - ok
21:15:11.0069 1084	EventSystem     (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:15:11.0131 1084	EventSystem - ok
21:15:11.0178 1084	ewusbnet        (8adacffad67394c711698ea074ce3bab) C:\Windows\system32\DRIVERS\ewusbnet.sys
21:15:11.0225 1084	ewusbnet - ok
21:15:11.0287 1084	exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:15:11.0349 1084	exfat - ok
21:15:11.0381 1084	fastfat         (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:15:11.0443 1084	fastfat - ok
21:15:11.0552 1084	Fax             (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:15:11.0615 1084	Fax - ok
21:15:11.0646 1084	fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:15:11.0661 1084	fdc - ok
21:15:11.0677 1084	fdPHost         (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:15:11.0755 1084	fdPHost - ok
21:15:11.0771 1084	FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:15:11.0817 1084	FDResPub - ok
21:15:11.0833 1084	FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:15:11.0849 1084	FileInfo - ok
21:15:11.0849 1084	Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:15:11.0895 1084	Filetrace - ok
21:15:11.0927 1084	flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:15:11.0942 1084	flpydisk - ok
21:15:12.0005 1084	FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:15:12.0036 1084	FltMgr - ok
21:15:12.0129 1084	FontCache       (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:15:12.0192 1084	FontCache - ok
21:15:12.0254 1084	FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:15:12.0270 1084	FontCache3.0.0.0 - ok
21:15:12.0301 1084	FsDepends       (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:15:12.0317 1084	FsDepends - ok
21:15:12.0348 1084	Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:15:12.0379 1084	Fs_Rec - ok
21:15:12.0426 1084	fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:15:12.0457 1084	fvevol - ok
21:15:12.0473 1084	gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:15:12.0488 1084	gagp30kx - ok
21:15:12.0566 1084	GameConsoleService (1fda0df739234c4023851a282dd28704) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
21:15:12.0582 1084	GameConsoleService - ok
21:15:12.0660 1084	gpsvc           (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:15:12.0738 1084	gpsvc - ok
21:15:12.0816 1084	gupdate         (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:15:12.0831 1084	gupdate - ok
21:15:12.0831 1084	gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:15:12.0847 1084	gupdatem - ok
21:15:12.0863 1084	hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:15:12.0909 1084	hcw85cir - ok
21:15:12.0987 1084	HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:15:13.0034 1084	HdAudAddService - ok
21:15:13.0065 1084	HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:15:13.0097 1084	HDAudBus - ok
21:15:13.0159 1084	HECIx64         (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:15:13.0159 1084	HECIx64 - ok
21:15:13.0175 1084	HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:15:13.0206 1084	HidBatt - ok
21:15:13.0221 1084	HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:15:13.0253 1084	HidBth - ok
21:15:13.0268 1084	HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:15:13.0284 1084	HidIr - ok
21:15:13.0315 1084	hidserv         (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:15:13.0362 1084	hidserv - ok
21:15:13.0409 1084	HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:15:13.0409 1084	HidUsb - ok
21:15:13.0455 1084	hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:15:13.0549 1084	hkmsvc - ok
21:15:13.0596 1084	HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:15:13.0643 1084	HomeGroupListener - ok
21:15:13.0689 1084	HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:15:13.0736 1084	HomeGroupProvider - ok
21:15:13.0783 1084	HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:15:13.0799 1084	HpSAMD - ok
21:15:13.0908 1084	HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:15:13.0955 1084	HTTP - ok
21:15:14.0017 1084	hwdatacard      (d969d0e26c5b1e813b17066a8318d5d4) C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:15:14.0048 1084	hwdatacard - ok
21:15:14.0079 1084	hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:15:14.0095 1084	hwpolicy - ok
21:15:14.0126 1084	hwusbdev        (b45b3647ba32749b94fa689175ec8c26) C:\Windows\system32\DRIVERS\ewusbdev.sys
21:15:14.0157 1084	hwusbdev - ok
21:15:14.0204 1084	i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:15:14.0220 1084	i8042prt - ok
21:15:14.0282 1084	iaStor          (85977cd13fc16069ce0af7943a811775) C:\Windows\system32\DRIVERS\iaStor.sys
21:15:14.0313 1084	iaStor - ok
21:15:14.0391 1084	iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:15:14.0423 1084	iaStorV - ok
21:15:14.0547 1084	idsvc           (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:15:14.0579 1084	idsvc - ok
21:15:14.0625 1084	iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:15:14.0657 1084	iirsp - ok
21:15:14.0735 1084	IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:15:14.0797 1084	IKEEXT - ok
21:15:14.0859 1084	Impcd           (4b6363cd4610bb848531bb260b15dfcc) C:\Windows\system32\DRIVERS\Impcd.sys
21:15:14.0906 1084	Impcd - ok
21:15:15.0125 1084	IntcAzAudAddService (490947a9aff7ca31ef2e08f5776105eb) C:\Windows\system32\drivers\RTKVHD64.sys
21:15:15.0171 1084	IntcAzAudAddService - ok
21:15:15.0281 1084	intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:15:15.0296 1084	intelide - ok
21:15:15.0343 1084	intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:15:15.0374 1084	intelppm - ok
21:15:15.0405 1084	IPBusEnum       (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:15:15.0452 1084	IPBusEnum - ok
21:15:15.0483 1084	IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:15:15.0561 1084	IpFilterDriver - ok
21:15:15.0624 1084	iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:15:15.0702 1084	iphlpsvc - ok
21:15:15.0749 1084	IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:15:15.0780 1084	IPMIDRV - ok
21:15:15.0811 1084	IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:15:15.0873 1084	IPNAT - ok
21:15:15.0889 1084	IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:15:15.0983 1084	IRENUM - ok
21:15:16.0014 1084	isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:15:16.0029 1084	isapnp - ok
21:15:16.0076 1084	iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:15:16.0107 1084	iScsiPrt - ok
21:15:16.0170 1084	IviRegMgr       (213822072085b5bbad9af30ab577d817) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
21:15:16.0185 1084	IviRegMgr - ok
21:15:16.0201 1084	kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:15:16.0232 1084	kbdclass - ok
21:15:16.0263 1084	kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:15:16.0295 1084	kbdhid - ok
21:15:16.0341 1084	KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:16.0357 1084	KeyIso - ok
21:15:16.0388 1084	KSecDD          (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:15:16.0404 1084	KSecDD - ok
21:15:16.0435 1084	KSecPkg         (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:15:16.0451 1084	KSecPkg - ok
21:15:16.0497 1084	ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:15:16.0575 1084	ksthunk - ok
21:15:16.0622 1084	KtmRm           (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:15:16.0669 1084	KtmRm - ok
21:15:16.0731 1084	LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:15:16.0809 1084	LanmanServer - ok
21:15:16.0856 1084	LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:15:16.0903 1084	LanmanWorkstation - ok
21:15:16.0934 1084	lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:15:16.0965 1084	lltdio - ok
21:15:17.0012 1084	lltdsvc         (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:15:17.0059 1084	lltdsvc - ok
21:15:17.0090 1084	lmhosts         (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:15:17.0121 1084	lmhosts - ok
21:15:17.0215 1084	LMS             (23de5b62b0445a6f874be633c95b483e) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:15:17.0231 1084	LMS - ok
21:15:17.0277 1084	LPCFilter       (2825a71e7501cb33b3b9f856610c729d) C:\Windows\system32\DRIVERS\LPCFilter.sys
21:15:17.0293 1084	LPCFilter - ok
21:15:17.0340 1084	LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:15:17.0355 1084	LSI_FC - ok
21:15:17.0371 1084	LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:15:17.0387 1084	LSI_SAS - ok
21:15:17.0387 1084	LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:15:17.0402 1084	LSI_SAS2 - ok
21:15:17.0418 1084	LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:15:17.0418 1084	LSI_SCSI - ok
21:15:17.0449 1084	luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:15:17.0511 1084	luafv - ok
21:15:17.0574 1084	MBAMProtector   (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
21:15:17.0589 1084	MBAMProtector - ok
21:15:17.0730 1084	MBAMService     (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:15:17.0761 1084	MBAMService - ok
21:15:17.0808 1084	Mcx2Svc         (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:15:17.0870 1084	Mcx2Svc - ok
21:15:17.0886 1084	megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:15:17.0886 1084	megasas - ok
21:15:17.0933 1084	MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:15:17.0948 1084	MegaSR - ok
21:15:17.0979 1084	MMCSS           (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:15:18.0042 1084	MMCSS - ok
21:15:18.0057 1084	Modem           (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:15:18.0089 1084	Modem - ok
21:15:18.0120 1084	monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:15:18.0167 1084	monitor - ok
21:15:18.0213 1084	mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:15:18.0229 1084	mouclass - ok
21:15:18.0260 1084	mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:15:18.0291 1084	mouhid - ok
21:15:18.0338 1084	mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:15:18.0354 1084	mountmgr - ok
21:15:18.0447 1084	MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:15:18.0463 1084	MozillaMaintenance - ok
21:15:18.0510 1084	mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:15:18.0525 1084	mpio - ok
21:15:18.0557 1084	mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:15:18.0619 1084	mpsdrv - ok
21:15:18.0697 1084	MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:15:18.0775 1084	MpsSvc - ok
21:15:18.0806 1084	MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:15:18.0853 1084	MRxDAV - ok
21:15:18.0900 1084	mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:15:18.0947 1084	mrxsmb - ok
21:15:18.0993 1084	mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:15:19.0040 1084	mrxsmb10 - ok
21:15:19.0056 1084	mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:15:19.0071 1084	mrxsmb20 - ok
21:15:19.0103 1084	msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:15:19.0118 1084	msahci - ok
21:15:19.0149 1084	msdsm           (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:15:19.0165 1084	msdsm - ok
21:15:19.0212 1084	MSDTC           (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:15:19.0243 1084	MSDTC - ok
21:15:19.0290 1084	Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:15:19.0337 1084	Msfs - ok
21:15:19.0352 1084	mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:15:19.0383 1084	mshidkmdf - ok
21:15:19.0415 1084	msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:15:19.0430 1084	msisadrv - ok
21:15:19.0461 1084	MSiSCSI         (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:15:19.0508 1084	MSiSCSI - ok
21:15:19.0508 1084	msiserver - ok
21:15:19.0524 1084	MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:15:19.0571 1084	MSKSSRV - ok
21:15:19.0571 1084	MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:15:19.0617 1084	MSPCLOCK - ok
21:15:19.0617 1084	MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:15:19.0664 1084	MSPQM - ok
21:15:19.0711 1084	MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:15:19.0742 1084	MsRPC - ok
21:15:19.0789 1084	mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:15:19.0789 1084	mssmbios - ok
21:15:19.0805 1084	MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:15:19.0836 1084	MSTEE - ok
21:15:19.0851 1084	MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:15:19.0851 1084	MTConfig - ok
21:15:19.0883 1084	Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:15:19.0914 1084	Mup - ok
21:15:19.0976 1084	napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:15:20.0054 1084	napagent - ok
21:15:20.0101 1084	NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:15:20.0132 1084	NativeWifiP - ok
21:15:20.0257 1084	NAUpdate        (9d1cce440552500ded3a62f9d779cdb4) c:\Program Files (x86)\Nero\Update\NASvc.exe
21:15:20.0273 1084	NAUpdate - ok
21:15:20.0382 1084	NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:15:20.0413 1084	NDIS - ok
21:15:20.0444 1084	NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:15:20.0491 1084	NdisCap - ok
21:15:20.0522 1084	NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:15:20.0553 1084	NdisTapi - ok
21:15:20.0600 1084	Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:15:20.0678 1084	Ndisuio - ok
21:15:20.0709 1084	NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:15:20.0772 1084	NdisWan - ok
21:15:20.0803 1084	NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:15:20.0850 1084	NDProxy - ok
21:15:20.0881 1084	NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:15:20.0943 1084	NetBIOS - ok
21:15:20.0975 1084	NetBT           (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:15:21.0021 1084	NetBT - ok
21:15:21.0053 1084	Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:21.0068 1084	Netlogon - ok
21:15:21.0115 1084	Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:15:21.0162 1084	Netman - ok
21:15:21.0209 1084	netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:15:21.0255 1084	netprofm - ok
21:15:21.0333 1084	NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:15:21.0349 1084	NetTcpPortSharing - ok
21:15:21.0396 1084	nfrd960         (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:15:21.0411 1084	nfrd960 - ok
21:15:21.0474 1084	NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:15:21.0552 1084	NlaSvc - ok
21:15:21.0567 1084	Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:15:21.0599 1084	Npfs - ok
21:15:21.0630 1084	nsi             (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:15:21.0677 1084	nsi - ok
21:15:21.0677 1084	nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:15:21.0723 1084	nsiproxy - ok
21:15:21.0864 1084	Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:15:21.0942 1084	Ntfs - ok
21:15:22.0051 1084	Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:15:22.0113 1084	Null - ok
21:15:22.0160 1084	nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:15:22.0176 1084	nvraid - ok
21:15:22.0207 1084	nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:15:22.0223 1084	nvstor - ok
21:15:22.0254 1084	nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:15:22.0269 1084	nv_agp - ok
21:15:22.0379 1084	odserv          (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:15:22.0410 1084	odserv - ok
21:15:22.0441 1084	ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:15:22.0457 1084	ohci1394 - ok
21:15:22.0535 1084	ose             (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:15:22.0566 1084	ose - ok
21:15:22.0737 1084	p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:15:22.0784 1084	p2pimsvc - ok
21:15:22.0831 1084	p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:15:22.0862 1084	p2psvc - ok
21:15:22.0893 1084	Parport         (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:15:22.0909 1084	Parport - ok
21:15:22.0925 1084	partmgr         (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:15:22.0940 1084	partmgr - ok
21:15:22.0971 1084	PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:15:23.0003 1084	PcaSvc - ok
21:15:23.0049 1084	pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:15:23.0081 1084	pci - ok
21:15:23.0096 1084	pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:15:23.0096 1084	pciide - ok
21:15:23.0143 1084	pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:15:23.0159 1084	pcmcia - ok
21:15:23.0174 1084	pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:15:23.0190 1084	pcw - ok
21:15:23.0237 1084	PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:15:23.0299 1084	PEAUTH - ok
21:15:23.0377 1084	PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:15:23.0408 1084	PerfHost - ok
21:15:23.0455 1084	PGEffect        (663962900e7fea522126ba287715bb4a) C:\Windows\system32\DRIVERS\pgeffect.sys
21:15:23.0471 1084	PGEffect - ok
21:15:23.0580 1084	pla             (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:15:23.0658 1084	pla - ok
21:15:23.0736 1084	PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:15:23.0767 1084	PlugPlay - ok
21:15:23.0798 1084	PNRPAutoReg     (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:15:23.0814 1084	PNRPAutoReg - ok
21:15:23.0845 1084	PNRPsvc         (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:15:23.0861 1084	PNRPsvc - ok
21:15:23.0954 1084	Polar Daemon    (d8fc3064e3a3a9c482019d1f1bd1420a) C:\Program Files (x86)\Polar\Daemon\polard.exe
21:15:23.0985 1084	Polar Daemon ( UnsignedFile.Multi.Generic ) - warning
21:15:23.0985 1084	Polar Daemon - detected UnsignedFile.Multi.Generic (1)
21:15:24.0048 1084	PolicyAgent     (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:15:24.0095 1084	PolicyAgent - ok
21:15:24.0126 1084	Power           (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:15:24.0173 1084	Power - ok
21:15:24.0251 1084	PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:15:24.0297 1084	PptpMiniport - ok
21:15:24.0329 1084	Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:15:24.0360 1084	Processor - ok
21:15:24.0407 1084	ProfSvc         (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:15:24.0453 1084	ProfSvc - ok
21:15:24.0485 1084	ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:24.0500 1084	ProtectedStorage - ok
21:15:24.0531 1084	Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:15:24.0594 1084	Psched - ok
21:15:24.0672 1084	PSI_SVC_2       (f036cfb275d0c55f4e45fbbf5f98b3c8) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
21:15:24.0687 1084	PSI_SVC_2 - ok
21:15:24.0812 1084	ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:15:24.0859 1084	ql2300 - ok
21:15:24.0999 1084	ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:15:25.0015 1084	ql40xx - ok
21:15:25.0062 1084	QWAVE           (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:15:25.0093 1084	QWAVE - ok
21:15:25.0109 1084	QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:15:25.0140 1084	QWAVEdrv - ok
21:15:25.0140 1084	RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:15:25.0187 1084	RasAcd - ok
21:15:25.0233 1084	RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:15:25.0280 1084	RasAgileVpn - ok
21:15:25.0311 1084	RasAuto         (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:15:25.0358 1084	RasAuto - ok
21:15:25.0405 1084	Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:15:25.0452 1084	Rasl2tp - ok
21:15:25.0530 1084	RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:15:25.0608 1084	RasMan - ok
21:15:25.0655 1084	RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:15:25.0701 1084	RasPppoe - ok
21:15:25.0717 1084	RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:15:25.0764 1084	RasSstp - ok
21:15:25.0795 1084	rdbss           (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:15:25.0842 1084	rdbss - ok
21:15:25.0857 1084	rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:15:25.0873 1084	rdpbus - ok
21:15:25.0904 1084	RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:15:25.0935 1084	RDPCDD - ok
21:15:25.0951 1084	RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:15:25.0998 1084	RDPENCDD - ok
21:15:26.0013 1084	RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:15:26.0045 1084	RDPREFMP - ok
21:15:26.0091 1084	RDPWD           (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:15:26.0107 1084	RDPWD - ok
21:15:26.0154 1084	rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:15:26.0169 1084	rdyboost - ok
21:15:26.0201 1084	regi            (4d9afddda0efe97cdbfd3b5fa48b05f6) C:\Windows\system32\drivers\regi.sys
21:15:26.0216 1084	regi - ok
21:15:26.0232 1084	RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:15:26.0294 1084	RemoteAccess - ok
21:15:26.0341 1084	RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:15:26.0403 1084	RemoteRegistry - ok
21:15:26.0435 1084	ROOTMODEM       (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
21:15:26.0481 1084	ROOTMODEM - ok
21:15:26.0497 1084	RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:15:26.0544 1084	RpcEptMapper - ok
21:15:26.0575 1084	RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:15:26.0606 1084	RpcLocator - ok
21:15:26.0669 1084	RpcSs           (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:15:26.0715 1084	RpcSs - ok
21:15:26.0731 1084	rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:15:26.0793 1084	rspndr - ok
21:15:26.0840 1084	RSUSBSTOR       (907c4464381b5ebdfdc60f6c7d0dedfc) C:\Windows\system32\Drivers\RtsUStor.sys
21:15:26.0871 1084	RSUSBSTOR - ok
21:15:26.0918 1084	RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
21:15:26.0934 1084	RTHDMIAzAudService - ok
21:15:26.0996 1084	RTL8167         (fd978b2bf8a9b2390dcbef435e9c1f9f) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:15:27.0012 1084	RTL8167 - ok
21:15:27.0043 1084	SamSs           (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:27.0059 1084	SamSs - ok
21:15:27.0105 1084	sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:15:27.0121 1084	sbp2port - ok
21:15:27.0168 1084	SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:15:27.0215 1084	SCardSvr - ok
21:15:27.0246 1084	scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:15:27.0277 1084	scfilter - ok
21:15:27.0386 1084	Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:15:27.0464 1084	Schedule - ok
21:15:27.0495 1084	SCPolicySvc     (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:15:27.0527 1084	SCPolicySvc - ok
21:15:27.0542 1084	SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:15:27.0573 1084	SDRSVC - ok
21:15:27.0620 1084	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:15:27.0683 1084	secdrv - ok
21:15:27.0714 1084	seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:15:27.0745 1084	seclogon - ok
21:15:27.0776 1084	SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:15:27.0823 1084	SENS - ok
21:15:27.0839 1084	SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:15:27.0870 1084	SensrSvc - ok
21:15:27.0885 1084	Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:15:27.0901 1084	Serenum - ok
21:15:27.0932 1084	Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:15:27.0963 1084	Serial - ok
21:15:28.0010 1084	sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:15:28.0026 1084	sermouse - ok
21:15:28.0073 1084	SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:15:28.0119 1084	SessionEnv - ok
21:15:28.0151 1084	sffdisk         (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:15:28.0197 1084	sffdisk - ok
21:15:28.0213 1084	sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:15:28.0213 1084	sffp_mmc - ok
21:15:28.0229 1084	sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:15:28.0260 1084	sffp_sd - ok
21:15:28.0275 1084	sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:15:28.0322 1084	sfloppy - ok
21:15:28.0385 1084	SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:15:28.0447 1084	SharedAccess - ok
21:15:28.0509 1084	ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:15:28.0572 1084	ShellHWDetection - ok
21:15:28.0603 1084	SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:15:28.0619 1084	SiSRaid2 - ok
21:15:28.0619 1084	SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:15:28.0634 1084	SiSRaid4 - ok
21:15:28.0650 1084	Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:15:28.0697 1084	Smb - ok
21:15:28.0728 1084	SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:15:28.0743 1084	SNMPTRAP - ok
21:15:28.0759 1084	spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:15:28.0775 1084	spldr - ok
21:15:28.0837 1084	Spooler         (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:15:28.0884 1084	Spooler - ok
21:15:29.0149 1084	sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:15:29.0243 1084	sppsvc - ok
21:15:29.0367 1084	sppuinotify     (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:15:29.0445 1084	sppuinotify - ok
21:15:29.0523 1084	srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:15:29.0586 1084	srv - ok
21:15:29.0633 1084	srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:15:29.0664 1084	srv2 - ok
21:15:29.0695 1084	srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:15:29.0726 1084	srvnet - ok
21:15:29.0773 1084	SSDPSRV         (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:15:29.0835 1084	SSDPSRV - ok
21:15:29.0851 1084	SstpSvc         (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:15:29.0882 1084	SstpSvc - ok
21:15:29.0913 1084	stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:15:29.0913 1084	stexstor - ok
21:15:29.0991 1084	stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:15:30.0038 1084	stisvc - ok
21:15:30.0069 1084	swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:15:30.0069 1084	swenum - ok
21:15:30.0132 1084	swprv           (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:15:30.0179 1084	swprv - ok
21:15:30.0257 1084	SynTP           (470c47daba9ca3966f0ab3f835d7d135) C:\Windows\system32\DRIVERS\SynTP.sys
21:15:30.0272 1084	SynTP - ok
21:15:30.0413 1084	SysMain         (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:15:30.0491 1084	SysMain - ok
21:15:30.0615 1084	TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:15:30.0662 1084	TabletInputService - ok
21:15:30.0709 1084	TapiSrv         (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:15:30.0771 1084	TapiSrv - ok
21:15:30.0787 1084	TBS             (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:15:30.0834 1084	TBS - ok
21:15:31.0037 1084	Tcpip           (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:15:31.0083 1084	Tcpip - ok
21:15:31.0364 1084	TCPIP6          (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:15:31.0411 1084	TCPIP6 - ok
21:15:31.0536 1084	tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:15:31.0598 1084	tcpipreg - ok
21:15:31.0661 1084	tdcmdpst        (fd542b661bd22fa69ca789ad0ac58c29) C:\Windows\system32\DRIVERS\tdcmdpst.sys
21:15:31.0676 1084	tdcmdpst - ok
21:15:31.0707 1084	TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:15:31.0754 1084	TDPIPE - ok
21:15:31.0785 1084	TDTCP           (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:15:31.0817 1084	TDTCP - ok
21:15:31.0863 1084	tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:15:31.0941 1084	tdx - ok
21:15:32.0051 1084	TemproMonitoringService (40e154b3125e17ce6f2afad57afcfeb2) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
21:15:32.0066 1084	TemproMonitoringService - ok
21:15:32.0113 1084	TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:15:32.0129 1084	TermDD - ok
21:15:32.0191 1084	TermService     (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:15:32.0253 1084	TermService - ok
21:15:32.0269 1084	TFsExDisk - ok
21:15:32.0300 1084	Themes          (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:15:32.0331 1084	Themes - ok
21:15:32.0363 1084	THREADORDER     (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:15:32.0409 1084	THREADORDER - ok
21:15:32.0472 1084	TMachInfo       (28644b0523d64eff2fc7312a2ee74b0a) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
21:15:32.0487 1084	TMachInfo - ok
21:15:32.0503 1084	TODDSrv         (ed32035bdfeced1ad66d459fd9cc1140) C:\Windows\system32\TODDSrv.exe
21:15:32.0519 1084	TODDSrv - ok
21:15:32.0628 1084	TosCoSrv        (db9719688c08f42705feb3f6a0c98b91) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
21:15:32.0643 1084	TosCoSrv - ok
21:15:32.0706 1084	TOSHIBA Bluetooth Service (895f6972480306cb2a2a246991e34c68) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
21:15:32.0721 1084	TOSHIBA Bluetooth Service - ok
21:15:32.0784 1084	TOSHIBA eco Utility Service (2ab7a4697462edb0c9dfafc529746ba9) C:\Program Files\TOSHIBA\TECO\TecoService.exe
21:15:32.0799 1084	TOSHIBA eco Utility Service - ok
21:15:32.0846 1084	TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
21:15:32.0862 1084	TOSHIBA HDD SSD Alert Service - ok
21:15:32.0924 1084	tosporte        (8021f63311797085949fa387f7c83583) C:\Windows\system32\DRIVERS\tosporte.sys
21:15:32.0940 1084	tosporte - ok
21:15:32.0987 1084	tosrfbd         (1b09357180034639e62cf745e77ac66e) C:\Windows\system32\DRIVERS\tosrfbd.sys
21:15:33.0002 1084	tosrfbd - ok
21:15:33.0033 1084	tosrfbnp        (62512b5277d88600f8bd4b7aec43569d) C:\Windows\system32\Drivers\tosrfbnp.sys
21:15:33.0033 1084	tosrfbnp - ok
21:15:33.0080 1084	Tosrfcom        (c523a9186c39d65cc9adebb2e1b93ccd) C:\Windows\system32\Drivers\tosrfcom.sys
21:15:33.0096 1084	Tosrfcom - ok
21:15:33.0143 1084	tosrfec         (11699d47b3491d86249c168496d55c92) C:\Windows\system32\DRIVERS\tosrfec.sys
21:15:33.0143 1084	tosrfec - ok
21:15:33.0174 1084	Tosrfhid        (451b8c1815c6cc39650af916c2a382cd) C:\Windows\system32\DRIVERS\Tosrfhid.sys
21:15:33.0189 1084	Tosrfhid - ok
21:15:33.0205 1084	tosrfnds        (b6fdc3c76ffe9c5171eea9c37ea367c2) C:\Windows\system32\DRIVERS\tosrfnds.sys
21:15:33.0221 1084	tosrfnds - ok
21:15:33.0267 1084	TosRfSnd        (e1e045240c1184fa6628f3c7e7ff85d8) C:\Windows\system32\drivers\tosrfsnd.sys
21:15:33.0283 1084	TosRfSnd - ok
21:15:33.0314 1084	Tosrfusb        (de44a2a2459d0504f146e599f4bd2074) C:\Windows\system32\DRIVERS\tosrfusb.sys
21:15:33.0330 1084	Tosrfusb - ok
21:15:33.0439 1084	TPCHSrv         (97687d094aa597da366e1194b218cc6c) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
21:15:33.0455 1084	TPCHSrv - ok
21:15:33.0486 1084	TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:15:33.0533 1084	TrkWks - ok
21:15:33.0611 1084	TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:15:33.0673 1084	TrustedInstaller - ok
21:15:33.0704 1084	tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:15:33.0735 1084	tssecsrv - ok
21:15:33.0782 1084	TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:15:33.0829 1084	TsUsbFlt - ok
21:15:33.0891 1084	tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:15:33.0969 1084	tunnel - ok
21:15:34.0016 1084	TVALZ           (550b567f9364d8f7684c3fb3ea665a72) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
21:15:34.0016 1084	TVALZ - ok
21:15:34.0063 1084	TVALZFL         (9c7191f4b2e49bff47a6c1144b5923fa) C:\Windows\system32\DRIVERS\TVALZFL.sys
21:15:34.0079 1084	TVALZFL - ok
21:15:34.0110 1084	uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:15:34.0125 1084	uagp35 - ok
21:15:34.0172 1084	udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:15:34.0235 1084	udfs - ok
21:15:34.0266 1084	UI0Detect       (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:15:34.0281 1084	UI0Detect - ok
21:15:34.0313 1084	uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:15:34.0344 1084	uliagpkx - ok
21:15:34.0375 1084	umbus           (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:15:34.0406 1084	umbus - ok
21:15:34.0422 1084	UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:15:34.0453 1084	UmPass - ok
21:15:34.0718 1084	UNS             (cc3775100aba633984f73dfae1f55cae) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:15:34.0781 1084	UNS - ok
21:15:34.0905 1084	upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:15:34.0983 1084	upnphost - ok
21:15:35.0030 1084	usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:15:35.0077 1084	usbccgp - ok
21:15:35.0108 1084	usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:15:35.0124 1084	usbcir - ok
21:15:35.0155 1084	usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:15:35.0186 1084	usbehci - ok
21:15:35.0217 1084	usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:15:35.0264 1084	usbhub - ok
21:15:35.0264 1084	usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:15:35.0295 1084	usbohci - ok
21:15:35.0342 1084	usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:15:35.0358 1084	usbprint - ok
21:15:35.0420 1084	usbscan         (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:15:35.0451 1084	usbscan - ok
21:15:35.0498 1084	USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:15:35.0545 1084	USBSTOR - ok
21:15:35.0576 1084	usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:15:35.0607 1084	usbuhci - ok
21:15:35.0670 1084	usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:15:35.0732 1084	usbvideo - ok
21:15:35.0779 1084	usb_rndisx      (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
21:15:35.0795 1084	usb_rndisx - ok
21:15:35.0826 1084	UxSms           (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:15:35.0888 1084	UxSms - ok
21:15:35.0919 1084	VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:35.0935 1084	VaultSvc - ok
21:15:35.0982 1084	vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:15:35.0997 1084	vdrvroot - ok
21:15:36.0060 1084	vds             (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:15:36.0153 1084	vds - ok
21:15:36.0200 1084	vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:15:36.0231 1084	vga - ok
21:15:36.0247 1084	VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:15:36.0294 1084	VgaSave - ok
21:15:36.0341 1084	vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:15:36.0372 1084	vhdmp - ok
21:15:36.0387 1084	viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:15:36.0387 1084	viaide - ok
21:15:36.0403 1084	volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:15:36.0419 1084	volmgr - ok
21:15:36.0481 1084	volmgrx         (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:15:36.0512 1084	volmgrx - ok
21:15:36.0543 1084	volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:15:36.0559 1084	volsnap - ok
21:15:36.0606 1084	vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:15:36.0621 1084	vsmraid - ok
21:15:36.0777 1084	VSS             (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:15:36.0840 1084	VSS - ok
21:15:36.0949 1084	vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:15:36.0980 1084	vwifibus - ok
21:15:37.0011 1084	vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:15:37.0058 1084	vwififlt - ok
21:15:37.0121 1084	W32Time         (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:15:37.0167 1084	W32Time - ok
21:15:37.0167 1084	WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:15:37.0199 1084	WacomPen - ok
21:15:37.0230 1084	WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:15:37.0277 1084	WANARP - ok
21:15:37.0277 1084	Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:15:37.0323 1084	Wanarpv6 - ok
21:15:37.0448 1084	wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:15:37.0511 1084	wbengine - ok
21:15:37.0635 1084	WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:15:37.0667 1084	WbioSrvc - ok
21:15:37.0713 1084	wcncsvc         (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:15:37.0729 1084	wcncsvc - ok
21:15:37.0760 1084	WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:15:37.0776 1084	WcsPlugInService - ok
21:15:37.0807 1084	Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:15:37.0838 1084	Wd - ok
21:15:37.0885 1084	Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:15:37.0932 1084	Wdf01000 - ok
21:15:37.0947 1084	WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:15:38.0057 1084	WdiServiceHost - ok
21:15:38.0057 1084	WdiSystemHost   (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:15:38.0072 1084	WdiSystemHost - ok
21:15:38.0119 1084	WebClient       (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:15:38.0166 1084	WebClient - ok
21:15:38.0213 1084	Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:15:38.0259 1084	Wecsvc - ok
21:15:38.0275 1084	wercplsupport   (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:15:38.0322 1084	wercplsupport - ok
21:15:38.0322 1084	WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:15:38.0369 1084	WerSvc - ok
21:15:38.0415 1084	WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:15:38.0478 1084	WfpLwf - ok
21:15:38.0493 1084	WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:15:38.0509 1084	WIMMount - ok
21:15:38.0525 1084	WinDefend - ok
21:15:38.0540 1084	WinHttpAutoProxySvc - ok
21:15:38.0618 1084	Winmgmt         (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:15:38.0681 1084	Winmgmt - ok
21:15:38.0837 1084	WinRM           (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:15:38.0915 1084	WinRM - ok
21:15:39.0055 1084	WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:15:39.0086 1084	WinUsb - ok
21:15:39.0164 1084	Wlansvc         (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:15:39.0211 1084	Wlansvc - ok
21:15:39.0273 1084	wlcrasvc        (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:15:39.0289 1084	wlcrasvc - ok
21:15:39.0507 1084	wlidsvc         (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:15:39.0570 1084	wlidsvc - ok
21:15:39.0710 1084	WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:15:39.0741 1084	WmiAcpi - ok
21:15:39.0788 1084	wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:15:39.0835 1084	wmiApSrv - ok
21:15:39.0882 1084	WMPNetworkSvc - ok
21:15:39.0913 1084	WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:15:39.0944 1084	WPCSvc - ok
21:15:39.0975 1084	WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:15:39.0991 1084	WPDBusEnum - ok
21:15:40.0022 1084	ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:15:40.0069 1084	ws2ifsl - ok
21:15:40.0085 1084	wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:15:40.0116 1084	wscsvc - ok
21:15:40.0131 1084	WSearch - ok
21:15:40.0256 1084	WTGService      (624809fe31f0ebba33fd4c98e016dd83) C:\Program Files (x86)\XSManager\WTGService.exe
21:15:40.0287 1084	WTGService - ok
21:15:40.0475 1084	wuauserv        (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:15:40.0537 1084	wuauserv - ok
21:15:40.0662 1084	WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:15:40.0724 1084	WudfPf - ok
21:15:40.0755 1084	WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:15:40.0787 1084	WUDFRd - ok
21:15:40.0818 1084	wudfsvc         (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:15:40.0849 1084	wudfsvc - ok
21:15:40.0880 1084	WwanSvc         (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:15:40.0911 1084	WwanSvc - ok
21:15:40.0958 1084	XS Stick Service (e430a4b710c041e87dd0fc46c5963720) C:\Windows\service4g.exe
21:15:40.0974 1084	XS Stick Service - ok
21:15:41.0021 1084	MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:15:41.0333 1084	\Device\Harddisk0\DR0 - ok
21:15:41.0364 1084	Boot (0x1200)   (5c573190d2c485cfebf5b2be2ce3fb86) \Device\Harddisk0\DR0\Partition0
21:15:41.0379 1084	\Device\Harddisk0\DR0\Partition0 - ok
21:15:41.0395 1084	Boot (0x1200)   (5f1de8207542db87694ca51272f19bc3) \Device\Harddisk0\DR0\Partition1
21:15:41.0395 1084	\Device\Harddisk0\DR0\Partition1 - ok
21:15:41.0395 1084	============================================================
21:15:41.0395 1084	Scan finished
21:15:41.0395 1084	============================================================
21:15:41.0411 2888	Detected object count: 1
21:15:41.0411 2888	Actual detected object count: 1
21:15:53.0423 2888	Polar Daemon ( UnsignedFile.Multi.Generic ) - skipped by user
21:15:53.0423 2888	Polar Daemon ( UnsignedFile.Multi.Generic ) - User select action: Skip
... diese Datei könnte von der Polar Pulsuhr und dem Polar WebSync herrühren. Oder auch nicht...?

Vielen Dank auf jeden Fall schonmal für deine Hilfe an diesem wohl doch nicht so kleinen Problem...

Alt 13.08.2012, 16:05   #22
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Standard

Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


Die Datei sollt ok sein

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.
__________________
Logfiles bitte immer in CODE-Tags posten

Antwort
Seite 2 von 2 1 2

Themen zu Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus
adressbuch, angriff, avira, error, fehlermeldung, firefox, folge, gelöscht, gmx-account, gmx.de, internet, internetseite, laptop, login, malwarebytes, mozilla, netzwerk, nicht mehr, programme, router, scan, schädling, seite, sms, spammail, systemsteuerung, trojaner, voll, windows, wlan


« AVG funktioniert nicht mehr, Flash arbeitet unzuverlässig | GVU Trojaner Windows 7 64-Bit »


Ähnliche Themen: Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus


  1. Plötzlich unfassbar viele Spammails, wurde mein Account gekapert?
    Überwachung, Datenschutz und Spam - 03.08.2015 (2)
  2. Yahoo account verschickt links an Adressen aus dem Adressbuch
    Log-Analyse und Auswertung - 08.02.2015 (9)
  3. Win7 - SPAMmails von und an Adressen die NUR in meinen Adressbuechern zusammenkommen
    Log-Analyse und Auswertung - 12.11.2014 (7)
  4. Win 7: Spam an Thunderbird portables Adressbuch "gesammelte Adressen"
    Log-Analyse und Auswertung - 27.07.2014 (19)
  5. erhalte täglich Spammails - ist mein Laptop verseucht?
    Plagegeister aller Art und deren Bekämpfung - 17.06.2014 (25)
  6. Mein Computer verschickt eMails über meinen Account an fremde eMail-Adressen
    Log-Analyse und Auswertung - 03.07.2013 (6)
  7. Mein AOL verschickte emails an alle aus meiner Kontaktliste
    Plagegeister aller Art und deren Bekämpfung - 04.06.2013 (11)
  8. Windows XP startet langsam, Yahoo-Account verschickte Spammails
    Plagegeister aller Art und deren Bekämpfung - 02.04.2013 (11)
  9. web.de-Account verschickt Spammails an Personen aus dem Adressbuch
    Plagegeister aller Art und deren Bekämpfung - 05.07.2012 (9)
  10. GMX-Account verschickt Spammails
    Log-Analyse und Auswertung - 21.06.2012 (1)
  11. GMX Account verschickt Spammails
    Plagegeister aller Art und deren Bekämpfung - 15.05.2012 (19)
  12. Mein GMX-Account verschickt Spammails
    Log-Analyse und Auswertung - 14.05.2012 (22)
  13. Hilfe,mein Email-Account versendet in regelmäßigen Abständen SPAM-Mails an die Kontakt im Adressbuch
    Log-Analyse und Auswertung - 03.02.2012 (7)
  14. web.de verschickt automatisch e-Mails an alle Adressen aus dem Adressbuch
    Plagegeister aller Art und deren Bekämpfung - 19.01.2012 (20)
  15. web.de account für spammails missbraucht
    Plagegeister aller Art und deren Bekämpfung - 16.01.2012 (7)
  16. Mein AOL E-Mail Account versendet Spammails an meine Kontakte Outlook2007
    Plagegeister aller Art und deren Bekämpfung - 11.04.2011 (18)
  17. Mein email Account schickt Spammails
    Plagegeister aller Art und deren Bekämpfung - 12.09.2010 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus - Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert - Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus...
Archiv
Du betrachtest: Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129