| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: live security platinumWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
07.08.2012, 11:37
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  live security platinum Du hast jetzt 4x das OTL-Log aber keine Extras gepostet 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
07.08.2012, 20:18
| #17 |
 | live security platinum Hallo Arne, was für extras denn???? hab doch keine ahnung, sorry...lg emmibemmi
__________________ |
|
08.08.2012, 19:39
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | live security platinum OTL erstellt auch ein anderes Log => Extras.txt
__________________Aber gut, das ist nicht so wichtig Trotzdem frage ich mich, was das soll mit den 4x OTL.txt Ich werd die überflüssigen löschen, ... 
__________________ |
|
08.08.2012, 19:45
| #19 |
| | live security platinum Hallo Arne, warum das viermal aufgeführt ist weiß ich auch nicht so genau  sorry...kommt denn jetzt noch mehr auf mich zu oder kann ich davon ausgehen das alles wieder "clean" ist? lg emmibemmi |
|
08.08.2012, 19:52
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | live security platinum So, jetzt steht's nur noch 1x da  Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q="
FF - prefs.js..browser.search.selectedEngine: "ICQ Search"
FF - prefs.js..extensions.enabledItems: engine@conduit.com:3.3.3.2
FF - prefs.js..keyword.URL: "http://search.sweetim.com/search.asp?src=2&q="
FF - prefs.js..sweetim.toolbar.previous.keyword.URL: "http://search.sweetim.com/search.asp?src=2&q="
FF - user.js - File not found
[2012.03.28 22:08:38 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2010.12.25 11:11:46 | 000,000,000 | ---D | M] ("DVDVideoSoft Menu") -- C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
[2012.07.08 19:47:07 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-1.xml
[2012.02.23 08:31:59 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-10.xml
[2012.03.22 22:31:14 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-11.xml
[2012.03.30 08:37:15 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-12.xml
[2012.05.03 14:44:18 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-13.xml
[2012.06.10 10:25:56 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-14.xml
[2012.06.23 22:13:55 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-15.xml
[2011.10.01 08:16:40 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-2.xml
[2011.11.10 08:01:52 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-3.xml
[2011.11.10 08:06:05 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-4.xml
[2011.11.17 16:36:03 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-5.xml
[2012.01.10 08:52:49 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-6.xml
[2012.02.01 19:35:13 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-7.xml
[2012.02.13 07:34:24 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-8.xml
[2012.02.16 07:39:42 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-9.xml
[2011.09.08 18:27:01 | 000,000,950 | ---- | M] () -- C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin.xml
[2012.06.07 06:59:14 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions
[2009.11.28 14:02:31 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
O3 - HKLM\..\Toolbar: (no name) - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} - No CLSID value found.
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (no name) - {EEE6C35B-6118-11DC-9C72-001320C79847} - No CLSID value found.
O3 - HKU\S-1-5-21-660773486-670838790-555106487-1000\..\Toolbar\WebBrowser: (no name) - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{3381b621-db2e-11dd-935e-00216bb399de}\Shell - "" = AutoRun
O33 - MountPoints2\{3381b621-db2e-11dd-935e-00216bb399de}\Shell\AutoRun\command - "" = D:\setup.exe AUTORUN=1
O33 - MountPoints2\{c4797536-bfaf-11df-8c67-00235a01be7c}\Shell\AutoRun\command - "" = H:\PMBP_Win.exe
O33 - MountPoints2\{f92f2c28-6d30-11df-982b-00235a01be7c}\Shell - "" = AutoRun
O33 - MountPoints2\{f92f2c28-6d30-11df-982b-00235a01be7c}\Shell\AutoRun\command - "" = D:\VTP_Manager.exe
:Files
C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\L
C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\L
C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\U
C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\U
C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\n
C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\n
C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\@
C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\@
C:\Users\shortytine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live Security Platinum
C:\ProgramData\036DFF98FF4F56417C1067A12F3B707C
C:\Users\shortytine\AppData\Roaming\Ynoh
C:\Users\shortytine\AppData\Roaming\Puluom
C:\Users\shortytine\AppData\Roaming\Elagar
C:\Users\shortytine\AppData\Roaming\xmldm
C:\Users\shortytine\AppData\Roaming\kock
C:\Users\shortytine\AppData\Roaming\Elagar
C:\Users\shortytine\AppData\Roaming\Gutscheinmieze
C:\Users\shortytine\Downloads\Programme\SweetImSetup (2).exe
:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
08.08.2012, 20:33
| #21 |
| | live security platinum So Arne ich hoffe ich hab das jetzt richtig gemacht... All processes killed ========== OTL ========== Prefs.js: "ICQ Search" removed from browser.search.defaultenginename Prefs.js: "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.3.1&q=" removed from browser.search.defaulturl Prefs.js: "ICQ Search" removed from browser.search.selectedEngine Prefs.js: engine@conduit.com:3.3.3.2 removed from extensions.enabledItems Prefs.js: "hxxp://search.sweetim.com/search.asp?src=2&q=" removed from keyword.URL Prefs.js: "hxxp://search.sweetim.com/search.asp?src=2&q=" removed from sweetim.toolbar.previous.keyword.URL C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\skin folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\tr folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\sk folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\ru folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\it folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\he folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\fr folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\es folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\en-US folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\de folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\cs folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale\bg folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\locale folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content\img folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome\content folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}\chrome folder moved successfully. C:\Users\shortytine\AppData\Roaming\mozilla\Firefox\Profiles\89w409kx.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} folder moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-1.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-10.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-11.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-12.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-13.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-14.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-15.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-2.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-3.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-4.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-5.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-6.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-7.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-8.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin-9.xml moved successfully. C:\Users\shortytine\AppData\Roaming\Mozilla\Firefox\Profiles\89w409kx.default\searchplugins\icqplugin.xml moved successfully. C:\Programme\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\search_engine folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\META-INF folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults\preferences folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\defaults folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\components folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\chrome folder moved successfully. C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} folder moved successfully. C:\Programme\Mozilla Firefox\extensions folder moved successfully. Folder C:\Programme\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DFEFCDEE-CF1A-4FC8-88AD-48514E463B27}\ not found. Registry value HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found. Registry value HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{EEE6C35B-6118-11DC-9C72-001320C79847} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}\ not found. Registry value HKEY_USERS\S-1-5-21-660773486-670838790-555106487-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DFEFCDEE-CF1A-4FC8-88AD-48514E463B27}\ not found. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully! C:\autoexec.bat moved successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3381b621-db2e-11dd-935e-00216bb399de}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3381b621-db2e-11dd-935e-00216bb399de}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{3381b621-db2e-11dd-935e-00216bb399de}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3381b621-db2e-11dd-935e-00216bb399de}\ not found. File D:\setup.exe AUTORUN=1 not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c4797536-bfaf-11df-8c67-00235a01be7c}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c4797536-bfaf-11df-8c67-00235a01be7c}\ not found. File H:\PMBP_Win.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f92f2c28-6d30-11df-982b-00235a01be7c}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f92f2c28-6d30-11df-982b-00235a01be7c}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f92f2c28-6d30-11df-982b-00235a01be7c}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f92f2c28-6d30-11df-982b-00235a01be7c}\ not found. File D:\VTP_Manager.exe not found. ========== FILES ========== C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\L folder moved successfully. C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\L folder moved successfully. C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\U folder moved successfully. C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\U folder moved successfully. File\Folder C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\n not found. File\Folder C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\n not found. C:\Users\shortytine\AppData\Local\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\@ moved successfully. C:\Windows\Installer\{4c75a3fd-734c-0ebb-1676-980fca40e6aa}\@ moved successfully. C:\Users\shortytine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Live Security Platinum folder moved successfully. C:\ProgramData\036DFF98FF4F56417C1067A12F3B707C folder moved successfully. C:\Users\shortytine\AppData\Roaming\Ynoh folder moved successfully. C:\Users\shortytine\AppData\Roaming\Puluom folder moved successfully. C:\Users\shortytine\AppData\Roaming\Elagar folder moved successfully. C:\Users\shortytine\AppData\Roaming\xmldm folder moved successfully. C:\Users\shortytine\AppData\Roaming\kock folder moved successfully. File\Folder C:\Users\shortytine\AppData\Roaming\Elagar not found. C:\Users\shortytine\AppData\Roaming\Gutscheinmieze folder moved successfully. C:\Users\shortytine\Downloads\Programme\SweetImSetup (2).exe moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Flash cache emptied: 56586 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Gast ->Temp folder emptied: 138787 bytes ->Temporary Internet Files folder emptied: 985047 bytes ->FireFox cache emptied: 25924433 bytes ->Flash cache emptied: 57237 bytes User: Public User: shortytine ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 4054752 bytes ->Java cache emptied: 51948933 bytes ->FireFox cache emptied: 577439295 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 2853475 bytes %systemdrive% .tmp files removed: 14648 bytes %systemroot% .tmp files removed: 1460478 bytes %systemroot%\System32 .tmp files removed: 2580 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 258113 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 634,00 mb [EMPTYFLASH] User: All Users User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Gast ->Flash cache emptied: 0 bytes User: Public User: shortytine ->Flash cache emptied: 0 bytes Total Flash Files Cleaned = 0,00 mb C:\Windows\System32\drivers\etc\Hosts moved successfully. HOSTS file reset successfully OTL by OldTimer - Version 3.2.56.0 log created on 08082012_212236 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot... lg emmibemmi |
|
09.08.2012, 15:41
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | live security platinum Die Log sbitte in CODE-Tags posten!!! Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C nach, da speichert der TDSS-Killer seine Logs.Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten |
|
10.08.2012, 09:29
| #23 |
| | live security platinumCode:
ATTFilter 10:17:57.0069 2140 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
10:17:57.0203 2140 ============================================================
10:17:57.0203 2140 Current date / time: 2012/08/10 10:17:57.0203
10:17:57.0203 2140 SystemInfo:
10:17:57.0203 2140
10:17:57.0204 2140 OS Version: 6.0.6002 ServicePack: 2.0
10:17:57.0204 2140 Product type: Workstation
10:17:57.0204 2140 ComputerName: SHORTYTINE-PC
10:17:57.0204 2140 UserName: shortytine
10:17:57.0204 2140 Windows directory: C:\Windows
10:17:57.0204 2140 System windows directory: C:\Windows
10:17:57.0204 2140 Processor architecture: Intel x86
10:17:57.0204 2140 Number of processors: 2
10:17:57.0204 2140 Page size: 0x1000
10:17:57.0204 2140 Boot type: Normal boot
10:17:57.0204 2140 ============================================================
10:17:57.0838 2140 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:17:57.0840 2140 ============================================================
10:17:57.0840 2140 \Device\Harddisk0\DR0:
10:17:57.0840 2140 MBR partitions:
10:17:57.0840 2140 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0xE8E2800
10:17:57.0840 2140 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xEBD1000, BlocksNum 0xE5F4800
10:17:57.0840 2140 ============================================================
10:17:57.0882 2140 C: <-> \Device\Harddisk0\DR0\Partition0
10:17:57.0926 2140 E: <-> \Device\Harddisk0\DR0\Partition1
10:17:57.0927 2140 ============================================================
10:17:57.0927 2140 Initialize success
10:17:57.0927 2140 ============================================================
10:18:56.0277 3600 ============================================================
10:18:56.0277 3600 Scan started
10:18:56.0277 3600 Mode: Manual; SigCheck; TDLFS;
10:18:56.0277 3600 ============================================================
10:18:56.0745 3600 acedrv11 (a6fe70357a68ad1e279cd1012419cce6) C:\Windows\system32\drivers\acedrv11.sys
10:18:56.0854 3600 acedrv11 - ok
10:18:56.0901 3600 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
10:18:56.0916 3600 ACPI - ok
10:18:57.0010 3600 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:18:57.0025 3600 AdobeFlashPlayerUpdateSvc - ok
10:18:57.0088 3600 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
10:18:57.0119 3600 adp94xx - ok
10:18:57.0166 3600 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
10:18:57.0181 3600 adpahci - ok
10:18:57.0197 3600 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
10:18:57.0213 3600 adpu160m - ok
10:18:57.0259 3600 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
10:18:57.0275 3600 adpu320 - ok
10:18:57.0337 3600 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
10:18:57.0509 3600 AeLookupSvc - ok
10:18:57.0603 3600 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
10:18:57.0681 3600 AFD - ok
10:18:57.0712 3600 AgereModemAudio (39e435c90c9c4f780fa0ed05ca3c3a1b) C:\Windows\system32\agrsmsvc.exe
10:18:57.0774 3600 AgereModemAudio - ok
10:18:57.0852 3600 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
10:18:57.0946 3600 AgereSoftModem - ok
10:18:58.0008 3600 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
10:18:58.0008 3600 agp440 - ok
10:18:58.0039 3600 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
10:18:58.0055 3600 aic78xx - ok
10:18:58.0086 3600 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
10:18:58.0195 3600 ALG - ok
10:18:58.0211 3600 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
10:18:58.0227 3600 aliide - ok
10:18:58.0258 3600 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
10:18:58.0273 3600 amdagp - ok
10:18:58.0289 3600 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
10:18:58.0289 3600 amdide - ok
10:18:58.0305 3600 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
10:18:58.0367 3600 AmdK7 - ok
10:18:58.0383 3600 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
10:18:58.0461 3600 AmdK8 - ok
10:18:58.0601 3600 AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files\Avira\AntiVir Desktop\sched.exe
10:18:58.0648 3600 AntiVirSchedulerService - ok
10:18:58.0695 3600 AntiVirService (a489be6bb0aa1ff406b488b60542314b) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
10:18:58.0695 3600 AntiVirService - ok
10:18:58.0741 3600 ApfiltrService (95116e2bcfaf5a36af0369050e92b9a5) C:\Windows\system32\DRIVERS\Apfiltr.sys
10:18:58.0757 3600 ApfiltrService - ok
10:18:58.0804 3600 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
10:18:58.0851 3600 Appinfo - ok
10:18:58.0882 3600 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
10:18:58.0882 3600 arc - ok
10:18:58.0929 3600 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
10:18:58.0944 3600 arcsas - ok
10:18:58.0960 3600 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
10:18:59.0007 3600 AsyncMac - ok
10:18:59.0053 3600 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
10:18:59.0069 3600 atapi - ok
10:18:59.0116 3600 Ati External Event Utility (8d95c6a8dd5e64d263d52dec9170e9a2) C:\Windows\system32\Ati2evxx.exe
10:18:59.0178 3600 Ati External Event Utility - ok
10:18:59.0475 3600 atikmdag (ed29acf556ff827cb35c0d07ed4ab8d0) C:\Windows\system32\DRIVERS\atikmdag.sys
10:18:59.0693 3600 atikmdag - ok
10:18:59.0880 3600 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
10:18:59.0943 3600 AudioEndpointBuilder - ok
10:18:59.0958 3600 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
10:18:59.0974 3600 Audiosrv - ok
10:19:00.0114 3600 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\Windows\system32\DRIVERS\avgntflt.sys
10:19:00.0130 3600 avgntflt - ok
10:19:00.0286 3600 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\Windows\system32\DRIVERS\avipbb.sys
10:19:00.0301 3600 avipbb - ok
10:19:00.0364 3600 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys
10:19:00.0364 3600 avkmgr - ok
10:19:00.0426 3600 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
10:19:00.0473 3600 Beep - ok
10:19:00.0504 3600 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
10:19:00.0567 3600 blbdrive - ok
10:19:00.0660 3600 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
10:19:00.0769 3600 bowser - ok
10:19:00.0801 3600 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
10:19:00.0847 3600 BrFiltLo - ok
10:19:00.0863 3600 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
10:19:00.0910 3600 BrFiltUp - ok
10:19:00.0941 3600 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
10:19:01.0019 3600 Browser - ok
10:19:01.0066 3600 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
10:19:01.0269 3600 Brserid - ok
10:19:01.0300 3600 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
10:19:01.0362 3600 BrSerWdm - ok
10:19:01.0378 3600 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
10:19:01.0456 3600 BrUsbMdm - ok
10:19:01.0471 3600 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
10:19:01.0549 3600 BrUsbSer - ok
10:19:01.0581 3600 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
10:19:01.0643 3600 BTHMODEM - ok
10:19:01.0690 3600 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
10:19:01.0737 3600 cdfs - ok
10:19:01.0768 3600 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
10:19:01.0815 3600 cdrom - ok
10:19:01.0877 3600 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
10:19:01.0924 3600 CertPropSvc - ok
10:19:01.0955 3600 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
10:19:02.0002 3600 circlass - ok
10:19:02.0049 3600 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
10:19:02.0064 3600 CLFS - ok
10:19:02.0173 3600 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:19:02.0173 3600 clr_optimization_v2.0.50727_32 - ok
10:19:02.0220 3600 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
10:19:02.0251 3600 CmBatt - ok
10:19:02.0283 3600 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
10:19:02.0283 3600 cmdide - ok
10:19:02.0361 3600 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
10:19:02.0376 3600 Compbatt - ok
10:19:02.0407 3600 COMSysApp - ok
10:19:02.0501 3600 ConfigFree Service (c508b28b9da7563634a2a2b2eef4395d) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
10:19:02.0548 3600 ConfigFree Service ( UnsignedFile.Multi.Generic ) - warning
10:19:02.0548 3600 ConfigFree Service - detected UnsignedFile.Multi.Generic (1)
10:19:02.0579 3600 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
10:19:02.0595 3600 crcdisk - ok
10:19:02.0610 3600 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
10:19:02.0657 3600 Crusoe - ok
10:19:02.0735 3600 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
10:19:02.0797 3600 CryptSvc - ok
10:19:02.0875 3600 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
10:19:02.0969 3600 DcomLaunch - ok
10:19:03.0016 3600 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
10:19:03.0078 3600 DfsC - ok
10:19:03.0281 3600 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
10:19:03.0453 3600 DFSR - ok
10:19:03.0749 3600 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
10:19:03.0796 3600 Dhcp - ok
10:19:03.0874 3600 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
10:19:03.0889 3600 disk - ok
10:19:03.0952 3600 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
10:19:04.0014 3600 Dnscache - ok
10:19:04.0061 3600 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
10:19:04.0108 3600 dot3svc - ok
10:19:04.0264 3600 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
10:19:04.0342 3600 Dot4 - ok
10:19:04.0404 3600 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:19:04.0451 3600 Dot4Print - ok
10:19:04.0467 3600 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
10:19:04.0513 3600 dot4usb - ok
10:19:04.0560 3600 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
10:19:04.0607 3600 DPS - ok
10:19:04.0638 3600 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
10:19:04.0669 3600 drmkaud - ok
10:19:04.0779 3600 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
10:19:04.0810 3600 DXGKrnl - ok
10:19:04.0857 3600 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
10:19:04.0903 3600 E1G60 - ok
10:19:04.0950 3600 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
10:19:04.0966 3600 EapHost - ok
10:19:05.0028 3600 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
10:19:05.0044 3600 Ecache - ok
10:19:05.0262 3600 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
10:19:05.0293 3600 ehRecvr - ok
10:19:05.0340 3600 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
10:19:05.0418 3600 ehSched - ok
10:19:05.0434 3600 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
10:19:05.0465 3600 ehstart - ok
10:19:05.0527 3600 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
10:19:05.0543 3600 elxstor - ok
10:19:05.0621 3600 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
10:19:05.0715 3600 EMDMgmt - ok
10:19:05.0777 3600 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
10:19:05.0808 3600 ErrDev - ok
10:19:05.0871 3600 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
10:19:05.0902 3600 EventSystem - ok
10:19:05.0964 3600 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
10:19:05.0995 3600 exfat - ok
10:19:06.0042 3600 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
10:19:06.0073 3600 fastfat - ok
10:19:06.0120 3600 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
10:19:06.0167 3600 fdc - ok
10:19:06.0198 3600 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
10:19:06.0229 3600 fdPHost - ok
10:19:06.0307 3600 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
10:19:06.0354 3600 FDResPub - ok
10:19:06.0385 3600 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
10:19:06.0401 3600 FileInfo - ok
10:19:06.0463 3600 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
10:19:06.0495 3600 Filetrace - ok
10:19:06.0526 3600 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:19:06.0573 3600 flpydisk - ok
10:19:06.0635 3600 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
10:19:06.0651 3600 FltMgr - ok
10:19:06.0760 3600 FontCache (452feaab2a8dbb42ed751754cb2594f5) C:\Windows\system32\FntCache.dll
10:19:06.0853 3600 FontCache - ok
10:19:06.0947 3600 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:19:06.0963 3600 FontCache3.0.0.0 - ok
10:19:07.0025 3600 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
10:19:07.0087 3600 Fs_Rec - ok
10:19:07.0228 3600 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
10:19:07.0243 3600 gagp30kx - ok
10:19:07.0353 3600 GoogleDesktopManager-022208-143751 (b39662e4c237aa25a2cd2379ff508099) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
10:19:07.0353 3600 GoogleDesktopManager-022208-143751 - ok
10:19:07.0540 3600 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
10:19:07.0618 3600 gpsvc - ok
10:19:07.0665 3600 GT72NDISIPXP (9eb33545bc9b1ca0c9b9e6d780ce0d27) C:\Windows\system32\DRIVERS\Gt51Ip.sys
10:19:07.0727 3600 GT72NDISIPXP - ok
10:19:07.0743 3600 GT72UBUS (687a4b740f14c2dff6dd7b848f50f0a6) C:\Windows\system32\DRIVERS\gt72ubus.sys
10:19:07.0758 3600 GT72UBUS - ok
10:19:07.0805 3600 GtDetectSc (b8d928f19fcdf9862ce2d01bc9741861) C:\Program Files\T-Mobile\web'n'walk Manager\GtDetectSc.exe
10:19:07.0852 3600 GtDetectSc ( UnsignedFile.Multi.Generic ) - warning
10:19:07.0852 3600 GtDetectSc - detected UnsignedFile.Multi.Generic (1)
10:19:07.0883 3600 GTPTSER (346ddaefa04e49ad804ee12d4baa0ed3) C:\Windows\system32\DRIVERS\gtptser.sys
10:19:07.0930 3600 GTPTSER - ok
10:19:08.0070 3600 gupdate1c99e9830835e67 (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
10:19:08.0086 3600 gupdate1c99e9830835e67 - ok
10:19:08.0117 3600 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files\Google\Update\GoogleUpdate.exe
10:19:08.0117 3600 gupdatem - ok
10:19:08.0164 3600 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
10:19:08.0179 3600 gusvc - ok
10:19:08.0242 3600 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
10:19:08.0289 3600 HdAudAddService - ok
10:19:08.0351 3600 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:19:08.0445 3600 HDAudBus - ok
10:19:08.0476 3600 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
10:19:08.0554 3600 HidBth - ok
10:19:08.0601 3600 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
10:19:08.0710 3600 HidIr - ok
10:19:08.0819 3600 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
10:19:08.0866 3600 hidserv - ok
10:19:08.0913 3600 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
10:19:08.0959 3600 HidUsb - ok
10:19:08.0991 3600 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
10:19:09.0053 3600 hkmsvc - ok
10:19:09.0084 3600 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
10:19:09.0100 3600 HpCISSs - ok
10:19:09.0349 3600 hpqcxs08 (ed377b3c83fdea8d906109a085d219ba) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
10:19:09.0381 3600 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
10:19:09.0381 3600 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
10:19:09.0443 3600 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
10:19:09.0537 3600 HTTP - ok
10:19:09.0583 3600 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
10:19:09.0599 3600 i2omp - ok
10:19:09.0661 3600 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
10:19:09.0724 3600 i8042prt - ok
10:19:09.0802 3600 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\DRIVERS\iaStor.sys
10:19:09.0817 3600 iaStor - ok
10:19:09.0895 3600 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
10:19:09.0911 3600 iaStorV - ok
10:19:10.0129 3600 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:19:10.0192 3600 idsvc - ok
10:19:10.0239 3600 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
10:19:10.0254 3600 iirsp - ok
10:19:10.0332 3600 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
10:19:10.0395 3600 IKEEXT - ok
10:19:10.0675 3600 IntcAzAudAddService (6927a442beed2b68a3d35cae7a951913) C:\Windows\system32\drivers\RTKVHDA.sys
10:19:10.0831 3600 IntcAzAudAddService - ok
10:19:11.0003 3600 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
10:19:11.0019 3600 intelide - ok
10:19:11.0065 3600 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
10:19:11.0097 3600 intelppm - ok
10:19:11.0143 3600 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
10:19:11.0190 3600 IPBusEnum - ok
10:19:11.0221 3600 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:19:11.0268 3600 IpFilterDriver - ok
10:19:11.0268 3600 IpInIp - ok
10:19:11.0409 3600 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
10:19:11.0455 3600 IPMIDRV - ok
10:19:11.0487 3600 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
10:19:11.0518 3600 IPNAT - ok
10:19:11.0533 3600 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
10:19:11.0565 3600 IRENUM - ok
10:19:11.0611 3600 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
10:19:11.0627 3600 isapnp - ok
10:19:11.0689 3600 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
10:19:11.0705 3600 iScsiPrt - ok
10:19:11.0721 3600 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
10:19:11.0736 3600 iteatapi - ok
10:19:11.0814 3600 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
10:19:11.0830 3600 iteraid - ok
10:19:11.0877 3600 JMCR (a69a1b991824b98f744913555f665893) C:\Windows\system32\DRIVERS\jmcr.sys
10:19:11.0939 3600 JMCR - ok
10:19:11.0970 3600 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:19:11.0986 3600 kbdclass - ok
10:19:12.0033 3600 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
10:19:12.0079 3600 kbdhid - ok
10:19:12.0126 3600 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:19:12.0189 3600 KeyIso - ok
10:19:12.0220 3600 KSecDD (4a1445efa932a3baf5bdb02d7131ee20) C:\Windows\system32\Drivers\ksecdd.sys
10:19:12.0251 3600 KSecDD - ok
10:19:12.0313 3600 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
10:19:12.0376 3600 KtmRm - ok
10:19:12.0423 3600 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
10:19:12.0469 3600 LanmanServer - ok
10:19:12.0516 3600 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
10:19:12.0594 3600 LanmanWorkstation - ok
10:19:12.0641 3600 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
10:19:12.0672 3600 lltdio - ok
10:19:12.0719 3600 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
10:19:12.0750 3600 lltdsvc - ok
10:19:12.0766 3600 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
10:19:12.0813 3600 lmhosts - ok
10:19:12.0859 3600 LPCFilter (31f74d5d47eea83e5e89447586917774) C:\Windows\system32\DRIVERS\LPCFilter.sys
10:19:12.0859 3600 LPCFilter - ok
10:19:12.0891 3600 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
10:19:12.0906 3600 LSI_FC - ok
10:19:12.0937 3600 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
10:19:12.0937 3600 LSI_SAS - ok
10:19:12.0984 3600 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
10:19:13.0000 3600 LSI_SCSI - ok
10:19:13.0015 3600 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
10:19:13.0078 3600 luafv - ok
10:19:13.0093 3600 ManyCam - ok
10:19:13.0140 3600 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\Windows\system32\drivers\mbam.sys
10:19:13.0140 3600 MBAMProtector - ok
10:19:13.0234 3600 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
10:19:13.0265 3600 MBAMService - ok
10:19:13.0327 3600 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
10:19:13.0374 3600 Mcx2Svc - ok
10:19:13.0421 3600 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
10:19:13.0437 3600 megasas - ok
10:19:13.0468 3600 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
10:19:13.0515 3600 MegaSR - ok
10:19:13.0561 3600 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:19:13.0624 3600 MMCSS - ok
10:19:13.0639 3600 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
10:19:13.0686 3600 Modem - ok
10:19:13.0717 3600 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
10:19:13.0780 3600 monitor - ok
10:19:13.0780 3600 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
10:19:13.0795 3600 mouclass - ok
10:19:13.0811 3600 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
10:19:13.0842 3600 mouhid - ok
10:19:13.0858 3600 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
10:19:13.0873 3600 MountMgr - ok
10:19:13.0983 3600 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:19:13.0983 3600 MozillaMaintenance - ok
10:19:14.0014 3600 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
10:19:14.0029 3600 mpio - ok
10:19:14.0061 3600 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
10:19:14.0107 3600 mpsdrv - ok
10:19:14.0154 3600 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
10:19:14.0154 3600 Mraid35x - ok
10:19:14.0201 3600 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
10:19:14.0263 3600 MRxDAV - ok
10:19:14.0295 3600 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:19:14.0341 3600 mrxsmb - ok
10:19:14.0373 3600 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:19:14.0435 3600 mrxsmb10 - ok
10:19:14.0435 3600 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:19:14.0466 3600 mrxsmb20 - ok
10:19:14.0497 3600 msahci (aa305cff241da187bd5077de4a2a043d) C:\Windows\system32\drivers\msahci.sys
10:19:14.0513 3600 msahci - ok
10:19:14.0544 3600 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
10:19:14.0560 3600 msdsm - ok
10:19:14.0622 3600 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
10:19:14.0685 3600 MSDTC - ok
10:19:14.0716 3600 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
10:19:14.0778 3600 Msfs - ok
10:19:14.0825 3600 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
10:19:14.0841 3600 msisadrv - ok
10:19:14.0872 3600 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
10:19:14.0919 3600 MSiSCSI - ok
10:19:14.0919 3600 msiserver - ok
10:19:14.0965 3600 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
10:19:15.0012 3600 MSKSSRV - ok
10:19:15.0043 3600 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
10:19:15.0075 3600 MSPCLOCK - ok
10:19:15.0090 3600 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
10:19:15.0153 3600 MSPQM - ok
10:19:15.0215 3600 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
10:19:15.0231 3600 MsRPC - ok
10:19:15.0262 3600 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
10:19:15.0262 3600 mssmbios - ok
10:19:15.0293 3600 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
10:19:15.0340 3600 MSTEE - ok
10:19:15.0371 3600 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
10:19:15.0387 3600 Mup - ok
10:19:15.0449 3600 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
10:19:15.0511 3600 napagent - ok
10:19:15.0574 3600 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
10:19:15.0605 3600 NativeWifiP - ok
10:19:15.0667 3600 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
10:19:15.0714 3600 NDIS - ok
10:19:15.0761 3600 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
10:19:15.0823 3600 NdisTapi - ok
10:19:15.0855 3600 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
10:19:15.0870 3600 Ndisuio - ok
10:19:15.0933 3600 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
10:19:15.0948 3600 NdisWan - ok
10:19:15.0964 3600 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
10:19:15.0979 3600 NDProxy - ok
10:19:16.0042 3600 Net Driver HPZ12 (949941e4de88df1faf49a4b3cffb756f) C:\Windows\system32\HPZinw12.dll
10:19:16.0042 3600 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:19:16.0042 3600 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:19:16.0073 3600 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
10:19:16.0120 3600 NetBIOS - ok
10:19:16.0198 3600 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
10:19:16.0260 3600 netbt - ok
10:19:16.0291 3600 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:19:16.0307 3600 Netlogon - ok
10:19:16.0338 3600 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
10:19:16.0385 3600 Netman - ok
10:19:16.0463 3600 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
10:19:16.0510 3600 netprofm - ok
10:19:16.0619 3600 NetTcpPortSharing (d6c4e4a39a36029ac0813d476fbd0248) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:19:16.0619 3600 NetTcpPortSharing - ok
10:19:16.0853 3600 NETw5v32 (e559ea9138c77b5d1fda8c558764a25f) C:\Windows\system32\DRIVERS\NETw5v32.sys
10:19:17.0025 3600 NETw5v32 - ok
10:19:17.0165 3600 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
10:19:17.0181 3600 nfrd960 - ok
10:19:17.0212 3600 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
10:19:17.0243 3600 NlaSvc - ok
10:19:17.0337 3600 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
10:19:17.0352 3600 Npfs - ok
10:19:17.0383 3600 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
10:19:17.0415 3600 nsi - ok
10:19:17.0430 3600 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
10:19:17.0461 3600 nsiproxy - ok
10:19:17.0571 3600 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
10:19:17.0633 3600 Ntfs - ok
10:19:17.0711 3600 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
10:19:17.0758 3600 ntrigdigi - ok
10:19:17.0789 3600 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
10:19:17.0836 3600 Null - ok
10:19:17.0883 3600 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
10:19:17.0898 3600 nvraid - ok
10:19:17.0914 3600 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
10:19:17.0929 3600 nvstor - ok
10:19:17.0976 3600 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
10:19:17.0992 3600 nv_agp - ok
10:19:17.0992 3600 NwlnkFlt - ok
10:19:18.0007 3600 NwlnkFwd - ok
10:19:18.0148 3600 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:19:18.0163 3600 odserv - ok
10:19:18.0210 3600 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
10:19:18.0257 3600 ohci1394 - ok
10:19:18.0304 3600 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:19:18.0319 3600 ose - ok
10:19:18.0413 3600 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:19:18.0507 3600 p2pimsvc - ok
10:19:18.0507 3600 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:19:18.0569 3600 p2psvc - ok
10:19:18.0600 3600 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
10:19:18.0663 3600 Parport - ok
10:19:18.0709 3600 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
10:19:18.0725 3600 partmgr - ok
10:19:18.0741 3600 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
10:19:18.0803 3600 Parvdm - ok
10:19:18.0850 3600 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
10:19:18.0928 3600 PcaSvc - ok
10:19:18.0959 3600 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
10:19:18.0975 3600 pci - ok
10:19:19.0006 3600 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
10:19:19.0021 3600 pciide - ok
10:19:19.0068 3600 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
10:19:19.0084 3600 pcmcia - ok
10:19:19.0162 3600 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
10:19:19.0224 3600 PEAUTH - ok
10:19:19.0380 3600 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
10:19:19.0521 3600 pla - ok
10:19:19.0723 3600 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
10:19:19.0786 3600 PlugPlay - ok
10:19:19.0833 3600 Pml Driver HPZ12 (2f4ca141a609caf5c98f6e4760ef1b9b) C:\Windows\system32\HPZipm12.dll
10:19:19.0833 3600 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:19:19.0833 3600 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:19:19.0911 3600 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:19:19.0973 3600 PNRPAutoReg - ok
10:19:19.0973 3600 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
10:19:20.0004 3600 PNRPsvc - ok
10:19:20.0067 3600 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
10:19:20.0129 3600 PolicyAgent - ok
10:19:20.0207 3600 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
10:19:20.0269 3600 PptpMiniport - ok
10:19:20.0301 3600 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
10:19:20.0316 3600 Processor - ok
10:19:20.0363 3600 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
10:19:20.0425 3600 ProfSvc - ok
10:19:20.0457 3600 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:19:20.0472 3600 ProtectedStorage - ok
10:19:20.0519 3600 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
10:19:20.0581 3600 PSched - ok
10:19:20.0613 3600 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys
10:19:20.0628 3600 PxHelp20 - ok
10:19:20.0737 3600 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
10:19:20.0815 3600 ql2300 - ok
10:19:20.0878 3600 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
10:19:20.0893 3600 ql40xx - ok
10:19:20.0956 3600 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
10:19:21.0003 3600 QWAVE - ok
10:19:21.0034 3600 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
10:19:21.0049 3600 QWAVEdrv - ok
10:19:21.0096 3600 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
10:19:21.0143 3600 RasAcd - ok
10:19:21.0205 3600 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
10:19:21.0252 3600 RasAuto - ok
10:19:21.0283 3600 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:19:21.0330 3600 Rasl2tp - ok
10:19:21.0377 3600 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
10:19:21.0393 3600 RasMan - ok
10:19:21.0439 3600 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
10:19:21.0502 3600 RasPppoe - ok
10:19:21.0533 3600 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
10:19:21.0549 3600 RasSstp - ok
10:19:21.0642 3600 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
10:19:21.0689 3600 rdbss - ok
10:19:21.0720 3600 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:19:21.0767 3600 RDPCDD - ok
10:19:21.0814 3600 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
10:19:21.0845 3600 rdpdr - ok
10:19:21.0845 3600 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
10:19:21.0892 3600 RDPENCDD - ok
10:19:21.0939 3600 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
10:19:22.0001 3600 RDPWD - ok
10:19:22.0032 3600 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
10:19:22.0063 3600 RemoteAccess - ok
10:19:22.0157 3600 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
10:19:22.0204 3600 RemoteRegistry - ok
10:19:22.0251 3600 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
10:19:22.0297 3600 RpcLocator - ok
10:19:22.0360 3600 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
10:19:22.0391 3600 RpcSs - ok
10:19:22.0438 3600 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
10:19:22.0453 3600 rspndr - ok
10:19:22.0516 3600 RTL8169 (174b9514cd1a0c33ce4bbc02a3c81a62) C:\Windows\system32\DRIVERS\Rtlh86.sys
10:19:22.0594 3600 RTL8169 - ok
10:19:22.0625 3600 SampleScanner (9d68bbedac2c3744724f6a99cc42d8e1) C:\Windows\system32\DRIVERS\ArtecGT.sys
10:19:22.0641 3600 SampleScanner ( UnsignedFile.Multi.Generic ) - warning
10:19:22.0641 3600 SampleScanner - detected UnsignedFile.Multi.Generic (1)
10:19:22.0672 3600 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
10:19:22.0687 3600 SamSs - ok
10:19:22.0750 3600 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
10:19:22.0765 3600 sbp2port - ok
10:19:22.0812 3600 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
10:19:22.0828 3600 SCardSvr - ok
10:19:22.0937 3600 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
10:19:22.0968 3600 Schedule - ok
10:19:23.0015 3600 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
10:19:23.0046 3600 SCPolicySvc - ok
10:19:23.0077 3600 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
10:19:23.0124 3600 sdbus - ok
10:19:23.0155 3600 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
10:19:23.0218 3600 SDRSVC - ok
10:19:23.0233 3600 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
10:19:23.0296 3600 secdrv - ok
10:19:23.0343 3600 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
10:19:23.0405 3600 seclogon - ok
10:19:23.0436 3600 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
10:19:23.0483 3600 SENS - ok
10:19:23.0514 3600 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
10:19:23.0561 3600 Serenum - ok
10:19:23.0577 3600 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
10:19:23.0655 3600 Serial - ok
10:19:23.0670 3600 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
10:19:23.0701 3600 sermouse - ok
10:19:23.0795 3600 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
10:19:23.0826 3600 SessionEnv - ok
10:19:23.0842 3600 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
10:19:23.0889 3600 sffdisk - ok
10:19:23.0904 3600 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
10:19:23.0951 3600 sffp_mmc - ok
10:19:23.0982 3600 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
10:19:23.0998 3600 sffp_sd - ok
10:19:24.0060 3600 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
10:19:24.0138 3600 sfloppy - ok
10:19:24.0185 3600 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
10:19:24.0216 3600 ShellHWDetection - ok
10:19:24.0263 3600 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
10:19:24.0263 3600 sisagp - ok
10:19:24.0279 3600 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
10:19:24.0294 3600 SiSRaid2 - ok
10:19:24.0341 3600 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
10:19:24.0357 3600 SiSRaid4 - ok
10:19:24.0637 3600 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
10:19:24.0793 3600 slsvc - ok
10:19:25.0012 3600 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
10:19:25.0043 3600 SLUINotify - ok
10:19:25.0121 3600 SmartFaceVWatchSrv (8eb3988c74fd9d0e0934977e36b5f9e6) C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
10:19:25.0152 3600 SmartFaceVWatchSrv ( UnsignedFile.Multi.Generic ) - warning
10:19:25.0152 3600 SmartFaceVWatchSrv - detected UnsignedFile.Multi.Generic (1)
10:19:25.0277 3600 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
10:19:25.0293 3600 Smb - ok
10:19:25.0371 3600 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
10:19:25.0402 3600 SNMPTRAP - ok
10:19:25.0433 3600 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
10:19:25.0449 3600 spldr - ok
10:19:25.0495 3600 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
10:19:25.0558 3600 Spooler - ok
10:19:25.0605 3600 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
10:19:25.0667 3600 srv - ok
10:19:25.0714 3600 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
10:19:25.0761 3600 srv2 - ok
10:19:25.0792 3600 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
10:19:25.0807 3600 srvnet - ok
10:19:25.0839 3600 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
10:19:25.0901 3600 SSDPSRV - ok
10:19:25.0948 3600 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
10:19:25.0948 3600 ssmdrv - ok
10:19:25.0995 3600 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
10:19:26.0010 3600 SstpSvc - ok
10:19:26.0073 3600 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
10:19:26.0151 3600 stisvc - ok
10:19:26.0197 3600 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
10:19:26.0213 3600 swenum - ok
10:19:26.0322 3600 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
10:19:26.0385 3600 swprv - ok
10:19:26.0416 3600 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
10:19:26.0431 3600 Symc8xx - ok
10:19:26.0478 3600 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
10:19:26.0494 3600 Sym_hi - ok
10:19:26.0509 3600 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
10:19:26.0525 3600 Sym_u3 - ok
10:19:26.0619 3600 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
10:19:26.0665 3600 SysMain - ok
10:19:26.0712 3600 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
10:19:26.0743 3600 TabletInputService - ok
10:19:26.0790 3600 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
10:19:26.0837 3600 TapiSrv - ok
10:19:26.0868 3600 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
10:19:26.0915 3600 TBS - ok
10:19:26.0993 3600 Tcpip (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
10:19:27.0040 3600 Tcpip - ok
10:19:27.0040 3600 Tcpip6 (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
10:19:27.0087 3600 Tcpip6 - ok
10:19:27.0118 3600 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
10:19:27.0165 3600 tcpipreg - ok
10:19:27.0196 3600 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
10:19:27.0196 3600 tdcmdpst - ok
10:19:27.0227 3600 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
10:19:27.0258 3600 TDPIPE - ok
10:19:27.0274 3600 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
10:19:27.0305 3600 TDTCP - ok
10:19:27.0352 3600 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
10:19:27.0399 3600 tdx - ok
10:19:27.0664 3600 TeamViewer5 (1a35e7079c650d9eb17b55e4ff4c0dcd) C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
10:19:27.0742 3600 TeamViewer5 - ok
10:19:27.0991 3600 TeamViewer6 (8a9828975a857e477efef5a61ba45ac0) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
10:19:28.0163 3600 TeamViewer6 - ok
10:19:28.0225 3600 TempoMonitoringService (66e536772f6fd08bb303dad58c6cde6a) C:\Program Files\Toshiba TEMPRO\TempoSVC.exe
10:19:28.0241 3600 TempoMonitoringService - ok
10:19:28.0553 3600 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
10:19:28.0569 3600 TermDD - ok
10:19:28.0678 3600 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
10:19:28.0740 3600 TermService - ok
10:19:28.0818 3600 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
10:19:28.0834 3600 Themes - ok
10:19:28.0865 3600 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
10:19:28.0881 3600 THREADORDER - ok
10:19:28.0974 3600 TNaviSrv (87f95cb3e11b42e62654488ffb6c5ad8) C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
10:19:28.0990 3600 TNaviSrv - ok
10:19:29.0021 3600 TODDSrv (c5ac715b65b01788abc22d10749dddd8) C:\Windows\system32\TODDSrv.exe
10:19:29.0037 3600 TODDSrv - ok
10:19:29.0115 3600 TosCoSrv (63d901bb2c1395597620f98ffc55defc) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
10:19:29.0130 3600 TosCoSrv - ok
10:19:29.0161 3600 TOSHIBA SMART Log Service (8ed3ca84385b37f2138b532053fa70f8) C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
10:19:29.0161 3600 TOSHIBA SMART Log Service ( UnsignedFile.Multi.Generic ) - warning
10:19:29.0161 3600 TOSHIBA SMART Log Service - detected UnsignedFile.Multi.Generic (1)
10:19:29.0224 3600 Tosrfcom - ok
10:19:29.0302 3600 tosrfec (5c4103544612e5011ef46301b93d1aa6) C:\Windows\system32\DRIVERS\tosrfec.sys
10:19:29.0349 3600 tosrfec - ok
10:19:29.0411 3600 tos_sps32 (4399a9bf7d8f49991a07fd86590a1619) C:\Windows\system32\DRIVERS\tos_sps32.sys
10:19:29.0427 3600 tos_sps32 - ok
10:19:29.0427 3600 TpChoice - ok
10:19:29.0458 3600 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
10:19:29.0505 3600 TrkWks - ok
10:19:29.0926 3600 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
10:19:29.0941 3600 TrustedInstaller - ok
10:19:30.0019 3600 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:19:30.0051 3600 tssecsrv - ok
10:19:30.0097 3600 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
10:19:30.0144 3600 tunmp - ok
10:19:30.0191 3600 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
10:19:30.0222 3600 tunnel - ok
10:19:30.0253 3600 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
10:19:30.0253 3600 TVALZ - ok
10:19:30.0285 3600 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
10:19:30.0300 3600 uagp35 - ok
10:19:30.0363 3600 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
10:19:30.0394 3600 udfs - ok
10:19:30.0425 3600 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
10:19:30.0503 3600 UI0Detect - ok
10:19:30.0597 3600 UleadBurningHelper (332d341d92b933600d41953b08360dfb) C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
10:19:30.0597 3600 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - warning
10:19:30.0597 3600 UleadBurningHelper - detected UnsignedFile.Multi.Generic (1)
10:19:30.0955 3600 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
10:19:30.0971 3600 uliagpkx - ok
10:19:31.0002 3600 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
10:19:31.0018 3600 uliahci - ok
10:19:31.0049 3600 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
10:19:31.0065 3600 UlSata - ok
10:19:31.0080 3600 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
10:19:31.0096 3600 ulsata2 - ok
10:19:31.0127 3600 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
10:19:31.0189 3600 umbus - ok
10:19:31.0236 3600 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
10:19:31.0299 3600 upnphost - ok
10:19:31.0361 3600 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
10:19:31.0377 3600 usbccgp - ok
10:19:31.0392 3600 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
10:19:31.0439 3600 usbcir - ok
10:19:31.0470 3600 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
10:19:31.0486 3600 usbehci - ok
10:19:31.0533 3600 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
10:19:31.0579 3600 usbhub - ok
10:19:31.0611 3600 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
10:19:31.0657 3600 usbohci - ok
10:19:31.0720 3600 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
10:19:31.0782 3600 usbprint - ok
10:19:31.0845 3600 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
10:19:31.0876 3600 usbscan - ok
10:19:31.0923 3600 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:19:31.0969 3600 USBSTOR - ok
10:19:32.0001 3600 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
10:19:32.0047 3600 usbuhci - ok
10:19:32.0094 3600 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
10:19:32.0157 3600 usbvideo - ok
10:19:32.0188 3600 UVCFTR (237c444fbd1c697a2e3fa60f02c61f22) C:\Windows\system32\Drivers\UVCFTR_S.SYS
10:19:32.0203 3600 UVCFTR - ok
10:19:32.0406 3600 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
10:19:32.0422 3600 UxSms - ok
10:19:32.0515 3600 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
10:19:32.0547 3600 vds - ok
10:19:32.0593 3600 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
10:19:32.0625 3600 vga - ok
10:19:32.0656 3600 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
10:19:32.0671 3600 VgaSave - ok
10:19:32.0687 3600 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
10:19:32.0703 3600 viaagp - ok
10:19:32.0718 3600 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
10:19:32.0749 3600 ViaC7 - ok
10:19:32.0812 3600 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
10:19:32.0827 3600 viaide - ok
10:19:32.0843 3600 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
10:19:32.0859 3600 volmgr - ok
10:19:32.0937 3600 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
10:19:32.0952 3600 volmgrx - ok
10:19:32.0983 3600 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
10:19:32.0999 3600 volsnap - ok
10:19:33.0030 3600 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
10:19:33.0046 3600 vsmraid - ok
10:19:33.0155 3600 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
10:19:33.0186 3600 VSS - ok
10:19:33.0264 3600 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
10:19:33.0327 3600 W32Time - ok
10:19:33.0389 3600 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
10:19:33.0467 3600 WacomPen - ok
10:19:33.0498 3600 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:19:33.0514 3600 Wanarp - ok
10:19:33.0514 3600 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:19:33.0545 3600 Wanarpv6 - ok
10:19:33.0623 3600 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
10:19:33.0639 3600 wcncsvc - ok
10:19:33.0685 3600 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
10:19:33.0732 3600 WcsPlugInService - ok
10:19:33.0763 3600 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
10:19:33.0779 3600 Wd - ok
10:19:33.0826 3600 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
10:19:33.0841 3600 Wdf01000 - ok
10:19:33.0873 3600 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:19:33.0919 3600 WdiServiceHost - ok
10:19:33.0935 3600 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
10:19:33.0951 3600 WdiSystemHost - ok
10:19:34.0060 3600 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
10:19:34.0091 3600 WebClient - ok
10:19:34.0138 3600 Wecsvc (905214925a88311fce52f66153de7610) C:\Windows\system32\wecsvc.dll
10:19:34.0185 3600 Wecsvc - ok
10:19:34.0216 3600 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
10:19:34.0278 3600 wercplsupport - ok
10:19:34.0309 3600 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
10:19:34.0341 3600 WerSvc - ok
10:19:34.0341 3600 WinHttpAutoProxySvc - ok
10:19:34.0387 3600 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
10:19:34.0419 3600 Winmgmt - ok
10:19:34.0465 3600 WinRM (01874d4689c212460fbabf0ecd7cb7f7) C:\Windows\system32\WsmSvc.dll
10:19:34.0559 3600 WinRM - ok
10:19:34.0606 3600 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
10:19:34.0653 3600 Wlansvc - ok
10:19:34.0777 3600 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
10:19:34.0809 3600 WmiAcpi - ok
10:19:34.0965 3600 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
10:19:34.0996 3600 wmiApSrv - ok
10:19:35.0214 3600 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
10:19:35.0308 3600 WMPNetworkSvc - ok
10:19:35.0370 3600 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
10:19:35.0448 3600 WPCSvc - ok
10:19:35.0511 3600 WPDBusEnum (396d406292b0cd26e3504ffe82784702) C:\Windows\system32\wpdbusenum.dll
10:19:35.0557 3600 WPDBusEnum - ok
10:19:35.0620 3600 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
10:19:35.0667 3600 WpdUsb - ok
10:19:35.0698 3600 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
10:19:35.0760 3600 ws2ifsl - ok
10:19:35.0760 3600 WSearch - ok
10:19:35.0807 3600 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:19:35.0823 3600 WUDFRd - ok
10:19:35.0869 3600 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
10:19:35.0916 3600 wudfsvc - ok
10:19:35.0963 3600 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
10:19:37.0476 3600 \Device\Harddisk0\DR0 - ok
10:19:37.0523 3600 Boot (0x1200) (eeae7c995035d50ef55c62a15ec2fd24) \Device\Harddisk0\DR0\Partition0
10:19:37.0523 3600 \Device\Harddisk0\DR0\Partition0 - ok
10:19:37.0554 3600 Boot (0x1200) (e1fc7df2997e1dddf077fed62ed5c508) \Device\Harddisk0\DR0\Partition1
10:19:37.0554 3600 \Device\Harddisk0\DR0\Partition1 - ok
10:19:37.0554 3600 ============================================================
10:19:37.0554 3600 Scan finished
10:19:37.0554 3600 ============================================================
10:19:37.0570 2780 Detected object count: 9
10:19:37.0570 2780 Actual detected object count: 9
10:24:06.0095 2780 ConfigFree Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0095 2780 ConfigFree Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0095 2780 GtDetectSc ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0095 2780 GtDetectSc ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0095 2780 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0095 2780 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0110 2780 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0110 2780 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0110 2780 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0110 2780 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0110 2780 SampleScanner ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0110 2780 SampleScanner ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0110 2780 SmartFaceVWatchSrv ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0110 2780 SmartFaceVWatchSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0110 2780 TOSHIBA SMART Log Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0110 2780 TOSHIBA SMART Log Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:24:06.0110 2780 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - skipped by user
10:24:06.0110 2780 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip
|
|
11.08.2012, 15:20
| #24 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | live security platinum Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu live security platinum |
| 800000cb.@, administrator, anti-malware, appdata, autostart, blöde, blöden, cache, dateien, dvd, explorer, gelöscht, gen, java, live, platinum, quarantäne, security, service, service pack 2, speicher, test, toshiba, version, virus, vista |
