| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
18.11.2012, 23:04
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Ich hoffe du hast dich gut erholt Nach so langer Zeit müssen wir schon wieder fast von vorn anfangen 1. aswMBR Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop. Hinweis: Bitte den Virenscanner abstellen bevor du aswMBR ausführst, denn v.a. Avira meldet darin oft einen Fehlalarm!
Noch ein Hinweis: Sollte aswMBR abstürzen und es kommt eine Meldung wie "aswMBR.exe funktioniert nicht mehr, dann mach Folgendes: Starte aswMBR neu, wähle unten links im Drop-Down-Menü (unten links im Fenster von aswMBR) bei "AV scan" (none) aus und klick nochmal auf den Scan-Button. 2. TDSS-Killer Download TDSS-Killer auf Desktop siehe => http://www.trojaner-board.de/82358-t...entfernen.html Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm! Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet, Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten. Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition ( meistens Laufwerk C: ) nach, da speichert der TDSS-Killer seine Logs. Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten! 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
19.11.2012, 10:42
| #17 |
 | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? OK, hier ist mal das aswMBR. Während des Durchlaufs kamen unten im System Tray von Windows ein paar Fehlermeldungen, dass bestimmte gescannte Dateien beschädigt seien. Was kann man denn aus dem aswMBR Log rauslesen?
__________________ Ich mache jetzt mal das mit dem TDSS Killer. Code:
ATTFilter aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-11-19 01:17:53
-----------------------------
01:17:53.355 OS Version: Windows x64 6.0.6002 Service Pack 2
01:17:53.355 Number of processors: 2 586 0x170A
01:17:53.355 ComputerName: NAME UserName:
01:17:55.258 Initialize success
01:18:08.596 AVAST engine defs: 12111801
01:18:10.640 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
01:18:10.640 Disk 0 Vendor: ST9320325AS 0003DEM1 Size: 305245MB BusType: 3
01:18:10.671 Disk 0 MBR read successfully
01:18:10.671 Disk 0 MBR scan
01:18:10.686 Disk 0 Windows VISTA default MBR code
01:18:10.702 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
01:18:10.718 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 80000 MB offset 81920
01:18:10.749 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 225204 MB offset 163921920
01:18:10.827 Disk 0 scanning C:\Windows\system32\drivers
01:18:31.325 Service scanning
01:18:56.394 Modules scanning
01:18:56.394 Disk 0 trace - called modules:
01:18:56.426 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
01:18:56.940 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004afd790]
01:18:56.940 3 CLASSPNP.SYS[fffffa6000dd1c33] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80045ae060]
01:18:59.031 AVAST engine scan C:\Windows
01:19:02.385 AVAST engine scan C:\Windows\system32
01:23:36.087 AVAST engine scan C:\Windows\system32\drivers
01:23:51.765 AVAST engine scan C:\Users\Office-PC
01:29:00.620 AVAST engine scan C:\ProgramData
01:31:30.895 Scan finished successfully
01:32:00.114 Disk 0 MBR has been saved successfully to "C:\Users\NAME\Desktop\MBR.dat"
01:32:00.114 The log file has been saved successfully to "C:\Users\NAME\Desktop\aswMBR.txt"
|
|
19.11.2012, 10:53
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Das Log ist unauffällig. Die Meldung von Windows macht so keinen Sinn oder ich verstehe sie falsch. Vllt wollte aswMBR die Datei mbam.sys scannen und Windows meint da ist ein Dateisystemfehler
__________________ Mach erstmal mit dem TDSS-Killer weiter
__________________ |
|
19.11.2012, 11:00
| #19 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Ogottogott...  Soll ich "copy all to quarantine" drücken? Bislang habe ich nichts gemacht.  Code:
ATTFilter 10:45:21.0427 3592 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:45:21.0737 3592 ============================================================
10:45:21.0737 3592 Current date / time: 2012/11/19 10:45:21.0737
10:45:21.0737 3592 SystemInfo:
10:45:21.0737 3592
10:45:21.0737 3592 OS Version: 6.0.6002 ServicePack: 2.0
10:45:21.0737 3592 Product type: Workstation
10:45:21.0737 3592 ComputerName: NAME
10:45:21.0737 3592 UserName: Office-PC
10:45:21.0737 3592 Windows directory: C:\Windows
10:45:21.0737 3592 System windows directory: C:\Windows
10:45:21.0737 3592 Running under WOW64
10:45:21.0737 3592 Processor architecture: Intel x64
10:45:21.0737 3592 Number of processors: 2
10:45:21.0737 3592 Page size: 0x1000
10:45:21.0737 3592 Boot type: Normal boot
10:45:21.0737 3592 ============================================================
10:45:25.0247 3592 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:45:25.0257 3592 ============================================================
10:45:25.0257 3592 \Device\Harddisk0\DR0:
10:45:25.0257 3592 MBR partitions:
10:45:25.0257 3592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x9C40000
10:45:25.0257 3592 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C54000, BlocksNum 0x1B7DA000
10:45:25.0257 3592 ============================================================
10:45:25.0297 3592 C: <-> \Device\Harddisk0\DR0\Partition1
10:45:25.0397 3592 D: <-> \Device\Harddisk0\DR0\Partition2
10:45:25.0397 3592 ============================================================
10:45:25.0397 3592 Initialize success
10:45:25.0397 3592 ============================================================
10:45:58.0791 3020 ============================================================
10:45:58.0791 3020 Scan started
10:45:58.0791 3020 Mode: Manual; SigCheck; TDLFS;
10:45:58.0791 3020 ============================================================
10:45:59.0493 3020 ================ Scan system memory ========================
10:45:59.0493 3020 System memory - ok
10:45:59.0508 3020 ================ Scan services =============================
10:46:00.0148 3020 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
10:46:00.0351 3020 ACPI - ok
10:46:00.0491 3020 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:46:00.0507 3020 AdobeARMservice - ok
10:46:00.0569 3020 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:46:00.0631 3020 adp94xx - ok
10:46:00.0663 3020 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:46:00.0709 3020 adpahci - ok
10:46:00.0725 3020 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
10:46:00.0756 3020 adpu160m - ok
10:46:00.0772 3020 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:46:00.0803 3020 adpu320 - ok
10:46:00.0850 3020 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:46:01.0396 3020 AeLookupSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:01.0396 3020 AeLookupSvc - detected UnsignedFile.Multi.Generic (1)
10:46:01.0599 3020 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe
10:46:01.0989 3020 AESTFilters ( UnsignedFile.Multi.Generic ) - warning
10:46:01.0989 3020 AESTFilters - detected UnsignedFile.Multi.Generic (1)
10:46:02.0051 3020 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
10:46:02.0441 3020 AFD ( UnsignedFile.Multi.Generic ) - warning
10:46:02.0441 3020 AFD - detected UnsignedFile.Multi.Generic (1)
10:46:02.0472 3020 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:46:02.0503 3020 agp440 - ok
10:46:02.0550 3020 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
10:46:02.0581 3020 aic78xx - ok
10:46:02.0597 3020 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
10:46:02.0971 3020 ALG ( UnsignedFile.Multi.Generic ) - warning
10:46:02.0971 3020 ALG - detected UnsignedFile.Multi.Generic (1)
10:46:03.0018 3020 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
10:46:03.0034 3020 aliide - ok
10:46:03.0065 3020 [ B5E2434FC851698C1F119CF1C3935A50 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:46:03.0580 3020 AMD External Events Utility ( UnsignedFile.Multi.Generic ) - warning
10:46:03.0595 3020 AMD External Events Utility - detected UnsignedFile.Multi.Generic (1)
10:46:03.0611 3020 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
10:46:03.0642 3020 amdide - ok
10:46:03.0673 3020 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:46:04.0063 3020 AmdK8 ( UnsignedFile.Multi.Generic ) - warning
10:46:04.0063 3020 AmdK8 - detected UnsignedFile.Multi.Generic (1)
10:46:05.0249 3020 [ 9E3B4946F7E1BCA0B763E19D81EDBF2C ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:46:06.0123 3020 amdkmdag ( UnsignedFile.Multi.Generic ) - warning
10:46:06.0123 3020 amdkmdag - detected UnsignedFile.Multi.Generic (1)
10:46:06.0154 3020 [ B9E1C7B7F1865F99B16FF2E1BB94EDB6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:46:06.0606 3020 amdkmdap ( UnsignedFile.Multi.Generic ) - warning
10:46:06.0606 3020 amdkmdap - detected UnsignedFile.Multi.Generic (1)
10:46:06.0762 3020 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
10:46:06.0793 3020 AntiVirSchedulerService - ok
10:46:06.0840 3020 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
10:46:06.0856 3020 AntiVirService - ok
10:46:06.0903 3020 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
10:46:07.0308 3020 Appinfo ( UnsignedFile.Multi.Generic ) - warning
10:46:07.0308 3020 Appinfo - detected UnsignedFile.Multi.Generic (1)
10:46:07.0324 3020 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
10:46:07.0339 3020 arc - ok
10:46:07.0371 3020 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:46:07.0402 3020 arcsas - ok
10:46:07.0761 3020 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:46:07.0792 3020 aspnet_state - ok
10:46:07.0839 3020 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:46:08.0244 3020 AsyncMac ( UnsignedFile.Multi.Generic ) - warning
10:46:08.0244 3020 AsyncMac - detected UnsignedFile.Multi.Generic (1)
10:46:08.0275 3020 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
10:46:08.0291 3020 atapi - ok
10:46:08.0353 3020 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:46:08.0806 3020 AudioEndpointBuilder ( UnsignedFile.Multi.Generic ) - warning
10:46:08.0806 3020 AudioEndpointBuilder - detected UnsignedFile.Multi.Generic (1)
10:46:08.0821 3020 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:46:09.0274 3020 AudioSrv ( UnsignedFile.Multi.Generic ) - warning
10:46:09.0274 3020 AudioSrv - detected UnsignedFile.Multi.Generic (1)
10:46:09.0321 3020 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
10:46:09.0367 3020 avgntflt - ok
10:46:09.0383 3020 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
10:46:09.0399 3020 avipbb - ok
10:46:09.0414 3020 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
10:46:09.0430 3020 avkmgr - ok
10:46:09.0523 3020 [ D32F962B71FEE6BDAAEE630BB2C17280 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
10:46:09.0617 3020 BCM43XX - ok
10:46:09.0726 3020 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
10:46:10.0069 3020 BFE ( UnsignedFile.Multi.Generic ) - warning
10:46:10.0069 3020 BFE - detected UnsignedFile.Multi.Generic (1)
10:46:10.0132 3020 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
10:46:10.0584 3020 BITS ( UnsignedFile.Multi.Generic ) - warning 10:46:10.0584 3020 BITS - detected UnsignedFile.Multi.Generic (1)
10:46:10.0631 3020 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
10:46:10.0990 3020 blbdrive ( UnsignedFile.Multi.Generic ) - warning
10:46:10.0990 3020 blbdrive - detected UnsignedFile.Multi.Generic (1)
10:46:11.0021 3020 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:46:11.0442 3020 bowser ( UnsignedFile.Multi.Generic ) - warning
10:46:11.0442 3020 bowser - detected UnsignedFile.Multi.Generic (1)
10:46:11.0473 3020 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
10:46:11.0832 3020 BrFiltLo ( UnsignedFile.Multi.Generic ) - warning
10:46:11.0832 3020 BrFiltLo - detected UnsignedFile.Multi.Generic (1)
10:46:11.0832 3020 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
10:46:12.0222 3020 BrFiltUp ( UnsignedFile.Multi.Generic ) - warning
10:46:12.0222 3020 BrFiltUp - detected UnsignedFile.Multi.Generic (1)
10:46:12.0253 3020 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
10:46:12.0643 3020 Browser ( UnsignedFile.Multi.Generic ) - warning
10:46:12.0643 3020 Browser - detected UnsignedFile.Multi.Generic (1)
10:46:12.0690 3020 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
10:46:13.0065 3020 Brserid ( UnsignedFile.Multi.Generic ) - warning
10:46:13.0065 3020 Brserid - detected UnsignedFile.Multi.Generic (1)
10:46:13.0096 3020 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
10:46:13.0455 3020 BrSerWdm ( UnsignedFile.Multi.Generic ) - warning
10:46:13.0455 3020 BrSerWdm - detected UnsignedFile.Multi.Generic (1)
10:46:13.0501 3020 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
10:46:13.0860 3020 BrUsbMdm ( UnsignedFile.Multi.Generic ) - warning
10:46:13.0860 3020 BrUsbMdm - detected UnsignedFile.Multi.Generic (1)
10:46:13.0860 3020 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
10:46:14.0219 3020 BrUsbSer ( UnsignedFile.Multi.Generic ) - warning
10:46:14.0219 3020 BrUsbSer - detected UnsignedFile.Multi.Generic (1)
10:46:14.0235 3020 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:46:14.0562 3020 BTHMODEM ( UnsignedFile.Multi.Generic ) - warning
10:46:14.0562 3020 BTHMODEM - detected UnsignedFile.Multi.Generic (1)
10:46:14.0593 3020 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:46:14.0937 3020 cdfs ( UnsignedFile.Multi.Generic ) - warning
10:46:14.0937 3020 cdfs - detected UnsignedFile.Multi.Generic (1)
10:46:14.0983 3020 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:46:15.0295 3020 cdrom ( UnsignedFile.Multi.Generic ) - warning
10:46:15.0295 3020 cdrom - detected UnsignedFile.Multi.Generic (1)
10:46:15.0358 3020 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
10:46:15.0888 3020 CertPropSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:15.0888 3020 CertPropSvc - detected UnsignedFile.Multi.Generic (1)
10:46:15.0935 3020 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
10:46:16.0419 3020 circlass ( UnsignedFile.Multi.Generic ) - warning
10:46:16.0419 3020 circlass - detected UnsignedFile.Multi.Generic (1)
10:46:16.0512 3020 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
10:46:16.0653 3020 CLFS - ok
10:46:16.0731 3020 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:46:16.0746 3020 clr_optimization_v2.0.50727_32 - ok
10:46:16.0840 3020 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:46:16.0855 3020 clr_optimization_v2.0.50727_64 - ok
10:46:16.0965 3020 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:46:16.0980 3020 clr_optimization_v4.0.30319_32 - ok
10:46:17.0043 3020 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:46:17.0058 3020 clr_optimization_v4.0.30319_64 - ok
10:46:17.0121 3020 [ B52D9A14CE4101577900A364BA86F3DF ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:46:17.0651 3020 CmBatt ( UnsignedFile.Multi.Generic ) - warning
10:46:17.0651 3020 CmBatt - detected UnsignedFile.Multi.Generic (1)
10:46:17.0698 3020 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:46:17.0713 3020 cmdide - ok
10:46:17.0745 3020 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:46:17.0760 3020 Compbatt - ok
10:46:17.0776 3020 COMSysApp - ok
10:46:17.0791 3020 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:46:17.0807 3020 crcdisk - ok
10:46:17.0901 3020 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:46:18.0369 3020 CryptSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:18.0369 3020 CryptSvc - detected UnsignedFile.Multi.Generic (1)
10:46:18.0431 3020 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
10:46:18.0883 3020 DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
10:46:18.0883 3020 DcomLaunch - detected UnsignedFile.Multi.Generic (1)
10:46:18.0946 3020 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:46:19.0367 3020 DfsC ( UnsignedFile.Multi.Generic ) - warning
10:46:19.0367 3020 DfsC - detected UnsignedFile.Multi.Generic (1)
10:46:19.0710 3020 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
10:46:20.0256 3020 DFSR ( UnsignedFile.Multi.Generic ) - warning
10:46:20.0256 3020 DFSR - detected UnsignedFile.Multi.Generic (1)
10:46:20.0303 3020 [ 105373D52E71D2D1355AD3ACD18259C3 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:46:20.0319 3020 dg_ssudbus - ok
10:46:20.0412 3020 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
10:46:20.0724 3020 Dhcp ( UnsignedFile.Multi.Generic ) - warning
10:46:20.0724 3020 Dhcp - detected UnsignedFile.Multi.Generic (1)
10:46:20.0755 3020 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
10:46:20.0771 3020 disk - ok
10:46:20.0833 3020 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:46:21.0145 3020 Dnscache ( UnsignedFile.Multi.Generic ) - warning
10:46:21.0145 3020 Dnscache - detected UnsignedFile.Multi.Generic (1)
10:46:21.0208 3020 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
10:46:21.0645 3020 dot3svc ( UnsignedFile.Multi.Generic ) - warning
10:46:21.0645 3020 dot3svc - detected UnsignedFile.Multi.Generic (1)
10:46:21.0691 3020 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:46:22.0097 3020 Dot4 ( UnsignedFile.Multi.Generic ) - warning
10:46:22.0097 3020 Dot4 - detected UnsignedFile.Multi.Generic (1)
10:46:22.0159 3020 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:46:22.0581 3020 Dot4Print ( UnsignedFile.Multi.Generic ) - warning
10:46:22.0581 3020 Dot4Print - detected UnsignedFile.Multi.Generic (1)
10:46:22.0612 3020 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:46:22.0939 3020 dot4usb ( UnsignedFile.Multi.Generic ) - warning
10:46:22.0939 3020 dot4usb - detected UnsignedFile.Multi.Generic (1)
10:46:22.0986 3020 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
10:46:23.0314 3020 DPS ( UnsignedFile.Multi.Generic ) - warning
10:46:23.0314 3020 DPS - detected UnsignedFile.Multi.Generic (1)
10:46:23.0345 3020 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:46:23.0829 3020 drmkaud ( UnsignedFile.Multi.Generic ) - warning
10:46:23.0829 3020 drmkaud - detected UnsignedFile.Multi.Generic (1)
10:46:23.0891 3020 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:46:23.0953 3020 DXGKrnl - ok
10:46:24.0047 3020 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
10:46:24.0562 3020 E1G60 ( UnsignedFile.Multi.Generic ) - warning
10:46:24.0562 3020 E1G60 - detected UnsignedFile.Multi.Generic (1)
10:46:24.0624 3020 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
10:46:25.0030 3020 EapHost ( UnsignedFile.Multi.Generic ) - warning
10:46:25.0030 3020 EapHost - detected UnsignedFile.Multi.Generic (1)
10:46:25.0061 3020 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
10:46:25.0092 3020 Ecache - ok
10:46:25.0201 3020 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:46:25.0669 3020 ehRecvr ( UnsignedFile.Multi.Generic ) - warning
10:46:25.0669 3020 ehRecvr - detected UnsignedFile.Multi.Generic (1)
10:46:25.0747 3020 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
10:46:26.0169 3020 ehSched ( UnsignedFile.Multi.Generic ) - warning
10:46:26.0169 3020 ehSched - detected UnsignedFile.Multi.Generic (1)
10:46:26.0262 3020 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
10:46:26.0683 3020 ehstart ( UnsignedFile.Multi.Generic ) - warning
10:46:26.0683 3020 ehstart - detected UnsignedFile.Multi.Generic (1)
10:46:26.0730 3020 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:46:26.0777 3020 elxstor - ok
10:46:26.0824 3020 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
10:46:27.0697 3020 EMDMgmt ( UnsignedFile.Multi.Generic ) - warning
10:46:27.0697 3020 EMDMgmt - detected UnsignedFile.Multi.Generic (1)
10:46:27.0729 3020 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:46:28.0228 3020 ErrDev ( UnsignedFile.Multi.Generic ) - warning
10:46:28.0228 3020 ErrDev - detected UnsignedFile.Multi.Generic (1)
10:46:28.0275 3020 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
10:46:28.0633 3020 EventSystem ( UnsignedFile.Multi.Generic ) - warning
10:46:28.0633 3020 EventSystem - detected UnsignedFile.Multi.Generic (1)
10:46:28.0696 3020 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
10:46:29.0179 3020 exfat ( UnsignedFile.Multi.Generic ) - warning
10:46:29.0179 3020 exfat - detected UnsignedFile.Multi.Generic (1)
10:46:29.0257 3020 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:46:29.0663 3020 fastfat ( UnsignedFile.Multi.Generic ) - warning
10:46:29.0663 3020 fastfat - detected UnsignedFile.Multi.Generic (1)
10:46:29.0710 3020 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:46:30.0131 3020 fdc ( UnsignedFile.Multi.Generic ) - warning
10:46:30.0131 3020 fdc - detected UnsignedFile.Multi.Generic (1)
10:46:30.0162 3020 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
10:46:30.0615 3020 fdPHost ( UnsignedFile.Multi.Generic ) - warning
10:46:30.0615 3020 fdPHost - detected UnsignedFile.Multi.Generic (1)
10:46:30.0661 3020 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
10:46:31.0036 3020 FDResPub ( UnsignedFile.Multi.Generic ) - warning
10:46:31.0036 3020 FDResPub - detected UnsignedFile.Multi.Generic (1)
10:46:31.0067 3020 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:46:31.0098 3020 FileInfo - ok
10:46:31.0145 3020 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:46:31.0597 3020 Filetrace ( UnsignedFile.Multi.Generic ) - warning
10:46:31.0597 3020 Filetrace - detected UnsignedFile.Multi.Generic (1)
10:46:31.0613 3020 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:46:32.0019 3020 flpydisk ( UnsignedFile.Multi.Generic ) - warning
10:46:32.0019 3020 flpydisk - detected UnsignedFile.Multi.Generic (1)
10:46:32.0050 3020 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:46:32.0081 3020 FltMgr - ok
10:46:32.0175 3020 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
10:46:32.0861 3020 FontCache ( UnsignedFile.Multi.Generic ) - warning
10:46:32.0861 3020 FontCache - detected UnsignedFile.Multi.Generic (1)
10:46:32.0955 3020 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:46:32.0970 3020 FontCache3.0.0.0 - ok
10:46:33.0017 3020 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:46:33.0391 3020 Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
10:46:33.0391 3020 Fs_Rec - detected UnsignedFile.Multi.Generic (1)
10:46:33.0485 3020 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:46:33.0501 3020 gagp30kx - ok
10:46:33.0579 3020 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
10:46:34.0031 3020 gpsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:34.0031 3020 gpsvc - detected UnsignedFile.Multi.Generic (1)
10:46:34.0078 3020 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:46:34.0483 3020 HdAudAddService ( UnsignedFile.Multi.Generic ) - warning
10:46:34.0483 3020 HdAudAddService - detected UnsignedFile.Multi.Generic (1)
10:46:34.0717 3020 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:46:35.0279 3020 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
10:46:35.0279 3020 HDAudBus - detected UnsignedFile.Multi.Generic (1)
10:46:35.0326 3020 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:46:35.0685 3020 HidBth ( UnsignedFile.Multi.Generic ) - warning
10:46:35.0685 3020 HidBth - detected UnsignedFile.Multi.Generic (1)
10:46:35.0700 3020 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
10:46:36.0075 3020 HidIr ( UnsignedFile.Multi.Generic ) - warning
10:46:36.0075 3020 HidIr - detected UnsignedFile.Multi.Generic (1)
10:46:36.0106 3020 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
10:46:36.0589 3020 hidserv ( UnsignedFile.Multi.Generic ) - warning
10:46:36.0589 3020 hidserv - detected UnsignedFile.Multi.Generic (1)
10:46:36.0605 3020 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:46:36.0995 3020 HidUsb ( UnsignedFile.Multi.Generic ) - warning
10:46:36.0995 3020 HidUsb - detected UnsignedFile.Multi.Generic (1)
10:46:37.0026 3020 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
10:46:37.0432 3020 hkmsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:37.0432 3020 hkmsvc - detected UnsignedFile.Multi.Generic (1)
10:46:37.0479 3020 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
10:46:37.0510 3020 HpCISSs - ok
10:46:37.0619 3020 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:46:38.0087 3020 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
10:46:38.0087 3020 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
10:46:38.0165 3020 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:46:38.0539 3020 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:38.0539 3020 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
10:46:38.0586 3020 [ D972F48D0CE396759B788693CD665926 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:46:39.0054 3020 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
10:46:39.0054 3020 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
10:46:39.0101 3020 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:46:39.0491 3020 HTTP ( UnsignedFile.Multi.Generic ) - warning
10:46:39.0491 3020 HTTP - detected UnsignedFile.Multi.Generic (1)
10:46:39.0522 3020 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
10:46:39.0553 3020 i2omp - ok
10:46:39.0585 3020 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:46:39.0928 3020 i8042prt ( UnsignedFile.Multi.Generic ) - warning
10:46:39.0928 3020 i8042prt - detected UnsignedFile.Multi.Generic (1)
10:46:39.0975 3020 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
10:46:40.0006 3020 iaStorV - ok
10:46:40.0068 3020 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:46:40.0162 3020 idsvc - ok
10:46:40.0224 3020 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:46:40.0255 3020 iirsp - ok
10:46:40.0333 3020 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
10:46:40.0786 3020 IKEEXT ( UnsignedFile.Multi.Generic ) - warning
10:46:40.0786 3020 IKEEXT - detected UnsignedFile.Multi.Generic (1)
10:46:41.0332 3020 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:46:41.0722 3020 IntcAzAudAddService - ok
10:46:41.0784 3020 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
10:46:41.0800 3020 intelide - ok
10:46:41.0815 3020 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:46:42.0143 3020 intelppm ( UnsignedFile.Multi.Generic ) - warning
10:46:42.0143 3020 intelppm - detected UnsignedFile.Multi.Generic (1)
10:46:42.0205 3020 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:46:42.0580 3020 IPBusEnum ( UnsignedFile.Multi.Generic ) - warning
10:46:42.0580 3020 IPBusEnum - detected UnsignedFile.Multi.Generic (1)
10:46:42.0627 3020 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:46:43.0219 3020 IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
10:46:43.0219 3020 IpFilterDriver - detected UnsignedFile.Multi.Generic (1)
10:46:43.0313 3020 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:46:43.0843 3020 iphlpsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:43.0843 3020 iphlpsvc - detected UnsignedFile.Multi.Generic (1)
10:46:43.0859 3020 IpInIp - ok
10:46:43.0875 3020 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
10:46:44.0187 3020 IPMIDRV ( UnsignedFile.Multi.Generic ) - warning
10:46:44.0187 3020 IPMIDRV - detected UnsignedFile.Multi.Generic (1)
10:46:44.0233 3020 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
10:46:44.0545 3020 IPNAT ( UnsignedFile.Multi.Generic ) - warning
10:46:44.0545 3020 IPNAT - detected UnsignedFile.Multi.Generic (1)
10:46:44.0545 3020 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:46:44.0842 3020 IRENUM ( UnsignedFile.Multi.Generic ) - warning
10:46:44.0842 3020 IRENUM - detected UnsignedFile.Multi.Generic (1)
10:46:44.0873 3020 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:46:44.0889 3020 isapnp - ok
10:46:44.0935 3020 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:46:44.0951 3020 iScsiPrt - ok
10:46:44.0998 3020 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
10:46:45.0013 3020 iteatapi - ok
10:46:45.0060 3020 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
10:46:45.0076 3020 iteraid - ok
10:46:45.0123 3020 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:46:45.0138 3020 kbdclass - ok
10:46:45.0185 3020 [ BF8783A5066CFECF45095459E8010FA7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:46:45.0575 3020 kbdhid ( UnsignedFile.Multi.Generic ) - warning
10:46:45.0575 3020 kbdhid - detected UnsignedFile.Multi.Generic (1)
10:46:45.0622 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
10:46:45.0965 3020 KeyIso ( UnsignedFile.Multi.Generic ) - warning
10:46:45.0965 3020 KeyIso - detected UnsignedFile.Multi.Generic (1)
10:46:46.0012 3020 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:46:46.0059 3020 KSecDD - ok
10:46:46.0105 3020 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:46:46.0605 3020 ksthunk ( UnsignedFile.Multi.Generic ) - warning
10:46:46.0605 3020 ksthunk - detected UnsignedFile.Multi.Generic (1)
10:46:46.0651 3020 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
10:46:47.0041 3020 KtmRm ( UnsignedFile.Multi.Generic ) - warning
10:46:47.0041 3020 KtmRm - detected UnsignedFile.Multi.Generic (1)
10:46:47.0073 3020 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:46:47.0385 3020 LanmanServer ( UnsignedFile.Multi.Generic ) - warning
10:46:47.0385 3020 LanmanServer - detected UnsignedFile.Multi.Generic (1)
10:46:47.0431 3020 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:46:47.0775 3020 LanmanWorkstation ( UnsignedFile.Multi.Generic ) - warning
10:46:47.0775 3020 LanmanWorkstation - detected UnsignedFile.Multi.Generic (1)
10:46:47.0806 3020 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:46:48.0102 3020 lltdio ( UnsignedFile.Multi.Generic ) - warning
10:46:48.0102 3020 lltdio - detected UnsignedFile.Multi.Generic (1)
10:46:48.0165 3020 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:46:48.0508 3020 lltdsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:48.0508 3020 lltdsvc - detected UnsignedFile.Multi.Generic (1)
10:46:48.0523 3020 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:46:49.0007 3020 lmhosts ( UnsignedFile.Multi.Generic ) - warning
10:46:49.0007 3020 lmhosts - detected UnsignedFile.Multi.Generic (1)
10:46:49.0038 3020 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:46:49.0069 3020 LSI_FC - ok
10:46:49.0101 3020 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:46:49.0132 3020 LSI_SAS - ok
10:46:49.0147 3020 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:46:49.0179 3020 LSI_SCSI - ok
10:46:49.0210 3020 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
10:46:49.0537 3020 luafv ( UnsignedFile.Multi.Generic ) - warning
10:46:49.0537 3020 luafv - detected UnsignedFile.Multi.Generic (1)
10:46:49.0569 3020 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:46:49.0990 3020 Mcx2Svc ( UnsignedFile.Multi.Generic ) - warning
10:46:49.0990 3020 Mcx2Svc - detected UnsignedFile.Multi.Generic (1)
10:46:50.0037 3020 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
10:46:50.0052 3020 megasas - ok
10:46:50.0099 3020 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
10:46:50.0130 3020 MegaSR - ok
10:46:50.0161 3020 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
10:46:50.0520 3020 MMCSS ( UnsignedFile.Multi.Generic ) - warning
10:46:50.0520 3020 MMCSS - detected UnsignedFile.Multi.Generic (1)
10:46:50.0551 3020 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
10:46:50.0910 3020 Modem ( UnsignedFile.Multi.Generic ) - warning
10:46:50.0910 3020 Modem - detected UnsignedFile.Multi.Generic (1)
10:46:50.0957 3020 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:46:51.0316 3020 monitor ( UnsignedFile.Multi.Generic ) - warning
10:46:51.0316 3020 monitor - detected UnsignedFile.Multi.Generic (1)
10:46:51.0347 3020 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:46:51.0378 3020 mouclass - ok
10:46:51.0409 3020 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:46:51.0799 3020 mouhid ( UnsignedFile.Multi.Generic ) - warning
10:46:51.0799 3020 mouhid - detected UnsignedFile.Multi.Generic (1)
10:46:51.0831 3020 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
10:46:51.0846 3020 MountMgr - ok
10:46:51.0924 3020 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:46:51.0955 3020 MozillaMaintenance - ok
10:46:51.0987 3020 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
10:46:52.0002 3020 mpio - ok
10:46:52.0065 3020 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:46:52.0361 3020 mpsdrv ( UnsignedFile.Multi.Generic ) - warning
10:46:52.0361 3020 mpsdrv - detected UnsignedFile.Multi.Generic (1)
10:46:52.0423 3020 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
10:46:52.0798 3020 MpsSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:52.0798 3020 MpsSvc - detected UnsignedFile.Multi.Generic (1)
10:46:52.0829 3020 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
10:46:52.0860 3020 Mraid35x - ok
10:46:52.0891 3020 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:46:53.0235 3020 MRxDAV ( UnsignedFile.Multi.Generic ) - warning
10:46:53.0235 3020 MRxDAV - detected UnsignedFile.Multi.Generic (1)
10:46:53.0281 3020 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:46:53.0593 3020 mrxsmb ( UnsignedFile.Multi.Generic ) - warning
10:46:53.0593 3020 mrxsmb - detected UnsignedFile.Multi.Generic (1)
10:46:53.0640 3020 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:46:53.0983 3020 mrxsmb10 ( UnsignedFile.Multi.Generic ) - warning
10:46:53.0983 3020 mrxsmb10 - detected UnsignedFile.Multi.Generic (1)
10:46:54.0015 3020 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:46:54.0373 3020 mrxsmb20 ( UnsignedFile.Multi.Generic ) - warning
10:46:54.0373 3020 mrxsmb20 - detected UnsignedFile.Multi.Generic (1)
10:46:54.0405 3020 [ AA459F2AB3AB603C357FF117CAE3D818 ] msahci C:\Windows\system32\drivers\msahci.sys
10:46:54.0436 3020 msahci - ok
10:46:54.0467 3020 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:46:54.0483 3020 msdsm - ok
10:46:54.0529 3020 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
10:46:54.0888 3020 MSDTC ( UnsignedFile.Multi.Generic ) - warning
10:46:54.0888 3020 MSDTC - detected UnsignedFile.Multi.Generic (1)
10:46:54.0935 3020 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:46:55.0294 3020 Msfs ( UnsignedFile.Multi.Generic ) - warning
10:46:55.0294 3020 Msfs - detected UnsignedFile.Multi.Generic (1)
10:46:55.0325 3020 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:46:55.0341 3020 msisadrv - ok
10:46:55.0372 3020 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:46:55.0731 3020 MSiSCSI ( UnsignedFile.Multi.Generic ) - warning
10:46:55.0731 3020 MSiSCSI - detected UnsignedFile.Multi.Generic (1)
10:46:55.0731 3020 msiserver - ok
10:46:55.0777 3020 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:46:56.0058 3020 MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
10:46:56.0058 3020 MSKSSRV - detected UnsignedFile.Multi.Generic (1)
10:46:56.0089 3020 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:46:56.0401 3020 MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
10:46:56.0401 3020 MSPCLOCK - detected UnsignedFile.Multi.Generic (1)
10:46:56.0417 3020 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:46:56.0760 3020 MSPQM ( UnsignedFile.Multi.Generic ) - warning
10:46:56.0760 3020 MSPQM - detected UnsignedFile.Multi.Generic (1)
10:46:56.0791 3020 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:46:56.0823 3020 MsRPC - ok
10:46:56.0869 3020 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:46:56.0885 3020 mssmbios - ok
10:46:56.0901 3020 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:46:57.0228 3020 MSTEE ( UnsignedFile.Multi.Generic ) - warning
10:46:57.0228 3020 MSTEE - detected UnsignedFile.Multi.Generic (1)
10:46:57.0259 3020 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
10:46:57.0291 3020 Mup - ok
10:46:57.0353 3020 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
10:46:57.0665 3020 napagent ( UnsignedFile.Multi.Generic ) - warning
10:46:57.0665 3020 napagent - detected UnsignedFile.Multi.Generic (1)
10:46:57.0727 3020 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:46:58.0102 3020 NativeWifiP ( UnsignedFile.Multi.Generic ) - warning
10:46:58.0102 3020 NativeWifiP - detected UnsignedFile.Multi.Generic (1)
10:46:58.0321 3020 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:46:58.0387 3020 NDIS - ok
10:46:58.0433 3020 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:46:58.0792 3020 NdisTapi ( UnsignedFile.Multi.Generic ) - warning
10:46:58.0792 3020 NdisTapi - detected UnsignedFile.Multi.Generic (1)
10:46:58.0830 3020 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:46:59.0217 3020 Ndisuio ( UnsignedFile.Multi.Generic ) - warning
10:46:59.0217 3020 Ndisuio - detected UnsignedFile.Multi.Generic (1)
10:46:59.0264 3020 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:46:59.0779 3020 NdisWan ( UnsignedFile.Multi.Generic ) - warning
10:46:59.0779 3020 NdisWan - detected UnsignedFile.Multi.Generic (1)
10:46:59.0810 3020 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:47:00.0403 3020 NDProxy ( UnsignedFile.Multi.Generic ) - warning
10:47:00.0403 3020 NDProxy - detected UnsignedFile.Multi.Generic (1)
10:47:00.0434 3020 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:47:00.0933 3020 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:47:00.0933 3020 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:47:00.0964 3020 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:47:01.0651 3020 NetBIOS ( UnsignedFile.Multi.Generic ) - warning
10:47:01.0651 3020 NetBIOS - detected UnsignedFile.Multi.Generic (1)
10:47:01.0713 3020 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
10:47:02.0197 3020 netbt ( UnsignedFile.Multi.Generic ) - warning
10:47:02.0197 3020 netbt - detected UnsignedFile.Multi.Generic (1)
10:47:02.0212 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
10:47:02.0618 3020 Netlogon ( UnsignedFile.Multi.Generic ) - warning
10:47:02.0618 3020 Netlogon - detected UnsignedFile.Multi.Generic (1)
10:47:02.0696 3020 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
10:47:03.0507 3020 Netman ( UnsignedFile.Multi.Generic ) - warning
10:47:03.0507 3020 Netman - detected UnsignedFile.Multi.Generic (1)
10:47:03.0554 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:03.0585 3020 NetMsmqActivator - ok
10:47:03.0601 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:03.0616 3020 NetPipeActivator - ok
10:47:03.0694 3020 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
10:47:04.0209 3020 netprofm ( UnsignedFile.Multi.Generic ) - warning
10:47:04.0209 3020 netprofm - detected UnsignedFile.Multi.Generic (1)
10:47:04.0240 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:04.0256 3020 NetTcpActivator - ok
10:47:04.0303 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:04.0318 3020 NetTcpPortSharing - ok
10:47:04.0349 3020 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:47:04.0381 3020 nfrd960 - ok
10:47:04.0568 3020 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
10:47:05.0379 3020 NlaSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:05.0379 3020 NlaSvc - detected UnsignedFile.Multi.Generic (1)
10:47:05.0426 3020 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:47:05.0800 3020 Npfs ( UnsignedFile.Multi.Generic ) - warning
10:47:05.0800 3020 Npfs - detected UnsignedFile.Multi.Generic (1)
10:47:05.0831 3020 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
10:47:06.0206 3020 nsi ( UnsignedFile.Multi.Generic ) - warning
10:47:06.0206 3020 nsi - detected UnsignedFile.Multi.Generic (1)
10:47:06.0237 3020 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:47:06.0643 3020 nsiproxy ( UnsignedFile.Multi.Generic ) - warning
10:47:06.0643 3020 nsiproxy - detected UnsignedFile.Multi.Generic (1)
10:47:06.0752 3020 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:47:06.0908 3020 Ntfs - ok
10:47:06.0955 3020 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
10:47:07.0298 3020 Null ( UnsignedFile.Multi.Generic ) - warning
10:47:07.0298 3020 Null - detected UnsignedFile.Multi.Generic (1)
10:47:07.0329 3020 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:47:07.0345 3020 nvraid - ok
10:47:07.0376 3020 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:47:07.0407 3020 nvstor - ok
10:47:07.0438 3020 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:47:07.0469 3020 nv_agp - ok
10:47:07.0469 3020 NwlnkFlt - ok
10:47:07.0485 3020 NwlnkFwd - ok
10:47:07.0532 3020 [ 404B0121AE1A75D9A63B6934EB07C258 ] OA013Ufd C:\Windows\system32\DRIVERS\OA013Ufd.sys
10:47:07.0875 3020 OA013Ufd ( UnsignedFile.Multi.Generic ) - warning
10:47:07.0875 3020 OA013Ufd - detected UnsignedFile.Multi.Generic (1)
10:47:07.0906 3020 [ 650BCC8FF8ED939F3F79D1E8A1CF0595 ] OA013Vid C:\Windows\system32\DRIVERS\OA013Vid.sys
10:47:08.0296 3020 OA013Vid ( UnsignedFile.Multi.Generic ) - warning
10:47:08.0296 3020 OA013Vid - detected UnsignedFile.Multi.Generic (1)
10:47:08.0359 3020 [ 7B58953E2F263421FDBB09A192712A85 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:47:08.0780 3020 ohci1394 ( UnsignedFile.Multi.Generic ) - warning
10:47:08.0780 3020 ohci1394 - detected UnsignedFile.Multi.Generic (1)
10:47:08.0920 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
10:47:09.0481 3020 p2pimsvc ( UnsignedFile.Multi.Generic ) - warning
10:47:09.0481 3020 p2pimsvc - detected UnsignedFile.Multi.Generic (1)
10:47:09.0529 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
10:47:10.0182 3020 p2psvc ( UnsignedFile.Multi.Generic ) - warning
10:47:10.0182 3020 p2psvc - detected UnsignedFile.Multi.Generic (1)
10:47:10.0237 3020 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
10:47:10.0682 3020 Parport ( UnsignedFile.Multi.Generic ) - warning
10:47:10.0682 3020 Parport - detected UnsignedFile.Multi.Generic (1)
10:47:10.0713 3020 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:47:10.0744 3020 partmgr - ok
10:47:10.0776 3020 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
10:47:11.0166 3020 PcaSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:11.0166 3020 PcaSvc - detected UnsignedFile.Multi.Generic (1)
10:47:11.0212 3020 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
10:47:11.0228 3020 pci - ok
10:47:11.0259 3020 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
10:47:11.0275 3020 pciide - ok
10:47:11.0322 3020 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:47:11.0353 3020 pcmcia - ok
10:47:11.0462 3020 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:47:11.0992 3020 PEAUTH ( UnsignedFile.Multi.Generic ) - warning
10:47:11.0992 3020 PEAUTH - detected UnsignedFile.Multi.Generic (1)
10:47:12.0102 3020 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:47:12.0492 3020 PerfHost ( UnsignedFile.Multi.Generic ) - warning
10:47:12.0492 3020 PerfHost - detected UnsignedFile.Multi.Generic (1)
10:47:12.0585 3020 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
10:47:12.0991 3020 pla ( UnsignedFile.Multi.Generic ) - warning
10:47:12.0991 3020 pla - detected UnsignedFile.Multi.Generic (1)
10:47:13.0038 3020 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:47:13.0350 3020 PlugPlay ( UnsignedFile.Multi.Generic ) - warning
10:47:13.0350 3020 PlugPlay - detected UnsignedFile.Multi.Generic (1)
10:47:13.0396 3020 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:47:13.0724 3020 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:47:13.0724 3020 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:47:13.0771 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
10:47:14.0145 3020 PNRPAutoReg ( UnsignedFile.Multi.Generic ) - warning
10:47:14.0145 3020 PNRPAutoReg - detected UnsignedFile.Multi.Generic (1)
10:47:14.0176 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
10:47:14.0551 3020 PNRPsvc ( UnsignedFile.Multi.Generic ) - warning
10:47:14.0551 3020 PNRPsvc - detected UnsignedFile.Multi.Generic (1)
10:47:14.0582 3020 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:47:15.0050 3020 PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
10:47:15.0050 3020 PolicyAgent - detected UnsignedFile.Multi.Generic (1)
10:47:15.0081 3020 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:47:15.0424 3020 PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
10:47:15.0424 3020 PptpMiniport - detected UnsignedFile.Multi.Generic (1)
10:47:15.0440 3020 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
10:47:15.0768 3020 Processor ( UnsignedFile.Multi.Generic ) - warning
10:47:15.0768 3020 Processor - detected UnsignedFile.Multi.Generic (1)
10:47:15.0799 3020 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
10:47:16.0142 3020 ProfSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:16.0142 3020 ProfSvc - detected UnsignedFile.Multi.Generic (1)
10:47:16.0173 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
10:47:16.0610 3020 ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
10:47:16.0610 3020 ProtectedStorage - detected UnsignedFile.Multi.Generic (1)
10:47:16.0641 3020 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
10:47:17.0016 3020 PSched ( UnsignedFile.Multi.Generic ) - warning
10:47:17.0016 3020 PSched - detected UnsignedFile.Multi.Generic (1)
10:47:17.0062 3020 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:47:17.0156 3020 ql2300 - ok
10:47:17.0203 3020 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:47:17.0234 3020 ql40xx - ok
10:47:17.0281 3020 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
10:47:17.0608 3020 QWAVE ( UnsignedFile.Multi.Generic ) - warning
10:47:17.0608 3020 QWAVE - detected UnsignedFile.Multi.Generic (1)
10:47:17.0640 3020 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:47:17.0998 3020 QWAVEdrv ( UnsignedFile.Multi.Generic ) - warning
10:47:17.0998 3020 QWAVEdrv - detected UnsignedFile.Multi.Generic (1)
10:47:18.0014 3020 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:47:18.0357 3020 RasAcd ( UnsignedFile.Multi.Generic ) - warning
10:47:18.0357 3020 RasAcd - detected UnsignedFile.Multi.Generic (1)
10:47:18.0388 3020 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
10:47:18.0685 3020 RasAuto ( UnsignedFile.Multi.Generic ) - warning
10:47:18.0685 3020 RasAuto - detected UnsignedFile.Multi.Generic (1)
10:47:18.0732 3020 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:47:19.0044 3020 Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
10:47:19.0044 3020 Rasl2tp - detected UnsignedFile.Multi.Generic (1)
10:47:19.0059 3020 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
10:47:19.0402 3020 RasMan ( UnsignedFile.Multi.Generic ) - warning
10:47:19.0402 3020 RasMan - detected UnsignedFile.Multi.Generic (1)
10:47:19.0434 3020 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:47:19.0777 3020 RasPppoe ( UnsignedFile.Multi.Generic ) - warning
10:47:19.0777 3020 RasPppoe - detected UnsignedFile.Multi.Generic (1)
10:47:19.0839 3020 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:47:20.0167 3020 RasSstp ( UnsignedFile.Multi.Generic ) - warning
10:47:20.0167 3020 RasSstp - detected UnsignedFile.Multi.Generic (1)
10:47:20.0198 3020 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:47:20.0557 3020 rdbss ( UnsignedFile.Multi.Generic ) - warning
10:47:20.0557 3020 rdbss - detected UnsignedFile.Multi.Generic (1)
10:47:20.0572 3020 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:47:20.0978 3020 RDPCDD ( UnsignedFile.Multi.Generic ) - warning
10:47:20.0978 3020 RDPCDD - detected UnsignedFile.Multi.Generic (1)
10:47:21.0009 3020 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
10:47:21.0477 3020 rdpdr ( UnsignedFile.Multi.Generic ) - warning
10:47:21.0477 3020 rdpdr - detected UnsignedFile.Multi.Generic (1)
10:47:21.0493 3020 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:47:21.0898 3020 RDPENCDD ( UnsignedFile.Multi.Generic ) - warning
10:47:21.0898 3020 RDPENCDD - detected UnsignedFile.Multi.Generic (1)
10:47:21.0961 3020 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:47:22.0304 3020 RDPWD ( UnsignedFile.Multi.Generic ) - warning
10:47:22.0304 3020 RDPWD - detected UnsignedFile.Multi.Generic (1)
10:47:22.0351 3020 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:47:22.0710 3020 RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
10:47:22.0710 3020 RemoteAccess - detected UnsignedFile.Multi.Generic (1)
10:47:22.0756 3020 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:47:23.0115 3020 RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
10:47:23.0115 3020 RemoteRegistry - detected UnsignedFile.Multi.Generic (1)
10:47:23.0162 3020 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
10:47:23.0521 3020 RpcLocator ( UnsignedFile.Multi.Generic ) - warning
10:47:23.0521 3020 RpcLocator - detected UnsignedFile.Multi.Generic (1)
10:47:23.0568 3020 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
10:47:23.0926 3020 RpcSs ( UnsignedFile.Multi.Generic ) - warning
10:47:23.0926 3020 RpcSs - detected UnsignedFile.Multi.Generic (1)
10:47:23.0973 3020 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:47:24.0316 3020 rspndr ( UnsignedFile.Multi.Generic ) - warning
10:47:24.0316 3020 rspndr - detected UnsignedFile.Multi.Generic (1)
10:47:24.0348 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
10:47:24.0706 3020 SamSs ( UnsignedFile.Multi.Generic ) - warning
10:47:24.0706 3020 SamSs - detected UnsignedFile.Multi.Generic (1)
10:47:24.0738 3020 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:47:24.0769 3020 sbp2port - ok
10:47:24.0831 3020 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:47:25.0206 3020 SCardSvr ( UnsignedFile.Multi.Generic ) - warning
10:47:25.0206 3020 SCardSvr - detected UnsignedFile.Multi.Generic (1)
10:47:25.0284 3020 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
10:47:25.0736 3020 Schedule ( UnsignedFile.Multi.Generic ) - warning
10:47:25.0736 3020 Schedule - detected UnsignedFile.Multi.Generic (1)
10:47:25.0767 3020 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
10:47:26.0095 3020 SCPolicySvc ( UnsignedFile.Multi.Generic ) - warning
10:47:26.0095 3020 SCPolicySvc - detected UnsignedFile.Multi.Generic (1)
10:47:26.0126 3020 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:47:26.0547 3020 SDRSVC ( UnsignedFile.Multi.Generic ) - warning
10:47:26.0547 3020 SDRSVC - detected UnsignedFile.Multi.Generic (1)
10:47:26.0578 3020 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:47:26.0937 3020 secdrv ( UnsignedFile.Multi.Generic ) - warning
10:47:26.0937 3020 secdrv - detected UnsignedFile.Multi.Generic (1)
10:47:26.0968 3020 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
10:47:27.0312 3020 seclogon ( UnsignedFile.Multi.Generic ) - warning
10:47:27.0312 3020 seclogon - detected UnsignedFile.Multi.Generic (1)
10:47:27.0343 3020 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
10:47:27.0702 3020 SENS ( UnsignedFile.Multi.Generic ) - warning
10:47:27.0702 3020 SENS - detected UnsignedFile.Multi.Generic (1)
10:47:27.0733 3020 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
10:47:28.0107 3020 Serenum ( UnsignedFile.Multi.Generic ) - warning
10:47:28.0107 3020 Serenum - detected UnsignedFile.Multi.Generic (1)
10:47:28.0138 3020 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
10:47:28.0544 3020 Serial ( UnsignedFile.Multi.Generic ) - warning
10:47:28.0544 3020 Serial - detected UnsignedFile.Multi.Generic (1)
10:47:28.0591 3020 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:47:28.0981 3020 sermouse ( UnsignedFile.Multi.Generic ) - warning
10:47:28.0981 3020 sermouse - detected UnsignedFile.Multi.Generic (1)
10:47:29.0012 3020 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
10:47:29.0433 3020 SessionEnv ( UnsignedFile.Multi.Generic ) - warning
10:47:29.0433 3020 SessionEnv - detected UnsignedFile.Multi.Generic (1)
10:47:29.0480 3020 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:47:29.0870 3020 sffdisk ( UnsignedFile.Multi.Generic ) - warning
10:47:29.0870 3020 sffdisk - detected UnsignedFile.Multi.Generic (1)
10:47:29.0901 3020 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:47:30.0276 3020 sffp_mmc ( UnsignedFile.Multi.Generic ) - warning
10:47:30.0276 3020 sffp_mmc - detected UnsignedFile.Multi.Generic (1)
10:47:30.0291 3020 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:47:30.0790 3020 sffp_sd ( UnsignedFile.Multi.Generic ) - warning
10:47:30.0790 3020 sffp_sd - detected UnsignedFile.Multi.Generic (1)
10:47:30.0806 3020 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:47:31.0227 3020 sfloppy ( UnsignedFile.Multi.Generic ) - warning
10:47:31.0227 3020 sfloppy - detected UnsignedFile.Multi.Generic (1)
10:47:31.0274 3020 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:47:31.0945 3020 SharedAccess ( UnsignedFile.Multi.Generic ) - warning
10:47:31.0945 3020 SharedAccess - detected UnsignedFile.Multi.Generic (1)
10:47:31.0976 3020 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:47:32.0600 3020 ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
10:47:32.0600 3020 ShellHWDetection - detected UnsignedFile.Multi.Generic (1)
10:47:32.0647 3020 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
10:47:32.0662 3020 SiSRaid2 - ok
10:47:32.0740 3020 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:47:32.0756 3020 SiSRaid4 - ok
10:47:32.0865 3020 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
10:47:33.0536 3020 slsvc ( UnsignedFile.Multi.Generic ) - warning
10:47:33.0536 3020 slsvc - detected UnsignedFile.Multi.Generic (1)
10:47:33.0583 3020 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
10:47:33.0957 3020 SLUINotify ( UnsignedFile.Multi.Generic ) - warning
10:47:33.0957 3020 SLUINotify - detected UnsignedFile.Multi.Generic (1)
10:47:33.0988 3020 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:47:34.0363 3020 Smb ( UnsignedFile.Multi.Generic ) - warning
10:47:34.0363 3020 Smb - detected UnsignedFile.Multi.Generic (1)
10:47:34.0441 3020 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:47:34.0768 3020 SNMPTRAP ( UnsignedFile.Multi.Generic ) - warning
10:47:34.0768 3020 SNMPTRAP - detected UnsignedFile.Multi.Generic (1)
10:47:34.0831 3020 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
10:47:34.0862 3020 spldr - ok
10:47:34.0909 3020 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
10:47:35.0252 3020 Spooler ( UnsignedFile.Multi.Generic ) - warning
10:47:35.0252 3020 Spooler - detected UnsignedFile.Multi.Generic (1)
10:47:35.0314 3020 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
10:47:35.0969 3020 srv ( UnsignedFile.Multi.Generic ) - warning
10:47:35.0969 3020 srv - detected UnsignedFile.Multi.Generic (1)
10:47:35.0989 3020 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:47:36.0343 3020 srv2 ( UnsignedFile.Multi.Generic ) - warning
10:47:36.0343 3020 srv2 - detected UnsignedFile.Multi.Generic (1)
10:47:36.0355 3020 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:47:36.0830 3020 srvnet ( UnsignedFile.Multi.Generic ) - warning
10:47:36.0830 3020 srvnet - detected UnsignedFile.Multi.Generic (1)
10:47:36.0861 3020 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:47:37.0204 3020 SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
10:47:37.0204 3020 SSDPSRV - detected UnsignedFile.Multi.Generic (1)
10:47:37.0266 3020 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:47:37.0625 3020 SstpSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:37.0625 3020 SstpSvc - detected UnsignedFile.Multi.Generic (1)
10:47:37.0703 3020 [ 74425FFA11C133D045E1C3BE2EAD481D ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:47:37.0719 3020 ssudmdm - ok
10:47:37.0875 3020 [ C5DF63AE2693C9B6B01B4A2E6C1C64AC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe
10:47:38.0280 3020 STacSV ( UnsignedFile.Multi.Generic ) - warning
10:47:38.0280 3020 STacSV - detected UnsignedFile.Multi.Generic (1)
10:47:38.0358 3020 [ BA16447226ABFD342E130D2F24F73D32 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
10:47:38.0764 3020 STHDA ( UnsignedFile.Multi.Generic ) - warning
10:47:38.0764 3020 STHDA - detected UnsignedFile.Multi.Generic (1)
10:47:38.0826 3020 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
10:47:39.0232 3020 stisvc ( UnsignedFile.Multi.Generic ) - warning
10:47:39.0232 3020 stisvc - detected UnsignedFile.Multi.Generic (1)
10:47:39.0248 3020 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:47:39.0279 3020 swenum - ok
10:47:39.0310 3020 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
10:47:39.0747 3020 swprv ( UnsignedFile.Multi.Generic ) - warning
10:47:39.0747 3020 swprv - detected UnsignedFile.Multi.Generic (1)
10:47:39.0778 3020 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
10:47:39.0794 3020 Symc8xx - ok
10:47:39.0825 3020 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
10:47:39.0840 3020 Sym_hi - ok
10:47:39.0872 3020 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
10:47:39.0903 3020 Sym_u3 - ok
10:47:39.0950 3020 [ 3178B56219E0E4FB5F95299E49B83B44 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:47:39.0981 3020 SynTP - ok
10:47:40.0043 3020 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
10:47:40.0496 3020 SysMain ( UnsignedFile.Multi.Generic ) - warning
10:47:40.0496 3020 SysMain - detected UnsignedFile.Multi.Generic (1)
10:47:40.0511 3020 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:47:40.0901 3020 TabletInputService ( UnsignedFile.Multi.Generic ) - warning
10:47:40.0917 3020 TabletInputService - detected UnsignedFile.Multi.Generic (1)
10:47:40.0948 3020 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:47:42.0929 3020 TapiSrv ( UnsignedFile.Multi.Generic ) - warning
10:47:42.0929 3020 TapiSrv - detected UnsignedFile.Multi.Generic (1)
10:47:42.0960 3020 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
10:47:43.0397 3020 TBS ( UnsignedFile.Multi.Generic ) - warning
10:47:43.0397 3020 TBS - detected UnsignedFile.Multi.Generic (1)
10:47:43.0522 3020 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:47:43.0694 3020 Tcpip - ok
10:47:43.0787 3020 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
10:47:43.0865 3020 Tcpip6 - ok
10:47:43.0912 3020 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:47:44.0505 3020 tcpipreg ( UnsignedFile.Multi.Generic ) - warning
10:47:44.0505 3020 tcpipreg - detected UnsignedFile.Multi.Generic (1)
10:47:44.0536 3020 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:47:45.0051 3020 TDPIPE ( UnsignedFile.Multi.Generic ) - warning
10:47:45.0051 3020 TDPIPE - detected UnsignedFile.Multi.Generic (1)
10:47:45.0066 3020 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:47:45.0566 3020 TDTCP ( UnsignedFile.Multi.Generic ) - warning
10:47:45.0566 3020 TDTCP - detected UnsignedFile.Multi.Generic (1)
10:47:45.0597 3020 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:47:45.0924 3020 tdx ( UnsignedFile.Multi.Generic ) - warning
10:47:45.0924 3020 tdx - detected UnsignedFile.Multi.Generic (1)
10:47:45.0956 3020 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:47:45.0987 3020 TermDD - ok
10:47:46.0034 3020 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
10:47:46.0377 3020 TermService ( UnsignedFile.Multi.Generic ) - warning
10:47:46.0377 3020 TermService - detected UnsignedFile.Multi.Generic (1)
10:47:46.0424 3020 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
10:47:46.0892 3020 Themes ( UnsignedFile.Multi.Generic ) - warning
10:47:46.0892 3020 Themes - detected UnsignedFile.Multi.Generic (1)
10:47:46.0970 3020 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
10:47:47.0469 3020 THREADORDER ( UnsignedFile.Multi.Generic ) - warning
10:47:47.0469 3020 THREADORDER - detected UnsignedFile.Multi.Generic (1)
10:47:47.0594 3020 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
10:47:48.0077 3020 TrkWks ( UnsignedFile.Multi.Generic ) - warning
10:47:48.0077 3020 TrkWks - detected UnsignedFile.Multi.Generic (1)
10:47:48.0140 3020 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:47:48.0530 3020 TrustedInstaller ( UnsignedFile.Multi.Generic ) - warning
10:47:48.0530 3020 TrustedInstaller - detected UnsignedFile.Multi.Generic (1)
10:47:48.0545 3020 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:47:48.0966 3020 tssecsrv ( UnsignedFile.Multi.Generic ) - warning
10:47:48.0966 3020 tssecsrv - detected UnsignedFile.Multi.Generic (1)
10:47:48.0998 3020 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
10:47:49.0575 3020 tunmp ( UnsignedFile.Multi.Generic ) - warning
10:47:49.0575 3020 tunmp - detected UnsignedFile.Multi.Generic (1)
10:47:49.0622 3020 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:47:50.0074 3020 tunnel ( UnsignedFile.Multi.Generic ) - warning
10:47:50.0074 3020 tunnel - detected UnsignedFile.Multi.Generic (1)
10:47:50.0136 3020 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:47:50.0168 3020 uagp35 - ok
10:47:50.0261 3020 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:47:50.0760 3020 udfs ( UnsignedFile.Multi.Generic ) - warning
10:47:50.0760 3020 udfs - detected UnsignedFile.Multi.Generic (1)
10:47:50.0854 3020 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:47:51.0260 3020 UI0Detect ( UnsignedFile.Multi.Generic ) - warning
10:47:51.0260 3020 UI0Detect - detected UnsignedFile.Multi.Generic (1)
10:47:51.0306 3020 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:47:51.0338 3020 uliagpkx - ok
10:47:51.0400 3020 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
10:47:51.0431 3020 uliahci - ok
10:47:51.0462 3020 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
10:47:51.0494 3020 UlSata - ok
10:47:51.0525 3020 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
10:47:51.0556 3020 ulsata2 - ok
10:47:51.0587 3020 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:47:52.0008 3020 umbus ( UnsignedFile.Multi.Generic ) - warning
10:47:52.0008 3020 umbus - detected UnsignedFile.Multi.Generic (1)
10:47:52.0071 3020 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
10:47:52.0492 3020 upnphost ( UnsignedFile.Multi.Generic ) - warning
10:47:52.0492 3020 upnphost - detected UnsignedFile.Multi.Generic (1)
10:47:52.0570 3020 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:47:53.0054 3020 usbccgp ( UnsignedFile.Multi.Generic ) - warning
10:47:53.0054 3020 usbccgp - detected UnsignedFile.Multi.Generic (1)
10:47:53.0116 3020 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:47:53.0631 3020 usbcir ( UnsignedFile.Multi.Generic ) - warning
10:47:53.0631 3020 usbcir - detected UnsignedFile.Multi.Generic (1)
10:47:53.0678 3020 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:47:54.0036 3020 usbehci ( UnsignedFile.Multi.Generic ) - warning
10:47:54.0036 3020 usbehci - detected UnsignedFile.Multi.Generic (1)
10:47:54.0099 3020 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:47:54.0614 3020 usbhub ( UnsignedFile.Multi.Generic ) - warning
10:47:54.0614 3020 usbhub - detected UnsignedFile.Multi.Generic (1)
10:47:54.0645 3020 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:47:55.0097 3020 usbohci ( UnsignedFile.Multi.Generic ) - warning
10:47:55.0097 3020 usbohci - detected UnsignedFile.Multi.Generic (1)
10:47:55.0144 3020 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:47:55.0565 3020 usbprint ( UnsignedFile.Multi.Generic ) - warning
10:47:55.0565 3020 usbprint - detected UnsignedFile.Multi.Generic (1)
10:47:55.0596 3020 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:47:56.0002 3020 usbscan ( UnsignedFile.Multi.Generic ) - warning
10:47:56.0002 3020 usbscan - detected UnsignedFile.Multi.Generic (1)
10:47:56.0049 3020 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:47:56.0454 3020 USBSTOR ( UnsignedFile.Multi.Generic ) - warning
10:47:56.0454 3020 USBSTOR - detected UnsignedFile.Multi.Generic (1)
10:47:56.0501 3020 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:47:56.0922 3020 usbuhci ( UnsignedFile.Multi.Generic ) - warning
10:47:56.0922 3020 usbuhci - detected UnsignedFile.Multi.Generic (1)
10:47:56.0985 3020 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:47:57.0453 3020 usbvideo ( UnsignedFile.Multi.Generic ) - warning
10:47:57.0453 3020 usbvideo - detected UnsignedFile.Multi.Generic (1)
10:47:57.0500 3020 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
10:47:57.0983 3020 UxSms ( UnsignedFile.Multi.Generic ) - warning
10:47:57.0983 3020 UxSms - detected UnsignedFile.Multi.Generic (1)
10:47:58.0061 3020 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
10:47:58.0545 3020 vds ( UnsignedFile.Multi.Generic ) - warning
10:47:58.0545 3020 vds - detected UnsignedFile.Multi.Generic (1)
10:47:58.0592 3020 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:47:58.0982 3020 vga ( UnsignedFile.Multi.Generic ) - warning
10:47:58.0982 3020 vga - detected UnsignedFile.Multi.Generic (1)
10:47:59.0013 3020 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
10:47:59.0465 3020 VgaSave ( UnsignedFile.Multi.Generic ) - warning
10:47:59.0465 3020 VgaSave - detected UnsignedFile.Multi.Generic (1)
10:47:59.0528 3020 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
10:47:59.0543 3020 viaide - ok
10:47:59.0559 3020 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:47:59.0590 3020 volmgr - ok
10:47:59.0684 3020 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:47:59.0793 3020 volmgrx - ok
10:47:59.0824 3020 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:47:59.0871 3020 volsnap - ok
10:47:59.0902 3020 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:47:59.0933 3020 vsmraid - ok
10:48:00.0105 3020 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
10:48:00.0791 3020 VSS ( UnsignedFile.Multi.Generic ) - warning
10:48:00.0791 3020 VSS - detected UnsignedFile.Multi.Generic (1)
10:48:00.0869 3020 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
10:48:01.0400 3020 W32Time ( UnsignedFile.Multi.Generic ) - warning
10:48:01.0400 3020 W32Time - detected UnsignedFile.Multi.Generic (1)
10:48:01.0446 3020 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:48:01.0852 3020 WacomPen ( UnsignedFile.Multi.Generic ) - warning
10:48:01.0852 3020 WacomPen - detected UnsignedFile.Multi.Generic (1)
10:48:01.0899 3020 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
10:48:02.0351 3020 Wanarp ( UnsignedFile.Multi.Generic ) - warning
10:48:02.0351 3020 Wanarp - detected UnsignedFile.Multi.Generic (1)
10:48:02.0382 3020 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:48:02.0913 3020 Wanarpv6 ( UnsignedFile.Multi.Generic ) - warning
10:48:02.0913 3020 Wanarpv6 - detected UnsignedFile.Multi.Generic (1)
10:48:02.0991 3020 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:48:03.0615 3020 wcncsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:03.0615 3020 wcncsvc - detected UnsignedFile.Multi.Generic (1)
10:48:03.0646 3020 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:48:04.0114 3020 WcsPlugInService ( UnsignedFile.Multi.Generic ) - warning
10:48:04.0114 3020 WcsPlugInService - detected UnsignedFile.Multi.Generic (1)
10:48:04.0176 3020 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
10:48:04.0192 3020 Wd - ok
10:48:04.0286 3020 [ DBB4397D703A755FACB05486C449C507 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:48:04.0348 3020 Wdf01000 - ok
10:48:04.0379 3020 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:48:04.0847 3020 WdiServiceHost ( UnsignedFile.Multi.Generic ) - warning
10:48:04.0847 3020 WdiServiceHost - detected UnsignedFile.Multi.Generic (1)
10:48:04.0878 3020 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:48:05.0378 3020 WdiSystemHost ( UnsignedFile.Multi.Generic ) - warning
10:48:05.0378 3020 WdiSystemHost - detected UnsignedFile.Multi.Generic (1)
10:48:05.0456 3020 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
10:48:06.0033 3020 WebClient ( UnsignedFile.Multi.Generic ) - warning
10:48:06.0033 3020 WebClient - detected UnsignedFile.Multi.Generic (1)
10:48:06.0095 3020 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:48:10.0120 3020 Wecsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:10.0120 3020 Wecsvc - detected UnsignedFile.Multi.Generic (1)
10:48:10.0167 3020 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:48:10.0635 3020 wercplsupport ( UnsignedFile.Multi.Generic ) - warning
10:48:10.0635 3020 wercplsupport - detected UnsignedFile.Multi.Generic (1)
10:48:10.0682 3020 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
10:48:11.0150 3020 WerSvc ( UnsignedFile.Multi.Generic ) - warning
10:48:11.0150 3020 WerSvc - detected UnsignedFile.Multi.Generic (1)
10:48:11.0228 3020 WinDefend - ok
10:48:11.0243 3020 WinHttpAutoProxySvc - ok
10:48:11.0399 3020 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:48:11.0914 3020 Winmgmt ( UnsignedFile.Multi.Generic ) - warning
10:48:11.0914 3020 Winmgmt - detected UnsignedFile.Multi.Generic (1)
10:48:11.0914 3020 WinRM - ok
10:48:12.0054 3020 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:48:12.0694 3020 Wlansvc ( UnsignedFile.Multi.Generic ) - warning
10:48:12.0694 3020 Wlansvc - detected UnsignedFile.Multi.Generic (1)
10:48:12.0725 3020 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:48:13.0365 3020 WmiAcpi ( UnsignedFile.Multi.Generic ) - warning
10:48:13.0365 3020 WmiAcpi - detected UnsignedFile.Multi.Generic (1)
10:48:13.0412 3020 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:48:13.0848 3020 wmiApSrv ( UnsignedFile.Multi.Generic ) - warning
10:48:13.0848 3020 wmiApSrv - detected UnsignedFile.Multi.Generic (1)
10:48:13.0895 3020 WMPNetworkSvc - ok
10:48:13.0926 3020 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:48:14.0410 3020 WPCSvc ( UnsignedFile.Multi.Generic ) - warning
10:48:14.0410 3020 WPCSvc - detected UnsignedFile.Multi.Generic (1)
10:48:14.0472 3020 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:48:14.0956 3020 WPDBusEnum ( UnsignedFile.Multi.Generic ) - warning
10:48:14.0956 3020 WPDBusEnum - detected UnsignedFile.Multi.Generic (1)
10:48:15.0034 3020 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
10:48:15.0533 3020 WpdUsb ( UnsignedFile.Multi.Generic ) - warning
10:48:15.0533 3020 WpdUsb - detected UnsignedFile.Multi.Generic (1)
10:48:16.0001 3020 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:48:16.0048 3020 WPFFontCache_v0400 - ok
10:48:16.0110 3020 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:48:16.0563 3020 ws2ifsl ( UnsignedFile.Multi.Generic ) - warning
10:48:16.0563 3020 ws2ifsl - detected UnsignedFile.Multi.Generic (1)
10:48:16.0594 3020 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll
10:48:17.0031 3020 wscsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:17.0031 3020 wscsvc - detected UnsignedFile.Multi.Generic (1)
10:48:17.0031 3020 WSearch - ok
10:48:17.0296 3020 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:48:17.0483 3020 wuauserv - ok
10:48:17.0577 3020 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:48:18.0170 3020 WUDFRd ( UnsignedFile.Multi.Generic ) - warning
10:48:18.0170 3020 WUDFRd - detected UnsignedFile.Multi.Generic (1)
10:48:18.0216 3020 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:48:18.0622 3020 wudfsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:18.0622 3020 wudfsvc - detected UnsignedFile.Multi.Generic (1)
10:48:18.0684 3020 [ D433F6726A727B0528F6E39F423FE1FD ] yksvc C:\Windows\System32\ykx64mpcoinst.dll
10:48:19.0199 3020 yksvc ( UnsignedFile.Multi.Generic ) - warning
10:48:19.0199 3020 yksvc - detected UnsignedFile.Multi.Generic (1)
10:48:19.0293 3020 [ 541CBA0F3F679CC6E5ED4967F3FD4F6C ] yukonx64 C:\Windows\system32\DRIVERS\yk60x64.sys
10:48:19.0683 3020 yukonx64 ( UnsignedFile.Multi.Generic ) - warning
10:48:19.0683 3020 yukonx64 - detected UnsignedFile.Multi.Generic (1)
10:48:19.0714 3020 ================ Scan global ===============================
10:48:19.0745 3020 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
10:48:19.0823 3020 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
10:48:19.0839 3020 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
10:48:19.0932 3020 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
10:48:19.0932 3020 [Global] - ok
10:48:19.0932 3020 ================ Scan MBR ==================================
10:48:19.0964 3020 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
10:48:21.0664 3020 \Device\Harddisk0\DR0 - ok
10:48:21.0664 3020 ================ Scan VBR ==================================
10:48:21.0695 3020 [ BC7E299168F34C973841D8D393D8CFD4 ] \Device\Harddisk0\DR0\Partition1
10:48:21.0711 3020 \Device\Harddisk0\DR0\Partition1 - ok
10:48:21.0726 3020 [ 13660CE30A37921600294F02FD687243 ] \Device\Harddisk0\DR0\Partition2
10:48:21.0742 3020 \Device\Harddisk0\DR0\Partition2 - ok
10:48:21.0742 3020 ============================================================
10:48:21.0742 3020 Scan finished
10:48:21.0742 3020 ============================================================
10:48:21.0758 3696 Detected object count: 254
10:48:21.0758 3696 Actual detected object count: 254
|
|
19.11.2012, 11:03
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Bitte das Log vollständig posten, Screenshots davon bringen nichts
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.11.2012, 11:05
| #21 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Hab ich doch im vorherigen Post unter den Screenshots gemacht mit [code] [\code]. War das nicht richtig? Hier ist das komplette Log nochmal: Code:
ATTFilter 10:45:21.0427 3592 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:45:21.0737 3592 ============================================================
10:45:21.0737 3592 Current date / time: 2012/11/19 10:45:21.0737
10:45:21.0737 3592 SystemInfo:
10:45:21.0737 3592
10:45:21.0737 3592 OS Version: 6.0.6002 ServicePack: 2.0
10:45:21.0737 3592 Product type: Workstation
10:45:21.0737 3592 ComputerName: NAME
10:45:21.0737 3592 UserName: Office-PC
10:45:21.0737 3592 Windows directory: C:\Windows
10:45:21.0737 3592 System windows directory: C:\Windows
10:45:21.0737 3592 Running under WOW64
10:45:21.0737 3592 Processor architecture: Intel x64
10:45:21.0737 3592 Number of processors: 2
10:45:21.0737 3592 Page size: 0x1000
10:45:21.0737 3592 Boot type: Normal boot
10:45:21.0737 3592 ============================================================
10:45:25.0247 3592 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:45:25.0257 3592 ============================================================
10:45:25.0257 3592 \Device\Harddisk0\DR0:
10:45:25.0257 3592 MBR partitions:
10:45:25.0257 3592 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x9C40000
10:45:25.0257 3592 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C54000, BlocksNum 0x1B7DA000
10:45:25.0257 3592 ============================================================
10:45:25.0297 3592 C: <-> \Device\Harddisk0\DR0\Partition1
10:45:25.0397 3592 D: <-> \Device\Harddisk0\DR0\Partition2
10:45:25.0397 3592 ============================================================
10:45:25.0397 3592 Initialize success
10:45:25.0397 3592 ============================================================
10:45:58.0791 3020 ============================================================
10:45:58.0791 3020 Scan started
10:45:58.0791 3020 Mode: Manual; SigCheck; TDLFS;
10:45:58.0791 3020 ============================================================
10:45:59.0493 3020 ================ Scan system memory ========================
10:45:59.0493 3020 System memory - ok
10:45:59.0508 3020 ================ Scan services =============================
10:46:00.0148 3020 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
10:46:00.0351 3020 ACPI - ok
10:46:00.0491 3020 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:46:00.0507 3020 AdobeARMservice - ok
10:46:00.0569 3020 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:46:00.0631 3020 adp94xx - ok
10:46:00.0663 3020 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:46:00.0709 3020 adpahci - ok
10:46:00.0725 3020 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
10:46:00.0756 3020 adpu160m - ok
10:46:00.0772 3020 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:46:00.0803 3020 adpu320 - ok
10:46:00.0850 3020 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:46:01.0396 3020 AeLookupSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:01.0396 3020 AeLookupSvc - detected UnsignedFile.Multi.Generic (1)
10:46:01.0599 3020 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe
10:46:01.0989 3020 AESTFilters ( UnsignedFile.Multi.Generic ) - warning
10:46:01.0989 3020 AESTFilters - detected UnsignedFile.Multi.Generic (1)
10:46:02.0051 3020 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
10:46:02.0441 3020 AFD ( UnsignedFile.Multi.Generic ) - warning
10:46:02.0441 3020 AFD - detected UnsignedFile.Multi.Generic (1)
10:46:02.0472 3020 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:46:02.0503 3020 agp440 - ok
10:46:02.0550 3020 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
10:46:02.0581 3020 aic78xx - ok
10:46:02.0597 3020 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
10:46:02.0971 3020 ALG ( UnsignedFile.Multi.Generic ) - warning
10:46:02.0971 3020 ALG - detected UnsignedFile.Multi.Generic (1)
10:46:03.0018 3020 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
10:46:03.0034 3020 aliide - ok
10:46:03.0065 3020 [ B5E2434FC851698C1F119CF1C3935A50 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:46:03.0580 3020 AMD External Events Utility ( UnsignedFile.Multi.Generic ) - warning
10:46:03.0595 3020 AMD External Events Utility - detected UnsignedFile.Multi.Generic (1)
10:46:03.0611 3020 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
10:46:03.0642 3020 amdide - ok
10:46:03.0673 3020 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:46:04.0063 3020 AmdK8 ( UnsignedFile.Multi.Generic ) - warning
10:46:04.0063 3020 AmdK8 - detected UnsignedFile.Multi.Generic (1)
10:46:05.0249 3020 [ 9E3B4946F7E1BCA0B763E19D81EDBF2C ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
10:46:06.0123 3020 amdkmdag ( UnsignedFile.Multi.Generic ) - warning
10:46:06.0123 3020 amdkmdag - detected UnsignedFile.Multi.Generic (1)
10:46:06.0154 3020 [ B9E1C7B7F1865F99B16FF2E1BB94EDB6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
10:46:06.0606 3020 amdkmdap ( UnsignedFile.Multi.Generic ) - warning
10:46:06.0606 3020 amdkmdap - detected UnsignedFile.Multi.Generic (1)
10:46:06.0762 3020 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
10:46:06.0793 3020 AntiVirSchedulerService - ok
10:46:06.0840 3020 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
10:46:06.0856 3020 AntiVirService - ok
10:46:06.0903 3020 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
10:46:07.0308 3020 Appinfo ( UnsignedFile.Multi.Generic ) - warning
10:46:07.0308 3020 Appinfo - detected UnsignedFile.Multi.Generic (1)
10:46:07.0324 3020 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
10:46:07.0339 3020 arc - ok
10:46:07.0371 3020 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:46:07.0402 3020 arcsas - ok
10:46:07.0761 3020 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:46:07.0792 3020 aspnet_state - ok
10:46:07.0839 3020 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:46:08.0244 3020 AsyncMac ( UnsignedFile.Multi.Generic ) - warning
10:46:08.0244 3020 AsyncMac - detected UnsignedFile.Multi.Generic (1)
10:46:08.0275 3020 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
10:46:08.0291 3020 atapi - ok
10:46:08.0353 3020 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:46:08.0806 3020 AudioEndpointBuilder ( UnsignedFile.Multi.Generic ) - warning
10:46:08.0806 3020 AudioEndpointBuilder - detected UnsignedFile.Multi.Generic (1)
10:46:08.0821 3020 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:46:09.0274 3020 AudioSrv ( UnsignedFile.Multi.Generic ) - warning
10:46:09.0274 3020 AudioSrv - detected UnsignedFile.Multi.Generic (1)
10:46:09.0321 3020 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
10:46:09.0367 3020 avgntflt - ok
10:46:09.0383 3020 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
10:46:09.0399 3020 avipbb - ok
10:46:09.0414 3020 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
10:46:09.0430 3020 avkmgr - ok
10:46:09.0523 3020 [ D32F962B71FEE6BDAAEE630BB2C17280 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
10:46:09.0617 3020 BCM43XX - ok
10:46:09.0726 3020 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
10:46:10.0069 3020 BFE ( UnsignedFile.Multi.Generic ) - warning
10:46:10.0069 3020 BFE - detected UnsignedFile.Multi.Generic (1)
10:46:10.0132 3020 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
10:46:10.0584 3020 BITS ( UnsignedFile.Multi.Generic ) - warning
10:46:10.0584 3020 BITS - detected UnsignedFile.Multi.Generic (1)
10:46:10.0631 3020 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
10:46:10.0990 3020 blbdrive ( UnsignedFile.Multi.Generic ) - warning
10:46:10.0990 3020 blbdrive - detected UnsignedFile.Multi.Generic (1)
10:46:11.0021 3020 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:46:11.0442 3020 bowser ( UnsignedFile.Multi.Generic ) - warning
10:46:11.0442 3020 bowser - detected UnsignedFile.Multi.Generic (1)
10:46:11.0473 3020 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
10:46:11.0832 3020 BrFiltLo ( UnsignedFile.Multi.Generic ) - warning
10:46:11.0832 3020 BrFiltLo - detected UnsignedFile.Multi.Generic (1)
10:46:11.0832 3020 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
10:46:12.0222 3020 BrFiltUp ( UnsignedFile.Multi.Generic ) - warning
10:46:12.0222 3020 BrFiltUp - detected UnsignedFile.Multi.Generic (1)
10:46:12.0253 3020 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
10:46:12.0643 3020 Browser ( UnsignedFile.Multi.Generic ) - warning
10:46:12.0643 3020 Browser - detected UnsignedFile.Multi.Generic (1)
10:46:12.0690 3020 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
10:46:13.0065 3020 Brserid ( UnsignedFile.Multi.Generic ) - warning
10:46:13.0065 3020 Brserid - detected UnsignedFile.Multi.Generic (1)
10:46:13.0096 3020 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
10:46:13.0455 3020 BrSerWdm ( UnsignedFile.Multi.Generic ) - warning
10:46:13.0455 3020 BrSerWdm - detected UnsignedFile.Multi.Generic (1)
10:46:13.0501 3020 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
10:46:13.0860 3020 BrUsbMdm ( UnsignedFile.Multi.Generic ) - warning
10:46:13.0860 3020 BrUsbMdm - detected UnsignedFile.Multi.Generic (1)
10:46:13.0860 3020 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
10:46:14.0219 3020 BrUsbSer ( UnsignedFile.Multi.Generic ) - warning
10:46:14.0219 3020 BrUsbSer - detected UnsignedFile.Multi.Generic (1)
10:46:14.0235 3020 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:46:14.0562 3020 BTHMODEM ( UnsignedFile.Multi.Generic ) - warning
10:46:14.0562 3020 BTHMODEM - detected UnsignedFile.Multi.Generic (1)
10:46:14.0593 3020 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:46:14.0937 3020 cdfs ( UnsignedFile.Multi.Generic ) - warning
10:46:14.0937 3020 cdfs - detected UnsignedFile.Multi.Generic (1)
10:46:14.0983 3020 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:46:15.0295 3020 cdrom ( UnsignedFile.Multi.Generic ) - warning
10:46:15.0295 3020 cdrom - detected UnsignedFile.Multi.Generic (1)
10:46:15.0358 3020 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
10:46:15.0888 3020 CertPropSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:15.0888 3020 CertPropSvc - detected UnsignedFile.Multi.Generic (1)
10:46:15.0935 3020 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
10:46:16.0419 3020 circlass ( UnsignedFile.Multi.Generic ) - warning
10:46:16.0419 3020 circlass - detected UnsignedFile.Multi.Generic (1)
10:46:16.0512 3020 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
10:46:16.0653 3020 CLFS - ok
10:46:16.0731 3020 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:46:16.0746 3020 clr_optimization_v2.0.50727_32 - ok
10:46:16.0840 3020 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:46:16.0855 3020 clr_optimization_v2.0.50727_64 - ok
10:46:16.0965 3020 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:46:16.0980 3020 clr_optimization_v4.0.30319_32 - ok
10:46:17.0043 3020 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:46:17.0058 3020 clr_optimization_v4.0.30319_64 - ok
10:46:17.0121 3020 [ B52D9A14CE4101577900A364BA86F3DF ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:46:17.0651 3020 CmBatt ( UnsignedFile.Multi.Generic ) - warning
10:46:17.0651 3020 CmBatt - detected UnsignedFile.Multi.Generic (1)
10:46:17.0698 3020 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:46:17.0713 3020 cmdide - ok
10:46:17.0745 3020 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:46:17.0760 3020 Compbatt - ok
10:46:17.0776 3020 COMSysApp - ok
10:46:17.0791 3020 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:46:17.0807 3020 crcdisk - ok
10:46:17.0901 3020 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:46:18.0369 3020 CryptSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:18.0369 3020 CryptSvc - detected UnsignedFile.Multi.Generic (1)
10:46:18.0431 3020 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
10:46:18.0883 3020 DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
10:46:18.0883 3020 DcomLaunch - detected UnsignedFile.Multi.Generic (1)
10:46:18.0946 3020 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:46:19.0367 3020 DfsC ( UnsignedFile.Multi.Generic ) - warning
10:46:19.0367 3020 DfsC - detected UnsignedFile.Multi.Generic (1)
10:46:19.0710 3020 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
10:46:20.0256 3020 DFSR ( UnsignedFile.Multi.Generic ) - warning
10:46:20.0256 3020 DFSR - detected UnsignedFile.Multi.Generic (1)
10:46:20.0303 3020 [ 105373D52E71D2D1355AD3ACD18259C3 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
10:46:20.0319 3020 dg_ssudbus - ok
10:46:20.0412 3020 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
10:46:20.0724 3020 Dhcp ( UnsignedFile.Multi.Generic ) - warning
10:46:20.0724 3020 Dhcp - detected UnsignedFile.Multi.Generic (1)
10:46:20.0755 3020 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
10:46:20.0771 3020 disk - ok
10:46:20.0833 3020 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:46:21.0145 3020 Dnscache ( UnsignedFile.Multi.Generic ) - warning
10:46:21.0145 3020 Dnscache - detected UnsignedFile.Multi.Generic (1)
10:46:21.0208 3020 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
10:46:21.0645 3020 dot3svc ( UnsignedFile.Multi.Generic ) - warning
10:46:21.0645 3020 dot3svc - detected UnsignedFile.Multi.Generic (1)
10:46:21.0691 3020 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:46:22.0097 3020 Dot4 ( UnsignedFile.Multi.Generic ) - warning
10:46:22.0097 3020 Dot4 - detected UnsignedFile.Multi.Generic (1)
10:46:22.0159 3020 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:46:22.0581 3020 Dot4Print ( UnsignedFile.Multi.Generic ) - warning
10:46:22.0581 3020 Dot4Print - detected UnsignedFile.Multi.Generic (1)
10:46:22.0612 3020 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:46:22.0939 3020 dot4usb ( UnsignedFile.Multi.Generic ) - warning
10:46:22.0939 3020 dot4usb - detected UnsignedFile.Multi.Generic (1)
10:46:22.0986 3020 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
10:46:23.0314 3020 DPS ( UnsignedFile.Multi.Generic ) - warning
10:46:23.0314 3020 DPS - detected UnsignedFile.Multi.Generic (1)
10:46:23.0345 3020 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:46:23.0829 3020 drmkaud ( UnsignedFile.Multi.Generic ) - warning
10:46:23.0829 3020 drmkaud - detected UnsignedFile.Multi.Generic (1)
10:46:23.0891 3020 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:46:23.0953 3020 DXGKrnl - ok
10:46:24.0047 3020 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
10:46:24.0562 3020 E1G60 ( UnsignedFile.Multi.Generic ) - warning
10:46:24.0562 3020 E1G60 - detected UnsignedFile.Multi.Generic (1)
10:46:24.0624 3020 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
10:46:25.0030 3020 EapHost ( UnsignedFile.Multi.Generic ) - warning
10:46:25.0030 3020 EapHost - detected UnsignedFile.Multi.Generic (1)
10:46:25.0061 3020 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
10:46:25.0092 3020 Ecache - ok
10:46:25.0201 3020 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:46:25.0669 3020 ehRecvr ( UnsignedFile.Multi.Generic ) - warning
10:46:25.0669 3020 ehRecvr - detected UnsignedFile.Multi.Generic (1)
10:46:25.0747 3020 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
10:46:26.0169 3020 ehSched ( UnsignedFile.Multi.Generic ) - warning
10:46:26.0169 3020 ehSched - detected UnsignedFile.Multi.Generic (1)
10:46:26.0262 3020 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
10:46:26.0683 3020 ehstart ( UnsignedFile.Multi.Generic ) - warning
10:46:26.0683 3020 ehstart - detected UnsignedFile.Multi.Generic (1)
10:46:26.0730 3020 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:46:26.0777 3020 elxstor - ok
10:46:26.0824 3020 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
10:46:27.0697 3020 EMDMgmt ( UnsignedFile.Multi.Generic ) - warning
10:46:27.0697 3020 EMDMgmt - detected UnsignedFile.Multi.Generic (1)
10:46:27.0729 3020 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:46:28.0228 3020 ErrDev ( UnsignedFile.Multi.Generic ) - warning
10:46:28.0228 3020 ErrDev - detected UnsignedFile.Multi.Generic (1)
10:46:28.0275 3020 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
10:46:28.0633 3020 EventSystem ( UnsignedFile.Multi.Generic ) - warning
10:46:28.0633 3020 EventSystem - detected UnsignedFile.Multi.Generic (1)
10:46:28.0696 3020 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
10:46:29.0179 3020 exfat ( UnsignedFile.Multi.Generic ) - warning
10:46:29.0179 3020 exfat - detected UnsignedFile.Multi.Generic (1)
10:46:29.0257 3020 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:46:29.0663 3020 fastfat ( UnsignedFile.Multi.Generic ) - warning
10:46:29.0663 3020 fastfat - detected UnsignedFile.Multi.Generic (1)
10:46:29.0710 3020 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:46:30.0131 3020 fdc ( UnsignedFile.Multi.Generic ) - warning
10:46:30.0131 3020 fdc - detected UnsignedFile.Multi.Generic (1)
10:46:30.0162 3020 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
10:46:30.0615 3020 fdPHost ( UnsignedFile.Multi.Generic ) - warning
10:46:30.0615 3020 fdPHost - detected UnsignedFile.Multi.Generic (1)
10:46:30.0661 3020 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
10:46:31.0036 3020 FDResPub ( UnsignedFile.Multi.Generic ) - warning
10:46:31.0036 3020 FDResPub - detected UnsignedFile.Multi.Generic (1)
10:46:31.0067 3020 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:46:31.0098 3020 FileInfo - ok
10:46:31.0145 3020 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:46:31.0597 3020 Filetrace ( UnsignedFile.Multi.Generic ) - warning
10:46:31.0597 3020 Filetrace - detected UnsignedFile.Multi.Generic (1)
10:46:31.0613 3020 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:46:32.0019 3020 flpydisk ( UnsignedFile.Multi.Generic ) - warning
10:46:32.0019 3020 flpydisk - detected UnsignedFile.Multi.Generic (1)
10:46:32.0050 3020 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:46:32.0081 3020 FltMgr - ok
10:46:32.0175 3020 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
10:46:32.0861 3020 FontCache ( UnsignedFile.Multi.Generic ) - warning
10:46:32.0861 3020 FontCache - detected UnsignedFile.Multi.Generic (1)
10:46:32.0955 3020 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:46:32.0970 3020 FontCache3.0.0.0 - ok
10:46:33.0017 3020 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:46:33.0391 3020 Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
10:46:33.0391 3020 Fs_Rec - detected UnsignedFile.Multi.Generic (1)
10:46:33.0485 3020 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:46:33.0501 3020 gagp30kx - ok
10:46:33.0579 3020 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
10:46:34.0031 3020 gpsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:34.0031 3020 gpsvc - detected UnsignedFile.Multi.Generic (1)
10:46:34.0078 3020 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:46:34.0483 3020 HdAudAddService ( UnsignedFile.Multi.Generic ) - warning
10:46:34.0483 3020 HdAudAddService - detected UnsignedFile.Multi.Generic (1)
10:46:34.0717 3020 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:46:35.0279 3020 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
10:46:35.0279 3020 HDAudBus - detected UnsignedFile.Multi.Generic (1)
10:46:35.0326 3020 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:46:35.0685 3020 HidBth ( UnsignedFile.Multi.Generic ) - warning
10:46:35.0685 3020 HidBth - detected UnsignedFile.Multi.Generic (1)
10:46:35.0700 3020 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
10:46:36.0075 3020 HidIr ( UnsignedFile.Multi.Generic ) - warning
10:46:36.0075 3020 HidIr - detected UnsignedFile.Multi.Generic (1)
10:46:36.0106 3020 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
10:46:36.0589 3020 hidserv ( UnsignedFile.Multi.Generic ) - warning
10:46:36.0589 3020 hidserv - detected UnsignedFile.Multi.Generic (1)
10:46:36.0605 3020 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:46:36.0995 3020 HidUsb ( UnsignedFile.Multi.Generic ) - warning
10:46:36.0995 3020 HidUsb - detected UnsignedFile.Multi.Generic (1)
10:46:37.0026 3020 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
10:46:37.0432 3020 hkmsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:37.0432 3020 hkmsvc - detected UnsignedFile.Multi.Generic (1)
10:46:37.0479 3020 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
10:46:37.0510 3020 HpCISSs - ok
10:46:37.0619 3020 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:46:38.0087 3020 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
10:46:38.0087 3020 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
10:46:38.0165 3020 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:46:38.0539 3020 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:38.0539 3020 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
10:46:38.0586 3020 [ D972F48D0CE396759B788693CD665926 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:46:39.0054 3020 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
10:46:39.0054 3020 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
10:46:39.0101 3020 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:46:39.0491 3020 HTTP ( UnsignedFile.Multi.Generic ) - warning
10:46:39.0491 3020 HTTP - detected UnsignedFile.Multi.Generic (1)
10:46:39.0522 3020 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
10:46:39.0553 3020 i2omp - ok
10:46:39.0585 3020 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:46:39.0928 3020 i8042prt ( UnsignedFile.Multi.Generic ) - warning
10:46:39.0928 3020 i8042prt - detected UnsignedFile.Multi.Generic (1)
10:46:39.0975 3020 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
10:46:40.0006 3020 iaStorV - ok
10:46:40.0068 3020 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:46:40.0162 3020 idsvc - ok
10:46:40.0224 3020 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:46:40.0255 3020 iirsp - ok
10:46:40.0333 3020 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
10:46:40.0786 3020 IKEEXT ( UnsignedFile.Multi.Generic ) - warning
10:46:40.0786 3020 IKEEXT - detected UnsignedFile.Multi.Generic (1)
10:46:41.0332 3020 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:46:41.0722 3020 IntcAzAudAddService - ok
10:46:41.0784 3020 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
10:46:41.0800 3020 intelide - ok
10:46:41.0815 3020 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:46:42.0143 3020 intelppm ( UnsignedFile.Multi.Generic ) - warning
10:46:42.0143 3020 intelppm - detected UnsignedFile.Multi.Generic (1)
10:46:42.0205 3020 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:46:42.0580 3020 IPBusEnum ( UnsignedFile.Multi.Generic ) - warning
10:46:42.0580 3020 IPBusEnum - detected UnsignedFile.Multi.Generic (1)
10:46:42.0627 3020 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:46:43.0219 3020 IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
10:46:43.0219 3020 IpFilterDriver - detected UnsignedFile.Multi.Generic (1)
10:46:43.0313 3020 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:46:43.0843 3020 iphlpsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:43.0843 3020 iphlpsvc - detected UnsignedFile.Multi.Generic (1)
10:46:43.0859 3020 IpInIp - ok
10:46:43.0875 3020 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
10:46:44.0187 3020 IPMIDRV ( UnsignedFile.Multi.Generic ) - warning
10:46:44.0187 3020 IPMIDRV - detected UnsignedFile.Multi.Generic (1)
10:46:44.0233 3020 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
10:46:44.0545 3020 IPNAT ( UnsignedFile.Multi.Generic ) - warning
10:46:44.0545 3020 IPNAT - detected UnsignedFile.Multi.Generic (1)
10:46:44.0545 3020 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:46:44.0842 3020 IRENUM ( UnsignedFile.Multi.Generic ) - warning
10:46:44.0842 3020 IRENUM - detected UnsignedFile.Multi.Generic (1)
10:46:44.0873 3020 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:46:44.0889 3020 isapnp - ok
10:46:44.0935 3020 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
10:46:44.0951 3020 iScsiPrt - ok
10:46:44.0998 3020 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
10:46:45.0013 3020 iteatapi - ok
10:46:45.0060 3020 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
10:46:45.0076 3020 iteraid - ok
10:46:45.0123 3020 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:46:45.0138 3020 kbdclass - ok
10:46:45.0185 3020 [ BF8783A5066CFECF45095459E8010FA7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:46:45.0575 3020 kbdhid ( UnsignedFile.Multi.Generic ) - warning
10:46:45.0575 3020 kbdhid - detected UnsignedFile.Multi.Generic (1)
10:46:45.0622 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
10:46:45.0965 3020 KeyIso ( UnsignedFile.Multi.Generic ) - warning
10:46:45.0965 3020 KeyIso - detected UnsignedFile.Multi.Generic (1)
10:46:46.0012 3020 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:46:46.0059 3020 KSecDD - ok
10:46:46.0105 3020 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:46:46.0605 3020 ksthunk ( UnsignedFile.Multi.Generic ) - warning
10:46:46.0605 3020 ksthunk - detected UnsignedFile.Multi.Generic (1)
10:46:46.0651 3020 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
10:46:47.0041 3020 KtmRm ( UnsignedFile.Multi.Generic ) - warning
10:46:47.0041 3020 KtmRm - detected UnsignedFile.Multi.Generic (1)
10:46:47.0073 3020 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:46:47.0385 3020 LanmanServer ( UnsignedFile.Multi.Generic ) - warning
10:46:47.0385 3020 LanmanServer - detected UnsignedFile.Multi.Generic (1)
10:46:47.0431 3020 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:46:47.0775 3020 LanmanWorkstation ( UnsignedFile.Multi.Generic ) - warning
10:46:47.0775 3020 LanmanWorkstation - detected UnsignedFile.Multi.Generic (1)
10:46:47.0806 3020 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:46:48.0102 3020 lltdio ( UnsignedFile.Multi.Generic ) - warning
10:46:48.0102 3020 lltdio - detected UnsignedFile.Multi.Generic (1)
10:46:48.0165 3020 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:46:48.0508 3020 lltdsvc ( UnsignedFile.Multi.Generic ) - warning
10:46:48.0508 3020 lltdsvc - detected UnsignedFile.Multi.Generic (1)
10:46:48.0523 3020 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:46:49.0007 3020 lmhosts ( UnsignedFile.Multi.Generic ) - warning
10:46:49.0007 3020 lmhosts - detected UnsignedFile.Multi.Generic (1)
10:46:49.0038 3020 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:46:49.0069 3020 LSI_FC - ok
10:46:49.0101 3020 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:46:49.0132 3020 LSI_SAS - ok
10:46:49.0147 3020 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:46:49.0179 3020 LSI_SCSI - ok
10:46:49.0210 3020 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
10:46:49.0537 3020 luafv ( UnsignedFile.Multi.Generic ) - warning
10:46:49.0537 3020 luafv - detected UnsignedFile.Multi.Generic (1)
10:46:49.0569 3020 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:46:49.0990 3020 Mcx2Svc ( UnsignedFile.Multi.Generic ) - warning
10:46:49.0990 3020 Mcx2Svc - detected UnsignedFile.Multi.Generic (1)
10:46:50.0037 3020 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
10:46:50.0052 3020 megasas - ok
10:46:50.0099 3020 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
10:46:50.0130 3020 MegaSR - ok
10:46:50.0161 3020 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
10:46:50.0520 3020 MMCSS ( UnsignedFile.Multi.Generic ) - warning
10:46:50.0520 3020 MMCSS - detected UnsignedFile.Multi.Generic (1)
10:46:50.0551 3020 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
10:46:50.0910 3020 Modem ( UnsignedFile.Multi.Generic ) - warning
10:46:50.0910 3020 Modem - detected UnsignedFile.Multi.Generic (1)
10:46:50.0957 3020 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:46:51.0316 3020 monitor ( UnsignedFile.Multi.Generic ) - warning
10:46:51.0316 3020 monitor - detected UnsignedFile.Multi.Generic (1)
10:46:51.0347 3020 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:46:51.0378 3020 mouclass - ok
10:46:51.0409 3020 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:46:51.0799 3020 mouhid ( UnsignedFile.Multi.Generic ) - warning
10:46:51.0799 3020 mouhid - detected UnsignedFile.Multi.Generic (1)
10:46:51.0831 3020 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
10:46:51.0846 3020 MountMgr - ok
10:46:51.0924 3020 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:46:51.0955 3020 MozillaMaintenance - ok
10:46:51.0987 3020 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
10:46:52.0002 3020 mpio - ok
10:46:52.0065 3020 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:46:52.0361 3020 mpsdrv ( UnsignedFile.Multi.Generic ) - warning
10:46:52.0361 3020 mpsdrv - detected UnsignedFile.Multi.Generic (1)
10:46:52.0423 3020 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
10:46:52.0798 3020 MpsSvc ( UnsignedFile.Multi.Generic ) - warning
10:46:52.0798 3020 MpsSvc - detected UnsignedFile.Multi.Generic (1)
10:46:52.0829 3020 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
10:46:52.0860 3020 Mraid35x - ok
10:46:52.0891 3020 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:46:53.0235 3020 MRxDAV ( UnsignedFile.Multi.Generic ) - warning
10:46:53.0235 3020 MRxDAV - detected UnsignedFile.Multi.Generic (1)
10:46:53.0281 3020 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:46:53.0593 3020 mrxsmb ( UnsignedFile.Multi.Generic ) - warning
10:46:53.0593 3020 mrxsmb - detected UnsignedFile.Multi.Generic (1)
10:46:53.0640 3020 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:46:53.0983 3020 mrxsmb10 ( UnsignedFile.Multi.Generic ) - warning
10:46:53.0983 3020 mrxsmb10 - detected UnsignedFile.Multi.Generic (1)
10:46:54.0015 3020 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:46:54.0373 3020 mrxsmb20 ( UnsignedFile.Multi.Generic ) - warning
10:46:54.0373 3020 mrxsmb20 - detected UnsignedFile.Multi.Generic (1)
10:46:54.0405 3020 [ AA459F2AB3AB603C357FF117CAE3D818 ] msahci C:\Windows\system32\drivers\msahci.sys
10:46:54.0436 3020 msahci - ok
10:46:54.0467 3020 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:46:54.0483 3020 msdsm - ok
10:46:54.0529 3020 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
10:46:54.0888 3020 MSDTC ( UnsignedFile.Multi.Generic ) - warning
10:46:54.0888 3020 MSDTC - detected UnsignedFile.Multi.Generic (1)
10:46:54.0935 3020 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:46:55.0294 3020 Msfs ( UnsignedFile.Multi.Generic ) - warning
10:46:55.0294 3020 Msfs - detected UnsignedFile.Multi.Generic (1)
10:46:55.0325 3020 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:46:55.0341 3020 msisadrv - ok
10:46:55.0372 3020 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:46:55.0731 3020 MSiSCSI ( UnsignedFile.Multi.Generic ) - warning
10:46:55.0731 3020 MSiSCSI - detected UnsignedFile.Multi.Generic (1)
10:46:55.0731 3020 msiserver - ok
10:46:55.0777 3020 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:46:56.0058 3020 MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
10:46:56.0058 3020 MSKSSRV - detected UnsignedFile.Multi.Generic (1)
10:46:56.0089 3020 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:46:56.0401 3020 MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
10:46:56.0401 3020 MSPCLOCK - detected UnsignedFile.Multi.Generic (1)
10:46:56.0417 3020 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:46:56.0760 3020 MSPQM ( UnsignedFile.Multi.Generic ) - warning
10:46:56.0760 3020 MSPQM - detected UnsignedFile.Multi.Generic (1)
10:46:56.0791 3020 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:46:56.0823 3020 MsRPC - ok
10:46:56.0869 3020 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:46:56.0885 3020 mssmbios - ok
10:46:56.0901 3020 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:46:57.0228 3020 MSTEE ( UnsignedFile.Multi.Generic ) - warning
10:46:57.0228 3020 MSTEE - detected UnsignedFile.Multi.Generic (1)
10:46:57.0259 3020 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
10:46:57.0291 3020 Mup - ok
10:46:57.0353 3020 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
10:46:57.0665 3020 napagent ( UnsignedFile.Multi.Generic ) - warning
10:46:57.0665 3020 napagent - detected UnsignedFile.Multi.Generic (1)
10:46:57.0727 3020 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:46:58.0102 3020 NativeWifiP ( UnsignedFile.Multi.Generic ) - warning
10:46:58.0102 3020 NativeWifiP - detected UnsignedFile.Multi.Generic (1)
10:46:58.0321 3020 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:46:58.0387 3020 NDIS - ok
10:46:58.0433 3020 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:46:58.0792 3020 NdisTapi ( UnsignedFile.Multi.Generic ) - warning
10:46:58.0792 3020 NdisTapi - detected UnsignedFile.Multi.Generic (1)
10:46:58.0830 3020 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:46:59.0217 3020 Ndisuio ( UnsignedFile.Multi.Generic ) - warning
10:46:59.0217 3020 Ndisuio - detected UnsignedFile.Multi.Generic (1)
10:46:59.0264 3020 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:46:59.0779 3020 NdisWan ( UnsignedFile.Multi.Generic ) - warning
10:46:59.0779 3020 NdisWan - detected UnsignedFile.Multi.Generic (1)
10:46:59.0810 3020 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:47:00.0403 3020 NDProxy ( UnsignedFile.Multi.Generic ) - warning
10:47:00.0403 3020 NDProxy - detected UnsignedFile.Multi.Generic (1)
10:47:00.0434 3020 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:47:00.0933 3020 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:47:00.0933 3020 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:47:00.0964 3020 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:47:01.0651 3020 NetBIOS ( UnsignedFile.Multi.Generic ) - warning
10:47:01.0651 3020 NetBIOS - detected UnsignedFile.Multi.Generic (1)
10:47:01.0713 3020 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
10:47:02.0197 3020 netbt ( UnsignedFile.Multi.Generic ) - warning
10:47:02.0197 3020 netbt - detected UnsignedFile.Multi.Generic (1)
10:47:02.0212 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
10:47:02.0618 3020 Netlogon ( UnsignedFile.Multi.Generic ) - warning
10:47:02.0618 3020 Netlogon - detected UnsignedFile.Multi.Generic (1)
10:47:02.0696 3020 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
10:47:03.0507 3020 Netman ( UnsignedFile.Multi.Generic ) - warning
10:47:03.0507 3020 Netman - detected UnsignedFile.Multi.Generic (1)
10:47:03.0554 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:03.0585 3020 NetMsmqActivator - ok
10:47:03.0601 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:03.0616 3020 NetPipeActivator - ok
10:47:03.0694 3020 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
10:47:04.0209 3020 netprofm ( UnsignedFile.Multi.Generic ) - warning
10:47:04.0209 3020 netprofm - detected UnsignedFile.Multi.Generic (1)
10:47:04.0240 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:04.0256 3020 NetTcpActivator - ok
10:47:04.0303 3020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:04.0318 3020 NetTcpPortSharing - ok
10:47:04.0349 3020 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:47:04.0381 3020 nfrd960 - ok
10:47:04.0568 3020 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
10:47:05.0379 3020 NlaSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:05.0379 3020 NlaSvc - detected UnsignedFile.Multi.Generic (1)
10:47:05.0426 3020 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:47:05.0800 3020 Npfs ( UnsignedFile.Multi.Generic ) - warning
10:47:05.0800 3020 Npfs - detected UnsignedFile.Multi.Generic (1)
10:47:05.0831 3020 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
10:47:06.0206 3020 nsi ( UnsignedFile.Multi.Generic ) - warning
10:47:06.0206 3020 nsi - detected UnsignedFile.Multi.Generic (1)
10:47:06.0237 3020 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:47:06.0643 3020 nsiproxy ( UnsignedFile.Multi.Generic ) - warning
10:47:06.0643 3020 nsiproxy - detected UnsignedFile.Multi.Generic (1)
10:47:06.0752 3020 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:47:06.0908 3020 Ntfs - ok
10:47:06.0955 3020 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
10:47:07.0298 3020 Null ( UnsignedFile.Multi.Generic ) - warning
10:47:07.0298 3020 Null - detected UnsignedFile.Multi.Generic (1)
10:47:07.0329 3020 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:47:07.0345 3020 nvraid - ok
10:47:07.0376 3020 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:47:07.0407 3020 nvstor - ok
10:47:07.0438 3020 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:47:07.0469 3020 nv_agp - ok
10:47:07.0469 3020 NwlnkFlt - ok
10:47:07.0485 3020 NwlnkFwd - ok
10:47:07.0532 3020 [ 404B0121AE1A75D9A63B6934EB07C258 ] OA013Ufd C:\Windows\system32\DRIVERS\OA013Ufd.sys
10:47:07.0875 3020 OA013Ufd ( UnsignedFile.Multi.Generic ) - warning
10:47:07.0875 3020 OA013Ufd - detected UnsignedFile.Multi.Generic (1)
10:47:07.0906 3020 [ 650BCC8FF8ED939F3F79D1E8A1CF0595 ] OA013Vid C:\Windows\system32\DRIVERS\OA013Vid.sys
10:47:08.0296 3020 OA013Vid ( UnsignedFile.Multi.Generic ) - warning
10:47:08.0296 3020 OA013Vid - detected UnsignedFile.Multi.Generic (1)
10:47:08.0359 3020 [ 7B58953E2F263421FDBB09A192712A85 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:47:08.0780 3020 ohci1394 ( UnsignedFile.Multi.Generic ) - warning
10:47:08.0780 3020 ohci1394 - detected UnsignedFile.Multi.Generic (1)
10:47:08.0920 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
10:47:09.0481 3020 p2pimsvc ( UnsignedFile.Multi.Generic ) - warning
10:47:09.0481 3020 p2pimsvc - detected UnsignedFile.Multi.Generic (1)
10:47:09.0529 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
10:47:10.0182 3020 p2psvc ( UnsignedFile.Multi.Generic ) - warning
10:47:10.0182 3020 p2psvc - detected UnsignedFile.Multi.Generic (1)
10:47:10.0237 3020 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
10:47:10.0682 3020 Parport ( UnsignedFile.Multi.Generic ) - warning
10:47:10.0682 3020 Parport - detected UnsignedFile.Multi.Generic (1)
10:47:10.0713 3020 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:47:10.0744 3020 partmgr - ok
10:47:10.0776 3020 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
10:47:11.0166 3020 PcaSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:11.0166 3020 PcaSvc - detected UnsignedFile.Multi.Generic (1)
10:47:11.0212 3020 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
10:47:11.0228 3020 pci - ok
10:47:11.0259 3020 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
10:47:11.0275 3020 pciide - ok
10:47:11.0322 3020 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:47:11.0353 3020 pcmcia - ok
10:47:11.0462 3020 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:47:11.0992 3020 PEAUTH ( UnsignedFile.Multi.Generic ) - warning
10:47:11.0992 3020 PEAUTH - detected UnsignedFile.Multi.Generic (1)
10:47:12.0102 3020 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:47:12.0492 3020 PerfHost ( UnsignedFile.Multi.Generic ) - warning
10:47:12.0492 3020 PerfHost - detected UnsignedFile.Multi.Generic (1)
10:47:12.0585 3020 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
10:47:12.0991 3020 pla ( UnsignedFile.Multi.Generic ) - warning
10:47:12.0991 3020 pla - detected UnsignedFile.Multi.Generic (1)
10:47:13.0038 3020 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:47:13.0350 3020 PlugPlay ( UnsignedFile.Multi.Generic ) - warning
10:47:13.0350 3020 PlugPlay - detected UnsignedFile.Multi.Generic (1)
10:47:13.0396 3020 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:47:13.0724 3020 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:47:13.0724 3020 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:47:13.0771 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
10:47:14.0145 3020 PNRPAutoReg ( UnsignedFile.Multi.Generic ) - warning
10:47:14.0145 3020 PNRPAutoReg - detected UnsignedFile.Multi.Generic (1)
10:47:14.0176 3020 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
10:47:14.0551 3020 PNRPsvc ( UnsignedFile.Multi.Generic ) - warning
10:47:14.0551 3020 PNRPsvc - detected UnsignedFile.Multi.Generic (1)
10:47:14.0582 3020 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:47:15.0050 3020 PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
10:47:15.0050 3020 PolicyAgent - detected UnsignedFile.Multi.Generic (1)
10:47:15.0081 3020 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:47:15.0424 3020 PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
10:47:15.0424 3020 PptpMiniport - detected UnsignedFile.Multi.Generic (1)
10:47:15.0440 3020 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
10:47:15.0768 3020 Processor ( UnsignedFile.Multi.Generic ) - warning
10:47:15.0768 3020 Processor - detected UnsignedFile.Multi.Generic (1)
10:47:15.0799 3020 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
10:47:16.0142 3020 ProfSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:16.0142 3020 ProfSvc - detected UnsignedFile.Multi.Generic (1)
10:47:16.0173 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
10:47:16.0610 3020 ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
10:47:16.0610 3020 ProtectedStorage - detected UnsignedFile.Multi.Generic (1)
10:47:16.0641 3020 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
10:47:17.0016 3020 PSched ( UnsignedFile.Multi.Generic ) - warning
10:47:17.0016 3020 PSched - detected UnsignedFile.Multi.Generic (1)
10:47:17.0062 3020 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:47:17.0156 3020 ql2300 - ok
10:47:17.0203 3020 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:47:17.0234 3020 ql40xx - ok
10:47:17.0281 3020 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
10:47:17.0608 3020 QWAVE ( UnsignedFile.Multi.Generic ) - warning
10:47:17.0608 3020 QWAVE - detected UnsignedFile.Multi.Generic (1)
10:47:17.0640 3020 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:47:17.0998 3020 QWAVEdrv ( UnsignedFile.Multi.Generic ) - warning
10:47:17.0998 3020 QWAVEdrv - detected UnsignedFile.Multi.Generic (1)
10:47:18.0014 3020 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:47:18.0357 3020 RasAcd ( UnsignedFile.Multi.Generic ) - warning
10:47:18.0357 3020 RasAcd - detected UnsignedFile.Multi.Generic (1)
10:47:18.0388 3020 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
10:47:18.0685 3020 RasAuto ( UnsignedFile.Multi.Generic ) - warning
10:47:18.0685 3020 RasAuto - detected UnsignedFile.Multi.Generic (1)
10:47:18.0732 3020 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:47:19.0044 3020 Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
10:47:19.0044 3020 Rasl2tp - detected UnsignedFile.Multi.Generic (1)
10:47:19.0059 3020 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
10:47:19.0402 3020 RasMan ( UnsignedFile.Multi.Generic ) - warning
10:47:19.0402 3020 RasMan - detected UnsignedFile.Multi.Generic (1)
10:47:19.0434 3020 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:47:19.0777 3020 RasPppoe ( UnsignedFile.Multi.Generic ) - warning
10:47:19.0777 3020 RasPppoe - detected UnsignedFile.Multi.Generic (1)
10:47:19.0839 3020 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:47:20.0167 3020 RasSstp ( UnsignedFile.Multi.Generic ) - warning
10:47:20.0167 3020 RasSstp - detected UnsignedFile.Multi.Generic (1)
10:47:20.0198 3020 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:47:20.0557 3020 rdbss ( UnsignedFile.Multi.Generic ) - warning
10:47:20.0557 3020 rdbss - detected UnsignedFile.Multi.Generic (1)
10:47:20.0572 3020 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:47:20.0978 3020 RDPCDD ( UnsignedFile.Multi.Generic ) - warning
10:47:20.0978 3020 RDPCDD - detected UnsignedFile.Multi.Generic (1)
10:47:21.0009 3020 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
10:47:21.0477 3020 rdpdr ( UnsignedFile.Multi.Generic ) - warning
10:47:21.0477 3020 rdpdr - detected UnsignedFile.Multi.Generic (1)
10:47:21.0493 3020 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:47:21.0898 3020 RDPENCDD ( UnsignedFile.Multi.Generic ) - warning
10:47:21.0898 3020 RDPENCDD - detected UnsignedFile.Multi.Generic (1)
10:47:21.0961 3020 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:47:22.0304 3020 RDPWD ( UnsignedFile.Multi.Generic ) - warning
10:47:22.0304 3020 RDPWD - detected UnsignedFile.Multi.Generic (1)
10:47:22.0351 3020 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:47:22.0710 3020 RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
10:47:22.0710 3020 RemoteAccess - detected UnsignedFile.Multi.Generic (1)
10:47:22.0756 3020 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:47:23.0115 3020 RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
10:47:23.0115 3020 RemoteRegistry - detected UnsignedFile.Multi.Generic (1)
10:47:23.0162 3020 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
10:47:23.0521 3020 RpcLocator ( UnsignedFile.Multi.Generic ) - warning
10:47:23.0521 3020 RpcLocator - detected UnsignedFile.Multi.Generic (1)
10:47:23.0568 3020 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
10:47:23.0926 3020 RpcSs ( UnsignedFile.Multi.Generic ) - warning
10:47:23.0926 3020 RpcSs - detected UnsignedFile.Multi.Generic (1)
10:47:23.0973 3020 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:47:24.0316 3020 rspndr ( UnsignedFile.Multi.Generic ) - warning
10:47:24.0316 3020 rspndr - detected UnsignedFile.Multi.Generic (1)
10:47:24.0348 3020 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
10:47:24.0706 3020 SamSs ( UnsignedFile.Multi.Generic ) - warning
10:47:24.0706 3020 SamSs - detected UnsignedFile.Multi.Generic (1)
10:47:24.0738 3020 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:47:24.0769 3020 sbp2port - ok
10:47:24.0831 3020 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:47:25.0206 3020 SCardSvr ( UnsignedFile.Multi.Generic ) - warning
10:47:25.0206 3020 SCardSvr - detected UnsignedFile.Multi.Generic (1)
10:47:25.0284 3020 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
10:47:25.0736 3020 Schedule ( UnsignedFile.Multi.Generic ) - warning
10:47:25.0736 3020 Schedule - detected UnsignedFile.Multi.Generic (1)
10:47:25.0767 3020 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
10:47:26.0095 3020 SCPolicySvc ( UnsignedFile.Multi.Generic ) - warning
10:47:26.0095 3020 SCPolicySvc - detected UnsignedFile.Multi.Generic (1)
10:47:26.0126 3020 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:47:26.0547 3020 SDRSVC ( UnsignedFile.Multi.Generic ) - warning
10:47:26.0547 3020 SDRSVC - detected UnsignedFile.Multi.Generic (1)
10:47:26.0578 3020 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:47:26.0937 3020 secdrv ( UnsignedFile.Multi.Generic ) - warning
10:47:26.0937 3020 secdrv - detected UnsignedFile.Multi.Generic (1)
10:47:26.0968 3020 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
10:47:27.0312 3020 seclogon ( UnsignedFile.Multi.Generic ) - warning
10:47:27.0312 3020 seclogon - detected UnsignedFile.Multi.Generic (1)
10:47:27.0343 3020 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
10:47:27.0702 3020 SENS ( UnsignedFile.Multi.Generic ) - warning
10:47:27.0702 3020 SENS - detected UnsignedFile.Multi.Generic (1)
10:47:27.0733 3020 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
10:47:28.0107 3020 Serenum ( UnsignedFile.Multi.Generic ) - warning
10:47:28.0107 3020 Serenum - detected UnsignedFile.Multi.Generic (1)
10:47:28.0138 3020 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
10:47:28.0544 3020 Serial ( UnsignedFile.Multi.Generic ) - warning
10:47:28.0544 3020 Serial - detected UnsignedFile.Multi.Generic (1)
10:47:28.0591 3020 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:47:28.0981 3020 sermouse ( UnsignedFile.Multi.Generic ) - warning
10:47:28.0981 3020 sermouse - detected UnsignedFile.Multi.Generic (1)
10:47:29.0012 3020 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
10:47:29.0433 3020 SessionEnv ( UnsignedFile.Multi.Generic ) - warning
10:47:29.0433 3020 SessionEnv - detected UnsignedFile.Multi.Generic (1)
10:47:29.0480 3020 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:47:29.0870 3020 sffdisk ( UnsignedFile.Multi.Generic ) - warning
10:47:29.0870 3020 sffdisk - detected UnsignedFile.Multi.Generic (1)
10:47:29.0901 3020 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:47:30.0276 3020 sffp_mmc ( UnsignedFile.Multi.Generic ) - warning
10:47:30.0276 3020 sffp_mmc - detected UnsignedFile.Multi.Generic (1)
10:47:30.0291 3020 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:47:30.0790 3020 sffp_sd ( UnsignedFile.Multi.Generic ) - warning
10:47:30.0790 3020 sffp_sd - detected UnsignedFile.Multi.Generic (1)
10:47:30.0806 3020 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:47:31.0227 3020 sfloppy ( UnsignedFile.Multi.Generic ) - warning
10:47:31.0227 3020 sfloppy - detected UnsignedFile.Multi.Generic (1)
10:47:31.0274 3020 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:47:31.0945 3020 SharedAccess ( UnsignedFile.Multi.Generic ) - warning
10:47:31.0945 3020 SharedAccess - detected UnsignedFile.Multi.Generic (1)
10:47:31.0976 3020 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:47:32.0600 3020 ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
10:47:32.0600 3020 ShellHWDetection - detected UnsignedFile.Multi.Generic (1)
10:47:32.0647 3020 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
10:47:32.0662 3020 SiSRaid2 - ok
10:47:32.0740 3020 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:47:32.0756 3020 SiSRaid4 - ok
10:47:32.0865 3020 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
10:47:33.0536 3020 slsvc ( UnsignedFile.Multi.Generic ) - warning
10:47:33.0536 3020 slsvc - detected UnsignedFile.Multi.Generic (1)
10:47:33.0583 3020 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
10:47:33.0957 3020 SLUINotify ( UnsignedFile.Multi.Generic ) - warning
10:47:33.0957 3020 SLUINotify - detected UnsignedFile.Multi.Generic (1)
10:47:33.0988 3020 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:47:34.0363 3020 Smb ( UnsignedFile.Multi.Generic ) - warning
10:47:34.0363 3020 Smb - detected UnsignedFile.Multi.Generic (1)
10:47:34.0441 3020 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:47:34.0768 3020 SNMPTRAP ( UnsignedFile.Multi.Generic ) - warning
10:47:34.0768 3020 SNMPTRAP - detected UnsignedFile.Multi.Generic (1)
10:47:34.0831 3020 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
10:47:34.0862 3020 spldr - ok
10:47:34.0909 3020 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
10:47:35.0252 3020 Spooler ( UnsignedFile.Multi.Generic ) - warning
10:47:35.0252 3020 Spooler - detected UnsignedFile.Multi.Generic (1)
10:47:35.0314 3020 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
10:47:35.0969 3020 srv ( UnsignedFile.Multi.Generic ) - warning
10:47:35.0969 3020 srv - detected UnsignedFile.Multi.Generic (1)
10:47:35.0989 3020 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:47:36.0343 3020 srv2 ( UnsignedFile.Multi.Generic ) - warning
10:47:36.0343 3020 srv2 - detected UnsignedFile.Multi.Generic (1)
10:47:36.0355 3020 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:47:36.0830 3020 srvnet ( UnsignedFile.Multi.Generic ) - warning
10:47:36.0830 3020 srvnet - detected UnsignedFile.Multi.Generic (1)
10:47:36.0861 3020 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:47:37.0204 3020 SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
10:47:37.0204 3020 SSDPSRV - detected UnsignedFile.Multi.Generic (1)
10:47:37.0266 3020 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:47:37.0625 3020 SstpSvc ( UnsignedFile.Multi.Generic ) - warning
10:47:37.0625 3020 SstpSvc - detected UnsignedFile.Multi.Generic (1)
10:47:37.0703 3020 [ 74425FFA11C133D045E1C3BE2EAD481D ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
10:47:37.0719 3020 ssudmdm - ok
10:47:37.0875 3020 [ C5DF63AE2693C9B6B01B4A2E6C1C64AC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe
10:47:38.0280 3020 STacSV ( UnsignedFile.Multi.Generic ) - warning
10:47:38.0280 3020 STacSV - detected UnsignedFile.Multi.Generic (1)
10:47:38.0358 3020 [ BA16447226ABFD342E130D2F24F73D32 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
10:47:38.0764 3020 STHDA ( UnsignedFile.Multi.Generic ) - warning
10:47:38.0764 3020 STHDA - detected UnsignedFile.Multi.Generic (1)
10:47:38.0826 3020 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
10:47:39.0232 3020 stisvc ( UnsignedFile.Multi.Generic ) - warning
10:47:39.0232 3020 stisvc - detected UnsignedFile.Multi.Generic (1)
10:47:39.0248 3020 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:47:39.0279 3020 swenum - ok
10:47:39.0310 3020 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
10:47:39.0747 3020 swprv ( UnsignedFile.Multi.Generic ) - warning
10:47:39.0747 3020 swprv - detected UnsignedFile.Multi.Generic (1)
10:47:39.0778 3020 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
10:47:39.0794 3020 Symc8xx - ok
10:47:39.0825 3020 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
10:47:39.0840 3020 Sym_hi - ok
10:47:39.0872 3020 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
10:47:39.0903 3020 Sym_u3 - ok
10:47:39.0950 3020 [ 3178B56219E0E4FB5F95299E49B83B44 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:47:39.0981 3020 SynTP - ok
10:47:40.0043 3020 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
10:47:40.0496 3020 SysMain ( UnsignedFile.Multi.Generic ) - warning
10:47:40.0496 3020 SysMain - detected UnsignedFile.Multi.Generic (1)
10:47:40.0511 3020 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:47:40.0901 3020 TabletInputService ( UnsignedFile.Multi.Generic ) - warning
10:47:40.0917 3020 TabletInputService - detected UnsignedFile.Multi.Generic (1)
10:47:40.0948 3020 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:47:42.0929 3020 TapiSrv ( UnsignedFile.Multi.Generic ) - warning
10:47:42.0929 3020 TapiSrv - detected UnsignedFile.Multi.Generic (1)
10:47:42.0960 3020 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
10:47:43.0397 3020 TBS ( UnsignedFile.Multi.Generic ) - warning
10:47:43.0397 3020 TBS - detected UnsignedFile.Multi.Generic (1)
10:47:43.0522 3020 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:47:43.0694 3020 Tcpip - ok
10:47:43.0787 3020 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
10:47:43.0865 3020 Tcpip6 - ok
10:47:43.0912 3020 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:47:44.0505 3020 tcpipreg ( UnsignedFile.Multi.Generic ) - warning
10:47:44.0505 3020 tcpipreg - detected UnsignedFile.Multi.Generic (1)
10:47:44.0536 3020 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:47:45.0051 3020 TDPIPE ( UnsignedFile.Multi.Generic ) - warning
10:47:45.0051 3020 TDPIPE - detected UnsignedFile.Multi.Generic (1)
10:47:45.0066 3020 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:47:45.0566 3020 TDTCP ( UnsignedFile.Multi.Generic ) - warning
10:47:45.0566 3020 TDTCP - detected UnsignedFile.Multi.Generic (1)
10:47:45.0597 3020 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:47:45.0924 3020 tdx ( UnsignedFile.Multi.Generic ) - warning
10:47:45.0924 3020 tdx - detected UnsignedFile.Multi.Generic (1)
10:47:45.0956 3020 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:47:45.0987 3020 TermDD - ok
10:47:46.0034 3020 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
10:47:46.0377 3020 TermService ( UnsignedFile.Multi.Generic ) - warning
10:47:46.0377 3020 TermService - detected UnsignedFile.Multi.Generic (1)
10:47:46.0424 3020 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
10:47:46.0892 3020 Themes ( UnsignedFile.Multi.Generic ) - warning
10:47:46.0892 3020 Themes - detected UnsignedFile.Multi.Generic (1)
10:47:46.0970 3020 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
10:47:47.0469 3020 THREADORDER ( UnsignedFile.Multi.Generic ) - warning
10:47:47.0469 3020 THREADORDER - detected UnsignedFile.Multi.Generic (1)
10:47:47.0594 3020 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
10:47:48.0077 3020 TrkWks ( UnsignedFile.Multi.Generic ) - warning
10:47:48.0077 3020 TrkWks - detected UnsignedFile.Multi.Generic (1)
10:47:48.0140 3020 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:47:48.0530 3020 TrustedInstaller ( UnsignedFile.Multi.Generic ) - warning
10:47:48.0530 3020 TrustedInstaller - detected UnsignedFile.Multi.Generic (1)
10:47:48.0545 3020 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:47:48.0966 3020 tssecsrv ( UnsignedFile.Multi.Generic ) - warning
10:47:48.0966 3020 tssecsrv - detected UnsignedFile.Multi.Generic (1)
10:47:48.0998 3020 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
10:47:49.0575 3020 tunmp ( UnsignedFile.Multi.Generic ) - warning
10:47:49.0575 3020 tunmp - detected UnsignedFile.Multi.Generic (1)
10:47:49.0622 3020 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:47:50.0074 3020 tunnel ( UnsignedFile.Multi.Generic ) - warning
10:47:50.0074 3020 tunnel - detected UnsignedFile.Multi.Generic (1)
10:47:50.0136 3020 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:47:50.0168 3020 uagp35 - ok
10:47:50.0261 3020 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:47:50.0760 3020 udfs ( UnsignedFile.Multi.Generic ) - warning
10:47:50.0760 3020 udfs - detected UnsignedFile.Multi.Generic (1)
10:47:50.0854 3020 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:47:51.0260 3020 UI0Detect ( UnsignedFile.Multi.Generic ) - warning
10:47:51.0260 3020 UI0Detect - detected UnsignedFile.Multi.Generic (1)
10:47:51.0306 3020 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:47:51.0338 3020 uliagpkx - ok
10:47:51.0400 3020 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
10:47:51.0431 3020 uliahci - ok
10:47:51.0462 3020 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
10:47:51.0494 3020 UlSata - ok
10:47:51.0525 3020 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
10:47:51.0556 3020 ulsata2 - ok
10:47:51.0587 3020 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:47:52.0008 3020 umbus ( UnsignedFile.Multi.Generic ) - warning
10:47:52.0008 3020 umbus - detected UnsignedFile.Multi.Generic (1)
10:47:52.0071 3020 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
10:47:52.0492 3020 upnphost ( UnsignedFile.Multi.Generic ) - warning
10:47:52.0492 3020 upnphost - detected UnsignedFile.Multi.Generic (1)
10:47:52.0570 3020 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:47:53.0054 3020 usbccgp ( UnsignedFile.Multi.Generic ) - warning
10:47:53.0054 3020 usbccgp - detected UnsignedFile.Multi.Generic (1)
10:47:53.0116 3020 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:47:53.0631 3020 usbcir ( UnsignedFile.Multi.Generic ) - warning
10:47:53.0631 3020 usbcir - detected UnsignedFile.Multi.Generic (1)
10:47:53.0678 3020 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:47:54.0036 3020 usbehci ( UnsignedFile.Multi.Generic ) - warning
10:47:54.0036 3020 usbehci - detected UnsignedFile.Multi.Generic (1)
10:47:54.0099 3020 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:47:54.0614 3020 usbhub ( UnsignedFile.Multi.Generic ) - warning
10:47:54.0614 3020 usbhub - detected UnsignedFile.Multi.Generic (1)
10:47:54.0645 3020 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:47:55.0097 3020 usbohci ( UnsignedFile.Multi.Generic ) - warning
10:47:55.0097 3020 usbohci - detected UnsignedFile.Multi.Generic (1)
10:47:55.0144 3020 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:47:55.0565 3020 usbprint ( UnsignedFile.Multi.Generic ) - warning
10:47:55.0565 3020 usbprint - detected UnsignedFile.Multi.Generic (1)
10:47:55.0596 3020 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:47:56.0002 3020 usbscan ( UnsignedFile.Multi.Generic ) - warning
10:47:56.0002 3020 usbscan - detected UnsignedFile.Multi.Generic (1)
10:47:56.0049 3020 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:47:56.0454 3020 USBSTOR ( UnsignedFile.Multi.Generic ) - warning
10:47:56.0454 3020 USBSTOR - detected UnsignedFile.Multi.Generic (1)
10:47:56.0501 3020 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:47:56.0922 3020 usbuhci ( UnsignedFile.Multi.Generic ) - warning
10:47:56.0922 3020 usbuhci - detected UnsignedFile.Multi.Generic (1)
10:47:56.0985 3020 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:47:57.0453 3020 usbvideo ( UnsignedFile.Multi.Generic ) - warning
10:47:57.0453 3020 usbvideo - detected UnsignedFile.Multi.Generic (1)
10:47:57.0500 3020 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
10:47:57.0983 3020 UxSms ( UnsignedFile.Multi.Generic ) - warning
10:47:57.0983 3020 UxSms - detected UnsignedFile.Multi.Generic (1)
10:47:58.0061 3020 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
10:47:58.0545 3020 vds ( UnsignedFile.Multi.Generic ) - warning
10:47:58.0545 3020 vds - detected UnsignedFile.Multi.Generic (1)
10:47:58.0592 3020 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:47:58.0982 3020 vga ( UnsignedFile.Multi.Generic ) - warning
10:47:58.0982 3020 vga - detected UnsignedFile.Multi.Generic (1)
10:47:59.0013 3020 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
10:47:59.0465 3020 VgaSave ( UnsignedFile.Multi.Generic ) - warning
10:47:59.0465 3020 VgaSave - detected UnsignedFile.Multi.Generic (1)
10:47:59.0528 3020 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
10:47:59.0543 3020 viaide - ok
10:47:59.0559 3020 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:47:59.0590 3020 volmgr - ok
10:47:59.0684 3020 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:47:59.0793 3020 volmgrx - ok
10:47:59.0824 3020 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:47:59.0871 3020 volsnap - ok
10:47:59.0902 3020 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:47:59.0933 3020 vsmraid - ok
10:48:00.0105 3020 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
10:48:00.0791 3020 VSS ( UnsignedFile.Multi.Generic ) - warning
10:48:00.0791 3020 VSS - detected UnsignedFile.Multi.Generic (1)
10:48:00.0869 3020 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
10:48:01.0400 3020 W32Time ( UnsignedFile.Multi.Generic ) - warning
10:48:01.0400 3020 W32Time - detected UnsignedFile.Multi.Generic (1)
10:48:01.0446 3020 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:48:01.0852 3020 WacomPen ( UnsignedFile.Multi.Generic ) - warning
10:48:01.0852 3020 WacomPen - detected UnsignedFile.Multi.Generic (1)
10:48:01.0899 3020 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
10:48:02.0351 3020 Wanarp ( UnsignedFile.Multi.Generic ) - warning
10:48:02.0351 3020 Wanarp - detected UnsignedFile.Multi.Generic (1)
10:48:02.0382 3020 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:48:02.0913 3020 Wanarpv6 ( UnsignedFile.Multi.Generic ) - warning
10:48:02.0913 3020 Wanarpv6 - detected UnsignedFile.Multi.Generic (1)
10:48:02.0991 3020 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:48:03.0615 3020 wcncsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:03.0615 3020 wcncsvc - detected UnsignedFile.Multi.Generic (1)
10:48:03.0646 3020 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:48:04.0114 3020 WcsPlugInService ( UnsignedFile.Multi.Generic ) - warning
10:48:04.0114 3020 WcsPlugInService - detected UnsignedFile.Multi.Generic (1)
10:48:04.0176 3020 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
10:48:04.0192 3020 Wd - ok
10:48:04.0286 3020 [ DBB4397D703A755FACB05486C449C507 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:48:04.0348 3020 Wdf01000 - ok
10:48:04.0379 3020 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:48:04.0847 3020 WdiServiceHost ( UnsignedFile.Multi.Generic ) - warning
10:48:04.0847 3020 WdiServiceHost - detected UnsignedFile.Multi.Generic (1)
10:48:04.0878 3020 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:48:05.0378 3020 WdiSystemHost ( UnsignedFile.Multi.Generic ) - warning
10:48:05.0378 3020 WdiSystemHost - detected UnsignedFile.Multi.Generic (1)
10:48:05.0456 3020 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
10:48:06.0033 3020 WebClient ( UnsignedFile.Multi.Generic ) - warning
10:48:06.0033 3020 WebClient - detected UnsignedFile.Multi.Generic (1)
10:48:06.0095 3020 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:48:10.0120 3020 Wecsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:10.0120 3020 Wecsvc - detected UnsignedFile.Multi.Generic (1)
10:48:10.0167 3020 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:48:10.0635 3020 wercplsupport ( UnsignedFile.Multi.Generic ) - warning
10:48:10.0635 3020 wercplsupport - detected UnsignedFile.Multi.Generic (1)
10:48:10.0682 3020 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
10:48:11.0150 3020 WerSvc ( UnsignedFile.Multi.Generic ) - warning
10:48:11.0150 3020 WerSvc - detected UnsignedFile.Multi.Generic (1)
10:48:11.0228 3020 WinDefend - ok
10:48:11.0243 3020 WinHttpAutoProxySvc - ok
10:48:11.0399 3020 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:48:11.0914 3020 Winmgmt ( UnsignedFile.Multi.Generic ) - warning
10:48:11.0914 3020 Winmgmt - detected UnsignedFile.Multi.Generic (1)
10:48:11.0914 3020 WinRM - ok
10:48:12.0054 3020 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:48:12.0694 3020 Wlansvc ( UnsignedFile.Multi.Generic ) - warning
10:48:12.0694 3020 Wlansvc - detected UnsignedFile.Multi.Generic (1)
10:48:12.0725 3020 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:48:13.0365 3020 WmiAcpi ( UnsignedFile.Multi.Generic ) - warning
10:48:13.0365 3020 WmiAcpi - detected UnsignedFile.Multi.Generic (1)
10:48:13.0412 3020 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:48:13.0848 3020 wmiApSrv ( UnsignedFile.Multi.Generic ) - warning
10:48:13.0848 3020 wmiApSrv - detected UnsignedFile.Multi.Generic (1)
10:48:13.0895 3020 WMPNetworkSvc - ok
10:48:13.0926 3020 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:48:14.0410 3020 WPCSvc ( UnsignedFile.Multi.Generic ) - warning
10:48:14.0410 3020 WPCSvc - detected UnsignedFile.Multi.Generic (1)
10:48:14.0472 3020 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:48:14.0956 3020 WPDBusEnum ( UnsignedFile.Multi.Generic ) - warning
10:48:14.0956 3020 WPDBusEnum - detected UnsignedFile.Multi.Generic (1)
10:48:15.0034 3020 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
10:48:15.0533 3020 WpdUsb ( UnsignedFile.Multi.Generic ) - warning
10:48:15.0533 3020 WpdUsb - detected UnsignedFile.Multi.Generic (1)
10:48:16.0001 3020 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:48:16.0048 3020 WPFFontCache_v0400 - ok
10:48:16.0110 3020 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:48:16.0563 3020 ws2ifsl ( UnsignedFile.Multi.Generic ) - warning
10:48:16.0563 3020 ws2ifsl - detected UnsignedFile.Multi.Generic (1)
10:48:16.0594 3020 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll
10:48:17.0031 3020 wscsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:17.0031 3020 wscsvc - detected UnsignedFile.Multi.Generic (1)
10:48:17.0031 3020 WSearch - ok
10:48:17.0296 3020 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:48:17.0483 3020 wuauserv - ok
10:48:17.0577 3020 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:48:18.0170 3020 WUDFRd ( UnsignedFile.Multi.Generic ) - warning
10:48:18.0170 3020 WUDFRd - detected UnsignedFile.Multi.Generic (1)
10:48:18.0216 3020 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:48:18.0622 3020 wudfsvc ( UnsignedFile.Multi.Generic ) - warning
10:48:18.0622 3020 wudfsvc - detected UnsignedFile.Multi.Generic (1)
10:48:18.0684 3020 [ D433F6726A727B0528F6E39F423FE1FD ] yksvc C:\Windows\System32\ykx64mpcoinst.dll
10:48:19.0199 3020 yksvc ( UnsignedFile.Multi.Generic ) - warning
10:48:19.0199 3020 yksvc - detected UnsignedFile.Multi.Generic (1)
10:48:19.0293 3020 [ 541CBA0F3F679CC6E5ED4967F3FD4F6C ] yukonx64 C:\Windows\system32\DRIVERS\yk60x64.sys
10:48:19.0683 3020 yukonx64 ( UnsignedFile.Multi.Generic ) - warning
10:48:19.0683 3020 yukonx64 - detected UnsignedFile.Multi.Generic (1)
10:48:19.0714 3020 ================ Scan global ===============================
10:48:19.0745 3020 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
10:48:19.0823 3020 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
10:48:19.0839 3020 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
10:48:19.0932 3020 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
10:48:19.0932 3020 [Global] - ok
10:48:19.0932 3020 ================ Scan MBR ==================================
10:48:19.0964 3020 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
10:48:21.0664 3020 \Device\Harddisk0\DR0 - ok
10:48:21.0664 3020 ================ Scan VBR ==================================
10:48:21.0695 3020 [ BC7E299168F34C973841D8D393D8CFD4 ] \Device\Harddisk0\DR0\Partition1
10:48:21.0711 3020 \Device\Harddisk0\DR0\Partition1 - ok
10:48:21.0726 3020 [ 13660CE30A37921600294F02FD687243 ] \Device\Harddisk0\DR0\Partition2
10:48:21.0742 3020 \Device\Harddisk0\DR0\Partition2 - ok
10:48:21.0742 3020 ============================================================
10:48:21.0742 3020 Scan finished
10:48:21.0742 3020 ============================================================
10:48:21.0758 3696 Detected object count: 254
10:48:21.0758 3696 Actual detected object count: 254
Geändert von SteGri (19.11.2012 um 11:37 Uhr) |
|
19.11.2012, 11:49
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Log ist immer noch unvollständig die untere Zusammenmfassung fehlt
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.11.2012, 12:01
| #23 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Mehr habe ich leider nicht. Die TDSSKiller _log.txt.-Datei endet mit "10:48:21.0758 3696 Actual detected object count: 254" und so enden auch die beiden Logs, die ich unten gepostet habe. |
|
19.11.2012, 13:06
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Dann hast du das Log falsch erstellt...
__________________ Logfiles bitte immer in CODE-Tags posten |
|
19.11.2012, 22:55
| #25 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Tja, außer den zwei Haken laut Anweisung habe ich eigentlich nichts gemacht, was ich hätte falsch machen können.  Ich habe das Programm jedenfalls nochmal laufen lassen (als Administrator und mit Virenscanner aus). Und hier ist das Log, das automatisch in C:\ erstellt wird - wie in der Anleitung beschrieben: Code:
ATTFilter 22:44:35.0516 5900 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:44:35.0719 5900 ============================================================
22:44:35.0719 5900 Current date / time: 2012/11/19 22:44:35.0719
22:44:35.0719 5900 SystemInfo:
22:44:35.0719 5900
22:44:35.0719 5900 OS Version: 6.0.6002 ServicePack: 2.0
22:44:35.0719 5900 Product type: Workstation
22:44:35.0719 5900 ComputerName: NAME
22:44:35.0719 5900 UserName: Office-PC
22:44:35.0719 5900 Windows directory: C:\Windows
22:44:35.0719 5900 System windows directory: C:\Windows
22:44:35.0719 5900 Running under WOW64
22:44:35.0719 5900 Processor architecture: Intel x64
22:44:35.0719 5900 Number of processors: 2
22:44:35.0719 5900 Page size: 0x1000
22:44:35.0719 5900 Boot type: Normal boot
22:44:35.0719 5900 ============================================================
22:44:37.0108 5900 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:44:37.0123 5900 ============================================================
22:44:37.0123 5900 \Device\Harddisk0\DR0:
22:44:37.0123 5900 MBR partitions:
22:44:37.0123 5900 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x9C40000
22:44:37.0123 5900 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C54000, BlocksNum 0x1B7DA000
22:44:37.0123 5900 ============================================================
22:44:37.0170 5900 C: <-> \Device\Harddisk0\DR0\Partition1
22:44:37.0248 5900 D: <-> \Device\Harddisk0\DR0\Partition2
22:44:37.0248 5900 ============================================================
22:44:37.0248 5900 Initialize success
22:44:37.0248 5900 ============================================================
22:44:51.0179 5756 ============================================================
22:44:51.0179 5756 Scan started
22:44:51.0179 5756 Mode: Manual; SigCheck; TDLFS;
22:44:51.0179 5756 ============================================================
22:44:52.0396 5756 ================ Scan system memory ========================
22:44:52.0396 5756 System memory - ok
22:44:52.0396 5756 ================ Scan services =============================
22:44:52.0723 5756 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
22:44:52.0957 5756 ACPI - ok
22:44:53.0035 5756 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:44:53.0051 5756 AdobeARMservice - ok
22:44:53.0129 5756 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:44:53.0176 5756 adp94xx - ok
22:44:53.0207 5756 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:44:53.0269 5756 adpahci - ok
22:44:53.0332 5756 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
22:44:53.0347 5756 adpu160m - ok
22:44:53.0378 5756 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:44:53.0410 5756 adpu320 - ok
22:44:53.0456 5756 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:44:54.0158 5756 AeLookupSvc ( UnsignedFile.Multi.Generic ) - warning
22:44:54.0158 5756 AeLookupSvc - detected UnsignedFile.Multi.Generic (1)
22:44:54.0283 5756 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe
22:44:54.0767 5756 AESTFilters ( UnsignedFile.Multi.Generic ) - warning
22:44:54.0767 5756 AESTFilters - detected UnsignedFile.Multi.Generic (1)
22:44:54.0829 5756 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
22:44:55.0250 5756 AFD ( UnsignedFile.Multi.Generic ) - warning
22:44:55.0250 5756 AFD - detected UnsignedFile.Multi.Generic (1)
22:44:55.0297 5756 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:44:55.0328 5756 agp440 - ok
22:44:55.0375 5756 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
22:44:55.0391 5756 aic78xx - ok
22:44:55.0438 5756 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
22:44:55.0781 5756 ALG ( UnsignedFile.Multi.Generic ) - warning
22:44:55.0781 5756 ALG - detected UnsignedFile.Multi.Generic (1)
22:44:55.0812 5756 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
22:44:55.0828 5756 aliide - ok
22:44:55.0859 5756 [ B5E2434FC851698C1F119CF1C3935A50 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:44:56.0202 5756 AMD External Events Utility ( UnsignedFile.Multi.Generic ) - warning
22:44:56.0202 5756 AMD External Events Utility - detected UnsignedFile.Multi.Generic (1)
22:44:56.0218 5756 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
22:44:56.0233 5756 amdide - ok
22:44:56.0264 5756 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:44:56.0639 5756 AmdK8 ( UnsignedFile.Multi.Generic ) - warning
22:44:56.0639 5756 AmdK8 - detected UnsignedFile.Multi.Generic (1)
22:44:57.0310 5756 [ 9E3B4946F7E1BCA0B763E19D81EDBF2C ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:44:58.0402 5756 amdkmdag ( UnsignedFile.Multi.Generic ) - warning
22:44:58.0402 5756 amdkmdag - detected UnsignedFile.Multi.Generic (1)
22:44:58.0464 5756 [ B9E1C7B7F1865F99B16FF2E1BB94EDB6 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
22:44:59.0088 5756 amdkmdap ( UnsignedFile.Multi.Generic ) - warning
22:44:59.0088 5756 amdkmdap - detected UnsignedFile.Multi.Generic (1)
22:44:59.0197 5756 [ 466A0D95960DAD3222C896D2CEA99993 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
22:44:59.0213 5756 AntiVirSchedulerService - ok
22:44:59.0306 5756 [ A489BE6BB0AA1FF406B488B60542314B ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
22:44:59.0338 5756 AntiVirService - ok
22:44:59.0384 5756 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
22:44:59.0946 5756 Appinfo ( UnsignedFile.Multi.Generic ) - warning
22:44:59.0946 5756 Appinfo - detected UnsignedFile.Multi.Generic (1)
22:44:59.0977 5756 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
22:45:00.0008 5756 arc - ok
22:45:00.0055 5756 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:45:00.0071 5756 arcsas - ok
22:45:00.0289 5756 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:45:00.0398 5756 aspnet_state - ok
22:45:00.0523 5756 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:45:01.0054 5756 AsyncMac ( UnsignedFile.Multi.Generic ) - warning
22:45:01.0054 5756 AsyncMac - detected UnsignedFile.Multi.Generic (1)
22:45:01.0085 5756 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
22:45:01.0100 5756 atapi - ok
22:45:01.0178 5756 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:45:01.0693 5756 AudioEndpointBuilder ( UnsignedFile.Multi.Generic ) - warning
22:45:01.0693 5756 AudioEndpointBuilder - detected UnsignedFile.Multi.Generic (1)
22:45:01.0709 5756 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:45:02.0208 5756 AudioSrv ( UnsignedFile.Multi.Generic ) - warning
22:45:02.0208 5756 AudioSrv - detected UnsignedFile.Multi.Generic (1)
22:45:02.0270 5756 [ 26E38B5A58C6C55FAFBC563EEDDB0867 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
22:45:02.0317 5756 avgntflt - ok
22:45:02.0333 5756 [ 9D1F00BEFF84CBBF46D7F052BC7E0565 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
22:45:02.0364 5756 avipbb - ok
22:45:02.0380 5756 [ 248DB59FC86DE44D2779F4C7FB1A567D ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
22:45:02.0395 5756 avkmgr - ok
22:45:02.0473 5756 [ D32F962B71FEE6BDAAEE630BB2C17280 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:45:02.0645 5756 BCM43XX - ok
22:45:02.0707 5756 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
22:45:03.0238 5756 BFE ( UnsignedFile.Multi.Generic ) - warning
22:45:03.0238 5756 BFE - detected UnsignedFile.Multi.Generic (1)
22:45:03.0316 5756 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
22:45:03.0908 5756 BITS ( UnsignedFile.Multi.Generic ) - warning
22:45:03.0908 5756 BITS - detected UnsignedFile.Multi.Generic (1)
22:45:04.0033 5756 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:45:04.0876 5756 blbdrive ( UnsignedFile.Multi.Generic ) - warning
22:45:04.0876 5756 blbdrive - detected UnsignedFile.Multi.Generic (1)
22:45:04.0922 5756 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:45:05.0422 5756 bowser ( UnsignedFile.Multi.Generic ) - warning
22:45:05.0422 5756 bowser - detected UnsignedFile.Multi.Generic (1)
22:45:05.0468 5756 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
22:45:05.0983 5756 BrFiltLo ( UnsignedFile.Multi.Generic ) - warning
22:45:05.0983 5756 BrFiltLo - detected UnsignedFile.Multi.Generic (1)
22:45:05.0983 5756 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
22:45:06.0467 5756 BrFiltUp ( UnsignedFile.Multi.Generic ) - warning
22:45:06.0467 5756 BrFiltUp - detected UnsignedFile.Multi.Generic (1)
22:45:06.0514 5756 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
22:45:07.0028 5756 Browser ( UnsignedFile.Multi.Generic ) - warning
22:45:07.0028 5756 Browser - detected UnsignedFile.Multi.Generic (1)
22:45:07.0075 5756 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
22:45:07.0590 5756 Brserid ( UnsignedFile.Multi.Generic ) - warning
22:45:07.0590 5756 Brserid - detected UnsignedFile.Multi.Generic (1)
22:45:07.0637 5756 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
22:45:08.0120 5756 BrSerWdm ( UnsignedFile.Multi.Generic ) - warning
22:45:08.0120 5756 BrSerWdm - detected UnsignedFile.Multi.Generic (1)
22:45:08.0152 5756 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
22:45:08.0682 5756 BrUsbMdm ( UnsignedFile.Multi.Generic ) - warning
22:45:08.0682 5756 BrUsbMdm - detected UnsignedFile.Multi.Generic (1)
22:45:08.0698 5756 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
22:45:09.0602 5756 BrUsbSer ( UnsignedFile.Multi.Generic ) - warning
22:45:09.0602 5756 BrUsbSer - detected UnsignedFile.Multi.Generic (1)
22:45:09.0634 5756 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:45:10.0070 5756 BTHMODEM ( UnsignedFile.Multi.Generic ) - warning
22:45:10.0070 5756 BTHMODEM - detected UnsignedFile.Multi.Generic (1)
22:45:10.0117 5756 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:45:10.0757 5756 cdfs ( UnsignedFile.Multi.Generic ) - warning
22:45:10.0757 5756 cdfs - detected UnsignedFile.Multi.Generic (1)
22:45:10.0804 5756 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:45:11.0240 5756 cdrom ( UnsignedFile.Multi.Generic ) - warning
22:45:11.0240 5756 cdrom - detected UnsignedFile.Multi.Generic (1)
22:45:11.0287 5756 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
22:45:11.0786 5756 CertPropSvc ( UnsignedFile.Multi.Generic ) - warning
22:45:11.0786 5756 CertPropSvc - detected UnsignedFile.Multi.Generic (1)
22:45:11.0833 5756 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
22:45:12.0473 5756 circlass ( UnsignedFile.Multi.Generic ) - warning
22:45:12.0473 5756 circlass - detected UnsignedFile.Multi.Generic (1)
22:45:12.0520 5756 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
22:45:12.0566 5756 CLFS - ok
22:45:12.0660 5756 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:45:12.0676 5756 clr_optimization_v2.0.50727_32 - ok
22:45:12.0800 5756 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:45:12.0816 5756 clr_optimization_v2.0.50727_64 - ok
22:45:12.0894 5756 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:45:12.0910 5756 clr_optimization_v4.0.30319_32 - ok
22:45:12.0972 5756 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:45:12.0988 5756 clr_optimization_v4.0.30319_64 - ok
22:45:13.0034 5756 [ B52D9A14CE4101577900A364BA86F3DF ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:45:13.0565 5756 CmBatt ( UnsignedFile.Multi.Generic ) - warning
22:45:13.0565 5756 CmBatt - detected UnsignedFile.Multi.Generic (1)
22:45:13.0596 5756 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:45:13.0612 5756 cmdide - ok
22:45:13.0643 5756 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:45:13.0674 5756 Compbatt - ok
22:45:13.0674 5756 COMSysApp - ok
22:45:13.0690 5756 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:45:13.0721 5756 crcdisk - ok
22:45:13.0752 5756 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:45:14.0438 5756 CryptSvc ( UnsignedFile.Multi.Generic ) - warning
22:45:14.0438 5756 CryptSvc - detected UnsignedFile.Multi.Generic (1)
22:45:14.0485 5756 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
22:45:15.0016 5756 DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
22:45:15.0016 5756 DcomLaunch - detected UnsignedFile.Multi.Generic (1)
22:45:15.0062 5756 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:45:15.0640 5756 DfsC ( UnsignedFile.Multi.Generic ) - warning
22:45:15.0640 5756 DfsC - detected UnsignedFile.Multi.Generic (1)
22:45:15.0780 5756 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
22:45:16.0607 5756 DFSR ( UnsignedFile.Multi.Generic ) - warning
22:45:16.0607 5756 DFSR - detected UnsignedFile.Multi.Generic (1)
22:45:16.0654 5756 [ 105373D52E71D2D1355AD3ACD18259C3 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
22:45:16.0685 5756 dg_ssudbus - ok
22:45:16.0732 5756 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
22:45:17.0200 5756 Dhcp ( UnsignedFile.Multi.Generic ) - warning
22:45:17.0200 5756 Dhcp - detected UnsignedFile.Multi.Generic (1)
22:45:17.0246 5756 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
22:45:17.0278 5756 disk - ok
22:45:17.0324 5756 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:45:17.0870 5756 Dnscache ( UnsignedFile.Multi.Generic ) - warning
22:45:17.0870 5756 Dnscache - detected UnsignedFile.Multi.Generic (1)
22:45:17.0933 5756 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
22:45:18.0370 5756 dot3svc ( UnsignedFile.Multi.Generic ) - warning
22:45:18.0370 5756 dot3svc - detected UnsignedFile.Multi.Generic (1)
22:45:18.0432 5756 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
22:45:18.0947 5756 Dot4 ( UnsignedFile.Multi.Generic ) - warning
22:45:18.0947 5756 Dot4 - detected UnsignedFile.Multi.Generic (1)
22:45:19.0009 5756 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:45:19.0633 5756 Dot4Print ( UnsignedFile.Multi.Generic ) - warning
22:45:19.0633 5756 Dot4Print - detected UnsignedFile.Multi.Generic (1)
22:45:19.0664 5756 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
22:45:20.0210 5756 dot4usb ( UnsignedFile.Multi.Generic ) - warning
22:45:20.0210 5756 dot4usb - detected UnsignedFile.Multi.Generic (1)
22:45:20.0242 5756 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
22:45:20.0756 5756 DPS ( UnsignedFile.Multi.Generic ) - warning
22:45:20.0756 5756 DPS - detected UnsignedFile.Multi.Generic (1)
22:45:20.0788 5756 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:45:21.0209 5756 drmkaud ( UnsignedFile.Multi.Generic ) - warning
22:45:21.0209 5756 drmkaud - detected UnsignedFile.Multi.Generic (1)
22:45:21.0271 5756 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:45:21.0380 5756 DXGKrnl - ok
22:45:21.0427 5756 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
22:45:21.0880 5756 E1G60 ( UnsignedFile.Multi.Generic ) - warning
22:45:21.0880 5756 E1G60 - detected UnsignedFile.Multi.Generic (1)
22:45:21.0926 5756 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
22:45:22.0410 5756 EapHost ( UnsignedFile.Multi.Generic ) - warning
22:45:22.0410 5756 EapHost - detected UnsignedFile.Multi.Generic (1)
22:45:22.0457 5756 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
22:45:22.0472 5756 Ecache - ok
22:45:22.0550 5756 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:45:23.0034 5756 ehRecvr ( UnsignedFile.Multi.Generic ) - warning
22:45:23.0034 5756 ehRecvr - detected UnsignedFile.Multi.Generic (1)
22:45:23.0081 5756 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
22:45:23.0580 5756 ehSched ( UnsignedFile.Multi.Generic ) - warning
22:45:23.0580 5756 ehSched - detected UnsignedFile.Multi.Generic (1)
22:45:23.0627 5756 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
22:45:24.0391 5756 ehstart ( UnsignedFile.Multi.Generic ) - warning
22:45:24.0391 5756 ehstart - detected UnsignedFile.Multi.Generic (1)
22:45:24.0438 5756 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:45:24.0469 5756 elxstor - ok
22:45:24.0516 5756 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
22:45:25.0124 5756 EMDMgmt ( UnsignedFile.Multi.Generic ) - warning
22:45:25.0124 5756 EMDMgmt - detected UnsignedFile.Multi.Generic (1)
22:45:25.0156 5756 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:45:25.0639 5756 ErrDev ( UnsignedFile.Multi.Generic ) - warning
22:45:25.0639 5756 ErrDev - detected UnsignedFile.Multi.Generic (1)
22:45:25.0670 5756 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
22:45:26.0232 5756 EventSystem ( UnsignedFile.Multi.Generic ) - warning
22:45:26.0232 5756 EventSystem - detected UnsignedFile.Multi.Generic (1)
22:45:26.0279 5756 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
22:45:26.0700 5756 exfat ( UnsignedFile.Multi.Generic ) - warning
22:45:26.0700 5756 exfat - detected UnsignedFile.Multi.Generic (1)
22:45:26.0731 5756 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:45:27.0199 5756 fastfat ( UnsignedFile.Multi.Generic ) - warning
22:45:27.0199 5756 fastfat - detected UnsignedFile.Multi.Generic (1)
22:45:27.0246 5756 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:45:27.0792 5756 fdc ( UnsignedFile.Multi.Generic ) - warning
22:45:27.0792 5756 fdc - detected UnsignedFile.Multi.Generic (1)
22:45:27.0823 5756 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
22:45:28.0307 5756 fdPHost ( UnsignedFile.Multi.Generic ) - warning
22:45:28.0307 5756 fdPHost - detected UnsignedFile.Multi.Generic (1)
22:45:28.0322 5756 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
22:45:28.0759 5756 FDResPub ( UnsignedFile.Multi.Generic ) - warning
22:45:28.0759 5756 FDResPub - detected UnsignedFile.Multi.Generic (1)
22:45:28.0790 5756 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:45:28.0806 5756 FileInfo - ok
22:45:28.0853 5756 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:45:29.0680 5756 Filetrace ( UnsignedFile.Multi.Generic ) - warning
22:45:29.0680 5756 Filetrace - detected UnsignedFile.Multi.Generic (1)
22:45:29.0711 5756 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:45:30.0241 5756 flpydisk ( UnsignedFile.Multi.Generic ) - warning
22:45:30.0241 5756 flpydisk - detected UnsignedFile.Multi.Generic (1)
22:45:30.0272 5756 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:45:30.0304 5756 FltMgr - ok
22:45:30.0413 5756 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
22:45:31.0162 5756 FontCache ( UnsignedFile.Multi.Generic ) - warning
22:45:31.0162 5756 FontCache - detected UnsignedFile.Multi.Generic (1)
22:45:31.0240 5756 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:45:31.0255 5756 FontCache3.0.0.0 - ok
22:45:31.0302 5756 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:45:31.0848 5756 Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
22:45:31.0848 5756 Fs_Rec - detected UnsignedFile.Multi.Generic (1)
22:45:31.0879 5756 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:45:31.0910 5756 gagp30kx - ok
22:45:31.0988 5756 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
22:45:32.0550 5756 gpsvc ( UnsignedFile.Multi.Generic ) - warning
22:45:32.0550 5756 gpsvc - detected UnsignedFile.Multi.Generic (1)
22:45:32.0597 5756 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:45:33.0174 5756 HdAudAddService ( UnsignedFile.Multi.Generic ) - warning
22:45:33.0174 5756 HdAudAddService - detected UnsignedFile.Multi.Generic (1)
22:45:33.0252 5756 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:45:33.0720 5756 HDAudBus ( UnsignedFile.Multi.Generic ) - warning
22:45:33.0720 5756 HDAudBus - detected UnsignedFile.Multi.Generic (1)
22:45:33.0751 5756 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:45:34.0516 5756 HidBth ( UnsignedFile.Multi.Generic ) - warning
22:45:34.0516 5756 HidBth - detected UnsignedFile.Multi.Generic (1)
22:45:34.0547 5756 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:45:35.0186 5756 HidIr ( UnsignedFile.Multi.Generic ) - warning
22:45:35.0186 5756 HidIr - detected UnsignedFile.Multi.Generic (1)
22:45:35.0218 5756 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
22:45:35.0732 5756 hidserv ( UnsignedFile.Multi.Generic ) - warning
22:45:35.0732 5756 hidserv - detected UnsignedFile.Multi.Generic (1)
22:45:35.0748 5756 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:45:36.0325 5756 HidUsb ( UnsignedFile.Multi.Generic ) - warning
22:45:36.0325 5756 HidUsb - detected UnsignedFile.Multi.Generic (1)
22:45:36.0356 5756 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
22:45:36.0918 5756 hkmsvc ( UnsignedFile.Multi.Generic ) - warning
22:45:36.0918 5756 hkmsvc - detected UnsignedFile.Multi.Generic (1)
22:45:36.0965 5756 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
22:45:36.0996 5756 HpCISSs - ok
22:45:37.0136 5756 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
22:45:37.0651 5756 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
22:45:37.0651 5756 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
22:45:37.0698 5756 [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
22:45:38.0072 5756 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
22:45:38.0072 5756 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
22:45:38.0119 5756 [ D972F48D0CE396759B788693CD665926 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
22:45:38.0618 5756 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
22:45:38.0618 5756 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
22:45:38.0665 5756 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:45:39.0258 5756 HTTP ( UnsignedFile.Multi.Generic ) - warning
22:45:39.0258 5756 HTTP - detected UnsignedFile.Multi.Generic (1)
22:45:39.0289 5756 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
22:45:39.0320 5756 i2omp - ok
22:45:39.0352 5756 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:45:39.0695 5756 i8042prt ( UnsignedFile.Multi.Generic ) - warning
22:45:39.0695 5756 i8042prt - detected UnsignedFile.Multi.Generic (1)
22:45:39.0726 5756 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
22:45:39.0757 5756 iaStorV - ok
22:45:39.0913 5756 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:45:40.0085 5756 idsvc - ok
22:45:40.0116 5756 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:45:40.0132 5756 iirsp - ok
22:45:40.0194 5756 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
22:45:40.0693 5756 IKEEXT ( UnsignedFile.Multi.Generic ) - warning
22:45:40.0693 5756 IKEEXT - detected UnsignedFile.Multi.Generic (1)
22:45:40.0818 5756 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:45:41.0161 5756 IntcAzAudAddService - ok
22:45:41.0224 5756 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
22:45:41.0239 5756 intelide - ok
22:45:41.0270 5756 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:45:41.0629 5756 intelppm ( UnsignedFile.Multi.Generic ) - warning
22:45:41.0629 5756 intelppm - detected UnsignedFile.Multi.Generic (1)
22:45:41.0676 5756 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:45:42.0050 5756 IPBusEnum ( UnsignedFile.Multi.Generic ) - warning
22:45:42.0050 5756 IPBusEnum - detected UnsignedFile.Multi.Generic (1)
22:45:42.0128 5756 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:45:42.0550 5756 IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
22:45:42.0550 5756 IpFilterDriver - detected UnsignedFile.Multi.Generic (1)
22:45:42.0612 5756 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:45:43.0018 5756 iphlpsvc ( UnsignedFile.Multi.Generic ) - warning
22:45:43.0018 5756 iphlpsvc - detected UnsignedFile.Multi.Generic (1)
22:45:43.0018 5756 IpInIp - ok
22:45:43.0049 5756 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
22:45:43.0439 5756 IPMIDRV ( UnsignedFile.Multi.Generic ) - warning
22:45:43.0439 5756 IPMIDRV - detected UnsignedFile.Multi.Generic (1)
22:45:43.0470 5756 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
22:45:43.0860 5756 IPNAT ( UnsignedFile.Multi.Generic ) - warning
22:45:43.0860 5756 IPNAT - detected UnsignedFile.Multi.Generic (1)
22:45:43.0891 5756 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:45:44.0344 5756 IRENUM ( UnsignedFile.Multi.Generic ) - warning
22:45:44.0344 5756 IRENUM - detected UnsignedFile.Multi.Generic (1)
22:45:44.0375 5756 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:45:44.0406 5756 isapnp - ok
22:45:44.0453 5756 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:45:44.0500 5756 iScsiPrt - ok
22:45:44.0515 5756 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
22:45:44.0531 5756 iteatapi - ok
22:45:44.0562 5756 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
22:45:44.0578 5756 iteraid - ok
22:45:44.0624 5756 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:45:44.0640 5756 kbdclass - ok
22:45:44.0671 5756 [ BF8783A5066CFECF45095459E8010FA7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:45:45.0030 5756 kbdhid ( UnsignedFile.Multi.Generic ) - warning
22:45:45.0030 5756 kbdhid - detected UnsignedFile.Multi.Generic (1)
22:45:45.0077 5756 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
22:45:45.0420 5756 KeyIso ( UnsignedFile.Multi.Generic ) - warning
22:45:45.0420 5756 KeyIso - detected UnsignedFile.Multi.Generic (1)
22:45:45.0451 5756 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:45:45.0498 5756 KSecDD - ok
22:45:45.0560 5756 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:45:46.0028 5756 ksthunk ( UnsignedFile.Multi.Generic ) - warning
22:45:46.0028 5756 ksthunk - detected UnsignedFile.Multi.Generic (1)
22:45:46.0075 5756 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
22:45:46.0528 5756 KtmRm ( UnsignedFile.Multi.Generic ) - warning
22:45:46.0528 5756 KtmRm - detected UnsignedFile.Multi.Generic (1)
22:45:46.0574 5756 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:45:47.0011 5756 LanmanServer ( UnsignedFile.Multi.Generic ) - warning
22:45:47.0011 5756 LanmanServer - detected UnsignedFile.Multi.Generic (1)
22:45:47.0058 5756 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:45:47.0526 5756 LanmanWorkstation ( UnsignedFile.Multi.Generic ) - warning
22:45:47.0526 5756 LanmanWorkstation - detected UnsignedFile.Multi.Generic (1)
22:45:47.0542 5756 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:45:48.0088 5756 lltdio ( UnsignedFile.Multi.Generic ) - warning
22:45:48.0088 5756 lltdio - detected UnsignedFile.Multi.Generic (1)
22:45:48.0134 5756 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:45:48.0618 5756 lltdsvc ( UnsignedFile.Multi.Generic ) - warning
22:45:48.0618 5756 lltdsvc - detected UnsignedFile.Multi.Generic (1)
22:45:48.0649 5756 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:45:49.0055 5756 lmhosts ( UnsignedFile.Multi.Generic ) - warning
22:45:49.0055 5756 lmhosts - detected UnsignedFile.Multi.Generic (1)
22:45:49.0117 5756 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:45:49.0148 5756 LSI_FC - ok
22:45:49.0164 5756 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:45:49.0195 5756 LSI_SAS - ok
22:45:49.0242 5756 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:45:49.0258 5756 LSI_SCSI - ok
22:45:49.0289 5756 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
22:45:49.0757 5756 luafv ( UnsignedFile.Multi.Generic ) - warning
22:45:49.0757 5756 luafv - detected UnsignedFile.Multi.Generic (1)
22:45:49.0788 5756 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:45:50.0147 5756 Mcx2Svc ( UnsignedFile.Multi.Generic ) - warning
22:45:50.0147 5756 Mcx2Svc - detected UnsignedFile.Multi.Generic (1)
22:45:50.0194 5756 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
22:45:50.0209 5756 megasas - ok
22:45:50.0256 5756 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
22:45:50.0287 5756 MegaSR - ok
22:45:50.0318 5756 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
22:45:50.0818 5756 MMCSS ( UnsignedFile.Multi.Generic ) - warning
22:45:50.0818 5756 MMCSS - detected UnsignedFile.Multi.Generic (1)
22:45:50.0864 5756 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
22:45:51.0317 5756 Modem ( UnsignedFile.Multi.Generic ) - warning
22:45:51.0317 5756 Modem - detected UnsignedFile.Multi.Generic (1)
22:45:51.0364 5756 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:45:51.0754 5756 monitor ( UnsignedFile.Multi.Generic ) - warning
22:45:51.0754 5756 monitor - detected UnsignedFile.Multi.Generic (1)
22:45:51.0800 5756 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:45:51.0816 5756 mouclass - ok
22:45:51.0847 5756 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:45:52.0300 5756 mouhid ( UnsignedFile.Multi.Generic ) - warning
22:45:52.0300 5756 mouhid - detected UnsignedFile.Multi.Generic (1)
22:45:52.0331 5756 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
22:45:52.0362 5756 MountMgr - ok
22:45:52.0424 5756 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:45:52.0456 5756 MozillaMaintenance - ok
22:45:52.0487 5756 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
22:45:52.0502 5756 mpio - ok
22:45:52.0534 5756 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:45:52.0908 5756 mpsdrv ( UnsignedFile.Multi.Generic ) - warning
22:45:52.0908 5756 mpsdrv - detected UnsignedFile.Multi.Generic (1)
22:45:53.0033 5756 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
22:45:53.0563 5756 MpsSvc ( UnsignedFile.Multi.Generic ) - warning
22:45:53.0563 5756 MpsSvc - detected UnsignedFile.Multi.Generic (1)
22:45:53.0610 5756 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
22:45:53.0626 5756 Mraid35x - ok
22:45:53.0672 5756 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:45:54.0094 5756 MRxDAV ( UnsignedFile.Multi.Generic ) - warning
22:45:54.0094 5756 MRxDAV - detected UnsignedFile.Multi.Generic (1)
22:45:54.0140 5756 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:45:54.0655 5756 mrxsmb ( UnsignedFile.Multi.Generic ) - warning
22:45:54.0655 5756 mrxsmb - detected UnsignedFile.Multi.Generic (1)
22:45:54.0686 5756 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:45:55.0076 5756 mrxsmb10 ( UnsignedFile.Multi.Generic ) - warning
22:45:55.0076 5756 mrxsmb10 - detected UnsignedFile.Multi.Generic (1)
22:45:55.0092 5756 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:45:55.0482 5756 mrxsmb20 ( UnsignedFile.Multi.Generic ) - warning
22:45:55.0482 5756 mrxsmb20 - detected UnsignedFile.Multi.Generic (1)
22:45:55.0529 5756 [ AA459F2AB3AB603C357FF117CAE3D818 ] msahci C:\Windows\system32\drivers\msahci.sys
22:45:55.0560 5756 msahci - ok
22:45:55.0607 5756 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:45:55.0638 5756 msdsm - ok
22:45:55.0685 5756 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
22:45:56.0231 5756 MSDTC ( UnsignedFile.Multi.Generic ) - warning
22:45:56.0231 5756 MSDTC - detected UnsignedFile.Multi.Generic (1)
22:45:56.0262 5756 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:45:56.0730 5756 Msfs ( UnsignedFile.Multi.Generic ) - warning
22:45:56.0730 5756 Msfs - detected UnsignedFile.Multi.Generic (1)
22:45:56.0761 5756 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:45:56.0792 5756 msisadrv - ok
22:45:56.0808 5756 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:45:57.0198 5756 MSiSCSI ( UnsignedFile.Multi.Generic ) - warning
22:45:57.0198 5756 MSiSCSI - detected UnsignedFile.Multi.Generic (1)
22:45:57.0214 5756 msiserver - ok
22:45:57.0245 5756 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:45:57.0619 5756 MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
22:45:57.0619 5756 MSKSSRV - detected UnsignedFile.Multi.Generic (1)
22:45:57.0635 5756 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:45:57.0962 5756 MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
22:45:57.0962 5756 MSPCLOCK - detected UnsignedFile.Multi.Generic (1)
22:45:57.0978 5756 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:45:58.0399 5756 MSPQM ( UnsignedFile.Multi.Generic ) - warning
22:45:58.0399 5756 MSPQM - detected UnsignedFile.Multi.Generic (1)
22:45:58.0430 5756 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:45:58.0462 5756 MsRPC - ok
22:45:58.0493 5756 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:45:58.0508 5756 mssmbios - ok
22:45:58.0540 5756 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:45:59.0070 5756 MSTEE ( UnsignedFile.Multi.Generic ) - warning
22:45:59.0070 5756 MSTEE - detected UnsignedFile.Multi.Generic (1)
22:45:59.0117 5756 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
22:45:59.0132 5756 Mup - ok
22:45:59.0195 5756 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
22:45:59.0600 5756 napagent ( UnsignedFile.Multi.Generic ) - warning
22:45:59.0600 5756 napagent - detected UnsignedFile.Multi.Generic (1)
22:45:59.0647 5756 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:45:59.0959 5756 NativeWifiP ( UnsignedFile.Multi.Generic ) - warning
22:45:59.0959 5756 NativeWifiP - detected UnsignedFile.Multi.Generic (1)
22:46:00.0006 5756 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:46:00.0068 5756 NDIS - ok
22:46:00.0146 5756 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:46:00.0630 5756 NdisTapi ( UnsignedFile.Multi.Generic ) - warning
22:46:00.0630 5756 NdisTapi - detected UnsignedFile.Multi.Generic (1)
22:46:00.0661 5756 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:46:01.0036 5756 Ndisuio ( UnsignedFile.Multi.Generic ) - warning
22:46:01.0036 5756 Ndisuio - detected UnsignedFile.Multi.Generic (1)
22:46:01.0067 5756 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:46:01.0410 5756 NdisWan ( UnsignedFile.Multi.Generic ) - warning
22:46:01.0410 5756 NdisWan - detected UnsignedFile.Multi.Generic (1)
22:46:01.0441 5756 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:46:01.0738 5756 NDProxy ( UnsignedFile.Multi.Generic ) - warning
22:46:01.0738 5756 NDProxy - detected UnsignedFile.Multi.Generic (1)
22:46:01.0769 5756 [ D5AC41AE382738483FAFFBD7E373D49A ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:46:02.0128 5756 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
22:46:02.0128 5756 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
22:46:02.0159 5756 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:46:02.0564 5756 NetBIOS ( UnsignedFile.Multi.Generic ) - warning
22:46:02.0564 5756 NetBIOS - detected UnsignedFile.Multi.Generic (1)
22:46:02.0596 5756 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
22:46:02.0939 5756 netbt ( UnsignedFile.Multi.Generic ) - warning
22:46:02.0939 5756 netbt - detected UnsignedFile.Multi.Generic (1)
22:46:02.0970 5756 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
22:46:03.0313 5756 Netlogon ( UnsignedFile.Multi.Generic ) - warning
22:46:03.0313 5756 Netlogon - detected UnsignedFile.Multi.Generic (1)
22:46:03.0360 5756 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
22:46:03.0797 5756 Netman ( UnsignedFile.Multi.Generic ) - warning
22:46:03.0797 5756 Netman - detected UnsignedFile.Multi.Generic (1)
22:46:03.0844 5756 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:03.0875 5756 NetMsmqActivator - ok
22:46:03.0922 5756 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:03.0937 5756 NetPipeActivator - ok
22:46:03.0984 5756 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
22:46:04.0452 5756 netprofm ( UnsignedFile.Multi.Generic ) - warning
22:46:04.0452 5756 netprofm - detected UnsignedFile.Multi.Generic (1)
22:46:04.0468 5756 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:04.0499 5756 NetTcpActivator - ok
22:46:04.0530 5756 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:04.0546 5756 NetTcpPortSharing - ok
22:46:04.0592 5756 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:46:04.0608 5756 nfrd960 - ok
22:46:04.0655 5756 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
22:46:05.0045 5756 NlaSvc ( UnsignedFile.Multi.Generic ) - warning
22:46:05.0045 5756 NlaSvc - detected UnsignedFile.Multi.Generic (1)
22:46:05.0107 5756 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:46:05.0482 5756 Npfs ( UnsignedFile.Multi.Generic ) - warning
22:46:05.0482 5756 Npfs - detected UnsignedFile.Multi.Generic (1)
22:46:05.0497 5756 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
22:46:05.0872 5756 nsi ( UnsignedFile.Multi.Generic ) - warning
22:46:05.0872 5756 nsi - detected UnsignedFile.Multi.Generic (1)
22:46:05.0903 5756 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:46:06.0230 5756 nsiproxy ( UnsignedFile.Multi.Generic ) - warning
22:46:06.0230 5756 nsiproxy - detected UnsignedFile.Multi.Generic (1)
22:46:06.0340 5756 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:46:06.0449 5756 Ntfs - ok
22:46:06.0527 5756 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
22:46:06.0948 5756 Null ( UnsignedFile.Multi.Generic ) - warning
22:46:06.0948 5756 Null - detected UnsignedFile.Multi.Generic (1)
22:46:06.0979 5756 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:46:06.0995 5756 nvraid - ok
22:46:07.0026 5756 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:46:07.0057 5756 nvstor - ok
22:46:07.0073 5756 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:46:07.0088 5756 nv_agp - ok
22:46:07.0104 5756 NwlnkFlt - ok
22:46:07.0104 5756 NwlnkFwd - ok
22:46:07.0151 5756 [ 404B0121AE1A75D9A63B6934EB07C258 ] OA013Ufd C:\Windows\system32\DRIVERS\OA013Ufd.sys
22:46:07.0619 5756 OA013Ufd ( UnsignedFile.Multi.Generic ) - warning
22:46:07.0619 5756 OA013Ufd - detected UnsignedFile.Multi.Generic (1)
22:46:07.0650 5756 [ 650BCC8FF8ED939F3F79D1E8A1CF0595 ] OA013Vid C:\Windows\system32\DRIVERS\OA013Vid.sys
22:46:08.0071 5756 OA013Vid ( UnsignedFile.Multi.Generic ) - warning
22:46:08.0071 5756 OA013Vid - detected UnsignedFile.Multi.Generic (1)
22:46:08.0118 5756 [ 7B58953E2F263421FDBB09A192712A85 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:46:08.0539 5756 ohci1394 ( UnsignedFile.Multi.Generic ) - warning
22:46:08.0539 5756 ohci1394 - detected UnsignedFile.Multi.Generic (1)
22:46:08.0586 5756 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
22:46:09.0101 5756 p2pimsvc ( UnsignedFile.Multi.Generic ) - warning
22:46:09.0101 5756 p2pimsvc - detected UnsignedFile.Multi.Generic (1)
22:46:09.0257 5756 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
22:46:09.0896 5756 p2psvc ( UnsignedFile.Multi.Generic ) - warning
22:46:09.0896 5756 p2psvc - detected UnsignedFile.Multi.Generic (1)
22:46:09.0943 5756 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
22:46:10.0380 5756 Parport ( UnsignedFile.Multi.Generic ) - warning
22:46:10.0380 5756 Parport - detected UnsignedFile.Multi.Generic (1)
22:46:10.0396 5756 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:46:10.0427 5756 partmgr - ok
22:46:10.0458 5756 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
22:46:10.0864 5756 PcaSvc ( UnsignedFile.Multi.Generic ) - warning
22:46:10.0864 5756 PcaSvc - detected UnsignedFile.Multi.Generic (1)
22:46:10.0910 5756 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
22:46:10.0942 5756 pci - ok
22:46:10.0957 5756 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys
22:46:10.0973 5756 pciide - ok
22:46:11.0004 5756 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:46:11.0035 5756 pcmcia - ok
22:46:11.0113 5756 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:46:11.0503 5756 PEAUTH ( UnsignedFile.Multi.Generic ) - warning
22:46:11.0503 5756 PEAUTH - detected UnsignedFile.Multi.Generic (1)
22:46:11.0628 5756 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:46:12.0049 5756 PerfHost ( UnsignedFile.Multi.Generic ) - warning
22:46:12.0049 5756 PerfHost - detected UnsignedFile.Multi.Generic (1)
22:46:12.0143 5756 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
22:46:12.0658 5756 pla ( UnsignedFile.Multi.Generic ) - warning
22:46:12.0658 5756 pla - detected UnsignedFile.Multi.Generic (1)
22:46:12.0689 5756 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:46:13.0126 5756 PlugPlay ( UnsignedFile.Multi.Generic ) - warning
22:46:13.0126 5756 PlugPlay - detected UnsignedFile.Multi.Generic (1)
22:46:13.0188 5756 [ 37F6046CDC630442D7DC087501FF6FC6 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:46:13.0516 5756 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
22:46:13.0516 5756 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
22:46:13.0562 5756 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
22:46:14.0030 5756 PNRPAutoReg ( UnsignedFile.Multi.Generic ) - warning
22:46:14.0030 5756 PNRPAutoReg - detected UnsignedFile.Multi.Generic (1)
22:46:14.0077 5756 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
22:46:14.0623 5756 PNRPsvc ( UnsignedFile.Multi.Generic ) - warning
22:46:14.0623 5756 PNRPsvc - detected UnsignedFile.Multi.Generic (1)
22:46:14.0686 5756 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:46:15.0154 5756 PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
22:46:15.0154 5756 PolicyAgent - detected UnsignedFile.Multi.Generic (1)
22:46:15.0185 5756 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:46:15.0497 5756 PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
22:46:15.0497 5756 PptpMiniport - detected UnsignedFile.Multi.Generic (1)
22:46:15.0528 5756 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
22:46:15.0856 5756 Processor ( UnsignedFile.Multi.Generic ) - warning
22:46:15.0856 5756 Processor - detected UnsignedFile.Multi.Generic (1)
22:46:15.0887 5756 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
22:46:16.0199 5756 ProfSvc ( UnsignedFile.Multi.Generic ) - warning
22:46:16.0199 5756 ProfSvc - detected UnsignedFile.Multi.Generic (1)
22:46:16.0230 5756 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
22:46:16.0573 5756 ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
22:46:16.0573 5756 ProtectedStorage - detected UnsignedFile.Multi.Generic (1)
22:46:16.0620 5756 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
22:46:17.0057 5756 PSched ( UnsignedFile.Multi.Generic ) - warning
22:46:17.0057 5756 PSched - detected UnsignedFile.Multi.Generic (1)
22:46:17.0104 5756 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:46:17.0182 5756 ql2300 - ok
22:46:17.0244 5756 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:46:17.0275 5756 ql40xx - ok
22:46:17.0353 5756 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
22:46:17.0821 5756 QWAVE ( UnsignedFile.Multi.Generic ) - warning
22:46:17.0821 5756 QWAVE - detected UnsignedFile.Multi.Generic (1)
22:46:17.0837 5756 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:46:18.0196 5756 QWAVEdrv ( UnsignedFile.Multi.Generic ) - warning
22:46:18.0196 5756 QWAVEdrv - detected UnsignedFile.Multi.Generic (1)
22:46:18.0227 5756 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:46:18.0570 5756 RasAcd ( UnsignedFile.Multi.Generic ) - warning
22:46:18.0570 5756 RasAcd - detected UnsignedFile.Multi.Generic (1)
22:46:18.0617 5756 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
22:46:19.0007 5756 RasAuto ( UnsignedFile.Multi.Generic ) - warning
22:46:19.0007 5756 RasAuto - detected UnsignedFile.Multi.Generic (1)
22:46:19.0038 5756 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:46:19.0475 5756 Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
22:46:19.0475 5756 Rasl2tp - detected UnsignedFile.Multi.Generic (1)
22:46:19.0490 5756 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
22:46:20.0005 5756 RasMan ( UnsignedFile.Multi.Generic ) - warning
22:46:20.0005 5756 RasMan - detected UnsignedFile.Multi.Generic (1)
22:46:20.0036 5756 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:46:20.0411 5756 RasPppoe ( UnsignedFile.Multi.Generic ) - warning
22:46:20.0411 5756 RasPppoe - detected UnsignedFile.Multi.Generic (1)
22:46:20.0458 5756 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:46:20.0832 5756 RasSstp ( UnsignedFile.Multi.Generic ) - warning
22:46:20.0832 5756 RasSstp - detected UnsignedFile.Multi.Generic (1)
22:46:20.0879 5756 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:46:21.0362 5756 rdbss ( UnsignedFile.Multi.Generic ) - warning
22:46:21.0362 5756 rdbss - detected UnsignedFile.Multi.Generic (1)
22:46:21.0394 5756 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:46:21.0768 5756 RDPCDD ( UnsignedFile.Multi.Generic ) - warning
22:46:21.0768 5756 RDPCDD - detected UnsignedFile.Multi.Generic (1)
22:46:21.0799 5756 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
22:46:22.0283 5756 rdpdr ( UnsignedFile.Multi.Generic ) - warning
22:46:22.0283 5756 rdpdr - detected UnsignedFile.Multi.Generic (1)
22:46:22.0298 5756 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:46:22.0735 5756 RDPENCDD ( UnsignedFile.Multi.Generic ) - warning
22:46:22.0735 5756 RDPENCDD - detected UnsignedFile.Multi.Generic (1)
22:46:22.0798 5756 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:46:23.0281 5756 RDPWD ( UnsignedFile.Multi.Generic ) - warning
22:46:23.0281 5756 RDPWD - detected UnsignedFile.Multi.Generic (1)
22:46:23.0312 5756 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:46:23.0702 5756 RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
22:46:23.0702 5756 RemoteAccess - detected UnsignedFile.Multi.Generic (1)
22:46:23.0749 5756 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:46:24.0202 5756 RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
22:46:24.0202 5756 RemoteRegistry - detected UnsignedFile.Multi.Generic (1)
22:46:24.0233 5756 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
22:46:24.0685 5756 RpcLocator ( UnsignedFile.Multi.Generic ) - warning
22:46:24.0685 5756 RpcLocator - detected UnsignedFile.Multi.Generic (1)
22:46:24.0716 5756 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
22:46:25.0169 5756 RpcSs ( UnsignedFile.Multi.Generic ) - warning
22:46:25.0169 5756 RpcSs - detected UnsignedFile.Multi.Generic (1)
22:46:25.0216 5756 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:46:25.0637 5756 rspndr ( UnsignedFile.Multi.Generic ) - warning
22:46:25.0637 5756 rspndr - detected UnsignedFile.Multi.Generic (1)
22:46:25.0684 5756 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
22:46:26.0495 5756 SamSs ( UnsignedFile.Multi.Generic ) - warning
22:46:26.0495 5756 SamSs - detected UnsignedFile.Multi.Generic (1)
22:46:26.0510 5756 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:46:26.0542 5756 sbp2port - ok
22:46:26.0588 5756 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:46:27.0119 5756 SCardSvr ( UnsignedFile.Multi.Generic ) - warning
22:46:27.0119 5756 SCardSvr - detected UnsignedFile.Multi.Generic (1)
22:46:27.0244 5756 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
22:46:27.0868 5756 Schedule ( UnsignedFile.Multi.Generic ) - warning
22:46:27.0868 5756 Schedule - detected UnsignedFile.Multi.Generic (1)
22:46:27.0930 5756 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
22:46:28.0476 5756 SCPolicySvc ( UnsignedFile.Multi.Generic ) - warning
22:46:28.0476 5756 SCPolicySvc - detected UnsignedFile.Multi.Generic (1)
22:46:28.0507 5756 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:46:28.0975 5756 SDRSVC ( UnsignedFile.Multi.Generic ) - warning
22:46:28.0975 5756 SDRSVC - detected UnsignedFile.Multi.Generic (1)
22:46:29.0022 5756 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:46:29.0459 5756 secdrv ( UnsignedFile.Multi.Generic ) - warning
22:46:29.0459 5756 secdrv - detected UnsignedFile.Multi.Generic (1)
22:46:29.0521 5756 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
22:46:29.0974 5756 seclogon ( UnsignedFile.Multi.Generic ) - warning
22:46:29.0974 5756 seclogon - detected UnsignedFile.Multi.Generic (1)
22:46:29.0974 5756 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
22:46:30.0332 5756 SENS ( UnsignedFile.Multi.Generic ) - warning
22:46:30.0332 5756 SENS - detected UnsignedFile.Multi.Generic (1)
22:46:30.0379 5756 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
22:46:30.0832 5756 Serenum ( UnsignedFile.Multi.Generic ) - warning
22:46:30.0832 5756 Serenum - detected UnsignedFile.Multi.Generic (1)
22:46:30.0878 5756 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
22:46:31.0268 5756 Serial ( UnsignedFile.Multi.Generic ) - warning
22:46:31.0268 5756 Serial - detected UnsignedFile.Multi.Generic (1)
22:46:31.0284 5756 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:46:31.0627 5756 sermouse ( UnsignedFile.Multi.Generic ) - warning
22:46:31.0627 5756 sermouse - detected UnsignedFile.Multi.Generic (1)
22:46:31.0674 5756 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
22:46:32.0064 5756 SessionEnv ( UnsignedFile.Multi.Generic ) - warning
22:46:32.0064 5756 SessionEnv - detected UnsignedFile.Multi.Generic (1)
22:46:32.0126 5756 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:46:32.0563 5756 sffdisk ( UnsignedFile.Multi.Generic ) - warning
22:46:32.0563 5756 sffdisk - detected UnsignedFile.Multi.Generic (1)
22:46:32.0579 5756 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:46:32.0953 5756 sffp_mmc ( UnsignedFile.Multi.Generic ) - warning
22:46:32.0953 5756 sffp_mmc - detected UnsignedFile.Multi.Generic (1)
22:46:32.0984 5756 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:46:33.0452 5756 sffp_sd ( UnsignedFile.Multi.Generic ) - warning
22:46:33.0452 5756 sffp_sd - detected UnsignedFile.Multi.Generic (1)
22:46:33.0468 5756 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:46:33.0889 5756 sfloppy ( UnsignedFile.Multi.Generic ) - warning
22:46:33.0889 5756 sfloppy - detected UnsignedFile.Multi.Generic (1)
22:46:33.0952 5756 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:46:34.0451 5756 SharedAccess ( UnsignedFile.Multi.Generic ) - warning
22:46:34.0451 5756 SharedAccess - detected UnsignedFile.Multi.Generic (1)
22:46:34.0482 5756 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:46:34.0841 5756 ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
22:46:34.0841 5756 ShellHWDetection - detected UnsignedFile.Multi.Generic (1)
22:46:34.0888 5756 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
22:46:34.0903 5756 SiSRaid2 - ok
22:46:34.0966 5756 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:46:34.0997 5756 SiSRaid4 - ok
22:46:35.0090 5756 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
22:46:35.0636 5756 slsvc ( UnsignedFile.Multi.Generic ) - warning
22:46:35.0636 5756 slsvc - detected UnsignedFile.Multi.Generic (1)
22:46:35.0668 5756 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
22:46:36.0058 5756 SLUINotify ( UnsignedFile.Multi.Generic ) - warning
22:46:36.0058 5756 SLUINotify - detected UnsignedFile.Multi.Generic (1)
22:46:36.0089 5756 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:46:36.0494 5756 Smb ( UnsignedFile.Multi.Generic ) - warning
22:46:36.0494 5756 Smb - detected UnsignedFile.Multi.Generic (1)
22:46:36.0557 5756 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:46:37.0009 5756 SNMPTRAP ( UnsignedFile.Multi.Generic ) - warning
22:46:37.0009 5756 SNMPTRAP - detected UnsignedFile.Multi.Generic (1)
22:46:37.0056 5756 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
22:46:37.0072 5756 spldr - ok
22:46:37.0181 5756 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
22:46:37.0586 5756 Spooler ( UnsignedFile.Multi.Generic ) - warning
22:46:37.0586 5756 Spooler - detected UnsignedFile.Multi.Generic (1)
22:46:37.0867 5756 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
22:46:38.0413 5756 srv ( UnsignedFile.Multi.Generic ) - warning
22:46:38.0413 5756 srv - detected UnsignedFile.Multi.Generic (1)
22:46:38.0429 5756 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:46:38.0881 5756 srv2 ( UnsignedFile.Multi.Generic ) - warning
22:46:38.0881 5756 srv2 - detected UnsignedFile.Multi.Generic (1)
22:46:38.0881 5756 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:46:39.0365 5756 srvnet ( UnsignedFile.Multi.Generic ) - warning
22:46:39.0365 5756 srvnet - detected UnsignedFile.Multi.Generic (1)
22:46:39.0412 5756 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:46:39.0848 5756 SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
22:46:39.0848 5756 SSDPSRV - detected UnsignedFile.Multi.Generic (1)
22:46:39.0895 5756 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:46:40.0285 5756 SstpSvc ( UnsignedFile.Multi.Generic ) - warning
22:46:40.0285 5756 SstpSvc - detected UnsignedFile.Multi.Generic (1)
22:46:40.0348 5756 [ 74425FFA11C133D045E1C3BE2EAD481D ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
22:46:40.0379 5756 ssudmdm - ok
22:46:40.0582 5756 [ C5DF63AE2693C9B6B01B4A2E6C1C64AC ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\STacSV64.exe
22:46:41.0065 5756 STacSV ( UnsignedFile.Multi.Generic ) - warning
22:46:41.0065 5756 STacSV - detected UnsignedFile.Multi.Generic (1)
22:46:41.0143 5756 [ BA16447226ABFD342E130D2F24F73D32 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
22:46:41.0658 5756 STHDA ( UnsignedFile.Multi.Generic ) - warning
22:46:41.0658 5756 STHDA - detected UnsignedFile.Multi.Generic (1)
22:46:41.0705 5756 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
22:46:42.0188 5756 stisvc ( UnsignedFile.Multi.Generic ) - warning
22:46:42.0188 5756 stisvc - detected UnsignedFile.Multi.Generic (1)
22:46:42.0251 5756 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:46:42.0282 5756 swenum - ok
22:46:42.0313 5756 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
22:46:42.0906 5756 swprv ( UnsignedFile.Multi.Generic ) - warning
22:46:42.0906 5756 swprv - detected UnsignedFile.Multi.Generic (1)
22:46:42.0953 5756 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
22:46:42.0968 5756 Symc8xx - ok
22:46:43.0015 5756 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
22:46:43.0046 5756 Sym_hi - ok
22:46:43.0062 5756 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
22:46:43.0078 5756 Sym_u3 - ok
22:46:43.0156 5756 [ 3178B56219E0E4FB5F95299E49B83B44 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:46:43.0171 5756 SynTP - ok
22:46:43.0234 5756 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
22:46:43.0764 5756 SysMain ( UnsignedFile.Multi.Generic ) - warning
22:46:43.0764 5756 SysMain - detected UnsignedFile.Multi.Generic (1)
22:46:43.0795 5756 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:46:44.0201 5756 TabletInputService ( UnsignedFile.Multi.Generic ) - warning
22:46:44.0201 5756 TabletInputService - detected UnsignedFile.Multi.Generic (1)
22:46:44.0248 5756 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:46:44.0684 5756 TapiSrv ( UnsignedFile.Multi.Generic ) - warning
22:46:44.0684 5756 TapiSrv - detected UnsignedFile.Multi.Generic (1)
22:46:44.0731 5756 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
22:46:45.0262 5756 TBS ( UnsignedFile.Multi.Generic ) - warning
22:46:45.0262 5756 TBS - detected UnsignedFile.Multi.Generic (1)
22:46:45.0464 5756 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:46:45.0589 5756 Tcpip - ok
22:46:45.0714 5756 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
22:46:45.0792 5756 Tcpip6 - ok
22:46:45.0839 5756 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:46:46.0213 5756 tcpipreg ( UnsignedFile.Multi.Generic ) - warning
22:46:46.0213 5756 tcpipreg - detected UnsignedFile.Multi.Generic (1)
22:46:46.0260 5756 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:46:46.0603 5756 TDPIPE ( UnsignedFile.Multi.Generic ) - warning
22:46:46.0603 5756 TDPIPE - detected UnsignedFile.Multi.Generic (1)
22:46:46.0634 5756 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:46:46.0962 5756 TDTCP ( UnsignedFile.Multi.Generic ) - warning
22:46:46.0962 5756 TDTCP - detected UnsignedFile.Multi.Generic (1)
22:46:46.0993 5756 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:46:47.0399 5756 tdx ( UnsignedFile.Multi.Generic ) - warning
22:46:47.0399 5756 tdx - detected UnsignedFile.Multi.Generic (1)
22:46:47.0430 5756 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:46:47.0446 5756 TermDD - ok
22:46:47.0524 5756 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
22:46:48.0023 5756 TermService ( UnsignedFile.Multi.Generic ) - warning
22:46:48.0023 5756 TermService - detected UnsignedFile.Multi.Generic (1)
22:46:48.0054 5756 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
22:46:48.0506 5756 Themes ( UnsignedFile.Multi.Generic ) - warning
22:46:48.0506 5756 Themes - detected UnsignedFile.Multi.Generic (1)
22:46:48.0553 5756 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
22:46:49.0006 5756 THREADORDER ( UnsignedFile.Multi.Generic ) - warning
22:46:49.0006 5756 THREADORDER - detected UnsignedFile.Multi.Generic (1)
22:46:49.0037 5756 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
22:46:49.0630 5756 TrkWks ( UnsignedFile.Multi.Generic ) - warning
22:46:49.0630 5756 TrkWks - detected UnsignedFile.Multi.Generic (1)
22:46:49.0692 5756 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:46:50.0160 5756 TrustedInstaller ( UnsignedFile.Multi.Generic ) - warning
22:46:50.0160 5756 TrustedInstaller - detected UnsignedFile.Multi.Generic (1)
22:46:50.0176 5756 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:46:50.0566 5756 tssecsrv ( UnsignedFile.Multi.Generic ) - warning
22:46:50.0566 5756 tssecsrv - detected UnsignedFile.Multi.Generic (1)
22:46:50.0597 5756 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
22:46:51.0018 5756 tunmp ( UnsignedFile.Multi.Generic ) - warning
22:46:51.0018 5756 tunmp - detected UnsignedFile.Multi.Generic (1)
22:46:51.0065 5756 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:46:51.0377 5756 tunnel ( UnsignedFile.Multi.Generic ) - warning
22:46:51.0377 5756 tunnel - detected UnsignedFile.Multi.Generic (1)
22:46:51.0424 5756 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:46:51.0455 5756 uagp35 - ok
22:46:51.0502 5756 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:46:51.0892 5756 udfs ( UnsignedFile.Multi.Generic ) - warning
22:46:51.0892 5756 udfs - detected UnsignedFile.Multi.Generic (1)
22:46:51.0923 5756 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:46:52.0282 5756 UI0Detect ( UnsignedFile.Multi.Generic ) - warning
22:46:52.0282 5756 UI0Detect - detected UnsignedFile.Multi.Generic (1)
22:46:52.0328 5756 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:46:52.0360 5756 uliagpkx - ok
22:46:52.0391 5756 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
22:46:52.0422 5756 uliahci - ok
22:46:52.0469 5756 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
22:46:52.0484 5756 UlSata - ok
22:46:52.0516 5756 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
22:46:52.0531 5756 ulsata2 - ok
22:46:52.0578 5756 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:46:53.0015 5756 umbus ( UnsignedFile.Multi.Generic ) - warning
22:46:53.0015 5756 umbus - detected UnsignedFile.Multi.Generic (1)
22:46:53.0233 5756 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
22:46:53.0857 5756 upnphost ( UnsignedFile.Multi.Generic ) - warning
22:46:53.0857 5756 upnphost - detected UnsignedFile.Multi.Generic (1)
22:46:53.0904 5756 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:46:54.0310 5756 usbccgp ( UnsignedFile.Multi.Generic ) - warning
22:46:54.0310 5756 usbccgp - detected UnsignedFile.Multi.Generic (1)
22:46:54.0372 5756 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:46:54.0856 5756 usbcir ( UnsignedFile.Multi.Generic ) - warning
22:46:54.0856 5756 usbcir - detected UnsignedFile.Multi.Generic (1)
22:46:54.0902 5756 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:46:55.0261 5756 usbehci ( UnsignedFile.Multi.Generic ) - warning
22:46:55.0261 5756 usbehci - detected UnsignedFile.Multi.Generic (1)
22:46:55.0292 5756 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:46:55.0729 5756 usbhub ( UnsignedFile.Multi.Generic ) - warning
22:46:55.0729 5756 usbhub - detected UnsignedFile.Multi.Generic (1)
22:46:55.0776 5756 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:46:56.0213 5756 usbohci ( UnsignedFile.Multi.Generic ) - warning
22:46:56.0213 5756 usbohci - detected UnsignedFile.Multi.Generic (1)
22:46:56.0260 5756 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:46:56.0665 5756 usbprint ( UnsignedFile.Multi.Generic ) - warning
22:46:56.0665 5756 usbprint - detected UnsignedFile.Multi.Generic (1)
22:46:56.0712 5756 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:46:57.0149 5756 usbscan ( UnsignedFile.Multi.Generic ) - warning
22:46:57.0149 5756 usbscan - detected UnsignedFile.Multi.Generic (1)
22:46:57.0164 5756 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:46:57.0554 5756 USBSTOR ( UnsignedFile.Multi.Generic ) - warning
22:46:57.0554 5756 USBSTOR - detected UnsignedFile.Multi.Generic (1)
22:46:57.0586 5756 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:46:57.0944 5756 usbuhci ( UnsignedFile.Multi.Generic ) - warning
22:46:57.0944 5756 usbuhci - detected UnsignedFile.Multi.Generic (1)
22:46:57.0991 5756 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:46:58.0444 5756 usbvideo ( UnsignedFile.Multi.Generic ) - warning
22:46:58.0444 5756 usbvideo - detected UnsignedFile.Multi.Generic (1)
22:46:58.0490 5756 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
22:46:58.0927 5756 UxSms ( UnsignedFile.Multi.Generic ) - warning
22:46:58.0927 5756 UxSms - detected UnsignedFile.Multi.Generic (1)
22:46:58.0958 5756 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
22:46:59.0380 5756 vds ( UnsignedFile.Multi.Generic ) - warning
22:46:59.0380 5756 vds - detected UnsignedFile.Multi.Generic (1)
22:46:59.0473 5756 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:46:59.0894 5756 vga ( UnsignedFile.Multi.Generic ) - warning
22:46:59.0894 5756 vga - detected UnsignedFile.Multi.Generic (1)
22:46:59.0910 5756 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:47:00.0347 5756 VgaSave ( UnsignedFile.Multi.Generic ) - warning
22:47:00.0347 5756 VgaSave - detected UnsignedFile.Multi.Generic (1)
22:47:00.0362 5756 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
22:47:00.0378 5756 viaide - ok
22:47:00.0409 5756 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:47:00.0440 5756 volmgr - ok
22:47:00.0487 5756 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:47:00.0518 5756 volmgrx - ok
22:47:00.0565 5756 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:47:00.0612 5756 volsnap - ok
22:47:00.0690 5756 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:47:00.0721 5756 vsmraid - ok
22:47:00.0862 5756 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
22:47:01.0408 5756 VSS ( UnsignedFile.Multi.Generic ) - warning
22:47:01.0408 5756 VSS - detected UnsignedFile.Multi.Generic (1)
22:47:01.0454 5756 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
22:47:01.0876 5756 W32Time ( UnsignedFile.Multi.Generic ) - warning
22:47:01.0876 5756 W32Time - detected UnsignedFile.Multi.Generic (1)
22:47:01.0907 5756 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:47:02.0297 5756 WacomPen ( UnsignedFile.Multi.Generic ) - warning
22:47:02.0297 5756 WacomPen - detected UnsignedFile.Multi.Generic (1)
22:47:02.0344 5756 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:47:02.0656 5756 Wanarp ( UnsignedFile.Multi.Generic ) - warning
22:47:02.0656 5756 Wanarp - detected UnsignedFile.Multi.Generic (1)
22:47:02.0656 5756 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:47:02.0999 5756 Wanarpv6 ( UnsignedFile.Multi.Generic ) - warning
22:47:02.0999 5756 Wanarpv6 - detected UnsignedFile.Multi.Generic (1)
22:47:03.0077 5756 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:47:03.0685 5756 wcncsvc ( UnsignedFile.Multi.Generic ) - warning
22:47:03.0685 5756 wcncsvc - detected UnsignedFile.Multi.Generic (1)
22:47:03.0748 5756 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:47:04.0200 5756 WcsPlugInService ( UnsignedFile.Multi.Generic ) - warning
22:47:04.0200 5756 WcsPlugInService - detected UnsignedFile.Multi.Generic (1)
22:47:04.0247 5756 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
22:47:04.0262 5756 Wd - ok
22:47:04.0387 5756 [ DBB4397D703A755FACB05486C449C507 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:47:04.0590 5756 Wdf01000 - ok
22:47:04.0606 5756 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:47:05.0136 5756 WdiServiceHost ( UnsignedFile.Multi.Generic ) - warning
22:47:05.0136 5756 WdiServiceHost - detected UnsignedFile.Multi.Generic (1)
22:47:05.0167 5756 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:47:05.0651 5756 WdiSystemHost ( UnsignedFile.Multi.Generic ) - warning
22:47:05.0651 5756 WdiSystemHost - detected UnsignedFile.Multi.Generic (1)
22:47:05.0698 5756 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
22:47:06.0150 5756 WebClient ( UnsignedFile.Multi.Generic ) - warning
22:47:06.0150 5756 WebClient - detected UnsignedFile.Multi.Generic (1)
22:47:06.0181 5756 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:47:06.0634 5756 Wecsvc ( UnsignedFile.Multi.Generic ) - warning
22:47:06.0634 5756 Wecsvc - detected UnsignedFile.Multi.Generic (1)
22:47:06.0680 5756 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:47:07.0070 5756 wercplsupport ( UnsignedFile.Multi.Generic ) - warning
22:47:07.0070 5756 wercplsupport - detected UnsignedFile.Multi.Generic (1)
22:47:07.0102 5756 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
22:47:07.0492 5756 WerSvc ( UnsignedFile.Multi.Generic ) - warning
22:47:07.0492 5756 WerSvc - detected UnsignedFile.Multi.Generic (1)
22:47:07.0523 5756 WinDefend - ok
22:47:07.0538 5756 WinHttpAutoProxySvc - ok
22:47:07.0694 5756 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:47:08.0162 5756 Winmgmt ( UnsignedFile.Multi.Generic ) - warning
22:47:08.0162 5756 Winmgmt - detected UnsignedFile.Multi.Generic (1)
22:47:08.0178 5756 WinRM - ok
22:47:08.0256 5756 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:47:08.0708 5756 Wlansvc ( UnsignedFile.Multi.Generic ) - warning
22:47:08.0708 5756 Wlansvc - detected UnsignedFile.Multi.Generic (1)
22:47:08.0740 5756 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:47:09.0130 5756 WmiAcpi ( UnsignedFile.Multi.Generic ) - warning
22:47:09.0130 5756 WmiAcpi - detected UnsignedFile.Multi.Generic (1)
22:47:09.0176 5756 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:47:09.0613 5756 wmiApSrv ( UnsignedFile.Multi.Generic ) - warning
22:47:09.0613 5756 wmiApSrv - detected UnsignedFile.Multi.Generic (1)
22:47:09.0676 5756 WMPNetworkSvc - ok
22:47:09.0707 5756 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:47:10.0112 5756 WPCSvc ( UnsignedFile.Multi.Generic ) - warning
22:47:10.0112 5756 WPCSvc - detected UnsignedFile.Multi.Generic (1)
22:47:10.0159 5756 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:47:10.0549 5756 WPDBusEnum ( UnsignedFile.Multi.Generic ) - warning
22:47:10.0549 5756 WPDBusEnum - detected UnsignedFile.Multi.Generic (1)
22:47:10.0596 5756 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
22:47:11.0002 5756 WpdUsb ( UnsignedFile.Multi.Generic ) - warning
22:47:11.0002 5756 WpdUsb - detected UnsignedFile.Multi.Generic (1)
22:47:11.0158 5756 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:47:11.0220 5756 WPFFontCache_v0400 - ok
22:47:11.0267 5756 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:47:11.0797 5756 ws2ifsl ( UnsignedFile.Multi.Generic ) - warning
22:47:11.0797 5756 ws2ifsl - detected UnsignedFile.Multi.Generic (1)
22:47:11.0828 5756 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll
22:47:12.0343 5756 wscsvc ( UnsignedFile.Multi.Generic ) - warning
22:47:12.0343 5756 wscsvc - detected UnsignedFile.Multi.Generic (1)
22:47:12.0343 5756 WSearch - ok
22:47:12.0562 5756 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:47:12.0702 5756 wuauserv - ok
22:47:12.0764 5756 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:47:13.0186 5756 WUDFRd ( UnsignedFile.Multi.Generic ) - warning
22:47:13.0186 5756 WUDFRd - detected UnsignedFile.Multi.Generic (1)
22:47:13.0217 5756 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:47:13.0576 5756 wudfsvc ( UnsignedFile.Multi.Generic ) - warning
22:47:13.0576 5756 wudfsvc - detected UnsignedFile.Multi.Generic (1)
22:47:13.0622 5756 [ D433F6726A727B0528F6E39F423FE1FD ] yksvc C:\Windows\System32\ykx64mpcoinst.dll
22:47:14.0059 5756 yksvc ( UnsignedFile.Multi.Generic ) - warning
22:47:14.0059 5756 yksvc - detected UnsignedFile.Multi.Generic (1)
22:47:14.0106 5756 [ 541CBA0F3F679CC6E5ED4967F3FD4F6C ] yukonx64 C:\Windows\system32\DRIVERS\yk60x64.sys
22:47:14.0590 5756 yukonx64 ( UnsignedFile.Multi.Generic ) - warning
22:47:14.0590 5756 yukonx64 - detected UnsignedFile.Multi.Generic (1)
22:47:14.0605 5756 ================ Scan global ===============================
22:47:14.0652 5756 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
22:47:14.0714 5756 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
22:47:14.0746 5756 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
22:47:14.0808 5756 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
22:47:14.0824 5756 [Global] - ok
22:47:14.0824 5756 ================ Scan MBR ==================================
22:47:14.0839 5756 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:47:15.0635 5756 \Device\Harddisk0\DR0 - ok
22:47:15.0635 5756 ================ Scan VBR ==================================
22:47:15.0682 5756 [ BC7E299168F34C973841D8D393D8CFD4 ] \Device\Harddisk0\DR0\Partition1
22:47:15.0697 5756 \Device\Harddisk0\DR0\Partition1 - ok
22:47:15.0713 5756 [ 13660CE30A37921600294F02FD687243 ] \Device\Harddisk0\DR0\Partition2
22:47:15.0713 5756 \Device\Harddisk0\DR0\Partition2 - ok
22:47:15.0713 5756 ============================================================
22:47:15.0713 5756 Scan finished
22:47:15.0713 5756 ============================================================
22:47:15.0728 5740 Detected object count: 254
22:47:15.0728 5740 Actual detected object count: 254
Im Orginal steht auch unter der oben reinkopierten Textmenge nichts weiter, was ich hätte vergessen können. Was mache ich falsch? Geändert von SteGri (19.11.2012 um 23:07 Uhr) |
|
20.11.2012, 01:45
| #26 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? OK, hier ist nochmal was. Ist das besser, oder genau das Gleiche? Ich habe das direkt aus der TDSS-Maske in ein txt-Dokument reinkopiert. Oh, Mann. Jetzt darf ich das nicht einfügen, weil es zu lang ist. Ich bin so müde. Also hab ichs als Anhang drangemacht, siehe unten. War das richtig? Geändert von SteGri (20.11.2012 um 01:57 Uhr) |
|
20.11.2012, 10:32
| #27 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Jetzt ist es vollständig. Und soweit unauffällig. Was genau ist an Problemen jetzt noch offen?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.11.2012, 12:24
| #28 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Die 250 Warnhinweise von TDSSKiller kann ich also ignorieren? Die Symptome sind: 1) Das Original-Problem war, dass mein Thunderbird plötzlich verschwunden war. Einfach weg. "Auf C:\ ... Thundberbird kann nicht zugegriffen werden". "... beschädigt und nicht lesbar." Die Verknüpfung dazu auf dem Desktop führt ins Leere und fragt bei Anklicken, ob sie gelöscht werden kann. Ich habe zwar ein Thunderbird-Backup von drei Monaten vorher, hätte aber gerne den Thunderbird wieder zurückgeholt - oder gewusst warum/wohin er verschwunden ist. Post #1: http://www.trojaner-board.de/123240-...tml#post905279 2) Windows fordert mich ständig auf, schon beim Hochfahren, "CHKDSK" laufen zu lassen, weil diese oder jene Datei (bspw. winlogon.exe) beschädigt ist. Aber ich kann CHKDSK nicht laufen lassen, weil ich keinen Zugriff bekomme. "Volume kann für direkten Zugriff nicht geöffnet werden". Auch als Administrator wird CHKDSK nicht ausgeführt. Siehe erste Seite dieses Threads. Post #5: http://www.trojaner-board.de/123240-...tml#post907203 3) Windows Update schlägt fehl. Code 80070000B. Ich kann die Update-Dateien nicht installieren. Siehe hier. Post #15 (unterer Teil): http://www.trojaner-board.de/123240-...tml#post958819 4) Die CPU-Auslastung steigt bei Standard-Gebrauch zum Teil auf 90% und der Physikalische Speicher wird mit 42% angegeben. 5) Die Festplatte und/oder der Lüfter machen perodisch laute Summgeräusche. Geändert von SteGri (20.11.2012 um 12:30 Uhr) |
|
20.11.2012, 14:25
| #29 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? Danke für die aktuelle Zusammenfassung Dann bitte jetzt CF ausführen: ComboFix Ein Leitfaden und Tutorium zur Nutzung von ComboFix
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat! Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
20.11.2012, 20:43
| #30 |
| | Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? OK, das ComboFix habe ich auch laufen lassen. Das Programm hat mich - außer zum Warten - zu gar nichts aufgefordert. Ich habe das Programm nicht mit Rechtsklick auf den .exe-Link "als Administrator" ausgeführt. Hätte ich das machen müssen? Ich habe aber AntiVir und die Windows-Firewall ausgeschaltet.  Das ist der Inhalt der Log-Datei, die das Programm nach dem Durchlauf von selbst geöffnet hat: Combofix Logfile: Code:
ATTFilter ComboFix 12-11-20.02 - Office-PC 20.11.2012 20:23:57.1.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.4091.2676 [GMT 1:00]
ausgeführt von:: c:\users\NAME\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Neuer Wiederherstellungspunkt wurde erstellt
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Office-PC\AppData\Local\Temp\{26F98962-4D84-4DF8-AF9B-629FC4B4D03A}\ISBEW64.exe
c:\users\Office-PC\AppData\Local\Temp\{67365063-E8B1-40F7-91B3-E42A8BE4B6C7}\fpb.tmp
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MaAgent.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MAAuthProc.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MACLICX13.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MACLicX15.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MACSMANAGER.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MaCSMgr.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MaCSProHook.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\mapshapi.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\mapwij10.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MaSyncP.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MaWAMP.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MAWebControl.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MaWMP.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MPXBox.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\MtpAccess.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAFileUpdate.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdate.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdateBoot.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MaUpdateClient.exe
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\UserShare.dll
c:\users\Office-PC\AppData\Local\Temp\MarkAny\ContentSafer\XSYNCClt.dll
c:\users\OFFICE~1\AppData\Local\Temp\{26F98962-4D84-4DF8-AF9B-629FC4B4D03A}\ISBEW64.exe
c:\users\OFFICE~1\AppData\Local\Temp\{67365063-E8B1-40F7-91B3-E42A8BE4B6C7}\fpb.tmp
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MaAgent.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MAAuthProc.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MACLICX13.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MACLicX15.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MACSMANAGER.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MaCSMgr.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MaCSProHook.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\mapshapi.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\mapwij10.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MaSyncP.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MaWAMP.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MAWebControl.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MaWMP.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MPXBox.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\MtpAccess.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAFileUpdate.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdate.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdateBoot.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MaUpdateClient.exe
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\UserShare.dll
c:\users\OFFICE~1\AppData\Local\Temp\MarkAny\ContentSafer\XSYNCClt.dll
c:\windows\SysWow64\muzapp.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2012-10-20 bis 2012-11-20 ))))))))))))))))))))))))))))))
.
.
2012-11-20 19:29 . 2012-11-20 19:29 -------- d-----w- c:\users\NAME\AppData\Local\temp
2012-11-20 19:29 . 2012-11-20 19:29 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-20 19:21 . 2012-11-20 19:21 -------- d-----w- C:\32788R22FWJFW
2012-11-20 11:16 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D18A1852-8C17-4E0A-8AC9-98DE0B03B3E6}\mpengine.dll
2012-11-18 17:05 . 2012-11-18 17:05 -------- d-----w- c:\program files (x86)\Seagate
2012-11-18 17:04 . 2012-11-18 17:04 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-11-17 02:17 . 2012-11-17 02:17 -------- d-----w- c:\program files\7-Zip
2012-11-15 12:13 . 2012-09-24 22:16 95208 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-11-13 12:13 . 2012-11-13 12:13 -------- d-----w- c:\program files (x86)\Fotosizer
2012-11-04 18:24 . 2012-11-04 18:24 -------- d-----w- c:\users\NAME\AppData\Roaming\FreeHideIP
2012-11-04 18:17 . 2012-11-04 18:17 -------- d-----w- c:\programdata\FreeHideIP
2012-11-04 18:17 . 2012-11-04 18:17 -------- d-----w- c:\users\Office-PC\AppData\Roaming\FreeHideIP
2012-11-04 18:16 . 2012-11-04 18:16 -------- d-----w- c:\program files (x86)\FreeHideIP
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-16 02:02 . 2006-11-02 12:35 66395536 ----a-w- c:\windows\system32\mrt.exe
2012-11-15 12:10 . 2012-07-19 17:09 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-11-15 12:10 . 2012-07-19 17:09 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-09-10 20:44 . 2012-09-10 20:45 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-09-10 20:44 . 2012-09-10 20:45 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-08-28 08:05 . 2012-09-22 15:23 4659712 ----a-w- c:\windows\SysWow64\Redemption.dll
2012-08-28 08:04 . 2012-08-28 08:04 90112 ----a-w- c:\windows\MAMCityDownload.ocx
2012-08-28 08:04 . 2012-08-28 08:04 81920 ----a-w- c:\windows\SysWow64\issacapi_bs-2.3.dll
2012-08-28 08:04 . 2012-08-28 08:04 65536 ----a-w- c:\windows\SysWow64\issacapi_pe-2.3.dll
2012-08-28 08:04 . 2012-08-28 08:04 57344 ----a-w- c:\windows\SysWow64\issacapi_se-2.3.dll
2012-08-28 08:04 . 2012-08-28 08:04 49152 ----a-w- c:\windows\SysWow64\MaJGUILib.dll
2012-08-28 08:04 . 2012-08-28 08:04 45056 ----a-w- c:\windows\SysWow64\MaXMLProto.dll
2012-08-28 08:04 . 2012-08-28 08:04 40960 ----a-w- c:\windows\SysWow64\MTTELECHIP.dll
2012-08-28 08:04 . 2012-08-28 08:04 330240 ----a-w- c:\windows\MASetupCaller.dll
2012-08-28 08:04 . 2012-08-28 08:04 30568 ----a-w- c:\windows\MusiccityDownload.exe
2012-08-28 08:04 . 2012-08-28 08:04 200704 ----a-w- c:\windows\SysWow64\muzwmts.dll
2012-08-28 08:04 . 2012-08-28 08:04 143360 ----a-w- c:\windows\SysWow64\3DAudio.ax
2012-08-28 08:04 . 2012-08-28 08:04 135168 ----a-w- c:\windows\SysWow64\muzaf1.dll
2012-08-28 08:04 . 2012-08-28 08:04 122880 ----a-w- c:\windows\SysWow64\muzeffect.ax
2012-08-28 08:04 . 2012-08-28 08:04 118784 ----a-w- c:\windows\SysWow64\MaDRM.dll
2012-08-28 08:04 . 2012-08-28 08:04 110592 ----a-w- c:\windows\SysWow64\muzmp4sp.ax
2012-08-28 08:04 . 2012-09-22 15:22 821824 ----a-w- c:\windows\SysWow64\dgderapi.dll
2012-08-28 08:04 . 2012-09-22 15:22 319456 ----a-w- c:\windows\SysWow64\DIFxAPI.dll
2012-08-28 08:04 . 2012-09-22 15:22 20032 ----a-w- c:\windows\SysWow64\drivers\dgderdrv.sys
2012-08-28 08:04 . 2012-08-28 08:04 974848 ----a-w- c:\windows\SysWow64\cis-2.4.dll
2012-08-28 08:04 . 2012-08-28 08:04 57344 ----a-w- c:\windows\SysWow64\MTXSYNCICON.dll
2012-08-28 08:04 . 2012-08-28 08:04 57344 ----a-w- c:\windows\SysWow64\MK_Lyric.dll
2012-08-28 08:04 . 2012-08-28 08:04 569344 ----a-w- c:\windows\SysWow64\muzdecode.ax
2012-08-28 08:04 . 2012-08-28 08:04 491520 ----a-w- c:\windows\SysWow64\muzapp.dll
2012-08-28 08:04 . 2012-08-28 08:04 45320 ----a-w- c:\windows\SysWow64\MAMACExtract.dll
2012-08-28 08:04 . 2012-08-28 08:04 45056 ----a-w- c:\windows\SysWow64\MACXMLProto.dll
2012-08-28 08:04 . 2012-08-28 08:04 352256 ----a-w- c:\windows\SysWow64\MSLUR71.dll
2012-08-28 08:04 . 2012-08-28 08:04 258048 ----a-w- c:\windows\SysWow64\muzoggsp.ax
2012-08-28 08:04 . 2012-08-28 08:04 245760 ----a-w- c:\windows\SysWow64\MSCLib.dll
2012-08-28 08:04 . 2012-08-28 08:04 24576 ----a-w- c:\windows\SysWow64\MASetupCleaner.exe
2012-08-28 08:04 . 2012-08-28 08:04 155648 ----a-w- c:\windows\SysWow64\MSFLib.dll
2012-08-28 08:04 . 2012-08-28 08:04 131072 ----a-w- c:\windows\SysWow64\muzmpgsp.ax
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2008-01-21 . 22D13FF3DAFEC2A80634752B1EAA2DE6 . 22016 . . [6.0.6001.18000] .. c:\windows\system32\drivers\asyncmac.sys
.
[-] 2006-11-02 . DD5D684975352B85B52E3FD5347C20CB . 6144 . . [6.0.6000.16386] .. c:\windows\system32\drivers\null.sys
.
[-] 2009-04-11 . 458919C8C42E398DC4802178D5FFEE27 . 94720 . . [6.0.6002.18005] .. c:\windows\system32\drivers\tdx.sys
.
[-] 2008-01-21 . A1B39DE453433B115B4EA69EE0343816 . 103424 . . [6.0.6000.16386] .. c:\windows\system32\browser.dll
.
[-] 2011-11-16 . 260BF9C43EE12C6898A9F5AAB0FB0E5D . 11264 . . [6.0.6000.16386] .. c:\windows\system32\lsass.exe
.
[-] 2008-01-21 . 9B63B29DEFC0F3115A559D2597BF5D75 . 348160 . . [6.0.6000.16386] .. c:\windows\system32\netman.dll
.
[-] 2009-04-11 . 6D316F4859634071CC25C4FD4589AD2C . 1081856 . . [7.0.6001.18000] .. c:\windows\system32\qmgr.dll
.
[-] 2009-04-11 . CF8B9A3A5E7DC57724A89D0C3E8CF9EF . 719872 . . [6.0.6000.16386] .. c:\windows\system32\rpcss.dll
.
[-] 2009-04-11 . 934E0B7D77FF78C18D9F8891221B6DE3 . 384512 . . [6.0.6000.16386] .. c:\windows\system32\services.exe
.
[-] 2010-08-17 . F66FF751E7EFC816D266977939EF5DC3 . 273920 . . [6.0.6000.16386] .. c:\windows\system32\spoolsv.exe
.
[-] 2009-04-11 . 6D0773A3A65D28B663F334C90441D01A . 405504 . . [6.0.6001.18000] .. c:\windows\system32\winlogon.exe
.
[-] 2010-08-31 . 74ABE02BF1937B32C6FC169A782FCF60 . 633856 . . [5.82] .. c:\windows\system32\comctl32.dll
.
[-] 2008-01-21 . DDEE5FE5C3C3141CE02DE6B7B2BF686B . 1291264 . . [2001.12.6930.16386] .. c:\windows\system32\comres.dll
.
[-] 2012-04-23 . 62740B9D2A137E8CED41A9E4239A7A31 . 174592 . . [6.0.6000.16386] .. c:\windows\system32\cryptsvc.dll
.
[-] 2009-04-11 . E12F22B73F153DECE721CD45EC05B4AF . 361984 . . [2001.12.6932.18005] .. c:\windows\system32\es.dll
.
[-] 2009-04-11 . 62C15795629FA290656C6A7E5CD25F52 . 163840 . . [6.0.6002.18005] .. c:\windows\system32\imm32.dll
.
[-] 2010-04-16 . 11EAF90B44A9E378CB6F4ECBF2471F60 . 621568 . . [1.0626.6002.18244] .. c:\windows\system32\usp10.dll
.
[-] 2011-04-12 . 2299078C1E59FE69ADDF49897D6A373A . 1210880 . . [6.0.6001.18000] .. c:\windows\system32\kernel32.dll
.
[-] 2008-01-21 . 8BDE3074EE7BB92030448419E33635C7 . 29184 . . [6.0.6001.18000] .. c:\windows\system32\linkinfo.dll
.
[-] 2008-01-21 . 891E1D0DCDE747C8F1EE71E61EA193F5 . 32768 . . [6.0.6001.18000] .. c:\windows\system32\lpk.dll
.
[-] 2008-01-21 . D23E5184266747DDCE9D0C6581D916B3 . 433664 . . [6.0.6000.16386] .. c:\windows\system32\hnetcfg.dll
.
[-] 2012-06-28 . 864DFCF19D99711E6449255DD1F4F2B0 . 17809920 . . [9.00.8112.16421] .. c:\windows\system32\mshtml.dll
.
[-] 2011-12-14 . 2C74308C8A20F3F3A2226DFE36914CBF . 621056 . . [7.0.6002.18551] .. c:\windows\system32\msvcrt.dll
.
[-] 2009-04-11 . BB08D93011B82883EC33C7707A9627BE . 304128 . . [6.0.6000.16386] .. c:\windows\system32\mswsock.dll
.
[-] 2009-04-11 . A3F1B171702CA04744EE514243B45BFB . 717312 . . [6.0.6001.18000] .. c:\windows\system32\netlogon.dll
.
[-] 2009-04-11 . 7823A58BF0FE3CAAA555C12B5CF91290 . 123392 . . [6.0.6001.18000] .. c:\windows\system32\powrprof.dll
.
[-] 2009-04-11 . 9922ADB6DCA8F0F5EA038BEFF339C08B . 235520 . . [6.0.6000.16386] .. c:\windows\system32\scecli.dll
.
[-] 2006-11-02 . 2CCA759379C220D29F0066CA49E9259F . 6144 . . [6.0.6000.16386] .. c:\windows\system32\sfc.dll
.
[-] 2008-01-21 . CDA9F1373805AF88F6FA4F2064BBA24D . 27648 . . [6.0.6000.16386] .. c:\windows\system32\svchost.exe
.
[-] 2009-04-11 . CC2562B4D55E0B6A4758C65407F63B79 . 318976 . . [6.0.6000.16386] .. c:\windows\system32\tapisrv.dll
.
[-] 2009-04-11 . F3F5549E69AE8509342E67E4F972CA1C . 820224 . . [6.0.6001.18000] .. c:\windows\system32\user32.dll
.
[-] 2008-01-21 . A0AB2BB9A92293D9CE66E252719AB5FE . 28160 . . [6.0.6000.16386] .. c:\windows\system32\userinit.exe
.
[-] 2012-06-28 . 807CAA713A27CDF8ABE91BC367DBB269 . 1392128 . . [9.00.8112.16421] .. c:\windows\system32\wininet.dll
.
[-] 2009-04-11 . BAB10B35E2D5EE0DC3DE05A177C52C50 . 264704 . . [6.0.6000.16386] .. c:\windows\system32\ws2_32.dll
.
[-] 2008-01-21 . 9CD45523D76E4177C612B03C879E0AFF . 5120 . . [6.0.6001.18000] .. c:\windows\system32\ws2help.dll
.
[-] 2010-06-28 . 0CB93E3F36C4F4122E7CBBAA731F67D1 . 1915904 . . [6.0.6000.16386] .. c:\windows\system32\ole32.dll
.
[-] 2006-11-02 . 21322B1A2AD337C579F4A65EA0D25193 . 14848 . . [6.0.6000.16386] .. c:\windows\system32\cngaudit.dll
.
[-] 2008-01-21 . 117EA87DF785CA1B9D821F6F213DCE07 . 123904 . . [6.0.6000.16386] .. c:\windows\system32\wininit.exe
.
[-] 2006-11-02 . 7E370DF3743B39CD375C52F7995783C4 . 9728 . . [6.0.6000.16386] .. c:\windows\system32\ctfmon.exe
.
[-] 2009-07-10 . 56793271ECDEDD350C5ADD305603E963 . 302080 . . [6.0.6000.16386] .. c:\windows\system32\shsvcs.dll
.
[-] 2009-04-11 . 44B9D8EC2F3EF3A0EFB00857AF70D861 . 206848 . . [6.0.6000.16386] .. c:\windows\system32\regsvc.dll
.
[-] 2010-11-06 . 0F838C811AD295D2A4489B9993096C63 . 855040 . . [6.0.6001.18000] .. c:\windows\system32\schedsvc.dll
.
[-] 2008-01-21 . 192C74646EC5725AEF3F80D19FF75F6A . 185856 . . [6.0.6000.16386] .. c:\windows\system32\ssdpsrv.dll
.
[-] 2009-04-11 . 5CDD30BC217082DAC71A9878D9BFD566 . 547328 . . [6.0.6001.18000] .. c:\windows\system32\termsrv.dll
.
[-] 2008-01-21 . 17BF3BF5296936B153FDDDA189B60E07 . 5120 . . [6.0.6001.18000] .. c:\windows\system32\ksuser.dll
.
[-] 2008-01-21 . 6B58266234B36ABCDD43C797B0D1932E . 8192 . . [6.0.6001.18000] .. c:\windows\system32\msimg32.dll
.
[-] 2010-08-31 . DC8891A9203810FC994E7FCCF76E94C8 . 531968 . . [5.82] .. c:\windows\SysWOW64\comctl32.dll
.
[-] 2012-04-23 . 75C6A297E364014840B48ECCD7525E30 . 133120 . . [6.0.6000.16386] .. c:\windows\SysWOW64\cryptsvc.dll
.
[-] 2009-04-11 . 67058C46504BC12D821F38CF99B7B28F . 268800 . . [2001.12.6932.18005] .. c:\windows\SysWOW64\es.dll
.
[-] 2009-04-11 . B8FBE5F40B09F5D20E1E5CCFEF893D62 . 116224 . . [6.0.6002.18005] .. c:\windows\SysWOW64\imm32.dll
.
[-] 2011-04-12 . 7F4CAEAC24592FA9F574E1F8CD1D0604 . 859648 . . [6.0.6001.18000] .. c:\windows\SysWOW64\kernel32.dll
.
[-] 2006-11-02 . 24F90AEFEBE601D427CB4511E74CDCB6 . 22016 . . [6.0.6000.16386] .. c:\windows\SysWOW64\linkinfo.dll
.
[-] 2009-04-11 . DF37346EA13082E3E1B423B54014E641 . 23552 . . [6.0.6002.18005] .. c:\windows\SysWOW64\lpk.dll
.
[-] 2012-06-28 . 525F42376AA8D997B638145415244162 . 12317184 . . [9.00.8112.16421] .. c:\windows\SysWOW64\mshtml.dll
.
[-] 2011-12-14 . 17AF64D727545F2804F6E6D998327E3F . 680448 . . [7.0.6002.18551] .. c:\windows\SysWOW64\msvcrt.dll
.
[-] 2009-04-11 . 8617350C9B590B63E620881092751BCB . 223232 . . [6.0.6000.16386] .. c:\windows\SysWOW64\mswsock.dll
.
[-] 2009-04-11 . 95DAECF0FB120A7B5DA679CC54E37DDE . 592896 . . [6.0.6001.18000] .. c:\windows\SysWOW64\netlogon.dll
.
[-] 2009-04-11 . 9A7F4B2EDACD11444D048AA19CBB26AF . 98816 . . [6.0.6001.18000] .. c:\windows\SysWOW64\powrprof.dll
.
[-] 2009-04-11 . 8FC182167381E9915651267044105EE1 . 177152 . . [6.0.6000.16386] .. c:\windows\SysWOW64\scecli.dll
.
[-] 2006-11-02 . F4E1AA5D59C849A4AB47E895DC76B9C8 . 4608 . . [6.0.6000.16386] .. c:\windows\SysWOW64\sfc.dll
.
[-] 2008-01-21 . 3794B461C45882E06856F282EEF025AF . 21504 . . [6.0.6000.16386] .. c:\windows\SysWOW64\svchost.exe
.
[-] 2009-04-11 . D7673E4B38CE21EE54C59EEEB65E2483 . 242688 . . [6.0.6000.16386] .. c:\windows\SysWOW64\tapisrv.dll
.
[-] 2009-04-11 . D29FDB5DEDBDC1BD882164DC6DC4DD53 . 648704 . . [6.0.6001.18000] .. c:\windows\SysWOW64\user32.dll
.
[-] 2008-01-21 . 0E135526E9785D085BCD9AEDE6FBCBF9 . 25088 . . [6.0.6000.16386] .. c:\windows\SysWOW64\userinit.exe
.
[-] 2012-06-28 . 975129E360241BE751BE93D9E0AC7409 . 1129472 . . [9.00.8112.16421] .. c:\windows\SysWOW64\wininet.dll
.
[-] 2008-01-21 . B304D47D5744BA20FCB99FB8B2C07B0B . 179200 . . [6.0.6000.16386] .. c:\windows\SysWOW64\ws2_32.dll
.
[-] 2006-11-02 . 17C0671BF57057108A6D949510EE42C8 . 4608 . . [6.0.6000.16386] .. c:\windows\SysWOW64\ws2help.dll
.
[-] 2009-04-11 . 6B08E54A451B3F95E4109DBA7E594270 . 3079168 . . [6.0.6000.16386] .. c:\windows\explorer.exe
.
[-] 2008-01-21 . 5DFBCE56E689D90AE9E2FB278F80058E . 134656 . . [6.0.6000.16386] .. c:\windows\regedit.exe
.
[-] 2010-06-28 . 9586E7CB2255A8B097A7E4538202585E . 1316864 . . [6.0.6000.16386] .. c:\windows\SysWOW64\ole32.dll
.
[-] 2010-04-16 . 80FFF14F1757B9AF8BE9D314FC1AE88B . 502272 . . [1.0626.6002.18244] .. c:\windows\SysWOW64\usp10.dll
.
[-] 2006-11-02 . 919CC2A0476D5A6A4C935D4B88E29912 . 4608 . . [6.0.6000.16386] .. c:\windows\SysWOW64\ksuser.dll
.
[-] 2006-11-02 . 22BFD03DF51065A9ED8D17F8FB72296B . 8704 . . [6.0.6000.16386] .. c:\windows\SysWOW64\ctfmon.exe
.
[-] 2009-07-10 . C7230FBEE14437716701C15BE02C27B8 . 247808 . . [6.0.6000.16386] .. c:\windows\SysWOW64\shsvcs.dll
.
[-] 2006-11-02 . 2EC53B5A351C4D443896DBAD117F7E82 . 4608 . . [6.0.6000.16386] .. c:\windows\SysWOW64\msimg32.dll
.
[-] 2006-11-02 . 7F15B4953378C8B5161D65C26D5FED4D . 11776 . . [6.0.6000.16386] .. c:\windows\SysWOW64\cngaudit.dll
.
[-] 2008-01-21 . 101BA3EA053480BB5D957EF37C06B5ED . 96768 . . [6.0.6000.16386] .. c:\windows\SysWOW64\wininit.exe
.
[-] 2008-01-21 . 7A5F8218325F00396DAEA2F985FA0ECB . 18944 . . [6.0.6001.18000] .. c:\windows\SysWOW64\ias.dll
.
[-] 2010-08-31 15:46 . 2A64FE405579BB073FBABD68AF1468E7 . 954288 . . [4.1.6140] .. c:\windows\SysWOW64\mfc40u.dll
.
[-] 2008-01-21 . 68308183F4AE0BE7BF8ECD07CB297999 . 259072 . . [6.0.6000.16386] .. c:\windows\SysWOW64\upnphost.dll
.
[-] 2009-04-11 . 84B8827562B005C118CADBA0F25DB2C6 . 444416 . . [6.0.6000.16386] .. c:\windows\SysWOW64\dsound.dll
.
[-] 2009-04-11 . 8AAEEE8E59A70F37579993D118A34EE0 . 1788416 . . [6.0.6002.18005] .. c:\windows\SysWOW64\d3d9.dll
.
[-] 2008-01-21 . FA2A3AFADC4FB47DBC234A4E57F92CDB . 522752 . . [6.0.6000.16386] .. c:\windows\SysWOW64\ddraw.dll
.
[-] 2009-04-11 06:28 . A944A73CEC5921B871542FE5CC5E03E4 . 88576 . . [6.0.6002.18005] .. c:\windows\SysWOW64\olepro32.dll
.
[-] 2006-11-02 . BA7C3E9DD6B1A632124C8659E8014028 . 39424 . . [6.0.6000.16386] .. c:\windows\SysWOW64\perfctrs.dll
.
[-] 2009-04-11 . 69827805A221C21450BA22F4326A2EE3 . 20480 . . [6.0.6002.18005] .. c:\windows\SysWOW64\version.dll
.
[-] 2009-04-11 . 83199EF88D691E730B80666E29F90D58 . 17408 . . [6.0.6000.16386] .. c:\windows\SysWOW64\midimap.dll
.
[-] 2006-11-02 . A7D525E5C0D91C8C1D84C6BCD25AD77D . 10240 . . [6.0.6000.16386] .. c:\windows\SysWOW64\rasadhlp.dll
.
[-] 2008-01-21 . 22CFAEB9172F5F198048401485CD0571 . 9216 . . [6.0.6000.16386] .. c:\windows\SysWOW64\WSHTCPIP.DLL
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1555968]
"Free Hide IP"="c:\program files (x86)\FreeHideIP\FreeHideIP.exe" [2012-09-25 3810688]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-08-08 348664]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-18 421888]
"HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk /r \??\C:\0autocheck autochk *
.
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_15f4e438\AESTSr64.exe [2009-03-02 89600]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
Themes
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2010-11-03 1833576]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.de/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyServer = http=;ftp=;https=;
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\Office-PC\AppData\Roaming\Mozilla\Firefox\Profiles\p8o9pvz3.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.de/webhp?hl=de&tab=ww
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-SysTrayApp - c:\program files (x86)\IDT\WDM\sttray64.exe
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Mozilla Thunderbird 14.0 (x86 de) - c:\program files (x86)\Mozilla Thunderbird\uninstall\helper.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_265_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_265_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_265.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\TypeLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Zeit der Fertigstellung: 2012-11-20 20:34:57
ComboFix-quarantined-files.txt 2012-11-20 19:34
.
Vor Suchlauf: 10 Verzeichnis(se), 28.398.170.112 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 28.593.205.248 Bytes frei
.
- - End Of File - - 1FEB8EED3F8AD7E4992724B640031E04
Ich habe den Computer danach neugestartet und vorher das mit Windows Update versucht, geht weiterhin nicht. Beim Hochfahren kommt zunächst der DOS-Hinweis, dass das Volume für den direkten Zugriff nicht geöffnet werden kann. Und auf der Seite mit dem Windows-Begrüßungsbildchirm kommt dann eine Fehlermeldung, dass windows/fonts usw. defekt ist. Wenn man den Hinweis wegklickt, erscheint hinten dran der nächste, mit einem anderen Font-Fehler. Man kann aber auch drunter auf den Benutzernamen klicken, dann wird der Desktop geöffnet und alles scheint normal. . Geändert von SteGri (20.11.2012 um 20:59 Uhr) |
|
| Themen zu Winlogon.exe, CHKDSK, Thunderbird weg, Malwarebytes deaktiviert, Virus? |
| administrator, autostart, bli, chkdsk, computer, dateien, desktop, explorer, fehlermeldung, infizierte, internet, malwarebytes, microsoft, neu, pup.adware.agent, recycle.bin, setup, speicherplatz, suche, system32, viren, virus, virus?, vista, windows, windows media player, winlogon.exe |
Linear-Darstellung
