| |
| |||||||
Log-Analyse und Auswertung: Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehrWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
29.01.2013, 19:40
| #1 |
 |  Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr Hallo T-Board, ich habe mir eben mal meinen Laptop geschnappt und die 3 erforderlichen Log-Datein erstellt. Der Laptop ist schon diverse Jahre alt und besitzt stark veraltete Anti-Viren-Programme, die z.T. nicht mehr updaten. Da der PC in letzter Zeit extrem oft abstürzt und manche Befehle, wie Programme öffnen etc. manchmal gar nicht, manchmal langsam ausgeführt werden, glaube ich, dass sich auf ihm Viren befinden. Vielen Dank, wenn ihr mal rüberguckt: Die Log-Datein befinden sich im Anhang, das Board meinte, sie seien zu lang und müssten per Archiv mitgeschickt werden... Vielen Dank!  |
|
29.01.2013, 19:47
| #2 |
| /// Malware-holic   | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr hi
__________________warum ist kein Servicepack2 für vista instaliert? download tdss killer: http://www.trojaner-board.de/82358-t...entfernen.html Klicke auf Change parameters • Setze die Haken bei Verify driver digital signatures und Detect TDLFS file system • Klick auf OK und anschließend auf Start scan - bei funden erst mal immer skip wählen, log posten c: öffnen, tdsskiller-datum-version.txt öffnen, Inhalt posten
__________________ |
|
29.01.2013, 19:53
| #3 | |
| | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehrZitat:
2) Bevor ich jetzt etwas falsch mache, was genau meinst du mit der letzten Zeile "c: öffnen, tdsskiller-datum-version.txt öffnen, Inhalt posten" ? Kommt dieser Schritt nach dem Log-Posten oder ist es ein Teil davon? Danke! |
|
29.01.2013, 19:54
| #4 |
| /// Malware-holic | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr ne, nach dem log erstellen, damit du weist wo es sich befindet :-)
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
29.01.2013, 20:02
| #5 |
| | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr Hier die Logdatei... 12 Thread... uhiuhi EDIT: Jetzt aber Code:
ATTFilter 19:57:54.0157 3180 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:57:54.0473 3180 ============================================================
19:57:54.0473 3180 Current date / time: 2013/01/29 19:57:54.0473
19:57:54.0473 3180 SystemInfo:
19:57:54.0473 3180
19:57:54.0473 3180 OS Version: 6.0.6001 ServicePack: 1.0
19:57:54.0473 3180 Product type: Workstation
19:57:54.0473 3180 ComputerName: ***-PC
19:57:54.0474 3180 UserName: ***
19:57:54.0474 3180 Windows directory: C:\Windows
19:57:54.0474 3180 System windows directory: C:\Windows
19:57:54.0474 3180 Processor architecture: Intel x86
19:57:54.0474 3180 Number of processors: 2
19:57:54.0474 3180 Page size: 0x1000
19:57:54.0474 3180 Boot type: Normal boot
19:57:54.0474 3180 ============================================================
19:57:54.0837 3180 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:57:54.0841 3180 ============================================================
19:57:54.0841 3180 \Device\Harddisk0\DR0:
19:57:54.0841 3180 MBR partitions:
19:57:54.0841 3180 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x166F000, BlocksNum 0x23DBF2B0
19:57:54.0841 3180 ============================================================
19:57:54.0895 3180 C: <-> \Device\Harddisk0\DR0\Partition1
19:57:54.0895 3180 ============================================================
19:57:54.0895 3180 Initialize success
19:57:54.0895 3180 ============================================================
19:58:42.0400 2372 ============================================================
19:58:42.0400 2372 Scan started
19:58:42.0400 2372 Mode: Manual; SigCheck; TDLFS;
19:58:42.0400 2372 ============================================================
19:58:42.0694 2372 ================ Scan system memory ========================
19:58:42.0695 2372 System memory - ok
19:58:42.0695 2372 ================ Scan services =============================
19:58:42.0877 2372 [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI C:\Windows\system32\drivers\acpi.sys
19:58:42.0967 2372 ACPI - ok
19:58:43.0109 2372 [ E8FE4FCE23D2809BD88BCC1D0F8408CE ] AdobeActiveFileMonitor6.0 C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
19:58:43.0120 2372 AdobeActiveFileMonitor6.0 - ok
19:58:43.0178 2372 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:58:43.0199 2372 adp94xx - ok
19:58:43.0230 2372 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:58:43.0246 2372 adpahci - ok
19:58:43.0262 2372 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
19:58:43.0273 2372 adpu160m - ok
19:58:43.0289 2372 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:58:43.0300 2372 adpu320 - ok
19:58:43.0329 2372 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:58:43.0383 2372 AeLookupSvc - ok
19:58:43.0435 2372 [ 48EB99503533C27AC6135648E5474457 ] AFD C:\Windows\system32\drivers\afd.sys
19:58:43.0475 2372 AFD - ok
19:58:43.0530 2372 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:58:43.0541 2372 agp440 - ok
19:58:43.0568 2372 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
19:58:43.0579 2372 aic78xx - ok
19:58:43.0613 2372 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
19:58:43.0665 2372 ALG - ok
19:58:43.0689 2372 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
19:58:43.0698 2372 aliide - ok
19:58:43.0710 2372 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
19:58:43.0720 2372 amdagp - ok
19:58:43.0749 2372 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
19:58:43.0758 2372 amdide - ok
19:58:43.0785 2372 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
19:58:43.0839 2372 AmdK7 - ok
19:58:43.0862 2372 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:58:43.0917 2372 AmdK8 - ok
19:58:43.0975 2372 [ 9325E49D555D8F12CE1735227DBB3D80 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
19:58:44.0005 2372 ApfiltrService - ok
19:58:44.0055 2372 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
19:58:44.0096 2372 Appinfo - ok
19:58:44.0149 2372 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys
19:58:44.0159 2372 arc - ok
19:58:44.0189 2372 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:58:44.0200 2372 arcsas - ok
19:58:44.0305 2372 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:58:44.0315 2372 aspnet_state - ok
19:58:44.0371 2372 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
19:58:44.0380 2372 aswFsBlk - ok
19:58:44.0433 2372 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
19:58:44.0441 2372 aswMonFlt - ok
19:58:44.0471 2372 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\Windows\system32\drivers\AswRdr.sys
19:58:44.0479 2372 AswRdr - ok
19:58:44.0505 2372 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
19:58:44.0553 2372 aswSnx - ok
19:58:44.0624 2372 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
19:58:44.0639 2372 aswSP - ok
19:58:44.0698 2372 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
19:58:44.0706 2372 aswTdi - ok
19:58:44.0739 2372 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:58:44.0789 2372 AsyncMac - ok
19:58:44.0841 2372 [ 2D9C903DC76A66813D350A562DE40ED9 ] atapi C:\Windows\system32\drivers\atapi.sys
19:58:44.0851 2372 atapi - ok
19:58:44.0886 2372 [ 6455100A6CDB1DEDC551E12FD41BC519 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
19:58:44.0951 2372 Ati External Event Utility - ok
19:58:45.0061 2372 [ 9F66D1BA97911731133E46212539A08D ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
19:58:45.0273 2372 atikmdag - ok
19:58:45.0323 2372 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:58:45.0349 2372 AudioEndpointBuilder - ok
19:58:45.0356 2372 [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv C:\Windows\System32\Audiosrv.dll
19:58:45.0382 2372 Audiosrv - ok
19:58:45.0431 2372 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:58:45.0439 2372 avast! Antivirus - ok
19:58:45.0485 2372 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
19:58:45.0531 2372 Beep - ok
19:58:45.0578 2372 [ 8582E233C346AEFE759833E8A30DD697 ] BFE C:\Windows\System32\bfe.dll
19:58:45.0628 2372 BFE - ok
19:58:45.0710 2372 [ 02ED7B4DBC2A3232A389106DA7515C3D ] BITS C:\Windows\System32\qmgr.dll
19:58:45.0775 2372 BITS - ok
19:58:45.0815 2372 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
19:58:45.0864 2372 blbdrive - ok
19:58:45.0895 2372 [ 8153396D5551276227FA146900F734E6 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:58:45.0947 2372 bowser - ok
19:58:45.0989 2372 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
19:58:46.0029 2372 BrFiltLo - ok
19:58:46.0061 2372 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
19:58:46.0105 2372 BrFiltUp - ok
19:58:46.0142 2372 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
19:58:46.0208 2372 Browser - ok
19:58:46.0247 2372 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
19:58:46.0319 2372 Brserid - ok
19:58:46.0473 2372 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
19:58:46.0536 2372 BrSerWdm - ok
19:58:46.0574 2372 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
19:58:46.0637 2372 BrUsbMdm - ok
19:58:46.0769 2372 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
19:58:46.0826 2372 BrUsbSer - ok
19:58:46.0874 2372 [ AE19CFBBBA41800F3D5343E21D2CA09F ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
19:58:46.0928 2372 BthEnum - ok
19:58:46.0981 2372 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:58:47.0020 2372 BTHMODEM - ok
19:58:47.0038 2372 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:58:47.0088 2372 BthPan - ok
19:58:47.0143 2372 [ 75F19DF0BC62992D05FDD8A32D968531 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
19:58:47.0195 2372 BTHPORT - ok
19:58:47.0234 2372 [ FC930B47A83F5F61DFADC64A0719DE43 ] BthServ C:\Windows\System32\bthserv.dll
19:58:47.0278 2372 BthServ - ok
19:58:47.0330 2372 [ 4CE2A25C5936BC515357D60FEE73F221 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
19:58:47.0379 2372 BTHUSB - ok
19:58:47.0427 2372 [ ED97CD06EF748004B8AAC56C2D0AA5DB ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:58:47.0436 2372 btwaudio - ok
19:58:47.0472 2372 [ 4871B5ED4757197135FF65BE61DA44B3 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys
19:58:47.0481 2372 btwavdt - ok
19:58:47.0609 2372 [ 346B62198C40D6CF12A3FA8804247ADF ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
19:58:47.0625 2372 btwdins - ok
19:58:47.0672 2372 [ 6AF9FD2AEEBDC16A98D3E30E68440C5C ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
19:58:47.0679 2372 btwl2cap - ok
19:58:47.0697 2372 [ F5DA7DF99CF11FCB68E2BEA12002F63A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:58:47.0704 2372 btwrchid - ok
19:58:47.0735 2372 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:58:47.0783 2372 cdfs - ok
19:58:47.0818 2372 [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:58:47.0859 2372 cdrom - ok
19:58:47.0907 2372 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc C:\Windows\System32\certprop.dll
19:58:47.0956 2372 CertPropSvc - ok
19:58:48.0012 2372 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\drivers\circlass.sys
19:58:48.0078 2372 circlass - ok
19:58:48.0101 2372 [ 465745561C832B29F7C48B488AAB3842 ] CLFS C:\Windows\system32\CLFS.sys
19:58:48.0116 2372 CLFS - ok
19:58:48.0188 2372 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:58:48.0199 2372 clr_optimization_v2.0.50727_32 - ok
19:58:48.0259 2372 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:58:48.0270 2372 clr_optimization_v4.0.30319_32 - ok
19:58:48.0320 2372 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:58:48.0343 2372 CmBatt - ok
19:58:48.0361 2372 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:58:48.0370 2372 cmdide - ok
19:58:48.0388 2372 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:58:48.0397 2372 Compbatt - ok
19:58:48.0401 2372 COMSysApp - ok
19:58:48.0406 2372 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:58:48.0416 2372 crcdisk - ok
19:58:48.0432 2372 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys
19:58:48.0478 2372 Crusoe - ok
19:58:48.0529 2372 [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:58:48.0575 2372 CryptSvc - ok
19:58:48.0639 2372 [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:58:48.0664 2372 DcomLaunch - ok
19:58:48.0750 2372 [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:58:48.0795 2372 DfsC - ok
19:58:48.0922 2372 [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR C:\Windows\system32\DFSR.exe
19:58:49.0000 2372 DFSR - ok
19:58:49.0056 2372 [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
19:58:49.0106 2372 Dhcp - ok
19:58:49.0167 2372 [ 64109E623ABD6955C8FB110B592E68B7 ] disk C:\Windows\system32\drivers\disk.sys
19:58:49.0177 2372 disk - ok
19:58:49.0215 2372 [ F206E28ED74C491FD5D7C0A1119CE37F ] DMICall C:\Windows\system32\DRIVERS\DMICall.sys
19:58:49.0223 2372 DMICall - ok
19:58:49.0254 2372 [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:58:49.0299 2372 Dnscache - ok
19:58:49.0330 2372 [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc C:\Windows\System32\dot3svc.dll
19:58:49.0377 2372 dot3svc - ok
19:58:49.0416 2372 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
19:58:49.0442 2372 DPS - ok
19:58:49.0467 2372 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:58:49.0523 2372 drmkaud - ok
19:58:49.0593 2372 [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:58:49.0640 2372 DXGKrnl - ok
19:58:49.0684 2372 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
19:58:49.0727 2372 E1G60 - ok
19:58:49.0777 2372 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
19:58:49.0796 2372 EapHost - ok
19:58:49.0845 2372 [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache C:\Windows\system32\drivers\ecache.sys
19:58:49.0856 2372 Ecache - ok
19:58:49.0909 2372 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:58:49.0925 2372 ehRecvr - ok
19:58:49.0959 2372 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
19:58:49.0989 2372 ehSched - ok
19:58:50.0016 2372 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
19:58:50.0028 2372 ehstart - ok
19:58:50.0058 2372 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:58:50.0077 2372 elxstor - ok
19:58:50.0144 2372 [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt C:\Windows\system32\emdmgmt.dll
19:58:50.0191 2372 EMDMgmt - ok
19:58:50.0243 2372 [ 3DB974F3935483555D7148663F726C61 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:58:50.0286 2372 ErrDev - ok
19:58:50.0398 2372 [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem C:\Windows\system32\es.dll
19:58:50.0448 2372 EventSystem - ok
19:58:50.0611 2372 [ 306AC856622864C761CBDB5E816BB9D8 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:58:50.0674 2372 EvtEng ( UnsignedFile.Multi.Generic ) - warning
19:58:50.0674 2372 EvtEng - detected UnsignedFile.Multi.Generic (1)
19:58:50.0734 2372 [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat C:\Windows\system32\drivers\exfat.sys
19:58:50.0787 2372 exfat - ok
19:58:50.0836 2372 [ 3C489390C2E2064563727752AF8EAB9E ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:58:50.0881 2372 fastfat - ok
19:58:50.0918 2372 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:58:50.0965 2372 fdc - ok
19:58:51.0001 2372 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
19:58:51.0059 2372 fdPHost - ok
19:58:51.0091 2372 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
19:58:51.0163 2372 FDResPub - ok
19:58:51.0203 2372 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:58:51.0213 2372 FileInfo - ok
19:58:51.0224 2372 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:58:51.0274 2372 Filetrace - ok
19:58:51.0395 2372 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:58:51.0433 2372 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
19:58:51.0433 2372 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1)
19:58:51.0471 2372 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:58:51.0528 2372 flpydisk - ok
19:58:51.0557 2372 [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:58:51.0568 2372 FltMgr - ok
19:58:51.0638 2372 [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:58:51.0647 2372 FontCache3.0.0.0 - ok
19:58:51.0678 2372 [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:58:51.0729 2372 Fs_Rec - ok
19:58:51.0766 2372 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:58:51.0776 2372 gagp30kx - ok
19:58:51.0862 2372 [ D9F1113D9401185245573350712F92FC ] gpsvc C:\Windows\System32\gpsvc.dll
19:58:51.0915 2372 gpsvc - ok
19:58:51.0973 2372 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:58:51.0985 2372 gusvc - ok
19:58:52.0058 2372 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:58:52.0130 2372 HdAudAddService - ok
19:58:52.0159 2372 [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:58:52.0183 2372 HDAudBus - ok
19:58:52.0491 2372 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:58:52.0552 2372 HidBth - ok
19:58:52.0581 2372 [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr C:\Windows\system32\drivers\hidir.sys
19:58:52.0637 2372 HidIr - ok
19:58:52.0664 2372 [ 8FA640195279ACE21BEA91396A0054FC ] hidserv C:\Windows\system32\hidserv.dll
19:58:52.0730 2372 hidserv - ok
19:58:52.0794 2372 [ E2B5BD48AFCC0F0974FB44641B223250 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:58:52.0842 2372 HidUsb - ok
19:58:52.0874 2372 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:58:52.0928 2372 hkmsvc - ok
19:58:52.0966 2372 [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
19:58:52.0976 2372 HpCISSs - ok
19:58:53.0030 2372 [ 46D67209550973257601A533E2AC5785 ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
19:58:53.0056 2372 HSFHWAZL - ok
19:58:53.0501 2372 [ 7BC42C65B5C6281777C1A7605B253BA8 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:58:53.0607 2372 HSF_DPV - ok
19:58:53.0703 2372 [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
19:58:53.0737 2372 HSXHWAZL - ok
19:58:54.0500 2372 [ 96E241624C71211A79C84F50A8E71CAB ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:58:54.0545 2372 HTTP - ok
19:58:54.0597 2372 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys
19:58:54.0607 2372 i2omp - ok
19:58:54.0647 2372 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:58:54.0690 2372 i8042prt - ok
19:58:54.0737 2372 [ DB0CC620B27A928D968C1A1E9CD9CB87 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
19:58:54.0749 2372 iaStor - ok
19:58:55.0128 2372 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
19:58:55.0142 2372 iaStorV - ok
19:58:55.0191 2372 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:58:55.0225 2372 IDriverT ( UnsignedFile.Multi.Generic ) - warning
19:58:55.0226 2372 IDriverT - detected UnsignedFile.Multi.Generic (1)
19:58:55.0321 2372 [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:58:55.0357 2372 idsvc - ok
19:58:55.0382 2372 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:58:55.0392 2372 iirsp - ok
19:58:55.0430 2372 [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT C:\Windows\System32\ikeext.dll
19:58:55.0483 2372 IKEEXT - ok
19:58:55.0602 2372 [ 4A0F260DF9A5333C07F4AB40CA9D4F4B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:58:55.0683 2372 IntcAzAudAddService - ok
19:58:55.0770 2372 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys
19:58:55.0779 2372 intelide - ok
19:58:55.0809 2372 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:58:55.0849 2372 intelppm - ok
19:58:55.0885 2372 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:58:55.0911 2372 IPBusEnum - ok
19:58:55.0915 2372 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:58:55.0959 2372 IpFilterDriver - ok
19:58:56.0022 2372 [ 6A35D233693EDC29A12742049BC5E37F ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:58:56.0065 2372 iphlpsvc - ok
19:58:56.0069 2372 IpInIp - ok
19:58:56.0103 2372 [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
19:58:56.0126 2372 IPMIDRV - ok
19:58:56.0146 2372 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
19:58:56.0170 2372 IPNAT - ok
19:58:56.0187 2372 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:58:56.0228 2372 IRENUM - ok
19:58:56.0258 2372 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:58:56.0268 2372 isapnp - ok
19:58:56.0297 2372 [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
19:58:56.0308 2372 iScsiPrt - ok
19:58:56.0318 2372 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
19:58:56.0328 2372 iteatapi - ok
19:58:56.0358 2372 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
19:58:56.0368 2372 iteraid - ok
19:58:56.0401 2372 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
19:58:56.0410 2372 IviRegMgr - ok
19:58:56.0426 2372 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:58:56.0437 2372 kbdclass - ok
19:58:56.0455 2372 [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:58:56.0478 2372 kbdhid - ok
19:58:56.0522 2372 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso C:\Windows\system32\lsass.exe
19:58:56.0565 2372 KeyIso - ok
19:58:56.0594 2372 [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:58:56.0613 2372 KSecDD - ok
19:58:56.0656 2372 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
19:58:56.0713 2372 KtmRm - ok
19:58:56.0752 2372 [ 1925E63C91CF1610AE41BFD539062079 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:58:56.0798 2372 LanmanServer - ok
19:58:56.0851 2372 [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:58:56.0892 2372 LanmanWorkstation - ok
19:58:56.0930 2372 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:58:56.0953 2372 lltdio - ok
19:58:56.0982 2372 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:58:57.0031 2372 lltdsvc - ok
19:58:57.0057 2372 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:58:57.0121 2372 lmhosts - ok
19:58:57.0160 2372 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:58:57.0170 2372 LSI_FC - ok
19:58:57.0197 2372 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:58:57.0208 2372 LSI_SAS - ok
19:58:57.0234 2372 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:58:57.0245 2372 LSI_SCSI - ok
19:58:57.0261 2372 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
19:58:57.0284 2372 luafv - ok
19:58:57.0310 2372 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:58:57.0324 2372 Mcx2Svc - ok
19:58:57.0352 2372 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:58:57.0387 2372 mdmxsdk - ok
19:58:57.0431 2372 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys
19:58:57.0441 2372 megasas - ok
19:58:57.0470 2372 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys
19:58:57.0486 2372 MegaSR - ok
19:58:57.0517 2372 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
19:58:57.0568 2372 MMCSS - ok
19:58:57.0585 2372 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
19:58:57.0645 2372 Modem - ok
19:58:57.0683 2372 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:58:57.0728 2372 monitor - ok
19:58:57.0745 2372 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:58:57.0754 2372 mouclass - ok
19:58:57.0762 2372 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:58:57.0807 2372 mouhid - ok
19:58:57.0828 2372 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
19:58:57.0838 2372 MountMgr - ok
19:58:57.0903 2372 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:58:57.0914 2372 MozillaMaintenance - ok
19:58:57.0951 2372 [ 511D011289755DD9F9A7579FB0B064E6 ] mpio C:\Windows\system32\drivers\mpio.sys
19:58:57.0961 2372 mpio - ok
19:58:57.0999 2372 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:58:58.0041 2372 mpsdrv - ok
19:58:58.0101 2372 [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc C:\Windows\system32\mpssvc.dll
19:58:58.0152 2372 MpsSvc - ok
19:58:58.0181 2372 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
19:58:58.0191 2372 Mraid35x - ok
19:58:58.0231 2372 [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:58:58.0283 2372 MRxDAV - ok
19:58:58.0359 2372 [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:58:58.0372 2372 mrxsmb - ok
19:58:58.0508 2372 [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:58:58.0522 2372 mrxsmb10 - ok
19:58:58.0559 2372 [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:58:58.0571 2372 mrxsmb20 - ok
19:58:58.0623 2372 [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci C:\Windows\system32\drivers\msahci.sys
19:58:58.0634 2372 msahci - ok
19:58:58.0704 2372 [ A99D2C7E30AD63EF920A894131CAF5F7 ] MSCSPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
19:58:58.0748 2372 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - warning
19:58:58.0748 2372 MSCSPTISRV - detected UnsignedFile.Multi.Generic (1)
19:58:58.0777 2372 [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:58:58.0788 2372 msdsm - ok
19:58:58.0809 2372 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
19:58:58.0836 2372 MSDTC - ok
19:58:58.0859 2372 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:58:58.0907 2372 Msfs - ok
19:58:58.0967 2372 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:58:58.0976 2372 msisadrv - ok
19:58:59.0027 2372 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:58:59.0085 2372 MSiSCSI - ok
19:58:59.0088 2372 msiserver - ok
19:58:59.0120 2372 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:58:59.0143 2372 MSKSSRV - ok
19:58:59.0154 2372 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:58:59.0218 2372 MSPCLOCK - ok
19:58:59.0239 2372 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:58:59.0262 2372 MSPQM - ok
19:58:59.0288 2372 [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:58:59.0299 2372 MsRPC - ok
19:58:59.0312 2372 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:58:59.0321 2372 mssmbios - ok
19:58:59.0356 2372 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:58:59.0379 2372 MSTEE - ok
19:58:59.0394 2372 [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup C:\Windows\system32\Drivers\mup.sys
19:58:59.0404 2372 Mup - ok
19:58:59.0435 2372 [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent C:\Windows\system32\qagentRT.dll
19:58:59.0464 2372 napagent - ok
19:58:59.0543 2372 [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:58:59.0556 2372 NativeWifiP - ok
19:58:59.0609 2372 [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:58:59.0628 2372 NDIS - ok
19:58:59.0666 2372 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:58:59.0708 2372 NdisTapi - ok
19:58:59.0738 2372 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:58:59.0761 2372 Ndisuio - ok
19:58:59.0789 2372 [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:58:59.0831 2372 NdisWan - ok
19:58:59.0853 2372 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:58:59.0899 2372 NDProxy - ok
19:58:59.0925 2372 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:58:59.0970 2372 NetBIOS - ok
19:59:00.0059 2372 [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
19:59:00.0083 2372 netbt - ok
19:59:00.0456 2372 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon C:\Windows\system32\lsass.exe
19:59:00.0471 2372 Netlogon - ok
19:59:00.0492 2372 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
19:59:00.0543 2372 Netman - ok
19:59:00.0580 2372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:59:00.0591 2372 NetMsmqActivator - ok
19:59:00.0595 2372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:59:00.0605 2372 NetPipeActivator - ok
19:59:00.0636 2372 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
19:59:00.0691 2372 netprofm - ok
19:59:00.0695 2372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:59:00.0705 2372 NetTcpActivator - ok
19:59:00.0710 2372 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:59:00.0720 2372 NetTcpPortSharing - ok
19:59:00.0841 2372 [ E559EA9138C77B5D1FDA8C558764A25F ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
19:59:00.0963 2372 NETw5v32 - ok
19:59:00.0997 2372 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:59:01.0007 2372 nfrd960 - ok
19:59:01.0044 2372 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:59:01.0104 2372 NlaSvc - ok
19:59:01.0124 2372 [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:59:01.0168 2372 Npfs - ok
19:59:01.0194 2372 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
19:59:01.0249 2372 nsi - ok
19:59:01.0290 2372 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:59:01.0333 2372 nsiproxy - ok
19:59:01.0411 2372 [ 080FC237D26F860E8996550566C8EBBF ] NSUService C:\Program Files\Sony\Network Utility\NSUService.exe
19:59:01.0440 2372 NSUService ( UnsignedFile.Multi.Generic ) - warning
19:59:01.0441 2372 NSUService - detected UnsignedFile.Multi.Generic (1)
19:59:01.0491 2372 [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:59:01.0521 2372 Ntfs - ok
19:59:01.0568 2372 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
19:59:01.0607 2372 ntrigdigi - ok
19:59:01.0628 2372 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
19:59:01.0678 2372 Null - ok
19:59:01.0726 2372 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:59:01.0736 2372 nvraid - ok
19:59:01.0757 2372 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:59:01.0766 2372 nvstor - ok
19:59:01.0792 2372 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:59:01.0803 2372 nv_agp - ok
19:59:01.0806 2372 NwlnkFlt - ok
19:59:01.0811 2372 NwlnkFwd - ok
19:59:01.0959 2372 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:59:01.0980 2372 odserv - ok
19:59:02.0042 2372 [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
19:59:02.0089 2372 ohci1394 - ok
19:59:02.0132 2372 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:59:02.0144 2372 ose - ok
19:59:02.0199 2372 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc C:\Windows\system32\p2psvc.dll
19:59:02.0296 2372 p2pimsvc - ok
19:59:02.0309 2372 [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc C:\Windows\system32\p2psvc.dll
19:59:02.0364 2372 p2psvc - ok
19:59:02.0418 2372 [ 41C33FB4FD929FED732A00D2DAEF5BE0 ] PACSPTISVR C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
19:59:02.0458 2372 PACSPTISVR ( UnsignedFile.Multi.Generic ) - warning
19:59:02.0458 2372 PACSPTISVR - detected UnsignedFile.Multi.Generic (1)
19:59:02.0503 2372 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys
19:59:02.0577 2372 Parport - ok
19:59:02.0617 2372 [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:59:02.0627 2372 partmgr - ok
19:59:03.0470 2372 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
19:59:03.0509 2372 Parvdm - ok
19:59:03.0552 2372 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
19:59:03.0594 2372 PcaSvc - ok
19:59:03.0635 2372 [ 01B94418DEB235DFF777CC80076354B4 ] pci C:\Windows\system32\drivers\pci.sys
19:59:03.0646 2372 pci - ok
19:59:03.0668 2372 [ FC175F5DDAB666D7F4D17449A547626F ] pciide C:\Windows\system32\drivers\pciide.sys
19:59:03.0678 2372 pciide - ok
19:59:03.0691 2372 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:59:03.0703 2372 pcmcia - ok
19:59:03.0744 2372 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:59:03.0837 2372 PEAUTH - ok
19:59:03.0999 2372 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
19:59:04.0117 2372 pla - ok
19:59:04.0200 2372 [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:59:04.0252 2372 PlugPlay - ok
19:59:04.0288 2372 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
19:59:04.0346 2372 PNRPAutoReg - ok
19:59:04.0358 2372 [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc C:\Windows\system32\p2psvc.dll
19:59:04.0440 2372 PNRPsvc - ok
19:59:05.0043 2372 [ BE12071E450BD77CF2C814022B7DD28B ] pohci13F C:\Users\***\AppData\Local\Temp\pohci13F.sys
19:59:05.0049 2372 pohci13F ( UnsignedFile.Multi.Generic ) - warning
19:59:05.0049 2372 pohci13F - detected UnsignedFile.Multi.Generic (1)
19:59:05.0094 2372 [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:59:05.0141 2372 PolicyAgent - ok
19:59:05.0196 2372 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:59:05.0219 2372 PptpMiniport - ok
19:59:05.0249 2372 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys
19:59:05.0304 2372 Processor - ok
19:59:05.0357 2372 [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc C:\Windows\system32\profsvc.dll
19:59:05.0405 2372 ProfSvc - ok
19:59:05.0434 2372 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:59:05.0448 2372 ProtectedStorage - ok
19:59:05.0512 2372 [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched C:\Windows\system32\DRIVERS\pacer.sys
19:59:05.0562 2372 PSched - ok
19:59:05.0600 2372 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
19:59:05.0608 2372 PxHelp20 - ok
19:59:05.0672 2372 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:59:05.0706 2372 ql2300 - ok
19:59:05.0838 2372 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:59:05.0848 2372 ql40xx - ok
19:59:05.0885 2372 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
19:59:05.0905 2372 QWAVE - ok
19:59:05.0920 2372 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:59:05.0954 2372 QWAVEdrv - ok
19:59:05.0977 2372 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:59:06.0000 2372 RasAcd - ok
19:59:06.0021 2372 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
19:59:06.0064 2372 RasAuto - ok
19:59:06.0089 2372 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:59:06.0136 2372 Rasl2tp - ok
19:59:06.0171 2372 [ 6E7C284FC5C4EC07AD164D93810385A6 ] RasMan C:\Windows\System32\rasmans.dll
19:59:06.0201 2372 RasMan - ok
19:59:06.0219 2372 [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:59:06.0259 2372 RasPppoe - ok
19:59:06.0286 2372 [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:59:06.0309 2372 RasSstp - ok
19:59:06.0329 2372 [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:59:06.0372 2372 rdbss - ok
19:59:06.0398 2372 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:59:06.0446 2372 RDPCDD - ok
19:59:06.0496 2372 [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
19:59:06.0524 2372 rdpdr - ok
19:59:06.0528 2372 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:59:06.0569 2372 RDPENCDD - ok
19:59:06.0603 2372 [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:59:06.0655 2372 RDPWD - ok
19:59:06.0687 2372 [ 001B4278407F4303EFC902A2B16F2453 ] regi C:\Windows\system32\drivers\regi.sys
19:59:06.0694 2372 regi - ok
19:59:06.0764 2372 [ B33C88DF3588ACF250B87A004526C31A ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:59:06.0829 2372 RegSrvc ( UnsignedFile.Multi.Generic ) - warning
19:59:06.0829 2372 RegSrvc - detected UnsignedFile.Multi.Generic (1)
19:59:06.0872 2372 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:59:06.0932 2372 RemoteAccess - ok
19:59:06.0971 2372 [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:59:07.0002 2372 RemoteRegistry - ok
19:59:07.0034 2372 [ 23F486726DA7A9B2F3EC7326421A9C36 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:59:07.0076 2372 RFCOMM - ok
19:59:07.0111 2372 [ D0C2A0CE1091E08EFB7CCBA6CEA4C3F9 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
19:59:07.0122 2372 rimsptsk - ok
19:59:07.0148 2372 [ C22E4E27CCDF9AA5FE8143104F28CDE3 ] risdptsk C:\Windows\system32\DRIVERS\risdptsk.sys
19:59:07.0179 2372 risdptsk - ok
19:59:07.0225 2372 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
19:59:07.0238 2372 RpcLocator - ok
19:59:07.0341 2372 [ 301AE00E12408650BADDC04DBC832830 ] RpcSs C:\Windows\system32\rpcss.dll
19:59:07.0365 2372 RpcSs - ok
19:59:07.0400 2372 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:59:07.0423 2372 rspndr - ok
19:59:07.0468 2372 [ 39C5C2FBF652C9F8C194873D5C8A1F58 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIV.sys
19:59:07.0476 2372 RTHDMIAzAudService - ok
19:59:07.0533 2372 [ 65330E78C17DB8A99A7FF1BA3C8824B6 ] RtkAudioService C:\Windows\RtkAudioService.exe
19:59:07.0542 2372 RtkAudioService - ok
19:59:07.0557 2372 [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs C:\Windows\system32\lsass.exe
19:59:07.0571 2372 SamSs - ok
19:59:07.0680 2372 [ 224049C51E2C2D07B02B1BED262976A1 ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
19:59:07.0694 2372 SbieDrv - ok
19:59:07.0729 2372 [ 3129023CEF1A2225665D44F9545DAED4 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
19:59:07.0739 2372 SbieSvc - ok
19:59:07.0759 2372 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:59:07.0769 2372 sbp2port - ok
19:59:07.0812 2372 [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:59:07.0859 2372 SCardSvr - ok
19:59:07.0962 2372 [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule C:\Windows\system32\schedsvc.dll
19:59:08.0029 2372 Schedule - ok
19:59:08.0076 2372 [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc C:\Windows\System32\certprop.dll
19:59:08.0099 2372 SCPolicySvc - ok
19:59:08.0148 2372 [ 126EA89BCC413EE45E3004FB0764888F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
19:59:08.0198 2372 sdbus - ok
19:59:08.0242 2372 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:59:08.0260 2372 SDRSVC - ok
19:59:08.0285 2372 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:59:08.0349 2372 secdrv - ok
19:59:08.0371 2372 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
19:59:08.0422 2372 seclogon - ok
19:59:08.0452 2372 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
19:59:08.0478 2372 SENS - ok
19:59:08.0501 2372 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys
19:59:08.0539 2372 Serenum - ok
19:59:08.0563 2372 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys
19:59:08.0605 2372 Serial - ok
19:59:08.0619 2372 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:59:08.0642 2372 sermouse - ok
19:59:08.0672 2372 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
19:59:08.0699 2372 SessionEnv - ok
19:59:08.0753 2372 [ 8B7C1768D2CDE2E02E09A66563DDFD16 ] SFEP C:\Windows\system32\DRIVERS\SFEP.sys
19:59:08.0764 2372 SFEP - ok
19:59:08.0782 2372 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:59:08.0801 2372 sffdisk - ok
19:59:08.0830 2372 [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:59:08.0870 2372 sffp_mmc - ok
19:59:08.0890 2372 [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:59:08.0936 2372 sffp_sd - ok
19:59:09.0090 2372 [ C33BFBD6E9E41FCD9FFEF9729E9FAED6 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:59:09.0140 2372 sfloppy - ok
19:59:09.0190 2372 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:59:09.0241 2372 SharedAccess - ok
19:59:09.0286 2372 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:59:09.0323 2372 ShellHWDetection - ok
19:59:09.0361 2372 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys
19:59:09.0371 2372 sisagp - ok
19:59:09.0381 2372 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
19:59:09.0392 2372 SiSRaid2 - ok
19:59:09.0405 2372 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:59:09.0416 2372 SiSRaid4 - ok
19:59:09.0454 2372 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
19:59:09.0466 2372 SkypeUpdate - ok
19:59:09.0618 2372 [ 0BA91E1358AD25236863039BB2609A2E ] slsvc C:\Windows\system32\SLsvc.exe
19:59:09.0800 2372 slsvc - ok
19:59:09.0848 2372 [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify C:\Windows\system32\SLUINotify.dll
19:59:09.0906 2372 SLUINotify - ok
19:59:09.0933 2372 [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:59:09.0957 2372 Smb - ok
19:59:10.0003 2372 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:59:10.0030 2372 SNMPTRAP - ok
19:59:10.0091 2372 [ DC826AFFA608F50C385BCA4C71EF1BDD ] SOHCImp C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe
19:59:10.0101 2372 SOHCImp - ok
19:59:10.0155 2372 [ 1EC739F65C51FA1C7AC4502464A3C3A8 ] SOHDms C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
19:59:10.0173 2372 SOHDms - ok
19:59:10.0185 2372 [ EC8FAB4AC684445D6032AA5C6E77CA2E ] SOHDs C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
19:59:10.0193 2372 SOHDs - ok
19:59:10.0227 2372 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
19:59:10.0236 2372 spldr - ok
19:59:10.0314 2372 [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler C:\Windows\System32\spoolsv.exe
19:59:10.0351 2372 Spooler - ok
19:59:10.0462 2372 [ D15DA1BA189770D93EEA2D7E18F95AF9 ] sptd C:\Windows\System32\Drivers\sptd.sys
19:59:10.0513 2372 sptd - ok
19:59:10.0547 2372 [ F63102F289AE2039940B22E9B2A8E0BD ] SPTISRV C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
19:59:10.0580 2372 SPTISRV ( UnsignedFile.Multi.Generic ) - warning
19:59:10.0580 2372 SPTISRV - detected UnsignedFile.Multi.Generic (1)
19:59:10.0631 2372 [ 2252AEF839B1093D16761189F45AF885 ] srv C:\Windows\system32\DRIVERS\srv.sys
19:59:10.0646 2372 srv - ok
19:59:10.0685 2372 [ B7FF59408034119476B00A81BB53D5D1 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:59:10.0728 2372 srv2 - ok
19:59:10.0752 2372 [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:59:10.0789 2372 srvnet - ok
19:59:10.0833 2372 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:59:10.0861 2372 SSDPSRV - ok
19:59:10.0896 2372 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:59:10.0932 2372 SstpSvc - ok
19:59:10.0965 2372 [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc C:\Windows\System32\wiaservc.dll
19:59:11.0035 2372 stisvc - ok
19:59:11.0080 2372 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:59:11.0089 2372 swenum - ok
19:59:11.0158 2372 [ B36C7CDB86F7F7A8E884479219766950 ] swprv C:\Windows\System32\swprv.dll
19:59:11.0187 2372 swprv - ok
19:59:11.0218 2372 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
19:59:11.0227 2372 Symc8xx - ok
19:59:11.0276 2372 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
19:59:11.0285 2372 Sym_hi - ok
19:59:11.0315 2372 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
19:59:11.0325 2372 Sym_u3 - ok
19:59:11.0409 2372 [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain C:\Windows\system32\sysmain.dll
19:59:11.0475 2372 SysMain - ok
19:59:11.0497 2372 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:59:11.0515 2372 TabletInputService - ok
19:59:11.0535 2372 [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv C:\Windows\System32\tapisrv.dll
19:59:11.0585 2372 TapiSrv - ok
19:59:11.0638 2372 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
19:59:11.0665 2372 TBS - ok
19:59:11.0740 2372 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:59:11.0771 2372 Tcpip - ok
19:59:11.0788 2372 [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
19:59:11.0818 2372 Tcpip6 - ok
19:59:11.0879 2372 [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:59:11.0932 2372 tcpipreg - ok
19:59:11.0962 2372 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:59:11.0987 2372 TDPIPE - ok
19:59:11.0997 2372 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:59:12.0044 2372 TDTCP - ok
19:59:12.0076 2372 [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:59:12.0128 2372 tdx - ok
19:59:12.0169 2372 [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:59:12.0179 2372 TermDD - ok
19:59:12.0214 2372 [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService C:\Windows\System32\termsrv.dll
19:59:12.0293 2372 TermService - ok
19:59:12.0353 2372 [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes C:\Windows\system32\shsvcs.dll
19:59:12.0371 2372 Themes - ok
19:59:12.0485 2372 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
19:59:12.0509 2372 THREADORDER - ok
19:59:12.0595 2372 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
19:59:12.0652 2372 TrkWks - ok
19:59:12.0719 2372 [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:59:12.0743 2372 TrustedInstaller - ok
19:59:12.0777 2372 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:59:12.0800 2372 tssecsrv - ok
19:59:12.0831 2372 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
19:59:12.0866 2372 tunmp - ok
19:59:12.0880 2372 [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:59:12.0893 2372 tunnel - ok
19:59:12.0917 2372 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:59:12.0927 2372 uagp35 - ok
19:59:12.0952 2372 [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:59:13.0001 2372 udfs - ok
19:59:13.0057 2372 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:59:13.0130 2372 UI0Detect - ok
19:59:13.0156 2372 UIUSys - ok
19:59:13.0179 2372 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:59:13.0190 2372 uliagpkx - ok
19:59:13.0206 2372 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys
19:59:13.0220 2372 uliahci - ok
19:59:13.0237 2372 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
19:59:13.0249 2372 UlSata - ok
19:59:13.0263 2372 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
19:59:13.0274 2372 ulsata2 - ok
19:59:13.0289 2372 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:59:13.0338 2372 umbus - ok
19:59:13.0375 2372 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
19:59:13.0426 2372 upnphost - ok
19:59:13.0526 2372 [ 292A25BB75A568AE2C67169BA2C6365A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:59:13.0586 2372 usbaudio - ok
19:59:13.0629 2372 [ A7CD5B4ADEA26765CAB06BDAB7B07B13 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:59:13.0665 2372 usbccgp - ok
19:59:13.0720 2372 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:59:13.0777 2372 usbcir - ok
19:59:13.0800 2372 [ 686D4188AE36254C3008B71FEDACADF3 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:59:13.0812 2372 usbehci - ok
19:59:13.0831 2372 [ 4E42F665A658F08D153F7FFFE7C83806 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:59:13.0873 2372 usbhub - ok
19:59:13.0979 2372 [ D5A50C562D382B37E259B3368B07F424 ] USBMULCD C:\Windows\system32\drivers\CM106.sys
19:59:14.0067 2372 USBMULCD - ok
19:59:14.0091 2372 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:59:14.0156 2372 usbohci - ok
19:59:14.0194 2372 [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:59:14.0233 2372 usbprint - ok
19:59:14.0307 2372 [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:59:14.0356 2372 USBSTOR - ok
19:59:14.0378 2372 [ 40F95A3D6D50D82F947F1D167C2EC39D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:59:14.0389 2372 usbuhci - ok
19:59:14.0453 2372 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:59:14.0502 2372 usbvideo - ok
19:59:14.0545 2372 [ 032A0ACC3909AE7215D524E29D536797 ] UxSms C:\Windows\System32\uxsms.dll
19:59:14.0593 2372 UxSms - ok
19:59:14.0647 2372 [ 2A640DC735CB0112AC1DCD1E1549B27E ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
19:59:14.0652 2372 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
19:59:14.0652 2372 VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic (1)
19:59:14.0714 2372 [ 693A3FDD279C345105FFF9DDE277849B ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
19:59:14.0723 2372 VAIO Event Service - ok
19:59:14.0779 2372 [ 43CEC9BF5A4F2917982AD01D92E0F44D ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
19:59:14.0794 2372 VAIO Power Management - ok
19:59:14.0842 2372 [ CBCBE2233D21E9B278F95F5CB28BC8AE ] VCFw C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
19:59:14.0879 2372 VCFw ( UnsignedFile.Multi.Generic ) - warning
19:59:14.0879 2372 VCFw - detected UnsignedFile.Multi.Generic (1)
19:59:14.0917 2372 [ 27888F132D2EE0B72B28093A5F5F20EB ] VcmIAlzMgr C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
19:59:14.0930 2372 VcmIAlzMgr - ok
19:59:14.0975 2372 [ EE9ABFC2F8F2DCDC624B6A9D5CF3B19D ] VcmXmlIfHelper C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
19:59:14.0984 2372 VcmXmlIfHelper - ok
19:59:14.0987 2372 Vcsw - ok
19:59:15.0026 2372 [ B13BC395B9D6116628F5AF47E0802AC4 ] vds C:\Windows\System32\vds.exe
19:59:15.0112 2372 vds - ok
19:59:15.0150 2372 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:59:15.0174 2372 vga - ok
19:59:15.0198 2372 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
19:59:15.0222 2372 VgaSave - ok
19:59:15.0246 2372 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys
19:59:15.0257 2372 viaagp - ok
19:59:15.0281 2372 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys
19:59:15.0305 2372 ViaC7 - ok
19:59:15.0319 2372 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys
19:59:15.0329 2372 viaide - ok
19:59:15.0347 2372 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:59:15.0357 2372 volmgr - ok
19:59:15.0402 2372 [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:59:15.0414 2372 volmgrx - ok
19:59:15.0456 2372 [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:59:15.0469 2372 volsnap - ok
19:59:15.0489 2372 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:59:15.0501 2372 vsmraid - ok
19:59:15.0557 2372 [ D5FB73D19C46ADE183F968E13F186B23 ] VSS C:\Windows\system32\vssvc.exe
19:59:15.0631 2372 VSS - ok
19:59:15.0722 2372 [ 071634532066C2E29350D450C3412837 ] VzCdbSvc C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
19:59:15.0753 2372 VzCdbSvc ( UnsignedFile.Multi.Generic ) - warning
19:59:15.0753 2372 VzCdbSvc - detected UnsignedFile.Multi.Generic (1)
19:59:15.0789 2372 [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time C:\Windows\system32\w32time.dll
19:59:15.0844 2372 W32Time - ok
19:59:15.0879 2372 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:59:15.0943 2372 WacomPen - ok
19:59:15.0962 2372 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
19:59:15.0998 2372 Wanarp - ok
19:59:16.0002 2372 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:59:16.0021 2372 Wanarpv6 - ok
19:59:16.0073 2372 [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:59:16.0099 2372 wcncsvc - ok
19:59:16.0143 2372 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:59:16.0165 2372 WcsPlugInService - ok
19:59:16.0190 2372 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys
19:59:16.0200 2372 Wd - ok
19:59:16.0225 2372 [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:59:16.0243 2372 Wdf01000 - ok
19:59:16.0260 2372 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:59:16.0310 2372 WdiServiceHost - ok
19:59:16.0313 2372 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:59:16.0340 2372 WdiSystemHost - ok
19:59:16.0409 2372 [ CF9A5F41789B642DB967021DE06A2713 ] WebClient C:\Windows\System32\webclnt.dll
19:59:16.0428 2372 WebClient - ok
19:59:16.0455 2372 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:59:16.0507 2372 Wecsvc - ok
19:59:16.0536 2372 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:59:16.0584 2372 wercplsupport - ok
19:59:16.0629 2372 [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc C:\Windows\System32\WerSvc.dll
19:59:16.0645 2372 WerSvc - ok
19:59:16.0801 2372 [ 090A2B8F055343815556A01F725F6C35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
19:59:16.0813 2372 WimFltr - ok
19:59:17.0113 2372 [ 5A77AC34A0FFB70CE8B35B524FEDE9BA ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:59:17.0135 2372 winachsf - ok
19:59:17.0239 2372 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
19:59:17.0253 2372 WinDefend - ok
19:59:17.0261 2372 WinHttpAutoProxySvc - ok
19:59:17.0321 2372 [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:59:17.0379 2372 Winmgmt - ok
19:59:17.0468 2372 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
19:59:17.0607 2372 WinRM - ok
19:59:17.0712 2372 [ 275F4346E569DF56CFB95243BD6F6FF0 ] Wlansvc C:\Windows\System32\wlansvc.dll
19:59:17.0764 2372 Wlansvc - ok
19:59:17.0885 2372 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:59:17.0959 2372 wlidsvc - ok
19:59:18.0006 2372 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:59:18.0025 2372 WmiAcpi - ok
19:59:18.0072 2372 [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:59:18.0118 2372 wmiApSrv - ok
19:59:18.0173 2372 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
19:59:18.0207 2372 WMPNetworkSvc - ok
19:59:18.0251 2372 [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:59:18.0291 2372 WPCSvc - ok
19:59:18.0327 2372 [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:59:18.0363 2372 WPDBusEnum - ok
19:59:18.0419 2372 [ 0CEC23084B51B8288099EB710224E955 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
19:59:18.0438 2372 WpdUsb - ok
19:59:18.0582 2372 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:59:18.0613 2372 WPFFontCache_v0400 - ok
19:59:18.0643 2372 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:59:18.0716 2372 ws2ifsl - ok
19:59:18.0749 2372 [ 683DD16B590372F2C9661D277F35E49C ] wscsvc C:\Windows\System32\wscsvc.dll
19:59:18.0821 2372 wscsvc - ok
19:59:18.0825 2372 WSearch - ok
19:59:18.0929 2372 [ 6298277B73C77FA99106B271A7525163 ] wuauserv C:\Windows\system32\wuaueng.dll
19:59:18.0986 2372 wuauserv - ok
19:59:19.0016 2372 [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:59:19.0039 2372 WUDFRd - ok
19:59:19.0096 2372 [ 575A4190D989F64732119E4114045A4F ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:59:19.0143 2372 wudfsvc - ok
19:59:19.0192 2372 [ 88AF537264F2B818DA15479CEEAF5D7C ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
19:59:19.0222 2372 XAudio - ok
19:59:19.0250 2372 [ 15A317674A08DF26BE65164D959E9203 ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
19:59:19.0266 2372 XAudioService - ok
19:59:19.0299 2372 [ 67E3D2AF24C3873E6A0CAC89DE78D63B ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
19:59:19.0318 2372 yukonwlh - ok
19:59:19.0333 2372 ================ Scan global ===============================
19:59:19.0360 2372 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
19:59:19.0388 2372 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
19:59:19.0405 2372 [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
19:59:19.0442 2372 [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
19:59:19.0450 2372 [Global] - ok
19:59:19.0450 2372 ================ Scan MBR ==================================
19:59:19.0462 2372 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
19:59:20.0953 2372 \Device\Harddisk0\DR0 - ok
19:59:20.0954 2372 ================ Scan VBR ==================================
19:59:20.0988 2372 [ 2CA57410443AD7CD7F2E672ECEB7E94A ] \Device\Harddisk0\DR0\Partition1
19:59:20.0990 2372 \Device\Harddisk0\DR0\Partition1 - ok
19:59:20.0990 2372 ============================================================
19:59:20.0990 2372 Scan finished
19:59:20.0990 2372 ============================================================
19:59:20.0999 5960 Detected object count: 12
19:59:20.0999 5960 Actual detected object count: 12
19:59:45.0447 5960 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0447 5960 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0447 5960 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0447 5960 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0449 5960 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0449 5960 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0450 5960 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0450 5960 MSCSPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0451 5960 NSUService ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0451 5960 NSUService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0452 5960 PACSPTISVR ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0453 5960 PACSPTISVR ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0454 5960 pohci13F ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0454 5960 pohci13F ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0455 5960 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0455 5960 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0457 5960 SPTISRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0457 5960 SPTISRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0457 5960 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0457 5960 VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0459 5960 VCFw ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0459 5960 VCFw ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:59:45.0460 5960 VzCdbSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:59:45.0460 5960 VzCdbSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
Ich konnte die veränderte Log-Datei nicht unter dem selben Verzeichnis speichern (also nicht unter c/) sondern nur auf dem Desktop?! BTW: Reicht es eine Antwort zu editieren oder muss ich eine neue Antwort erstellen, damit Du/Ihr auf eine Neuerung aufmerksam werdet? Sorry, falls dieser Doppelpost nicht genehmigt ist. --- Witzig, es lassen sich gar keine Doppelposts erstellen? Geändert von MrBoat (29.01.2013 um 20:17 Uhr) |
|
31.01.2013, 19:07
| #6 | |
| /// Malware-holic | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr Hi ja warum sollten es auch mehrere werden, so wird das pushen wenigstens unterdrückt. editor, bearbeiten, ersetzen. Die Funde sind ungefährlich. combofix: Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde!Downloade dir bitte Combofix von einem dieser Downloadspiegel Link 1 Link 2 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ --> Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr |
|
02.02.2013, 19:46
| #7 |
| | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr Die gewünschte Logfile Code:
ATTFilter ComboFix 13-02-02.05 - *** 02.02.2013 19:28:15.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.49.1031.18.3038.1649 [GMT 1:00]
ausgeführt von:: c:\users\***\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\DealBulldog Toolbar Toolbar\tbHElper.dll
c:\programdata\Roaming
c:\programdata\Roaming\Intel\Wireless\Settings\Settings.ini
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-01-02 bis 2013-02-02 ))))))))))))))))))))))))))))))
.
.
2072-04-03 12:13 . 2008-03-21 13:46 607296 ------w- c:\program files\Microsoft Games\Age of Empires III\deformerdllyD.dll
2013-01-29 15:55 . 2013-01-29 15:55 100352 ----a-w- C:\pxdoikow.sys
2013-01-29 15:35 . 2013-01-15 01:49 6991832 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0B75F32C-A1B9-4CD2-B545-21E7D1083A31}\mpengine.dll
2013-01-05 17:36 . 2012-11-28 09:35 93640 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-01-03 19:41 . 2013-01-03 19:49 -------- d-----w- c:\users\***\AppData\Roaming\(18).minecraft
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-29 19:40 . 2013-01-29 19:39 262552 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-05-04 1519272]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-08-21 09:12 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="oobefldr.dll" [2008-01-21 2153472]
"NSUFloatingUI"="c:\program files\Sony\Network Utility\LANUtil.exe" [2008-07-30 262144]
"SandboxieControl"="c:\program files\Sandboxie\SbieCtrl.exe" [2012-08-25 545552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="RtHDVCpl.exe" [2008-07-18 6295552]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2008-02-23 122880]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" [2008-10-14 623992]
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe" [2008-04-03 317280]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"MarketingTools"="c:\program files\Sony\Marketing Tools\MarketingTools.exe" [2008-08-22 24576]
"AML"="c:\program files\Sony\VAIO Launcher\AML.exe" [2008-06-13 1097728]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"ApnUpdater"="c:\program files\Ask.com\Updater\Updater.exe" [2012-05-04 1561768]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-08-21 4282728]
.
c:\users\***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-7-1 768552]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2008-07-15 16:04 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.bigseekpro.com/idevicemanager0/{E0059F83-622A-4351-A3B8-48F1A937A1BD}
mStart Page = hxxp://www.bigseekpro.com/idevicemanager0/{E0059F83-622A-4351-A3B8-48F1A937A1BD}
IE: An vorhandenes PDF anfügen - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Ausgewählte Verknüpfungen in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Ausgewählte Verknüpfungen in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Auswahl in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Auswahl in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: In Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Verknüpfungsziel in Adobe PDF konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Verknüpfungsziel in vorhandene PDF-Datei konvertieren - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
Trusted Zone: corel.com
Trusted Zone: corel.com\www
Trusted Zone: intervideo.com
Trusted Zone: intervideo.com\www
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\users\***\AppData\Roaming\Mozilla\Firefox\Profiles\oyrme7h2.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=ORJ&o=&locale=&apn_uid=ACAB9537-5DC0-45E0-A86F-552BD973F58C&apn_ptnrs=&apn_sauid=D6130B85-2FD5-49EB-B07D-0FDD59955C96&apn_dtid=OSJ000&&q=
FF - ExtSQL: !HIDDEN! 2009-10-04 14:02; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - user.js: yahoo.homepage.dontask - true
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM-Run-Cm106Sound - cm106.cpl
AddRemove-DAEMON Tools Toolbar - c:\program files\DAEMON Tools Toolbar\uninst.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2013-02-02 19:38
Windows 6.0.6001 Service Pack 1 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Zeit der Fertigstellung: 2013-02-02 19:40:29
ComboFix-quarantined-files.txt 2013-02-02 18:40
.
Vor Suchlauf: 11 Verzeichnis(se), 144.670.646.272 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 148.398.481.408 Bytes frei
.
- - End Of File - - 099EEBEBEE4234DF9FAC86D558307513
|
|
04.02.2013, 13:00
| #8 |
| /// Malware-holic | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr hi malwarebytes: Downloade Dir bitte Malwarebytes
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
05.02.2013, 19:22
| #9 |
| | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr Hier die Logdatei: Code:
ATTFilter Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.02.05.07 Windows Vista Service Pack 1 x86 NTFS Internet Explorer 8.0.6001.19088 *** :: ***-PC [Administrator] 05.02.2013 16:36:46 mbam-log-2013-02-05 (16-36-46).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 416149 Laufzeit: 1 Stunde(n), 34 Minute(n), 53 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Windows\System32\Aquarium ScreenSaver.scr (Trojan.Bifrost) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
|
05.02.2013, 19:31
| #10 |
| /// Malware-holic | Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr Bitte beginne damit, Windows Updates zu instalieren. Am besten geht dies, wenn du über Start, Suchen gehst, und dort Windows Updates eingibst. Prüfe unter "Einstellungen ändern" dass folgendes ausgewählt ist: - Updates automatisch Instalieren, - Täglich - Uhrzeit wählen - Bitte den gesammten rest anhaken, außer: - detailierte benachichtungen anzeigen, wenn neue Microsoft software verfügbar ist. Klicke jetzt die Schaltfläche "OK" Klicke jetzt "nach Updates suchen". Bitte instaliere zunächst wichtige Updates. Es wird nötig sein, den PC zwischendurch neu zu starten. falls dies der Fall ist, musst du erneut über Start, Suchen, Windows Update aufrufen, auf Updates suchen klicken und die nächsten instalieren. Mache das selbe bitte mit den optionalen Updates. prüfe, wenn du denkst fertig zu sein, ob unter Computer, eigenschaften, das Servicepack 2 (sp2) instaliert ist
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
| Themen zu Laptop sehr langsam / sehr wahrscheinlich verseucht / Anti Viren Programme updaten nicht mehr |
| anhang, anti, archiv, ausgeführt, befehle, besitz, diverse, erstell, extrem, geschickt, glaube, jahre, langsam, laptop, log-datei, nicht mehr, programme, sehr langsam, stark, update, updaten, veraltete, verseucht, viren, wahrscheinlich, zu lang, öffnen |
Linear-Darstellung
