Trojaner-Board
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Plagegeister aller Art und deren Bekämpfung (https://www.trojaner-board.de/plagegeister-aller-art-deren-bekaempfung/)
-   -   Mein GMX-Account verschickte Spammails an Adressbuch-Adressen - Laptop war aus (https://www.trojaner-board.de/120387-gmx-account-verschickte-spammails-adressbuch-adressen-laptop-war.html)

cosinus 07.08.2012 13:30
Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!)

Code:
:OTL
FF - user.js - File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Recorder Toolbar) - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files (x86)\MedienTeam66\CHIP MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\Shell - "" = AutoRun
O33 - MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\Shell - "" = AutoRun
O33 - MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\Shell - "" = AutoRun
O33 - MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
:Commands
[purity]
[emptytemp]
[emptyflash]
[resethosts]
Klick dann oben links auf den Button Fix!
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet.

Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt.

Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!

Marika_K 09.08.2012 13:49
Hallo Arne,

jetzt hab ichs endlcih geschafft, deine Anweisungen umzusetzen. Ergebnis des OTL:

Code:


User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: XXX
->Temp folder emptied: 901508854 bytes
->Temporary Internet Files folder emptied: 22325552 bytes
->Java cache emptied: 357136 bytes
->FireFox cache emptied: 61988439 bytes
->Flash cache emptied: 56950 bytes
 
User: XXY
->Temp folder emptied: 7003567 bytes
->Temporary Internet Files folder emptied: 27569402 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 467343253 bytes
->Flash cache emptied: 65226 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 397926199 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67765 bytes
RecycleBin emptied: 754992 bytes
 
Total Files Cleaned = 1.800,00 mb
 
 
[EMPTYFLASH]
 
User: All Users
 
User: Default
->Flash cache emptied: 0 bytes
 
User: Default User
->Flash cache emptied: 0 bytes
 
User: XXX
->Flash cache emptied: 291 bytes
 
User: XXY
->Flash cache emptied: 0 bytes
 
User: Public
 
Total Flash Files Cleaned = 0,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.54.1 log created on 08092012_143726

Files\Folders moved on Reboot...
C:\Users\XXX\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...
File C:\Users\XXX\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!

Registry entries deleted on Reboot...
PC läuft - soweit ich das schon sagen kann - störungsfrei. Gibts noch etwas zu tun?

Grüße
Marika

cosinus 10.08.2012 13:07
Log ist leider unvollständig

Marika_K 10.08.2012 13:35
Sorry, zweiter Versuch:


Code:

All processes killed
========== OTL ==========
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{120A8821-2BEE-4C29-BCDA-62C577781992} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{120A8821-2BEE-4C29-BCDA-62C577781992}\ deleted successfully.
C:\Program Files (x86)\MedienTeam66\CHIP MP3 Recorder for YouTube\IEPlugin.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktop deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoActiveDesktopChanges deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun|DWORD:1 /E : value set successfully!
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a809c-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a809c-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a809c-9203-11e0-a654-1c7508761139}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a80b8-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0c9a80b8-9203-11e0-a654-1c7508761139}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0c9a80b8-9203-11e0-a654-1c7508761139}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7df27b44-dbdd-11e1-8f1f-1c7508761139}\ not found.
File F:\AutoRun.exe not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F\ not found.
File F:\AutoRun.exe not found.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56475 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Melli
->Temp folder emptied: 901508854 bytes
->Temporary Internet Files folder emptied: 22325552 bytes
->Java cache emptied: 357136 bytes
->FireFox cache emptied: 61988439 bytes
->Flash cache emptied: 56950 bytes
 
User: Olli
->Temp folder emptied: 7003567 bytes
->Temporary Internet Files folder emptied: 27569402 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 467343253 bytes
->Flash cache emptied: 65226 bytes
 
User: Public
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 397926199 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67765 bytes
RecycleBin emptied: 754992 bytes
 
Total Files Cleaned = 1.800,00 mb
 
 
[EMPTYFLASH]
 
User: All Users
 
User: Default
->Flash cache emptied: 0 bytes
 
User: Default User
->Flash cache emptied: 0 bytes
 
User: Melli
->Flash cache emptied: 291 bytes
 
User: Olli
->Flash cache emptied: 0 bytes
 
User: Public
 
Total Flash Files Cleaned = 0,00 mb
 
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
OTL by OldTimer - Version 3.2.54.1 log created on 08092012_143726

Files\Folders moved on Reboot...
C:\Users\Melli\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

PendingFileRenameOperations files...
File C:\Users\Melli\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!

Registry entries deleted on Reboot...
Jetzt okay?

cosinus 11.08.2012 15:36
Bitte nun (im normalen Windows-Modus) dieses Tool von Kaspersky (TDSS-Killer) ausführen und das Log posten Anleitung und Downloadlink hier => http://www.trojaner-board.de/82358-t...entfernen.html

Hinweis: Bitte den Virenscanner abstellen bevor du den TDSS-Killer ausführst, denn v.a. Avira meldet im TDSS-Tool oft einen Fehalalrm!

Das Tool so einstellen wie unten im Bild angegeben - klick auf change parameters und setze die Haken wie im folgenden Screenshot abgebildet,
Dann auf Start Scan klicken und wenn es durch ist auf den Button Report klicken um das Log anzuzeigen. Dieses bitte komplett posten.
Wenn du das Log nicht findest oder den Inhalt kopieren und in dein Posting übertragen kannst, dann schau bitte direkt auf deiner Windows-Systempartition (meistens Laufwerk C:) nach, da speichert der TDSS-Killer seine Logs.

Hinweis: Bitte nichts voreilig mit dem TDSS-Killer löschen! Falls Objekte vom TDSS-Killer bemängelt werden, alle mit der Aktion "skip" behandeln und hier nur das Log posten!

http://saved.im/mtkwmtcxexhp/setting...8_16-25-18.jpg

Marika_K 12.08.2012 20:24
Hallo Arne,

danke für deine Rückmeldung. Der TDDS-Killer (kuscheliger Name :crazy:!) hat eine verdächtige Datei ausgemacht:

Code:
21:14:45.0001 1816        TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
21:14:45.0266 1816        ============================================================
21:14:45.0266 1816        Current date / time: 2012/08/12 21:14:45.0266
21:14:45.0266 1816        SystemInfo:
21:14:45.0266 1816       
21:14:45.0266 1816        OS Version: 6.1.7601 ServicePack: 1.0
21:14:45.0266 1816        Product type: Workstation
21:14:45.0266 1816        ComputerName: GROSSER
21:14:45.0266 1816        UserName: Melli
21:14:45.0266 1816        Windows directory: C:\Windows
21:14:45.0266 1816        System windows directory: C:\Windows
21:14:45.0266 1816        Running under WOW64
21:14:45.0266 1816        Processor architecture: Intel x64
21:14:45.0266 1816        Number of processors: 4
21:14:45.0266 1816        Page size: 0x1000
21:14:45.0266 1816        Boot type: Normal boot
21:14:45.0266 1816        ============================================================
21:14:45.0812 1816        Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:14:45.0812 1816        ============================================================
21:14:45.0812 1816        \Device\Harddisk0\DR0:
21:14:45.0812 1816        MBR partitions:
21:14:45.0812 1816        \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xC8800, BlocksNum 0x1D1C3000
21:14:45.0812 1816        \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D28B800, BlocksNum 0x1D0FA800
21:14:45.0812 1816        ============================================================
21:14:45.0843 1816        C: <-> \Device\Harddisk0\DR0\Partition0
21:14:45.0875 1816        D: <-> \Device\Harddisk0\DR0\Partition1
21:14:45.0875 1816        ============================================================
21:14:45.0875 1816        Initialize success
21:14:45.0875 1816        ============================================================
21:14:58.0823 1084        ============================================================
21:14:58.0823 1084        Scan started
21:14:58.0823 1084        Mode: Manual; SigCheck; TDLFS;
21:14:58.0823 1084        ============================================================
21:15:00.0242 1084        1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:15:00.0383 1084        1394ohci - ok
21:15:00.0445 1084        ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:15:00.0476 1084        ACPI - ok
21:15:00.0523 1084        AcpiPmi        (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:15:00.0601 1084        AcpiPmi - ok
21:15:00.0695 1084        adp94xx        (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:15:00.0726 1084        adp94xx - ok
21:15:00.0773 1084        adpahci        (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:15:00.0804 1084        adpahci - ok
21:15:00.0835 1084        adpu320        (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:15:00.0851 1084        adpu320 - ok
21:15:00.0882 1084        AeLookupSvc    (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:15:01.0007 1084        AeLookupSvc - ok
21:15:01.0085 1084        AFD            (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:15:01.0163 1084        AFD - ok
21:15:01.0194 1084        agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:15:01.0209 1084        agp440 - ok
21:15:01.0241 1084        ALG            (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:15:01.0287 1084        ALG - ok
21:15:01.0334 1084        aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:15:01.0365 1084        aliide - ok
21:15:01.0428 1084        AMD External Events Utility (57b773d82e8cc3c6d7e02cc8a6632043) C:\Windows\system32\atiesrxx.exe
21:15:01.0521 1084        AMD External Events Utility - ok
21:15:01.0568 1084        amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:15:01.0599 1084        amdide - ok
21:15:01.0646 1084        AmdK8          (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:15:01.0724 1084        AmdK8 - ok
21:15:02.0255 1084        amdkmdag        (aefaf27f1b7e52c705df4fb6c96732f6) C:\Windows\system32\DRIVERS\atipmdag.sys
21:15:02.0442 1084        amdkmdag - ok
21:15:02.0598 1084        amdkmdap        (8149db73be27950ec72767a1193153a6) C:\Windows\system32\DRIVERS\atikmpag.sys
21:15:02.0629 1084        amdkmdap - ok
21:15:02.0676 1084        AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:15:02.0723 1084        AmdPPM - ok
21:15:02.0769 1084        amdsata        (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:15:02.0785 1084        amdsata - ok
21:15:02.0816 1084        amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:15:02.0832 1084        amdsbs - ok
21:15:02.0847 1084        amdxata        (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:15:02.0863 1084        amdxata - ok
21:15:02.0957 1084        AntiVirSchedulerService (466a0d95960dad3222c896d2cea99993) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
21:15:02.0972 1084        AntiVirSchedulerService - ok
21:15:03.0003 1084        AntiVirService  (a489be6bb0aa1ff406b488b60542314b) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
21:15:03.0003 1084        AntiVirService - ok
21:15:03.0050 1084        AppID          (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:15:03.0222 1084        AppID - ok
21:15:03.0253 1084        AppIDSvc        (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:15:03.0347 1084        AppIDSvc - ok
21:15:03.0409 1084        Appinfo        (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:15:03.0456 1084        Appinfo - ok
21:15:03.0503 1084        arc            (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:15:03.0503 1084        arc - ok
21:15:03.0518 1084        arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:15:03.0534 1084        arcsas - ok
21:15:03.0549 1084        AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:15:03.0643 1084        AsyncMac - ok
21:15:03.0690 1084        atapi          (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:15:03.0705 1084        atapi - ok
21:15:03.0815 1084        athr            (e857eee6b92aaa473ebb3465add8f7e7) C:\Windows\system32\DRIVERS\athrx.sys
21:15:03.0924 1084        athr - ok
21:15:04.0142 1084        AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:15:04.0220 1084        AudioEndpointBuilder - ok
21:15:04.0220 1084        AudioSrv        (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:15:04.0251 1084        AudioSrv - ok
21:15:04.0314 1084        avgntflt        (26e38b5a58c6c55fafbc563eeddb0867) C:\Windows\system32\DRIVERS\avgntflt.sys
21:15:04.0579 1084        avgntflt - ok
21:15:04.0610 1084        avipbb          (9d1f00beff84cbbf46d7f052bc7e0565) C:\Windows\system32\DRIVERS\avipbb.sys
21:15:04.0626 1084        avipbb - ok
21:15:04.0641 1084        avkmgr          (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
21:15:04.0657 1084        avkmgr - ok
21:15:04.0704 1084        AxInstSV        (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:15:04.0797 1084        AxInstSV - ok
21:15:04.0860 1084        b06bdrv        (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:15:04.0922 1084        b06bdrv - ok
21:15:04.0969 1084        b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:15:05.0016 1084        b57nd60a - ok
21:15:05.0187 1084        BBSvc          (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
21:15:05.0219 1084        BBSvc - ok
21:15:05.0328 1084        BBUpdate        (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
21:15:05.0343 1084        BBUpdate - ok
21:15:05.0609 1084        BCM43XX        (5b5c36b2ec500462a715db6bcbaf5da7) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:15:05.0687 1084        BCM43XX - ok
21:15:05.0827 1084        BDESVC          (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:15:05.0874 1084        BDESVC - ok
21:15:05.0921 1084        Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:15:06.0014 1084        Beep - ok
21:15:06.0123 1084        BFE            (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:15:06.0170 1084        BFE - ok
21:15:06.0248 1084        BITS            (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:15:06.0311 1084        BITS - ok
21:15:06.0373 1084        blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:15:06.0404 1084        blbdrive - ok
21:15:06.0451 1084        bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:15:06.0498 1084        bowser - ok
21:15:06.0529 1084        BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:15:06.0576 1084        BrFiltLo - ok
21:15:06.0576 1084        BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:15:06.0607 1084        BrFiltUp - ok
21:15:06.0654 1084        Browser        (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:15:06.0732 1084        Browser - ok
21:15:06.0779 1084        Brserid        (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:15:06.0825 1084        Brserid - ok
21:15:06.0841 1084        BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:15:06.0872 1084        BrSerWdm - ok
21:15:06.0888 1084        BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:15:06.0935 1084        BrUsbMdm - ok
21:15:06.0950 1084        BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:15:06.0981 1084        BrUsbSer - ok
21:15:06.0981 1084        BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:15:07.0013 1084        BTHMODEM - ok
21:15:07.0059 1084        bthserv        (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:15:07.0137 1084        bthserv - ok
21:15:07.0153 1084        cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:15:07.0200 1084        cdfs - ok
21:15:07.0262 1084        cdrom          (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
21:15:07.0293 1084        cdrom - ok
21:15:07.0325 1084        CeKbFilter      (7e83e47bd1ff93e11cd69f1ad65a9581) C:\Windows\system32\DRIVERS\CeKbFilter.sys
21:15:07.0340 1084        CeKbFilter - ok
21:15:07.0387 1084        CertPropSvc    (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:15:07.0481 1084        CertPropSvc - ok
21:15:07.0605 1084        cfWiMAXService  (41e7c4fa6491747402cfca77cc1c7aab) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
21:15:07.0621 1084        cfWiMAXService - ok
21:15:07.0668 1084        circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:15:07.0699 1084        circlass - ok
21:15:07.0777 1084        CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:15:07.0808 1084        CLFS - ok
21:15:07.0871 1084        clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:15:07.0886 1084        clr_optimization_v2.0.50727_32 - ok
21:15:07.0933 1084        clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:15:07.0949 1084        clr_optimization_v2.0.50727_64 - ok
21:15:08.0042 1084        clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:15:08.0058 1084        clr_optimization_v4.0.30319_32 - ok
21:15:08.0089 1084        clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:15:08.0105 1084        clr_optimization_v4.0.30319_64 - ok
21:15:08.0151 1084        CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:15:08.0183 1084        CmBatt - ok
21:15:08.0214 1084        cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:15:08.0229 1084        cmdide - ok
21:15:08.0276 1084        cmnsusbser      (2b3b8cbea1ba1bce5700607fbdb31034) C:\Windows\system32\DRIVERS\cmnsusbser.sys
21:15:08.0339 1084        cmnsusbser - ok
21:15:08.0385 1084        CNG            (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
21:15:08.0417 1084        CNG - ok
21:15:08.0463 1084        Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:15:08.0479 1084        Compbatt - ok
21:15:08.0526 1084        CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:15:08.0557 1084        CompositeBus - ok
21:15:08.0573 1084        COMSysApp - ok
21:15:08.0666 1084        ConfigFree Service (cab0eeaf5295fc96ddd3e19dce27e131) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
21:15:08.0682 1084        ConfigFree Service - ok
21:15:08.0713 1084        crcdisk        (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:15:08.0729 1084        crcdisk - ok
21:15:08.0775 1084        CryptSvc        (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
21:15:08.0838 1084        CryptSvc - ok
21:15:08.0916 1084        DcomLaunch      (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:15:08.0994 1084        DcomLaunch - ok
21:15:09.0041 1084        defragsvc      (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:15:09.0103 1084        defragsvc - ok
21:15:09.0150 1084        DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:15:09.0212 1084        DfsC - ok
21:15:09.0259 1084        Dhcp            (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:15:09.0306 1084        Dhcp - ok
21:15:09.0337 1084        discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:15:09.0368 1084        discache - ok
21:15:09.0399 1084        Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:15:09.0415 1084        Disk - ok
21:15:09.0462 1084        Dnscache        (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:15:09.0509 1084        Dnscache - ok
21:15:09.0540 1084        dot3svc        (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:15:09.0618 1084        dot3svc - ok
21:15:09.0665 1084        DPS            (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:15:09.0727 1084        DPS - ok
21:15:09.0758 1084        drmkaud        (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:15:09.0774 1084        drmkaud - ok
21:15:09.0867 1084        DXGKrnl        (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:15:09.0914 1084        DXGKrnl - ok
21:15:09.0945 1084        EapHost        (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:15:09.0992 1084        EapHost - ok
21:15:10.0242 1084        ebdrv          (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:15:10.0335 1084        ebdrv - ok
21:15:10.0476 1084        EFS            (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:15:10.0538 1084        EFS - ok
21:15:10.0663 1084        ehRecvr        (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:15:10.0725 1084        ehRecvr - ok
21:15:10.0741 1084        ehSched        (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:15:10.0788 1084        ehSched - ok
21:15:10.0897 1084        elxstor        (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:15:10.0928 1084        elxstor - ok
21:15:10.0959 1084        ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:15:10.0991 1084        ErrDev - ok
21:15:11.0069 1084        EventSystem    (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:15:11.0131 1084        EventSystem - ok
21:15:11.0178 1084        ewusbnet        (8adacffad67394c711698ea074ce3bab) C:\Windows\system32\DRIVERS\ewusbnet.sys
21:15:11.0225 1084        ewusbnet - ok
21:15:11.0287 1084        exfat          (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:15:11.0349 1084        exfat - ok
21:15:11.0381 1084        fastfat        (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:15:11.0443 1084        fastfat - ok
21:15:11.0552 1084        Fax            (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:15:11.0615 1084        Fax - ok
21:15:11.0646 1084        fdc            (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:15:11.0661 1084        fdc - ok
21:15:11.0677 1084        fdPHost        (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:15:11.0755 1084        fdPHost - ok
21:15:11.0771 1084        FDResPub        (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:15:11.0817 1084        FDResPub - ok
21:15:11.0833 1084        FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:15:11.0849 1084        FileInfo - ok
21:15:11.0849 1084        Filetrace      (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:15:11.0895 1084        Filetrace - ok
21:15:11.0927 1084        flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:15:11.0942 1084        flpydisk - ok
21:15:12.0005 1084        FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:15:12.0036 1084        FltMgr - ok
21:15:12.0129 1084        FontCache      (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:15:12.0192 1084        FontCache - ok
21:15:12.0254 1084        FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:15:12.0270 1084        FontCache3.0.0.0 - ok
21:15:12.0301 1084        FsDepends      (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:15:12.0317 1084        FsDepends - ok
21:15:12.0348 1084        Fs_Rec          (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:15:12.0379 1084        Fs_Rec - ok
21:15:12.0426 1084        fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:15:12.0457 1084        fvevol - ok
21:15:12.0473 1084        gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:15:12.0488 1084        gagp30kx - ok
21:15:12.0566 1084        GameConsoleService (1fda0df739234c4023851a282dd28704) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
21:15:12.0582 1084        GameConsoleService - ok
21:15:12.0660 1084        gpsvc          (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:15:12.0738 1084        gpsvc - ok
21:15:12.0816 1084        gupdate        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:15:12.0831 1084        gupdate - ok
21:15:12.0831 1084        gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:15:12.0847 1084        gupdatem - ok
21:15:12.0863 1084        hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:15:12.0909 1084        hcw85cir - ok
21:15:12.0987 1084        HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:15:13.0034 1084        HdAudAddService - ok
21:15:13.0065 1084        HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:15:13.0097 1084        HDAudBus - ok
21:15:13.0159 1084        HECIx64        (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:15:13.0159 1084        HECIx64 - ok
21:15:13.0175 1084        HidBatt        (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:15:13.0206 1084        HidBatt - ok
21:15:13.0221 1084        HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:15:13.0253 1084        HidBth - ok
21:15:13.0268 1084        HidIr          (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:15:13.0284 1084        HidIr - ok
21:15:13.0315 1084        hidserv        (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:15:13.0362 1084        hidserv - ok
21:15:13.0409 1084        HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:15:13.0409 1084        HidUsb - ok
21:15:13.0455 1084        hkmsvc          (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:15:13.0549 1084        hkmsvc - ok
21:15:13.0596 1084        HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:15:13.0643 1084        HomeGroupListener - ok
21:15:13.0689 1084        HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:15:13.0736 1084        HomeGroupProvider - ok
21:15:13.0783 1084        HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:15:13.0799 1084        HpSAMD - ok
21:15:13.0908 1084        HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:15:13.0955 1084        HTTP - ok
21:15:14.0017 1084        hwdatacard      (d969d0e26c5b1e813b17066a8318d5d4) C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:15:14.0048 1084        hwdatacard - ok
21:15:14.0079 1084        hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:15:14.0095 1084        hwpolicy - ok
21:15:14.0126 1084        hwusbdev        (b45b3647ba32749b94fa689175ec8c26) C:\Windows\system32\DRIVERS\ewusbdev.sys
21:15:14.0157 1084        hwusbdev - ok
21:15:14.0204 1084        i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:15:14.0220 1084        i8042prt - ok
21:15:14.0282 1084        iaStor          (85977cd13fc16069ce0af7943a811775) C:\Windows\system32\DRIVERS\iaStor.sys
21:15:14.0313 1084        iaStor - ok
21:15:14.0391 1084        iaStorV        (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:15:14.0423 1084        iaStorV - ok
21:15:14.0547 1084        idsvc          (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:15:14.0579 1084        idsvc - ok
21:15:14.0625 1084        iirsp          (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:15:14.0657 1084        iirsp - ok
21:15:14.0735 1084        IKEEXT          (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:15:14.0797 1084        IKEEXT - ok
21:15:14.0859 1084        Impcd          (4b6363cd4610bb848531bb260b15dfcc) C:\Windows\system32\DRIVERS\Impcd.sys
21:15:14.0906 1084        Impcd - ok
21:15:15.0125 1084        IntcAzAudAddService (490947a9aff7ca31ef2e08f5776105eb) C:\Windows\system32\drivers\RTKVHD64.sys
21:15:15.0171 1084        IntcAzAudAddService - ok
21:15:15.0281 1084        intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:15:15.0296 1084        intelide - ok
21:15:15.0343 1084        intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:15:15.0374 1084        intelppm - ok
21:15:15.0405 1084        IPBusEnum      (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:15:15.0452 1084        IPBusEnum - ok
21:15:15.0483 1084        IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:15:15.0561 1084        IpFilterDriver - ok
21:15:15.0624 1084        iphlpsvc        (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:15:15.0702 1084        iphlpsvc - ok
21:15:15.0749 1084        IPMIDRV        (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:15:15.0780 1084        IPMIDRV - ok
21:15:15.0811 1084        IPNAT          (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:15:15.0873 1084        IPNAT - ok
21:15:15.0889 1084        IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:15:15.0983 1084        IRENUM - ok
21:15:16.0014 1084        isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:15:16.0029 1084        isapnp - ok
21:15:16.0076 1084        iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:15:16.0107 1084        iScsiPrt - ok
21:15:16.0170 1084        IviRegMgr      (213822072085b5bbad9af30ab577d817) C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
21:15:16.0185 1084        IviRegMgr - ok
21:15:16.0201 1084        kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:15:16.0232 1084        kbdclass - ok
21:15:16.0263 1084        kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:15:16.0295 1084        kbdhid - ok
21:15:16.0341 1084        KeyIso          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:16.0357 1084        KeyIso - ok
21:15:16.0388 1084        KSecDD          (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
21:15:16.0404 1084        KSecDD - ok
21:15:16.0435 1084        KSecPkg        (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
21:15:16.0451 1084        KSecPkg - ok
21:15:16.0497 1084        ksthunk        (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:15:16.0575 1084        ksthunk - ok
21:15:16.0622 1084        KtmRm          (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:15:16.0669 1084        KtmRm - ok
21:15:16.0731 1084        LanmanServer    (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:15:16.0809 1084        LanmanServer - ok
21:15:16.0856 1084        LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:15:16.0903 1084        LanmanWorkstation - ok
21:15:16.0934 1084        lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:15:16.0965 1084        lltdio - ok
21:15:17.0012 1084        lltdsvc        (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:15:17.0059 1084        lltdsvc - ok
21:15:17.0090 1084        lmhosts        (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:15:17.0121 1084        lmhosts - ok
21:15:17.0215 1084        LMS            (23de5b62b0445a6f874be633c95b483e) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
21:15:17.0231 1084        LMS - ok
21:15:17.0277 1084        LPCFilter      (2825a71e7501cb33b3b9f856610c729d) C:\Windows\system32\DRIVERS\LPCFilter.sys
21:15:17.0293 1084        LPCFilter - ok
21:15:17.0340 1084        LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:15:17.0355 1084        LSI_FC - ok
21:15:17.0371 1084        LSI_SAS        (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:15:17.0387 1084        LSI_SAS - ok
21:15:17.0387 1084        LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:15:17.0402 1084        LSI_SAS2 - ok
21:15:17.0418 1084        LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:15:17.0418 1084        LSI_SCSI - ok
21:15:17.0449 1084        luafv          (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:15:17.0511 1084        luafv - ok
21:15:17.0574 1084        MBAMProtector  (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
21:15:17.0589 1084        MBAMProtector - ok
21:15:17.0730 1084        MBAMService    (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:15:17.0761 1084        MBAMService - ok
21:15:17.0808 1084        Mcx2Svc        (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:15:17.0870 1084        Mcx2Svc - ok
21:15:17.0886 1084        megasas        (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:15:17.0886 1084        megasas - ok
21:15:17.0933 1084        MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:15:17.0948 1084        MegaSR - ok
21:15:17.0979 1084        MMCSS          (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:15:18.0042 1084        MMCSS - ok
21:15:18.0057 1084        Modem          (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:15:18.0089 1084        Modem - ok
21:15:18.0120 1084        monitor        (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:15:18.0167 1084        monitor - ok
21:15:18.0213 1084        mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:15:18.0229 1084        mouclass - ok
21:15:18.0260 1084        mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:15:18.0291 1084        mouhid - ok
21:15:18.0338 1084        mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:15:18.0354 1084        mountmgr - ok
21:15:18.0447 1084        MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:15:18.0463 1084        MozillaMaintenance - ok
21:15:18.0510 1084        mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:15:18.0525 1084        mpio - ok
21:15:18.0557 1084        mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:15:18.0619 1084        mpsdrv - ok
21:15:18.0697 1084        MpsSvc          (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:15:18.0775 1084        MpsSvc - ok
21:15:18.0806 1084        MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:15:18.0853 1084        MRxDAV - ok
21:15:18.0900 1084        mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:15:18.0947 1084        mrxsmb - ok
21:15:18.0993 1084        mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:15:19.0040 1084        mrxsmb10 - ok
21:15:19.0056 1084        mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:15:19.0071 1084        mrxsmb20 - ok
21:15:19.0103 1084        msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:15:19.0118 1084        msahci - ok
21:15:19.0149 1084        msdsm          (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:15:19.0165 1084        msdsm - ok
21:15:19.0212 1084        MSDTC          (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:15:19.0243 1084        MSDTC - ok
21:15:19.0290 1084        Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:15:19.0337 1084        Msfs - ok
21:15:19.0352 1084        mshidkmdf      (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:15:19.0383 1084        mshidkmdf - ok
21:15:19.0415 1084        msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:15:19.0430 1084        msisadrv - ok
21:15:19.0461 1084        MSiSCSI        (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:15:19.0508 1084        MSiSCSI - ok
21:15:19.0508 1084        msiserver - ok
21:15:19.0524 1084        MSKSSRV        (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:15:19.0571 1084        MSKSSRV - ok
21:15:19.0571 1084        MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:15:19.0617 1084        MSPCLOCK - ok
21:15:19.0617 1084        MSPQM          (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:15:19.0664 1084        MSPQM - ok
21:15:19.0711 1084        MsRPC          (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:15:19.0742 1084        MsRPC - ok
21:15:19.0789 1084        mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:15:19.0789 1084        mssmbios - ok
21:15:19.0805 1084        MSTEE          (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:15:19.0836 1084        MSTEE - ok
21:15:19.0851 1084        MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:15:19.0851 1084        MTConfig - ok
21:15:19.0883 1084        Mup            (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:15:19.0914 1084        Mup - ok
21:15:19.0976 1084        napagent        (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:15:20.0054 1084        napagent - ok
21:15:20.0101 1084        NativeWifiP    (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:15:20.0132 1084        NativeWifiP - ok
21:15:20.0257 1084        NAUpdate        (9d1cce440552500ded3a62f9d779cdb4) c:\Program Files (x86)\Nero\Update\NASvc.exe
21:15:20.0273 1084        NAUpdate - ok
21:15:20.0382 1084        NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:15:20.0413 1084        NDIS - ok
21:15:20.0444 1084        NdisCap        (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:15:20.0491 1084        NdisCap - ok
21:15:20.0522 1084        NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:15:20.0553 1084        NdisTapi - ok
21:15:20.0600 1084        Ndisuio        (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:15:20.0678 1084        Ndisuio - ok
21:15:20.0709 1084        NdisWan        (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:15:20.0772 1084        NdisWan - ok
21:15:20.0803 1084        NDProxy        (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:15:20.0850 1084        NDProxy - ok
21:15:20.0881 1084        NetBIOS        (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:15:20.0943 1084        NetBIOS - ok
21:15:20.0975 1084        NetBT          (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:15:21.0021 1084        NetBT - ok
21:15:21.0053 1084        Netlogon        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:21.0068 1084        Netlogon - ok
21:15:21.0115 1084        Netman          (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:15:21.0162 1084        Netman - ok
21:15:21.0209 1084        netprofm        (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:15:21.0255 1084        netprofm - ok
21:15:21.0333 1084        NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:15:21.0349 1084        NetTcpPortSharing - ok
21:15:21.0396 1084        nfrd960        (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:15:21.0411 1084        nfrd960 - ok
21:15:21.0474 1084        NlaSvc          (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:15:21.0552 1084        NlaSvc - ok
21:15:21.0567 1084        Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:15:21.0599 1084        Npfs - ok
21:15:21.0630 1084        nsi            (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:15:21.0677 1084        nsi - ok
21:15:21.0677 1084        nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:15:21.0723 1084        nsiproxy - ok
21:15:21.0864 1084        Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:15:21.0942 1084        Ntfs - ok
21:15:22.0051 1084        Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:15:22.0113 1084        Null - ok
21:15:22.0160 1084        nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:15:22.0176 1084        nvraid - ok
21:15:22.0207 1084        nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:15:22.0223 1084        nvstor - ok
21:15:22.0254 1084        nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:15:22.0269 1084        nv_agp - ok
21:15:22.0379 1084        odserv          (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:15:22.0410 1084        odserv - ok
21:15:22.0441 1084        ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:15:22.0457 1084        ohci1394 - ok
21:15:22.0535 1084        ose            (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:15:22.0566 1084        ose - ok
21:15:22.0737 1084        p2pimsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:15:22.0784 1084        p2pimsvc - ok
21:15:22.0831 1084        p2psvc          (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:15:22.0862 1084        p2psvc - ok
21:15:22.0893 1084        Parport        (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:15:22.0909 1084        Parport - ok
21:15:22.0925 1084        partmgr        (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
21:15:22.0940 1084        partmgr - ok
21:15:22.0971 1084        PcaSvc          (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:15:23.0003 1084        PcaSvc - ok
21:15:23.0049 1084        pci            (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:15:23.0081 1084        pci - ok
21:15:23.0096 1084        pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:15:23.0096 1084        pciide - ok
21:15:23.0143 1084        pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:15:23.0159 1084        pcmcia - ok
21:15:23.0174 1084        pcw            (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:15:23.0190 1084        pcw - ok
21:15:23.0237 1084        PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:15:23.0299 1084        PEAUTH - ok
21:15:23.0377 1084        PerfHost        (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:15:23.0408 1084        PerfHost - ok
21:15:23.0455 1084        PGEffect        (663962900e7fea522126ba287715bb4a) C:\Windows\system32\DRIVERS\pgeffect.sys
21:15:23.0471 1084        PGEffect - ok
21:15:23.0580 1084        pla            (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:15:23.0658 1084        pla - ok
21:15:23.0736 1084        PlugPlay        (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:15:23.0767 1084        PlugPlay - ok
21:15:23.0798 1084        PNRPAutoReg    (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:15:23.0814 1084        PNRPAutoReg - ok
21:15:23.0845 1084        PNRPsvc        (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:15:23.0861 1084        PNRPsvc - ok
21:15:23.0954 1084        Polar Daemon    (d8fc3064e3a3a9c482019d1f1bd1420a) C:\Program Files (x86)\Polar\Daemon\polard.exe
21:15:23.0985 1084        Polar Daemon ( UnsignedFile.Multi.Generic ) - warning
21:15:23.0985 1084        Polar Daemon - detected UnsignedFile.Multi.Generic (1)
21:15:24.0048 1084        PolicyAgent    (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:15:24.0095 1084        PolicyAgent - ok
21:15:24.0126 1084        Power          (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:15:24.0173 1084        Power - ok
21:15:24.0251 1084        PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:15:24.0297 1084        PptpMiniport - ok
21:15:24.0329 1084        Processor      (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:15:24.0360 1084        Processor - ok
21:15:24.0407 1084        ProfSvc        (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
21:15:24.0453 1084        ProfSvc - ok
21:15:24.0485 1084        ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:24.0500 1084        ProtectedStorage - ok
21:15:24.0531 1084        Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:15:24.0594 1084        Psched - ok
21:15:24.0672 1084        PSI_SVC_2      (f036cfb275d0c55f4e45fbbf5f98b3c8) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
21:15:24.0687 1084        PSI_SVC_2 - ok
21:15:24.0812 1084        ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:15:24.0859 1084        ql2300 - ok
21:15:24.0999 1084        ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:15:25.0015 1084        ql40xx - ok
21:15:25.0062 1084        QWAVE          (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:15:25.0093 1084        QWAVE - ok
21:15:25.0109 1084        QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:15:25.0140 1084        QWAVEdrv - ok
21:15:25.0140 1084        RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:15:25.0187 1084        RasAcd - ok
21:15:25.0233 1084        RasAgileVpn    (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:15:25.0280 1084        RasAgileVpn - ok
21:15:25.0311 1084        RasAuto        (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:15:25.0358 1084        RasAuto - ok
21:15:25.0405 1084        Rasl2tp        (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:15:25.0452 1084        Rasl2tp - ok
21:15:25.0530 1084        RasMan          (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:15:25.0608 1084        RasMan - ok
21:15:25.0655 1084        RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:15:25.0701 1084        RasPppoe - ok
21:15:25.0717 1084        RasSstp        (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:15:25.0764 1084        RasSstp - ok
21:15:25.0795 1084        rdbss          (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:15:25.0842 1084        rdbss - ok
21:15:25.0857 1084        rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:15:25.0873 1084        rdpbus - ok
21:15:25.0904 1084        RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:15:25.0935 1084        RDPCDD - ok
21:15:25.0951 1084        RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:15:25.0998 1084        RDPENCDD - ok
21:15:26.0013 1084        RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:15:26.0045 1084        RDPREFMP - ok
21:15:26.0091 1084        RDPWD          (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
21:15:26.0107 1084        RDPWD - ok
21:15:26.0154 1084        rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:15:26.0169 1084        rdyboost - ok
21:15:26.0201 1084        regi            (4d9afddda0efe97cdbfd3b5fa48b05f6) C:\Windows\system32\drivers\regi.sys
21:15:26.0216 1084        regi - ok
21:15:26.0232 1084        RemoteAccess    (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:15:26.0294 1084        RemoteAccess - ok
21:15:26.0341 1084        RemoteRegistry  (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:15:26.0403 1084        RemoteRegistry - ok
21:15:26.0435 1084        ROOTMODEM      (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
21:15:26.0481 1084        ROOTMODEM - ok
21:15:26.0497 1084        RpcEptMapper    (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:15:26.0544 1084        RpcEptMapper - ok
21:15:26.0575 1084        RpcLocator      (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:15:26.0606 1084        RpcLocator - ok
21:15:26.0669 1084        RpcSs          (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:15:26.0715 1084        RpcSs - ok
21:15:26.0731 1084        rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:15:26.0793 1084        rspndr - ok
21:15:26.0840 1084        RSUSBSTOR      (907c4464381b5ebdfdc60f6c7d0dedfc) C:\Windows\system32\Drivers\RtsUStor.sys
21:15:26.0871 1084        RSUSBSTOR - ok
21:15:26.0918 1084        RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
21:15:26.0934 1084        RTHDMIAzAudService - ok
21:15:26.0996 1084        RTL8167        (fd978b2bf8a9b2390dcbef435e9c1f9f) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:15:27.0012 1084        RTL8167 - ok
21:15:27.0043 1084        SamSs          (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:27.0059 1084        SamSs - ok
21:15:27.0105 1084        sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:15:27.0121 1084        sbp2port - ok
21:15:27.0168 1084        SCardSvr        (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:15:27.0215 1084        SCardSvr - ok
21:15:27.0246 1084        scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:15:27.0277 1084        scfilter - ok
21:15:27.0386 1084        Schedule        (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:15:27.0464 1084        Schedule - ok
21:15:27.0495 1084        SCPolicySvc    (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:15:27.0527 1084        SCPolicySvc - ok
21:15:27.0542 1084        SDRSVC          (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:15:27.0573 1084        SDRSVC - ok
21:15:27.0620 1084        secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:15:27.0683 1084        secdrv - ok
21:15:27.0714 1084        seclogon        (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:15:27.0745 1084        seclogon - ok
21:15:27.0776 1084        SENS            (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:15:27.0823 1084        SENS - ok
21:15:27.0839 1084        SensrSvc        (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:15:27.0870 1084        SensrSvc - ok
21:15:27.0885 1084        Serenum        (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:15:27.0901 1084        Serenum - ok
21:15:27.0932 1084        Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:15:27.0963 1084        Serial - ok
21:15:28.0010 1084        sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:15:28.0026 1084        sermouse - ok
21:15:28.0073 1084        SessionEnv      (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:15:28.0119 1084        SessionEnv - ok
21:15:28.0151 1084        sffdisk        (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:15:28.0197 1084        sffdisk - ok
21:15:28.0213 1084        sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:15:28.0213 1084        sffp_mmc - ok
21:15:28.0229 1084        sffp_sd        (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:15:28.0260 1084        sffp_sd - ok
21:15:28.0275 1084        sfloppy        (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:15:28.0322 1084        sfloppy - ok
21:15:28.0385 1084        SharedAccess    (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:15:28.0447 1084        SharedAccess - ok
21:15:28.0509 1084        ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:15:28.0572 1084        ShellHWDetection - ok
21:15:28.0603 1084        SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:15:28.0619 1084        SiSRaid2 - ok
21:15:28.0619 1084        SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:15:28.0634 1084        SiSRaid4 - ok
21:15:28.0650 1084        Smb            (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:15:28.0697 1084        Smb - ok
21:15:28.0728 1084        SNMPTRAP        (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:15:28.0743 1084        SNMPTRAP - ok
21:15:28.0759 1084        spldr          (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:15:28.0775 1084        spldr - ok
21:15:28.0837 1084        Spooler        (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:15:28.0884 1084        Spooler - ok
21:15:29.0149 1084        sppsvc          (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:15:29.0243 1084        sppsvc - ok
21:15:29.0367 1084        sppuinotify    (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:15:29.0445 1084        sppuinotify - ok
21:15:29.0523 1084        srv            (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:15:29.0586 1084        srv - ok
21:15:29.0633 1084        srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:15:29.0664 1084        srv2 - ok
21:15:29.0695 1084        srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:15:29.0726 1084        srvnet - ok
21:15:29.0773 1084        SSDPSRV        (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:15:29.0835 1084        SSDPSRV - ok
21:15:29.0851 1084        SstpSvc        (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:15:29.0882 1084        SstpSvc - ok
21:15:29.0913 1084        stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:15:29.0913 1084        stexstor - ok
21:15:29.0991 1084        stisvc          (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:15:30.0038 1084        stisvc - ok
21:15:30.0069 1084        swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:15:30.0069 1084        swenum - ok
21:15:30.0132 1084        swprv          (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:15:30.0179 1084        swprv - ok
21:15:30.0257 1084        SynTP          (470c47daba9ca3966f0ab3f835d7d135) C:\Windows\system32\DRIVERS\SynTP.sys
21:15:30.0272 1084        SynTP - ok
21:15:30.0413 1084        SysMain        (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:15:30.0491 1084        SysMain - ok
21:15:30.0615 1084        TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:15:30.0662 1084        TabletInputService - ok
21:15:30.0709 1084        TapiSrv        (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:15:30.0771 1084        TapiSrv - ok
21:15:30.0787 1084        TBS            (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:15:30.0834 1084        TBS - ok
21:15:31.0037 1084        Tcpip          (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
21:15:31.0083 1084        Tcpip - ok
21:15:31.0364 1084        TCPIP6          (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
21:15:31.0411 1084        TCPIP6 - ok
21:15:31.0536 1084        tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:15:31.0598 1084        tcpipreg - ok
21:15:31.0661 1084        tdcmdpst        (fd542b661bd22fa69ca789ad0ac58c29) C:\Windows\system32\DRIVERS\tdcmdpst.sys
21:15:31.0676 1084        tdcmdpst - ok
21:15:31.0707 1084        TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:15:31.0754 1084        TDPIPE - ok
21:15:31.0785 1084        TDTCP          (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:15:31.0817 1084        TDTCP - ok
21:15:31.0863 1084        tdx            (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:15:31.0941 1084        tdx - ok
21:15:32.0051 1084        TemproMonitoringService (40e154b3125e17ce6f2afad57afcfeb2) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
21:15:32.0066 1084        TemproMonitoringService - ok
21:15:32.0113 1084        TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:15:32.0129 1084        TermDD - ok
21:15:32.0191 1084        TermService    (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:15:32.0253 1084        TermService - ok
21:15:32.0269 1084        TFsExDisk - ok
21:15:32.0300 1084        Themes          (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:15:32.0331 1084        Themes - ok
21:15:32.0363 1084        THREADORDER    (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:15:32.0409 1084        THREADORDER - ok
21:15:32.0472 1084        TMachInfo      (28644b0523d64eff2fc7312a2ee74b0a) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
21:15:32.0487 1084        TMachInfo - ok
21:15:32.0503 1084        TODDSrv        (ed32035bdfeced1ad66d459fd9cc1140) C:\Windows\system32\TODDSrv.exe
21:15:32.0519 1084        TODDSrv - ok
21:15:32.0628 1084        TosCoSrv        (db9719688c08f42705feb3f6a0c98b91) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
21:15:32.0643 1084        TosCoSrv - ok
21:15:32.0706 1084        TOSHIBA Bluetooth Service (895f6972480306cb2a2a246991e34c68) C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
21:15:32.0721 1084        TOSHIBA Bluetooth Service - ok
21:15:32.0784 1084        TOSHIBA eco Utility Service (2ab7a4697462edb0c9dfafc529746ba9) C:\Program Files\TOSHIBA\TECO\TecoService.exe
21:15:32.0799 1084        TOSHIBA eco Utility Service - ok
21:15:32.0846 1084        TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
21:15:32.0862 1084        TOSHIBA HDD SSD Alert Service - ok
21:15:32.0924 1084        tosporte        (8021f63311797085949fa387f7c83583) C:\Windows\system32\DRIVERS\tosporte.sys
21:15:32.0940 1084        tosporte - ok
21:15:32.0987 1084        tosrfbd        (1b09357180034639e62cf745e77ac66e) C:\Windows\system32\DRIVERS\tosrfbd.sys
21:15:33.0002 1084        tosrfbd - ok
21:15:33.0033 1084        tosrfbnp        (62512b5277d88600f8bd4b7aec43569d) C:\Windows\system32\Drivers\tosrfbnp.sys
21:15:33.0033 1084        tosrfbnp - ok
21:15:33.0080 1084        Tosrfcom        (c523a9186c39d65cc9adebb2e1b93ccd) C:\Windows\system32\Drivers\tosrfcom.sys
21:15:33.0096 1084        Tosrfcom - ok
21:15:33.0143 1084        tosrfec        (11699d47b3491d86249c168496d55c92) C:\Windows\system32\DRIVERS\tosrfec.sys
21:15:33.0143 1084        tosrfec - ok
21:15:33.0174 1084        Tosrfhid        (451b8c1815c6cc39650af916c2a382cd) C:\Windows\system32\DRIVERS\Tosrfhid.sys
21:15:33.0189 1084        Tosrfhid - ok
21:15:33.0205 1084        tosrfnds        (b6fdc3c76ffe9c5171eea9c37ea367c2) C:\Windows\system32\DRIVERS\tosrfnds.sys
21:15:33.0221 1084        tosrfnds - ok
21:15:33.0267 1084        TosRfSnd        (e1e045240c1184fa6628f3c7e7ff85d8) C:\Windows\system32\drivers\tosrfsnd.sys
21:15:33.0283 1084        TosRfSnd - ok
21:15:33.0314 1084        Tosrfusb        (de44a2a2459d0504f146e599f4bd2074) C:\Windows\system32\DRIVERS\tosrfusb.sys
21:15:33.0330 1084        Tosrfusb - ok
21:15:33.0439 1084        TPCHSrv        (97687d094aa597da366e1194b218cc6c) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
21:15:33.0455 1084        TPCHSrv - ok
21:15:33.0486 1084        TrkWks          (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:15:33.0533 1084        TrkWks - ok
21:15:33.0611 1084        TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:15:33.0673 1084        TrustedInstaller - ok
21:15:33.0704 1084        tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:15:33.0735 1084        tssecsrv - ok
21:15:33.0782 1084        TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:15:33.0829 1084        TsUsbFlt - ok
21:15:33.0891 1084        tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:15:33.0969 1084        tunnel - ok
21:15:34.0016 1084        TVALZ          (550b567f9364d8f7684c3fb3ea665a72) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
21:15:34.0016 1084        TVALZ - ok
21:15:34.0063 1084        TVALZFL        (9c7191f4b2e49bff47a6c1144b5923fa) C:\Windows\system32\DRIVERS\TVALZFL.sys
21:15:34.0079 1084        TVALZFL - ok
21:15:34.0110 1084        uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:15:34.0125 1084        uagp35 - ok
21:15:34.0172 1084        udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:15:34.0235 1084        udfs - ok
21:15:34.0266 1084        UI0Detect      (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:15:34.0281 1084        UI0Detect - ok
21:15:34.0313 1084        uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:15:34.0344 1084        uliagpkx - ok
21:15:34.0375 1084        umbus          (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:15:34.0406 1084        umbus - ok
21:15:34.0422 1084        UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:15:34.0453 1084        UmPass - ok
21:15:34.0718 1084        UNS            (cc3775100aba633984f73dfae1f55cae) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
21:15:34.0781 1084        UNS - ok
21:15:34.0905 1084        upnphost        (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:15:34.0983 1084        upnphost - ok
21:15:35.0030 1084        usbccgp        (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:15:35.0077 1084        usbccgp - ok
21:15:35.0108 1084        usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:15:35.0124 1084        usbcir - ok
21:15:35.0155 1084        usbehci        (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:15:35.0186 1084        usbehci - ok
21:15:35.0217 1084        usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:15:35.0264 1084        usbhub - ok
21:15:35.0264 1084        usbohci        (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:15:35.0295 1084        usbohci - ok
21:15:35.0342 1084        usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:15:35.0358 1084        usbprint - ok
21:15:35.0420 1084        usbscan        (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:15:35.0451 1084        usbscan - ok
21:15:35.0498 1084        USBSTOR        (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:15:35.0545 1084        USBSTOR - ok
21:15:35.0576 1084        usbuhci        (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:15:35.0607 1084        usbuhci - ok
21:15:35.0670 1084        usbvideo        (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:15:35.0732 1084        usbvideo - ok
21:15:35.0779 1084        usb_rndisx      (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
21:15:35.0795 1084        usb_rndisx - ok
21:15:35.0826 1084        UxSms          (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:15:35.0888 1084        UxSms - ok
21:15:35.0919 1084        VaultSvc        (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:15:35.0935 1084        VaultSvc - ok
21:15:35.0982 1084        vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:15:35.0997 1084        vdrvroot - ok
21:15:36.0060 1084        vds            (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:15:36.0153 1084        vds - ok
21:15:36.0200 1084        vga            (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:15:36.0231 1084        vga - ok
21:15:36.0247 1084        VgaSave        (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:15:36.0294 1084        VgaSave - ok
21:15:36.0341 1084        vhdmp          (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:15:36.0372 1084        vhdmp - ok
21:15:36.0387 1084        viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:15:36.0387 1084        viaide - ok
21:15:36.0403 1084        volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:15:36.0419 1084        volmgr - ok
21:15:36.0481 1084        volmgrx        (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:15:36.0512 1084        volmgrx - ok
21:15:36.0543 1084        volsnap        (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:15:36.0559 1084        volsnap - ok
21:15:36.0606 1084        vsmraid        (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:15:36.0621 1084        vsmraid - ok
21:15:36.0777 1084        VSS            (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:15:36.0840 1084        VSS - ok
21:15:36.0949 1084        vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:15:36.0980 1084        vwifibus - ok
21:15:37.0011 1084        vwififlt        (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:15:37.0058 1084        vwififlt - ok
21:15:37.0121 1084        W32Time        (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:15:37.0167 1084        W32Time - ok
21:15:37.0167 1084        WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:15:37.0199 1084        WacomPen - ok
21:15:37.0230 1084        WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:15:37.0277 1084        WANARP - ok
21:15:37.0277 1084        Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:15:37.0323 1084        Wanarpv6 - ok
21:15:37.0448 1084        wbengine        (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:15:37.0511 1084        wbengine - ok
21:15:37.0635 1084        WbioSrvc        (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:15:37.0667 1084        WbioSrvc - ok
21:15:37.0713 1084        wcncsvc        (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:15:37.0729 1084        wcncsvc - ok
21:15:37.0760 1084        WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:15:37.0776 1084        WcsPlugInService - ok
21:15:37.0807 1084        Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:15:37.0838 1084        Wd - ok
21:15:37.0885 1084        Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:15:37.0932 1084        Wdf01000 - ok
21:15:37.0947 1084        WdiServiceHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:15:38.0057 1084        WdiServiceHost - ok
21:15:38.0057 1084        WdiSystemHost  (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:15:38.0072 1084        WdiSystemHost - ok
21:15:38.0119 1084        WebClient      (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:15:38.0166 1084        WebClient - ok
21:15:38.0213 1084        Wecsvc          (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:15:38.0259 1084        Wecsvc - ok
21:15:38.0275 1084        wercplsupport  (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:15:38.0322 1084        wercplsupport - ok
21:15:38.0322 1084        WerSvc          (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:15:38.0369 1084        WerSvc - ok
21:15:38.0415 1084        WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:15:38.0478 1084        WfpLwf - ok
21:15:38.0493 1084        WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:15:38.0509 1084        WIMMount - ok
21:15:38.0525 1084        WinDefend - ok
21:15:38.0540 1084        WinHttpAutoProxySvc - ok
21:15:38.0618 1084        Winmgmt        (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:15:38.0681 1084        Winmgmt - ok
21:15:38.0837 1084        WinRM          (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:15:38.0915 1084        WinRM - ok
21:15:39.0055 1084        WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:15:39.0086 1084        WinUsb - ok
21:15:39.0164 1084        Wlansvc        (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:15:39.0211 1084        Wlansvc - ok
21:15:39.0273 1084        wlcrasvc        (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:15:39.0289 1084        wlcrasvc - ok
21:15:39.0507 1084        wlidsvc        (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:15:39.0570 1084        wlidsvc - ok
21:15:39.0710 1084        WmiAcpi        (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:15:39.0741 1084        WmiAcpi - ok
21:15:39.0788 1084        wmiApSrv        (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:15:39.0835 1084        wmiApSrv - ok
21:15:39.0882 1084        WMPNetworkSvc - ok
21:15:39.0913 1084        WPCSvc          (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:15:39.0944 1084        WPCSvc - ok
21:15:39.0975 1084        WPDBusEnum      (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:15:39.0991 1084        WPDBusEnum - ok
21:15:40.0022 1084        ws2ifsl        (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:15:40.0069 1084        ws2ifsl - ok
21:15:40.0085 1084        wscsvc          (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:15:40.0116 1084        wscsvc - ok
21:15:40.0131 1084        WSearch - ok
21:15:40.0256 1084        WTGService      (624809fe31f0ebba33fd4c98e016dd83) C:\Program Files (x86)\XSManager\WTGService.exe
21:15:40.0287 1084        WTGService - ok
21:15:40.0475 1084        wuauserv        (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
21:15:40.0537 1084        wuauserv - ok
21:15:40.0662 1084        WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:15:40.0724 1084        WudfPf - ok
21:15:40.0755 1084        WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:15:40.0787 1084        WUDFRd - ok
21:15:40.0818 1084        wudfsvc        (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:15:40.0849 1084        wudfsvc - ok
21:15:40.0880 1084        WwanSvc        (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:15:40.0911 1084        WwanSvc - ok
21:15:40.0958 1084        XS Stick Service (e430a4b710c041e87dd0fc46c5963720) C:\Windows\service4g.exe
21:15:40.0974 1084        XS Stick Service - ok
21:15:41.0021 1084        MBR (0x1B8)    (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:15:41.0333 1084        \Device\Harddisk0\DR0 - ok
21:15:41.0364 1084        Boot (0x1200)  (5c573190d2c485cfebf5b2be2ce3fb86) \Device\Harddisk0\DR0\Partition0
21:15:41.0379 1084        \Device\Harddisk0\DR0\Partition0 - ok
21:15:41.0395 1084        Boot (0x1200)  (5f1de8207542db87694ca51272f19bc3) \Device\Harddisk0\DR0\Partition1
21:15:41.0395 1084        \Device\Harddisk0\DR0\Partition1 - ok
21:15:41.0395 1084        ============================================================
21:15:41.0395 1084        Scan finished
21:15:41.0395 1084        ============================================================
21:15:41.0411 2888        Detected object count: 1
21:15:41.0411 2888        Actual detected object count: 1
21:15:53.0423 2888        Polar Daemon ( UnsignedFile.Multi.Generic ) - skipped by user
21:15:53.0423 2888        Polar Daemon ( UnsignedFile.Multi.Generic ) - User select action: Skip
... diese Datei könnte von der Polar Pulsuhr und dem Polar WebSync herrühren. Oder auch nicht...?

Vielen Dank auf jeden Fall schonmal für deine Hilfe an diesem wohl doch nicht so kleinen Problem...

cosinus 13.08.2012 16:05
Die Datei sollt ok sein

Dann bitte jetzt CF ausführen:

ComboFix

Ein Leitfaden und Tutorium zur Nutzung von ComboFix
  • Schliesse alle Programme, vor allem dein Antivirenprogramm und andere Hintergrundwächter sowie deinen Internetbrowser.
  • Starte combofix.exe von deinem Desktop aus, bestätige die Warnmeldungen, führe die Updates durch (falls vorgeschlagen), installiere die Wiederherstellungskonsole (falls vorgeschlagen) und lass dein System durchsuchen.
    Vermeide es auch während Combofix läuft die Maus und Tastatur zu benutzen.
  • Im Anschluss öffnet sich automatisch eine combofix.txt, diesen Inhalt bitte kopieren ([Strg]a, [Strg]c) und in deinen Beitrag einfügen ([Strg]v). Die Datei findest du außerdem unter: C:\ComboFix.txt.
Wichtiger Hinweis:
Combofix darf ausschließlich ausgeführt werden, wenn ein Kompetenzler dies ausdrücklich empfohlen hat!

Es sollte nie auf eigene Initiative hin ausgeführt werden! Eine falsche Benutzung kann ernsthafte Computerprobleme nach sich ziehen und eine Bereinigung der Infektion noch erschweren.

Solltest du nach der Ausführung von Combofix Probleme beim Starten von Anwendungen haben und Meldungen erhalten wie

Zitat:
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
startest du Windows dann manuell neu und die Fehlermeldungen sollten nicht mehr auftauchen.


Alle Zeitangaben in WEZ +1. Es ist jetzt 08:18 Uhr.
Seite 2 von 2 1 2
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131