| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandtWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.01.2014, 19:59
| #1 |
 |  Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Hallo ich bitte um Hilfe da ich allein mit der Problematik nicht zurecht komme. Ich habe folgende Nachricht erhalten: HTML-Code: | Kundennummer: XXXXXXXXXXXXXXX | Anschlussinhaber: XXXXXXXXXXXXXXXXXX Sehr geehrte Kundin, sehr geehrter Kunde, wir müssen leider davon ausgehen, dass von Ihrem Internet-Anschluss Schadsoftware, wie zum Beispiel Viren oder Trojaner, versendet werden. Möglicherweise wird Ihr Internet-Zugang dazu ohne Ihr Wissen von Dritten genutzt. Den Hinweis auf Ihren Anschluss und diese IP-Adresse haben wir von externen Sicherheitsexperten erhalten, mit denen wir zusammenarbeiten, um unsere Kunden zu schützen. Die folgende IP-Adresse war zu dem genannten Zeitpunkt Ihrer Zugangsnummer zugeordnet IP-Adresse: 80.136.111.9 Zeitangabe: 28.01.2014, 22:59:00 (MEZ) Wichtig: Bitte prüfen Sie Ihre Computer und beheben Sie umgehend die Ursache der missbräuchlichen Nutzung. Außerdem raten wir Ihnen dringend, sämtliche Passwörter zu ändern. Eine Passwortänderung darf nur von einem Computer aus erfolgen, der garantiert frei von Viren und Trojanern ist, sonst können die neuen Passwörter direkt wieder von Dritten ausgelesen werden. Ändern Sie auch die Passwörter für Ihren Router, für alle E-Mail-Adressen sowie Online-Banking, Ebay, Amazon usw. Passwörter von Telekom Diensten und Services können Sie zentral und einfach im Kundencenter unter https://kundencenter.telekom.de ändern. Unter dem Link www.t-online.de/abuse/faq -> Reiter "Downloads & Handbücher" im Merkblatt Sicherheit geben wir Ihnen Antworten auf die wichtigsten Fragen zum Thema Internetsicherheit, z. B. wie finde ich ein sicheres Passwort. Sollten Sie die missbräuchliche Nutzung Ihres Anschlusses nicht unterbinden, müssen wir leider Ihren E-Mail-Versand einschränken, um andere Nutzer zu schützen. Die missbräuchliche Nutzung eines Zugangs erfolgt häufig durch: - Zugriffe von Dritten über eine offene WLAN-Verbindung oder ungewollte Kenntnis Ihrer Zugangsdaten - Nutzung Ihres Netzwerkes mit infizierten Computern Überprüfen Sie deshalb folgende Einstellungen Ihres Computers: - Sind Betriebssystem und installierte Software aktuell? - Ist eine aktuelle Version eines Virenscanners aktiviert? Sofern Sie Ihr Sicherheitsproblem nicht selbst lösen können, empfehlen wir Ihnen, einen EDV-Fachmann hinzuzuziehen. Benötigen Sie weitere Informationen zu dieser Sicherheitswarnung, senden Sie uns einfach eine E-Mail an abuse@telekom.de. Geben Sie dabei unbedingt Ihre oben genannte Zugangsnummer an, damit wir Ihre Nachricht richtig zuordnen können. Unsere Mitarbeiter werden sich umgehend mit Ihnen in Verbindung setzen. Mit freundlichen Grüßen Ihre Telekom www.t-online.de/abuse Deutsche Telekom AG Group Information Security SDA / Abuse T-Online-Allee 1 D-64295 Darmstadt Dann habe ich das Microsoft - Tool zum Entfernen bösartiger Software verwendet. Ergebnis: Das zeigte 1 Fund an , dann war das aber auf der nächsten Seite weg. Es wurde befallsfrei gemeldet? Als Schutz habe ich : Microsoft Essentials in der atuellen Version laufen Eben habe ich auch noch Malwarebytes als Scan laufen lassen. Auch das fand nichts. Wie soll ich weiter vorgehen? Danke Gluehstrumpf |
|
30.01.2014, 20:50
| #2 |
| /// Malwareteam   | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Eine Bereinigung ist mitunter mit viel Arbeit für Dich verbunden.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der Schnellere und immer der sicherste Weg. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis dir jemand vom Team sagt, dass Du clean bist. Vista und Win7 User Alle Tools mit Rechtsklick "als Administrator ausführen" starten. Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
|
|
31.01.2014, 08:29
| #3 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Hallo,
__________________vielen Dank, daß Du mir hilfst. Ich habe mich für die Bereinigung entschieden. Die FRST: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by Rudi (administrator) on RUDI-PC on 31-01-2014 08:17:07
Running from C:\Users\Rudi\Downloads
Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Microsoft) C:\Program Files\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe
(Manfred Richter) C:\SolarView\Datenlogger.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(BillP Studios) C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\System32\inetsrv\w3wp.exe
(Comfort Software Group) C:\Program Files\FreeAlarmClock\FreeAlarmClock.exe
() C:\Program Files\JFritz\jfritz.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [948440 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11930696 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [] - [x]
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [WinPatrol] - C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [436800 2013-07-15] (BillP Studios)
HKCU\...\Run: [FreeAC] - C:\Program Files\FreeAlarmClock\FreeAlarmClock.exe [1339672 2013-10-22] (Comfort Software Group)
HKCU\...\Policies\system: [LogonHoursAction] 2
HKCU\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\Users\Rudi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet Pro 8600.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet Pro 8600.lnk -> C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xFAFA4089B533CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F713D7B7365617263685465726D737D267372633D49452D536561726368426F7826464F524D3D494531305352&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&k=0
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com.anonymize-me.de/?anonymto=687474703A2F2F7777772E62696E672E636F6D2F7365617263683F713D7B7365617263685465726D737D267372633D49452D536561726368426F7826464F524D3D494531305352&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&k=0
SearchScopes: HKCU - {0F76ACEB-00B3-45CC-B7FF-F8ACE51E217B} URL = hxxp://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&mode=bounce&k=0
SearchScopes: HKCU - {42ECD05C-3444-4791-856E-9E1FF8985FB1} URL = hxxp://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&mode=bounce&k=0
SearchScopes: HKCU - {6BFAC118-F8B8-40F4-B4E3-90F3C0ADD85F} URL = hxxp://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&mode=bounce&k=0
SearchScopes: HKCU - {A15A5E2F-3C0F-4978-B7E2-3DED85CAF0EA} URL = hxxp://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&mode=bounce&k=0
SearchScopes: HKCU - {B8C9BE02-6ED2-47AC-90B6-6C0392F59A1A} URL = hxxp://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&mode=bounce&k=0
SearchScopes: HKCU - {BA7B1DE1-AB18-462D-B085-CD7338F2F068} URL = hxxp://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=63656166-9b62-4c57-af4a-99ff49666daf&pid=freewarede&mode=bounce&k=0
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect1259.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\dmjecpdx.default
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\dmjecpdx.default\searchplugins\ask-web-search.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Utility Chest - C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\dmjecpdx.default\Extensions\49ffxtbr@UtilityChest_49.com [2014-01-10]
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-01]
CHR Extension: (Google Drive) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-01]
CHR Extension: (YouTube) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-01]
CHR Extension: (Google-Suche) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-01]
CHR Extension: (Google Wallet) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-01]
CHR Extension: (Google Mail) - C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-01]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
========================== Services (Whitelisted) =================
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22208 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [280288 2013-10-23] (Microsoft Corporation)
R2 SMA.Multicasting.IGMP.QuerierService.exe; C:\Program Files\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe [21152 2013-07-31] (Microsoft)
R2 Solarlogger; C:\SolarView\Datenlogger.exe [471040 2012-04-16] (Manfred Richter)
==================== Drivers (Whitelisted) ====================
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [214696 2013-09-27] (Microsoft Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Rudi\AppData\Local\Temp\catchme.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-31 08:10 - 2014-01-31 08:10 - 00001070 _____ C:\Users\Rudi\Desktop\Continue AnyProtect Installation.lnk
2014-01-31 08:07 - 2014-01-31 08:07 - 00587120 _____ ( ) C:\Users\Rudi\Downloads\Setup.exe
2014-01-30 17:43 - 2014-01-30 17:45 - 24015072 _____ (Microsoft Corporation) C:\Users\Rudi\Downloads\Windows-KB890830-V5.8.exe
2014-01-18 21:06 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-01-18 21:06 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-18 21:06 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-18 21:06 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-18 21:05 - 2014-01-18 21:06 - 00005315 _____ C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-17 15:43 - 2014-01-18 08:47 - 00008384 _____ C:\Users\Rudi\Desktop\Werbunskosten Imkerei 2014.xlsx
2014-01-17 15:41 - 2014-01-18 08:46 - 00008538 _____ C:\Users\Rudi\Desktop\Werbungskosten Drechseln 2014.xlsx
2014-01-15 19:12 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 19:12 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 19:12 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 19:12 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 19:12 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 19:12 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 19:12 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 19:12 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 19:12 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 08:01 - 2014-01-17 16:01 - 00009062 _____ C:\Users\Rudi\Desktop\Anstehende Arbeiten Januar 14.xlsx
2014-01-11 17:34 - 2014-01-11 17:35 - 06123336 _____ C:\Users\Rudi\Downloads\HPPSdr.exe
2014-01-11 16:37 - 2014-01-11 16:37 - 00002200 _____ C:\Users\Public\Desktop\HP Officejet Pro 8600.lnk
2014-01-11 16:37 - 2014-01-11 16:37 - 00001152 _____ C:\Users\Public\Desktop\Shop für Zubehör - HP Officejet Pro 8600.lnk
2014-01-11 16:37 - 2012-10-17 04:04 - 00580712 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPM5912.dll
2014-01-07 08:16 - 2014-01-07 08:16 - 00000079 _____ C:\Windows\wininit.ini
2014-01-06 21:06 - 2014-01-06 21:06 - 00008634 _____ C:\Users\Rudi\Documents\Kauf stichelschleifmaschine.xlsx
2014-01-03 15:20 - 2014-01-06 13:51 - 01286520 _____ (Netviewer AG) C:\Users\Rudi\Downloads\diagnose.exe
2014-01-02 18:44 - 2014-01-11 17:35 - 00001966 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2014-01-01 18:15 - 2014-01-01 18:41 - 00080620 _____ C:\Users\Rudi\Downloads\OTL.Txt
2014-01-01 18:15 - 2014-01-01 18:15 - 00062124 _____ C:\Users\Rudi\Downloads\Extras.Txt
==================== One Month Modified Files and Folders =======
2014-01-31 08:17 - 2013-09-20 11:30 - 00012515 _____ C:\Users\Rudi\Downloads\FRST.txt
2014-01-31 08:17 - 2013-09-20 11:28 - 00000000 ____D C:\FRST
2014-01-31 08:16 - 2013-09-20 11:27 - 01137152 _____ (Farbar) C:\Users\Rudi\Downloads\FRST.exe
2014-01-31 08:16 - 2013-04-12 17:51 - 00000000 ____D C:\SolarView
2014-01-31 08:15 - 2013-06-14 09:04 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-31 08:14 - 2013-06-14 09:04 - 00001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-31 08:10 - 2014-01-31 08:10 - 00001070 _____ C:\Users\Rudi\Desktop\Continue AnyProtect Installation.lnk
2014-01-31 08:07 - 2014-01-31 08:07 - 00587120 _____ ( ) C:\Users\Rudi\Downloads\Setup.exe
2014-01-31 08:07 - 2009-07-14 05:34 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-31 08:07 - 2009-07-14 05:34 - 00009888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-31 08:01 - 2013-04-08 09:03 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-31 08:00 - 2013-04-07 17:51 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\JFritz
2014-01-31 07:59 - 2013-04-07 15:11 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-31 07:59 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-31 07:59 - 2009-07-14 05:39 - 00055242 _____ C:\Windows\setupact.log
2014-01-30 20:07 - 2013-04-07 13:53 - 01145850 _____ C:\Windows\WindowsUpdate.log
2014-01-30 17:45 - 2014-01-30 17:43 - 24015072 _____ (Microsoft Corporation) C:\Users\Rudi\Downloads\Windows-KB890830-V5.8.exe
2014-01-30 14:07 - 2013-04-07 14:11 - 01758918 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-29 11:52 - 2013-11-01 13:52 - 00002121 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-28 12:46 - 2013-04-08 07:58 - 00020033 _____ C:\Users\Rudi\Desktop\Einnahmen aus Imkerei und Drechseln.xlsx
2014-01-27 08:02 - 2013-08-25 11:08 - 00000000 ____D C:\Program Files\SpywareBlaster
2014-01-23 16:56 - 2009-07-14 05:53 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2014-01-19 08:32 - 2013-04-07 14:25 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 21:06 - 2014-01-18 21:05 - 00005315 _____ C:\Windows\system32\jupdate-1.7.0_51-b13.log
2014-01-18 21:06 - 2013-10-19 07:41 - 00000000 ____D C:\ProgramData\Oracle
2014-01-18 21:06 - 2013-06-25 14:22 - 00000000 ____D C:\Program Files\Java
2014-01-18 08:47 - 2014-01-17 15:43 - 00008384 _____ C:\Users\Rudi\Desktop\Werbunskosten Imkerei 2014.xlsx
2014-01-18 08:46 - 2014-01-17 15:41 - 00008538 _____ C:\Users\Rudi\Desktop\Werbungskosten Drechseln 2014.xlsx
2014-01-18 07:51 - 2013-04-08 06:27 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-01-18 07:51 - 2013-04-08 06:27 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-01-18 07:49 - 2013-04-08 08:17 - 00000000 ____D C:\Users\Rudi\AppData\Local\Adobe
2014-01-17 16:01 - 2014-01-12 08:01 - 00009062 _____ C:\Users\Rudi\Desktop\Anstehende Arbeiten Januar 14.xlsx
2014-01-17 15:42 - 2013-04-08 07:56 - 00000000 ____D C:\Users\Rudi\Documents\Drechseln
2014-01-17 14:57 - 2013-04-19 15:28 - 00000000 ____D C:\Users\Rudi\AppData\Roaming\HpUpdate
2014-01-16 07:00 - 2009-07-14 05:33 - 00410096 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 21:41 - 2013-04-07 14:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 21:40 - 2013-07-10 20:34 - 00000000 ____D C:\Windows\system32\MRT
2014-01-12 11:24 - 2013-04-07 15:18 - 00094060 _____ C:\Windows\PFRO.log
2014-01-12 11:24 - 2013-04-07 14:47 - 00015550 _____ C:\ProgramData\hpzinstall.log
2014-01-12 11:23 - 2013-04-19 09:47 - 00000000 ____D C:\Program Files\HP
2014-01-12 11:21 - 2009-07-14 05:52 - 00000000 ____D C:\Windows\twain_32
2014-01-11 18:20 - 2013-04-07 14:47 - 00000000 ____D C:\ProgramData\HP
2014-01-11 17:40 - 2013-04-19 09:17 - 00000000 ____D C:\Users\Rudi\AppData\Local\HP
2014-01-11 17:35 - 2014-01-11 17:34 - 06123336 _____ C:\Users\Rudi\Downloads\HPPSdr.exe
2014-01-11 17:35 - 2014-01-02 18:44 - 00001966 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2014-01-11 17:22 - 2013-04-07 14:53 - 00000000 ____D C:\Users\Rudi\AppData\Local\Microsoft Help
2014-01-11 16:37 - 2014-01-11 16:37 - 00002200 _____ C:\Users\Public\Desktop\HP Officejet Pro 8600.lnk
2014-01-11 16:37 - 2014-01-11 16:37 - 00001152 _____ C:\Users\Public\Desktop\Shop für Zubehör - HP Officejet Pro 8600.lnk
2014-01-07 08:17 - 2013-08-25 08:11 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
2014-01-07 08:16 - 2014-01-07 08:16 - 00000079 _____ C:\Windows\wininit.ini
2014-01-06 21:06 - 2014-01-06 21:06 - 00008634 _____ C:\Users\Rudi\Documents\Kauf stichelschleifmaschine.xlsx
2014-01-06 16:20 - 2013-04-07 18:18 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-06 13:51 - 2014-01-03 15:20 - 01286520 _____ (Netviewer AG) C:\Users\Rudi\Downloads\diagnose.exe
2014-01-02 14:19 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2014-01-02 12:06 - 2013-04-19 16:08 - 00000000 ____D C:\Users\Rudi\Documents\Eigene Scans
2014-01-02 08:21 - 2013-04-12 18:11 - 00000000 ____D C:\Users\DefaultAppPool
2014-01-02 08:20 - 2013-04-07 14:07 - 00000000 ____D C:\Users\Rudi
2014-01-02 08:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\wfp
2014-01-02 08:19 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration
2014-01-01 18:41 - 2014-01-01 18:15 - 00080620 _____ C:\Users\Rudi\Downloads\OTL.Txt
2014-01-01 18:15 - 2014-01-01 18:15 - 00062124 _____ C:\Users\Rudi\Downloads\Extras.Txt
Some content of TEMP:
====================
C:\Users\Rudi\AppData\Local\temp\ICReinstall_nsjC864.tmp.exe
C:\Users\Rudi\AppData\Local\temp\jre-7u51-windows-i586-iftw.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-19 15:42
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-01-2014 01
Ran by Rudi at 2014-01-31 08:26:24
Running from C:\Users\Rudi\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (Version: 12.0.0.112 - Adobe Systems, Inc)
Allgemeine Runtime Files (x86) (Version: 1.0.3.5 - Sereby Corporation)
AVM FRITZ!Box Dokumentation (Version: - AVM Berlin)
AVM FRITZ!Box Druckeranschluss (Version: - AVM Berlin)
Biet-O-Matic v2.14.12 (Version: 2.14.12 - BOM Development Team)
bpd_scan (Version: 3.00.0000 - Hewlett-Packard) Hidden
CPUID CPU-Z 1.63.0 (Version: - )
DirectX 9.0c Extra Files (x86, x64) (Version: 1.10.06.0 - Sereby Corporation)
DirectX for Managed Code (Version: 1.0.0.0 - Sereby Corporation)
Free Alarm Clock 3.0.1 (Version: 3.0 - Comfort Software Group)
Google Chrome (Version: 32.0.1700.102 - Google Inc.)
Google Earth Plug-in (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Hilfe (Version: 28.0.0 - Hewlett Packard)
HP Product Detection (Version: 11.15.0005 - HP)
HP Update (Version: 5.005.000.001 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
I.R.I.S. OCR (Version: 12.3.4.0 - HP)
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JFritz 0.7.4.2 (Version: - JFritz Team)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 Security Update (KB2698023) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB2742597) (Version: - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (Version: - )
Microsoft .NET Framework 1.1 SP1 (Version: - )
Microsoft .NET Framework 1.1 SP1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual J# 2.0 Redistributable Package - SE (Version: - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version: 2.0.50728 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (Version: - Pavel Cvrcek)
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
NVIDIA 3D Vision Treiber 311.06 (Version: 311.06 - NVIDIA Corporation)
NVIDIA Grafiktreiber 311.06 (Version: 311.06 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1106 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
Skype™ 6.7 (Version: 6.7.102 - Skype Technologies S.A.)
SolarView (Version: 1.0.0.0 - )
SpywareBlaster 5.0 (Version: 5.0.0 - BrightFort LLC)
Sunny Explorer (Version: 1.06.16.4 - SMA Solar Technology AG)
TeamViewer 6 (Version: 6.0.17222 - TeamViewer GmbH)
Update for 2007 Microsoft Office System (KB967642) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (Version: - Microsoft)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0 - Microsoft Corporation)
WinPatrol (Version: 28.5.2013.0 - BillP Studios)
==================== Restore Points =========================
12-01-2014 14:22:53 Windows Update
15-01-2014 20:38:41 Windows Update
18-01-2014 20:05:24 Installed Java 7 Update 51
19-01-2014 11:25:16 Windows Update
22-01-2014 13:26:38 Windows Update
26-01-2014 10:55:57 Windows Update
29-01-2014 15:32:11 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:04 - 2013-07-17 11:22 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {192CA070-E942-4A1D-91B4-538540A439D0} - System32\Tasks\EPUpdater => C:\Users\Rudi\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe <==== ATTENTION
Task: {42AF9432-374A-4860-B875-9C5A68D7F088} - System32\Tasks\{9A3821E6-1ABA-4618-BE30-953FCD4E9B13} => Firefox.exe
Task: {4E0FAE61-2516-4739-8B30-108604ABBF2D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-14] (Google Inc.)
Task: {6AEBB922-1925-431B-9EBE-0053EF53DDBB} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {74DCCBB5-2E51-4138-B6F7-681DD7EB13AC} - System32\Tasks\{30A0D803-3362-4929-BCC2-9CAA233DAB15} => C:\Program Files\JFritz\jfritz.exe [2013-05-22] ()
Task: {7A0728CC-B813-466B-B206-853F41DAAD5D} - System32\Tasks\{111F5A3C-C4E2-459A-907F-A89B20EC0996} => Firefox.exe
Task: {857BB79D-BAFD-4900-807E-97CFD2643E35} - System32\Tasks\BrowserDefendert => Sc.exe start BrowserDefendert
Task: {926C14E6-A291-424D-A0C5-21C8DE8C0FC8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-06-14] (Google Inc.)
Task: {CF41D616-0445-4196-9399-A454DEB9909C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-18] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-04-07 15:11 - 2013-01-18 15:20 - 00079648 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2009-07-13 22:03 - 2009-07-14 02:15 - 00364544 _____ () C:\Windows\system32\msjetoledb40.dll
2013-12-09 08:40 - 2013-12-09 08:40 - 00007168 _____ () C:\Users\Rudi\AppData\Local\Microsoft\Windows Sidebar\Gadgets\GermanyRain.gadget\GermanyRainRadar.dll
2013-07-29 07:05 - 2013-07-15 18:29 - 00620718 ____N () C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
2009-02-26 12:46 - 2009-02-26 12:46 - 00064344 _____ () C:\Program Files\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2011-06-22 10:46 - 2011-06-22 10:46 - 00434016 _____ () C:\Program Files\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2013-07-10 17:07 - 2013-07-10 17:07 - 00756888 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
2013-12-20 09:35 - 2013-12-20 09:35 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter
Description: Realtek RTL8191SU Wireless LAN 802.11n USB 2.0 Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek Semiconductor Corp.
Service: RTL8192su
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/30/2014 01:57:10 PM) (Source: Application Hang) (User: )
Description: Programm OUTLOOK.EXE, Version 12.0.6680.5000 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: f00
Startzeit: 01cf1d997902c6dc
Endzeit: 0
Anwendungspfad: C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
Berichts-ID: fb52741c-89ad-11e3-88d4-4061865ee284
Error: (01/27/2014 08:01:11 AM) (Source: SMA IGMP Querier Service) (User: )
Description: Der Dienst kann nicht gestartet werden. Der Dienstprozess konnte keine Verbindung mit dem Dienstcontroller herstellen
Error: (01/24/2014 09:16:05 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (01/23/2014 01:56:07 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 11.0.9600.16428, Zeitstempel: 0x525b664c
Name des fehlerhaften Moduls: nvwgf2um.dll, Version: 9.18.13.1106, Zeitstempel: 0x50f94515
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001a2519
ID des fehlerhaften Prozesses: 0x1708
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (01/19/2014 09:13:11 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: sidebar.exe, Version: 6.1.7601.17514, Zeitstempel: 0x4ce79791
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.18247, Zeitstempel: 0x521ea91c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0003224d
ID des fehlerhaften Prozesses: 0x%9
Startzeit der fehlerhaften Anwendung: 0xsidebar.exe0
Pfad der fehlerhaften Anwendung: sidebar.exe1
Pfad des fehlerhaften Moduls: sidebar.exe2
Berichtskennung: sidebar.exe3
Error: (01/19/2014 03:42:56 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (01/19/2014 00:18:55 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 11.0.9600.16428, Zeitstempel: 0x525b664c
Name des fehlerhaften Moduls: nvwgf2um.dll, Version: 9.18.13.1106, Zeitstempel: 0x50f94515
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001a2519
ID des fehlerhaften Prozesses: 0x16ec
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (01/16/2014 05:26:17 PM) (Source: MsiInstaller) (User: Rudi-PC)
Description: Produkt: Adobe Reader XI - Deutsch - Update "{AC76BA86-7AD7-0000-2550-7A8C40011006}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (01/14/2014 08:05:48 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: iexplore.exe, Version: 11.0.9600.16428, Zeitstempel: 0x525b664c
Name des fehlerhaften Moduls: nvwgf2um.dll, Version: 9.18.13.1106, Zeitstempel: 0x50f94515
Ausnahmecode: 0xc0000005
Fehleroffset: 0x001a2519
ID des fehlerhaften Prozesses: 0x4dc
Startzeit der fehlerhaften Anwendung: 0xiexplore.exe0
Pfad der fehlerhaften Anwendung: iexplore.exe1
Pfad des fehlerhaften Moduls: iexplore.exe2
Berichtskennung: iexplore.exe3
Error: (01/13/2014 05:31:06 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (01/29/2014 09:17:20 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst SMA IGMP Querier Service erreicht.
Error: (01/28/2014 09:05:41 PM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (01/27/2014 09:53:52 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.
Error: (01/27/2014 09:53:52 AM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.
Error: (01/23/2014 08:34:00 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst Wlansvc erreicht.
Error: (01/20/2014 08:27:15 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst SMA IGMP Querier Service erreicht.
Error: (01/18/2014 07:48:21 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst SMA IGMP Querier Service erreicht.
Error: (01/13/2014 04:28:29 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 43. Der interne Fehlerstatus lautet: 252.
Error: (01/13/2014 08:09:44 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst SMA IGMP Querier Service erreicht.
Error: (01/13/2014 08:07:27 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst SMA IGMP Querier Service erreicht.
Microsoft Office Sessions:
=========================
Error: (01/06/2014 03:23:04 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6680.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 8024 seconds with 2460 seconds of active time. This session ended with a crash.
Error: (09/07/2013 06:27:06 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 750 seconds with 180 seconds of active time. This session ended with a crash.
Error: (08/24/2013 06:30:39 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 3054 seconds with 60 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Percentage of memory in use: 37%
Total physical RAM: 3063.11 MB
Available physical RAM: 1910.55 MB
Total Pagefile: 6124.52 MB
Available Pagefile: 4393.68 MB
Total Virtual: 2047.88 MB
Available Virtual: 1918.03 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.41 GB) (Free:850.76 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: BBC53192)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
31.01.2014, 22:07
| #4 |
| /// Malwareteam | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Schritt 1 Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
|
|
01.02.2014, 09:15
| #5 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt @swisstreassure: Danke für Deine weitere Hilfe!! Der Solarlogger ist der Datenlogger unserer PV- Anlage . es sind drei Ergebnisse/ Dateien abgespeichert. das erste: HTML-Code: 08:59:03.0171 2484 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42 08:59:12.0694 2484 Perform update action was selected 08:59:12.0703 4532 Deinitialize success HTML-Code: 08:59:52.0245 3020 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
09:00:12.0009 3020 ============================================================
09:00:12.0009 3020 Current date / time: 2014/02/01 09:00:12.0009
09:00:12.0009 3020 SystemInfo:
09:00:12.0009 3020
09:00:12.0009 3020 OS Version: 6.1.7601 ServicePack: 1.0
09:00:12.0009 3020 Product type: Workstation
09:00:12.0010 3020 ComputerName: RUDI-PC
09:00:12.0010 3020 UserName: Rudi
09:00:12.0010 3020 Windows directory: C:\Windows
09:00:12.0010 3020 System windows directory: C:\Windows
09:00:12.0010 3020 Processor architecture: Intel x86
09:00:12.0010 3020 Number of processors: 4
09:00:12.0010 3020 Page size: 0x1000
09:00:12.0010 3020 Boot type: Normal boot
09:00:12.0010 3020 ============================================================
09:00:15.0953 3020 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:00:16.0008 3020 ============================================================
09:00:16.0008 3020 \Device\Harddisk0\DR0:
09:00:16.0008 3020 MBR partitions:
09:00:16.0008 3020 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:00:16.0008 3020 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
09:00:16.0008 3020 ============================================================
09:00:16.0114 3020 C: <-> \Device\Harddisk0\DR0\Partition2
09:00:16.0115 3020 ============================================================
09:00:16.0115 3020 Initialize success
09:00:16.0115 3020 ============================================================
09:00:22.0534 1680 Deinitialize success HTML-Code: 09:01:41.0774 0x0ed4 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
09:01:50.0623 0x0ed4 ============================================================
09:01:50.0623 0x0ed4 Current date / time: 2014/02/01 09:01:50.0623
09:01:50.0623 0x0ed4 SystemInfo:
09:01:50.0623 0x0ed4
09:01:50.0623 0x0ed4 OS Version: 6.1.7601 ServicePack: 1.0
09:01:50.0623 0x0ed4 Product type: Workstation
09:01:50.0624 0x0ed4 ComputerName: RUDI-PC
09:01:50.0625 0x0ed4 UserName: Rudi
09:01:50.0625 0x0ed4 Windows directory: C:\Windows
09:01:50.0625 0x0ed4 System windows directory: C:\Windows
09:01:50.0625 0x0ed4 Processor architecture: Intel x86
09:01:50.0625 0x0ed4 Number of processors: 4
09:01:50.0625 0x0ed4 Page size: 0x1000
09:01:50.0625 0x0ed4 Boot type: Normal boot
09:01:50.0625 0x0ed4 ============================================================
09:01:54.0854 0x0ed4 KLMD registered as C:\Windows\system32\drivers\79804618.sys
09:01:55.0044 0x0ed4 System UUID: {48C3F0C3-E870-7D32-707D-D2285F4C1F6B}
09:01:55.0732 0x0ed4 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:01:55.0788 0x0ed4 ============================================================
09:01:55.0788 0x0ed4 \Device\Harddisk0\DR0:
09:01:55.0789 0x0ed4 MBR partitions:
09:01:55.0789 0x0ed4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:01:55.0789 0x0ed4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
09:01:55.0789 0x0ed4 ============================================================
09:01:55.0816 0x0ed4 C: <-> \Device\Harddisk0\DR0\Partition2
09:01:55.0816 0x0ed4 ============================================================
09:01:55.0816 0x0ed4 Initialize success
09:01:55.0816 0x0ed4 ============================================================
09:05:43.0223 0x06b4 ============================================================
09:05:43.0223 0x06b4 Scan started
09:05:43.0223 0x06b4 Mode: Manual; SigCheck; TDLFS;
09:05:43.0223 0x06b4 ============================================================
09:05:43.0223 0x06b4 KSN ping started
09:05:45.0647 0x06b4 KSN ping finished: true
09:05:45.0969 0x06b4 ================ Scan system memory ========================
09:05:45.0969 0x06b4 System memory - ok
09:05:45.0970 0x06b4 ================ Scan services =============================
09:05:46.0095 0x06b4 [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
09:05:46.0199 0x06b4 1394ohci - ok
09:05:46.0341 0x06b4 [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI C:\Windows\system32\drivers\ACPI.sys
09:05:46.0394 0x06b4 ACPI - ok
09:05:46.0409 0x06b4 [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
09:05:46.0472 0x06b4 AcpiPmi - ok
09:05:46.0544 0x06b4 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
09:05:46.0560 0x06b4 AdobeARMservice - ok
09:05:46.0632 0x06b4 [ 8D268693A6DCE3D7319DF14834841BAF, 229C95FE2E6A692EBC2842823A1C7D438F8DF18F44691BD7AFE79DB76F092F9D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:05:46.0648 0x06b4 AdobeFlashPlayerUpdateSvc - ok
09:05:46.0692 0x06b4 [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:05:46.0718 0x06b4 adp94xx - ok
09:05:46.0740 0x06b4 [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:05:46.0758 0x06b4 adpahci - ok
09:05:46.0770 0x06b4 [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:05:46.0785 0x06b4 adpu320 - ok
09:05:46.0814 0x06b4 [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:05:46.0866 0x06b4 AeLookupSvc - ok
09:05:46.0908 0x06b4 [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD C:\Windows\system32\drivers\afd.sys
09:05:46.0963 0x06b4 AFD - ok
09:05:46.0985 0x06b4 [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440 C:\Windows\system32\drivers\agp440.sys
09:05:46.0997 0x06b4 agp440 - ok
09:05:47.0012 0x06b4 [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
09:05:47.0026 0x06b4 aic78xx - ok
09:05:47.0050 0x06b4 [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG C:\Windows\System32\alg.exe
09:05:47.0086 0x06b4 ALG - ok
09:05:47.0104 0x06b4 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide C:\Windows\system32\drivers\aliide.sys
09:05:47.0116 0x06b4 aliide - ok
09:05:47.0133 0x06b4 [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
09:05:47.0145 0x06b4 amdagp - ok
09:05:47.0170 0x06b4 [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide C:\Windows\system32\drivers\amdide.sys
09:05:47.0180 0x06b4 amdide - ok
09:05:47.0194 0x06b4 [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:05:47.0219 0x06b4 AmdK8 - ok
09:05:47.0224 0x06b4 [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:05:47.0248 0x06b4 AmdPPM - ok
09:05:47.0268 0x06b4 [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata C:\Windows\system32\drivers\amdsata.sys
09:05:47.0280 0x06b4 amdsata - ok
09:05:47.0286 0x06b4 [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:05:47.0300 0x06b4 amdsbs - ok
09:05:47.0314 0x06b4 [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
09:05:47.0323 0x06b4 amdxata - ok
09:05:47.0372 0x06b4 [ D1AF38FBAC0DC7E6D796B0ED01707EE0, FAFD2C36594A1628293E7623C8CAB2D47EDF8C6C0E18CC2FB37F9A6CA1F0E57C ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
09:05:47.0408 0x06b4 AppHostSvc - ok
09:05:47.0430 0x06b4 [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID C:\Windows\system32\drivers\appid.sys
09:05:47.0504 0x06b4 AppID - ok
09:05:47.0507 0x06b4 [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:05:47.0538 0x06b4 AppIDSvc - ok
09:05:47.0558 0x06b4 [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo C:\Windows\System32\appinfo.dll
09:05:47.0626 0x06b4 Appinfo - ok
09:05:47.0655 0x06b4 [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc C:\Windows\system32\DRIVERS\arc.sys
09:05:47.0669 0x06b4 arc - ok
09:05:47.0690 0x06b4 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:05:47.0704 0x06b4 arcsas - ok
09:05:47.0796 0x06b4 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
09:05:47.0835 0x06b4 aspnet_state - ok
09:05:47.0859 0x06b4 [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:05:47.0971 0x06b4 AsyncMac - ok
09:05:47.0997 0x06b4 [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi C:\Windows\system32\drivers\atapi.sys
09:05:48.0007 0x06b4 atapi - ok
09:05:48.0036 0x06b4 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:05:48.0091 0x06b4 AudioEndpointBuilder - ok
09:05:48.0105 0x06b4 [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv C:\Windows\System32\Audiosrv.dll
09:05:48.0140 0x06b4 Audiosrv - ok
09:05:48.0167 0x06b4 [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:05:48.0225 0x06b4 AxInstSV - ok
09:05:48.0245 0x06b4 [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
09:05:48.0290 0x06b4 b06bdrv - ok
09:05:48.0312 0x06b4 [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
09:05:48.0334 0x06b4 b57nd60x - ok
09:05:48.0349 0x06b4 [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC C:\Windows\System32\bdesvc.dll
09:05:48.0378 0x06b4 BDESVC - ok
09:05:48.0388 0x06b4 [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep C:\Windows\system32\drivers\Beep.sys
09:05:48.0424 0x06b4 Beep - ok
09:05:48.0462 0x06b4 [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE C:\Windows\System32\bfe.dll
09:05:48.0499 0x06b4 BFE - ok
09:05:48.0526 0x06b4 [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS C:\Windows\system32\qmgr.dll
09:05:48.0570 0x06b4 BITS - ok
09:05:48.0587 0x06b4 [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:05:48.0614 0x06b4 blbdrive - ok
09:05:48.0635 0x06b4 [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:05:48.0665 0x06b4 bowser - ok
09:05:48.0680 0x06b4 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:05:48.0748 0x06b4 BrFiltLo - ok
09:05:48.0757 0x06b4 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:05:48.0779 0x06b4 BrFiltUp - ok
09:05:48.0793 0x06b4 [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
09:05:48.0841 0x06b4 BridgeMP - ok
09:05:48.0869 0x06b4 [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser C:\Windows\System32\browser.dll
09:05:48.0897 0x06b4 Browser - ok
09:05:48.0909 0x06b4 [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:05:48.0970 0x06b4 Brserid - ok
09:05:48.0979 0x06b4 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:05:48.0997 0x06b4 BrSerWdm - ok
09:05:49.0001 0x06b4 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:05:49.0014 0x06b4 BrUsbMdm - ok
09:05:49.0025 0x06b4 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:05:49.0045 0x06b4 BrUsbSer - ok
09:05:49.0090 0x06b4 [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
09:05:49.0129 0x06b4 BthEnum - ok
09:05:49.0148 0x06b4 [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:05:49.0177 0x06b4 BTHMODEM - ok
09:05:49.0204 0x06b4 [ AD1872E5829E8A2C3B5B4B641C3EAB0E, 8C2DBCAC08DDB41E2B44E257C55FA2D0272959B308EFF9EAF5FF9AE1E4A0AA39 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
09:05:49.0222 0x06b4 BthPan - ok
09:05:49.0262 0x06b4 [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
09:05:49.0289 0x06b4 BTHPORT - ok
09:05:49.0304 0x06b4 [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv C:\Windows\system32\bthserv.dll
09:05:49.0331 0x06b4 bthserv - ok
09:05:49.0343 0x06b4 [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
09:05:49.0365 0x06b4 BTHUSB - ok
09:05:49.0463 0x06b4 catchme - ok
09:05:49.0472 0x06b4 [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:05:49.0508 0x06b4 cdfs - ok
09:05:49.0550 0x06b4 [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom C:\Windows\system32\drivers\cdrom.sys
09:05:49.0566 0x06b4 cdrom - ok
09:05:49.0589 0x06b4 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc C:\Windows\System32\certprop.dll
09:05:49.0628 0x06b4 CertPropSvc - ok
09:05:49.0644 0x06b4 [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:05:49.0657 0x06b4 circlass - ok
09:05:49.0677 0x06b4 [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS C:\Windows\system32\CLFS.sys
09:05:49.0693 0x06b4 CLFS - ok
09:05:49.0727 0x06b4 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:05:49.0737 0x06b4 clr_optimization_v2.0.50727_32 - ok
09:05:49.0789 0x06b4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:05:49.0854 0x06b4 clr_optimization_v4.0.30319_32 - ok
09:05:49.0858 0x06b4 [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:05:49.0881 0x06b4 CmBatt - ok
09:05:49.0905 0x06b4 [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide C:\Windows\system32\drivers\cmdide.sys
09:05:49.0915 0x06b4 cmdide - ok
09:05:49.0952 0x06b4 [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG C:\Windows\system32\Drivers\cng.sys
09:05:49.0978 0x06b4 CNG - ok
09:05:49.0983 0x06b4 [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:05:49.0994 0x06b4 Compbatt - ok
09:05:50.0010 0x06b4 [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
09:05:50.0040 0x06b4 CompositeBus - ok
09:05:50.0043 0x06b4 COMSysApp - ok
09:05:50.0060 0x06b4 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:05:50.0071 0x06b4 crcdisk - ok
09:05:50.0115 0x06b4 [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:05:50.0163 0x06b4 CryptSvc - ok
09:05:50.0185 0x06b4 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch C:\Windows\system32\rpcss.dll
09:05:50.0227 0x06b4 DcomLaunch - ok
09:05:50.0252 0x06b4 [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc C:\Windows\System32\defragsvc.dll
09:05:50.0283 0x06b4 defragsvc - ok
09:05:50.0310 0x06b4 [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:05:50.0348 0x06b4 DfsC - ok
09:05:50.0367 0x06b4 [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp C:\Windows\system32\dhcpcore.dll
09:05:50.0394 0x06b4 Dhcp - ok
09:05:50.0408 0x06b4 [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache C:\Windows\system32\drivers\discache.sys
09:05:50.0432 0x06b4 discache - ok
09:05:50.0446 0x06b4 [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:05:50.0456 0x06b4 Disk - ok
09:05:50.0475 0x06b4 [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:05:50.0513 0x06b4 Dnscache - ok
09:05:50.0534 0x06b4 [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc C:\Windows\System32\dot3svc.dll
09:05:50.0584 0x06b4 dot3svc - ok
09:05:50.0621 0x06b4 [ B5E479EB83707DD698F66953E922042C, 82891A4699F180A20EB25A0EC49A7E008B007A374BAA3279483AC1C95D125FE8 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
09:05:50.0646 0x06b4 Dot4 - ok
09:05:50.0671 0x06b4 [ CAEFD09B6A6249C53A67D55A9A9FCABF, A76C951EA8A830E5BA22D8D393A946BBAEEDB76478539F647E58199B383F786B ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
09:05:50.0702 0x06b4 Dot4Print - ok
09:05:50.0723 0x06b4 [ CF491FF38D62143203C065260567E2F7, 4315FD8FC88CF627EBE469A2DF0F280B17C95D3004FC7A93D6F8E47F0D91A037 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
09:05:50.0739 0x06b4 dot4usb - ok
09:05:50.0774 0x06b4 [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS C:\Windows\system32\dps.dll
09:05:50.0817 0x06b4 DPS - ok
09:05:50.0855 0x06b4 [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:05:50.0910 0x06b4 drmkaud - ok
09:05:50.0956 0x06b4 [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:05:50.0993 0x06b4 DXGKrnl - ok
09:05:51.0008 0x06b4 [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost C:\Windows\System32\eapsvc.dll
09:05:51.0045 0x06b4 EapHost - ok
09:05:51.0156 0x06b4 [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
09:05:51.0300 0x06b4 ebdrv - ok
09:05:51.0321 0x06b4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS C:\Windows\System32\lsass.exe
09:05:51.0359 0x06b4 EFS - ok
09:05:51.0454 0x06b4 [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:05:51.0512 0x06b4 ehRecvr - ok
09:05:51.0527 0x06b4 [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched C:\Windows\ehome\ehsched.exe
09:05:51.0573 0x06b4 ehSched - ok
09:05:51.0606 0x06b4 [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:05:51.0628 0x06b4 elxstor - ok
09:05:51.0692 0x06b4 [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev C:\Windows\system32\drivers\errdev.sys
09:05:51.0716 0x06b4 ErrDev - ok
09:05:51.0746 0x06b4 [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem C:\Windows\system32\es.dll
09:05:51.0780 0x06b4 EventSystem - ok
09:05:51.0808 0x06b4 [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat C:\Windows\system32\drivers\exfat.sys
09:05:51.0857 0x06b4 exfat - ok
09:05:51.0877 0x06b4 [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:05:51.0906 0x06b4 fastfat - ok
09:05:51.0960 0x06b4 [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax C:\Windows\system32\fxssvc.exe
09:05:52.0025 0x06b4 Fax - ok
09:05:52.0039 0x06b4 [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:05:52.0062 0x06b4 fdc - ok
09:05:52.0077 0x06b4 [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost C:\Windows\system32\fdPHost.dll
09:05:52.0103 0x06b4 fdPHost - ok
09:05:52.0106 0x06b4 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub C:\Windows\system32\fdrespub.dll
09:05:52.0146 0x06b4 FDResPub - ok
09:05:52.0166 0x06b4 [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:05:52.0177 0x06b4 FileInfo - ok
09:05:52.0192 0x06b4 [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:05:52.0216 0x06b4 Filetrace - ok
09:05:52.0224 0x06b4 [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:05:52.0243 0x06b4 flpydisk - ok
09:05:52.0259 0x06b4 [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:05:52.0273 0x06b4 FltMgr - ok
09:05:52.0311 0x06b4 [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache C:\Windows\system32\FntCache.dll
09:05:52.0371 0x06b4 FontCache - ok
09:05:52.0420 0x06b4 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:05:52.0430 0x06b4 FontCache3.0.0.0 - ok
09:05:52.0434 0x06b4 [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:05:52.0446 0x06b4 FsDepends - ok
09:05:52.0475 0x06b4 [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:05:52.0485 0x06b4 Fs_Rec - ok
09:05:52.0512 0x06b4 [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:05:52.0530 0x06b4 fvevol - ok
09:05:52.0549 0x06b4 [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:05:52.0561 0x06b4 gagp30kx - ok
09:05:52.0593 0x06b4 [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc C:\Windows\System32\gpsvc.dll
09:05:52.0643 0x06b4 gpsvc - ok
09:05:52.0687 0x06b4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:05:52.0698 0x06b4 gupdate - ok
09:05:52.0707 0x06b4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:05:52.0716 0x06b4 gupdatem - ok
09:05:52.0725 0x06b4 [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:05:52.0757 0x06b4 hcw85cir - ok
09:05:52.0795 0x06b4 [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:05:52.0836 0x06b4 HdAudAddService - ok
09:05:52.0850 0x06b4 [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
09:05:52.0879 0x06b4 HDAudBus - ok
09:05:52.0911 0x06b4 [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:05:52.0942 0x06b4 HidBatt - ok
09:05:52.0960 0x06b4 [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:05:52.0991 0x06b4 HidBth - ok
09:05:53.0004 0x06b4 [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:05:53.0019 0x06b4 HidIr - ok
09:05:53.0024 0x06b4 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv C:\Windows\System32\hidserv.dll
09:05:53.0058 0x06b4 hidserv - ok
09:05:53.0108 0x06b4 [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
09:05:53.0143 0x06b4 HidUsb - ok
09:05:53.0177 0x06b4 [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc C:\Windows\system32\kmsvc.dll
09:05:53.0216 0x06b4 hkmsvc - ok
09:05:53.0231 0x06b4 [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:05:53.0256 0x06b4 HomeGroupListener - ok
09:05:53.0278 0x06b4 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:05:53.0302 0x06b4 HomeGroupProvider - ok
09:05:53.0385 0x06b4 [ 97AAC45A375168C6A2297BEEB9692E31, 9C7285988D0C5DE8E3608F4E9F50A5C9398FFD0DA0F4C965C953859001FC76C8 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
09:05:53.0404 0x06b4 hpqcxs08 - ok
09:05:53.0422 0x06b4 [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
09:05:53.0434 0x06b4 HpSAMD - ok
09:05:53.0464 0x06b4 [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:05:53.0501 0x06b4 HTTP - ok
09:05:53.0523 0x06b4 [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:05:53.0532 0x06b4 hwpolicy - ok
09:05:53.0549 0x06b4 [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
09:05:53.0577 0x06b4 i8042prt - ok
09:05:53.0610 0x06b4 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
09:05:53.0631 0x06b4 iaStorV - ok
09:05:53.0678 0x06b4 [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:05:53.0720 0x06b4 idsvc - ok
09:05:53.0724 0x06b4 IEEtwCollectorService - ok
09:05:53.0743 0x06b4 [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:05:53.0754 0x06b4 iirsp - ok
09:05:53.0779 0x06b4 [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT C:\Windows\System32\ikeext.dll
09:05:53.0825 0x06b4 IKEEXT - ok
09:05:53.0924 0x06b4 [ 82EE5914B6AB27BFD23ECA29AEB34DA4, 4EEB9AA8D278C24C87F18AC803B0DEB27339CAEC40433C179A14459A19AD3244 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
09:05:53.0995 0x06b4 IntcAzAudAddService - ok
09:05:54.0020 0x06b4 [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide C:\Windows\system32\drivers\intelide.sys
09:05:54.0030 0x06b4 intelide - ok
09:05:54.0041 0x06b4 [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:05:54.0053 0x06b4 intelppm - ok
09:05:54.0076 0x06b4 [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:05:54.0117 0x06b4 IPBusEnum - ok
09:05:54.0138 0x06b4 [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:05:54.0165 0x06b4 IpFilterDriver - ok
09:05:54.0193 0x06b4 [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:05:54.0239 0x06b4 iphlpsvc - ok
09:05:54.0262 0x06b4 [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
09:05:54.0287 0x06b4 IPMIDRV - ok
09:05:54.0303 0x06b4 [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:05:54.0340 0x06b4 IPNAT - ok
09:05:54.0357 0x06b4 [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:05:54.0689 0x06b4 IRENUM - ok
09:05:54.0703 0x06b4 [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp C:\Windows\system32\drivers\isapnp.sys
09:05:54.0717 0x06b4 isapnp - ok
09:05:54.0765 0x06b4 [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
09:05:54.0797 0x06b4 iScsiPrt - ok
09:05:54.0820 0x06b4 [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
09:05:54.0831 0x06b4 kbdclass - ok
09:05:54.0853 0x06b4 [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
09:05:54.0878 0x06b4 kbdhid - ok
09:05:54.0899 0x06b4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso C:\Windows\system32\lsass.exe
09:05:54.0913 0x06b4 KeyIso - ok
09:05:54.0936 0x06b4 [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:05:54.0947 0x06b4 KSecDD - ok
09:05:54.0966 0x06b4 [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:05:54.0979 0x06b4 KSecPkg - ok
09:05:55.0017 0x06b4 [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm C:\Windows\system32\msdtckrm.dll
09:05:55.0059 0x06b4 KtmRm - ok
09:05:55.0096 0x06b4 [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer C:\Windows\System32\srvsvc.dll
09:05:55.0137 0x06b4 LanmanServer - ok
09:05:55.0148 0x06b4 [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:05:55.0191 0x06b4 LanmanWorkstation - ok
09:05:55.0221 0x06b4 [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:05:55.0246 0x06b4 lltdio - ok
09:05:55.0313 0x06b4 [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:05:55.0344 0x06b4 lltdsvc - ok
09:05:55.0358 0x06b4 [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:05:55.0395 0x06b4 lmhosts - ok
09:05:55.0415 0x06b4 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:05:55.0427 0x06b4 LSI_FC - ok
09:05:55.0440 0x06b4 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:05:55.0452 0x06b4 LSI_SAS - ok
09:05:55.0456 0x06b4 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:05:55.0467 0x06b4 LSI_SAS2 - ok
09:05:55.0483 0x06b4 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:05:55.0495 0x06b4 LSI_SCSI - ok
09:05:55.0505 0x06b4 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
09:05:55.0532 0x06b4 luafv - ok
09:05:55.0570 0x06b4 [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
09:05:55.0580 0x06b4 MBAMProtector - ok
09:05:55.0624 0x06b4 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
09:05:55.0643 0x06b4 MBAMScheduler - ok
09:05:55.0677 0x06b4 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
09:05:55.0704 0x06b4 MBAMService - ok
09:05:55.0720 0x06b4 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:05:55.0734 0x06b4 Mcx2Svc - ok
09:05:55.0751 0x06b4 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:05:55.0761 0x06b4 megasas - ok
09:05:55.0776 0x06b4 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:05:55.0791 0x06b4 MegaSR - ok
09:05:55.0846 0x06b4 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:05:55.0855 0x06b4 Microsoft Office Groove Audit Service - ok
09:05:55.0865 0x06b4 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
09:05:55.0905 0x06b4 MMCSS - ok
09:05:55.0910 0x06b4 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
09:05:55.0944 0x06b4 Modem - ok
09:05:55.0960 0x06b4 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:05:55.0980 0x06b4 monitor - ok
09:05:55.0992 0x06b4 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:05:56.0002 0x06b4 mouclass - ok
09:05:56.0020 0x06b4 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:05:56.0031 0x06b4 mouhid - ok
09:05:56.0055 0x06b4 [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:05:56.0066 0x06b4 mountmgr - ok
09:05:56.0102 0x06b4 [ 3B9398E0146855B1DC0E3D9769C80F01, DF69DB5CA30A5577648635C27DD468AF98515D07DF379B3FFDCC6B40744EDE66 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:05:56.0114 0x06b4 MozillaMaintenance - ok
09:05:56.0159 0x06b4 [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
09:05:56.0177 0x06b4 MpFilter - ok
09:05:56.0191 0x06b4 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
09:05:56.0204 0x06b4 mpio - ok
09:05:56.0229 0x06b4 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:05:56.0264 0x06b4 mpsdrv - ok
09:05:56.0290 0x06b4 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
09:05:56.0333 0x06b4 MpsSvc - ok
09:05:56.0351 0x06b4 [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:05:56.0406 0x06b4 MRxDAV - ok
09:05:56.0433 0x06b4 [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:05:56.0458 0x06b4 mrxsmb - ok
09:05:56.0472 0x06b4 [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:05:56.0507 0x06b4 mrxsmb10 - ok
09:05:56.0527 0x06b4 [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:05:56.0543 0x06b4 mrxsmb20 - ok
09:05:56.0568 0x06b4 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
09:05:56.0578 0x06b4 msahci - ok
09:05:56.0612 0x06b4 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
09:05:56.0626 0x06b4 msdsm - ok
09:05:56.0645 0x06b4 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
09:05:56.0681 0x06b4 MSDTC - ok
09:05:56.0701 0x06b4 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:05:56.0726 0x06b4 Msfs - ok
09:05:56.0740 0x06b4 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:05:56.0765 0x06b4 mshidkmdf - ok
09:05:56.0795 0x06b4 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
09:05:56.0805 0x06b4 msisadrv - ok
09:05:56.0825 0x06b4 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:05:56.0853 0x06b4 MSiSCSI - ok
09:05:56.0856 0x06b4 msiserver - ok
09:05:56.0867 0x06b4 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:05:56.0891 0x06b4 MSKSSRV - ok
09:05:56.0925 0x06b4 [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:05:56.0948 0x06b4 MsMpSvc - ok
09:05:56.0959 0x06b4 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:05:56.0994 0x06b4 MSPCLOCK - ok
09:05:57.0009 0x06b4 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:05:57.0033 0x06b4 MSPQM - ok
09:05:57.0050 0x06b4 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:05:57.0063 0x06b4 MsRPC - ok
09:05:57.0071 0x06b4 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
09:05:57.0081 0x06b4 mssmbios - ok
09:05:57.0085 0x06b4 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:05:57.0109 0x06b4 MSTEE - ok
09:05:57.0126 0x06b4 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:05:57.0137 0x06b4 MTConfig - ok
09:05:57.0153 0x06b4 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
09:05:57.0169 0x06b4 Mup - ok
09:05:57.0183 0x06b4 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
09:05:57.0217 0x06b4 napagent - ok
09:05:57.0242 0x06b4 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:05:57.0264 0x06b4 NativeWifiP - ok
09:05:57.0308 0x06b4 [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS C:\Windows\system32\drivers\ndis.sys
09:05:57.0335 0x06b4 NDIS - ok
09:05:57.0348 0x06b4 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:05:57.0387 0x06b4 NdisCap - ok
09:05:57.0410 0x06b4 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:05:57.0449 0x06b4 NdisTapi - ok
09:05:57.0497 0x06b4 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:05:57.0526 0x06b4 Ndisuio - ok
09:05:57.0549 0x06b4 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:05:57.0577 0x06b4 NdisWan - ok
09:05:57.0602 0x06b4 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:05:57.0627 0x06b4 NDProxy - ok
09:05:57.0673 0x06b4 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
09:05:57.0691 0x06b4 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
09:06:07.0759 0x06b4 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:06:11.0134 0x06b4 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:06:11.0167 0x06b4 NetBIOS - ok
09:06:11.0186 0x06b4 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:06:11.0234 0x06b4 NetBT - ok
09:06:11.0254 0x06b4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon C:\Windows\system32\lsass.exe
09:06:11.0266 0x06b4 Netlogon - ok
09:06:11.0297 0x06b4 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
09:06:11.0350 0x06b4 Netman - ok
09:06:11.0380 0x06b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:06:11.0412 0x06b4 NetMsmqActivator - ok
09:06:11.0418 0x06b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:06:11.0432 0x06b4 NetPipeActivator - ok
09:06:11.0451 0x06b4 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
09:06:11.0486 0x06b4 netprofm - ok
09:06:11.0502 0x06b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:06:11.0515 0x06b4 NetTcpActivator - ok
09:06:11.0520 0x06b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:06:11.0534 0x06b4 NetTcpPortSharing - ok
09:06:11.0539 0x06b4 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:06:11.0549 0x06b4 nfrd960 - ok
09:06:11.0593 0x06b4 [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:06:11.0623 0x06b4 NisDrv - ok
09:06:11.0707 0x06b4 [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
09:06:11.0726 0x06b4 NisSrv - ok
09:06:11.0812 0x06b4 [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc C:\Windows\System32\nlasvc.dll
09:06:11.0857 0x06b4 NlaSvc - ok
09:06:11.0875 0x06b4 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:06:11.0907 0x06b4 Npfs - ok
09:06:11.0918 0x06b4 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
09:06:11.0943 0x06b4 nsi - ok
09:06:11.0950 0x06b4 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:06:11.0976 0x06b4 nsiproxy - ok
09:06:12.0022 0x06b4 [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:06:12.0083 0x06b4 Ntfs - ok
09:06:12.0097 0x06b4 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
09:06:12.0120 0x06b4 Null - ok
09:06:12.0403 0x06b4 [ B69E6F70CE1151C8D62ABC9DEF64DFBE, B7BD731D1CCF4E71EF1CF4AFA9189C1831306483B4BF57B12B89113A5230871B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:06:12.0614 0x06b4 nvlddmkm - ok
09:06:12.0641 0x06b4 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
09:06:12.0654 0x06b4 nvraid - ok
09:06:12.0670 0x06b4 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
09:06:12.0685 0x06b4 nvstor - ok
09:06:12.0719 0x06b4 [ E4284FCF99FEA13A7E1836F87AE356F6, 541C40DD3483810632320E8F23427BB52593D156E876C6023BE7F7A8589383E8 ] nvsvc C:\Windows\system32\nvvsvc.exe
09:06:12.0746 0x06b4 nvsvc - ok
09:06:12.0797 0x06b4 [ 03E60E0BFA53ED15DC984FA34B44BB0F, 50ABF2E303B9A2B6DDD0DB411C24C3CD6CC30AFA664B5682CF9189F96548CC10 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
09:06:12.0856 0x06b4 nvUpdatusService - ok
09:06:12.0884 0x06b4 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
09:06:12.0896 0x06b4 nv_agp - ok
09:06:12.0954 0x06b4 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:06:12.0975 0x06b4 odserv - ok
09:06:13.0004 0x06b4 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
09:06:13.0019 0x06b4 ohci1394 - ok
09:06:13.0065 0x06b4 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:06:13.0079 0x06b4 ose - ok
09:06:13.0096 0x06b4 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:06:13.0149 0x06b4 p2pimsvc - ok
09:06:13.0166 0x06b4 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
09:06:13.0193 0x06b4 p2psvc - ok
09:06:13.0211 0x06b4 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:06:13.0225 0x06b4 Parport - ok
09:06:13.0241 0x06b4 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:06:13.0253 0x06b4 partmgr - ok
09:06:13.0263 0x06b4 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
09:06:13.0282 0x06b4 Parvdm - ok
09:06:13.0302 0x06b4 [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc C:\Windows\System32\pcasvc.dll
09:06:13.0323 0x06b4 PcaSvc - ok
09:06:13.0335 0x06b4 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
09:06:13.0348 0x06b4 pci - ok
09:06:13.0370 0x06b4 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
09:06:13.0380 0x06b4 pciide - ok
09:06:13.0410 0x06b4 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:06:13.0424 0x06b4 pcmcia - ok
09:06:13.0435 0x06b4 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
09:06:13.0445 0x06b4 pcw - ok
09:06:13.0466 0x06b4 [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:06:13.0516 0x06b4 PEAUTH - ok
09:06:13.0577 0x06b4 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
09:06:13.0668 0x06b4 pla - ok
09:06:13.0710 0x06b4 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:06:13.0734 0x06b4 PlugPlay - ok
09:06:13.0776 0x06b4 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
09:06:13.0795 0x06b4 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
09:06:16.0255 0x06b4 Detect skipped due to KSN trusted
09:06:16.0255 0x06b4 Pml Driver HPZ12 - ok
09:06:16.0264 0x06b4 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:06:16.0278 0x06b4 PNRPAutoReg - ok
09:06:16.0287 0x06b4 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:06:16.0308 0x06b4 PNRPsvc - ok
09:06:16.0340 0x06b4 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:06:16.0384 0x06b4 PolicyAgent - ok
09:06:16.0413 0x06b4 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
09:06:16.0440 0x06b4 Power - ok
09:06:16.0460 0x06b4 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:06:16.0494 0x06b4 PptpMiniport - ok
09:06:16.0516 0x06b4 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:06:16.0540 0x06b4 Processor - ok
09:06:16.0570 0x06b4 [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc C:\Windows\system32\profsvc.dll
09:06:16.0606 0x06b4 ProfSvc - ok
09:06:16.0622 0x06b4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:06:16.0632 0x06b4 ProtectedStorage - ok
09:06:16.0650 0x06b4 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:06:16.0678 0x06b4 Psched - ok
09:06:16.0735 0x06b4 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:06:16.0797 0x06b4 ql2300 - ok
09:06:16.0810 0x06b4 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:06:16.0822 0x06b4 ql40xx - ok
09:06:16.0844 0x06b4 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
09:06:16.0864 0x06b4 QWAVE - ok
09:06:16.0876 0x06b4 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:06:16.0890 0x06b4 QWAVEdrv - ok
09:06:16.0907 0x06b4 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:06:16.0943 0x06b4 RasAcd - ok
09:06:16.0959 0x06b4 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:06:16.0982 0x06b4 RasAgileVpn - ok
09:06:16.0991 0x06b4 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
09:06:17.0018 0x06b4 RasAuto - ok
09:06:17.0030 0x06b4 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:06:17.0057 0x06b4 Rasl2tp - ok
09:06:17.0073 0x06b4 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
09:06:17.0122 0x06b4 RasMan - ok
09:06:17.0143 0x06b4 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:06:17.0168 0x06b4 RasPppoe - ok
09:06:17.0183 0x06b4 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:06:17.0222 0x06b4 RasSstp - ok
09:06:17.0241 0x06b4 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:06:17.0279 0x06b4 rdbss - ok
09:06:17.0284 0x06b4 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:06:17.0296 0x06b4 rdpbus - ok
09:06:17.0314 0x06b4 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:06:17.0336 0x06b4 RDPCDD - ok
09:06:17.0358 0x06b4 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:06:17.0389 0x06b4 RDPENCDD - ok
09:06:17.0403 0x06b4 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:06:17.0426 0x06b4 RDPREFMP - ok
09:06:17.0475 0x06b4 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:06:17.0508 0x06b4 RdpVideoMiniport - ok
09:06:17.0538 0x06b4 [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:06:17.0584 0x06b4 RDPWD - ok
09:06:17.0612 0x06b4 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:06:17.0630 0x06b4 rdyboost - ok
09:06:17.0660 0x06b4 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:06:17.0698 0x06b4 RemoteAccess - ok
09:06:17.0713 0x06b4 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:06:17.0742 0x06b4 RemoteRegistry - ok
09:06:17.0778 0x06b4 [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
09:06:17.0794 0x06b4 RFCOMM - ok
09:06:17.0807 0x06b4 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:06:17.0847 0x06b4 RpcEptMapper - ok
09:06:17.0864 0x06b4 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
09:06:17.0882 0x06b4 RpcLocator - ok
09:06:17.0907 0x06b4 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
09:06:17.0940 0x06b4 RpcSs - ok
09:06:17.0958 0x06b4 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:06:17.0984 0x06b4 rspndr - ok
09:06:18.0028 0x06b4 [ 5283B9A27FF230F2FF70D92451FF409A, B8BAC70E1DE4485C79CA7B47D4DCFE0223CECEA8ED75CE4F128D47051F95FE5D ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
09:06:18.0045 0x06b4 RTL8167 - ok
09:06:18.0094 0x06b4 [ 9CE8DEFFAFFCCBF473015D76AE8EE514, D2EC909865653C4CF56C379D60E10A607E28D69B00BF0EFE6181580C00EF5124 ] RTL8192su C:\Windows\system32\DRIVERS\RTL8192su.sys
09:06:18.0121 0x06b4 RTL8192su - ok
09:06:18.0133 0x06b4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs C:\Windows\system32\lsass.exe
09:06:18.0144 0x06b4 SamSs - ok
09:06:18.0182 0x06b4 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
09:06:18.0195 0x06b4 sbp2port - ok
09:06:18.0216 0x06b4 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:06:18.0246 0x06b4 SCardSvr - ok
09:06:18.0270 0x06b4 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:06:18.0307 0x06b4 scfilter - ok
09:06:18.0374 0x06b4 [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule C:\Windows\system32\schedsvc.dll
09:06:18.0437 0x06b4 Schedule - ok
09:06:18.0457 0x06b4 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
09:06:18.0481 0x06b4 SCPolicySvc - ok
09:06:18.0507 0x06b4 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:06:18.0542 0x06b4 SDRSVC - ok
09:06:18.0553 0x06b4 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:06:18.0593 0x06b4 secdrv - ok
09:06:18.0611 0x06b4 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
09:06:18.0644 0x06b4 seclogon - ok
09:06:18.0648 0x06b4 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\system32\sens.dll
09:06:18.0682 0x06b4 SENS - ok
09:06:18.0692 0x06b4 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:06:18.0721 0x06b4 SensrSvc - ok
09:06:18.0729 0x06b4 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:06:18.0740 0x06b4 Serenum - ok
09:06:18.0771 0x06b4 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:06:18.0785 0x06b4 Serial - ok
09:06:18.0797 0x06b4 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:06:18.0808 0x06b4 sermouse - ok
09:06:18.0835 0x06b4 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
09:06:18.0862 0x06b4 SessionEnv - ok
09:06:18.0872 0x06b4 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
09:06:18.0904 0x06b4 sffdisk - ok
09:06:18.0920 0x06b4 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
09:06:18.0945 0x06b4 sffp_mmc - ok
09:06:18.0963 0x06b4 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
09:06:18.0976 0x06b4 sffp_sd - ok
09:06:18.0987 0x06b4 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:06:19.0010 0x06b4 sfloppy - ok
09:06:19.0039 0x06b4 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:06:19.0072 0x06b4 SharedAccess - ok
09:06:19.0088 0x06b4 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:06:19.0122 0x06b4 ShellHWDetection - ok
09:06:19.0138 0x06b4 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
09:06:19.0149 0x06b4 sisagp - ok
09:06:19.0156 0x06b4 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:06:19.0166 0x06b4 SiSRaid2 - ok
09:06:19.0180 0x06b4 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:06:19.0192 0x06b4 SiSRaid4 - ok
09:06:19.0218 0x06b4 [ 9CD1BB2DB803B6AC642BD643DDB773BC, E03EC2FFBE9720E291D13ABF35E027DFA1324CE0934403D1BF4A8E1B86623053 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
09:06:19.0229 0x06b4 SkypeUpdate - ok
09:06:19.0264 0x06b4 [ 3AD04764BAC8FFFBA5E02E2899D2140E, 5FC36F884191355CC33369EAECA539F05D311C362E77C7BBC603BC9BD93482EB ] SMA.Multicasting.IGMP.QuerierService.exe C:\Program Files\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe
09:06:19.0272 0x06b4 SMA.Multicasting.IGMP.QuerierService.exe - ok
09:06:19.0297 0x06b4 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:06:19.0323 0x06b4 Smb - ok
09:06:19.0339 0x06b4 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:06:19.0352 0x06b4 SNMPTRAP - ok
09:06:19.0419 0x06b4 [ BA3A11AEBCBE272B9F618D8902A92FAC, FAA6CD41D17F9ADFBCDD52C744531A3BA08F13F85B902D5109E4098F868C97A0 ] Solarlogger C:\SolarView\Datenlogger.exe
09:06:19.0439 0x06b4 Solarlogger - detected UnsignedFile.Multi.Generic ( 1 )
09:06:21.0898 0x06b4 Solarlogger ( UnsignedFile.Multi.Generic ) - warning
09:06:21.0898 0x06b4 Force sending object to P2P due to detect: C:\SolarView\Datenlogger.exe
09:06:26.0540 0x06b4 Object send P2P result: true
09:06:28.0954 0x06b4 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
09:06:28.0969 0x06b4 spldr - ok
09:06:29.0003 0x06b4 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
09:06:29.0038 0x06b4 Spooler - ok
09:06:29.0155 0x06b4 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
09:06:29.0315 0x06b4 sppsvc - ok
09:06:29.0347 0x06b4 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:06:29.0371 0x06b4 sppuinotify - ok
09:06:29.0393 0x06b4 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
09:06:29.0436 0x06b4 srv - ok
09:06:29.0471 0x06b4 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:06:29.0500 0x06b4 srv2 - ok
09:06:29.0515 0x06b4 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:06:29.0542 0x06b4 srvnet - ok
09:06:29.0583 0x06b4 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:06:29.0625 0x06b4 SSDPSRV - ok
09:06:29.0659 0x06b4 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:06:29.0688 0x06b4 SstpSvc - ok
09:06:29.0729 0x06b4 [ 5A19667A580B1CE886EAF968B9743F45, 0A9EBE4057A0A6EF4732623794C2416A6BD8B87356DA46652BD92762505F57C7 ] Stereo Service C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
09:06:29.0750 0x06b4 Stereo Service - ok
09:06:29.0762 0x06b4 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:06:29.0772 0x06b4 stexstor - ok
09:06:29.0811 0x06b4 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
09:06:29.0850 0x06b4 StiSvc - ok
09:06:29.0885 0x06b4 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
09:06:29.0894 0x06b4 swenum - ok
09:06:29.0911 0x06b4 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
09:06:29.0970 0x06b4 swprv - ok
09:06:30.0054 0x06b4 [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain C:\Windows\system32\sysmain.dll
09:06:30.0122 0x06b4 SysMain - ok
09:06:30.0141 0x06b4 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
09:06:30.0158 0x06b4 TabletInputService - ok
09:06:30.0180 0x06b4 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
09:06:30.0212 0x06b4 TapiSrv - ok
09:06:30.0223 0x06b4 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
09:06:30.0260 0x06b4 TBS - ok
09:06:30.0334 0x06b4 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:06:30.0390 0x06b4 Tcpip - ok
09:06:30.0437 0x06b4 [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:06:30.0475 0x06b4 TCPIP6 - ok
09:06:30.0497 0x06b4 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:06:30.0526 0x06b4 tcpipreg - ok
09:06:30.0552 0x06b4 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:06:30.0585 0x06b4 TDPIPE - ok
09:06:30.0596 0x06b4 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:06:30.0608 0x06b4 TDTCP - ok
09:06:30.0626 0x06b4 [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:06:30.0652 0x06b4 tdx - ok
09:06:30.0787 0x06b4 [ 3C82DB17EA317B20B1D2BF1872B9DD87, FC39C09005C6D05B4272A22B22F00485BC5A6D6393802698A4A85FCE15864EE8 ] TeamViewer6 C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
09:06:30.0850 0x06b4 TeamViewer6 - ok
09:06:30.0869 0x06b4 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
09:06:30.0879 0x06b4 TermDD - ok
09:06:30.0915 0x06b4 [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService C:\Windows\System32\termsrv.dll
09:06:30.0955 0x06b4 TermService - ok
09:06:30.0967 0x06b4 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
09:06:30.0994 0x06b4 Themes - ok
09:06:30.0998 0x06b4 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
09:06:31.0023 0x06b4 THREADORDER - ok
09:06:31.0036 0x06b4 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
09:06:31.0071 0x06b4 TrkWks - ok
09:06:31.0120 0x06b4 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:06:31.0169 0x06b4 TrustedInstaller - ok
09:06:31.0193 0x06b4 [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:06:31.0215 0x06b4 tssecsrv - ok
09:06:31.0254 0x06b4 [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
09:06:31.0286 0x06b4 TsUsbFlt - ok
09:06:31.0317 0x06b4 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:06:31.0353 0x06b4 tunnel - ok
09:06:31.0376 0x06b4 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:06:31.0387 0x06b4 uagp35 - ok
09:06:31.0403 0x06b4 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:06:31.0446 0x06b4 udfs - ok
09:06:31.0453 0x06b4 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:06:31.0477 0x06b4 UI0Detect - ok
09:06:31.0509 0x06b4 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
09:06:31.0520 0x06b4 uliagpkx - ok
09:06:31.0539 0x06b4 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
09:06:31.0552 0x06b4 umbus - ok
09:06:31.0569 0x06b4 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:06:31.0580 0x06b4 UmPass - ok
09:06:31.0655 0x06b4 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
09:06:31.0691 0x06b4 upnphost - ok
09:06:31.0714 0x06b4 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:06:31.0741 0x06b4 usbccgp - ok
09:06:31.0765 0x06b4 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
09:06:31.0786 0x06b4 usbcir - ok
09:06:31.0794 0x06b4 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:06:31.0819 0x06b4 usbehci - ok
09:06:31.0848 0x06b4 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:06:31.0868 0x06b4 usbhub - ok
09:06:31.0891 0x06b4 [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\Windows\system32\drivers\usbohci.sys
09:06:31.0917 0x06b4 usbohci - ok
09:06:31.0936 0x06b4 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:06:31.0952 0x06b4 usbprint - ok
09:06:31.0973 0x06b4 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
09:06:31.0996 0x06b4 usbscan - ok
09:06:32.0025 0x06b4 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:06:32.0068 0x06b4 USBSTOR - ok
09:06:32.0085 0x06b4 [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
09:06:32.0109 0x06b4 usbuhci - ok
09:06:32.0126 0x06b4 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
09:06:32.0152 0x06b4 UxSms - ok
09:06:32.0177 0x06b4 [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc C:\Windows\system32\lsass.exe
09:06:32.0189 0x06b4 VaultSvc - ok
09:06:32.0203 0x06b4 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
09:06:32.0214 0x06b4 vdrvroot - ok
09:06:32.0242 0x06b4 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
09:06:32.0280 0x06b4 vds - ok
09:06:32.0311 0x06b4 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:06:32.0323 0x06b4 vga - ok
09:06:32.0340 0x06b4 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
09:06:32.0364 0x06b4 VgaSave - ok
09:06:32.0424 0x06b4 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
09:06:32.0450 0x06b4 vhdmp - ok
09:06:32.0487 0x06b4 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
09:06:32.0499 0x06b4 viaagp - ok
09:06:32.0511 0x06b4 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
09:06:32.0542 0x06b4 ViaC7 - ok
09:06:32.0602 0x06b4 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
09:06:32.0614 0x06b4 viaide - ok
09:06:32.0624 0x06b4 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
09:06:32.0637 0x06b4 volmgr - ok
09:06:32.0679 0x06b4 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:06:32.0697 0x06b4 volmgrx - ok
09:06:32.0751 0x06b4 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
09:06:32.0767 0x06b4 volsnap - ok
09:06:32.0796 0x06b4 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:06:32.0810 0x06b4 vsmraid - ok
09:06:32.0867 0x06b4 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
09:06:32.0939 0x06b4 VSS - ok
09:06:32.0959 0x06b4 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
09:06:32.0985 0x06b4 vwifibus - ok
09:06:33.0001 0x06b4 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
09:06:33.0017 0x06b4 vwififlt - ok
09:06:33.0034 0x06b4 [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
09:06:33.0059 0x06b4 vwifimp - ok
09:06:33.0081 0x06b4 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
09:06:33.0120 0x06b4 W32Time - ok
09:06:33.0211 0x06b4 [ 57C8C20BFA5BEF6BD851EBAC67A8CED0, D5968069D934400A46B9FF92ECA9D7660BDC30C6909BA588AD49F7656246EE98 ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
09:06:33.0239 0x06b4 W3SVC - ok
09:06:33.0253 0x06b4 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:06:33.0275 0x06b4 WacomPen - ok
09:06:33.0306 0x06b4 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:06:33.0346 0x06b4 WANARP - ok
09:06:33.0351 0x06b4 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:06:33.0378 0x06b4 Wanarpv6 - ok
09:06:33.0404 0x06b4 [ 57C8C20BFA5BEF6BD851EBAC67A8CED0, D5968069D934400A46B9FF92ECA9D7660BDC30C6909BA588AD49F7656246EE98 ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
09:06:33.0425 0x06b4 WAS - ok
09:06:33.0467 0x06b4 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
09:06:33.0541 0x06b4 wbengine - ok
09:06:33.0562 0x06b4 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:06:33.0581 0x06b4 WbioSrvc - ok
09:06:33.0607 0x06b4 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:06:33.0630 0x06b4 wcncsvc - ok
09:06:33.0643 0x06b4 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:06:33.0680 0x06b4 WcsPlugInService - ok
09:06:33.0694 0x06b4 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:06:33.0704 0x06b4 Wd - ok
09:06:33.0737 0x06b4 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:06:33.0763 0x06b4 Wdf01000 - ok
09:06:33.0780 0x06b4 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:06:33.0854 0x06b4 WdiServiceHost - ok
09:06:33.0859 0x06b4 [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:06:33.0883 0x06b4 WdiSystemHost - ok
09:06:33.0916 0x06b4 [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient C:\Windows\System32\webclnt.dll
09:06:33.0952 0x06b4 WebClient - ok
09:06:33.0967 0x06b4 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:06:33.0996 0x06b4 Wecsvc - ok
09:06:34.0009 0x06b4 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:06:34.0036 0x06b4 wercplsupport - ok
09:06:34.0056 0x06b4 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
09:06:34.0094 0x06b4 WerSvc - ok
09:06:34.0127 0x06b4 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:06:34.0153 0x06b4 WfpLwf - ok
09:06:34.0169 0x06b4 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:06:34.0178 0x06b4 WIMMount - ok
09:06:34.0261 0x06b4 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
09:06:34.0345 0x06b4 WinDefend - ok
09:06:34.0351 0x06b4 WinHttpAutoProxySvc - ok
09:06:34.0392 0x06b4 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:06:34.0424 0x06b4 Winmgmt - ok
09:06:34.0480 0x06b4 [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM C:\Windows\system32\WsmSvc.dll
09:06:34.0575 0x06b4 WinRM - ok
09:06:34.0621 0x06b4 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:06:34.0688 0x06b4 Wlansvc - ok
09:06:34.0781 0x06b4 [ 5144AE67D60EC653F97DDF3FEED29E77, F6238767284B2356A9F502E2ACCFAAC283FA13CBF238E98B5115A55179526B10 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:06:34.0845 0x06b4 wlidsvc - ok
09:06:34.0869 0x06b4 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
09:06:34.0892 0x06b4 WmiAcpi - ok
09:06:34.0899 0x06b4 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:06:34.0922 0x06b4 wmiApSrv - ok
09:06:34.0976 0x06b4 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
09:06:35.0046 0x06b4 WMPNetworkSvc - ok
09:06:35.0051 0x06b4 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:06:35.0082 0x06b4 WPCSvc - ok
09:06:35.0112 0x06b4 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:06:35.0146 0x06b4 WPDBusEnum - ok
09:06:35.0155 0x06b4 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:06:35.0199 0x06b4 ws2ifsl - ok
09:06:35.0213 0x06b4 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\system32\wscsvc.dll
09:06:35.0245 0x06b4 wscsvc - ok
09:06:35.0249 0x06b4 WSearch - ok
09:06:35.0333 0x06b4 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
09:06:35.0406 0x06b4 wuauserv - ok
09:06:35.0435 0x06b4 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:06:35.0452 0x06b4 WudfPf - ok
09:06:35.0506 0x06b4 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
09:06:35.0610 0x06b4 WUDFRd - ok
09:06:35.0708 0x06b4 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:06:35.0746 0x06b4 wudfsvc - ok
09:06:35.0776 0x06b4 [ 3C5E51C05BE9B56EAFF4E388C3AB25E4, 10D9FDEDAB1FB2E76D54661AFA5C1A6B1B0980525F38F5D061537077841C6AEE ] WwanSvc C:\Windows\System32\wwansvc.dll
09:06:35.0823 0x06b4 WwanSvc - ok
09:06:35.0850 0x06b4 ================ Scan global ===============================
09:06:35.0857 0x06b4 [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
09:06:35.0888 0x06b4 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
09:06:35.0901 0x06b4 [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
09:06:35.0922 0x06b4 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
09:06:35.0938 0x06b4 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
09:06:35.0944 0x06b4 [ Global ] - ok
09:06:35.0944 0x06b4 ================ Scan MBR ==================================
09:06:35.0958 0x06b4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:06:36.0256 0x06b4 \Device\Harddisk0\DR0 - ok
09:06:36.0260 0x06b4 ================ Scan VBR ==================================
09:06:36.0261 0x06b4 [ 95D2E873F55D03AA41220A9385130C0F ] \Device\Harddisk0\DR0\Partition1
09:06:36.0265 0x06b4 \Device\Harddisk0\DR0\Partition1 - ok
09:06:36.0301 0x06b4 [ B3424A7C068F8B8F1201DB7037690871 ] \Device\Harddisk0\DR0\Partition2
09:06:36.0302 0x06b4 \Device\Harddisk0\DR0\Partition2 - ok
09:06:36.0303 0x06b4 Waiting for KSN requests completion. In queue: 103
09:06:37.0303 0x06b4 Waiting for KSN requests completion. In queue: 103
09:06:38.0303 0x06b4 Waiting for KSN requests completion. In queue: 103
09:06:39.0316 0x06b4 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
09:06:39.0319 0x06b4 Win FW state via NFP2: enabled
09:06:41.0690 0x06b4 ============================================================
09:06:41.0690 0x06b4 Scan finished
09:06:41.0690 0x06b4 ============================================================
09:06:41.0704 0x14e0 Detected object count: 2
09:06:41.0704 0x14e0 Actual detected object count: 2
09:07:41.0982 0x14e0 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
09:07:41.0982 0x14e0 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:07:41.0982 0x14e0 Solarlogger ( UnsignedFile.Multi.Generic ) - skipped by user
09:07:41.0983 0x14e0 Solarlogger ( UnsignedFile.Multi.Generic ) - User select action: Skip |
|
02.02.2014, 15:59
| #6 |
| /// Malwareteam | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Schritt 1 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
|
|
02.02.2014, 17:17
| #7 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Hallo, vielen Dank für den weitern Schritt! hier das Ergebnis: Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 02/02/2014 um 17:10:27
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Benutzername : Rudi - RUDI-PC
# Gestartet von : C:\Users\Rudi\Documents\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Program Files\utilitychest_49
Ordner Gelöscht : C:\Users\Rudi\AppData\Local\utilitychest_49
Ordner Gelöscht : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\dmjecpdx.default\utilitychest_49
Datei Gelöscht : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\dmjecpdx.default\searchplugins\ask-web-search.xml
Datei Gelöscht : C:\Windows\System32\Tasks\BrowserDefendert
Datei Gelöscht : C:\Windows\System32\Tasks\EPUpdater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\BrowserDefendert
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{857BB79D-BAFD-4900-807E-97CFD2643E35}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{857BB79D-BAFD-4900-807E-97CFD2643E35}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{192CA070-E942-4A1D-91B4-538540A439D0}
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{192CA070-E942-4A1D-91B4-538540A439D0}
Schlüssel Gelöscht : HKCU\Software\dsiteproducts
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Mozilla Firefox v26.0 (de)
[ Datei : C:\Users\Rudi\AppData\Roaming\Mozilla\Firefox\Profiles\dmjecpdx.default\prefs.js ]
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.BUTTON_STRUCTURE", "[{\"b\":220459095,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":220459096,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0[...]
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.firstKnownVersion", "5.71.2.59707");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.homepage", "hxxp://home.tb.ask.com/index.jhtml?n=77fd5845&p2=^ZO^xpi000^YYA^");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.initialized", true);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.installation.contextKey", "");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.installation.installDate", "2013091909");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.installation.partnerId", "^ZO^xpi000^YYA^");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.installation.partnerSubId", "");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.installation.success", false);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.isCompliantUninstallImplementation", true);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.lastKnownVersion", "5.79.3.12874");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.options.defaultSearch", false);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.options.homePageEnabled", false);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.options.keywordEnabled", false);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.options.tabEnabled", false);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.partnerPixelFired", false);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.searchHistory", "Nach den Sommerferien, fragt die neue Lehrerin den Maxi:\r\n\"Was willst Du werden, wenn du groß bist ?\"\r\n\r\nMaxi antwortet:\r\[...]
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.toolbarCollapsed", true);
Zeile gelöscht : user_pref("extensions.toolbar.mindspark._49Members_.weather.location", "10001");
Zeile gelöscht : user_pref("extensions.toolbar.mindspark.lastInstalled", "utilitychest@mindspark.com");
-\\ Google Chrome v32.0.1700.102
[ Datei : C:\Users\Rudi\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [4442 octets] - [02/02/2014 17:05:30]
AdwCleaner[S0].txt - [4495 octets] - [02/02/2014 17:10:27]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4555 octets] ##########
Gluehstrumpf |
|
03.02.2014, 11:16
| #8 |
| /// Malwareteam | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Hast Du denn noch merkbare Veränderungen? |
|
03.02.2014, 11:20
| #9 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Hallo Swiss, der Firefox Browser war transparent, aber das hab ich hinbekomen dass man den wieder sieht. Ansonsten ist mir nichts aufgefallen. Ist der "Erreger" runter vom PC? Hab ich das richtig mitbekommen, daß das durch eine Minianwendung kam? Welche weiteren Schritte rätst Du mir? Danke Gluehstrumpf |
|
03.02.2014, 12:51
| #10 |
| /// Malwareteam | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Frag einmal bei der Deutsche Telekom AG nach ob noch verdächtige Verhalten feststellbar sind. |
|
03.02.2014, 13:55
| #11 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt @ Swiss: ich frag, einstweilen vielen herzlichen Dank für Deine Hilfe. eine super Forum!!!!!!!!!!!!!! Danke Gluehstrumpf |
|
03.02.2014, 17:04
| #12 |
| /// Malwareteam | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Melde Dich in jedemfall noch. Wir sind noch nicht ganz durch  |
|
03.02.2014, 17:05
| #13 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Die Telekom meldet sich wenn nochmals was ist. Derzeit ist nichts mehr aufgefallen. Was steht noch an? Danke Gluehstrumpf |
|
08.02.2014, 12:22
| #14 |
| | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt @ Swiss: bisher kam keine weitere Beanstandung durch die Telekom. Müsssen wir nochmals was machen? oder passt das jetzt aus Deiner Sicht. Danke Gluehstrumpf |
|
08.02.2014, 23:18
| #15 |
| /// Malwareteam | Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt Tool-Bereinigung mit OTL Wir werden nun die CleanUp!-Funktion von OTL nutzen, um die meisten Programme, die wir zur Bereinigung installiert haben, wieder von Deinem System zu löschen.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann. |
|
| Themen zu Telekom - Abuse Team: Über meine e-mailadresse wurden Viren versandt |
| computer, dringend, e-banking, ebay, einstellungen, entfernen, folge, frage, html, infizierte, kunde, link, malwarebytes, microsoft, microsoft essentials, namen, neue, prüfen, router, scan, schutz, seite, senden, sicherheitsexperten, sicherheitswarnung, telekom, trojaner, unterbinden, viren, änderung |
Linear-Darstellung
