| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: alles began mit Win 7 security 2012Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
05.01.2012, 16:33
| #16 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  alles began mit Win 7 security 2012Zitat:
 Ne, die Logs von TDSS-Killer und Combofix fehlen ja (immer noch) 
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
05.01.2012, 16:49
| #17 |
 | alles began mit Win 7 security 2012 Hallo Arne,
__________________gibt es einen speziellen Ort wo die abgelegt werden? Denn ich finde nur das was ich dir offengelegt habe. Viele Grüße, Martin. |
|
05.01.2012, 16:57
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | alles began mit Win 7 security 2012 TDSS-Killer direkt auf c:
__________________Combofix in C:\combofix.txt oder in Qoobox Beim ncähsten Mal die Anleitungen zu diesen gefährlicheren Tools auch komplett lesen wenn man es schon auf eigene Faust ausführt
__________________ |
|
05.01.2012, 17:10
| #19 |
| | alles began mit Win 7 security 2012Code:
ATTFilter ComboFix 11-12-22.04 - Cassiopeia 26.12.2011 11:03:23.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.43.1031.18.4094.2483 [GMT 1:00]
ausgeführt von:: c:\users\Cassiopeia\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Mozilla Firefox\searchplugins\SearchquWebSearch.xml
c:\programdata\ntuser.dat
c:\users\Cassiopeia\AppData\Roaming\Mozilla\Firefox\Profiles\z5rgx61s.default\searchplugins\SearchquWebSearch.xml
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-11-26 bis 2011-12-26 ))))))))))))))))))))))))))))))
.
.
2011-12-26 09:36 . 2011-12-26 09:36 -------- d-----w- c:\program files (x86)\VS Revo Group
2011-12-26 09:19 . 2011-12-26 09:19 -------- d-----w- c:\program files\CCleaner
2011-12-25 18:10 . 2011-12-25 18:10 -------- d-----w- c:\program files (x86)\Common Files\Simple Adblock
2011-12-24 22:17 . 2011-12-24 22:17 -------- d-----w- c:\users\Dania
2011-12-24 18:02 . 2011-12-24 18:18 -------- d-----w- c:\users\Cassiopeia\AppData\Local\NPE
2011-12-24 18:02 . 2011-12-24 18:02 -------- d-----w- c:\programdata\Norton
2011-12-24 14:02 . 2011-12-24 14:02 16200 ----a-w- c:\windows\stinger.sys
2011-12-24 11:57 . 2011-12-24 11:57 -------- d---a-w- c:\windows\VDLL.DLL
2011-12-24 11:57 . 2011-12-24 11:57 -------- d---a-w- c:\windows\SysWow64\runouce.exe
2011-12-24 11:57 . 2011-12-24 11:57 -------- d---a-w- c:\windows\rundll16.exe
2011-12-24 11:57 . 2011-12-24 11:57 -------- d---a-w- c:\windows\RUNDL132.EXE
2011-12-24 11:57 . 2011-12-24 11:57 -------- d---a-w- c:\windows\logo1_.exe
2011-12-24 11:57 . 2011-12-24 11:57 -------- d---a-w- c:\windows\logo_1.exe
2011-12-24 11:56 . 2011-12-24 11:56 632064 ----a-w- c:\windows\SysWow64\msvcr80.dll
2011-12-24 11:56 . 2011-12-24 11:56 554240 ----a-w- c:\windows\SysWow64\msvcp80.dll
2011-12-24 11:56 . 2011-12-24 11:56 572928 ----a-w- c:\windows\SysWow64\msvcp90.dll
2011-12-24 11:56 . 2011-12-24 11:56 655872 ----a-w- c:\windows\SysWow64\msvcr90.dll
2011-12-24 11:56 . 2011-12-24 11:56 34048 ----a-w- c:\windows\SysWow64\eEmpty.exe
2011-12-24 11:56 . 2011-12-24 11:56 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2011-12-24 11:55 . 2011-12-24 11:56 -------- d-----w- c:\programdata\MicroWorld
2011-12-24 08:59 . 2011-12-24 09:30 81984 ----a-w- c:\windows\system32\bdod.bin
2011-12-23 19:52 . 2011-12-23 19:52 -------- d-----w- c:\users\Cassiopeia\AppData\Roaming\BitDefender
2011-12-23 19:52 . 2011-12-24 09:31 -------- d-----w- c:\program files\Common Files\BitDefender
2011-12-23 19:52 . 2011-12-24 08:46 -------- d-----w- c:\programdata\BitDefender
2011-12-23 19:52 . 2011-12-23 19:52 -------- d-----w- c:\program files\BitDefender
2011-12-23 19:51 . 2011-12-23 19:51 -------- d-----w- c:\program files (x86)\Common Files\BitDefender
2011-12-23 18:54 . 2011-12-23 18:54 -------- d-----w- c:\program files (x86)\Safer Networking
2011-12-23 17:43 . 2011-12-23 17:43 -------- d-----w- c:\program files (x86)\ESET
2011-12-23 14:38 . 2011-11-21 11:40 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B86A55E5-5EDB-42B6-BEE2-80B8700E0BDD}\mpengine.dll
2011-12-22 21:59 . 2011-12-22 21:59 -------- d-----w- c:\users\Cassiopeia\AppData\Local\Threat Expert
2011-12-22 21:41 . 2011-12-22 22:07 -------- d-----w- c:\program files (x86)\PC Tools
2011-12-22 21:29 . 2011-12-22 21:33 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy
2011-12-22 21:29 . 2011-12-22 21:29 12872 ----a-w- c:\windows\system32\bootdelete.exe
2011-12-22 21:24 . 2011-12-22 22:07 -------- d-----w- c:\program files (x86)\Common Files\PC Tools
2011-12-22 21:24 . 2011-11-22 18:42 230952 ----a-w- c:\windows\system32\drivers\PCTSD64.sys
2011-12-22 21:23 . 2011-12-22 22:04 -------- d-----w- c:\programdata\PC Tools
2011-12-22 21:23 . 2011-12-22 21:23 -------- d-----w- c:\users\Cassiopeia\AppData\Roaming\TestApp
2011-12-22 21:20 . 2011-12-22 21:20 25160 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2011-12-22 21:20 . 2011-12-22 21:20 -------- d-----w- c:\program files\Hitman Pro 3.5
2011-12-22 21:20 . 2011-12-22 21:29 -------- d-----w- c:\programdata\Hitman Pro
2011-12-22 20:08 . 2011-12-22 20:08 -------- d-----w- c:\users\Cassiopeia\AppData\Roaming\Malwarebytes
2011-12-22 20:06 . 2011-12-22 20:06 -------- d-----w- c:\programdata\Malwarebytes
2011-12-22 20:06 . 2011-12-22 20:06 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-12-22 20:06 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-19 18:33 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2011-12-19 18:33 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-25 19:28 . 2010-08-25 17:08 2828 --sha-w- c:\programdata\KGyGaAvL.sys
2011-12-24 11:58 . 2011-12-24 11:57 18745487 ----a-w- c:\windows\REGBK00.ZIP
2011-12-08 16:52 . 2011-11-02 12:06 130760 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-11-21 19:11 . 2011-11-21 19:11 45280 ----a-w- c:\windows\system32\AcSignIcon.dll
2011-11-21 19:11 . 2011-11-21 19:11 432864 ----a-w- c:\windows\system32\AcSignOpt.exe
2011-11-21 19:11 . 2011-11-21 19:11 35040 ----a-w- c:\windows\system32\AcSignExt.dll
2011-11-21 19:11 . 2011-11-21 19:11 94208 ----a-w- c:\windows\SysWow64\msstkprp.dll
2011-11-21 19:10 . 2011-11-21 19:10 354528 ----a-w- c:\windows\system32\plotman.cpl
2011-11-21 19:10 . 2011-11-21 19:10 14560 ----a-w- c:\windows\system32\AcSignExtRes.dll
2011-11-15 13:29 . 2010-08-24 20:50 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-10-18 15:59 . 2011-06-06 14:57 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-11 14:00 . 2011-11-02 12:06 97312 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-10-11 14:00 . 2011-11-02 12:06 27760 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-10-03 14:41 . 2011-10-03 14:41 165680 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2011-10-03 14:41 . 2011-10-03 14:41 146736 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-10-03 14:41 . 2011-10-08 20:02 224048 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-10-03 14:41 . 2011-10-08 20:02 130864 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-10-03 14:41 . 2011-10-03 14:41 320816 ----a-w- c:\windows\system32\VBoxNetFltNobj.dll
2011-10-03 14:41 . 2011-10-03 14:41 117040 ----a-w- c:\windows\system32\drivers\VBoxUSB.sys
2011-09-29 16:29 . 2011-11-12 18:29 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-12-18 11:13 . 2010-12-18 11:13 581632 ----a-w- c:\program files (x86)\convert.exe
2010-09-01 06:32 . 2010-09-01 06:32 573736 ----a-w- c:\program files\iTunesPhotoProcessor.exe
2010-09-01 06:32 . 2010-09-01 06:32 294688 ----a-w- c:\program files\iTunesOutlookAddIn.dll
2010-09-01 06:32 . 2010-09-01 06:32 421160 ----a-w- c:\program files\iTunesHelper.exe
2010-09-01 06:31 . 2010-09-01 06:31 387368 ----a-w- c:\program files\iTunesAdmin.dll
2010-09-01 06:31 . 2010-09-01 06:31 173344 ----a-w- c:\program files\iTunesHelper.dll
2010-09-01 06:31 . 2010-09-01 06:31 9777448 ----a-w- c:\program files\iTunes.exe
2010-09-01 06:31 . 2010-09-01 06:31 18658592 ----a-w- c:\program files\iTunes.dll
2010-09-01 06:31 . 2010-09-01 06:31 726304 ----a-w- c:\program files\gnsdk_sdkmanager.dll
2010-09-01 06:31 . 2010-09-01 06:31 259360 ----a-w- c:\program files\gnsdk_submit.dll
2010-09-01 06:31 . 2010-09-01 06:31 197920 ----a-w- c:\program files\gnsdk_musicid.dll
2010-09-01 06:31 . 2010-09-01 06:31 111912 ----a-w- c:\program files\ITDetector.ocx
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Akamai NetSession Interface"="c:\users\Cassiopeia\AppData\Local\Akamai\netsession_win.exe" [2011-12-12 3305760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-11-04 98304]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]
"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-10-11 258512]
.
c:\users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Microsoft Office Outlook 2007.lnk - c:\windows\Installer\{90120000-001A-0000-0000-0000000FF1CE}\outicon.exe [2010-8-27 845584]
OpenOffice.org 3.2.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-8-25 1207312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux3"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Omnipage"=c:\program files (x86)\ScanSoft\OmniPageSE\opware32.exe
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-disabled]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunesHelper.exe"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-05 136176]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-05 136176]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys [x]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 ST330;ST330;c:\windows\system32\DRIVERS\st330.sys [x]
R3 STBUS;STBUS;c:\windows\system32\DRIVERS\stbus.sys [x]
R3 stppp;Speedtouch PPP Adapter Adapter;c:\windows\system32\DRIVERS\stppp.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [x]
R3 VMLiteUSB;VMLite USB;c:\windows\system32\Drivers\VMLiteUSB.sys [x]
R3 vpcuxd;USB-Virtualisierungsstubdienst;c:\windows\system32\DRIVERS\vpcuxd.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2011-10-11 86224]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [x]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
2010-11-20 12:17 302592 ----a-w- c:\windows\System32\cmd.exe
.
Inhalt des "geplante Tasks" Ordners
.
2011-12-23 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files (x86)\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-05 09:32]
.
2011-12-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-01-05 09:32]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-12-08 9642528]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2726728]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 130576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.at/
IE: Free YouTube Download - c:\users\Cassiopeia\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
TCP: DhcpNameServer = 10.0.0.138 10.0.0.138
FF - ProfilePath - c:\users\Cassiopeia\AppData\Roaming\Mozilla\Firefox\Profiles\z5rgx61s.default\
FF - prefs.js: browser.search.selectedEngine - Web Search
FF - prefs.js: browser.startup.homepage - hxxp://www.searchqu.com/406
FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&systemid=406&q=
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Free YouTube Download (Free Studio) Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
Notify-LBTWlgn - (no file)
WebBrowser-{A057A204-BACC-4D26-8287-79A187E26987} - (no file)
AddRemove-AceFTP 3 Pro - c:\windows\iun6002.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\Akamai]
"ServiceDll"="c:\program files (x86)\common files\akamai/netsession_win_b427739.dll"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\CDBurnerXP\NMSAccessU.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2011-12-26 11:12:56 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2011-12-26 10:12
.
Vor Suchlauf: 8 Verzeichnis(se), 371.601.539.072 Bytes frei
Nach Suchlauf: 15 Verzeichnis(se), 371.072.790.528 Bytes frei
.
- - End Of File - - ADC77271C62C6CB20F5634644AD5EFCB
Code:
ATTFilter 10:24:26.0109 2736 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
10:24:26.0301 2736 ============================================================
10:24:26.0301 2736 Current date / time: 2011/12/29 10:24:26.0301
10:24:26.0301 2736 SystemInfo:
10:24:26.0301 2736
10:24:26.0302 2736 OS Version: 6.1.7601 ServicePack: 1.0
10:24:26.0302 2736 Product type: Workstation
10:24:26.0302 2736 ComputerName: CASSIOPEIA-PC
10:24:26.0302 2736 UserName: Cassiopeia
10:24:26.0302 2736 Windows directory: C:\Windows
10:24:26.0302 2736 System windows directory: C:\Windows
10:24:26.0302 2736 Running under WOW64
10:24:26.0302 2736 Processor architecture: Intel x64
10:24:26.0302 2736 Number of processors: 4
10:24:26.0302 2736 Page size: 0x1000
10:24:26.0302 2736 Boot type: Normal boot
10:24:26.0302 2736 ============================================================
10:24:33.0648 2736 Initialize success
10:24:59.0091 2352 ============================================================
10:24:59.0091 2352 Scan started
10:24:59.0091 2352 Mode: Manual;
10:24:59.0091 2352 ============================================================
10:25:00.0933 2352 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:25:00.0954 2352 1394ohci - ok
10:25:01.0013 2352 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:25:01.0020 2352 ACPI - ok
10:25:01.0039 2352 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:25:01.0047 2352 AcpiPmi - ok
10:25:01.0100 2352 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
10:25:01.0125 2352 adp94xx - ok
10:25:01.0154 2352 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
10:25:01.0173 2352 adpahci - ok
10:25:01.0194 2352 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
10:25:01.0209 2352 adpu320 - ok
10:25:01.0285 2352 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
10:25:01.0294 2352 AFD - ok
10:25:01.0331 2352 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:25:01.0338 2352 agp440 - ok
10:25:01.0420 2352 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:25:01.0429 2352 aliide - ok
10:25:01.0468 2352 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:25:01.0473 2352 amdide - ok
10:25:01.0515 2352 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
10:25:01.0526 2352 AmdK8 - ok
10:25:01.0543 2352 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
10:25:01.0545 2352 AmdPPM - ok
10:25:01.0583 2352 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:25:01.0591 2352 amdsata - ok
10:25:01.0616 2352 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
10:25:01.0626 2352 amdsbs - ok
10:25:01.0639 2352 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:25:01.0644 2352 amdxata - ok
10:25:01.0772 2352 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:25:01.0783 2352 AppID - ok
10:25:01.0851 2352 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
10:25:01.0860 2352 arc - ok
10:25:01.0876 2352 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
10:25:01.0884 2352 arcsas - ok
10:25:01.0927 2352 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:25:01.0931 2352 AsyncMac - ok
10:25:01.0958 2352 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:25:01.0959 2352 atapi - ok
10:25:02.0102 2352 atikmdag (428e352f7cba6be1dc964dcd29de0eab) C:\Windows\system32\DRIVERS\atikmdag.sys
10:25:02.0241 2352 atikmdag - ok
10:25:02.0324 2352 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys
10:25:02.0339 2352 avgntflt - ok
10:25:02.0401 2352 avipbb (f1c9db5f7b2a56a0b29667d22ba540fc) C:\Windows\system32\DRIVERS\avipbb.sys
10:25:02.0418 2352 avipbb - ok
10:25:02.0450 2352 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
10:25:02.0460 2352 avkmgr - ok
10:25:02.0516 2352 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
10:25:02.0539 2352 b06bdrv - ok
10:25:02.0585 2352 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:25:02.0602 2352 b57nd60a - ok
10:25:02.0644 2352 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:25:02.0648 2352 Beep - ok
10:25:02.0697 2352 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:25:02.0703 2352 blbdrive - ok
10:25:02.0755 2352 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:25:02.0767 2352 bowser - ok
10:25:02.0787 2352 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:25:02.0794 2352 BrFiltLo - ok
10:25:02.0814 2352 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:25:02.0819 2352 BrFiltUp - ok
10:25:02.0853 2352 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:25:02.0866 2352 Brserid - ok
10:25:02.0881 2352 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:25:02.0887 2352 BrSerWdm - ok
10:25:02.0904 2352 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:25:02.0907 2352 BrUsbMdm - ok
10:25:02.0923 2352 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:25:02.0927 2352 BrUsbSer - ok
10:25:02.0948 2352 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
10:25:02.0954 2352 BTHMODEM - ok
10:25:02.0989 2352 catchme - ok
10:25:03.0018 2352 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:25:03.0025 2352 cdfs - ok
10:25:03.0071 2352 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
10:25:03.0081 2352 cdrom - ok
10:25:03.0114 2352 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
10:25:03.0122 2352 circlass - ok
10:25:03.0152 2352 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:25:03.0156 2352 CLFS - ok
10:25:03.0208 2352 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:25:03.0212 2352 CmBatt - ok
10:25:03.0234 2352 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:25:03.0240 2352 cmdide - ok
10:25:03.0294 2352 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
10:25:03.0323 2352 CNG - ok
10:25:03.0344 2352 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
10:25:03.0352 2352 Compbatt - ok
10:25:03.0388 2352 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
10:25:03.0395 2352 CompositeBus - ok
10:25:03.0439 2352 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
10:25:03.0449 2352 crcdisk - ok
10:25:03.0533 2352 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:25:03.0545 2352 DfsC - ok
10:25:03.0580 2352 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:25:03.0581 2352 discache - ok
10:25:03.0625 2352 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
10:25:03.0638 2352 Disk - ok
10:25:03.0703 2352 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:25:03.0709 2352 drmkaud - ok
10:25:03.0775 2352 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:25:03.0803 2352 DXGKrnl - ok
10:25:03.0917 2352 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
10:25:03.0978 2352 ebdrv - ok
10:25:04.0004 2352 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
10:25:04.0016 2352 elxstor - ok
10:25:04.0037 2352 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:25:04.0040 2352 ErrDev - ok
10:25:04.0059 2352 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:25:04.0065 2352 exfat - ok
10:25:04.0080 2352 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:25:04.0087 2352 fastfat - ok
10:25:04.0122 2352 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:25:04.0126 2352 fdc - ok
10:25:04.0143 2352 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:25:04.0148 2352 FileInfo - ok
10:25:04.0163 2352 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:25:04.0167 2352 Filetrace - ok
10:25:04.0179 2352 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
10:25:04.0182 2352 flpydisk - ok
10:25:04.0238 2352 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:25:04.0262 2352 FltMgr - ok
10:25:04.0300 2352 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:25:04.0312 2352 FsDepends - ok
10:25:04.0327 2352 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
10:25:04.0337 2352 Fs_Rec - ok
10:25:04.0376 2352 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:25:04.0378 2352 fvevol - ok
10:25:04.0407 2352 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:25:04.0442 2352 gagp30kx - ok
10:25:04.0503 2352 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:25:04.0512 2352 GEARAspiWDM - ok
10:25:04.0581 2352 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:25:04.0593 2352 hcw85cir - ok
10:25:04.0651 2352 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:25:04.0673 2352 HdAudAddService - ok
10:25:04.0716 2352 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
10:25:04.0717 2352 HDAudBus - ok
10:25:04.0748 2352 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
10:25:04.0753 2352 HidBatt - ok
10:25:04.0770 2352 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
10:25:04.0777 2352 HidBth - ok
10:25:04.0797 2352 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
10:25:04.0804 2352 HidIr - ok
10:25:04.0847 2352 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
10:25:04.0853 2352 HidUsb - ok
10:25:04.0912 2352 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:25:04.0925 2352 HpSAMD - ok
10:25:04.0996 2352 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:25:05.0010 2352 HTTP - ok
10:25:05.0056 2352 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:25:05.0058 2352 hwpolicy - ok
10:25:05.0096 2352 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
10:25:05.0112 2352 i8042prt - ok
10:25:05.0171 2352 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:25:05.0193 2352 iaStorV - ok
10:25:05.0228 2352 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
10:25:05.0239 2352 iirsp - ok
10:25:05.0359 2352 IntcAzAudAddService (76877dd763a2287f58908795f3f5cccb) C:\Windows\system32\drivers\RTKVHD64.sys
10:25:05.0382 2352 IntcAzAudAddService - ok
10:25:05.0409 2352 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:25:05.0413 2352 intelide - ok
10:25:05.0451 2352 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:25:05.0464 2352 intelppm - ok
10:25:05.0518 2352 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:25:05.0531 2352 IpFilterDriver - ok
10:25:05.0559 2352 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:25:05.0574 2352 IPMIDRV - ok
10:25:05.0593 2352 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:25:05.0604 2352 IPNAT - ok
10:25:05.0636 2352 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:25:05.0640 2352 IRENUM - ok
10:25:05.0657 2352 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:25:05.0663 2352 isapnp - ok
10:25:05.0691 2352 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:25:05.0705 2352 iScsiPrt - ok
10:25:05.0735 2352 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
10:25:05.0742 2352 kbdclass - ok
10:25:05.0786 2352 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
10:25:05.0795 2352 kbdhid - ok
10:25:05.0848 2352 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
10:25:05.0862 2352 KSecDD - ok
10:25:05.0883 2352 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
10:25:05.0902 2352 KSecPkg - ok
10:25:05.0938 2352 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:25:05.0946 2352 ksthunk - ok
10:25:06.0014 2352 L8042Kbd (f33c5d79d3273530e1892a0922283a7b) C:\Windows\system32\DRIVERS\L8042Kbd.sys
10:25:06.0022 2352 L8042Kbd - ok
10:25:06.0098 2352 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
10:25:06.0109 2352 LHidFilt - ok
10:25:06.0163 2352 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:25:06.0174 2352 lltdio - ok
10:25:06.0208 2352 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
10:25:06.0213 2352 LMouFilt - ok
10:25:06.0252 2352 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:25:06.0260 2352 LSI_FC - ok
10:25:06.0278 2352 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:25:06.0286 2352 LSI_SAS - ok
10:25:06.0302 2352 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:25:06.0309 2352 LSI_SAS2 - ok
10:25:06.0330 2352 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:25:06.0339 2352 LSI_SCSI - ok
10:25:06.0369 2352 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:25:06.0370 2352 luafv - ok
10:25:06.0386 2352 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
10:25:06.0393 2352 megasas - ok
10:25:06.0415 2352 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
10:25:06.0427 2352 MegaSR - ok
10:25:06.0459 2352 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:25:06.0465 2352 Modem - ok
10:25:06.0502 2352 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:25:06.0503 2352 monitor - ok
10:25:06.0557 2352 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
10:25:06.0568 2352 mouclass - ok
10:25:06.0611 2352 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:25:06.0620 2352 mouhid - ok
10:25:06.0675 2352 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:25:06.0678 2352 mountmgr - ok
10:25:06.0722 2352 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:25:06.0733 2352 mpio - ok
10:25:06.0765 2352 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:25:06.0774 2352 mpsdrv - ok
10:25:06.0822 2352 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:25:06.0837 2352 MRxDAV - ok
10:25:06.0883 2352 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:25:06.0898 2352 mrxsmb - ok
10:25:06.0948 2352 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:25:06.0968 2352 mrxsmb10 - ok
10:25:07.0012 2352 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:25:07.0025 2352 mrxsmb20 - ok
10:25:07.0058 2352 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:25:07.0068 2352 msahci - ok
10:25:07.0091 2352 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:25:07.0104 2352 msdsm - ok
10:25:07.0152 2352 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:25:07.0157 2352 Msfs - ok
10:25:07.0193 2352 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:25:07.0196 2352 mshidkmdf - ok
10:25:07.0212 2352 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:25:07.0217 2352 msisadrv - ok
10:25:07.0271 2352 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:25:07.0275 2352 MSKSSRV - ok
10:25:07.0314 2352 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:25:07.0320 2352 MSPCLOCK - ok
10:25:07.0342 2352 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:25:07.0348 2352 MSPQM - ok
10:25:07.0400 2352 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:25:07.0421 2352 MsRPC - ok
10:25:07.0458 2352 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
10:25:07.0459 2352 mssmbios - ok
10:25:07.0478 2352 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:25:07.0484 2352 MSTEE - ok
10:25:07.0497 2352 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
10:25:07.0504 2352 MTConfig - ok
10:25:07.0542 2352 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:25:07.0553 2352 Mup - ok
10:25:07.0625 2352 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:25:07.0646 2352 NativeWifiP - ok
10:25:07.0721 2352 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:25:07.0734 2352 NDIS - ok
10:25:07.0760 2352 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:25:07.0765 2352 NdisCap - ok
10:25:07.0797 2352 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:25:07.0801 2352 NdisTapi - ok
10:25:07.0849 2352 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:25:07.0860 2352 Ndisuio - ok
10:25:07.0901 2352 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:25:07.0918 2352 NdisWan - ok
10:25:07.0964 2352 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:25:07.0975 2352 NDProxy - ok
10:25:07.0994 2352 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:25:08.0004 2352 NetBIOS - ok
10:25:08.0055 2352 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:25:08.0060 2352 NetBT - ok
10:25:08.0188 2352 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
10:25:08.0200 2352 nfrd960 - ok
10:25:08.0254 2352 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:25:08.0263 2352 Npfs - ok
10:25:08.0283 2352 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:25:08.0285 2352 nsiproxy - ok
10:25:08.0373 2352 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:25:08.0442 2352 Ntfs - ok
10:25:08.0464 2352 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:25:08.0469 2352 Null - ok
10:25:08.0551 2352 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:25:08.0565 2352 nvraid - ok
10:25:08.0611 2352 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:25:08.0627 2352 nvstor - ok
10:25:08.0678 2352 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:25:08.0694 2352 nv_agp - ok
10:25:08.0745 2352 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:25:08.0758 2352 ohci1394 - ok
10:25:08.0833 2352 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
10:25:08.0843 2352 Parport - ok
10:25:08.0883 2352 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
10:25:08.0897 2352 partmgr - ok
10:25:08.0934 2352 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:25:08.0936 2352 pci - ok
10:25:08.0960 2352 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:25:08.0965 2352 pciide - ok
10:25:08.0987 2352 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
10:25:08.0999 2352 pcmcia - ok
10:25:09.0018 2352 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:25:09.0024 2352 pcw - ok
10:25:09.0052 2352 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:25:09.0076 2352 PEAUTH - ok
10:25:09.0201 2352 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:25:09.0216 2352 PptpMiniport - ok
10:25:09.0236 2352 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
10:25:09.0250 2352 Processor - ok
10:25:09.0332 2352 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:25:09.0335 2352 Psched - ok
10:25:09.0385 2352 pwdrvio (41ad0fcf47275a9bc70fa1b56bfd3e23) C:\Windows\system32\pwdrvio.sys
10:25:09.0398 2352 pwdrvio - ok
10:25:09.0427 2352 pwdspio (19cf17076f2524af6746b528584aa3c9) C:\Windows\system32\pwdspio.sys
10:25:09.0438 2352 pwdspio - ok
10:25:09.0502 2352 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
10:25:09.0576 2352 ql2300 - ok
10:25:09.0594 2352 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
10:25:09.0604 2352 ql40xx - ok
10:25:09.0621 2352 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:25:09.0627 2352 QWAVEdrv - ok
10:25:09.0639 2352 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:25:09.0643 2352 RasAcd - ok
10:25:09.0695 2352 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:25:09.0707 2352 RasAgileVpn - ok
10:25:09.0753 2352 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:25:09.0768 2352 Rasl2tp - ok
10:25:09.0798 2352 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:25:09.0807 2352 RasPppoe - ok
10:25:09.0825 2352 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:25:09.0833 2352 RasSstp - ok
10:25:09.0877 2352 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:25:09.0891 2352 rdbss - ok
10:25:09.0910 2352 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:25:09.0916 2352 rdpbus - ok
10:25:09.0930 2352 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:25:09.0931 2352 RDPCDD - ok
10:25:09.0959 2352 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:25:09.0960 2352 RDPENCDD - ok
10:25:09.0974 2352 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:25:09.0975 2352 RDPREFMP - ok
10:25:10.0025 2352 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
10:25:10.0041 2352 RDPWD - ok
10:25:10.0091 2352 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:25:10.0111 2352 rdyboost - ok
10:25:10.0157 2352 regi (4d9afddda0efe97cdbfd3b5fa48b05f6) C:\Windows\system32\drivers\regi.sys
10:25:10.0165 2352 regi - ok
10:25:10.0245 2352 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:25:10.0255 2352 rspndr - ok
10:25:10.0317 2352 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
10:25:10.0336 2352 RTHDMIAzAudService - ok
10:25:10.0383 2352 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:25:10.0398 2352 RTL8167 - ok
10:25:10.0435 2352 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:25:10.0450 2352 sbp2port - ok
10:25:10.0516 2352 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:25:10.0527 2352 scfilter - ok
10:25:10.0582 2352 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:25:10.0586 2352 secdrv - ok
10:25:10.0608 2352 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:25:10.0613 2352 Serenum - ok
10:25:10.0642 2352 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:25:10.0649 2352 Serial - ok
10:25:10.0680 2352 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
10:25:10.0684 2352 sermouse - ok
10:25:10.0711 2352 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:25:10.0714 2352 sffdisk - ok
10:25:10.0731 2352 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:25:10.0735 2352 sffp_mmc - ok
10:25:10.0748 2352 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:25:10.0752 2352 sffp_sd - ok
10:25:10.0766 2352 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
10:25:10.0769 2352 sfloppy - ok
10:25:10.0806 2352 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:25:10.0812 2352 SiSRaid2 - ok
10:25:10.0830 2352 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
10:25:10.0836 2352 SiSRaid4 - ok
10:25:10.0870 2352 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:25:10.0876 2352 Smb - ok
10:25:10.0917 2352 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:25:10.0921 2352 spldr - ok
10:25:10.0969 2352 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:25:10.0995 2352 srv - ok
10:25:11.0053 2352 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:25:11.0081 2352 srv2 - ok
10:25:11.0129 2352 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:25:11.0145 2352 srvnet - ok
10:25:11.0215 2352 ST330 (7b6e1e5094a2d0cc884a6be05ff805ec) C:\Windows\system32\DRIVERS\st330.sys
10:25:11.0225 2352 ST330 - ok
10:25:11.0280 2352 StarOpen (e57b778208c783d8debab320c16a1b82) C:\Windows\system32\drivers\StarOpen.sys
10:25:11.0286 2352 StarOpen - ok
10:25:11.0310 2352 STBUS (ba847a2ebc01fc9ba94e0e9a6ee4b2b7) C:\Windows\system32\DRIVERS\stbus.sys
10:25:11.0318 2352 STBUS - ok
10:25:11.0340 2352 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
10:25:11.0350 2352 stexstor - ok
10:25:11.0395 2352 stppp (d0d21c5084af093f5e7bcd77e57ef3c9) C:\Windows\system32\DRIVERS\stppp.sys
10:25:11.0402 2352 stppp - ok
10:25:11.0425 2352 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
10:25:11.0430 2352 swenum - ok
10:25:11.0533 2352 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
10:25:11.0597 2352 Tcpip - ok
10:25:11.0655 2352 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
10:25:11.0669 2352 TCPIP6 - ok
10:25:11.0709 2352 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:25:11.0715 2352 tcpipreg - ok
10:25:11.0743 2352 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:25:11.0747 2352 TDPIPE - ok
10:25:11.0759 2352 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
10:25:11.0764 2352 TDTCP - ok
10:25:11.0814 2352 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:25:11.0827 2352 tdx - ok
10:25:11.0857 2352 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
10:25:11.0864 2352 TermDD - ok
10:25:11.0924 2352 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:25:11.0929 2352 tssecsrv - ok
10:25:11.0996 2352 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:25:12.0010 2352 TsUsbFlt - ok
10:25:12.0066 2352 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:25:12.0081 2352 tunnel - ok
10:25:12.0112 2352 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
10:25:12.0124 2352 uagp35 - ok
10:25:12.0175 2352 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:25:12.0195 2352 udfs - ok
10:25:12.0240 2352 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:25:12.0248 2352 uliagpkx - ok
10:25:12.0288 2352 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
10:25:12.0300 2352 umbus - ok
10:25:12.0324 2352 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
10:25:12.0333 2352 UmPass - ok
10:25:12.0397 2352 usbbus (5fcc71487888589a9244af54cfefab29) C:\Windows\system32\DRIVERS\lgx64bus.sys
10:25:12.0401 2352 usbbus - ok
10:25:12.0445 2352 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\drivers\usbccgp.sys
10:25:12.0451 2352 usbccgp - ok
10:25:12.0482 2352 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:25:12.0491 2352 usbcir - ok
10:25:12.0507 2352 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
10:25:12.0511 2352 usbehci - ok
10:25:12.0561 2352 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:25:12.0572 2352 usbhub - ok
10:25:12.0630 2352 USBModem (78d551f5b93488b4666f5fc8dd4815f3) C:\Windows\system32\DRIVERS\lgx64modem.sys
10:25:12.0635 2352 USBModem - ok
10:25:12.0664 2352 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
10:25:12.0667 2352 usbohci - ok
10:25:12.0709 2352 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
10:25:12.0714 2352 usbprint - ok
10:25:12.0746 2352 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:25:12.0747 2352 USBSTOR - ok
10:25:12.0766 2352 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
10:25:12.0770 2352 usbuhci - ok
10:25:12.0831 2352 VBoxDrv (6372eaa7cc0e8a2fc4be7b3f2de1ed62) C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:25:12.0838 2352 VBoxDrv - ok
10:25:12.0892 2352 VBoxNetAdp (b996117f6202464a56901cbc13999fe2) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:25:12.0910 2352 VBoxNetAdp - ok
10:25:12.0971 2352 VBoxNetFlt (89835a2f779979f1d545e40f36d737e0) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:25:12.0989 2352 VBoxNetFlt - ok
10:25:13.0040 2352 VBoxUSB (718c4301b7b4e45e93f6013d3cf04183) C:\Windows\system32\Drivers\VBoxUSB.sys
10:25:13.0057 2352 VBoxUSB - ok
10:25:13.0139 2352 VBoxUSBMon (f9bd6cff0376d1daddb1cb2f794d9bc7) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:25:13.0155 2352 VBoxUSBMon - ok
10:25:13.0212 2352 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:25:13.0222 2352 vdrvroot - ok
10:25:13.0297 2352 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:25:13.0306 2352 vga - ok
10:25:13.0326 2352 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:25:13.0336 2352 VgaSave - ok
10:25:13.0374 2352 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:25:13.0387 2352 vhdmp - ok
10:25:13.0412 2352 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:25:13.0418 2352 viaide - ok
10:25:13.0458 2352 VMLiteUSB (ae3a5225aa7f4fc644288505e33d575c) C:\Windows\system32\Drivers\VMLiteUSB.sys
10:25:13.0473 2352 VMLiteUSB - ok
10:25:13.0494 2352 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:25:13.0507 2352 volmgr - ok
10:25:13.0564 2352 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:25:13.0571 2352 volmgrx - ok
10:25:13.0605 2352 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:25:13.0628 2352 volsnap - ok
10:25:13.0685 2352 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys
10:25:13.0703 2352 vpcbus - ok
10:25:13.0760 2352 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys
10:25:13.0771 2352 vpcnfltr - ok
10:25:13.0810 2352 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys
10:25:13.0824 2352 vpcusb - ok
10:25:13.0871 2352 vpcuxd (63f4e10873beb4124028c6d1a66b0968) C:\Windows\system32\DRIVERS\vpcuxd.sys
10:25:13.0878 2352 vpcuxd - ok
10:25:13.0955 2352 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys
10:25:13.0961 2352 vpcvmm - ok
10:25:14.0007 2352 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
10:25:14.0022 2352 vsmraid - ok
10:25:14.0047 2352 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
10:25:14.0057 2352 vwifibus - ok
10:25:14.0091 2352 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
10:25:14.0096 2352 WacomPen - ok
10:25:14.0146 2352 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:25:14.0157 2352 WANARP - ok
10:25:14.0166 2352 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:25:14.0169 2352 Wanarpv6 - ok
10:25:14.0222 2352 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
10:25:14.0226 2352 Wd - ok
10:25:14.0250 2352 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:25:14.0264 2352 Wdf01000 - ok
10:25:14.0307 2352 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:25:14.0310 2352 WfpLwf - ok
10:25:14.0327 2352 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:25:14.0333 2352 WIMMount - ok
10:25:14.0411 2352 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
10:25:14.0417 2352 WinUsb - ok
10:25:14.0460 2352 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
10:25:14.0467 2352 WmiAcpi - ok
10:25:14.0514 2352 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:25:14.0519 2352 ws2ifsl - ok
10:25:14.0569 2352 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:25:14.0582 2352 WudfPf - ok
10:25:14.0621 2352 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:25:14.0633 2352 WUDFRd - ok
10:25:14.0658 2352 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:25:14.0707 2352 \Device\Harddisk0\DR0 - ok
10:25:14.0714 2352 MBR (0x1B8) (891a5a795784628f5a01eb95b84d278c) \Device\Harddisk1\DR1
10:25:14.0726 2352 \Device\Harddisk1\DR1 - ok
10:25:14.0739 2352 Boot (0x1200) (cd2db1555d3829805cba41760cfd7a05) \Device\Harddisk0\DR0\Partition0
10:25:14.0742 2352 \Device\Harddisk0\DR0\Partition0 - ok
10:25:14.0753 2352 Boot (0x1200) (5108b38b5d5db5e7b8de0ecf2ee15bee) \Device\Harddisk0\DR0\Partition1
10:25:14.0755 2352 \Device\Harddisk0\DR0\Partition1 - ok
10:25:14.0755 2352 ============================================================
10:25:14.0755 2352 Scan finished
10:25:14.0755 2352 ============================================================
10:25:14.0768 3544 Detected object count: 0
10:25:14.0768 3544 Actual detected object count: 0
10:25:29.0903 3592 ============================================================
10:25:29.0903 3592 Scan started
10:25:29.0903 3592 Mode: Manual; SigCheck;
10:25:29.0903 3592 ============================================================
10:25:29.0903 3592 ============================================================
10:25:29.0903 3592 Scan finished
10:25:29.0903 3592 ============================================================
10:25:29.0913 1880 Detected object count: 0
10:25:29.0913 1880 Actual detected object count: 0
10:25:33.0793 3532 ============================================================
10:25:33.0793 3532 Scan started
10:25:33.0793 3532 Mode: Manual; SigCheck;
10:25:33.0793 3532 ============================================================
10:25:33.0793 3532 ============================================================
10:25:33.0793 3532 Scan finished
10:25:33.0793 3532 ============================================================
10:25:33.0804 3232 Detected object count: 0
10:25:33.0804 3232 Actual detected object count: 0
10:25:40.0096 1860 ============================================================
10:25:40.0096 1860 Scan started
10:25:40.0096 1860 Mode: Manual; TDLFS;
10:25:40.0096 1860 ============================================================
10:25:40.0096 1860 ============================================================
10:25:40.0096 1860 Scan finished
10:25:40.0096 1860 ============================================================
10:25:40.0106 2412 Detected object count: 0
10:25:40.0106 2412 Actual detected object count: 0
10:25:47.0025 3984 ============================================================
10:25:47.0025 3984 Scan started
10:25:47.0025 3984 Mode: Manual; SigCheck; TDLFS;
10:25:47.0025 3984 ============================================================
10:25:47.0284 3984 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:25:47.0406 3984 1394ohci - ok
10:25:47.0429 3984 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:25:47.0443 3984 ACPI - ok
10:25:47.0457 3984 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:25:47.0535 3984 AcpiPmi - ok
10:25:47.0565 3984 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
10:25:47.0579 3984 adp94xx - ok
10:25:47.0594 3984 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
10:25:47.0605 3984 adpahci - ok
10:25:47.0619 3984 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
10:25:47.0628 3984 adpu320 - ok
10:25:47.0675 3984 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
10:25:47.0743 3984 AFD - ok
10:25:47.0774 3984 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:25:47.0786 3984 agp440 - ok
10:25:47.0822 3984 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:25:47.0833 3984 aliide - ok
10:25:47.0853 3984 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:25:47.0864 3984 amdide - ok
10:25:47.0883 3984 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
10:25:47.0954 3984 AmdK8 - ok
10:25:47.0978 3984 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
10:25:48.0006 3984 AmdPPM - ok
10:25:48.0034 3984 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:25:48.0047 3984 amdsata - ok
10:25:48.0068 3984 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
10:25:48.0082 3984 amdsbs - ok
10:25:48.0099 3984 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:25:48.0110 3984 amdxata - ok
10:25:48.0165 3984 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:25:48.0312 3984 AppID - ok
10:25:48.0353 3984 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
10:25:48.0361 3984 arc - ok
10:25:48.0377 3984 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
10:25:48.0385 3984 arcsas - ok
10:25:48.0412 3984 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:25:48.0571 3984 AsyncMac - ok
10:25:48.0601 3984 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:25:48.0608 3984 atapi - ok
10:25:48.0737 3984 atikmdag (428e352f7cba6be1dc964dcd29de0eab) C:\Windows\system32\DRIVERS\atikmdag.sys
10:25:48.0861 3984 atikmdag - ok
10:25:48.0900 3984 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys
10:25:48.0958 3984 avgntflt - ok
10:25:48.0977 3984 avipbb (f1c9db5f7b2a56a0b29667d22ba540fc) C:\Windows\system32\DRIVERS\avipbb.sys
10:25:48.0985 3984 avipbb - ok
10:25:49.0027 3984 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
10:25:49.0047 3984 avkmgr - ok
10:25:49.0084 3984 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
10:25:49.0148 3984 b06bdrv - ok
10:25:49.0185 3984 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:25:49.0224 3984 b57nd60a - ok
10:25:49.0262 3984 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:25:49.0321 3984 Beep - ok
10:25:49.0349 3984 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:25:49.0391 3984 blbdrive - ok
10:25:49.0456 3984 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:25:49.0518 3984 bowser - ok
10:25:49.0539 3984 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:25:49.0596 3984 BrFiltLo - ok
10:25:49.0615 3984 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:25:49.0633 3984 BrFiltUp - ok
10:25:49.0654 3984 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:25:49.0712 3984 Brserid - ok
10:25:49.0733 3984 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:25:49.0789 3984 BrSerWdm - ok
10:25:49.0822 3984 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:25:49.0850 3984 BrUsbMdm - ok
10:25:49.0874 3984 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:25:49.0905 3984 BrUsbSer - ok
10:25:49.0932 3984 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
10:25:49.0979 3984 BTHMODEM - ok
10:25:49.0996 3984 catchme - ok
10:25:50.0029 3984 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:25:50.0082 3984 cdfs - ok
10:25:50.0106 3984 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
10:25:50.0155 3984 cdrom - ok
10:25:50.0191 3984 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
10:25:50.0261 3984 circlass - ok
10:25:50.0303 3984 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:25:50.0321 3984 CLFS - ok
10:25:50.0351 3984 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:25:50.0379 3984 CmBatt - ok
10:25:50.0410 3984 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:25:50.0417 3984 cmdide - ok
10:25:50.0462 3984 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
10:25:50.0503 3984 CNG - ok
10:25:50.0528 3984 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
10:25:50.0535 3984 Compbatt - ok
10:25:50.0548 3984 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
10:25:50.0573 3984 CompositeBus - ok
10:25:50.0598 3984 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
10:25:50.0605 3984 crcdisk - ok
10:25:50.0667 3984 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:25:50.0744 3984 DfsC - ok
10:25:50.0772 3984 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:25:50.0800 3984 discache - ok
10:25:50.0817 3984 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
10:25:50.0824 3984 Disk - ok
10:25:50.0863 3984 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:25:50.0910 3984 drmkaud - ok
10:25:50.0967 3984 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:25:51.0004 3984 DXGKrnl - ok
10:25:51.0077 3984 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
10:25:51.0130 3984 ebdrv - ok
10:25:51.0164 3984 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
10:25:51.0177 3984 elxstor - ok
10:25:51.0196 3984 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:25:51.0226 3984 ErrDev - ok
10:25:51.0260 3984 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:25:51.0289 3984 exfat - ok
10:25:51.0306 3984 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:25:51.0349 3984 fastfat - ok
10:25:51.0373 3984 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:25:51.0383 3984 fdc - ok
10:25:51.0402 3984 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:25:51.0410 3984 FileInfo - ok
10:25:51.0439 3984 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:25:51.0482 3984 Filetrace - ok
10:25:51.0504 3984 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
10:25:51.0531 3984 flpydisk - ok
10:25:51.0570 3984 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:25:51.0580 3984 FltMgr - ok
10:25:51.0609 3984 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:25:51.0616 3984 FsDepends - ok
10:25:51.0628 3984 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
10:25:51.0635 3984 Fs_Rec - ok
10:25:51.0660 3984 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:25:51.0671 3984 fvevol - ok
10:25:51.0691 3984 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:25:51.0698 3984 gagp30kx - ok
10:25:51.0754 3984 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:25:51.0772 3984 GEARAspiWDM - ok
10:25:51.0807 3984 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:25:51.0851 3984 hcw85cir - ok
10:25:51.0883 3984 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:25:51.0905 3984 HdAudAddService - ok
10:25:51.0925 3984 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
10:25:51.0958 3984 HDAudBus - ok
10:25:51.0991 3984 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
10:25:52.0034 3984 HidBatt - ok
10:25:52.0063 3984 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
10:25:52.0118 3984 HidBth - ok
10:25:52.0232 3984 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
10:25:52.0310 3984 HidIr - ok
10:25:52.0340 3984 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
10:25:52.0366 3984 HidUsb - ok
10:25:52.0412 3984 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:25:52.0421 3984 HpSAMD - ok
10:25:52.0472 3984 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:25:52.0534 3984 HTTP - ok
10:25:52.0574 3984 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:25:52.0582 3984 hwpolicy - ok
10:25:52.0604 3984 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
10:25:52.0617 3984 i8042prt - ok
10:25:52.0661 3984 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:25:52.0675 3984 iaStorV - ok
10:25:52.0704 3984 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
10:25:52.0713 3984 iirsp - ok
10:25:52.0767 3984 IntcAzAudAddService (76877dd763a2287f58908795f3f5cccb) C:\Windows\system32\drivers\RTKVHD64.sys
10:25:52.0804 3984 IntcAzAudAddService - ok
10:25:52.0826 3984 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:25:52.0833 3984 intelide - ok
10:25:52.0851 3984 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:25:52.0903 3984 intelppm - ok
10:25:52.0960 3984 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:25:53.0027 3984 IpFilterDriver - ok
10:25:53.0067 3984 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:25:53.0077 3984 IPMIDRV - ok
10:25:53.0093 3984 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:25:53.0138 3984 IPNAT - ok
10:25:53.0162 3984 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:25:53.0241 3984 IRENUM - ok
10:25:53.0266 3984 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:25:53.0275 3984 isapnp - ok
10:25:53.0300 3984 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:25:53.0313 3984 iScsiPrt - ok
10:25:53.0336 3984 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
10:25:53.0345 3984 kbdclass - ok
10:25:53.0395 3984 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
10:25:53.0441 3984 kbdhid - ok
10:25:53.0481 3984 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
10:25:53.0494 3984 KSecDD - ok
10:25:53.0533 3984 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
10:25:53.0547 3984 KSecPkg - ok
10:25:53.0572 3984 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:25:53.0629 3984 ksthunk - ok
10:25:53.0655 3984 L8042Kbd (f33c5d79d3273530e1892a0922283a7b) C:\Windows\system32\DRIVERS\L8042Kbd.sys
10:25:53.0662 3984 L8042Kbd - ok
10:25:53.0698 3984 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
10:25:53.0704 3984 LHidFilt - ok
10:25:53.0730 3984 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:25:53.0799 3984 lltdio - ok
10:25:53.0825 3984 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
10:25:53.0831 3984 LMouFilt - ok
10:25:53.0878 3984 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:25:53.0902 3984 LSI_FC - ok
10:25:53.0920 3984 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:25:53.0933 3984 LSI_SAS - ok
10:25:53.0952 3984 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:25:53.0964 3984 LSI_SAS2 - ok
10:25:53.0980 3984 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:25:53.0992 3984 LSI_SCSI - ok
10:25:54.0019 3984 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:25:54.0062 3984 luafv - ok
10:25:54.0087 3984 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
10:25:54.0094 3984 megasas - ok
10:25:54.0139 3984 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
10:25:54.0171 3984 MegaSR - ok
10:25:54.0193 3984 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:25:54.0239 3984 Modem - ok
10:25:54.0260 3984 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:25:54.0288 3984 monitor - ok
10:25:54.0324 3984 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
10:25:54.0348 3984 mouclass - ok
10:25:54.0369 3984 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:25:54.0385 3984 mouhid - ok
10:25:54.0425 3984 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:25:54.0438 3984 mountmgr - ok
10:25:54.0472 3984 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:25:54.0486 3984 mpio - ok
10:25:54.0516 3984 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:25:54.0560 3984 mpsdrv - ok
10:25:54.0604 3984 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:25:54.0686 3984 MRxDAV - ok
10:25:54.0724 3984 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:25:54.0746 3984 mrxsmb - ok
10:25:54.0813 3984 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:25:54.0846 3984 mrxsmb10 - ok
10:25:54.0878 3984 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:25:54.0893 3984 mrxsmb20 - ok
10:25:54.0916 3984 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:25:54.0928 3984 msahci - ok
10:25:54.0974 3984 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:25:54.0988 3984 msdsm - ok
10:25:55.0019 3984 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:25:55.0054 3984 Msfs - ok
10:25:55.0068 3984 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:25:55.0115 3984 mshidkmdf - ok
10:25:55.0146 3984 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:25:55.0153 3984 msisadrv - ok
10:25:55.0171 3984 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:25:55.0240 3984 MSKSSRV - ok
10:25:55.0264 3984 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:25:55.0327 3984 MSPCLOCK - ok
10:25:55.0350 3984 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:25:55.0427 3984 MSPQM - ok
10:25:55.0475 3984 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:25:55.0500 3984 MsRPC - ok
10:25:55.0524 3984 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
10:25:55.0536 3984 mssmbios - ok
10:25:55.0553 3984 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:25:55.0590 3984 MSTEE - ok
10:25:55.0598 3984 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
10:25:55.0627 3984 MTConfig - ok
10:25:55.0650 3984 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:25:55.0658 3984 Mup - ok
10:25:55.0689 3984 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:25:55.0718 3984 NativeWifiP - ok
10:25:55.0805 3984 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:25:55.0837 3984 NDIS - ok
10:25:55.0859 3984 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:25:55.0887 3984 NdisCap - ok
10:25:55.0905 3984 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:25:55.0948 3984 NdisTapi - ok
10:25:55.0982 3984 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:25:56.0048 3984 Ndisuio - ok
10:25:56.0083 3984 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:25:56.0147 3984 NdisWan - ok
10:25:56.0189 3984 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:25:56.0264 3984 NDProxy - ok
10:25:56.0294 3984 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:25:56.0333 3984 NetBIOS - ok
10:25:56.0369 3984 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:25:56.0411 3984 NetBT - ok
10:25:56.0453 3984 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
10:25:56.0461 3984 nfrd960 - ok
10:25:56.0476 3984 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:25:56.0519 3984 Npfs - ok
10:25:56.0548 3984 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:25:56.0595 3984 nsiproxy - ok
10:25:56.0664 3984 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:25:56.0713 3984 Ntfs - ok
10:25:56.0729 3984 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:25:56.0799 3984 Null - ok
10:25:56.0841 3984 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:25:56.0869 3984 nvraid - ok
10:25:56.0892 3984 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:25:56.0903 3984 nvstor - ok
10:25:56.0942 3984 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:25:56.0953 3984 nv_agp - ok
10:25:57.0002 3984 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:25:57.0046 3984 ohci1394 - ok
10:25:57.0107 3984 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
10:25:57.0136 3984 Parport - ok
10:25:57.0174 3984 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
10:25:57.0198 3984 partmgr - ok
10:25:57.0233 3984 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:25:57.0247 3984 pci - ok
10:25:57.0284 3984 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:25:57.0291 3984 pciide - ok
10:25:57.0327 3984 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
10:25:57.0340 3984 pcmcia - ok
10:25:57.0358 3984 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:25:57.0366 3984 pcw - ok
10:25:57.0399 3984 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:25:57.0457 3984 PEAUTH - ok
10:25:57.0524 3984 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:25:57.0551 3984 PptpMiniport - ok
10:25:57.0568 3984 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
10:25:57.0604 3984 Processor - ok
10:25:57.0654 3984 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:25:57.0697 3984 Psched - ok
10:25:57.0726 3984 pwdrvio (41ad0fcf47275a9bc70fa1b56bfd3e23) C:\Windows\system32\pwdrvio.sys
10:25:57.0735 3984 pwdrvio - ok
10:25:57.0759 3984 pwdspio (19cf17076f2524af6746b528584aa3c9) C:\Windows\system32\pwdspio.sys
10:25:57.0767 3984 pwdspio - ok
10:25:57.0813 3984 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
10:25:57.0838 3984 ql2300 - ok
10:25:57.0851 3984 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
10:25:57.0859 3984 ql40xx - ok
10:25:57.0878 3984 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:25:57.0891 3984 QWAVEdrv - ok
10:25:57.0921 3984 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:25:57.0964 3984 RasAcd - ok
10:25:57.0977 3984 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:25:58.0005 3984 RasAgileVpn - ok
10:25:58.0060 3984 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:25:58.0144 3984 Rasl2tp - ok
10:25:58.0156 3984 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:25:58.0198 3984 RasPppoe - ok
10:25:58.0206 3984 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:25:58.0238 3984 RasSstp - ok
10:25:58.0295 3984 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:25:58.0345 3984 rdbss - ok
10:25:58.0367 3984 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:25:58.0379 3984 rdpbus - ok
10:25:58.0395 3984 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:25:58.0445 3984 RDPCDD - ok
10:25:58.0459 3984 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:25:58.0503 3984 RDPENCDD - ok
10:25:58.0513 3984 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:25:58.0541 3984 RDPREFMP - ok
10:25:58.0598 3984 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
10:25:58.0683 3984 RDPWD - ok
10:25:58.0721 3984 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:25:58.0733 3984 rdyboost - ok
10:25:58.0755 3984 regi (4d9afddda0efe97cdbfd3b5fa48b05f6) C:\Windows\system32\drivers\regi.sys
10:25:58.0764 3984 regi - ok
10:25:58.0802 3984 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:25:58.0869 3984 rspndr - ok
10:25:58.0905 3984 RTHDMIAzAudService (4e821c740a675f6d040be41d59a62b1d) C:\Windows\system32\drivers\RtHDMIVX.sys
10:25:58.0913 3984 RTHDMIAzAudService - ok
10:25:58.0938 3984 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
10:25:58.0994 3984 RTL8167 - ok
10:25:59.0025 3984 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:25:59.0035 3984 sbp2port - ok
10:25:59.0081 3984 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:25:59.0146 3984 scfilter - ok
10:25:59.0180 3984 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:25:59.0226 3984 secdrv - ok
10:25:59.0256 3984 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:25:59.0266 3984 Serenum - ok
10:25:59.0282 3984 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:25:59.0318 3984 Serial - ok
10:25:59.0362 3984 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
10:25:59.0371 3984 sermouse - ok
10:25:59.0401 3984 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:25:59.0456 3984 sffdisk - ok
10:25:59.0479 3984 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:25:59.0523 3984 sffp_mmc - ok
10:25:59.0555 3984 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:25:59.0602 3984 sffp_sd - ok
10:25:59.0631 3984 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
10:25:59.0662 3984 sfloppy - ok
10:25:59.0696 3984 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:25:59.0708 3984 SiSRaid2 - ok
10:25:59.0718 3984 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
10:25:59.0727 3984 SiSRaid4 - ok
10:25:59.0768 3984 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:25:59.0837 3984 Smb - ok
10:25:59.0865 3984 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:25:59.0872 3984 spldr - ok
10:25:59.0925 3984 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:25:59.0973 3984 srv - ok
10:26:00.0018 3984 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:26:00.0068 3984 srv2 - ok
10:26:00.0101 3984 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:26:00.0132 3984 srvnet - ok
10:26:00.0180 3984 ST330 (7b6e1e5094a2d0cc884a6be05ff805ec) C:\Windows\system32\DRIVERS\st330.sys
10:26:00.0228 3984 ST330 - ok
10:26:00.0261 3984 StarOpen (e57b778208c783d8debab320c16a1b82) C:\Windows\system32\drivers\StarOpen.sys
10:26:00.0281 3984 StarOpen ( UnsignedFile.Multi.Generic ) - warning
10:26:00.0281 3984 StarOpen - detected UnsignedFile.Multi.Generic (1)
10:26:00.0308 3984 STBUS (ba847a2ebc01fc9ba94e0e9a6ee4b2b7) C:\Windows\system32\DRIVERS\stbus.sys
10:26:00.0343 3984 STBUS - ok
10:26:00.0379 3984 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
10:26:00.0402 3984 stexstor - ok
10:26:00.0435 3984 stppp (d0d21c5084af093f5e7bcd77e57ef3c9) C:\Windows\system32\DRIVERS\stppp.sys
10:26:00.0488 3984 stppp - ok
10:26:00.0515 3984 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
10:26:00.0539 3984 swenum - ok
10:26:00.0649 3984 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
10:26:00.0690 3984 Tcpip - ok
10:26:00.0725 3984 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
10:26:00.0754 3984 TCPIP6 - ok
10:26:00.0799 3984 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:26:00.0901 3984 tcpipreg - ok
10:26:00.0950 3984 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:26:01.0026 3984 TDPIPE - ok
10:26:01.0050 3984 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
10:26:01.0077 3984 TDTCP - ok
10:26:01.0112 3984 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:26:01.0178 3984 tdx - ok
10:26:01.0205 3984 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
10:26:01.0213 3984 TermDD - ok
10:26:01.0264 3984 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:26:01.0328 3984 tssecsrv - ok
10:26:01.0370 3984 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:26:01.0403 3984 TsUsbFlt - ok
10:26:01.0447 3984 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:26:01.0499 3984 tunnel - ok
10:26:01.0534 3984 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
10:26:01.0542 3984 uagp35 - ok
10:26:01.0590 3984 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:26:01.0648 3984 udfs - ok
10:26:01.0688 3984 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:26:01.0696 3984 uliagpkx - ok
10:26:01.0711 3984 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
10:26:01.0721 3984 umbus - ok
10:26:01.0748 3984 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
10:26:01.0773 3984 UmPass - ok
10:26:01.0846 3984 usbbus (5fcc71487888589a9244af54cfefab29) C:\Windows\system32\DRIVERS\lgx64bus.sys
10:26:01.0903 3984 usbbus - ok
10:26:01.0927 3984 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\drivers\usbccgp.sys
10:26:01.0985 3984 usbccgp - ok
10:26:02.0014 3984 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:26:02.0047 3984 usbcir - ok
10:26:02.0080 3984 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
10:26:02.0121 3984 usbehci - ok
10:26:02.0162 3984 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:26:02.0201 3984 usbhub - ok
10:26:02.0237 3984 USBModem (78d551f5b93488b4666f5fc8dd4815f3) C:\Windows\system32\DRIVERS\lgx64modem.sys
10:26:02.0258 3984 USBModem - ok
10:26:02.0295 3984 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
10:26:02.0322 3984 usbohci - ok
10:26:02.0358 3984 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
10:26:02.0392 3984 usbprint - ok
10:26:02.0428 3984 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:26:02.0479 3984 USBSTOR - ok
10:26:02.0498 3984 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
10:26:02.0526 3984 usbuhci - ok
10:26:02.0579 3984 VBoxDrv (6372eaa7cc0e8a2fc4be7b3f2de1ed62) C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:26:02.0594 3984 VBoxDrv - ok
10:26:02.0631 3984 VBoxNetAdp (b996117f6202464a56901cbc13999fe2) C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:26:02.0656 3984 VBoxNetAdp - ok
10:26:02.0694 3984 VBoxNetFlt (89835a2f779979f1d545e40f36d737e0) C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:26:02.0719 3984 VBoxNetFlt - ok
10:26:02.0754 3984 VBoxUSB (718c4301b7b4e45e93f6013d3cf04183) C:\Windows\system32\Drivers\VBoxUSB.sys
10:26:02.0766 3984 VBoxUSB - ok
10:26:02.0811 3984 VBoxUSBMon (f9bd6cff0376d1daddb1cb2f794d9bc7) C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:26:02.0824 3984 VBoxUSBMon - ok
10:26:02.0852 3984 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:26:02.0863 3984 vdrvroot - ok
10:26:02.0895 3984 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:26:02.0927 3984 vga - ok
10:26:02.0949 3984 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:26:02.0995 3984 VgaSave - ok
10:26:03.0030 3984 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:26:03.0039 3984 vhdmp - ok
10:26:03.0068 3984 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:26:03.0076 3984 viaide - ok
10:26:03.0124 3984 VMLiteUSB (ae3a5225aa7f4fc644288505e33d575c) C:\Windows\system32\Drivers\VMLiteUSB.sys
10:26:03.0154 3984 VMLiteUSB - ok
10:26:03.0184 3984 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:26:03.0209 3984 volmgr - ok
10:26:03.0254 3984 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:26:03.0289 3984 volmgrx - ok
10:26:03.0309 3984 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:26:03.0322 3984 volsnap - ok
10:26:03.0349 3984 vpcbus (b4a73ca4ef9a02b9738cea9ad5fe5917) C:\Windows\system32\DRIVERS\vpchbus.sys
10:26:03.0358 3984 vpcbus - ok
10:26:03.0391 3984 vpcnfltr (e675fb2b48c54f09895482e2253b289c) C:\Windows\system32\DRIVERS\vpcnfltr.sys
10:26:03.0445 3984 vpcnfltr - ok
10:26:03.0475 3984 vpcusb (5fb42082b0d19a0268705f1dd343df20) C:\Windows\system32\DRIVERS\vpcusb.sys
10:26:03.0519 3984 vpcusb - ok
10:26:03.0552 3984 vpcuxd (63f4e10873beb4124028c6d1a66b0968) C:\Windows\system32\DRIVERS\vpcuxd.sys
10:26:03.0580 3984 vpcuxd - ok
10:26:03.0628 3984 vpcvmm (207b6539799cc1c112661a9b620dd233) C:\Windows\system32\drivers\vpcvmm.sys
10:26:03.0657 3984 vpcvmm - ok
10:26:03.0679 3984 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
10:26:03.0693 3984 vsmraid - ok
10:26:03.0712 3984 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
10:26:03.0723 3984 vwifibus - ok
10:26:03.0747 3984 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
10:26:03.0769 3984 WacomPen - ok
10:26:03.0811 3984 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:26:03.0849 3984 WANARP - ok
10:26:03.0853 3984 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:26:03.0880 3984 Wanarpv6 - ok
10:26:03.0912 3984 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
10:26:03.0919 3984 Wd - ok
10:26:03.0940 3984 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:26:03.0955 3984 Wdf01000 - ok
10:26:03.0981 3984 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:26:04.0008 3984 WfpLwf - ok
10:26:04.0025 3984 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:26:04.0032 3984 WIMMount - ok
10:26:04.0093 3984 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
10:26:04.0139 3984 WinUsb - ok
10:26:04.0183 3984 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
10:26:04.0212 3984 WmiAcpi - ok
10:26:04.0246 3984 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:26:04.0287 3984 ws2ifsl - ok
10:26:04.0326 3984 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:26:04.0373 3984 WudfPf - ok
10:26:04.0392 3984 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:26:04.0431 3984 WUDFRd - ok
10:26:04.0456 3984 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:26:04.0583 3984 \Device\Harddisk0\DR0 - ok
10:26:04.0590 3984 MBR (0x1B8) (891a5a795784628f5a01eb95b84d278c) \Device\Harddisk1\DR1
10:26:04.0722 3984 \Device\Harddisk1\DR1 - ok
10:26:04.0729 3984 Boot (0x1200) (cd2db1555d3829805cba41760cfd7a05) \Device\Harddisk0\DR0\Partition0
10:26:04.0731 3984 \Device\Harddisk0\DR0\Partition0 - ok
10:26:04.0768 3984 Boot (0x1200) (5108b38b5d5db5e7b8de0ecf2ee15bee) \Device\Harddisk0\DR0\Partition1
10:26:04.0770 3984 \Device\Harddisk0\DR0\Partition1 - ok
10:26:04.0771 3984 ============================================================
10:26:04.0771 3984 Scan finished
10:26:04.0771 3984 ============================================================
10:26:04.0791 0440 Detected object count: 1
10:26:04.0791 0440 Actual detected object count: 1
10:26:36.0286 0440 C:\Windows\system32\drivers\StarOpen.sys - copied to quarantine
10:26:36.0288 0440 StarOpen ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
10:28:36.0244 3828 Deinitialize success
|
|
05.01.2012, 17:11
| #20 |
| | alles began mit Win 7 security 2012Code:
ATTFilter This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.
Rkill was run on 22.12.2011 at 21:04:03.
Operating System: Windows 7 Home Premium
Processes terminated by Rkill or while it was running:
C:\Users\Cassiopeia\AppData\Local\Akamai\netsession_win.exe
C:\Users\Cassiopeia\AppData\Local\Akamai\netsession_win.exe
C:\Users\Cassiopeia\AppData\Local\egu.exe
Rkill completed on 22.12.2011 at 21:04:10.
|
|
05.01.2012, 20:58
| #21 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | alles began mit Win 7 security 2012 Sry nochmal für die grobe Standpauke  aber wir wollen hier wirklich den Usern helfen und auch in zukünftigen Fällen Probleme vermeiden. Gerade mit CF und TDSS-Killer kann man sich schön das System schrotten. Hatte einmal einen Fall { da war mein Hinweis nichts voreilig mit dem TDSS-Killer zu löschen noch nicht bunt und fett genug ( ) } wo der User dann einfach alle Funde löschen ließ und er danach weder Tastatur noch Maus bedienen konnte auch im abgesicherten nichtmehr  Du hast dir offensichtlich "StarOpen" mit dem TDSS-Killer entfernt, wenn ich das richtig sehe ist das ein Kopierschutztreiber für bestimmte Spiele. Wunder dich also nicht, wenn manche Spiele oder Programme nicht mehr laufen sollten. Mach einen OTL-Fix, beende alle evtl. geöffneten Programme, auch Virenscanner deaktivieren (!), starte OTL und kopiere folgenden Text in die "Custom Scan/Fixes" Box (unten in OTL): (das ":OTL" muss mitkopiert werden!!!) Code:
ATTFilter :OTL
FF - prefs.js..browser.search.defaultenginename: "Web Search"
FF - prefs.js..browser.search.order.1: "Web Search"
FF - prefs.js..browser.search.selectedEngine: "Web Search"
FF - prefs.js..browser.startup.homepage: "http://www.searchqu.com/406"
FF - prefs.js..keyword.URL: "http://www.searchqu.com/web?src=ffb&systemid=406&q="
O2:64bit: - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-8287-79A187E26987} - No CLSID value found.
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:430C6D84
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:DFC5A2B2
:Commands
[emptytemp]
[resethosts]
Das Logfile müsste geöffnet werden, wenn Du nach dem Fixen auf ok klickst, poste das bitte. Evtl. wird der Rechner neu gestartet. Die mit diesem Script gefixten Einträge, Dateien und Ordner werden zur Sicherheit nicht vollständig gelöscht, es wird eine Sicherheitskopie auf der Systempartition im Ordner "_OTL" erstellt. Hinweis: Das obige Script ist nur für diesen einen User in dieser Situtation erstellt worden. Es ist auf keinen anderen Rechner portierbar und darf nicht anderweitig verwandt werden, da es das System nachhaltig schädigen kann!
__________________ --> alles began mit Win 7 security 2012 |
|
05.01.2012, 22:49
| #22 |
| | alles began mit Win 7 security 2012 Einen schönen guten Abend Arne, Code:
ATTFilter All processes killed
========== OTL ==========
Prefs.js: "Web Search" removed from browser.search.defaultenginename
Prefs.js: "Web Search" removed from browser.search.order.1
Prefs.js: "Web Search" removed from browser.search.selectedEngine
Prefs.js: "hxxp://www.searchqu.com/406" removed from browser.startup.homepage
Prefs.js: "hxxp://www.searchqu.com/web?src=ffb&systemid=406&q=" removed from keyword.URL
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422B-ADF8-83D1E48CC825}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{A057A204-BACC-4D26-8287-79A187E26987} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A057A204-BACC-4D26-8287-79A187E26987}\ not found.
ADS C:\ProgramData\TEMP:430C6D84 deleted successfully.
ADS C:\ProgramData\TEMP:DFC5A2B2 deleted successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Cassiopeia
->Temp folder emptied: 681591614 bytes
->Temporary Internet Files folder emptied: 279185235 bytes
->Java cache emptied: 17336232 bytes
->FireFox cache emptied: 35326256 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 4624 bytes
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Public
->Temp folder emptied: 0 bytes
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 25986 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 105634954 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50434 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 734 bytes
RecycleBin emptied: 0 bytes
Total Files Cleaned = 1.067,00 mb
C:\Windows\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
OTL by OldTimer - Version 3.2.31.0 log created on 01052012_223347
Files\Folders moved on Reboot...
C:\Users\Cassiopeia\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
Registry entries deleted on Reboot...
Martin. |
|
05.01.2012, 22:52
| #23 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | alles began mit Win 7 security 2012 Downloade dir bitte aswMBR.exe und speichere die Datei auf deinem Desktop.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
05.01.2012, 23:56
| #24 |
| | alles began mit Win 7 security 2012Code:
ATTFilter aswMBR version 0.9.9.1156 Copyright(c) 2011 AVAST Software
Run date: 2012-01-05 23:25:18
-----------------------------
23:25:18.843 OS Version: Windows x64 6.1.7601 Service Pack 1
23:25:18.843 Number of processors: 4 586 0x503
23:25:18.844 ComputerName: CASSIOPEIA-PC UserName: Cassiopeia
23:25:22.415 Initialize success
23:25:22.481 AVAST engine defs: 12010501
23:25:31.813 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
23:25:31.814 Disk 0 Vendor: ST3500418AS CC38 Size: 476940MB BusType: 3
23:25:31.817 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-2
23:25:31.819 Disk 1 Vendor: WDC_WD5000AAJS-00YFA0 12.01C02 Size: 476940MB BusType: 3
23:25:31.868 Disk 0 MBR read successfully
23:25:31.869 Disk 0 MBR scan
23:25:31.876 Disk 0 Windows 7 default MBR code
23:25:31.885 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
23:25:31.906 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 476838 MB offset 206848
23:25:31.926 Service scanning
23:25:33.226 Modules scanning
23:25:33.234 Disk 0 trace - called modules:
23:25:33.256 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
23:25:33.267 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a13060]
23:25:33.275 3 CLASSPNP.SYS[fffff8800195543f] -> nt!IofCallDriver -> [0xfffffa8004799d10]
23:25:33.282 5 ACPI.sys[fffff88000f9a7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80047aa060]
23:25:34.749 AVAST engine scan C:\Windows
23:25:41.616 AVAST engine scan C:\Windows\system32
23:26:59.486 AVAST engine scan C:\Windows\system32\drivers
23:27:09.291 AVAST engine scan C:\Users\Cassiopeia
23:53:15.101 AVAST engine scan C:\ProgramData
23:54:21.823 Scan finished successfully
23:54:52.811 Disk 0 MBR has been saved successfully to "C:\Users\Cassiopeia\Downloads\Viren-killer\MBR.dat"
23:54:52.816 The log file has been saved successfully to "C:\Users\Cassiopeia\Downloads\Viren-killer\aswMBR-12-01-05-2.txt"
|
|
06.01.2012, 11:19
| #25 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | alles began mit Win 7 security 2012 Sieht ok aus. Mach bitte zur Kontrolle Vollscans mit Malwarebytes und SUPERAntiSpyware und poste die Logs. Denk dran beide Tools zu updaten vor dem Scan!! Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt: ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2012, 12:48
| #26 |
| | alles began mit Win 7 security 2012 Hallo Arne, das ist das Log vom Superspyware. Code:
ATTFilter SUPERAntiSpyware Scan Log
hxxp://www.superantispyware.com
Generated 01/06/2012 at 12:42 PM
Application Version : 5.0.1142
Core Rules Database Version : 8107
Trace Rules Database Version: 5919
Scan type : Complete Scan
Total Scan Time : 00:46:23
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Administrator
Memory items scanned : 787
Memory threats detected : 0
Registry items scanned : 70643
Registry threats detected : 0
File items scanned : 73653
File threats detected : 118
Adware.Tracking Cookie
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\L0WK3H1L.txt [ /zanox.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\J4PE01SX.txt [ /www.counter.gd ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\ILOZL6EW.txt [ /www.belstat.be ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\W3YT6W74.txt [ /ad2.adfarm1.adition.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\EIH3O1IH.txt [ /de.sitestat.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\XO3DFJ3S.txt [ /ad.yieldmanager.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\PZA9CYT9.txt [ /imrworldwide.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\7T4HHGET.txt [ /ad.ad-srv.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\IGQ4G9NP.txt [ /adx.chip.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\RMJDD3R5.txt [ /tribalfusion.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\16LYPS8W.txt [ /www.qsstats.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\8EF42QQU.txt [ /ads.webme.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\8I16T3YQ.txt [ /adfarm1.adition.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\PFEJ472O.txt [ /www.qsstats.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\QFPROYWF.txt [ /ads.bleepingcomputer.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\LMKZA6MM.txt [ /xiti.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\KE1KIJ7O.txt [ /adtech.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\IK9Q8X1V.txt [ /www.googleadservices.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\SL9W2YVB.txt [ /dyntracker.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\3DI4KWVE.txt [ /count.asnetworks.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\5PO5HN49.txt [ /amazon-adsystem.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\GUGA3EE1.txt [ /asknetag.112.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\FE0ITLFG.txt [ /ads.proz.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\L4X1G212.txt [ /yahoogroups.112.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\CGX2SRIR.txt [ /ads.snautz.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\SEM01IAU.txt [ /legolas-media.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\FRQHWVL2.txt [ /findix.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\J4U5HY4E.txt [ /trafficmp.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\426ND3ZC.txt [ /toplist.cz ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\1KYZE774.txt [ /revsci.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\QARNNU9C.txt [ /gfi.122.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\T0QOYAMD.txt [ /dmtracker.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\31NREC42.txt [ /ads.quartermedia.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\GPZT3RG5.txt [ /webmasterplan.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\NNAMR4ZS.txt [ /serving-sys.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\QQ636BFV.txt [ /o1.qnsr.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\SD8J78LL.txt [ /www.etracker.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\NK1HBNAH.txt [ /www.counter-gratis.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\BU1KFIWZ.txt [ /qnsr.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\F9QVEZ94.txt [ /invitemedia.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\YT1SR6G8.txt [ /livestat.derstandard.at ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\Y9H5AAKT.txt [ /www.googleadservices.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\C2JTJPCI.txt [ /tracking.mlsat02.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\EIRN70G9.txt [ /stat.onestat.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\JSUUOD0P.txt [ /gmeurope.112.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\QK8X9D4U.txt [ /count.primawebtools.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\E6TOAQMK.txt [ /diegesundheitsexperten.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\U89MT4P2.txt [ /mycounter.tinycounter.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\TW5WF5TU.txt [ /microsoftsto.112.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\B6H4YJ1O.txt [ /ads.leitmotiv.de ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\B64QTLI9.txt [ /ad.zanox.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\JZ6KCNYQ.txt [ /e-2dj6wjmyqmdpgep.stats.esomniture.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\YTU139KI.txt [ /kaspersky.122.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\3PHXDVXP.txt [ /wlw.122.2o7.net ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\Y21DGSYD.txt [ /media6degrees.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\5NO1FY5O.txt [ /de.sitestat.com ]
C:\Users\Cassiopeia\AppData\Roaming\Microsoft\Windows\Cookies\RYLI8ZK9.txt [ /ad.hyperactive.de ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\WA73MCMP.txt [ Cookie:cassiopeia@zanox.com/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\I8AJWEZA.txt [ Cookie:cassiopeia@track.effiliation.com/servlet/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\CCMNFMVC.txt [ Cookie:cassiopeia@revsci.net/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\5XY8Q4S8.txt [ Cookie:cassiopeia@ads.quartermedia.de/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\AJLSZSOS.txt [ Cookie:cassiopeia@adx.chip.de/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\8EZW6POO.txt [ Cookie:cassiopeia@eas.apm.emediate.eu/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\C86Y6T3Q.txt [ Cookie:cassiopeia@amazon-adsystem.com/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\H9XR5EJ6.txt [ Cookie:cassiopeia@track.effiliation.com/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\F8OLU6Y8.txt [ Cookie:cassiopeia@tracking.mlsat02.de/tmobile/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\0BNQ2HJO.txt [ Cookie:cassiopeia@clickfuse.com/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\WHPH6UHV.txt [ Cookie:cassiopeia@im.banner.t-online.de/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\N74XAUQ5.txt [ Cookie:cassiopeia@collective-media.net/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\FAZ22OOD.txt [ Cookie:cassiopeia@legolas-media.com/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\LGZV20VK.txt [ Cookie:cassiopeia@liveperson.net/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\3E94O9ER.txt [ Cookie:cassiopeia@count.primawebtools.de/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\9VQCJH4U.txt [ Cookie:cassiopeia@xiti.com/ ]
C:\USERS\CASSIOPEIA\AppData\Roaming\Microsoft\Windows\Cookies\Low\HS83NB91.txt [ Cookie:cassiopeia@liveperson.net/hc/61298727 ]
C:\USERS\CASSIOPEIA\Cookies\L0WK3H1L.txt [ Cookie:cassiopeia@zanox.com/ ]
C:\USERS\CASSIOPEIA\Cookies\J4PE01SX.txt [ Cookie:cassiopeia@www.counter.gd/ ]
C:\USERS\CASSIOPEIA\Cookies\ILOZL6EW.txt [ Cookie:cassiopeia@www.belstat.be/ ]
C:\USERS\CASSIOPEIA\Cookies\W3YT6W74.txt [ Cookie:cassiopeia@ad2.adfarm1.adition.com/ ]
C:\USERS\CASSIOPEIA\Cookies\EIH3O1IH.txt [ Cookie:cassiopeia@de.sitestat.com/idgcom-de/pcwelt/ ]
C:\USERS\CASSIOPEIA\Cookies\XO3DFJ3S.txt [ Cookie:cassiopeia@ad.yieldmanager.com/ ]
C:\USERS\CASSIOPEIA\Cookies\IGQ4G9NP.txt [ Cookie:cassiopeia@adx.chip.de/ ]
C:\USERS\CASSIOPEIA\Cookies\RMJDD3R5.txt [ Cookie:cassiopeia@tribalfusion.com/ ]
C:\USERS\CASSIOPEIA\Cookies\16LYPS8W.txt [ Cookie:cassiopeia@www.qsstats.com/dcs3h4t8400000kvxm3q670wa_4v4y ]
C:\USERS\CASSIOPEIA\Cookies\PFEJ472O.txt [ Cookie:cassiopeia@www.qsstats.com/ ]
C:\USERS\CASSIOPEIA\Cookies\LMKZA6MM.txt [ Cookie:cassiopeia@xiti.com/ ]
C:\USERS\CASSIOPEIA\Cookies\KE1KIJ7O.txt [ Cookie:cassiopeia@adtech.de/ ]
C:\USERS\CASSIOPEIA\Cookies\SL9W2YVB.txt [ Cookie:cassiopeia@dyntracker.com/ ]
C:\USERS\CASSIOPEIA\Cookies\3DI4KWVE.txt [ Cookie:cassiopeia@count.asnetworks.de/ ]
C:\USERS\CASSIOPEIA\Cookies\5PO5HN49.txt [ Cookie:cassiopeia@amazon-adsystem.com/ ]
C:\USERS\CASSIOPEIA\Cookies\L4X1G212.txt [ Cookie:cassiopeia@yahoogroups.112.2o7.net/ ]
C:\USERS\CASSIOPEIA\Cookies\SEM01IAU.txt [ Cookie:cassiopeia@legolas-media.com/ ]
C:\USERS\CASSIOPEIA\Cookies\FRQHWVL2.txt [ Cookie:cassiopeia@findix.com/ ]
C:\USERS\CASSIOPEIA\Cookies\J4U5HY4E.txt [ Cookie:cassiopeia@trafficmp.com/ ]
C:\USERS\CASSIOPEIA\Cookies\1KYZE774.txt [ Cookie:cassiopeia@revsci.net/ ]
C:\USERS\CASSIOPEIA\Cookies\QARNNU9C.txt [ Cookie:cassiopeia@gfi.122.2o7.net/ ]
C:\USERS\CASSIOPEIA\Cookies\T0QOYAMD.txt [ Cookie:cassiopeia@dmtracker.com/ ]
C:\USERS\CASSIOPEIA\Cookies\31NREC42.txt [ Cookie:cassiopeia@ads.quartermedia.de/ ]
C:\USERS\CASSIOPEIA\Cookies\QQ636BFV.txt [ Cookie:cassiopeia@o1.qnsr.com/ ]
C:\USERS\CASSIOPEIA\Cookies\SD8J78LL.txt [ Cookie:cassiopeia@www.etracker.de/ ]
C:\USERS\CASSIOPEIA\Cookies\NK1HBNAH.txt [ Cookie:cassiopeia@www.counter-gratis.com/ ]
C:\USERS\CASSIOPEIA\Cookies\BU1KFIWZ.txt [ Cookie:cassiopeia@qnsr.com/ ]
C:\USERS\CASSIOPEIA\Cookies\YT1SR6G8.txt [ Cookie:cassiopeia@livestat.derstandard.at/ ]
C:\USERS\CASSIOPEIA\Cookies\C2JTJPCI.txt [ Cookie:cassiopeia@tracking.mlsat02.de/tmobile/ ]
C:\USERS\CASSIOPEIA\Cookies\EIRN70G9.txt [ Cookie:cassiopeia@stat.onestat.com/ ]
C:\USERS\CASSIOPEIA\Cookies\JSUUOD0P.txt [ Cookie:cassiopeia@gmeurope.112.2o7.net/ ]
C:\USERS\CASSIOPEIA\Cookies\QK8X9D4U.txt [ Cookie:cassiopeia@count.primawebtools.de/ ]
C:\USERS\CASSIOPEIA\Cookies\E6TOAQMK.txt [ Cookie:cassiopeia@diegesundheitsexperten.com/ ]
C:\USERS\CASSIOPEIA\Cookies\TW5WF5TU.txt [ Cookie:cassiopeia@microsoftsto.112.2o7.net/ ]
C:\USERS\CASSIOPEIA\Cookies\JZ6KCNYQ.txt [ Cookie:cassiopeia@e-2dj6wjmyqmdpgep.stats.esomniture.com/ ]
C:\USERS\CASSIOPEIA\Cookies\YTU139KI.txt [ Cookie:cassiopeia@kaspersky.122.2o7.net/ ]
C:\USERS\CASSIOPEIA\Cookies\3PHXDVXP.txt [ Cookie:cassiopeia@wlw.122.2o7.net/ ]
C:\USERS\CASSIOPEIA\Cookies\5NO1FY5O.txt [ Cookie:cassiopeia@de.sitestat.com/otto-eu/at/ ]
Trojan.Agent/Gen-Cryptor[Egun]
C:\USERS\CASSIOPEIA\DOWNLOADS\POLARIS\POLARISATOR.EXE
ZIP ARCHIVE( C:\USERS\CASSIOPEIA\DOWNLOADS\POLARIS.ZIP )/POLARISATOR.EXE
C:\USERS\CASSIOPEIA\DOWNLOADS\POLARIS.ZIP
Trojan.Agent/Gen-Koobface[Bonkers]
C:\USERS\CASSIOPEIA\WEBS\COME-IN-BENGAL\MEMBERSONLY\CRYPT\HTCRYPT.EXE
ZIP ARCHIVE( C:\USERS\CASSIOPEIA\WEBS\COME-IN-BENGAL\MEMBERSONLY\HTCRYPT.ZIP )/HTCRYPT.EXE
C:\USERS\CASSIOPEIA\WEBS\COME-IN-BENGAL\MEMBERSONLY\HTCRYPT.ZIP
Im Grunde sind keine Spiele auf unserem PC installiert. Bis auf MahjongChamp. Der MSFlighsim war mal drauf, aber das ist schon eine Weile her. Corel WinDVD 9 lässt sich mit Protexis schützen, soweit ich das richtig im Kopf habe. Von daher ist mir nicht ganz begreiflich warum StarOpen auf meinem Rechner ist. Viele Grüße, Martin. Geändert von Martin_Oskar (06.01.2012 um 13:08 Uhr) |
|
06.01.2012, 15:01
| #27 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | alles began mit Win 7 security 2012Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
06.01.2012, 22:18
| #28 |
| | alles began mit Win 7 security 2012 Okay Arne, hier der Log von Malwarebytes: Code:
ATTFilter Malwarebytes Anti-Malware 1.60.0.1800 www.malwarebytes.org Datenbank Version: v2012.01.06.02 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Cassiopeia :: CASSIOPEIA-PC [Administrator] 06.01.2012 19:47:27 mbam-log-2012-01-06 (22-16-53).txt Art des Suchlaufs: Vollständiger Suchlauf Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 317221 Laufzeit: 41 Minute(n), Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 1 HKCU\Software\Visicom Media (Adware.KeenValue) -> Keine Aktion durchgeführt. Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Martin. |
|
07.01.2012, 12:01
| #29 |
| | alles began mit Win 7 security 2012 So, noch der Scan vom ESET: Code:
ATTFilter C:\Users\Cassiopeia\Downloads\cdburnerxp_setup_4.3.8.2523.exe Win32/OpenCandy application
C:\Users\Cassiopeia\Downloads\filme aus dem www downladen\OrbitSetup4.1.02.exe Win32/OpenCandy application
C:\Users\Cassiopeia\Downloads\installed gut\cdbxp_setup_4.3.7.2356.exe Win32/OpenCandy application
F:\CASSIOPEIA-PC\Backup Set 2011-04-03 170207\Backup Files 2011-04-03 170207\Backup files 11.zip multiple threats
Martin. |
|
07.01.2012, 15:33
| #30 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | alles began mit Win 7 security 2012 Sieht eigentlich soweit ok aus. Aber wir sollten mal klären was das hier ist: Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu alles began mit Win 7 security 2012 |
| anhang, avast, avira, befall, bringe, browser, check, einsetzen, ergebnis, ergebnisse, gemeinde, gestartet, heute, holen, konnte, laufe, laufen, liebe, opera, opera browser, security, setzen, systems, weihnachten, win |
Linear-Darstellung
