Hallo cosinus :pfeiff:
ich bin doch schon dabei, alles andere zu posten, leider ist TDSS viel zu lang.
Außerdem weiß ich nicht, wie ich ein Bild anhängen kann. Alle Ergebnisse habe ich leider nicht mehr.
3. Teil TDSS: Code:
21:02:57.0693 0x0de8 nmwcd - ok
21:02:57.0724 0x0de8 [ 025C54F9F8C8BC1894EA38529C742C54, 176CF78E6202B020551E25AC9D05C6BF7782A8D24A93C545CEAD9B16437A528C ] nmwcdc C:\Windows\system32\drivers\ccdcmbo.sys
21:02:57.0786 0x0de8 nmwcdc - ok
21:02:57.0833 0x0de8 [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:02:57.0880 0x0de8 Npfs - ok
21:02:57.0911 0x0de8 [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi C:\Windows\system32\nsisvc.dll
21:02:57.0958 0x0de8 nsi - ok
21:02:58.0005 0x0de8 [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:02:58.0052 0x0de8 nsiproxy - ok
21:02:58.0270 0x0de8 [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:02:58.0364 0x0de8 Ntfs - ok
21:02:58.0410 0x0de8 [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null C:\Windows\system32\drivers\Null.sys
21:02:58.0488 0x0de8 Null - ok
21:02:58.0520 0x0de8 [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:02:58.0535 0x0de8 nvraid - ok
21:02:58.0566 0x0de8 [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:02:58.0582 0x0de8 nvstor - ok
21:02:54.0510 0x0de8 MSKSSRV - ok
21:02:54.0542 0x0de8 [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:02:54.0588 0x0de8 MSPCLOCK - ok
21:02:54.0604 0x0de8 [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:02:54.0666 0x0de8 MSPQM - ok
21:02:54.0698 0x0de8 [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:02:54.0713 0x0de8 MsRPC - ok
21:02:54.0807 0x0de8 [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:02:54.0822 0x0de8 mssmbios - ok
21:02:54.0869 0x0de8 [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:02:54.0932 0x0de8 MSTEE - ok
21:02:54.0978 0x0de8 [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:02:55.0041 0x0de8 MTConfig - ok
21:02:55.0072 0x0de8 [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup C:\Windows\system32\Drivers\mup.sys
21:02:55.0088 0x0de8 Mup - ok
21:02:55.0212 0x0de8 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent C:\Windows\system32\qagentRT.dll
21:02:51.0671 0x0de8 lmhosts - ok
21:02:51.0765 0x0de8 [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:02:51.0780 0x0de8 LSI_FC - ok
21:02:51.0796 0x0de8 [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:02:51.0812 0x0de8 LSI_SAS - ok
21:02:51.0858 0x0de8 [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:02:51.0890 0x0de8 LSI_SAS2 - ok
21:02:51.0921 0x0de8 [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:02:51.0952 0x0de8 LSI_SCSI - ok
21:02:51.0999 0x0de8 [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv C:\Windows\system32\drivers\luafv.sys
21:02:52.0061 0x0de8 luafv - ok
21:02:52.0092 0x0de8 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:02:52.0139 0x0de8 Mcx2Svc - ok
21:02:52.0170 0x0de8 [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:02:52.0186 0x0de8 megasas - ok
21:02:52.0217 0x0de8 [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:02:52.0248 0x0de8 MegaSR - ok
21:02:52.0264 0x0de8 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS C:\Windows\system32\mmcss.dll
21:02:52.0311 0x0de8 MMCSS - ok
21:02:52.0342 0x0de8 [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem C:\Windows\system32\drivers\modem.sys
21:02:52.0373 0x0de8 Modem - ok
21:02:52.0420 0x0de8 [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:02:52.0498 0x0de8 monitor - ok
21:02:52.0623 0x0de8 [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:02:52.0638 0x0de8 mouclass - ok
21:02:52.0670 0x0de8 [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:02:52.0716 0x0de8 mouhid - ok
21:02:52.0794 0x0de8 [ BAD9C0366134BA181514E9263C8CE606, 7976B2D3DC283ACDBC21C7D197C0E2A650E6555F6569283302766B17D736BDB8 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:02:52.0810 0x0de8 mountmgr - ok
21:02:52.0904 0x0de8 [ 5961C5D8EDD2E2A3B99F1782AE1AC21F, C383A4724A335737C4C7C3211AFCFB82D373267EC634BC47EE078A1C66E1F62A ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:02:52.0935 0x0de8 MozillaMaintenance - ok
21:02:52.0997 0x0de8 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio C:\Windows\system32\drivers\mpio.sys
21:02:53.0013 0x0de8 mpio - ok
21:02:53.0060 0x0de8 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:02:53.0091 0x0de8 mpsdrv - ok
21:02:53.0169 0x0de8 [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:02:53.0262 0x0de8 MpsSvc - ok
21:02:53.0356 0x0de8 [ 6430A074F6E32176FBEF2DEB110AE952, 0161B3CBCF427F5F9C47EDBA7F6848D9D6EB58B7EF203881E0D288B5ABAEEB98 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:02:53.0496 0x0de8 MRxDAV - ok
21:02:53.0559 0x0de8 [ E900BD16B9EE8F09609D7FBE2027B376, CD71FD868B58EA717499E8D30C78E025DDBCBADA4A7174C4A2FA6E88331AE5E5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:02:53.0637 0x0de8 mrxsmb - ok
4. Teil TDSS: Code:
21:02:53.0652 0x0de8 [ 34F71B69DD2875AF07C4DDF19563C457, C679477EFCF2ED385B89F5BE8739D508A6147CE954419EC2F7F4ECA4A6543CAF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:02:53.0715 0x0de8 mrxsmb10 - ok
21:02:53.0746 0x0de8 [ 14063258261AA807DAADC9233422A5E5, 685E5E4374F59CA500242918D2D887798EECAE5E7C31F05ABACA10F86E788EAD ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:02:53.0793 0x0de8 mrxsmb20 - ok
21:02:53.0855 0x0de8 [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci C:\Windows\system32\drivers\msahci.sys
21:02:53.0871 0x0de8 msahci - ok
21:02:53.0918 0x0de8 [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:02:53.0933 0x0de8 msdsm - ok
21:02:53.0964 0x0de8 [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC C:\Windows\System32\msdtc.exe
21:02:54.0027 0x0de8 MSDTC - ok
21:02:54.0074 0x0de8 [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:02:54.0136 0x0de8 Msfs - ok
21:02:54.0152 0x0de8 [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:02:54.0214 0x0de8 mshidkmdf - ok
21:02:54.0276 0x0de8 [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:02:54.0308 0x0de8 msisadrv - ok
21:02:54.0354 0x0de8 [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:02:54.0401 0x0de8 MSiSCSI - ok
21:02:54.0417 0x0de8 msiserver - ok
21:02:54.0432 0x0de8 [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:02:55.0322 0x0de8 napagent - ok
21:02:55.0415 0x0de8 [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:02:55.0493 0x0de8 NativeWifiP - ok
21:02:55.0571 0x0de8 [ 9804FB2E46077F2977552347DFCA7E05, A34B703462C6998AB2B3EA6389F4B89616CDC257D44C400C92663E6FB4A8F196 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:02:55.0634 0x0de8 NDIS - ok
21:02:55.0665 0x0de8 [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:02:55.0727 0x0de8 NdisCap - ok
21:02:55.0758 0x0de8 [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:02:55.0790 0x0de8 NdisTapi - ok
21:02:55.0821 0x0de8 [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:02:55.0868 0x0de8 Ndisuio - ok
21:02:55.0883 0x0de8 [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:02:55.0946 0x0de8 NdisWan - ok
21:02:56.0008 0x0de8 [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:02:56.0164 0x0de8 NDProxy - ok
21:02:56.0289 0x0de8 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:02:56.0320 0x0de8 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:02:56.0320 0x0de8 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:02:56.0398 0x0de8 [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:02:56.0460 0x0de8 NetBIOS - ok
21:02:56.0523 0x0de8 [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:02:56.0585 0x0de8 NetBT - ok
21:02:56.0648 0x0de8 [ 7884C1EDF5BD21749C206E8C4B5DB409, 620638756A5EE6EA933A7A4C94E7DD2537E2A7345BBEFF72D28271C0174D10A2 ] Netlogon C:\Windows\system32\lsass.exe
21:02:56.0679 0x0de8 Netlogon - ok
21:02:56.0741 0x0de8 [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman C:\Windows\System32\netman.dll
21:02:56.0788 0x0de8 Netman - ok
21:02:56.0928 0x0de8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:02:56.0944 0x0de8 NetMsmqActivator - ok
21:02:57.0038 0x0de8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:02:57.0053 0x0de8 NetPipeActivator - ok
21:02:57.0100 0x0de8 [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm C:\Windows\System32\netprofm.dll
21:02:57.0178 0x0de8 netprofm - ok
21:02:57.0240 0x0de8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:02:57.0272 0x0de8 NetTcpActivator - ok
21:02:57.0303 0x0de8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:02:57.0318 0x0de8 NetTcpPortSharing - ok
21:02:57.0350 0x0de8 [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:02:57.0365 0x0de8 nfrd960 - ok
21:02:57.0443 0x0de8 [ F115C5CD29E512F18BD7138A094B77E5, 90C2CE8B256EE9AABF674ADDE7F85E91DAF48EA368452D03C187A4AE027D4E39 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:02:57.0490 0x0de8 NlaSvc - ok
21:02:57.0615 0x0de8 [ B0A67DE1A128389AEA4D42C5A56215FD, BE70916D507622991408C8256934819B8096A7FDAF2C7BA362AD5786E30F647C ] nmwcd C:\Windows\system32\drivers\ccdcmb.sys
21:02:58.0613 0x0de8 [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:02:58.0629 0x0de8 nv_agp - ok
21:02:58.0660 0x0de8 [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:02:58.0707 0x0de8 ohci1394 - ok
21:02:58.0785 0x0de8 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:02:58.0847 0x0de8 p2pimsvc - ok
21:02:58.0894 0x0de8 [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc C:\Windows\system32\p2psvc.dll
21:02:58.0941 0x0de8 p2psvc - ok
21:02:59.0003 0x0de8 [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:02:59.0050 0x0de8 Parport - ok
21:02:59.0081 0x0de8 [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:02:59.0112 0x0de8 partmgr - ok
21:02:59.0144 0x0de8 [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
21:02:59.0175 0x0de8 Parvdm - ok
21:02:59.0222 0x0de8 [ 52954BE460EC6C54C0ACB2B3B126FFC6, 9F9878EC5ABC74C5A8EE8E1D940F0934F081895B07D844F42F80A638FE713F7B ] PcaSvc C:\Windows\System32\pcasvc.dll
21:02:59.0284 0x0de8 PcaSvc - ok
21:02:59.0315 0x0de8 [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci C:\Windows\system32\drivers\pci.sys
21:02:59.0346 0x0de8 pci - ok
21:02:59.0424 0x0de8 [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide C:\Windows\system32\drivers\pciide.sys
21:02:59.0456 0x0de8 pciide - ok
21:02:59.0502 0x0de8 [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:02:59.0549 0x0de8 pcmcia - ok
21:02:59.0580 0x0de8 [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw C:\Windows\system32\drivers\pcw.sys
21:02:59.0596 0x0de8 pcw - ok
21:02:59.0690 0x0de8 [ AEBC369F7DC72AB3F5B9BDF34FA0D43F, 2A819154AC6C23E97C583D90B4D0C112188B7AE9D8D9B3F88811BFCED124E551 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:02:59.0768 0x0de8 PEAUTH - ok
21:02:59.0970 0x0de8 [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla C:\Windows\system32\pla.dll
21:03:00.0126 0x0de8 pla - ok
21:03:00.0204 0x0de8 [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:03:00.0314 0x0de8 PlugPlay - ok
21:03:00.0407 0x0de8 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:03:00.0407 0x0de8 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
21:03:00.0407 0x0de8 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:03:00.0423 0x0de8 Force sending object to P2P due to detect: Pml Driver HPZ12
21:03:00.0423 0x0de8 Object send P2P result: false
21:03:00.0470 0x0de8 [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:03:00.0516 0x0de8 PNRPAutoReg - ok
21:03:00.0548 0x0de8 [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:03:00.0579 0x0de8 PNRPsvc - ok
21:03:00.0672 0x0de8 [ E1BDA4A545CB54889CC24DF72A024E75, D7A005CAE89485ED3FE805A84F6A578BFFE6483D30B9C8E1732C5F41832D48CA ] Point32 C:\Windows\system32\DRIVERS\point32.sys
21:03:00.0688 0x0de8 Point32 - ok
21:03:00.0750 0x0de8 [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:03:00.0797 0x0de8 PolicyAgent - ok
21:03:00.0844 0x0de8 [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power C:\Windows\system32\umpo.dll
21:03:00.0891 0x0de8 Power - ok
21:03:00.0953 0x0de8 [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:03:01.0016 0x0de8 PptpMiniport - ok
21:03:01.0062 0x0de8 [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:03:01.0109 0x0de8 Processor - ok
21:03:01.0156 0x0de8 [ FD9692A3D31E021207D3C2A9DDDC2BE3, 5295EFAD9BD4B59996935A41825392C12A4C968D161BEEA37797F90AF8E54229 ] ProfSvc C:\Windows\system32\profsvc.dll
21:03:01.0203 0x0de8 ProfSvc - ok
21:03:01.0250 0x0de8 [ 7884C1EDF5BD21749C206E8C4B5DB409, 620638756A5EE6EA933A7A4C94E7DD2537E2A7345BBEFF72D28271C0174D10A2 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:03:01.0281 0x0de8 ProtectedStorage - ok
21:03:01.0343 0x0de8 [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:03:01.0406 0x0de8 Psched - ok
21:03:01.0593 0x0de8 [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:03:01.0686 0x0de8 ql2300 - ok
21:03:01.0718 0x0de8 [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:03:01.0749 0x0de8 ql40xx - ok
21:03:01.0796 0x0de8 [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE C:\Windows\system32\qwave.dll
21:03:01.0874 0x0de8 QWAVE - ok
21:03:01.0920 0x0de8 [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:03:01.0983 0x0de8 QWAVEdrv - ok
21:03:02.0014 0x0de8 [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:03:02.0076 0x0de8 RasAcd - ok
21:03:02.0154 0x0de8 [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:03:02.0217 0x0de8 RasAgileVpn - ok
21:03:02.0310 0x0de8 [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto C:\Windows\System32\rasauto.dll
5. Teil TDSS: Code:
21:03:02.0357 0x0de8 RasAuto - ok
21:03:02.0420 0x0de8 [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:03:02.0451 0x0de8 Rasl2tp - ok
21:03:02.0513 0x0de8 [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan C:\Windows\System32\rasmans.dll
21:03:02.0622 0x0de8 RasMan - ok
21:03:02.0685 0x0de8 [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:03:02.0763 0x0de8 RasPppoe - ok
21:03:02.0794 0x0de8 [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:03:02.0872 0x0de8 RasSstp - ok
21:03:02.0966 0x0de8 [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:03:03.0028 0x0de8 rdbss - ok
21:03:03.0059 0x0de8 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:03:03.0122 0x0de8 rdpbus - ok
21:03:03.0231 0x0de8 [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:03:03.0262 0x0de8 RDPCDD - ok
21:03:03.0324 0x0de8 [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:03:03.0371 0x0de8 RDPENCDD - ok
21:03:03.0418 0x0de8 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:03:03.0480 0x0de8 RDPREFMP - ok
21:03:03.0605 0x0de8 [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:03:03.0683 0x0de8 RdpVideoMiniport - ok
21:03:03.0792 0x0de8 [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:03:03.0855 0x0de8 RDPWD - ok
21:03:03.0917 0x0de8 [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:03:03.0948 0x0de8 rdyboost - ok
21:03:04.0042 0x0de8 [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:03:04.0104 0x0de8 RemoteAccess - ok
21:03:04.0151 0x0de8 [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:03:04.0214 0x0de8 RemoteRegistry - ok
21:03:04.0229 0x0de8 [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:03:04.0260 0x0de8 RpcEptMapper - ok
21:03:08.0472 0x0de8 [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:03:08.0535 0x0de8 sppuinotify - ok
21:03:08.0613 0x0de8 [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:03:08.0628 0x0de8 srv - ok
21:03:08.0675 0x0de8 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:03:08.0738 0x0de8 srv2 - ok
21:03:08.0769 0x0de8 [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:03:08.0816 0x0de8 srvnet - ok
21:03:08.0862 0x0de8 [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:03:08.0909 0x0de8 SSDPSRV - ok
21:03:08.0940 0x0de8 [ 424566865D82AA4BD8D6546C1F2065FA, 37B4C04C7C0EE0F3347A9E9F35B095478299F7324CA87AAE487BF989B0E6AE03 ] ssmdrv C:\Windows\system32\DRIVERS\ssmdrv.sys
21:03:08.0972 0x0de8 ssmdrv - ok
21:03:09.0003 0x0de8 [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:03:09.0034 0x0de8 SstpSvc - ok
21:03:09.0128 0x0de8 [ EBD47669FB312B4944EE7D057F182ADB, 97A99026D3EE46C741A55A0D4EB61654011545BF2E68D9040E9E374324747742 ] STacSV c:\program files\idt\wdm\STacSV.exe
21:03:09.0159 0x0de8 STacSV - ok
21:03:09.0206 0x0de8 [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:03:09.0221 0x0de8 stexstor - ok
21:03:09.0284 0x0de8 [ 11FD7CFDBC623372552A430064E85D58, 46E891F167BD357EA527789AA5FB93353F8975DD3BA4F370B33F6467B380107C ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
21:03:09.0330 0x0de8 STHDA - ok
21:03:09.0393 0x0de8 [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc C:\Windows\System32\wiaservc.dll
21:03:09.0455 0x0de8 StiSvc - ok
21:03:09.0486 0x0de8 [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum C:\Windows\system32\drivers\swenum.sys
21:03:09.0502 0x0de8 swenum - ok
21:03:09.0564 0x0de8 [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv C:\Windows\System32\swprv.dll
21:03:09.0642 0x0de8 swprv - ok
21:03:09.0705 0x0de8 [ D776EB85A20696D9D43129CCF6E703E2, F4C16C6EE09DA173A8FE3FD85E3F81E68AB4FF66D996FA3CCC47989052DD69C2 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:03:09.0720 0x0de8 SynTP - ok
21:03:09.0830 0x0de8 [ 4EE25AC85AFC3FD67D9F57ECDF566FF2, F1BFF1FB655F31B97FA9C6A49D433EFD33D8A35F6B28B4D83E45C27A05A86228 ] SysMain C:\Windows\system32\sysmain.dll
21:03:09.0939 0x0de8 SysMain - ok
21:03:09.0970 0x0de8 [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
21:03:10.0017 0x0de8 TabletInputService - ok
21:03:10.0079 0x0de8 [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv C:\Windows\System32\tapisrv.dll
21:03:10.0126 0x0de8 TapiSrv - ok
21:03:10.0173 0x0de8 [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS C:\Windows\System32\tbssvc.dll
21:03:10.0235 0x0de8 TBS - ok
21:03:10.0313 0x0de8 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:03:10.0422 0x0de8 Tcpip - ok
21:03:10.0547 0x0de8 [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:03:10.0610 0x0de8 TCPIP6 - ok
21:03:10.0672 0x0de8 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:03:10.0734 0x0de8 tcpipreg - ok
21:03:10.0766 0x0de8 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:03:10.0797 0x0de8 TDPIPE - ok
21:03:10.0844 0x0de8 [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:03:10.0890 0x0de8 TDTCP - ok
21:03:10.0968 0x0de8 [ BB8817D0508DD5EA69C770C8DEF5AB67, C55671524EEF6E16BBCC92556E83FD1D6457E707EA9330FC1CDD28FB11D99B77 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:03:11.0000 0x0de8 tdx - ok
21:03:11.0031 0x0de8 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:03:11.0062 0x0de8 TermDD - ok
21:03:11.0140 0x0de8 [ FCFD4F50419B4BC72E80066DA10D2E54, 7C2314A57A404525F0444986332DBAE0964A3359374671598387051D7AAE72AE ] TermService C:\Windows\System32\termsrv.dll
21:03:11.0218 0x0de8 TermService - ok
21:03:11.0249 0x0de8 [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes C:\Windows\system32\themeservice.dll
21:03:11.0280 0x0de8 Themes - ok
21:03:11.0296 0x0de8 [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER C:\Windows\system32\mmcss.dll
21:03:11.0327 0x0de8 THREADORDER - ok
21:03:11.0358 0x0de8 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks C:\Windows\System32\trkwks.dll
21:03:11.0405 0x0de8 TrkWks - ok
21:03:11.0468 0x0de8 [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:03:11.0499 0x0de8 TrustedInstaller - ok
21:03:11.0561 0x0de8 [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:03:11.0577 0x0de8 tssecsrv - ok
21:03:11.0639 0x0de8 [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:03:11.0655 0x0de8 TsUsbFlt - ok
21:03:11.0686 0x0de8 [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:03:11.0733 0x0de8 tunnel - ok
21:03:11.0780 0x0de8 [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:03:11.0795 0x0de8 uagp35 - ok
21:03:11.0842 0x0de8 [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:03:11.0889 0x0de8 udfs - ok
21:03:11.0951 0x0de8 [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:03:11.0982 0x0de8 UI0Detect - ok
21:03:12.0014 0x0de8 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:03:12.0029 0x0de8 uliagpkx - ok
21:03:12.0092 0x0de8 [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus C:\Windows\system32\drivers\umbus.sys
21:03:12.0138 0x0de8 umbus - ok
21:03:12.0185 0x0de8 [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:03:12.0201 0x0de8 UmPass - ok
21:03:12.0232 0x0de8 [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost C:\Windows\System32\upnphost.dll
21:03:12.0279 0x0de8 upnphost - ok
21:03:12.0326 0x0de8 [ 78B74AF8727A28C128E164E9B53A5413, B731A85DF22FABB8F253C68FC2C7F5DAF8282C516B8BA875AB6A01502323FDDC ] upperdev C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
21:03:12.0372 0x0de8 upperdev - ok
21:03:12.0404 0x0de8 [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:03:12.0419 0x0de8 usbccgp - ok
21:03:12.0450 0x0de8 [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:03:12.0466 0x0de8 usbcir - ok
21:03:12.0513 0x0de8 [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:03:12.0544 0x0de8 usbehci - ok
21:03:12.0575 0x0de8 [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:03:12.0606 0x0de8 usbhub - ok
21:03:12.0638 0x0de8 [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:03:12.0653 0x0de8 usbohci - ok
21:03:12.0700 0x0de8 [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:03:12.0747 0x0de8 usbprint - ok
21:03:12.0809 0x0de8 [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
21:03:12.0825 0x0de8 usbscan - ok
21:03:12.0856 0x0de8 [ 007C0C8D5B01D82ACEB70431D15083F6, 7EAF68CD3C38D3CD2CDFEE9ECE1DFB38E274F1F9E6F70B73BCE1336E87D5496C ] usbser C:\Windows\system32\DRIVERS\usbser.sys
21:03:12.0872 0x0de8 usbser - ok
21:03:12.0934 0x0de8 [ 4F8FBC51A1C0A17310846B417A447F91, A283240C88D8A38839F8E21AD9A099AF55118140569362A6F3ED623D2C009D42 ] UsbserFilt C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys
21:03:12.0965 0x0de8 UsbserFilt - ok
21:03:12.0996 0x0de8 [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:03:13.0012 0x0de8 USBSTOR - ok
21:03:04.0323 0x0de8 [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator C:\Windows\system32\locator.exe
21:03:04.0385 0x0de8 RpcLocator - ok
21:03:04.0416 0x0de8 [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs C:\Windows\system32\rpcss.dll
21:03:04.0448 0x0de8 RpcSs - ok
21:03:04.0526 0x0de8 [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:03:04.0557 0x0de8 rspndr - ok
21:03:04.0604 0x0de8 RSUSBSTOR - ok
21:03:04.0760 0x0de8 [ B5E9979FBB26FC059BD87A81F763D5DA, 1EE2FB1CB2F86FBE1589ACE3542E0003CC88499406A3EF37073CCA45651F493D ] rtl8192se C:\Windows\system32\DRIVERS\rtl8192se.sys
21:03:04.0822 0x0de8 rtl8192se - ok
21:03:04.0853 0x0de8 [ 7884C1EDF5BD21749C206E8C4B5DB409, 620638756A5EE6EA933A7A4C94E7DD2537E2A7345BBEFF72D28271C0174D10A2 ] SamSs C:\Windows\system32\lsass.exe
21:03:04.0869 0x0de8 SamSs - ok
21:03:04.0931 0x0de8 [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:03:04.0947 0x0de8 sbp2port - ok
21:03:04.0978 0x0de8 [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:03:05.0056 0x0de8 SCardSvr - ok
21:03:05.0072 0x0de8 [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:03:05.0134 0x0de8 scfilter - ok
21:03:05.0243 0x0de8 [ 9060B8D5BCD5F2B019249F85E3D811F3, 7FB32AB7FE118462988321B9230074DAA960B587417EB463187539C3215445AE ] Schedule C:\Windows\system32\schedsvc.dll
21:03:05.0368 0x0de8 Schedule - ok
21:03:05.0415 0x0de8 [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:03:05.0446 0x0de8 SCPolicySvc - ok
21:03:05.0493 0x0de8 [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus C:\Windows\system32\drivers\sdbus.sys
21:03:05.0540 0x0de8 sdbus - ok
21:03:05.0633 0x0de8 [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:03:05.0696 0x0de8 SDRSVC - ok
21:03:06.0039 0x0de8 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
21:03:06.0132 0x0de8 SDScannerService - ok
21:03:06.0398 0x0de8 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
21:03:06.0460 0x0de8 SDUpdateService - ok
21:03:06.0554 0x0de8 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
21:03:06.0585 0x0de8 SDWSCService - ok
21:03:06.0632 0x0de8 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:03:06.0647 0x0de8 secdrv - ok
21:03:06.0678 0x0de8 [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon C:\Windows\system32\seclogon.dll
21:03:06.0725 0x0de8 seclogon - ok
21:03:06.0772 0x0de8 [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS C:\Windows\System32\sens.dll
21:03:06.0819 0x0de8 SENS - ok
21:03:06.0850 0x0de8 [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:03:06.0897 0x0de8 SensrSvc - ok
21:03:06.0928 0x0de8 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:03:06.0959 0x0de8 Serenum - ok
21:03:07.0006 0x0de8 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:03:07.0037 0x0de8 Serial - ok
21:03:07.0053 0x0de8 [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:03:07.0068 0x0de8 sermouse - ok
21:03:07.0115 0x0de8 [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv C:\Windows\system32\sessenv.dll
21:03:07.0178 0x0de8 SessionEnv - ok
21:03:07.0224 0x0de8 [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:03:07.0240 0x0de8 sffdisk - ok
21:03:07.0271 0x0de8 [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:03:07.0318 0x0de8 sffp_mmc - ok
21:03:07.0334 0x0de8 [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:03:07.0380 0x0de8 sffp_sd - ok
21:03:07.0396 0x0de8 [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:03:07.0443 0x0de8 sfloppy - ok
21:03:07.0490 0x0de8 [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:03:07.0536 0x0de8 SharedAccess - ok
21:03:07.0568 0x0de8 [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:03:07.0630 0x0de8 ShellHWDetection - ok
21:03:07.0661 0x0de8 [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp C:\Windows\system32\drivers\sisagp.sys
21:03:07.0677 0x0de8 sisagp - ok
21:03:07.0708 0x0de8 [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:03:07.0724 0x0de8 SiSRaid2 - ok
21:03:07.0755 0x0de8 [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:03:07.0770 0x0de8 SiSRaid4 - ok
21:03:07.0848 0x0de8 [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:03:07.0880 0x0de8 Smb - ok
21:03:07.0926 0x0de8 [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:03:07.0958 0x0de8 SNMPTRAP - ok
21:03:07.0989 0x0de8 [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr C:\Windows\system32\drivers\spldr.sys
21:03:08.0004 0x0de8 spldr - ok
21:03:08.0036 0x0de8 [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler C:\Windows\System32\spoolsv.exe
21:03:08.0082 0x0de8 Spooler - ok
21:03:08.0238 0x0de8 [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc C:\Windows\system32\sppsvc.exe
21:03:08.0426 0x0de8 sppsvc - ok
21:03:13.0043 0x0de8 [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:03:13.0090 0x0de8 usbuhci - ok
21:03:13.0137 0x0de8 [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
21:03:13.0184 0x0de8 usbvideo - ok
21:03:13.0215 0x0de8 [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms C:\Windows\System32\uxsms.dll
21:03:13.0246 0x0de8 UxSms - ok
21:03:13.0277 0x0de8 [ 7884C1EDF5BD21749C206E8C4B5DB409, 620638756A5EE6EA933A7A4C94E7DD2537E2A7345BBEFF72D28271C0174D10A2 ] VaultSvc C:\Windows\system32\lsass.exe
21:03:13.0293 0x0de8 VaultSvc - ok
21:03:13.0324 0x0de8 [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:03:13.0340 0x0de8 vdrvroot - ok
21:03:13.0402 0x0de8 [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds C:\Windows\System32\vds.exe
21:03:13.0480 0x0de8 vds - ok
21:03:13.0511 0x0de8 [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:03:13.0542 0x0de8 vga - ok
21:03:13.0542 0x0de8 [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:03:13.0605 0x0de8 VgaSave - ok
21:03:13.0652 0x0de8 [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:03:13.0683 0x0de8 vhdmp - ok
21:03:13.0698 0x0de8 [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp C:\Windows\system32\drivers\viaagp.sys
21:03:13.0714 0x0de8 viaagp - ok
21:03:13.0745 0x0de8 [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
21:03:13.0776 0x0de8 ViaC7 - ok
21:03:13.0823 0x0de8 [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide C:\Windows\system32\drivers\viaide.sys
21:03:13.0839 0x0de8 viaide - ok
21:03:13.0854 0x0de8 [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:03:13.0870 0x0de8 volmgr - ok
21:03:13.0932 0x0de8 [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:03:13.0964 0x0de8 volmgrx - ok
21:03:14.0010 0x0de8 [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:03:14.0042 0x0de8 volsnap - ok
21:03:14.0073 0x0de8 [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:03:14.0088 0x0de8 vsmraid - ok
21:03:14.0166 0x0de8 [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS C:\Windows\system32\vssvc.exe
21:03:14.0260 0x0de8 VSS - ok
21:03:14.0307 0x0de8 [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:03:14.0322 0x0de8 vwifibus - ok
21:03:14.0354 0x0de8 [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:03:14.0385 0x0de8 vwififlt - ok
21:03:14.0416 0x0de8 [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
21:03:14.0432 0x0de8 vwifimp - ok
21:03:14.0463 0x0de8 [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time C:\Windows\system32\w32time.dll
21:03:14.0541 0x0de8 W32Time - ok
21:03:14.0572 0x0de8 [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:03:14.0603 0x0de8 WacomPen - ok
21:03:14.0634 0x0de8 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:03:14.0681 0x0de8 WANARP - ok
21:03:14.0712 0x0de8 [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:03:14.0744 0x0de8 Wanarpv6 - ok
21:03:14.0837 0x0de8 [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:03:14.0931 0x0de8 WatAdminSvc - ok
21:03:15.0009 0x0de8 [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine C:\Windows\system32\wbengine.exe
21:03:15.0102 0x0de8 wbengine - ok
21:03:15.0149 0x0de8 [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:03:15.0180 0x0de8 WbioSrvc - ok
21:03:15.0243 0x0de8 [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:03:15.0290 0x0de8 wcncsvc - ok
21:03:15.0321 0x0de8 [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:03:15.0336 0x0de8 WcsPlugInService - ok
21:03:15.0368 0x0de8 [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:03:15.0383 0x0de8 Wd - ok
21:03:15.0446 0x0de8 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:03:15.0508 0x0de8 Wdf01000 - ok
21:03:15.0539 0x0de8 [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:03:15.0555 0x0de8 WdiServiceHost - ok
21:03:15.0570 0x0de8 [ DDE994E9159497D0D5AB2CDF66D1EAD6, 49BEDECA469C47E7622542D3B9BCD31ECDDAA27838495EC5C2F1338E33FEA877 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:03:15.0586 0x0de8 WdiSystemHost - ok
21:03:15.0648 0x0de8 [ 55C70654420DBF429604FD567E6F3CD3, 22191B049BCA76EF13AEDF8078E452E6B35E998A75AD63F14C542B541EA9F67D ] WebClient C:\Windows\System32\webclnt.dll
21:03:15.0695 0x0de8 WebClient - ok
21:03:15.0742 0x0de8 [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:03:15.0789 0x0de8 Wecsvc - ok
21:03:15.0789 0x0de8 [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:03:15.0836 0x0de8 wercplsupport - ok
21:03:15.0851 0x0de8 [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc C:\Windows\System32\WerSvc.dll
21:03:15.0914 0x0de8 WerSvc - ok
21:03:15.0945 0x0de8 [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:03:15.0976 0x0de8 WfpLwf - ok
21:03:15.0992 0x0de8 [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:03:16.0007 0x0de8 WIMMount - ok
21:03:16.0085 0x0de8 [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:03:16.0163 0x0de8 WinDefend - ok
21:03:16.0194 0x0de8 WinHttpAutoProxySvc - ok
21:03:16.0257 0x0de8 [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:03:16.0288 0x0de8 Winmgmt - ok
21:03:16.0382 0x0de8 [ 1DE9BD23AFA36150586C732D876D9B74, 32CF2C8EC18CFDA677AB72A182EB4B839DCC72BFCD6CA309BE2F434991CAE973 ] WinRM C:\Windows\system32\WsmSvc.dll
21:03:16.0460 0x0de8 WinRM - ok
21:03:16.0538 0x0de8 [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:03:16.0584 0x0de8 WinUsb - ok
21:03:16.0647 0x0de8 [ 20A97B632A76CC977FCFB98F28CAAAB3, E99B7043CA582AA487C9E4197B52C3338BCBB9F3CA4B86E0DF0797644A21A56E ] WisLMSvc C:\Program Files\Launch Manager\WisLMSvc.exe
21:03:16.0662 0x0de8 WisLMSvc - detected UnsignedFile.Multi.Generic ( 1 )
21:03:16.0662 0x0de8 WisLMSvc ( UnsignedFile.Multi.Generic ) - warning
21:03:16.0662 0x0de8 Force sending object to P2P due to detect: WisLMSvc
21:03:16.0678 0x0de8 Object send P2P result: false
21:03:16.0740 0x0de8 [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:03:16.0818 0x0de8 Wlansvc - ok
21:03:16.0912 0x0de8 [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:03:16.0928 0x0de8 wlcrasvc - ok
21:03:17.0037 0x0de8 [ FB01D4AE207B9EFDBABFC55DC95C7E31, E0EFDBBE0BAC275230C8C1A053948C21BCF20B99B92E50939E95FFB9DC87F6BA ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:03:17.0099 0x0de8 wlidsvc - ok
21:03:17.0130 0x0de8 [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:03:17.0162 0x0de8 WmiAcpi - ok
21:03:17.0208 0x0de8 [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:03:17.0224 0x0de8 wmiApSrv - ok
21:03:17.0333 0x0de8 [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:03:17.0396 0x0de8 WMPNetworkSvc - ok
21:03:17.0427 0x0de8 [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:03:17.0458 0x0de8 WPCSvc - ok
21:03:17.0505 0x0de8 [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:03:17.0536 0x0de8 WPDBusEnum - ok
21:03:17.0583 0x0de8 [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:03:17.0630 0x0de8 ws2ifsl - ok
21:03:17.0676 0x0de8 [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc C:\Windows\System32\wscsvc.dll
21:03:17.0708 0x0de8 wscsvc - ok
21:03:17.0708 0x0de8 WSearch - ok
21:03:17.0910 0x0de8 [ 67AFFF96F5C6B072CE986D91212527C0, 8E7FACC7AB3405A28374F3140C0BA7089DFA21D855B2F4629DF4593832197041 ] wuauserv C:\Windows\system32\wuaueng.dll
21:03:18.0035 0x0de8 wuauserv - ok
21:03:18.0082 0x0de8 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:03:18.0113 0x0de8 WudfPf - ok
21:03:18.0144 0x0de8 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:03:18.0176 0x0de8 WUDFRd - ok
21:03:18.0176 0x0de8 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:03:18.0207 0x0de8 wudfsvc - ok
21:03:18.0238 0x0de8 [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc C:\Windows\System32\wwansvc.dll
21:03:18.0285 0x0de8 WwanSvc - ok
21:03:18.0347 0x0de8 [ 4E2E09AFDB9DA5D0C2A3A01A903797A8, FD32E7480CC63DE3B9B4FD357180E2F05C065E331BF5594D42F6513B6FD5FC12 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x86.sys
21:03:18.0363 0x0de8 yukonw7 - ok 6. Teil TDSS: Code:
21:03:18.0394 0x0de8 ================ Scan global ===============================
21:03:18.0472 0x0de8 [ 5E7C5DE85AF978495C3A9A0B720B9811, 142CDEBED78E3BAEE8D2DBF6A97CE26313932024010548EC2E570CAE480AF7C3 ] C:\Windows\system32\basesrv.dll
21:03:18.0519 0x0de8 [ C2E10DD5F72368909C516B24A02CFF12, 6D3E6ED8C6F8617A671737F913E41A292BEE1FD268458BA479B2213B33365D6C ] C:\Windows\system32\winsrv.dll
21:03:18.0550 0x0de8 [ C2E10DD5F72368909C516B24A02CFF12, 6D3E6ED8C6F8617A671737F913E41A292BEE1FD268458BA479B2213B33365D6C ] C:\Windows\system32\winsrv.dll
21:03:18.0581 0x0de8 [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
21:03:18.0644 0x0de8 [ 0780A42DBD7D9969F9BF4A19AA4285B5, 8EA41124A4E97732C5DAA616457FBA7111CB38986F3427FA776ED00BC1407171 ] C:\Windows\system32\services.exe
21:03:18.0644 0x0de8 [ Global ] - ok
21:03:18.0644 0x0de8 ================ Scan MBR ==================================
21:03:18.0659 0x0de8 [ C858416C96697B568AF203A3F7953D79 ] \Device\Harddisk0\DR0
21:03:22.0513 0x0de8 \Device\Harddisk0\DR0 - ok
21:03:22.0513 0x0de8 ================ Scan VBR ==================================
21:03:22.0544 0x0de8 [ 40B1E203299E51AD2FCF4C297981E4EB ] \Device\Harddisk0\DR0\Partition1
21:03:22.0544 0x0de8 \Device\Harddisk0\DR0\Partition1 - ok
21:03:22.0559 0x0de8 [ A98146AD226EFAE73676C5528E398200 ] \Device\Harddisk0\DR0\Partition2
21:03:22.0559 0x0de8 \Device\Harddisk0\DR0\Partition2 - ok
21:03:22.0591 0x0de8 [ 1A664B46EA6938C53CC3A88488D88A9F ] \Device\Harddisk0\DR0\Partition3
21:03:22.0591 0x0de8 \Device\Harddisk0\DR0\Partition3 - ok
21:03:22.0591 0x0de8 ================ Scan generic autorun ======================
21:03:22.0637 0x0de8 [ 1833BDB718BF29CAABC29CE7BE42CC85, FC407C69931F56A5AB23F8BB9A9BE4AF504826956B34465E34F807A6D2CC296E ] C:\Program Files\Launch Manager\OSD.exe
21:03:22.0669 0x0de8 LMgrVolOSD - detected UnsignedFile.Multi.Generic ( 1 )
21:03:22.0669 0x0de8 LMgrVolOSD ( UnsignedFile.Multi.Generic ) - warning
21:03:22.0684 0x0de8 [ DF057E720CB3B3D055CFD8C0EB9A29DF, 840F6A1461F36B2DE2A8438FA9BEE4E5028DE541DB57B21E6EC58D86BD8E211E ] C:\Program Files\Launch Manager\Wbutton.exe
21:03:22.0715 0x0de8 Wbutton - detected UnsignedFile.Multi.Generic ( 1 )
21:03:22.0715 0x0de8 Wbutton ( UnsignedFile.Multi.Generic ) - warning
21:03:22.0840 0x0de8 [ 57B4D34232852BFE4453BE571DF90D21, 3D329499D7BCACAE5F6377F988B90714F5A8301784CDB22D5B54A2266AC50D79 ] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
21:03:22.0856 0x0de8 CLMLServer - ok
21:03:23.0043 0x0de8 [ B2D2DB4C716665691816C77557AD685C, F8B919FED0B4E979DC3F39578D59CFB2D984AFBDD67A6A4D850F71930C28016D ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
21:03:23.0090 0x0de8 SynTPEnh - ok
21:03:23.0137 0x0de8 [ 2C1B1E9174D94E9F6EE3CF373ABAB7DD, 729D283DF70F727824EBCA223D5E5B27D16E3E2B5312B1B34CAE1E763192D7B5 ] C:\Windows\system32\igfxtray.exe
21:03:23.0168 0x0de8 IgfxTray - ok
21:03:23.0199 0x0de8 [ 87D78CF6365BDDACBE9D34B60FE0E23B, 4561DE7171FD9035FEDF7EEA059859732996A5E72364D0D9F230563A1A6AE3D4 ] C:\Windows\system32\hkcmd.exe
21:03:23.0215 0x0de8 HotKeysCmds - ok
21:03:23.0230 0x0de8 [ 89D3DE5E2C77DCD99C56F0E46310AEA0, 02E1B2353E5D5F65D7968698AFE079A4DF11C230F6213C07D128F47147BACA29 ] C:\Windows\system32\igfxpers.exe
21:03:23.0246 0x0de8 Persistence - ok
21:03:23.0324 0x0de8 [ E83C81F40E072A697816F7311B87F471, 26F76EE173BB7F1D57837F71A9D22287DB1381A8C69EEB3B3BA7EB9B166A7828 ] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
21:03:23.0371 0x0de8 avgnt - ok
21:03:23.0449 0x0de8 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
21:03:23.0464 0x0de8 HP Software Update - ok
21:03:23.0558 0x0de8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:03:23.0636 0x0de8 Sidebar - ok
21:03:23.0698 0x0de8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:03:23.0745 0x0de8 Sidebar - ok
21:03:23.0761 0x0de8 swg - ok
21:03:23.0761 0x0de8 msnmsgr - ok
21:03:23.0823 0x0de8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\sidebar.exe
21:03:23.0885 0x0de8 Sidebar - ok
21:03:23.0948 0x0de8 [ F51BB12D8977D26C1A4CDA348770D9F1, DDA35CD8F8A6591B83821B5180D457740E0B820CCE000BC7FB1B78FB4AEAD3BA ] C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe
21:03:24.0026 0x0de8 SpybotPostWindows10UpgradeReInstall - detected UnsignedFile.Multi.Generic ( 1 )
21:03:24.0026 0x0de8 SpybotPostWindows10UpgradeReInstall ( UnsignedFile.Multi.Generic ) - warning
21:03:24.0088 0x0de8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:03:24.0135 0x0de8 Sidebar - ok
21:03:24.0197 0x0de8 [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
21:03:24.0229 0x0de8 mctadmin - ok
21:03:24.0322 0x0de8 AV detected via SS2: Avira Antivirus, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 15.0.15.133 ), 0x40000 ( disabled : updated )
21:03:24.0338 0x0de8 Win FW state via NFP2: enabled ( trusted )
21:03:24.0338 0x0de8 ============================================================
21:03:24.0338 0x0de8 Scan finished
21:03:24.0338 0x0de8 ============================================================
21:03:24.0353 0x0e40 Detected object count: 8
21:03:24.0353 0x0e40 Actual detected object count: 8
21:06:52.0489 0x0e40 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - copied to quarantine
21:06:52.0489 0x0e40 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
21:06:52.0551 0x0e40 C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL - copied to quarantine
21:06:52.0551 0x0e40 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
21:06:52.0551 0x0e40 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:52.0551 0x0e40 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:06:52.0567 0x0e40 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:52.0567 0x0e40 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:06:52.0567 0x0e40 WisLMSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:52.0567 0x0e40 WisLMSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:06:52.0567 0x0e40 LMgrVolOSD ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:52.0567 0x0e40 LMgrVolOSD ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:06:52.0567 0x0e40 Wbutton ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:52.0567 0x0e40 Wbutton ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:06:52.0567 0x0e40 SpybotPostWindows10UpgradeReInstall ( UnsignedFile.Multi.Generic ) - skipped by user
21:06:52.0567 0x0e40 SpybotPostWindows10UpgradeReInstall ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:08:15.0263 0x1140 Deinitialize success das ist leider alles, was ich noch habe und noch nicht gelöscht habe |