| |
| |||||||
Log-Analyse und Auswertung: Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.10.2011, 20:35
| #1 |
 |  Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! Hallo, mein Browser öffnet immer wieder Werbetabs.. Hier meine Logfiles:HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:33:50, on 30.10.2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Program Files\TeamViewer\Version6\TeamViewer.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\cc32\webtmr.exe C:\Windows\tray\wintmr.exe C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Windows\system32\taskhost.exe C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Users\Daniel\Downloads\HiJackThis204.exe C:\Windows\system32\SearchFilterHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files\Winload\prxtbWinl.dll O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O2 - BHO: Winload - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files\Winload\prxtbWinl.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file) O3 - Toolbar: Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files\Winload\prxtbWinl.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O4 - HKLM\..\Run: [ChicoSys] C:\Windows\system32\cc32\webtmr.exe O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [CCWinTray] C:\Windows\tray\wintmr.exe O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [iCloudServices] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe O4 - HKCU\..\Run: [com.apple.dav.bookmarks.daemon] C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOKALER DIENST') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOKALER DIENST') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETZWERKDIENST') O4 - HKUS\S-1-5-21-2037346869-948051994-2294629697-1012\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-2037346869-948051994-2294629697-1012\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - HKUS\S-1-5-18\..\Run: [CCWinTray] C:\Windows\tray\wintmr.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CCWinTray] C:\Windows\tray\wintmr.exe (User 'Default user') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Free YouTube Download - C:\Users\Daniel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Daniel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: ¥þ³¡¨Ï¥Î FlashGet ¤U¸ü - C:\FlashGet Network\Flashget\ComDlls\Bhoall.htm O8 - Extra context menu item: ¨Ï¥Î FlashGet ¤U¸ü - C:\FlashGet Network\Flashget\ComDlls\Bholink.htm O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Echtzeit Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Dienst "Bonjour" (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-Dienst (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: File-/Update Service (ksupmgr) - Salfeld Computer - C:\Windows\system32\ksupmgr.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- End of file - 12163 bytes Ist da was auffällig? Oder was soll ich tun?.. ich bin absoluter Neuling, ich kenne mich da nicht wirklich aus.. Gruß |
|
30.10.2011, 20:45
| #2 |
| /// Malware-holic   |  Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! hi
__________________Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop ( falls noch nicht vorhanden)
__________________ |
|
30.10.2011, 20:55
| #3 |
| |  Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! hallo, danke für die schnell antwort..
__________________hier meine log files:OTL Logfile: OTL EXTRAS Logfile: Code:
ATTFilter OTL logfile created on: 30.10.2011 20:50:57 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Daniel\Desktop Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy 3.50 Gb Total Physical Memory | 1.61 Gb Available Physical Memory | 46.05% Memory free 7.00 Gb Paging File | 4.01 Gb Available in Paging File | 57.30% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 931.51 Gb Total Space | 541.68 Gb Free Space | 58.15% Space Free | Partition Type: NTFS Drive G: | 976.70 Mb Total Space | 976.66 Mb Free Space | 100.00% Space Free | Partition Type: FAT Computer Name: DANIEL-PC | User Name: Daniel | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Daniel\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Users\Daniel\Downloads\HiJackThis204.exe (Trend Micro Inc.) PRC - C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) PRC - C:\Programme\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) PRC - C:\Programme\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) PRC - C:\Programme\Avira\AntiVir Desktop\avshadow.exe (Avira Operations GmbH & Co. KG) PRC - C:\Programme\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - C:\Programme\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) PRC - C:\Programme\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - C:\Programme\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) PRC - C:\Programme\Common Files\Apple\Internet Services\BookmarkDAV_client.exe (Apple Inc.) PRC - C:\Programme\Mozilla Firefox\firefox.exe (Mozilla Corporation) PRC - C:\Programme\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) PRC - C:\Programme\TeamViewer\Version6\TeamViewer.exe (TeamViewer GmbH) PRC - C:\Programme\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH) PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software) PRC - C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software) PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation) PRC - C:\Programme\Adobe\Acrobat 10.0\Acrobat\acrotray.exe (Adobe Systems Inc.) PRC - C:\Programme\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Programme\Microsoft Office\Office14\OUTLOOK.EXE (Microsoft Corporation) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation) PRC - C:\Programme\Windows Sidebar\sidebar.exe (Microsoft Corporation) PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation) PRC - C:\Programme\Unlocker\UnlockerAssistant.exe () PRC - C:\Programme\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) PRC - C:\Programme\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG) PRC - C:\Windows\tray\wintmr.exe (Salfeld Computer) PRC - C:\Windows\System32\cc32\webtmr.exe (Salfeld Computer) PRC - C:\Windows\System32\cchservice.exe (Salfeld Computer) PRC - c:\Programme\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe (Microsoft Corporation) PRC - c:\Programme\Microsoft SQL Server\90\Shared\sqlwriter.exe (Microsoft Corporation) PRC - C:\Programme\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG) PRC - C:\Programme\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) ========== Modules (No Company Name) ========== MOD - C:\Programme\Mozilla Firefox\mozjs.dll () MOD - C:\Windows\System32\Macromed\Flash\NPSWF32.dll () MOD - C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\ep749u1u.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}\gecko7\WINNT_x86-msvc\SSSLauncher.dll () MOD - C:\Programme\Common Files\Apple\Apple Application Support\zlib1.dll () MOD - C:\Programme\Common Files\Apple\Apple Application Support\libxml2.dll () MOD - C:\Programme\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\PDFMaker\AdobePDFMakerX.DEU () MOD - C:\Programme\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\AcroTray.DEU () MOD - C:\Programme\Adobe\Acrobat 10.0\PDFMaker\Common\AdobePDFMakerX.dll () MOD - C:\Programme\WinRAR\RarExt.dll () MOD - C:\Programme\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF () MOD - C:\Programme\Notepad++\NppShell_04.dll () MOD - C:\Programme\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll () MOD - C:\Programme\Unlocker\UnlockerCOM.dll () MOD - C:\Programme\Unlocker\UnlockerHook.dll () MOD - C:\Programme\Unlocker\UnlockerAssistant.exe () ========== Win32 Services (SafeList) ========== SRV - (nvUpdatusService) -- C:\Programme\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation) SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (TeamViewer6) -- C:\Programme\TeamViewer\Version6\TeamViewer_Service.exe (TeamViewer GmbH) SRV - (TuneUp.Defrag) -- C:\Programme\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software) SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software) SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software) SRV - (Microsoft SharePoint Workspace Audit Service) -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation) SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (ksupmgr) -- C:\Windows\System32\ksupmgr.exe (Salfeld Computer) SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) SRV - (Fabs) -- C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (MAGIX AG) SRV - (StorSvc) -- C:\Windows\System32\StorSvc.dll (Microsoft Corporation) SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation) SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation) SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (FirebirdServerMAGIXInstance) -- C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe (MAGIX®) ========== Driver Services (SafeList) ========== DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation) DRV - (avipbb) -- C:\Windows\System32\drivers\avipbb.sys (Avira GmbH) DRV - (avgntflt) -- C:\Windows\System32\drivers\avgntflt.sys (Avira GmbH) DRV - (avkmgr) -- C:\Windows\System32\drivers\avkmgr.sys (Avira GmbH) DRV - (sptd) -- C:\Windows\System32\Drivers\sptd.sys (Duplex Secure Ltd.) DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd) DRV - (TsUsbFlt) -- C:\Windows\System32\drivers\TsUsbFlt.sys (Microsoft Corporation) DRV - (vmbus) -- C:\Windows\system32\drivers\vmbus.sys (Microsoft Corporation) DRV - (dmvsc) -- C:\Windows\system32\drivers\dmvsc.sys (Microsoft Corporation) DRV - (storflt) -- C:\Windows\system32\drivers\vmstorfl.sys (Microsoft Corporation) DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation) DRV - (storvsc) -- C:\Windows\system32\drivers\storvsc.sys (Microsoft Corporation) DRV - (TsUsbGD) -- C:\Windows\system32\drivers\TsUsbGD.sys (Microsoft Corporation) DRV - (VMBusHID) -- C:\Windows\system32\drivers\VMBusHID.sys (Microsoft Corporation) DRV - (s3cap) -- C:\Windows\system32\drivers\vms3cap.sys (Microsoft Corporation) DRV - (ssmdrv) -- C:\Windows\System32\drivers\ssmdrv.sys (Avira GmbH) DRV - (vpcvmm) -- C:\Windows\System32\drivers\vpcvmm.sys (Microsoft Corporation) DRV - (VSPerfDrv100) -- C:\Programme\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys (Microsoft Corporation) DRV - (TuneUpUtilitiesDrv) -- C:\Programme\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software) DRV - (vpcnfltr) -- C:\Windows\System32\drivers\vpcnfltr.sys (Microsoft Corporation) DRV - (vpcusb) -- C:\Windows\System32\drivers\vpcusb.sys (Microsoft Corporation) DRV - (vpcbus) -- C:\Windows\System32\drivers\vpchbus.sys (Microsoft Corporation) DRV - (RsFx0103) -- C:\Windows\System32\drivers\RsFx0103.sys (Microsoft Corporation) DRV - (MTsensor) -- C:\Windows\System32\drivers\ASACPI.sys () DRV - (USBIO) USBIO Driver (usbio.sys) -- C:\Windows\System32\drivers\usbio.sys (Thesycon GmbH, Germany) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\URLSearchHook: {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWinl.dll (Conduit Ltd.) IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 67 19 85 65 61 3A CC 01 [binary data] IE - HKCU\..\URLSearchHook: {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWinl.dll (Conduit Ltd.) IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.5.0.8013 FF - prefs.js..extensions.enabledItems: support@lastpass.com:1.74.0 FF - prefs.js..extensions.enabledItems: {0b457cAA-602d-484a-8fe7-c1d894a011ba}:0.92 FF - prefs.js..extensions.enabledItems: {6AC85730-7D0F-4de0-B3FA-21142DD85326}:2.5.5 FF - prefs.js..extensions.enabledItems: {ACAA314B-EEBA-48e4-AD47-84E31C44796C}:1.0.4 FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.9.5 FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.9 FF - prefs.js..extensions.enabledItems: {e4a8a97b-f2ed-450b-b12d-ee082ba24781}:0.9.8 FF - prefs.js..extensions.enabledItems: unplug@compunach:2.050 FF - prefs.js..extensions.enabledItems: firebug@software.joehewitt.com:1.7.3 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA}:6.0.27 FF - prefs.js..extensions.enabledItems: {01A8CA0A-4C96-465b-A49B-65C46FAD54F9}:6.1 FF - prefs.js..extensions.enabledItems: web2pdfextension@web2pdf.adobedotcom:1.1 FF - prefs.js..extensions.enabledItems: quickstores@quickstores.de:1.1.0 FF - prefs.js..extensions.enabledItems: {46551EC9-40F0-4e47-8E18-8E5CF550CFB8}:1.2.2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - prefs.js..extensions.enabledItems: {e968fc70-8f95-4ab9-9e79-304de2a71ee1}:0.7.3 FF - prefs.js..keyword.URL: "hxxp://search.toolbars.alexa.com/?ver=alxf-2.14&src=ab&aid=5fmDe1Y2cG00M5&q=" FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Acrobat: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}: C:\Program Files\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2011.09.08 13:58:05 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\web2pdfextension@web2pdf.adobedotcom: C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2011.09.09 12:03:17 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011.09.30 20:27:25 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011.10.01 20:26:59 | 000,000,000 | ---D | M] [2011.08.23 20:45:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Extensions [2011.10.30 14:37:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions [2011.09.29 16:17:38 | 000,000,000 | ---D | M] (FireShot) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba} [2011.10.27 19:48:03 | 000,000,000 | ---D | M] (Winload Community Toolbar) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{40c3cc16-7269-4b32-9531-17f2950fb06f} [2011.10.05 18:52:22 | 000,000,000 | ---D | M] (ColorZilla) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{6AC85730-7D0F-4de0-B3FA-21142DD85326} [2011.10.05 18:52:22 | 000,000,000 | ---D | M] ("Free YouTube Download (Free Studio) Menu") -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011.08.23 21:33:18 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2011.10.11 14:43:40 | 000,000,000 | ---D | M] (Greasemonkey) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2011.09.26 19:41:09 | 000,000,000 | ---D | M] (User Agent Switcher) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\{e968fc70-8f95-4ab9-9e79-304de2a71ee1} [2011.10.27 19:47:36 | 000,000,000 | ---D | M] ("Gutscheinsammler.de") -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\alarm@gutscheinsammler.de [2011.10.30 14:37:32 | 000,000,000 | ---D | M] (Games) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\jid1-npQlxRhRimvmWQ@jetpack [2011.08.26 19:23:14 | 000,000,000 | ---D | M] ("UnPlug") -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\ep749u1u.default\extensions\unplug@compunach [2011.10.18 12:32:55 | 000,001,490 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\ep749u1u.default\searchplugins\web-search-powered-by-google.xml [2011.10.24 13:09:25 | 000,000,000 | ---D | M] (No name found) -- C:\Programme\Mozilla Firefox\extensions [2011.08.18 17:17:28 | 000,000,000 | ---D | M] (Click to call with Skype) -- C:\Programme\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2011.09.22 12:43:40 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2011.08.28 11:23:39 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0027-ABCDEFFEDCBA} [2011.10.24 13:09:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Programme\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} [2011.09.20 18:09:06 | 000,000,000 | ---D | M] (QuickStores-Toolbar) -- C:\Programme\Mozilla Firefox\extensions\quickstores@quickstores.de () (No name found) -- C:\USERS\DANIEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP749U1U.DEFAULT\EXTENSIONS\{46551EC9-40F0-4E47-8E18-8E5CF550CFB8}.XPI () (No name found) -- C:\USERS\DANIEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP749U1U.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI () (No name found) -- C:\USERS\DANIEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP749U1U.DEFAULT\EXTENSIONS\FIREBUG@SOFTWARE.JOEHEWITT.COM.XPI [2011.09.30 20:27:24 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2008.06.12 10:16:24 | 000,028,672 | ---- | M] (flashget) -- C:\Program Files\mozilla firefox\components\FlashgetXpi.dll [2011.03.19 03:58:26 | 000,067,216 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npContribute.dll [2011.10.03 04:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011.09.23 02:52:52 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml [2011.09.23 02:46:24 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2011.09.23 02:52:52 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml [2011.09.23 02:52:52 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml [2011.09.23 02:52:52 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml [2011.09.23 02:52:52 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms} CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.202\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll CHR - plugin: Java Deployment Toolkit 6.0.270.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java(TM) Platform SE 6 U27 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.202\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\14.0.835.202\pdf.dll CHR - plugin: Adobe Contribute CS5.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npContribute.dll CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Default Plug-in (Enabled) = default_plugin CHR - Extension: AdBlock = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.4.28_0\ CHR - Extension: Click to call with Skype = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.5.0.8013_0\ CHR - Extension: Facebook Sidebar Chat Reversion = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfophgoebcoehkldfgeffhnlcabhhomn\2.1.3_1\ O1 HOSTS File: ([2011.09.08 14:21:46 | 000,001,306 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O1 - Hosts: 127.0.0.1 ereg.adobe.com O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com O1 - Hosts: 127.0.0.1 wip3.adobe.com O1 - Hosts: 127.0.0.1 3dns-3.adobe.com O1 - Hosts: 127.0.0.1 3dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com O1 - Hosts: 127.0.0.1 activate-sea.adobe.com O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com O2 - BHO: (ContributeBHO Class) - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Programme\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.) O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Programme\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) O2 - BHO: (Winload Toolbar) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWinl.dll (Conduit Ltd.) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No CLSID value found. O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Winload Toolbar) - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Programme\Winload\prxtbWinl.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) O3 - HKLM\..\Toolbar: (Contribute Toolbar) - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Programme\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll (Adobe Systems, Inc.) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [Acrobat Assistant 8.0] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe (Adobe Systems Inc.) O4 - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin File not found O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [BCSSync] C:\Program Files\Microsoft Office\Office14\BCSSync.exe (Microsoft Corporation) O4 - HKLM..\Run: [ChicoSys] C:\Windows\System32\cc32\webtmr.exe (Salfeld Computer) O4 - HKLM..\Run: [Device Detector] DevDetect.exe -autorun File not found O4 - HKLM..\Run: [NeroFilterCheck] C:\Programme\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [SwitchBoard] C:\Programme\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [UnlockerAssistant] C:\Program Files\Unlocker\UnlockerAssistant.exe () O4 - HKCU..\Run: [ApplePhotoStreams] C:\Programme\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (Apple Inc.) O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG) O4 - HKCU..\Run: [CCWinTray] C:\Windows\tray\wintmr.exe (Salfeld Computer) O4 - HKCU..\Run: [com.apple.dav.bookmarks.daemon] C:\Programme\Common Files\Apple\Internet Services\BookmarkDAV_client.exe (Apple Inc.) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [iCloudServices] C:\Programme\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.) O4 - HKCU..\Run: [Pando Media Booster] C:\Programme\Pando Networks\Media Booster\PMB.exe () O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Privacy present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUserSwitching = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableClock = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1 O8 - Extra context menu item: ¨Ï¥Î FlashGet ¤U¸ü - C:\FlashGet Network\Flashget\ComDlls\Bholink.htm File not found O8 - Extra context menu item: ¥þ³¡¨Ï¥Î FlashGet ¤U¸ü - C:\FlashGet Network\Flashget\ComDlls\Bhoall.htm File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Free YouTube Download - C:\Users\Daniel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm () O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Users\Daniel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm () O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Programme\ICQ7.6\ICQ.exe (ICQ, LLC.) O9 - Extra 'Tools' menuitem : ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Programme\ICQ7.6\ICQ.exe (ICQ, LLC.) O9 - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9 - Extra Button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 83.169.184.161 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EC2E5919-9A28-43BC-B272-C8EBEEDC0CAF}: DhcpNameServer = 83.169.184.161 192.168.1.1 O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - c:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Programme\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009.06.10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\L\Shell - "" = AutoRun O33 - MountPoints2\L\Shell\AutoRun\command - "" = L:\Setup\rsrc\Autorun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* ========== Files/Folders - Created Within 30 Days ========== [2011.10.30 20:50:16 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe [2011.10.29 21:34:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2011.10.29 21:33:42 | 000,000,000 | ---D | C] -- C:\Program Files\IDAutomation.com OCR Font Advantage Package DEMO [2011.10.29 18:46:07 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Scan2PDF [2011.10.29 18:46:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Scan2PDF [2011.10.29 18:46:05 | 000,000,000 | ---D | C] -- C:\Program Files\Scan2PDF [2011.10.29 15:27:41 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sigel [2011.10.29 15:27:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sigel [2011.10.29 15:27:41 | 000,000,000 | ---D | C] -- C:\Program Files\Sigel [2011.10.28 20:01:27 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\Scheine [2011.10.28 13:19:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amnesia [2011.10.28 13:15:06 | 000,000,000 | ---D | C] -- C:\Program Files\Amnesia [2011.10.27 19:47:50 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\cashprt4 [2011.10.27 19:47:47 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2011.10.27 19:47:44 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine [2011.10.27 19:47:42 | 000,000,000 | ---D | C] -- C:\Program Files\Winload [2011.10.27 19:47:42 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\Conduit [2011.10.27 19:47:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Webgears [2011.10.27 16:32:15 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\MAGIX Downloads [2011.10.27 16:32:15 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\MAGIX [2011.10.27 15:54:27 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\NVIDIA [2011.10.27 15:54:06 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2011.10.27 15:53:56 | 006,350,144 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2011.10.27 15:53:56 | 003,840,320 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2011.10.27 15:53:56 | 003,074,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll [2011.10.27 15:53:56 | 000,203,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2011.10.27 15:53:56 | 000,123,712 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2011.10.27 15:53:54 | 000,602,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll [2011.10.27 15:53:40 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2011.10.27 15:53:24 | 018,871,616 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2011.10.27 15:53:24 | 000,061,248 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2011.10.27 15:53:23 | 017,248,576 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2011.10.27 15:53:23 | 010,327,360 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2011.10.27 15:53:23 | 005,578,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2011.10.27 15:53:23 | 002,458,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2011.10.27 15:53:23 | 002,401,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2011.10.27 15:53:23 | 002,099,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2011.10.27 15:53:23 | 000,919,872 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll [2011.10.27 15:53:23 | 000,877,376 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll [2011.10.27 15:53:02 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2011.10.27 15:52:34 | 000,000,000 | ---D | C] -- C:\NVIDIA [2011.10.27 15:47:59 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Easeware [2011.10.27 15:47:40 | 000,000,000 | ---D | C] -- C:\Program Files\Easeware [2011.10.27 15:47:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverEasy [2011.10.27 15:38:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Amnesia [2011.10.27 15:37:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ICQ7.6 [2011.10.27 15:36:47 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\ICQ [2011.10.27 15:36:43 | 000,000,000 | ---D | C] -- C:\Program Files\ICQ7.6 [2011.10.27 15:26:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\MAGIX_MusicEditor [2011.10.27 15:26:00 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\MAGIX [2011.10.27 15:24:58 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\MAGIX_Music_Maker_MX_Premium_Download-Version [2011.10.27 15:24:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX [2011.10.27 15:24:33 | 000,000,000 | ---D | C] -- C:\Program Files\MAGIX [2011.10.27 15:24:21 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2011.10.27 15:24:13 | 000,000,000 | ---D | C] -- C:\ProgramData\MAGIX [2011.10.27 15:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MAGIX Services [2011.10.27 13:25:06 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\DarKGunZ [2011.10.26 15:53:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\FloolaDesktop [2011.10.26 15:48:59 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\SoftWepz [2011.10.26 15:48:44 | 000,000,000 | ---D | C] -- C:\Program Files\SoftWepz [2011.10.26 15:48:44 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DiskAid [2011.10.26 15:43:46 | 000,000,000 | ---D | C] -- C:\Program Files\DiskAid [2011.10.26 15:30:33 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\SharePod [2011.10.26 14:49:48 | 000,000,000 | ---D | C] -- C:\Program Files\CDex [2011.10.25 18:48:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ubisoft [2011.10.25 17:55:39 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Electronic Arts [2011.10.25 17:55:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts [2011.10.24 13:09:23 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2011.10.24 13:09:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2011.10.24 13:09:23 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2011.10.23 12:41:30 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\My Games [2011.10.23 12:40:01 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll [2011.10.23 12:35:07 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft [2011.10.23 11:47:00 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll [2011.10.23 11:47:00 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll [2011.10.23 11:46:59 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll [2011.10.23 11:46:59 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll [2011.10.23 11:46:59 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll [2011.10.23 11:46:59 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll [2011.10.23 11:46:59 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll [2011.10.23 11:46:58 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll [2011.10.23 11:46:58 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll [2011.10.23 11:46:58 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll [2011.10.23 11:46:58 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll [2011.10.23 11:46:58 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll [2011.10.23 11:46:57 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll [2011.10.23 11:46:57 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll [2011.10.23 11:46:57 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll [2011.10.23 11:46:57 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll [2011.10.23 11:46:57 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll [2011.10.23 11:46:57 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll [2011.10.23 11:46:57 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll [2011.10.23 11:46:56 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll [2011.10.23 11:46:56 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll [2011.10.23 11:46:56 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll [2011.10.23 11:46:56 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll [2011.10.23 11:46:56 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll [2011.10.23 11:46:55 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll [2011.10.23 11:46:55 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll [2011.10.23 11:46:55 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll [2011.10.23 11:46:55 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll [2011.10.23 11:46:54 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll [2011.10.23 11:46:54 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll [2011.10.23 11:46:54 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll [2011.10.23 11:46:53 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll [2011.10.23 11:46:53 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll [2011.10.23 11:46:53 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll [2011.10.23 11:46:53 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll [2011.10.23 11:46:53 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll [2011.10.23 11:46:53 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll [2011.10.23 11:46:53 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll [2011.10.23 11:46:53 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll [2011.10.23 11:46:03 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx [2011.10.21 19:11:15 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Xerox [2011.10.21 15:34:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2011.10.19 14:55:01 | 000,000,000 | -HSD | C] -- C:\found.000 [2011.10.19 13:56:57 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\Microsoft [2011.10.19 08:57:46 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\133D8C39-703C-4E81-9D37-D3994D664C14.aplzod [2011.10.19 08:27:25 | 000,000,000 | RH-D | C] -- C:\Users\Daniel\AppData\Roaming\SecuROM [2011.10.18 18:03:26 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\DiskAid [2011.10.18 18:03:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskAid [2011.10.18 18:03:22 | 000,000,000 | ---D | C] -- C:\Program Files\DigiDNA [2011.10.18 11:59:22 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\Avira [2011.10.18 11:59:00 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\ssmdrv.sys [2011.10.18 11:58:59 | 000,134,344 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys [2011.10.18 11:58:59 | 000,074,640 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys [2011.10.18 11:58:59 | 000,036,000 | ---- | C] (Avira GmbH) -- C:\Windows\System32\drivers\avkmgr.sys [2011.10.18 11:58:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2011.10.18 11:58:56 | 000,000,000 | ---D | C] -- C:\Program Files\Avira [2011.10.16 10:01:47 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Setups [2011.10.15 13:35:21 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Desktop\Programme [2011.10.14 19:37:47 | 000,000,000 | ---D | C] -- C:\Filme [2011.10.14 18:01:51 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\iTALC [2011.10.14 12:41:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\Deployment [2011.10.14 12:41:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\Apps [2011.10.14 12:14:00 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Haushalt [2011.10.13 20:05:10 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2011.10.13 20:05:09 | 001,798,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2011.10.13 20:05:09 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2011.10.13 20:05:08 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2011.10.13 20:05:07 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2011.10.13 19:07:33 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\iPhone.F4B6EDD4861104DF103CA831FC6755522BBBD9C1.1 [2011.10.13 15:13:29 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\speichern_Laden [2011.10.13 12:59:29 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll [2011.10.13 12:59:29 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax [2011.10.13 12:59:24 | 002,334,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2011.10.12 16:47:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes [2011.10.12 16:46:24 | 000,000,000 | ---D | C] -- C:\Program Files\iPod [2011.10.12 16:46:23 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes [2011.10.12 16:44:24 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour [2011.10.10 13:31:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Projekte [2011.10.10 13:18:55 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Projects [2011.10.09 14:10:01 | 000,000,000 | ---D | C] -- C:\Program Files\DJ Software [2011.10.09 12:51:56 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\UltraVNC [2011.10.09 12:51:38 | 000,000,000 | ---D | C] -- C:\Program Files\UltraVNC [2011.10.08 20:25:50 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Visual Studio 2008 [2011.10.08 20:22:33 | 000,000,000 | ---D | C] -- C:\Program Files\Iminent [2011.10.08 20:17:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express [2011.10.03 16:33:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\Paint [2011.10.03 15:41:25 | 000,000,000 | ---D | C] -- C:\Program Files\Intelore [2011.10.02 21:35:14 | 000,000,000 | ---D | C] -- C:\Program Files\Taschenrechner [2011.10.01 20:35:27 | 000,019,805 | ---- | C] (Thesycon GmbH, Germany) -- C:\Windows\System32\drivers\usbio.sys [2011.10.01 20:27:45 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\pdfforge [2011.10.01 20:27:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator [2011.10.01 20:27:40 | 000,158,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCMCDE.DLL [2011.10.01 20:27:40 | 000,125,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB6DE.DLL [2011.10.01 20:27:40 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSCC2DE.DLL [2011.10.01 20:27:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSMPIDE.DLL [2011.10.01 20:27:40 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator [2011.10.01 18:59:58 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe Download Assistant [2011.10.01 14:24:57 | 000,000,000 | ---D | C] -- C:\Users\Daniel\Documents\Datel [2011.09.03 14:06:25 | 000,423,424 | ---- | C] (Unique-TooLZz) -- C:\Users\Daniel\AppData\Roaming\PSC_Bruter_made_by_K4zuj4.exe [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2011.10.30 20:54:32 | 000,060,918 | ---- | M] () -- C:\Windows\System32\ccsync.err [2011.10.30 20:50:17 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Daniel\Desktop\OTL.exe [2011.10.30 20:42:00 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2011.10.30 19:27:42 | 000,154,095 | ---- | M] () -- C:\Users\Daniel\Desktop\web_opener.flv [2011.10.30 16:46:44 | 000,731,970 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2011.10.30 16:46:44 | 000,151,944 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2011.10.30 16:46:43 | 000,780,294 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2011.10.30 16:46:43 | 000,179,990 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2011.10.30 14:48:21 | 000,000,033 | ---- | M] () -- C:\Windows\GunzLauncher.INI [2011.10.30 14:42:00 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2011.10.30 10:25:09 | 000,063,790 | ---- | M] () -- C:\Users\Daniel\Desktop\loader7_1.swf [2011.10.29 17:21:36 | 000,020,496 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2011.10.29 17:21:36 | 000,020,496 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2011.10.29 16:49:31 | 000,004,342 | ---- | M] () -- C:\Windows\System32\cchservice.err [2011.10.29 14:53:23 | 000,000,132 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\Adobe BMP Format CS5 Prefs [2011.10.29 08:20:46 | 000,001,227 | ---- | M] () -- C:\Windows\System32\excltmp~.dat [2011.10.29 07:58:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2011.10.29 07:58:14 | 2817,871,872 | -HS- | M] () -- C:\hiberfil.sys [2011.10.28 23:06:18 | 000,000,162 | ---- | M] () -- C:\NET.INI [2011.10.27 17:15:21 | 000,001,303 | ---- | M] () -- C:\Users\Daniel\Desktop\DarkGunz.lnk [2011.10.27 16:53:44 | 005,320,972 | ---- | M] () -- C:\Users\Daniel\02 Ständertime.mp3 [2011.10.27 16:53:44 | 005,320,972 | ---- | M] () -- C:\Users\Daniel\02 Ständertime (2).mp3 [2011.10.27 16:53:44 | 000,000,059 | ---- | M] () -- C:\Users\Daniel\N2EW.m3u [2011.10.27 16:53:40 | 000,435,866 | ---- | M] () -- C:\Users\Daniel\Ständertime.mp3 [2011.10.27 16:50:31 | 000,257,171 | ---- | M] () -- C:\Users\Daniel\peoplesounds-28.mp3 [2011.10.27 16:50:09 | 000,473,256 | ---- | M] () -- C:\Users\Daniel\peoplesounds-02.mp3 [2011.10.27 16:50:01 | 000,473,256 | ---- | M] () -- C:\Users\Daniel\peoplesounds-01.mp3 [2011.10.27 16:46:14 | 005,320,972 | ---- | M] () -- C:\Users\Daniel\NEW.mp3 [2011.10.27 16:46:10 | 000,000,192 | ---- | M] () -- C:\Users\Daniel\NEW.cue [2011.10.27 15:59:38 | 003,871,760 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2011.10.27 15:59:04 | 000,000,408 | ---- | M] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job [2011.10.26 15:31:44 | 000,007,358 | ---- | M] () -- C:\Users\Daniel\SharePodSettings.xml [2011.10.23 12:40:01 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\Windows\System32\CmdLineExt.dll [2011.10.21 15:41:30 | 000,000,301 | ---- | M] () -- C:\Windows\thug2.ini [2011.10.19 15:14:30 | 000,001,456 | ---- | M] () -- C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 12.0 Prefs [2011.10.19 15:01:34 | 000,000,132 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\Adobe PNG Format CS5 Prefs [2011.10.19 08:03:19 | 000,000,600 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\winscp.rnd [2011.10.15 20:32:17 | 290,143,712 | ---- | M] () -- C:\Users\Daniel\Documents\clip0015.avi [2011.10.15 09:53:00 | 018,871,616 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2011.10.15 09:53:00 | 017,248,576 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2011.10.15 09:53:00 | 013,205,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2011.10.15 09:53:00 | 010,327,360 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2011.10.15 09:53:00 | 006,350,144 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2011.10.15 09:53:00 | 005,578,560 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2011.10.15 09:53:00 | 003,840,320 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2011.10.15 09:53:00 | 003,074,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll [2011.10.15 09:53:00 | 002,458,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2011.10.15 09:53:00 | 002,401,088 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2011.10.15 09:53:00 | 002,099,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2011.10.15 09:53:00 | 000,919,872 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll [2011.10.15 09:53:00 | 000,877,376 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco32.dll [2011.10.15 09:53:00 | 000,602,432 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\easyupdatusapiu.dll [2011.10.15 09:53:00 | 000,203,072 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2011.10.15 09:53:00 | 000,123,712 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2011.10.15 09:53:00 | 000,061,248 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2011.10.15 09:53:00 | 000,004,359 | ---- | M] () -- C:\Windows\System32\nvinfo.pb [2011.10.11 14:00:01 | 000,134,344 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avipbb.sys [2011.10.11 14:00:01 | 000,074,640 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avgntflt.sys [2011.10.11 14:00:01 | 000,036,000 | ---- | M] (Avira GmbH) -- C:\Windows\System32\drivers\avkmgr.sys [2011.10.09 09:54:45 | 000,003,584 | ---- | M] () -- C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.10.03 15:41:27 | 000,000,043 | ---- | M] () -- C:\END [2011.10.03 04:06:16 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe [2011.10.03 04:06:15 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe [2011.10.03 04:06:14 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe [2011.10.03 04:06:03 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll [2011.10.02 21:37:58 | 000,000,024 | ---- | M] () -- C:\EasySetup.ini [1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ] ========== Files Created - No Company Name ========== [2011.10.30 19:27:39 | 000,154,095 | ---- | C] () -- C:\Users\Daniel\Desktop\web_opener.flv [2011.10.30 10:25:08 | 000,063,790 | ---- | C] () -- C:\Users\Daniel\Desktop\loader7_1.swf [2011.10.27 17:15:21 | 000,001,303 | ---- | C] () -- C:\Users\Daniel\Desktop\DarkGunz.lnk [2011.10.27 16:56:59 | 005,320,972 | ---- | C] () -- C:\Users\Daniel\02 Ständertime (2).mp3 [2011.10.27 16:53:40 | 005,320,972 | ---- | C] () -- C:\Users\Daniel\02 Ständertime.mp3 [2011.10.27 16:53:40 | 000,435,866 | ---- | C] () -- C:\Users\Daniel\Ständertime.mp3 [2011.10.27 16:53:40 | 000,000,059 | ---- | C] () -- C:\Users\Daniel\N2EW.m3u [2011.10.27 16:50:29 | 000,257,171 | ---- | C] () -- C:\Users\Daniel\peoplesounds-28.mp3 [2011.10.27 16:50:08 | 000,473,256 | ---- | C] () -- C:\Users\Daniel\peoplesounds-02.mp3 [2011.10.27 16:49:58 | 000,473,256 | ---- | C] () -- C:\Users\Daniel\peoplesounds-01.mp3 [2011.10.27 16:46:10 | 005,320,972 | ---- | C] () -- C:\Users\Daniel\NEW.mp3 [2011.10.27 16:46:10 | 000,000,192 | ---- | C] () -- C:\Users\Daniel\NEW.cue [2011.10.27 15:53:23 | 000,004,359 | ---- | C] () -- C:\Windows\System32\nvinfo.pb [2011.10.27 15:47:42 | 000,000,408 | ---- | C] () -- C:\Windows\tasks\DriverEasy Scheduled Scan.job [2011.10.27 13:25:09 | 000,000,033 | ---- | C] () -- C:\Windows\GunzLauncher.INI [2011.10.21 15:41:30 | 000,000,301 | ---- | C] () -- C:\Windows\thug2.ini [2011.10.19 15:04:49 | 000,000,132 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\Adobe BMP Format CS5 Prefs [2011.10.18 17:46:47 | 000,000,600 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\winscp.rnd [2011.10.15 20:27:12 | 290,143,712 | ---- | C] () -- C:\Users\Daniel\Documents\clip0015.avi [2011.10.14 16:19:09 | 000,007,358 | ---- | C] () -- C:\Users\Daniel\SharePodSettings.xml [2011.10.08 20:25:48 | 000,001,407 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Basic 2008 Express Edition.lnk [2011.10.06 17:30:11 | 000,000,132 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\Adobe PNG Format CS5 Prefs [2011.10.03 15:41:27 | 000,000,043 | ---- | C] () -- C:\END [2011.10.02 21:37:58 | 000,000,024 | ---- | C] () -- C:\EasySetup.ini [2011.10.01 20:27:42 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll [2011.10.01 19:13:31 | 000,001,249 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Dreamweaver CS5.5.lnk [2011.09.12 09:57:05 | 000,000,810 | ---- | C] () -- C:\Windows\Rtcw.INI [2011.09.11 13:43:40 | 000,001,511 | ---- | C] () -- C:\Windows\gfscore.ini [2011.09.03 14:06:26 | 000,133,120 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\chrtmp [2011.08.25 07:27:20 | 000,210,944 | ---- | C] () -- C:\Windows\System32\MSVCRT10.DLL [2011.08.23 15:57:34 | 000,000,094 | ---- | C] () -- C:\Users\Daniel\AppData\Local\fusioncache.dat [2011.08.12 20:12:58 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI [2011.08.03 16:09:53 | 000,001,456 | ---- | C] () -- C:\Users\Daniel\AppData\Local\Adobe Für Web speichern 12.0 Prefs [2011.08.01 13:44:33 | 000,000,004 | ---- | C] () -- C:\Windows\System32\admshare.dat [2011.07.25 14:45:12 | 000,000,132 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\Adobe GIF Format CS5 Prefs [2011.07.25 13:49:28 | 000,003,584 | ---- | C] () -- C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011.07.16 22:00:42 | 000,001,227 | ---- | C] () -- C:\Windows\System32\excltmp~.dat [2011.07.16 22:00:02 | 000,000,140 | -H-- | C] () -- C:\Windows\System32\ctlsw.ini [2011.07.16 22:00:02 | 000,000,100 | ---- | C] () -- C:\Windows\System32\SWCTL.DLL [2011.07.16 22:00:00 | 000,155,536 | ---- | C] () -- C:\Windows\System32\dllcinx.exe [2011.07.16 22:00:00 | 000,009,368 | ---- | C] () -- C:\Windows\System32\drivers\mchccinj.sys [2011.07.16 21:59:59 | 000,000,620 | ---- | C] () -- C:\Windows\System32\nochook.ini [2010.11.21 01:46:14 | 000,780,294 | ---- | C] () -- C:\Windows\System32\perfh007.dat [2010.11.21 01:46:14 | 000,295,922 | ---- | C] () -- C:\Windows\System32\perfi007.dat [2010.11.21 01:46:14 | 000,179,990 | ---- | C] () -- C:\Windows\System32\perfc007.dat [2010.11.21 01:46:14 | 000,038,104 | ---- | C] () -- C:\Windows\System32\perfd007.dat [2010.11.20 22:29:26 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe [2009.07.14 05:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat [2009.07.14 05:33:53 | 003,871,760 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT [2009.07.14 03:05:48 | 000,731,970 | ---- | C] () -- C:\Windows\System32\perfh009.dat [2009.07.14 03:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat [2009.07.14 03:05:48 | 000,151,944 | ---- | C] () -- C:\Windows\System32\perfc009.dat [2009.07.14 03:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat [2009.07.14 03:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT [2009.07.14 03:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat [2009.07.14 00:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin [2009.07.14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll [2009.07.14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll [2009.06.10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat [2008.10.22 04:29:06 | 000,173,550 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat [2007.12.28 08:22:02 | 000,010,296 | ---- | C] () -- C:\Windows\System32\drivers\ASUSHWIO.SYS [2007.04.27 09:43:58 | 000,120,200 | ---- | C] () -- C:\Windows\System32\DLLDEV32i.dll [2006.10.16 07:58:14 | 000,086,016 | ---- | C] () -- C:\Windows\System32\aspolyzt.dll [2005.07.06 11:59:58 | 000,028,672 | ---- | C] () -- C:\Windows\System32\asdrawli.dll [2005.07.04 14:17:30 | 000,069,632 | ---- | C] () -- C:\Windows\System32\ASDRAWMA.DLL [2004.08.17 16:34:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\AS_SORT.DLL [2004.08.13 08:56:20 | 000,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys [2003.05.22 11:31:44 | 000,033,792 | ---- | C] () -- C:\Windows\System32\ASDRAW32.DLL [2002.07.12 15:29:28 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AS_MDB32.DLL [2002.03.21 14:39:02 | 000,073,728 | ---- | C] () -- C:\Windows\System32\UNACEV2.DLL < End of report > --- --- ---OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 30.10.2011 20:50:57 - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Daniel\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000807 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
3.50 Gb Total Physical Memory | 1.61 Gb Available Physical Memory | 46.05% Memory free
7.00 Gb Paging File | 4.01 Gb Available in Paging File | 57.30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 931.51 Gb Total Space | 541.68 Gb Free Space | 58.15% Space Free | Partition Type: NTFS
Drive G: | 976.70 Mb Total Space | 976.66 Mb Free Space | 100.00% Space Free | Partition Type: FAT
Computer Name: DANIEL-PC | User Name: Daniel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
========== Extra Registry (SafeList) ==========
========== File Associations ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
========== Shell Spawning ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office14\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Program Files\ACD Systems\ACDSee\8.0\ACDSee8.exe" "%1" (ACD Systems Ltd.)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [Bridge] -- C:\Program Files\Adobe\Adobe Bridge CS5.1\Bridge.exe "%L" (Adobe Systems, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
========== Security Center Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
========== Authorized Applications List ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:/Program Files/iTALC\ica.exe" = C:/Program Files/iTALC\ica.exe:*:Enabled:iTALC Client Application (ICA)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\FlashGet Network\Flashget\FlashGet.exe" = C:\FlashGet Network\Flashget\FlashGet.exe:*:Enabled:Flashget2
"C:\FlashGet Network\Flashget\LiveUpdate.exe" = C:\FlashGet Network\Flashget\LiveUpdate.exe:*:Enabled:FGLiveUpdate
"C:\FlashGet Network\Flashget\LiveUpdateEx.exe" = C:\FlashGet Network\Flashget\LiveUpdateEx.exe:*:Enabled:FGLiveUpdateEx
"C:/Program Files/iTALC\ica.exe" = C:/Program Files/iTALC\ica.exe:*:Enabled:iTALC Client Application (ICA)
========== HKEY_LOCAL_MACHINE Uninstall List ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{0125D081-30D0-4A97-82A8-C28D444B6256}" = Microsoft SQL Server Compact 3.5 SP2 DEU
"{0215A652-E081-4B09-9333-DC85AAB67FFA}" = Adobe Dreamweaver CS5.5
"{024521CF-C07E-4F8E-8481-0D75695E03AF}" = PxMergeModule
"{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}" = Microsoft_VC90_ATL_x86
"{035400A4-29BD-3723-BEED-E2718A68CDE0}" = Microsoft Visual Studio 2010 Office Developer Tools (x86)
"{03A4C6A1-26E9-4DDB-81D9-B332E5BB10AD}" = Microsoft Sync Framework SDK v1.0 SP1 de
"{044F9133-B8D7-4d11-BF39-803FA20F5C8B}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0A89364A-98BC-42AD-87DD-25BFE7C39EAC}" = MAGIX Screenshare
"{0E592C31-09EF-3CA1-A7DE-05D13DFCF791}" = Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - deu
"{0E5FDD1D-DCE8-4F9D-9BFD-4E4CF89811E2}" = iCloud
"{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}" = Microsoft_VC80_ATL_x86
"{0F37D969-1260-419E-B308-EF7D29ABDE20}" = Web Deployment Tool
"{0F7E9B5F-8B32-4415-BD78-508785FE837B}" = Sprecher V1.2
"{1374CC63-B520-4f3f-98E8-E9020BF01CFF}" = Windows XP Mode
"{13A5E785-5197-4EAD-8EE3-D660271E49BC}" = Feedback Tool
"{1570DE88-A78A-37FD-8A05-92620D160CCA}" = Microsoft Visual Studio 2010 Office Developer Tools (x86) Language Pack - DEU
"{1803A630-3C38-4D2B-9B9A-0CB37243539C}" = Microsoft ASP.NET MVC 2
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1C2B3CEA-482E-4453-B3E2-C9731337828A}" = Microsoft SQL Server 2008 Native Client
"{1C7108CF-774A-11E0-B3C5-0013D3D69929}" = Vegas Pro 10.0
"{1D328E11-3B0C-388C-835D-C9C20E8C7734}" = Microsoft Help Viewer 1.0 Language Pack - DEU
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{229B6751-774A-11E0-BCAE-0013D3D69929}" = MSVCRT Redists
"{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22
"{26A24AE4-039D-4CA4-87B4-2F83216027FF}" = Java(TM) 6 Update 29
"{28CF21CC-3FFF-3610-BA0E-5E5118EE92D5}" = Microsoft Visual Studio 2010 Premium - DEU
"{29ED20C9-5E15-4969-9279-25BF3727A3DA}" = iTunes
"{31C3C6EA-E991-405F-A3AA-2C070CCCC47C}" = Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools - DEU
"{33AE9E89-47C9-4A0D-9E9D-BDD6966A3804}" = Microsoft SQL Server 2008 RsFx Driver
"{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}" = Firebird SQL Server - MAGIX Edition
"{3521BDBD-D453-5D9F-AA55-44B75D214629}" = Adobe Community Help
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{40416836-56CC-4C0E-A6AF-5C34BADCE483}" = Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools
"{41B31ABE-5A6E-498A-8F28-3BA3B8779A41}" = Dotfuscator Software Services - Community Edition
"{4286716B-1287-48E7-9078-3DC8248DBA96}" = OpenOffice.org 3.3
"{4286E640-B5FB-11DF-AC4B-005056C00008}" = Google Earth
"{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR
"{477415F5-93DA-46AA-85C5-640047825995}" = Microsoft SQL Server 2008 Database Engine Shared
"{47C39E4A-28F2-33B1-B9B7-97F24E52D917}" = Microsoft Help Viewer 1.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A6F34E2-09E5-4616-B227-4A26A488A6F9}" = Microsoft SQL Server 2008 Common Files
"{4AF2248C-B3DF-46FB-9596-87F5DB193689}" = Microsoft SQL Server 2008 Browser
"{4DB156E9-F028-46D9-9E9B-DFB450F157C7}_is1" = DiskAid_Crack version 1.62
"{4E33D05D-76CF-5D3C-4D5D-7727530FA161}" = Adobe Content Viewer
"{5242B252-01BB-4F2E-BBF4-5C01BC3B6619}" = Microsoft SQL Server 2008 R2 Data-Tier Application Project
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{5A08C9D1-37AD-4A8D-90D3-33F92C578AA5}" = Microsoft SQL Server System CLR Types
"{5BD39911-A12F-4562-98BA-A6E03E3370B1}" = Microsoft SQL Server 2008 Database Engine Services
"{5E453519-60F6-4A4D-A0BF-16663F9B3536}" = Safari
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{616C6F39-4CE1-3434-A665-2F6A04C09A7F}" = Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools
"{6327A158-4E59-4E01-8E41-F325D3D4BAA0}" = MAGIX Speed burnR (MSI)
"{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}" = Microsoft_VC90_MFC_x86
"{681F4E9F-34E0-36BD-BF2C-100554E403A5}" = Microsoft Visual F# 2.0 Runtime Language Pack - DEU
"{6A86554B-8928-30E4-A53C-D7337689134D}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.30319
"{6CDEAD7E-F8D8-37F7-AB6F-1E22716E30F3}" = Microsoft Visual Studio Macro Tools
"{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = Die Sims 2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{716E0306-8318-4364-8B8F-0CC4E9376BAC}" = MSXML 4.0 SP2 Parser and SDK
"{71B6C9B6-CDF1-516E-EDBD-F3F8EBF7A0C7}" = Adobe Support Advisor
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{729A3000-BC8A-3B74-BA5D-5068FE12D70C}" = Microsoft Visual F# 2.0 Runtime
"{735AA36F-9A9E-477B-BC74-9E6AF1A8A6D8}" = MAGIX Music Maker MX Premium Download-Version
"{738B0934-6676-44F6-AB52-32F4E60DCA7F}" = Microsoft SQL Server Compact 3.5 SP1 Design Tools (Deutsch)
"{7644E42D-B096-457F-8B5B-901238FC81AE}" = ICQ7.6
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}" = Text-To-Speech-Runtime
"{7BEC151D-ADA9-3EA9-9273-99BA82881971}" = Microsoft Visual Studio 2010 SharePoint Developer Tools
"{7CD2DA07-6695-4FFE-A2A6-5F7055F1A8FA}" = EasySetup 2.0.4e
"{7EE873AF-46BB-4B5D-BA6F-CFE4B0566E22}" = TuneUp Utilities Language Pack (de-DE)
"{83C4A333-DD44-3431-B1BF-6A66B971D07B}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EAA9D70-C912-3708-92DD-0CCC26F386E1}" = Microsoft Visual Studio 2010 Performance Collection Tools - DEU
"{8F714418-F3C3-3BF0-B548-E4BDA7AD41DE}" = Microsoft Visual Basic 2008 Express Edition with SP1 - DEU
"{8FB91814-FE42-4B62-9B54-4B677A420715}_is1" = CLEO v3.0.950
"{90140000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010
"{90140000-0015-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010
"{90140000-0016-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010
"{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010
"{90140000-0019-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010
"{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010
"{90140000-001B-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{46298F6A-1E7E-4D4A-B5F5-106A4F0E48C6}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010
"{90140000-001F-0410-0000-0000000FF1CE}_Office14.PROPLUSR_{C0743197-FFEE-4C19-BAEB-8F7437DC4C8A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010
"{90140000-002C-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{4275FB46-ABDF-4456-876C-17CF64294D9A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010
"{90140000-0044-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010
"{90140000-006E-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{98EDFD9F-EA76-40CC-BCE9-92C69413F65B}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0407-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010
"{90140000-00A1-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0407-0000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010
"{90140000-00BA-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{69E54534-4569-4639-89E9-305B60A11601}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{91F54E1D-804A-46D8-A56C-53EA9C4B3177}" = Microsoft Silverlight 3 SDK - Deutsch
"{929F5BFC-60F0-34EC-A50B-2001AAC03D56}" = Microsoft Team Foundation Server 2010 Object Model - DEU
"{92C5C058-E941-47C3-B7E8-38A79C605969}" = Microsoft SQL Server 2008 R2 Transact-SQL Language Service
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AA2D735-3375-42D4-9A61-3FFEF82599D6}" = Unterstützungsdateien für Microsoft SQL Server 2008-Setup
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C3B8582-A72A-4835-8903-877A834407BB}" = Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Framework
"{A00B9A50-3090-4CFF-9CDA-82DA0BEDAA21}" = Apple Mobile Device Support
"{A106D33E-6B43-42C0-9BFC-D03303261FA7}" = Microsoft SQL Server 2008 R2 Management Objects
"{A1D898BF-7690-48FD-955C-8FC7A54B1031}" = Nero 7 Essentials
"{A78FE97A-C0C8-49CE-89D0-EDD524A17392}" = PDF Settings CS5
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AA2E6BFE-4351-481C-A720-47CB3506570B}" = ACDSee 8
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC41D924-8C68-4BD5-A7A1-0AE4176C31A6}" = Crystal Reports for Visual Studio
"{AC76BA86-1033-F400-7760-000000000005}" = Adobe Acrobat X Pro - English, Français, Deutsch
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Deutsch
"{ACE28263-76A4-4BF5-B6F4-8BD719595969}" = Microsoft SQL Server Database Publishing Wizard 1.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 285.62
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.5.20
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}" = Microsoft SQL Server 2008 Database Engine Services
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Click to Call with Skype
"{B6D38690-755E-4F40-A35A-23F8BC2B86AC}" = Microsoft_VC90_MFCLOC_x86
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{BDE646E8-86E0-50E1-37BC-0AEBB2185D76}" = Adobe Widget Browser
"{BED5FA72-8D62-4214-A43E-F57A9BE7ADBB}_is1" = Amnesia: The Dark Descent version 1.0
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = Die*Sims™*3
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{C965F01C-76EA-4BD7-973E-46236AE312D7}" = Sql Server Customer Experience Improvement Program
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCAC7E52-ECCE-3C4D-B1BE-BC2ACF1C1C0E}" = Microsoft Visual Basic 2010 Express - DEU
"{CE9BAD6E-60FC-46CC-82A2-5B0F2B1A0E36}" = Dotfuscator Software Services - Community Edition - DEU
"{CFCB8616-A5D1-4281-80E8-389F685BFAE2}" = Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D074DC76-F6C9-440E-A1D0-1DE958417FDB}" = Microsoft SQL Server VSS Writer
"{D1A19B02-817E-4296-A45B-07853FD74D57}" = Microsoft_VC80_MFC_x86
"{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}" = TuneUp Utilities
"{D57FC112-312E-4D70-860F-2DB8FB6858F0}" = Adobe Creative Suite 5.5 Master Collection
"{D6A6CFAD-CD86-482B-90D1-6FCC4E252ACD}" = Microsoft Sync Services for ADO.NET v2.0 SP1 (x86) de
"{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}" = Microsoft_VC80_MFCLOC_x86
"{DB0AF767-7CC7-4E4D-B6BE-A200F20A2FB1}" = Microsoft Sync Framework Runtime v1.0 SP1 (x86) de
"{DBE8431C-CF9A-38C3-B42D-28B6FCE1EA3B}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU
"{DC0C5A78-6DBF-3444-0120-0FE8F0134FCD}" = Adobe Download Assistant
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E4E9CBC9-1CF5-48E3-AF6F-1AB44A856346}" = Microsoft ASP.NET MVC 2 - DEU
"{EAF7B35C-DCBE-4032-9ABF-C35C43D07124}" = Microsoft Sync Framework Services v1.0 SP1 (x86) de
"{EC66418E-DAA2-36D5-809E-40BEC94E622A}" = Microsoft Visual Studio Macro Tools - DEU Language Pack
"{EF1394D4-9FB6-4F1F-9A09-20FF3033AE14}" = Tony Hawk's Underground 2
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F2835483-37F2-4123-B4FE-0E77D58447F2}" = Far Cry 2
"{F3494AB6-6900-41C6-AF57-823626827ED8}" = Microsoft SQL Server 2008 Database Engine Shared
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{FF29527A-44CD-3422-945E-981A13584000}" = VC Runtimes MSI
"{FF6F95A4-E59B-45C8-BEA8-0BDC8D9CAB51}" = Microsoft SQL Server 2008 Common Files
"7-Zip" = 7-Zip 9.20
"Action Replay Code Manager_is1" = Action Replay Code Manager
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Support Advisor
"AS-0000000311042005224E7006" = 3D Wohnraumplaner CAD 15.63
"Ashampoo Burning Studio Elements_is1" = Ashampoo Burning Studio Elements 10.0.9
"Audacity_is1" = Audacity 1.2.6
"Avira AntiVir Desktop" = Avira Free Antivirus
"BitTorrent" = BitTorrent
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Community Help
"Cheat Engine 6.1_is1" = Cheat Engine 6.1
"com.adobe.dmp.contentviewer" = Adobe Content Viewer
"com.adobe.downloadassistant.AdobeDownloadAssistant" = Adobe Download Assistant
"com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1" = Adobe Widget Browser
"conduitEngine" = Conduit Engine
"DAEMON Tools Lite" = DAEMON Tools Lite
"DiskAid Patcher" = DiskAid Patcher
"DiskAid_is1" = DiskAid 4.71
"DriverEasy_is1" = DriverEasy 3.10.2
"Faelscherwerkstatt 4_is1" = Faelscherwerkstatt 4
"FormatFactory" = FormatFactory 2.70
"Free YouTube Download 3_is1" = Free YouTube Download 3 version 3.0.11.727
"Free YouTube to MP3 Converter_is1" = Free YouTube to MP3 Converter version 3.10.8.815
"Google Chrome" = Google Chrome
"HyperCam 2" = HyperCam 2
"InstallShield_{D6DBDC2A-E72C-4284-B6AD-6B3B61B4DABC}" = Far Cry
"InstallShield_{EF1394D4-9FB6-4F1F-9A09-20FF3033AE14}" = Tony Hawk's Underground 2
"ixla Webeasy" = ixla Web Easy
"Kindersicherung_is1" = Kindersicherung 2011
"MAGIX_MSI_mm18dlx" = MAGIX Music Maker MX Premium Download-Version
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Microsoft Help Viewer 1.0" = Microsoft Help Viewer 1.0
"Microsoft Help Viewer 1.0 Language Pack - DEU" = Microsoft Help Viewer 1.0 Language Pack - DEU
"Microsoft SQL Server 10" = Microsoft SQL Server 2008
"Microsoft SQL Server 10 Release" = Microsoft SQL Server 2008
"Microsoft Team Foundation Server 2010 Object Model - DEU" = Microsoft Team Foundation Server 2010-Objektmodell - DEU
"Microsoft Visual Basic 2008 Express Edition with SP1 - DEU" = Microsoft Visual Basic 2008 Express Edition mit SP1 - DEU
"Microsoft Visual Basic 2010 Express - DEU" = Microsoft Visual Basic 2010 Express - DEU
"Microsoft Visual Studio 2010 Premium - DEU" = Microsoft Visual Studio 2010 Premium - DEU
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x86)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU" = Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU
"Microsoft Visual Studio Macro Tools" = Microsoft Visual Studio Macro Tools
"Microsoft Visual Studio Macro Tools - DEU Language Pack" = Microsoft Visual Studio Macro Tools - DEU Language Pack
"Mozilla Firefox 7.0.1 (x86 de)" = Mozilla Firefox 7.0.1 (x86 de)
"NosTale(DE)_is1" = Nostale(DE)
"Notepad++" = Notepad++
"Office14.PROPLUSR" = Microsoft Office Professional Plus 2010
"Picasa 3" = Picasa 3
"Pivot 3.2 Beta Deutsch" = Pivot 3.2 Beta Deutsch
"Return to Castle Wolfenstein" = Return to Castle Wolfenstein
"San Andreas Mod Installer1.1" = San Andreas Mod Installer
"Scan2PDF_is1" = Scan2PDF 1.6
"Songr" = Songr
"TeamViewer 6" = TeamViewer 6
"Totalcmd" = Total Commander (Remove or Repair)
"TuneUp Utilities" = TuneUp Utilities
"Unlocker" = Unlocker 1.9.1
"uTorrent" = µTorrent
"Visitenkarten in 2 Minuten" = Visitenkarten in 2 Minuten
"VLC media player" = VLC media player 1.1.11
"Winload Toolbar" = Winload Toolbar
"WinRAR archiver" = WinRAR 4.01 (32-Bit)
"Zoo Tycoon 1.0" = Microsoft Zoo Tycoon
========== HKEY_CURRENT_USER Uninstall List ==========
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"PhotoFiltre" = PhotoFiltre
========== Last 10 Event Log Errors ==========
Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!
< End of report >
Vielen Dank im Voraus Gruß |
|
30.10.2011, 21:32
| #4 |
| /// Malware-holic | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! combofix: Combofix darf ausschließlich ausgeführt werden, wenn dies von einem Team Mitglied angewiesen wurde! Bitte downloade dir Combofix.exe und speichere es unbedingt auf deinem Desktop.
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
30.10.2011, 22:11
| #5 |
| | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! Hallo, hier das Ergebnis Combofix Logfile: Code:
ATTFilter ComboFix 11-10-30.03 - Daniel 30.10.2011 22:00:13.2.4 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3583.2108 [GMT 1:00]
ausgeführt von:: c:\users\Daniel\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((( Dateien erstellt von 2011-09-28 bis 2011-10-30 ))))))))))))))))))))))))))))))
.
.
2011-10-30 21:08 . 2011-10-30 21:08 -------- d-----w- c:\users\Daniel\AppData\Local\temp
2011-10-30 21:08 . 2011-10-30 21:08 -------- d-----w- c:\users\Frank\AppData\Local\temp
2011-10-30 21:08 . 2011-10-30 21:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-10-29 20:33 . 2011-10-29 20:33 -------- d-----w- c:\program files\IDAutomation.com OCR Font Advantage Package DEMO
2011-10-29 17:46 . 2011-10-29 17:47 -------- d-----w- c:\users\Daniel\AppData\Roaming\Scan2PDF
2011-10-29 17:46 . 2011-10-29 17:46 -------- d-----w- c:\program files\Scan2PDF
2011-10-29 14:27 . 2011-10-29 14:27 -------- d-----w- c:\program files\Sigel
2011-10-29 07:00 . 2011-10-29 07:00 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3C00427F-B4E5-4189-9B9F-C2B6DF3676BE}\offreg.dll
2011-10-28 22:06 . 2011-10-28 22:06 -------- d-----w- c:\users\Frank\AppData\Roaming\Apple Computer
2011-10-28 12:15 . 2011-10-28 12:19 -------- d-----w- c:\program files\Amnesia
2011-10-28 11:54 . 2011-10-07 03:48 6668624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3C00427F-B4E5-4189-9B9F-C2B6DF3676BE}\mpengine.dll
2011-10-27 18:47 . 2011-10-27 18:47 -------- d-----w- c:\program files\Conduit
2011-10-27 18:47 . 2011-10-27 18:47 -------- d-----w- c:\users\Daniel\AppData\Local\Conduit
2011-10-27 18:47 . 2011-10-27 18:47 -------- d-----w- c:\program files\Winload
2011-10-27 18:47 . 2011-10-27 18:47 -------- d-----w- c:\users\Daniel\Webgears
2011-10-27 14:54 . 2011-10-27 14:54 -------- d-----w- c:\users\Daniel\AppData\Roaming\NVIDIA
2011-10-27 14:54 . 2011-10-27 14:54 -------- d-----w- c:\users\UpdatusUser
2011-10-27 14:54 . 2011-10-27 14:54 -------- d-----w- c:\programdata\NVIDIA
2011-10-27 14:52 . 2011-10-27 14:52 -------- d-----w- C:\NVIDIA
2011-10-27 14:47 . 2011-10-27 14:47 -------- d-----w- c:\users\Daniel\AppData\Roaming\Easeware
2011-10-27 14:47 . 2011-10-27 14:47 -------- d-----w- c:\program files\Easeware
2011-10-27 14:36 . 2011-10-27 15:00 -------- d-----w- c:\users\Daniel\AppData\Roaming\ICQ
2011-10-27 14:36 . 2011-10-27 15:00 -------- d-----w- c:\program files\ICQ7.6
2011-10-27 14:26 . 2011-10-27 15:32 -------- d-----w- c:\users\Daniel\AppData\Roaming\MAGIX
2011-10-27 14:24 . 2011-10-27 14:24 -------- d-----w- c:\program files\MAGIX
2011-10-27 14:24 . 2011-10-27 15:32 -------- d-----w- c:\programdata\MAGIX
2011-10-27 14:24 . 2011-10-27 14:24 -------- d-----w- c:\program files\Common Files\MAGIX Services
2011-10-26 14:53 . 2011-10-26 14:53 -------- d-----w- c:\users\Daniel\AppData\Roaming\FloolaDesktop
2011-10-26 14:48 . 2011-10-26 14:48 -------- d-----w- c:\users\Daniel\AppData\Local\SoftWepz
2011-10-26 14:48 . 2011-10-26 14:48 -------- d-----w- c:\program files\SoftWepz
2011-10-26 14:43 . 2011-10-26 14:43 -------- d-----w- c:\program files\DiskAid
2011-10-26 14:30 . 2011-10-26 14:30 -------- d-----w- c:\users\Daniel\AppData\Roaming\SharePod
2011-10-26 13:49 . 2011-10-26 13:49 -------- d-----w- c:\program files\CDex
2011-10-23 11:40 . 2011-10-23 11:40 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2011-10-23 11:35 . 2011-10-25 17:46 -------- d-----w- c:\program files\Ubisoft
2011-10-23 10:47 . 2010-06-02 02:55 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2011-10-23 10:47 . 2010-06-02 02:55 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2011-10-21 18:11 . 2011-10-21 18:11 -------- d-----w- c:\users\Daniel\AppData\Roaming\Xerox
2011-10-21 14:34 . 2011-10-21 14:34 -------- d-----w- c:\program files\Common Files\InstallShield
2011-10-19 13:55 . 2011-10-19 13:55 -------- d-----w- C:\found.000
2011-10-19 12:56 . 2011-10-29 17:44 -------- d-----w- c:\users\Daniel\AppData\Local\Microsoft
2011-10-19 07:57 . 2011-10-30 19:31 -------- d-----w- c:\users\Daniel\AppData\Local\133D8C39-703C-4E81-9D37-D3994D664C14.aplzod
2011-10-19 07:27 . 2011-10-19 07:27 -------- d--h--r- c:\users\Daniel\AppData\Roaming\SecuROM
2011-10-18 17:03 . 2011-10-26 14:52 -------- d-----w- c:\users\Daniel\AppData\Roaming\DiskAid
2011-10-18 17:03 . 2011-10-18 17:03 -------- d-----w- c:\program files\DigiDNA
2011-10-18 10:59 . 2011-10-18 10:59 -------- d-----w- c:\users\Daniel\AppData\Roaming\Avira
2011-10-18 10:58 . 2011-10-11 13:00 74640 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-10-18 10:58 . 2011-10-11 13:00 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2011-10-18 10:58 . 2011-10-11 13:00 134344 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-10-18 10:58 . 2011-10-18 10:58 -------- d-----w- c:\programdata\Avira
2011-10-18 10:58 . 2011-10-18 10:58 -------- d-----w- c:\program files\Avira
2011-10-16 09:01 . 2011-10-30 08:05 -------- d-----w- c:\users\Daniel\Setups
2011-10-14 18:37 . 2011-10-15 14:15 -------- d-----w- C:\Filme
2011-10-14 17:01 . 2011-10-14 17:01 -------- d-----w- c:\users\Daniel\AppData\Roaming\iTALC
2011-10-14 11:41 . 2011-10-19 07:26 -------- d-----w- c:\users\Daniel\AppData\Local\Deployment
2011-10-14 11:41 . 2011-10-14 11:41 -------- d-----w- c:\users\Daniel\AppData\Local\Apps
2011-10-13 18:07 . 2011-10-13 18:07 -------- d-----w- c:\users\Daniel\AppData\Roaming\iPhone.F4B6EDD4861104DF103CA831FC6755522BBBD9C1.1
2011-10-13 14:13 . 2011-10-19 16:49 -------- d-----w- c:\users\Daniel\AppData\Local\speichern_Laden
2011-10-13 11:59 . 2011-08-17 04:24 465408 ----a-w- c:\windows\system32\psisdecd.dll
2011-10-13 11:59 . 2011-08-17 04:19 75776 ----a-w- c:\windows\system32\psisrndr.ax
2011-10-13 11:59 . 2011-08-27 04:26 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-10-13 11:59 . 2011-08-27 04:26 233472 ----a-w- c:\windows\system32\oleacc.dll
2011-10-13 11:59 . 2011-09-06 02:28 2334720 ----a-w- c:\windows\system32\win32k.sys
2011-10-12 15:46 . 2011-10-12 15:46 -------- d-----w- c:\program files\iPod
2011-10-12 15:46 . 2011-10-12 15:47 -------- d-----w- c:\program files\iTunes
2011-10-12 15:44 . 2011-10-12 15:44 -------- d-----w- c:\program files\Bonjour
2011-10-10 12:24 . 2011-10-10 12:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2011-10-09 13:10 . 2011-10-10 13:10 -------- d-----w- c:\program files\DJ Software
2011-10-09 11:51 . 2011-10-09 11:51 -------- d-----w- c:\users\Daniel\AppData\Roaming\UltraVNC
2011-10-09 11:51 . 2011-10-10 13:10 -------- d-----w- c:\program files\UltraVNC
2011-10-09 11:29 . 2011-10-09 11:29 -------- d-----w- c:\users\Desktop
2011-10-08 19:22 . 2011-10-10 13:10 -------- d-----w- c:\program files\Iminent
2011-10-08 19:17 . 2011-10-10 12:18 207008 ----a-w- c:\programdata\Microsoft\VBExpress\10.0\1031\ResourceCache.dll
2011-10-03 15:33 . 2011-10-03 17:18 -------- d-----w- c:\users\Daniel\AppData\Local\Paint
2011-10-03 14:41 . 2011-10-03 14:41 -------- d-----w- c:\program files\Intelore
2011-10-02 20:35 . 2011-10-02 20:36 -------- d-----w- c:\program files\Taschenrechner
2011-10-01 19:35 . 2001-05-07 10:56 19805 ----a-w- c:\windows\system32\drivers\usbio.sys
2011-10-01 19:27 . 2011-10-01 19:27 -------- d-----w- c:\users\Daniel\AppData\Roaming\pdfforge
2011-10-01 19:27 . 2001-10-28 15:42 116224 ----a-w- c:\windows\system32\pdfcmnnt.dll
2011-10-01 19:27 . 2011-10-01 19:28 -------- d-----w- c:\program files\PDFCreator
2011-10-01 19:27 . 1998-07-06 16:56 125712 ----a-w- c:\windows\system32\VB6DE.DLL
2011-10-01 19:27 . 1998-07-06 16:55 158208 ----a-w- c:\windows\system32\MSCMCDE.DLL
2011-10-01 19:27 . 1998-07-06 16:55 64512 ----a-w- c:\windows\system32\MSCC2DE.DLL
2011-10-01 19:27 . 1998-07-05 23:00 23552 ----a-w- c:\windows\system32\MSMPIDE.DLL
2011-10-01 17:59 . 2011-10-01 17:59 -------- d-----w- c:\program files\Adobe Download Assistant
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-15 08:53 . 2009-06-10 21:19 13205312 ----a-w- c:\windows\system32\nvd3dum.dll
2011-10-03 03:06 . 2011-08-28 10:23 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-09-28 17:14 . 2011-07-04 15:34 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-09-27 18:40 . 2011-09-27 18:40 29696 ----a-w- c:\windows\system32\sfx32.dll
2011-09-27 18:40 . 2011-09-27 18:40 120320 ------w- c:\windows\system32\czip.ocx
2011-09-17 17:13 . 2011-09-17 17:13 685816 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-09-08 20:04 . 2011-09-08 20:04 232512 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-08-30 21:05 . 2011-08-30 21:05 83816 ----a-w- c:\windows\system32\dns-sd.exe
2011-08-30 21:05 . 2011-08-30 21:05 73064 ----a-w- c:\windows\system32\dnssd.dll
2011-08-30 21:05 . 2011-08-30 21:05 50536 ----a-w- c:\windows\system32\jdns_sd.dll
2011-08-30 21:05 . 2011-08-30 21:05 178536 ----a-w- c:\windows\system32\dnssdX.dll
2011-08-24 18:42 . 2011-08-24 18:31 164880 ---ha-w- c:\users\Daniel\AppData\Roaming\Microsoft\Virtual PC\VPCKeyboard.dll
2011-09-30 19:27 . 2011-09-28 17:12 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2008-06-12 09:16 . 2008-06-12 09:16 28672 ----a-w- c:\program files\mozilla firefox\components\FlashgetXpi.dll
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{40c3cc16-7269-4b32-9531-17f2950fb06f}"= "c:\program files\Winload\prxtbWinl.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{40c3cc16-7269-4b32-9531-17f2950fb06f}]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2011-01-17 14:54 175912 ----a-w- c:\program files\ConduitEngine\prxConduitEngine.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{40c3cc16-7269-4b32-9531-17f2950fb06f}]
2011-01-17 14:54 175912 ----a-w- c:\program files\Winload\prxtbWinl.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{40c3cc16-7269-4b32-9531-17f2950fb06f}"= "c:\program files\Winload\prxtbWinl.dll" [2011-01-17 175912]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\prxConduitEngine.dll" [2011-01-17 175912]
.
[HKEY_CLASSES_ROOT\clsid\{40c3cc16-7269-4b32-9531-17f2950fb06f}]
.
[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CCWinTray"="c:\windows\tray\wintmr.exe" [2009-07-13 5863832]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-03-12 149040]
"Pando Media Booster"="c:\program files\Pando Networks\Media Booster\PMB.exe" [2011-08-26 3077528]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-08-02 4910912]
"iCloudServices"="c:\program files\Common Files\Apple\Internet Services\iCloudServices.exe" [2011-10-06 59240]
"ApplePhotoStreams"="c:\program files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2011-09-29 59240]
"com.apple.dav.bookmarks.daemon"="c:\program files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe" [2011-10-05 59240]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Device Detector"="DevDetect.exe -autorun" [X]
"ChicoSys"="c:\windows\system32\cc32\webtmr.exe" [2009-07-13 5502872]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"AdobeCS5.5ServiceManager"="c:\program files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" [2011-01-12 1523360]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-12 161328]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2011-03-30 499608]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe" [2011-06-06 2903448]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-10-11 258512]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CCWinTray"="c:\windows\tray\wintmr.exe" [2009-07-13 5863832]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"HideFastUserSwitching"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableClock"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ksupmgr]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-09-17 685816]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-07-04 136176]
R2 ksupmgr;File-/Update Service;c:\windows\system32\ksupmgr.exe [2010-08-25 765592]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2008-08-07 3276800]
R3 gupdatem;Google Update-Dienst (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-07-04 136176]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [2009-12-08 48128]
R4 MSSQLServerADHelper100;SQL Server Hilfsdienst für Active Directory;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-21 47128]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336]
R4 SQLAgent$SQLEXPRESS;SQL Server-Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-10-11 36000]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-09-08 232512]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AntiVirSchedulerService;Avira Planer;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-10-11 86224]
S2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [2009-08-27 1253376]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-08-17 2358656]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2011-07-15 1052480]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 RTL8167;Realtek 8167 NT-Treiber;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*Deregistered* - Chico
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Inhalt des "geplante Tasks" Ordners
.
2011-10-27 c:\windows\Tasks\DriverEasy Scheduled Scan.job
- c:\program files\Easeware\DriverEasy\DriverEasy.exe [2011-10-27 08:11]
.
2011-10-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-07-04 16:15]
.
2011-10-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-07-04 16:15]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de/
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: An OneNote s&enden - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Free YouTube Download - c:\users\Daniel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm
IE: Free YouTube to MP3 Converter - c:\users\Daniel\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: ¥þ³¡¨Ï¥Î FlashGet ¤U¸ü - c:\flashget network\Flashget\ComDlls\Bhoall.htm
IE: ¨Ï¥Î FlashGet ¤U¸ü - c:\flashget network\Flashget\ComDlls\Bholink.htm
IE: {{7644E42D-B096-457F-8B5B-901238FC81AE} - c:\program files\ICQ7.6\ICQ.exe
TCP: DhcpNameServer = 83.169.184.161 192.168.1.1
FF - ProfilePath - c:\users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\ep749u1u.default\
FF - prefs.js: keyword.URL - hxxp://search.toolbars.alexa.com/?ver=alxf-2.14&src=ab&aid=5fmDe1Y2cG00M5&q=
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
AddRemove-ixla Webeasy - c:\windows\IsUn0407.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2037346869-948051994-2294629697-1001\Software\SecuROM\License information*]
"datasecu"=hex:27,c8,dc,7b,9f,32,ca,a4,05,2a,ec,10,2a,95,9b,47,09,45,bf,6b,6d,
c2,05,ef,25,78,b0,b5,e3,62,38,b2,5e,87,32,32,49,06,ea,cb,30,cb,63,d3,6f,f6,\
"rkeysecu"=hex:06,34,6b,6f,96,fd,e8,b3,da,40,2b,07,ca,ec,f6,73
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2011-10-30 22:10:02
ComboFix-quarantined-files.txt 2011-10-30 21:10
.
Vor Suchlauf: 12 Verzeichnis(se), 586'588'688'384 Bytes frei
Nach Suchlauf: 20 Verzeichnis(se), 586'279'747'584 Bytes frei
.
- - End Of File - - D0B2947F7C71DFA1409E22087312354B
Gruß |
|
31.10.2011, 11:13
| #6 |
| /// Malware-holic | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! sieht soweit unauffällig aus. einige toolbars sollten evtl. noch weg, aber bisher alles ok, wir schauen also weiter: malwarebytes: Downloade Dir bitte Malwarebytes
__________________ --> Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! |
|
31.10.2011, 13:03
| #7 |
| | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! Hallo, hier die Ergebnisse : Malwarebytes' Anti-Malware 1.51.2.1300 www.malwarebytes.org Datenbank Version: 8049 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 31.10.2011 13:02:04 mbam-log-2011-10-31 (13-02-04).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Durchsuchte Objekte: 522236 Laufzeit: 1 Stunde(n), 20 Minute(n), 26 Sekunde(n) Infizierte Speicherprozesse: 0 Infizierte Speichermodule: 0 Infizierte Registrierungsschlüssel: 0 Infizierte Registrierungswerte: 0 Infizierte Dateiobjekte der Registrierung: 0 Infizierte Verzeichnisse: 0 Infizierte Dateien: 10 Infizierte Speicherprozesse: (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: (Keine bösartigen Objekte gefunden) Infizierte Dateien: c:\program files\rockstar games\gta san andreas\trainer.exe (Trojan.Downloader) -> Quarantined and deleted successfully. c:\program files\rockstar games\gta san andreas\gtasa\gta san andreas\trainer.exe (Trojan.Downloader) -> Quarantined and deleted successfully. c:\program files\rockstar games\gta san andreas\Traine2r.exe (PUP.HackTool.HotKeysHook) -> Quarantined and deleted successfully. c:\program files\rockstar games\gta san andreas\gtasa\Traine2r.exe (PUP.HackTool.HotKeysHook) -> Quarantined and deleted successfully. c:\Users\Daniel\downloads\GTA\Trainer.exe (PUP.HackTool.HotKeysHook) -> Quarantined and deleted successfully. c:\Users\Daniel\downloads\GTA\trainer2.exe (PUP.HackTool.HotKeysHook) -> Quarantined and deleted successfully. c:\program files\rockstar games\gta san andreas\pztrain.exe (Malware.Gen) -> Quarantined and deleted successfully. c:\program files\rockstar games\gta san andreas\gtasa\gta san andreas\pztrain.exe (Malware.Gen) -> Quarantined and deleted successfully. c:\Users\Daniel\downloads\GTA\pztrain.exe (Malware.Gen) -> Quarantined and deleted successfully. c:\Users\Daniel\downloads\CoDMW2\call of duty modern warfare 2\call of duty modern warfare 2 sp 1.0 + 7 trainer.exe (HackTool.GamesCheat) -> Quarantined and deleted successfully. Habe alles gelöscht, was als "infiziert" angenommen wurde... Hoffe du findest etwas "Brauchbares" Gruß PS: Die WErbeseiten tauchen trd. immer wieder auf! Geändert von sk8ter08 (31.10.2011 um 13:25 Uhr) |
|
31.10.2011, 14:22
| #8 |
| /// Malware-holic | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! nutze den tdss killer, log posten http://www.trojaner-board.de/82358-t...entfernen.html
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
31.10.2011, 15:03
| #9 |
| | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! Hallo hier der Report: 15:01:56.0120 5580 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01 15:01:56.0354 5580 ============================================================ 15:01:56.0354 5580 Current date / time: 2011/10/31 15:01:56.0354 15:01:56.0354 5580 SystemInfo: 15:01:56.0354 5580 15:01:56.0354 5580 OS Version: 6.1.7601 ServicePack: 1.0 15:01:56.0354 5580 Product type: Workstation 15:01:56.0354 5580 ComputerName: DANIEL-PC 15:01:56.0354 5580 UserName: Daniel 15:01:56.0354 5580 Windows directory: C:\Windows 15:01:56.0354 5580 System windows directory: C:\Windows 15:01:56.0354 5580 Processor architecture: Intel x86 15:01:56.0354 5580 Number of processors: 4 15:01:56.0354 5580 Page size: 0x1000 15:01:56.0354 5580 Boot type: Normal boot 15:01:56.0354 5580 ============================================================ 15:01:57.0492 5580 Initialize success 15:01:59.0224 5648 ============================================================ 15:01:59.0224 5648 Scan started 15:01:59.0224 5648 Mode: Manual; 15:01:59.0224 5648 ============================================================ 15:02:00.0488 5648 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys 15:02:00.0488 5648 1394ohci - ok 15:02:00.0534 5648 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 15:02:00.0534 5648 ACPI - ok 15:02:00.0550 5648 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 15:02:00.0566 5648 AcpiPmi - ok 15:02:00.0597 5648 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys 15:02:00.0612 5648 adp94xx - ok 15:02:00.0628 5648 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys 15:02:00.0644 5648 adpahci - ok 15:02:00.0644 5648 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys 15:02:00.0659 5648 adpu320 - ok 15:02:00.0690 5648 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 15:02:00.0706 5648 AFD - ok 15:02:00.0706 5648 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 15:02:00.0722 5648 agp440 - ok 15:02:00.0737 5648 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys 15:02:00.0737 5648 aic78xx - ok 15:02:00.0768 5648 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 15:02:00.0768 5648 aliide - ok 15:02:00.0784 5648 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 15:02:00.0784 5648 amdagp - ok 15:02:00.0800 5648 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 15:02:00.0800 5648 amdide - ok 15:02:00.0846 5648 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys 15:02:00.0846 5648 AmdK8 - ok 15:02:00.0862 5648 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys 15:02:00.0862 5648 AmdPPM - ok 15:02:00.0893 5648 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 15:02:00.0893 5648 amdsata - ok 15:02:00.0909 5648 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys 15:02:00.0909 5648 amdsbs - ok 15:02:00.0924 5648 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 15:02:00.0924 5648 amdxata - ok 15:02:00.0956 5648 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 15:02:00.0956 5648 AppID - ok 15:02:00.0971 5648 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys 15:02:00.0987 5648 arc - ok 15:02:01.0002 5648 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys 15:02:01.0002 5648 arcsas - ok 15:02:01.0049 5648 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 15:02:01.0065 5648 AsyncMac - ok 15:02:01.0080 5648 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 15:02:01.0080 5648 atapi - ok 15:02:01.0127 5648 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\Windows\system32\DRIVERS\avgntflt.sys 15:02:01.0127 5648 avgntflt - ok 15:02:01.0143 5648 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\Windows\system32\DRIVERS\avipbb.sys 15:02:01.0174 5648 avipbb - ok 15:02:01.0190 5648 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys 15:02:01.0190 5648 avkmgr - ok 15:02:01.0236 5648 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys 15:02:01.0236 5648 b06bdrv - ok 15:02:01.0283 5648 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 15:02:01.0299 5648 b57nd60x - ok 15:02:01.0314 5648 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 15:02:01.0314 5648 Beep - ok 15:02:01.0330 5648 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 15:02:01.0346 5648 blbdrive - ok 15:02:01.0377 5648 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 15:02:01.0377 5648 bowser - ok 15:02:01.0392 5648 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys 15:02:01.0392 5648 BrFiltLo - ok 15:02:01.0392 5648 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys 15:02:01.0408 5648 BrFiltUp - ok 15:02:01.0564 5648 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 15:02:01.0580 5648 Brserid - ok 15:02:01.0580 5648 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 15:02:01.0580 5648 BrSerWdm - ok 15:02:01.0595 5648 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 15:02:01.0611 5648 BrUsbMdm - ok 15:02:01.0611 5648 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 15:02:01.0611 5648 BrUsbSer - ok 15:02:01.0642 5648 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys 15:02:01.0642 5648 BTHMODEM - ok 15:02:01.0704 5648 catchme - ok 15:02:01.0736 5648 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 15:02:01.0736 5648 cdfs - ok 15:02:01.0751 5648 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys 15:02:01.0767 5648 cdrom - ok 15:02:01.0798 5648 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys 15:02:01.0798 5648 circlass - ok 15:02:01.0829 5648 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 15:02:01.0829 5648 CLFS - ok 15:02:01.0860 5648 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys 15:02:01.0876 5648 CmBatt - ok 15:02:01.0892 5648 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 15:02:01.0907 5648 cmdide - ok 15:02:01.0923 5648 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 15:02:01.0923 5648 CNG - ok 15:02:01.0938 5648 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys 15:02:01.0954 5648 Compbatt - ok 15:02:01.0985 5648 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys 15:02:01.0985 5648 CompositeBus - ok 15:02:02.0001 5648 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys 15:02:02.0016 5648 crcdisk - ok 15:02:02.0063 5648 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 15:02:02.0063 5648 CSC - ok 15:02:02.0094 5648 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 15:02:02.0094 5648 DfsC - ok 15:02:02.0110 5648 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 15:02:02.0110 5648 discache - ok 15:02:02.0126 5648 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys 15:02:02.0126 5648 Disk - ok 15:02:02.0141 5648 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys 15:02:02.0157 5648 dmvsc - ok 15:02:02.0188 5648 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 15:02:02.0188 5648 drmkaud - ok 15:02:02.0235 5648 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 15:02:02.0235 5648 dtsoftbus01 - ok 15:02:02.0266 5648 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 15:02:02.0282 5648 DXGKrnl - ok 15:02:02.0360 5648 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys 15:02:02.0406 5648 ebdrv - ok 15:02:02.0438 5648 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys 15:02:02.0453 5648 elxstor - ok 15:02:02.0469 5648 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 15:02:02.0469 5648 ErrDev - ok 15:02:02.0500 5648 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 15:02:02.0516 5648 exfat - ok 15:02:02.0562 5648 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 15:02:02.0578 5648 fastfat - ok 15:02:02.0609 5648 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 15:02:02.0609 5648 fdc - ok 15:02:02.0625 5648 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 15:02:02.0625 5648 FileInfo - ok 15:02:02.0640 5648 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 15:02:02.0640 5648 Filetrace - ok 15:02:02.0656 5648 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 15:02:02.0656 5648 flpydisk - ok 15:02:02.0687 5648 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 15:02:02.0687 5648 FltMgr - ok 15:02:02.0718 5648 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 15:02:02.0734 5648 FsDepends - ok 15:02:02.0750 5648 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 15:02:02.0750 5648 Fs_Rec - ok 15:02:02.0765 5648 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 15:02:02.0781 5648 fvevol - ok 15:02:02.0781 5648 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys 15:02:02.0796 5648 gagp30kx - ok 15:02:02.0812 5648 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 15:02:02.0812 5648 GEARAspiWDM - ok 15:02:02.0859 5648 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 15:02:02.0874 5648 hcw85cir - ok 15:02:02.0890 5648 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 15:02:02.0921 5648 HdAudAddService - ok 15:02:02.0952 5648 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys 15:02:02.0952 5648 HDAudBus - ok 15:02:02.0968 5648 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys 15:02:02.0968 5648 HidBatt - ok 15:02:02.0999 5648 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys 15:02:02.0999 5648 HidBth - ok 15:02:03.0015 5648 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys 15:02:03.0030 5648 HidIr - ok 15:02:03.0062 5648 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys 15:02:03.0077 5648 HidUsb - ok 15:02:03.0093 5648 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 15:02:03.0108 5648 HpSAMD - ok 15:02:03.0124 5648 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 15:02:03.0140 5648 HTTP - ok 15:02:03.0140 5648 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 15:02:03.0140 5648 hwpolicy - ok 15:02:03.0155 5648 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 15:02:03.0155 5648 i8042prt - ok 15:02:03.0202 5648 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 15:02:03.0233 5648 iaStorV - ok 15:02:03.0249 5648 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys 15:02:03.0249 5648 iirsp - ok 15:02:03.0264 5648 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 15:02:03.0264 5648 intelide - ok 15:02:03.0296 5648 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 15:02:03.0296 5648 intelppm - ok 15:02:03.0311 5648 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:02:03.0311 5648 IpFilterDriver - ok 15:02:03.0327 5648 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 15:02:03.0342 5648 IPMIDRV - ok 15:02:03.0358 5648 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 15:02:03.0358 5648 IPNAT - ok 15:02:03.0374 5648 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 15:02:03.0389 5648 IRENUM - ok 15:02:03.0389 5648 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 15:02:03.0389 5648 isapnp - ok 15:02:03.0420 5648 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 15:02:03.0420 5648 iScsiPrt - ok 15:02:03.0436 5648 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 15:02:03.0467 5648 kbdclass - ok 15:02:03.0483 5648 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys 15:02:03.0483 5648 kbdhid - ok 15:02:03.0498 5648 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 15:02:03.0498 5648 KSecDD - ok 15:02:03.0514 5648 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 15:02:03.0514 5648 KSecPkg - ok 15:02:03.0545 5648 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 15:02:03.0545 5648 lltdio - ok 15:02:03.0561 5648 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys 15:02:03.0592 5648 LSI_FC - ok 15:02:03.0592 5648 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys 15:02:03.0592 5648 LSI_SAS - ok 15:02:03.0608 5648 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys 15:02:03.0608 5648 LSI_SAS2 - ok 15:02:03.0639 5648 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys 15:02:03.0639 5648 LSI_SCSI - ok 15:02:03.0654 5648 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 15:02:03.0654 5648 luafv - ok 15:02:03.0670 5648 MBAMSwissArmy - ok 15:02:03.0701 5648 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys 15:02:03.0717 5648 megasas - ok 15:02:03.0732 5648 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys 15:02:03.0748 5648 MegaSR - ok 15:02:03.0779 5648 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 15:02:03.0795 5648 Modem - ok 15:02:03.0810 5648 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 15:02:03.0810 5648 monitor - ok 15:02:03.0826 5648 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 15:02:03.0842 5648 mouclass - ok 15:02:03.0857 5648 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 15:02:03.0857 5648 mouhid - ok 15:02:03.0873 5648 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 15:02:03.0873 5648 mountmgr - ok 15:02:03.0888 5648 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 15:02:03.0904 5648 mpio - ok 15:02:03.0935 5648 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 15:02:03.0935 5648 mpsdrv - ok 15:02:03.0966 5648 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 15:02:03.0982 5648 MRxDAV - ok 15:02:03.0998 5648 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 15:02:04.0013 5648 mrxsmb - ok 15:02:04.0029 5648 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:02:04.0029 5648 mrxsmb10 - ok 15:02:04.0044 5648 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:02:04.0044 5648 mrxsmb20 - ok 15:02:04.0060 5648 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 15:02:04.0076 5648 msahci - ok 15:02:04.0076 5648 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 15:02:04.0091 5648 msdsm - ok 15:02:04.0107 5648 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 15:02:04.0107 5648 Msfs - ok 15:02:04.0122 5648 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 15:02:04.0138 5648 mshidkmdf - ok 15:02:04.0138 5648 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 15:02:04.0138 5648 msisadrv - ok 15:02:04.0185 5648 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 15:02:04.0185 5648 MSKSSRV - ok 15:02:04.0200 5648 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 15:02:04.0200 5648 MSPCLOCK - ok 15:02:04.0216 5648 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 15:02:04.0232 5648 MSPQM - ok 15:02:04.0247 5648 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 15:02:04.0247 5648 MsRPC - ok 15:02:04.0263 5648 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 15:02:04.0263 5648 mssmbios - ok 15:02:04.0278 5648 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 15:02:04.0294 5648 MSTEE - ok 15:02:04.0294 5648 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys 15:02:04.0310 5648 MTConfig - ok 15:02:04.0356 5648 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\Windows\system32\DRIVERS\ASACPI.sys 15:02:04.0356 5648 MTsensor - ok 15:02:04.0372 5648 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 15:02:04.0372 5648 Mup - ok 15:02:04.0403 5648 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 15:02:04.0403 5648 NativeWifiP - ok 15:02:04.0450 5648 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 15:02:04.0450 5648 NDIS - ok 15:02:04.0466 5648 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 15:02:04.0481 5648 NdisCap - ok 15:02:04.0497 5648 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 15:02:04.0512 5648 NdisTapi - ok 15:02:04.0528 5648 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 15:02:04.0528 5648 Ndisuio - ok 15:02:04.0544 5648 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 15:02:04.0559 5648 NdisWan - ok 15:02:04.0590 5648 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 15:02:04.0606 5648 NDProxy - ok 15:02:04.0606 5648 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 15:02:04.0606 5648 NetBIOS - ok 15:02:04.0637 5648 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 15:02:04.0637 5648 NetBT - ok 15:02:04.0684 5648 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys 15:02:04.0684 5648 nfrd960 - ok 15:02:04.0700 5648 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 15:02:04.0700 5648 Npfs - ok 15:02:04.0700 5648 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 15:02:04.0700 5648 nsiproxy - ok 15:02:04.0746 5648 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 15:02:04.0762 5648 Ntfs - ok 15:02:04.0762 5648 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 15:02:04.0778 5648 Null - ok 15:02:04.0918 5648 nvlddmkm (66b4bf606fcc7f0622d4a21bb1461089) C:\Windows\system32\DRIVERS\nvlddmkm.sys 15:02:05.0043 5648 nvlddmkm - ok 15:02:05.0090 5648 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 15:02:05.0090 5648 nvraid - ok 15:02:05.0105 5648 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 15:02:05.0121 5648 nvstor - ok 15:02:05.0136 5648 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 15:02:05.0152 5648 nv_agp - ok 15:02:05.0168 5648 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 15:02:05.0168 5648 ohci1394 - ok 15:02:05.0214 5648 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 15:02:05.0214 5648 Parport - ok 15:02:05.0230 5648 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 15:02:05.0230 5648 partmgr - ok 15:02:05.0246 5648 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 15:02:05.0246 5648 Parvdm - ok 15:02:05.0246 5648 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 15:02:05.0261 5648 pci - ok 15:02:05.0261 5648 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 15:02:05.0261 5648 pciide - ok 15:02:05.0277 5648 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys 15:02:05.0292 5648 pcmcia - ok 15:02:05.0292 5648 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 15:02:05.0292 5648 pcw - ok 15:02:05.0339 5648 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 15:02:05.0370 5648 PEAUTH - ok 15:02:05.0417 5648 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 15:02:05.0417 5648 PptpMiniport - ok 15:02:05.0433 5648 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys 15:02:05.0448 5648 Processor - ok 15:02:05.0480 5648 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 15:02:05.0480 5648 Psched - ok 15:02:05.0526 5648 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\Windows\system32\Drivers\PxHelp20.sys 15:02:05.0526 5648 PxHelp20 - ok 15:02:05.0558 5648 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys 15:02:05.0573 5648 ql2300 - ok 15:02:05.0589 5648 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys 15:02:05.0589 5648 ql40xx - ok 15:02:05.0620 5648 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 15:02:05.0620 5648 QWAVEdrv - ok 15:02:05.0636 5648 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 15:02:05.0651 5648 RasAcd - ok 15:02:05.0682 5648 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 15:02:05.0682 5648 RasAgileVpn - ok 15:02:05.0698 5648 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 15:02:05.0729 5648 Rasl2tp - ok 15:02:05.0760 5648 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 15:02:05.0760 5648 RasPppoe - ok 15:02:05.0776 5648 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 15:02:05.0776 5648 RasSstp - ok 15:02:05.0807 5648 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 15:02:05.0807 5648 rdbss - ok 15:02:05.0823 5648 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 15:02:05.0823 5648 rdpbus - ok 15:02:05.0823 5648 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 15:02:05.0823 5648 RDPCDD - ok 15:02:05.0854 5648 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 15:02:05.0870 5648 RDPDR - ok 15:02:05.0870 5648 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 15:02:05.0870 5648 RDPENCDD - ok 15:02:05.0885 5648 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 15:02:05.0885 5648 RDPREFMP - ok 15:02:05.0901 5648 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 15:02:05.0916 5648 RDPWD - ok 15:02:05.0932 5648 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 15:02:05.0932 5648 rdyboost - ok 15:02:05.0963 5648 RsFx0103 (fd692c6ffade58f7c4c3c3c9a0ec35bd) C:\Windows\system32\DRIVERS\RsFx0103.sys 15:02:05.0979 5648 RsFx0103 - ok 15:02:05.0994 5648 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 15:02:05.0994 5648 rspndr - ok 15:02:06.0026 5648 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys 15:02:06.0026 5648 RTL8167 - ok 15:02:06.0057 5648 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 15:02:06.0057 5648 s3cap - ok 15:02:06.0072 5648 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 15:02:06.0072 5648 sbp2port - ok 15:02:06.0088 5648 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 15:02:06.0119 5648 scfilter - ok 15:02:06.0135 5648 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 15:02:06.0150 5648 secdrv - ok 15:02:06.0182 5648 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 15:02:06.0182 5648 Serenum - ok 15:02:06.0197 5648 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 15:02:06.0197 5648 Serial - ok 15:02:06.0213 5648 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys 15:02:06.0213 5648 sermouse - ok 15:02:06.0244 5648 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys 15:02:06.0244 5648 sffdisk - ok 15:02:06.0275 5648 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 15:02:06.0275 5648 sffp_mmc - ok 15:02:06.0291 5648 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys 15:02:06.0306 5648 sffp_sd - ok 15:02:06.0322 5648 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys 15:02:06.0338 5648 sfloppy - ok 15:02:06.0353 5648 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 15:02:06.0353 5648 sisagp - ok 15:02:06.0369 5648 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys 15:02:06.0384 5648 SiSRaid2 - ok 15:02:06.0400 5648 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys 15:02:06.0416 5648 SiSRaid4 - ok 15:02:06.0447 5648 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 15:02:06.0447 5648 Smb - ok 15:02:06.0462 5648 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 15:02:06.0462 5648 spldr - ok 15:02:06.0525 5648 sptd (d390675b8ce45e5fb359338e5e649329) C:\Windows\system32\Drivers\sptd.sys 15:02:06.0587 5648 sptd - ok 15:02:06.0712 5648 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 15:02:06.0712 5648 srv - ok 15:02:06.0728 5648 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 15:02:06.0728 5648 srv2 - ok 15:02:06.0743 5648 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 15:02:06.0743 5648 srvnet - ok 15:02:06.0774 5648 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 15:02:06.0774 5648 ssmdrv - ok 15:02:06.0806 5648 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys 15:02:06.0806 5648 stexstor - ok 15:02:06.0821 5648 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 15:02:06.0821 5648 storflt - ok 15:02:06.0852 5648 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 15:02:06.0852 5648 storvsc - ok 15:02:06.0868 5648 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 15:02:06.0884 5648 swenum - ok 15:02:06.0946 5648 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys 15:02:06.0962 5648 Tcpip - ok 15:02:06.0977 5648 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys 15:02:06.0993 5648 TCPIP6 - ok 15:02:07.0008 5648 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 15:02:07.0008 5648 tcpipreg - ok 15:02:07.0024 5648 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 15:02:07.0024 5648 TDPIPE - ok 15:02:07.0040 5648 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 15:02:07.0040 5648 TDTCP - ok 15:02:07.0055 5648 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 15:02:07.0071 5648 tdx - ok 15:02:07.0086 5648 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys 15:02:07.0086 5648 TermDD - ok 15:02:07.0118 5648 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 15:02:07.0133 5648 tssecsrv - ok 15:02:07.0133 5648 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 15:02:07.0149 5648 TsUsbFlt - ok 15:02:07.0164 5648 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys 15:02:07.0180 5648 TsUsbGD - ok 15:02:07.0242 5648 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys 15:02:07.0242 5648 TuneUpUtilitiesDrv - ok 15:02:07.0258 5648 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 15:02:07.0274 5648 tunnel - ok 15:02:07.0289 5648 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys 15:02:07.0289 5648 uagp35 - ok 15:02:07.0305 5648 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 15:02:07.0320 5648 udfs - ok 15:02:07.0352 5648 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 15:02:07.0352 5648 uliagpkx - ok 15:02:07.0367 5648 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys 15:02:07.0383 5648 umbus - ok 15:02:07.0398 5648 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys 15:02:07.0414 5648 UmPass - ok 15:02:07.0430 5648 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys 15:02:07.0430 5648 USBAAPL - ok 15:02:07.0476 5648 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys 15:02:07.0476 5648 usbaudio - ok 15:02:07.0492 5648 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys 15:02:07.0492 5648 usbccgp - ok 15:02:07.0523 5648 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 15:02:07.0523 5648 usbcir - ok 15:02:07.0539 5648 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys 15:02:07.0539 5648 usbehci - ok 15:02:07.0570 5648 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 15:02:07.0570 5648 usbhub - ok 15:02:07.0601 5648 USBIO (f90d8f845095fcd6924e3d751c04e442) C:\Windows\system32\Drivers\usbio.sys 15:02:07.0601 5648 USBIO - ok 15:02:07.0617 5648 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys 15:02:07.0632 5648 usbohci - ok 15:02:07.0632 5648 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 15:02:07.0648 5648 usbprint - ok 15:02:07.0664 5648 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 15:02:07.0664 5648 usbscan - ok 15:02:07.0679 5648 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:02:07.0679 5648 USBSTOR - ok 15:02:07.0695 5648 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys 15:02:07.0695 5648 usbuhci - ok 15:02:07.0710 5648 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\system32\Drivers\usbvideo.sys 15:02:07.0726 5648 usbvideo - ok 15:02:07.0757 5648 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 15:02:07.0757 5648 vdrvroot - ok 15:02:07.0773 5648 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 15:02:07.0788 5648 vga - ok 15:02:07.0804 5648 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 15:02:07.0820 5648 VgaSave - ok 15:02:07.0851 5648 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 15:02:07.0866 5648 vhdmp - ok 15:02:07.0882 5648 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 15:02:07.0898 5648 viaagp - ok 15:02:07.0929 5648 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys 15:02:07.0944 5648 ViaC7 - ok 15:02:07.0976 5648 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 15:02:07.0976 5648 viaide - ok 15:02:08.0007 5648 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 15:02:08.0007 5648 vmbus - ok 15:02:08.0022 5648 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 15:02:08.0038 5648 VMBusHID - ok 15:02:08.0054 5648 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 15:02:08.0054 5648 volmgr - ok 15:02:08.0069 5648 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 15:02:08.0069 5648 volmgrx - ok 15:02:08.0085 5648 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 15:02:08.0085 5648 volsnap - ok 15:02:08.0116 5648 vpcbus (33e74df34753fcaab06f6f2bdc8cabf5) C:\Windows\system32\DRIVERS\vpchbus.sys 15:02:08.0116 5648 vpcbus - ok 15:02:08.0132 5648 vpcnfltr (5f04362ceb5fb5901037e9d9eadd3760) C:\Windows\system32\DRIVERS\vpcnfltr.sys 15:02:08.0147 5648 vpcnfltr - ok 15:02:08.0163 5648 vpcusb (625088d6ee9ede977fd03cf18d1cd5c5) C:\Windows\system32\DRIVERS\vpcusb.sys 15:02:08.0163 5648 vpcusb - ok 15:02:08.0194 5648 vpcvmm (1023c696d42268e9071bb376dbec8396) C:\Windows\system32\drivers\vpcvmm.sys 15:02:08.0210 5648 vpcvmm - ok 15:02:08.0225 5648 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys 15:02:08.0241 5648 vsmraid - ok 15:02:08.0303 5648 VSPerfDrv100 (5a2ddc5411a092bedb1a07755e087784) C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys 15:02:08.0319 5648 VSPerfDrv100 - ok 15:02:08.0334 5648 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 15:02:08.0350 5648 vwifibus - ok 15:02:08.0366 5648 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys 15:02:08.0366 5648 WacomPen - ok 15:02:08.0381 5648 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 15:02:08.0397 5648 WANARP - ok 15:02:08.0397 5648 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 15:02:08.0397 5648 Wanarpv6 - ok 15:02:08.0412 5648 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys 15:02:08.0428 5648 Wd - ok 15:02:08.0428 5648 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 15:02:08.0444 5648 Wdf01000 - ok 15:02:08.0475 5648 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 15:02:08.0475 5648 WfpLwf - ok 15:02:08.0490 5648 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 15:02:08.0506 5648 WIMMount - ok 15:02:08.0553 5648 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys 15:02:08.0553 5648 WinUsb - ok 15:02:08.0568 5648 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 15:02:08.0568 5648 WmiAcpi - ok 15:02:08.0615 5648 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 15:02:08.0615 5648 ws2ifsl - ok 15:02:08.0631 5648 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 15:02:08.0646 5648 WudfPf - ok 15:02:08.0693 5648 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 15:02:08.0693 5648 WUDFRd - ok 15:02:08.0724 5648 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 15:02:08.0724 5648 \Device\Harddisk0\DR0 - ok 15:02:08.0724 5648 Boot (0x1200) (714aff79d7f1937215586b6b5864318b) \Device\Harddisk0\DR0\Partition0 15:02:08.0724 5648 \Device\Harddisk0\DR0\Partition0 - ok 15:02:08.0724 5648 ============================================================ 15:02:08.0724 5648 Scan finished 15:02:08.0724 5648 ============================================================ 15:02:08.0740 5104 Detected object count: 0 15:02:08.0740 5104 Actual detected object count: 0 15:02:24.0028 4080 ============================================================ 15:02:24.0028 4080 Scan started 15:02:24.0028 4080 Mode: Manual; SigCheck; TDLFS; 15:02:24.0028 4080 ============================================================ 15:02:24.0480 4080 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys 15:02:24.0558 4080 1394ohci - ok 15:02:24.0574 4080 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 15:02:24.0590 4080 ACPI - ok 15:02:24.0605 4080 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 15:02:24.0652 4080 AcpiPmi - ok 15:02:24.0668 4080 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys 15:02:24.0683 4080 adp94xx - ok 15:02:24.0699 4080 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys 15:02:24.0714 4080 adpahci - ok 15:02:24.0730 4080 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys 15:02:24.0746 4080 adpu320 - ok 15:02:24.0777 4080 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 15:02:24.0824 4080 AFD - ok 15:02:24.0824 4080 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 15:02:24.0839 4080 agp440 - ok 15:02:24.0855 4080 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys 15:02:24.0855 4080 aic78xx - ok 15:02:24.0870 4080 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 15:02:24.0886 4080 aliide - ok 15:02:24.0902 4080 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 15:02:24.0902 4080 amdagp - ok 15:02:24.0917 4080 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 15:02:24.0933 4080 amdide - ok 15:02:24.0948 4080 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys 15:02:24.0980 4080 AmdK8 - ok 15:02:24.0980 4080 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys 15:02:25.0011 4080 AmdPPM - ok 15:02:25.0026 4080 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 15:02:25.0042 4080 amdsata - ok 15:02:25.0073 4080 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys 15:02:25.0089 4080 amdsbs - ok 15:02:25.0104 4080 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 15:02:25.0104 4080 amdxata - ok 15:02:25.0136 4080 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 15:02:25.0198 4080 AppID - ok 15:02:25.0229 4080 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys 15:02:25.0229 4080 arc - ok 15:02:25.0245 4080 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys 15:02:25.0260 4080 arcsas - ok 15:02:25.0276 4080 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 15:02:25.0354 4080 AsyncMac - ok 15:02:25.0354 4080 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 15:02:25.0370 4080 atapi - ok 15:02:25.0401 4080 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\Windows\system32\DRIVERS\avgntflt.sys 15:02:25.0432 4080 avgntflt - ok 15:02:25.0448 4080 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\Windows\system32\DRIVERS\avipbb.sys 15:02:25.0463 4080 avipbb - ok 15:02:25.0479 4080 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys 15:02:25.0479 4080 avkmgr - ok 15:02:25.0510 4080 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys 15:02:25.0557 4080 b06bdrv - ok 15:02:25.0572 4080 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 15:02:25.0604 4080 b57nd60x - ok 15:02:25.0619 4080 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 15:02:25.0666 4080 Beep - ok 15:02:25.0682 4080 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 15:02:25.0713 4080 blbdrive - ok 15:02:25.0728 4080 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 15:02:25.0775 4080 bowser - ok 15:02:25.0791 4080 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys 15:02:25.0806 4080 BrFiltLo - ok 15:02:25.0838 4080 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys 15:02:25.0853 4080 BrFiltUp - ok 15:02:25.0884 4080 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 15:02:25.0900 4080 Brserid - ok 15:02:25.0916 4080 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 15:02:25.0931 4080 BrSerWdm - ok 15:02:25.0947 4080 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 15:02:25.0978 4080 BrUsbMdm - ok 15:02:25.0978 4080 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 15:02:25.0994 4080 BrUsbSer - ok 15:02:26.0025 4080 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys 15:02:26.0056 4080 BTHMODEM - ok 15:02:26.0103 4080 catchme - ok 15:02:26.0134 4080 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 15:02:26.0165 4080 cdfs - ok 15:02:26.0181 4080 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys 15:02:26.0228 4080 cdrom - ok 15:02:26.0243 4080 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys 15:02:26.0274 4080 circlass - ok 15:02:26.0306 4080 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 15:02:26.0321 4080 CLFS - ok 15:02:26.0337 4080 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys 15:02:26.0352 4080 CmBatt - ok 15:02:26.0384 4080 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 15:02:26.0399 4080 cmdide - ok 15:02:26.0399 4080 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 15:02:26.0430 4080 CNG - ok 15:02:26.0446 4080 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys 15:02:26.0446 4080 Compbatt - ok 15:02:26.0462 4080 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys 15:02:26.0493 4080 CompositeBus - ok 15:02:26.0508 4080 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys 15:02:26.0524 4080 crcdisk - ok 15:02:26.0555 4080 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 15:02:26.0586 4080 CSC - ok 15:02:26.0602 4080 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 15:02:26.0633 4080 DfsC - ok 15:02:26.0664 4080 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 15:02:26.0696 4080 discache - ok 15:02:26.0711 4080 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys 15:02:26.0711 4080 Disk - ok 15:02:26.0742 4080 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys 15:02:26.0758 4080 dmvsc - ok 15:02:26.0774 4080 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 15:02:26.0805 4080 drmkaud - ok 15:02:26.0836 4080 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 15:02:26.0852 4080 dtsoftbus01 - ok 15:02:26.0883 4080 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 15:02:26.0898 4080 DXGKrnl - ok 15:02:26.0945 4080 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys 15:02:26.0992 4080 ebdrv - ok 15:02:27.0023 4080 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys 15:02:27.0039 4080 elxstor - ok 15:02:27.0054 4080 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 15:02:27.0070 4080 ErrDev - ok 15:02:27.0086 4080 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 15:02:27.0117 4080 exfat - ok 15:02:27.0132 4080 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 15:02:27.0179 4080 fastfat - ok 15:02:27.0195 4080 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 15:02:27.0226 4080 fdc - ok 15:02:27.0226 4080 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 15:02:27.0242 4080 FileInfo - ok 15:02:27.0257 4080 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 15:02:27.0288 4080 Filetrace - ok 15:02:27.0320 4080 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 15:02:27.0351 4080 flpydisk - ok 15:02:27.0366 4080 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 15:02:27.0382 4080 FltMgr - ok 15:02:27.0398 4080 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 15:02:27.0398 4080 FsDepends - ok 15:02:27.0413 4080 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 15:02:27.0429 4080 Fs_Rec - ok 15:02:27.0429 4080 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 15:02:27.0444 4080 fvevol - ok 15:02:27.0460 4080 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys 15:02:27.0476 4080 gagp30kx - ok 15:02:27.0491 4080 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 15:02:27.0507 4080 GEARAspiWDM - ok 15:02:27.0522 4080 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 15:02:27.0569 4080 hcw85cir - ok 15:02:27.0585 4080 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 15:02:27.0616 4080 HdAudAddService - ok 15:02:27.0632 4080 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys 15:02:27.0647 4080 HDAudBus - ok 15:02:27.0663 4080 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys 15:02:27.0694 4080 HidBatt - ok 15:02:27.0725 4080 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys 15:02:27.0741 4080 HidBth - ok 15:02:27.0756 4080 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys 15:02:27.0788 4080 HidIr - ok 15:02:27.0788 4080 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys 15:02:27.0803 4080 HidUsb - ok 15:02:27.0834 4080 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 15:02:27.0834 4080 HpSAMD - ok 15:02:27.0866 4080 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 15:02:27.0897 4080 HTTP - ok 15:02:27.0928 4080 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 15:02:27.0928 4080 hwpolicy - ok 15:02:27.0944 4080 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 15:02:27.0959 4080 i8042prt - ok 15:02:27.0990 4080 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 15:02:28.0006 4080 iaStorV - ok 15:02:28.0022 4080 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys 15:02:28.0022 4080 iirsp - ok 15:02:28.0053 4080 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 15:02:28.0053 4080 intelide - ok 15:02:28.0068 4080 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 15:02:28.0084 4080 intelppm - ok 15:02:28.0100 4080 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:02:28.0146 4080 IpFilterDriver - ok 15:02:28.0178 4080 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 15:02:28.0209 4080 IPMIDRV - ok 15:02:28.0224 4080 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 15:02:28.0240 4080 IPNAT - ok 15:02:28.0256 4080 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 15:02:28.0318 4080 IRENUM - ok 15:02:28.0318 4080 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 15:02:28.0334 4080 isapnp - ok 15:02:28.0349 4080 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 15:02:28.0365 4080 iScsiPrt - ok 15:02:28.0380 4080 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 15:02:28.0396 4080 kbdclass - ok 15:02:28.0412 4080 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys 15:02:28.0412 4080 kbdhid - ok 15:02:28.0427 4080 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 15:02:28.0443 4080 KSecDD - ok 15:02:28.0443 4080 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 15:02:28.0458 4080 KSecPkg - ok 15:02:28.0490 4080 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 15:02:28.0521 4080 lltdio - ok 15:02:28.0536 4080 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys 15:02:28.0552 4080 LSI_FC - ok 15:02:28.0568 4080 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys 15:02:28.0568 4080 LSI_SAS - ok 15:02:28.0583 4080 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys 15:02:28.0583 4080 LSI_SAS2 - ok 15:02:28.0614 4080 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys 15:02:28.0630 4080 LSI_SCSI - ok 15:02:28.0630 4080 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 15:02:28.0677 4080 luafv - ok 15:02:28.0677 4080 MBAMSwissArmy - ok 15:02:28.0708 4080 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys 15:02:28.0708 4080 megasas - ok 15:02:28.0739 4080 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys 15:02:28.0739 4080 MegaSR - ok 15:02:28.0755 4080 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 15:02:28.0802 4080 Modem - ok 15:02:28.0817 4080 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 15:02:28.0848 4080 monitor - ok 15:02:28.0864 4080 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 15:02:28.0880 4080 mouclass - ok 15:02:28.0880 4080 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 15:02:28.0911 4080 mouhid - ok 15:02:28.0911 4080 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 15:02:28.0926 4080 mountmgr - ok 15:02:28.0958 4080 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 15:02:28.0958 4080 mpio - ok 15:02:28.0973 4080 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 15:02:29.0020 4080 mpsdrv - ok 15:02:29.0036 4080 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 15:02:29.0051 4080 MRxDAV - ok 15:02:29.0067 4080 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 15:02:29.0082 4080 mrxsmb - ok 15:02:29.0114 4080 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:02:29.0129 4080 mrxsmb10 - ok 15:02:29.0129 4080 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:02:29.0160 4080 mrxsmb20 - ok 15:02:29.0176 4080 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 15:02:29.0192 4080 msahci - ok 15:02:29.0192 4080 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 15:02:29.0207 4080 msdsm - ok 15:02:29.0223 4080 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 15:02:29.0238 4080 Msfs - ok 15:02:29.0270 4080 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 15:02:29.0285 4080 mshidkmdf - ok 15:02:29.0301 4080 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 15:02:29.0301 4080 msisadrv - ok 15:02:29.0332 4080 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 15:02:29.0348 4080 MSKSSRV - ok 15:02:29.0363 4080 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 15:02:29.0410 4080 MSPCLOCK - ok 15:02:29.0426 4080 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 15:02:29.0457 4080 MSPQM - ok 15:02:29.0457 4080 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 15:02:29.0472 4080 MsRPC - ok 15:02:29.0488 4080 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 15:02:29.0504 4080 mssmbios - ok 15:02:29.0519 4080 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 15:02:29.0550 4080 MSTEE - ok 15:02:29.0566 4080 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys 15:02:29.0582 4080 MTConfig - ok 15:02:29.0613 4080 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\Windows\system32\DRIVERS\ASACPI.sys 15:02:29.0644 4080 MTsensor - ok 15:02:29.0660 4080 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 15:02:29.0675 4080 Mup - ok 15:02:29.0691 4080 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 15:02:29.0706 4080 NativeWifiP - ok 15:02:29.0738 4080 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 15:02:29.0753 4080 NDIS - ok 15:02:29.0769 4080 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 15:02:29.0800 4080 NdisCap - ok 15:02:29.0800 4080 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 15:02:29.0847 4080 NdisTapi - ok 15:02:29.0862 4080 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 15:02:29.0894 4080 Ndisuio - ok 15:02:29.0925 4080 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 15:02:29.0956 4080 NdisWan - ok 15:02:29.0972 4080 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 15:02:29.0987 4080 NDProxy - ok 15:02:30.0003 4080 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 15:02:30.0034 4080 NetBIOS - ok 15:02:30.0050 4080 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 15:02:30.0081 4080 NetBT - ok 15:02:30.0112 4080 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys 15:02:30.0112 4080 nfrd960 - ok 15:02:30.0128 4080 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 15:02:30.0159 4080 Npfs - ok 15:02:30.0174 4080 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 15:02:30.0206 4080 nsiproxy - ok 15:02:30.0237 4080 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 15:02:30.0268 4080 Ntfs - ok 15:02:30.0284 4080 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 15:02:30.0299 4080 Null - ok 15:02:30.0455 4080 nvlddmkm (66b4bf606fcc7f0622d4a21bb1461089) C:\Windows\system32\DRIVERS\nvlddmkm.sys 15:02:30.0596 4080 nvlddmkm - ok 15:02:30.0627 4080 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 15:02:30.0642 4080 nvraid - ok 15:02:30.0658 4080 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 15:02:30.0674 4080 nvstor - ok 15:02:30.0689 4080 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 15:02:30.0705 4080 nv_agp - ok 15:02:30.0720 4080 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 15:02:30.0736 4080 ohci1394 - ok 15:02:30.0767 4080 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 15:02:30.0783 4080 Parport - ok 15:02:30.0783 4080 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 15:02:30.0798 4080 partmgr - ok 15:02:30.0814 4080 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 15:02:30.0845 4080 Parvdm - ok 15:02:30.0845 4080 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 15:02:30.0861 4080 pci - ok 15:02:30.0861 4080 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 15:02:30.0876 4080 pciide - ok 15:02:30.0892 4080 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys 15:02:30.0908 4080 pcmcia - ok 15:02:30.0923 4080 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 15:02:30.0923 4080 pcw - ok 15:02:30.0954 4080 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 15:02:31.0001 4080 PEAUTH - ok 15:02:31.0048 4080 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 15:02:31.0095 4080 PptpMiniport - ok 15:02:31.0110 4080 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys 15:02:31.0142 4080 Processor - ok 15:02:31.0173 4080 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 15:02:31.0204 4080 Psched - ok 15:02:31.0235 4080 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\Windows\system32\Drivers\PxHelp20.sys 15:02:31.0251 4080 PxHelp20 - ok 15:02:31.0282 4080 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys 15:02:31.0298 4080 ql2300 - ok 15:02:31.0313 4080 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys 15:02:31.0329 4080 ql40xx - ok 15:02:31.0344 4080 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 15:02:31.0360 4080 QWAVEdrv - ok 15:02:31.0360 4080 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 15:02:31.0407 4080 RasAcd - ok 15:02:31.0438 4080 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 15:02:31.0454 4080 RasAgileVpn - ok 15:02:31.0469 4080 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 15:02:31.0516 4080 Rasl2tp - ok 15:02:31.0532 4080 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 15:02:31.0563 4080 RasPppoe - ok 15:02:31.0594 4080 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 15:02:31.0625 4080 RasSstp - ok 15:02:31.0656 4080 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 15:02:31.0688 4080 rdbss - ok 15:02:31.0719 4080 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 15:02:31.0734 4080 rdpbus - ok 15:02:31.0734 4080 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 15:02:31.0781 4080 RDPCDD - ok 15:02:31.0812 4080 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 15:02:31.0844 4080 RDPDR - ok 15:02:31.0844 4080 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 15:02:31.0890 4080 RDPENCDD - ok 15:02:31.0890 4080 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 15:02:31.0922 4080 RDPREFMP - ok 15:02:31.0953 4080 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 15:02:32.0000 4080 RDPWD - ok 15:02:32.0015 4080 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 15:02:32.0031 4080 rdyboost - ok 15:02:32.0062 4080 RsFx0103 (fd692c6ffade58f7c4c3c3c9a0ec35bd) C:\Windows\system32\DRIVERS\RsFx0103.sys 15:02:32.0078 4080 RsFx0103 - ok 15:02:32.0093 4080 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 15:02:32.0124 4080 rspndr - ok 15:02:32.0156 4080 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys 15:02:32.0187 4080 RTL8167 - ok 15:02:32.0218 4080 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 15:02:32.0234 4080 s3cap - ok 15:02:32.0249 4080 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 15:02:32.0265 4080 sbp2port - ok 15:02:32.0280 4080 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 15:02:32.0327 4080 scfilter - ok 15:02:32.0343 4080 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 15:02:32.0390 4080 secdrv - ok 15:02:32.0405 4080 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 15:02:32.0421 4080 Serenum - ok 15:02:32.0436 4080 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 15:02:32.0452 4080 Serial - ok 15:02:32.0483 4080 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys 15:02:32.0499 4080 sermouse - ok 15:02:32.0530 4080 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys 15:02:32.0546 4080 sffdisk - ok 15:02:32.0561 4080 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 15:02:32.0577 4080 sffp_mmc - ok 15:02:32.0592 4080 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys 15:02:32.0608 4080 sffp_sd - ok 15:02:32.0639 4080 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys 15:02:32.0655 4080 sfloppy - ok 15:02:32.0686 4080 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 15:02:32.0702 4080 sisagp - ok 15:02:32.0717 4080 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys 15:02:32.0733 4080 SiSRaid2 - ok 15:02:32.0733 4080 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys 15:02:32.0748 4080 SiSRaid4 - ok 15:02:32.0764 4080 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 15:02:32.0795 4080 Smb - ok 15:02:32.0811 4080 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 15:02:32.0826 4080 spldr - ok 15:02:32.0858 4080 sptd (d390675b8ce45e5fb359338e5e649329) C:\Windows\system32\Drivers\sptd.sys 15:02:32.0873 4080 sptd - ok 15:02:32.0904 4080 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 15:02:32.0920 4080 srv - ok 15:02:32.0951 4080 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 15:02:32.0967 4080 srv2 - ok 15:02:32.0982 4080 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 15:02:32.0998 4080 srvnet - ok 15:02:33.0029 4080 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 15:02:33.0029 4080 ssmdrv - ok 15:02:33.0060 4080 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys 15:02:33.0060 4080 stexstor - ok 15:02:33.0076 4080 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 15:02:33.0092 4080 storflt - ok 15:02:33.0107 4080 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 15:02:33.0107 4080 storvsc - ok 15:02:33.0123 4080 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 15:02:33.0138 4080 swenum - ok 15:02:33.0185 4080 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys 15:02:33.0216 4080 Tcpip - ok 15:02:33.0232 4080 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys 15:02:33.0263 4080 TCPIP6 - ok 15:02:33.0279 4080 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 15:02:33.0310 4080 tcpipreg - ok 15:02:33.0341 4080 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 15:02:33.0357 4080 TDPIPE - ok 15:02:33.0372 4080 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 15:02:33.0419 4080 TDTCP - ok 15:02:33.0435 4080 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 15:02:33.0450 4080 tdx - ok 15:02:33.0466 4080 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys 15:02:33.0482 4080 TermDD - ok 15:02:33.0513 4080 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 15:02:33.0544 4080 tssecsrv - ok 15:02:33.0560 4080 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 15:02:33.0575 4080 TsUsbFlt - ok 15:02:33.0606 4080 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys 15:02:33.0622 4080 TsUsbGD - ok 15:02:33.0669 4080 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys 15:02:33.0684 4080 TuneUpUtilitiesDrv - ok 15:02:33.0700 4080 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 15:02:33.0716 4080 tunnel - ok 15:02:33.0731 4080 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys 15:02:33.0747 4080 uagp35 - ok 15:02:33.0762 4080 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 15:02:33.0794 4080 udfs - ok 15:02:33.0809 4080 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 15:02:33.0825 4080 uliagpkx - ok 15:02:33.0840 4080 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys 15:02:33.0872 4080 umbus - ok 15:02:33.0887 4080 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys 15:02:33.0903 4080 UmPass - ok 15:02:33.0950 4080 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys 15:02:33.0981 4080 USBAAPL - ok 15:02:33.0996 4080 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys 15:02:34.0012 4080 usbaudio - ok 15:02:34.0028 4080 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys 15:02:34.0043 4080 usbccgp - ok 15:02:34.0074 4080 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 15:02:34.0090 4080 usbcir - ok 15:02:34.0106 4080 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys 15:02:34.0121 4080 usbehci - ok 15:02:34.0152 4080 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 15:02:34.0168 4080 usbhub - ok 15:02:34.0199 4080 USBIO (f90d8f845095fcd6924e3d751c04e442) C:\Windows\system32\Drivers\usbio.sys 15:02:34.0215 4080 USBIO ( UnsignedFile.Multi.Generic ) - warning 15:02:34.0215 4080 USBIO - detected UnsignedFile.Multi.Generic (1) 15:02:34.0230 4080 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys 15:02:34.0246 4080 usbohci - ok 15:02:34.0262 4080 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 15:02:34.0293 4080 usbprint - ok 15:02:34.0308 4080 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 15:02:34.0340 4080 usbscan - ok 15:02:34.0355 4080 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:02:34.0386 4080 USBSTOR - ok 15:02:34.0402 4080 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys 15:02:34.0433 4080 usbuhci - ok 15:02:34.0449 4080 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\system32\Drivers\usbvideo.sys 15:02:34.0480 4080 usbvideo - ok 15:02:34.0511 4080 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 15:02:34.0527 4080 vdrvroot - ok 15:02:34.0542 4080 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 15:02:34.0558 4080 vga - ok 15:02:34.0574 4080 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 15:02:34.0605 4080 VgaSave - ok 15:02:34.0620 4080 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 15:02:34.0636 4080 vhdmp - ok 15:02:34.0652 4080 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 15:02:34.0652 4080 viaagp - ok 15:02:34.0667 4080 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys 15:02:34.0698 4080 ViaC7 - ok 15:02:34.0714 4080 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 15:02:34.0730 4080 viaide - ok 15:02:34.0745 4080 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 15:02:34.0761 4080 vmbus - ok 15:02:34.0776 4080 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 15:02:34.0792 4080 VMBusHID - ok 15:02:34.0808 4080 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 15:02:34.0823 4080 volmgr - ok 15:02:34.0823 4080 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 15:02:34.0839 4080 volmgrx - ok 15:02:34.0870 4080 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 15:02:34.0870 4080 volsnap - ok 15:02:34.0901 4080 vpcbus (33e74df34753fcaab06f6f2bdc8cabf5) C:\Windows\system32\DRIVERS\vpchbus.sys 15:02:34.0932 4080 vpcbus - ok 15:02:34.0948 4080 vpcnfltr (5f04362ceb5fb5901037e9d9eadd3760) C:\Windows\system32\DRIVERS\vpcnfltr.sys 15:02:34.0964 4080 vpcnfltr - ok 15:02:34.0979 4080 vpcusb (625088d6ee9ede977fd03cf18d1cd5c5) C:\Windows\system32\DRIVERS\vpcusb.sys 15:02:34.0995 4080 vpcusb - ok 15:02:35.0042 4080 vpcvmm (1023c696d42268e9071bb376dbec8396) C:\Windows\system32\drivers\vpcvmm.sys 15:02:35.0042 4080 vpcvmm - ok 15:02:35.0073 4080 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys 15:02:35.0073 4080 vsmraid - ok 15:02:35.0135 4080 VSPerfDrv100 (5a2ddc5411a092bedb1a07755e087784) C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys 15:02:35.0135 4080 VSPerfDrv100 ( UnsignedFile.Multi.Generic ) - warning 15:02:35.0135 4080 VSPerfDrv100 - detected UnsignedFile.Multi.Generic (1) 15:02:35.0151 4080 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 15:02:35.0166 4080 vwifibus - ok 15:02:35.0198 4080 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys 15:02:35.0213 4080 WacomPen - ok 15:02:35.0213 4080 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 15:02:35.0244 4080 WANARP - ok 15:02:35.0244 4080 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 15:02:35.0276 4080 Wanarpv6 - ok 15:02:35.0291 4080 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys 15:02:35.0307 4080 Wd - ok 15:02:35.0322 4080 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 15:02:35.0322 4080 Wdf01000 - ok 15:02:35.0369 4080 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 15:02:35.0385 4080 WfpLwf - ok 15:02:35.0400 4080 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 15:02:35.0416 4080 WIMMount - ok 15:02:35.0463 4080 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys 15:02:35.0494 4080 WinUsb - ok 15:02:35.0510 4080 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 15:02:35.0525 4080 WmiAcpi - ok 15:02:35.0556 4080 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 15:02:35.0588 4080 ws2ifsl - ok 15:02:35.0603 4080 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 15:02:35.0634 4080 WudfPf - ok 15:02:35.0650 4080 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 15:02:35.0666 4080 WUDFRd - ok 15:02:35.0697 4080 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 15:02:35.0712 4080 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 15:02:35.0712 4080 \Device\Harddisk0\DR0 - detected TDSS File System (1) 15:02:35.0728 4080 Boot (0x1200) (714aff79d7f1937215586b6b5864318b) \Device\Harddisk0\DR0\Partition0 15:02:35.0728 4080 \Device\Harddisk0\DR0\Partition0 - ok 15:02:35.0728 4080 ============================================================ 15:02:35.0728 4080 Scan finished 15:02:35.0728 4080 ============================================================ 15:02:35.0728 5196 Detected object count: 3 15:02:35.0728 5196 Actual detected object count: 3 15:02:57.0771 5196 HKLM\SYSTEM\ControlSet001\services\USBIO - will be deleted on reboot 15:02:57.0787 5196 HKLM\SYSTEM\ControlSet002\services\USBIO - will be deleted on reboot 15:02:57.0802 5196 C:\Windows\system32\Drivers\usbio.sys - will be deleted on reboot 15:02:57.0802 5196 USBIO ( UnsignedFile.Multi.Generic ) - User select action: Delete 15:02:57.0802 5196 VSPerfDrv100 ( UnsignedFile.Multi.Generic ) - skipped by user 15:02:57.0802 5196 VSPerfDrv100 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:02:57.0802 5196 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user 15:02:57.0802 5196 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip Gruß |
|
31.10.2011, 15:08
| #10 |
| /// Malware-holic | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! hi, nutzt dein pc ne recovery funktion oder hast du ganz normale windows cd bzw dvd?
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
31.10.2011, 15:19
| #11 |
| | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! ganz normal ^^ |
|
31.10.2011, 15:29
| #12 |
| /// Malware-holic | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! ok, lass den tdss killer noch mal laufen, du hast die infektion des mbrs nicht bereinigt 15:02:57.0802 5196 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user 15:02:57.0802 5196 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip dass muss bereinigt werden bitte
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
31.10.2011, 17:32
| #13 |
| | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! 17:32:42.0222 0880 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01 17:32:42.0409 0880 ============================================================ 17:32:42.0409 0880 Current date / time: 2011/10/31 17:32:42.0409 17:32:42.0409 0880 SystemInfo: 17:32:42.0409 0880 17:32:42.0409 0880 OS Version: 6.1.7601 ServicePack: 1.0 17:32:42.0409 0880 Product type: Workstation 17:32:42.0409 0880 ComputerName: DANIEL-PC 17:32:42.0409 0880 UserName: Daniel 17:32:42.0409 0880 Windows directory: C:\Windows 17:32:42.0409 0880 System windows directory: C:\Windows 17:32:42.0409 0880 Processor architecture: Intel x86 17:32:42.0409 0880 Number of processors: 4 17:32:42.0409 0880 Page size: 0x1000 17:32:42.0409 0880 Boot type: Normal boot 17:32:42.0409 0880 ============================================================ 17:32:43.0454 0880 Initialize success 17:32:45.0700 1020 ============================================================ 17:32:45.0700 1020 Scan started 17:32:45.0700 1020 Mode: Manual; 17:32:45.0700 1020 ============================================================ 17:32:47.0214 1020 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\DRIVERS\1394ohci.sys 17:32:47.0214 1020 1394ohci - ok 17:32:47.0229 1020 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 17:32:47.0229 1020 ACPI - ok 17:32:47.0260 1020 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 17:32:47.0260 1020 AcpiPmi - ok 17:32:47.0292 1020 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys 17:32:47.0307 1020 adp94xx - ok 17:32:47.0323 1020 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys 17:32:47.0338 1020 adpahci - ok 17:32:47.0354 1020 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys 17:32:47.0354 1020 adpu320 - ok 17:32:47.0416 1020 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 17:32:47.0432 1020 AFD - ok 17:32:47.0448 1020 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 17:32:47.0448 1020 agp440 - ok 17:32:47.0463 1020 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys 17:32:47.0463 1020 aic78xx - ok 17:32:47.0479 1020 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 17:32:47.0494 1020 aliide - ok 17:32:47.0510 1020 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 17:32:47.0526 1020 amdagp - ok 17:32:47.0541 1020 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 17:32:47.0541 1020 amdide - ok 17:32:47.0557 1020 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys 17:32:47.0557 1020 AmdK8 - ok 17:32:47.0572 1020 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys 17:32:47.0604 1020 AmdPPM - ok 17:32:47.0635 1020 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 17:32:47.0635 1020 amdsata - ok 17:32:47.0635 1020 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys 17:32:47.0650 1020 amdsbs - ok 17:32:47.0650 1020 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 17:32:47.0666 1020 amdxata - ok 17:32:47.0713 1020 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 17:32:47.0713 1020 AppID - ok 17:32:47.0728 1020 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys 17:32:47.0728 1020 arc - ok 17:32:47.0744 1020 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys 17:32:47.0760 1020 arcsas - ok 17:32:47.0806 1020 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 17:32:47.0822 1020 AsyncMac - ok 17:32:47.0838 1020 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 17:32:47.0838 1020 atapi - ok 17:32:47.0884 1020 avgntflt (7713e4eb0276702faa08e52a6e23f2a6) C:\Windows\system32\DRIVERS\avgntflt.sys 17:32:47.0884 1020 avgntflt - ok 17:32:47.0916 1020 avipbb (912d23140cd05980f6cdae790ddafc8d) C:\Windows\system32\DRIVERS\avipbb.sys 17:32:47.0916 1020 avipbb - ok 17:32:47.0931 1020 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\Windows\system32\DRIVERS\avkmgr.sys 17:32:47.0947 1020 avkmgr - ok 17:32:47.0978 1020 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys 17:32:47.0994 1020 b06bdrv - ok 17:32:48.0009 1020 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 17:32:48.0025 1020 b57nd60x - ok 17:32:48.0040 1020 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 17:32:48.0040 1020 Beep - ok 17:32:48.0072 1020 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 17:32:48.0087 1020 blbdrive - ok 17:32:48.0134 1020 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 17:32:48.0150 1020 bowser - ok 17:32:48.0165 1020 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys 17:32:48.0165 1020 BrFiltLo - ok 17:32:48.0181 1020 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys 17:32:48.0196 1020 BrFiltUp - ok 17:32:48.0212 1020 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 17:32:48.0228 1020 Brserid - ok 17:32:48.0228 1020 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 17:32:48.0243 1020 BrSerWdm - ok 17:32:48.0259 1020 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 17:32:48.0274 1020 BrUsbMdm - ok 17:32:48.0290 1020 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 17:32:48.0290 1020 BrUsbSer - ok 17:32:48.0306 1020 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys 17:32:48.0306 1020 BTHMODEM - ok 17:32:48.0384 1020 catchme - ok 17:32:48.0399 1020 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 17:32:48.0415 1020 cdfs - ok 17:32:48.0446 1020 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys 17:32:48.0446 1020 cdrom - ok 17:32:48.0477 1020 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys 17:32:48.0477 1020 circlass - ok 17:32:48.0508 1020 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 17:32:48.0508 1020 CLFS - ok 17:32:48.0540 1020 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys 17:32:48.0555 1020 CmBatt - ok 17:32:48.0571 1020 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 17:32:48.0586 1020 cmdide - ok 17:32:48.0586 1020 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 17:32:48.0618 1020 CNG - ok 17:32:48.0633 1020 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys 17:32:48.0633 1020 Compbatt - ok 17:32:48.0649 1020 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys 17:32:48.0664 1020 CompositeBus - ok 17:32:48.0696 1020 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys 17:32:48.0696 1020 crcdisk - ok 17:32:48.0742 1020 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys 17:32:48.0758 1020 CSC - ok 17:32:48.0774 1020 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 17:32:48.0789 1020 DfsC - ok 17:32:48.0789 1020 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 17:32:48.0805 1020 discache - ok 17:32:48.0820 1020 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys 17:32:48.0820 1020 Disk - ok 17:32:48.0836 1020 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys 17:32:48.0836 1020 dmvsc - ok 17:32:48.0867 1020 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 17:32:48.0867 1020 drmkaud - ok 17:32:48.0914 1020 dtsoftbus01 (c0c7ceccb6c85994c2bc92d58e52d3f2) C:\Windows\system32\DRIVERS\dtsoftbus01.sys 17:32:48.0914 1020 dtsoftbus01 - ok 17:32:48.0930 1020 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 17:32:48.0961 1020 DXGKrnl - ok 17:32:49.0039 1020 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys 17:32:49.0070 1020 ebdrv - ok 17:32:49.0101 1020 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys 17:32:49.0132 1020 elxstor - ok 17:32:49.0148 1020 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 17:32:49.0148 1020 ErrDev - ok 17:32:49.0179 1020 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 17:32:49.0195 1020 exfat - ok 17:32:49.0351 1020 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 17:32:49.0366 1020 fastfat - ok 17:32:49.0398 1020 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 17:32:49.0398 1020 fdc - ok 17:32:49.0429 1020 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 17:32:49.0429 1020 FileInfo - ok 17:32:49.0444 1020 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 17:32:49.0460 1020 Filetrace - ok 17:32:49.0491 1020 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 17:32:49.0491 1020 flpydisk - ok 17:32:49.0507 1020 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 17:32:49.0538 1020 FltMgr - ok 17:32:49.0554 1020 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 17:32:49.0569 1020 FsDepends - ok 17:32:49.0569 1020 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 17:32:49.0585 1020 Fs_Rec - ok 17:32:49.0600 1020 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 17:32:49.0616 1020 fvevol - ok 17:32:49.0632 1020 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys 17:32:49.0632 1020 gagp30kx - ok 17:32:49.0663 1020 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 17:32:49.0663 1020 GEARAspiWDM - ok 17:32:49.0694 1020 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 17:32:49.0725 1020 hcw85cir - ok 17:32:49.0756 1020 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 17:32:49.0772 1020 HdAudAddService - ok 17:32:49.0788 1020 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys 17:32:49.0788 1020 HDAudBus - ok 17:32:49.0803 1020 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys 17:32:49.0803 1020 HidBatt - ok 17:32:49.0834 1020 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys 17:32:49.0834 1020 HidBth - ok 17:32:49.0866 1020 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys 17:32:49.0881 1020 HidIr - ok 17:32:49.0912 1020 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys 17:32:49.0928 1020 HidUsb - ok 17:32:49.0959 1020 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 17:32:49.0959 1020 HpSAMD - ok 17:32:49.0990 1020 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 17:32:50.0006 1020 HTTP - ok 17:32:50.0006 1020 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 17:32:50.0022 1020 hwpolicy - ok 17:32:50.0037 1020 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 17:32:50.0037 1020 i8042prt - ok 17:32:50.0084 1020 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 17:32:50.0084 1020 iaStorV - ok 17:32:50.0100 1020 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys 17:32:50.0115 1020 iirsp - ok 17:32:50.0131 1020 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 17:32:50.0131 1020 intelide - ok 17:32:50.0146 1020 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 17:32:50.0162 1020 intelppm - ok 17:32:50.0178 1020 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 17:32:50.0178 1020 IpFilterDriver - ok 17:32:50.0193 1020 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 17:32:50.0193 1020 IPMIDRV - ok 17:32:50.0224 1020 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 17:32:50.0224 1020 IPNAT - ok 17:32:50.0256 1020 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 17:32:50.0256 1020 IRENUM - ok 17:32:50.0256 1020 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 17:32:50.0271 1020 isapnp - ok 17:32:50.0287 1020 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 17:32:50.0302 1020 iScsiPrt - ok 17:32:50.0318 1020 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys 17:32:50.0318 1020 kbdclass - ok 17:32:50.0334 1020 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys 17:32:50.0334 1020 kbdhid - ok 17:32:50.0349 1020 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 17:32:50.0349 1020 KSecDD - ok 17:32:50.0365 1020 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 17:32:50.0365 1020 KSecPkg - ok 17:32:50.0396 1020 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 17:32:50.0412 1020 lltdio - ok 17:32:50.0427 1020 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys 17:32:50.0443 1020 LSI_FC - ok 17:32:50.0443 1020 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys 17:32:50.0458 1020 LSI_SAS - ok 17:32:50.0458 1020 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys 17:32:50.0458 1020 LSI_SAS2 - ok 17:32:50.0490 1020 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys 17:32:50.0490 1020 LSI_SCSI - ok 17:32:50.0505 1020 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 17:32:50.0521 1020 luafv - ok 17:32:50.0536 1020 MBAMSwissArmy - ok 17:32:50.0552 1020 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys 17:32:50.0552 1020 megasas - ok 17:32:50.0568 1020 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys 17:32:50.0583 1020 MegaSR - ok 17:32:50.0614 1020 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 17:32:50.0614 1020 Modem - ok 17:32:50.0630 1020 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 17:32:50.0630 1020 monitor - ok 17:32:50.0646 1020 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys 17:32:50.0661 1020 mouclass - ok 17:32:50.0677 1020 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 17:32:50.0677 1020 mouhid - ok 17:32:50.0677 1020 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 17:32:50.0692 1020 mountmgr - ok 17:32:50.0708 1020 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 17:32:50.0724 1020 mpio - ok 17:32:50.0755 1020 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 17:32:50.0755 1020 mpsdrv - ok 17:32:50.0770 1020 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 17:32:50.0770 1020 MRxDAV - ok 17:32:50.0802 1020 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 17:32:50.0802 1020 mrxsmb - ok 17:32:50.0833 1020 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 17:32:50.0848 1020 mrxsmb10 - ok 17:32:50.0848 1020 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 17:32:50.0864 1020 mrxsmb20 - ok 17:32:50.0880 1020 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 17:32:50.0880 1020 msahci - ok 17:32:50.0895 1020 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 17:32:50.0895 1020 msdsm - ok 17:32:50.0911 1020 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 17:32:50.0926 1020 Msfs - ok 17:32:50.0942 1020 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 17:32:50.0958 1020 mshidkmdf - ok 17:32:50.0958 1020 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 17:32:50.0958 1020 msisadrv - ok 17:32:50.0989 1020 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 17:32:50.0989 1020 MSKSSRV - ok 17:32:51.0004 1020 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 17:32:51.0004 1020 MSPCLOCK - ok 17:32:51.0020 1020 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 17:32:51.0036 1020 MSPQM - ok 17:32:51.0051 1020 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 17:32:51.0067 1020 MsRPC - ok 17:32:51.0082 1020 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys 17:32:51.0082 1020 mssmbios - ok 17:32:51.0114 1020 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 17:32:51.0129 1020 MSTEE - ok 17:32:51.0145 1020 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys 17:32:51.0145 1020 MTConfig - ok 17:32:51.0176 1020 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\Windows\system32\DRIVERS\ASACPI.sys 17:32:51.0176 1020 MTsensor - ok 17:32:51.0192 1020 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 17:32:51.0192 1020 Mup - ok 17:32:51.0223 1020 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 17:32:51.0223 1020 NativeWifiP - ok 17:32:51.0270 1020 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 17:32:51.0285 1020 NDIS - ok 17:32:51.0301 1020 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 17:32:51.0316 1020 NdisCap - ok 17:32:51.0332 1020 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 17:32:51.0332 1020 NdisTapi - ok 17:32:51.0348 1020 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 17:32:51.0363 1020 Ndisuio - ok 17:32:51.0379 1020 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 17:32:51.0394 1020 NdisWan - ok 17:32:51.0410 1020 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 17:32:51.0426 1020 NDProxy - ok 17:32:51.0441 1020 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 17:32:51.0441 1020 NetBIOS - ok 17:32:51.0472 1020 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 17:32:51.0488 1020 NetBT - ok 17:32:51.0519 1020 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys 17:32:51.0535 1020 nfrd960 - ok 17:32:51.0550 1020 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 17:32:51.0550 1020 Npfs - ok 17:32:51.0566 1020 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 17:32:51.0566 1020 nsiproxy - ok 17:32:51.0597 1020 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 17:32:51.0628 1020 Ntfs - ok 17:32:51.0644 1020 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 17:32:51.0644 1020 Null - ok 17:32:51.0784 1020 nvlddmkm (66b4bf606fcc7f0622d4a21bb1461089) C:\Windows\system32\DRIVERS\nvlddmkm.sys 17:32:51.0894 1020 nvlddmkm - ok 17:32:51.0925 1020 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 17:32:51.0940 1020 nvraid - ok 17:32:51.0940 1020 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 17:32:51.0956 1020 nvstor - ok 17:32:51.0972 1020 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 17:32:51.0987 1020 nv_agp - ok 17:32:52.0003 1020 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 17:32:52.0003 1020 ohci1394 - ok 17:32:52.0050 1020 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 17:32:52.0050 1020 Parport - ok 17:32:52.0065 1020 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 17:32:52.0065 1020 partmgr - ok 17:32:52.0081 1020 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 17:32:52.0096 1020 Parvdm - ok 17:32:52.0096 1020 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 17:32:52.0112 1020 pci - ok 17:32:52.0112 1020 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 17:32:52.0128 1020 pciide - ok 17:32:52.0143 1020 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys 17:32:52.0159 1020 pcmcia - ok 17:32:52.0159 1020 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 17:32:52.0159 1020 pcw - ok 17:32:52.0190 1020 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 17:32:52.0206 1020 PEAUTH - ok 17:32:52.0252 1020 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 17:32:52.0268 1020 PptpMiniport - ok 17:32:52.0284 1020 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys 17:32:52.0284 1020 Processor - ok 17:32:52.0315 1020 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 17:32:52.0330 1020 Psched - ok 17:32:52.0362 1020 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\Windows\system32\Drivers\PxHelp20.sys 17:32:52.0377 1020 PxHelp20 - ok 17:32:52.0408 1020 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys 17:32:52.0440 1020 ql2300 - ok 17:32:52.0440 1020 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys 17:32:52.0455 1020 ql40xx - ok 17:32:52.0471 1020 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 17:32:52.0486 1020 QWAVEdrv - ok 17:32:52.0502 1020 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 17:32:52.0518 1020 RasAcd - ok 17:32:52.0549 1020 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 17:32:52.0564 1020 RasAgileVpn - ok 17:32:52.0580 1020 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 17:32:52.0596 1020 Rasl2tp - ok 17:32:52.0611 1020 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 17:32:52.0642 1020 RasPppoe - ok 17:32:52.0658 1020 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 17:32:52.0658 1020 RasSstp - ok 17:32:52.0674 1020 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 17:32:52.0689 1020 rdbss - ok 17:32:52.0705 1020 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 17:32:52.0705 1020 rdpbus - ok 17:32:52.0720 1020 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 17:32:52.0720 1020 RDPCDD - ok 17:32:52.0752 1020 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys 17:32:52.0752 1020 RDPDR - ok 17:32:52.0767 1020 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 17:32:52.0767 1020 RDPENCDD - ok 17:32:52.0783 1020 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 17:32:52.0798 1020 RDPREFMP - ok 17:32:52.0814 1020 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 17:32:52.0830 1020 RDPWD - ok 17:32:52.0845 1020 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 17:32:52.0845 1020 rdyboost - ok 17:32:52.0892 1020 RsFx0103 (fd692c6ffade58f7c4c3c3c9a0ec35bd) C:\Windows\system32\DRIVERS\RsFx0103.sys 17:32:52.0892 1020 RsFx0103 - ok 17:32:52.0908 1020 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 17:32:52.0923 1020 rspndr - ok 17:32:52.0954 1020 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys 17:32:52.0970 1020 RTL8167 - ok 17:32:52.0986 1020 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys 17:32:53.0001 1020 s3cap - ok 17:32:53.0032 1020 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 17:32:53.0032 1020 sbp2port - ok 17:32:53.0064 1020 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 17:32:53.0064 1020 scfilter - ok 17:32:53.0079 1020 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 17:32:53.0095 1020 secdrv - ok 17:32:53.0126 1020 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 17:32:53.0142 1020 Serenum - ok 17:32:53.0157 1020 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 17:32:53.0188 1020 Serial - ok 17:32:53.0204 1020 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys 17:32:53.0220 1020 sermouse - ok 17:32:53.0235 1020 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys 17:32:53.0235 1020 sffdisk - ok 17:32:53.0266 1020 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 17:32:53.0282 1020 sffp_mmc - ok 17:32:53.0313 1020 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys 17:32:53.0313 1020 sffp_sd - ok 17:32:53.0329 1020 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys 17:32:53.0344 1020 sfloppy - ok 17:32:53.0376 1020 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 17:32:53.0391 1020 sisagp - ok 17:32:53.0422 1020 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys 17:32:53.0422 1020 SiSRaid2 - ok 17:32:53.0438 1020 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys 17:32:53.0438 1020 SiSRaid4 - ok 17:32:53.0469 1020 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 17:32:53.0469 1020 Smb - ok 17:32:53.0485 1020 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 17:32:53.0500 1020 spldr - ok 17:32:53.0578 1020 sptd (d390675b8ce45e5fb359338e5e649329) C:\Windows\system32\Drivers\sptd.sys 17:32:53.0594 1020 sptd - ok 17:32:53.0625 1020 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 17:32:53.0641 1020 srv - ok 17:32:53.0656 1020 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 17:32:53.0672 1020 srv2 - ok 17:32:53.0672 1020 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 17:32:53.0703 1020 srvnet - ok 17:32:53.0719 1020 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys 17:32:53.0734 1020 ssmdrv - ok 17:32:53.0750 1020 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys 17:32:53.0750 1020 stexstor - ok 17:32:53.0781 1020 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys 17:32:53.0781 1020 storflt - ok 17:32:53.0797 1020 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys 17:32:53.0812 1020 storvsc - ok 17:32:53.0828 1020 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys 17:32:53.0844 1020 swenum - ok 17:32:53.0922 1020 Tcpip (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\drivers\tcpip.sys 17:32:53.0937 1020 Tcpip - ok 17:32:53.0953 1020 TCPIP6 (04e4a7d53a7ace02e8c55b17a498f631) C:\Windows\system32\DRIVERS\tcpip.sys 17:32:53.0968 1020 TCPIP6 - ok 17:32:53.0984 1020 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 17:32:53.0984 1020 tcpipreg - ok 17:32:54.0000 1020 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 17:32:54.0015 1020 TDPIPE - ok 17:32:54.0031 1020 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 17:32:54.0062 1020 TDTCP - ok 17:32:54.0078 1020 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 17:32:54.0093 1020 tdx - ok 17:32:54.0124 1020 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys 17:32:54.0124 1020 TermDD - ok 17:32:54.0171 1020 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 17:32:54.0171 1020 tssecsrv - ok 17:32:54.0187 1020 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 17:32:54.0187 1020 TsUsbFlt - ok 17:32:54.0202 1020 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys 17:32:54.0202 1020 TsUsbGD - ok 17:32:54.0265 1020 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys 17:32:54.0265 1020 TuneUpUtilitiesDrv - ok 17:32:54.0296 1020 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 17:32:54.0296 1020 tunnel - ok 17:32:54.0312 1020 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys 17:32:54.0312 1020 uagp35 - ok 17:32:54.0343 1020 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 17:32:54.0358 1020 udfs - ok 17:32:54.0405 1020 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 17:32:54.0405 1020 uliagpkx - ok 17:32:54.0421 1020 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys 17:32:54.0436 1020 umbus - ok 17:32:54.0452 1020 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys 17:32:54.0468 1020 UmPass - ok 17:32:54.0499 1020 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys 17:32:54.0499 1020 USBAAPL - ok 17:32:54.0546 1020 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys 17:32:54.0546 1020 usbaudio - ok 17:32:54.0577 1020 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys 17:32:54.0592 1020 usbccgp - ok 17:32:54.0639 1020 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 17:32:54.0639 1020 usbcir - ok 17:32:54.0655 1020 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys 17:32:54.0655 1020 usbehci - ok 17:32:54.0686 1020 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 17:32:54.0702 1020 usbhub - ok 17:32:54.0733 1020 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys 17:32:54.0748 1020 usbohci - ok 17:32:54.0764 1020 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 17:32:54.0780 1020 usbprint - ok 17:32:54.0795 1020 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys 17:32:54.0811 1020 usbscan - ok 17:32:54.0826 1020 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS 17:32:54.0826 1020 USBSTOR - ok 17:32:54.0842 1020 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys 17:32:54.0842 1020 usbuhci - ok 17:32:54.0858 1020 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\system32\Drivers\usbvideo.sys 17:32:54.0873 1020 usbvideo - ok 17:32:54.0904 1020 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 17:32:54.0904 1020 vdrvroot - ok 17:32:54.0920 1020 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 17:32:54.0920 1020 vga - ok 17:32:54.0936 1020 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 17:32:54.0967 1020 VgaSave - ok 17:32:54.0982 1020 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 17:32:54.0982 1020 vhdmp - ok 17:32:54.0998 1020 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 17:32:55.0014 1020 viaagp - ok 17:32:55.0029 1020 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys 17:32:55.0029 1020 ViaC7 - ok 17:32:55.0045 1020 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 17:32:55.0045 1020 viaide - ok 17:32:55.0060 1020 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys 17:32:55.0076 1020 vmbus - ok 17:32:55.0076 1020 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys 17:32:55.0092 1020 VMBusHID - ok 17:32:55.0107 1020 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 17:32:55.0123 1020 volmgr - ok 17:32:55.0154 1020 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 17:32:55.0154 1020 volmgrx - ok 17:32:55.0170 1020 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 17:32:55.0170 1020 volsnap - ok 17:32:55.0201 1020 vpcbus (33e74df34753fcaab06f6f2bdc8cabf5) C:\Windows\system32\DRIVERS\vpchbus.sys 17:32:55.0201 1020 vpcbus - ok 17:32:55.0216 1020 vpcnfltr (5f04362ceb5fb5901037e9d9eadd3760) C:\Windows\system32\DRIVERS\vpcnfltr.sys 17:32:55.0232 1020 vpcnfltr - ok 17:32:55.0248 1020 vpcusb (625088d6ee9ede977fd03cf18d1cd5c5) C:\Windows\system32\DRIVERS\vpcusb.sys 17:32:55.0263 1020 vpcusb - ok 17:32:55.0310 1020 vpcvmm (1023c696d42268e9071bb376dbec8396) C:\Windows\system32\drivers\vpcvmm.sys 17:32:55.0310 1020 vpcvmm - ok 17:32:55.0341 1020 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys 17:32:55.0357 1020 vsmraid - ok 17:32:55.0419 1020 VSPerfDrv100 (5a2ddc5411a092bedb1a07755e087784) C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys 17:32:55.0435 1020 VSPerfDrv100 - ok 17:32:55.0466 1020 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys 17:32:55.0466 1020 vwifibus - ok 17:32:55.0482 1020 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys 17:32:55.0482 1020 WacomPen - ok 17:32:55.0497 1020 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 17:32:55.0497 1020 WANARP - ok 17:32:55.0497 1020 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 17:32:55.0513 1020 Wanarpv6 - ok 17:32:55.0528 1020 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys 17:32:55.0544 1020 Wd - ok 17:32:55.0575 1020 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 17:32:55.0606 1020 Wdf01000 - ok 17:32:55.0653 1020 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 17:32:55.0653 1020 WfpLwf - ok 17:32:55.0669 1020 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 17:32:55.0669 1020 WIMMount - ok 17:32:55.0716 1020 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys 17:32:55.0731 1020 WinUsb - ok 17:32:55.0747 1020 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 17:32:55.0747 1020 WmiAcpi - ok 17:32:55.0778 1020 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 17:32:55.0778 1020 ws2ifsl - ok 17:32:55.0809 1020 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 17:32:55.0825 1020 WudfPf - ok 17:32:55.0856 1020 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 17:32:55.0872 1020 WUDFRd - ok 17:32:55.0887 1020 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0 17:32:55.0887 1020 \Device\Harddisk0\DR0 - ok 17:32:55.0903 1020 Boot (0x1200) (714aff79d7f1937215586b6b5864318b) \Device\Harddisk0\DR0\Partition0 17:32:55.0903 1020 \Device\Harddisk0\DR0\Partition0 - ok 17:32:55.0903 1020 ============================================================ 17:32:55.0903 1020 Scan finished 17:32:55.0903 1020 ============================================================ 17:32:55.0903 4444 Detected object count: 0 17:32:55.0903 4444 Actual detected object count: 0 |
|
31.10.2011, 17:32
| #14 |
| /// Malware-holic | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! verstehe ich nicht, was ist normal? du sollst die action cure wählen, nicht skip
__________________ -Verdächtige mails bitte an uns zur Analyse weiterleiten: markusg.trojaner-board@web.de Weiterleiten Anleitung: http://markusg.trojaner-board.de Mails bitte vorerst nach obiger Anleitung an markusg.trojaner-board@web.de Weiterleiten Wenn Ihr uns unterstützen möchtet |
|
31.10.2011, 17:35
| #15 |
| | Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! sry, hatte mich vertan ^^ oben ist es nochmal aufgelistet |
|
| Themen zu Wurde ich gehijacked? Oder was ist los? Browser öffnet in verschiedenen Abständen Werbetabs! |
| acrobat update, adobe, antivir, avg, avira, bho, bonjour, browser, computer, conduit, converter, desktop, explorer, firefox, hijack, hijackthis, hkus\s-1-5-18, internet, internet explorer, locker, mozilla, mp3, nvidia update, object, pando media booster, plug-in, senden, server, software, system, tabs werbung browser öffnet unaufgefordert, windows, winload toolbar, öffnet |
Linear-Darstellung
